openSUSE-SLE-15.3-2021-3854 important SUSE Updates openSUSE-SLE 15.3 This update for poppler fixes the following issues: - CVE-2017-18267: Fixed an infinite recursion that would allow remote attackers to cause a denial of service (bsc#1092945). - CVE-2018-13988: Added an improper implementation check which otherwise could allow buffer overflows, memory corruption, and denial of service (bsc#1102531). - CVE-2018-16646: Fixed an infinite recursion which could allow a denial-of-service attack via a specially crafted PDF file (bsc#1107597). - CVE-2018-18897: Fixed a memory leak (bsc#1114966). - CVE-2018-19058: Fixed a bug which could allow a denial-of-service attack via a specially crafted PDF file (bsc#1115187). - CVE-2018-19059: Fixed an out-of-bounds read access which could allow a denial-of-service attack (bsc#1115186). - CVE-2018-19060: Fixed a NULL pointer dereference which could allow a denial-of-service attack (bsc#1115185). - CVE-2018-19149: Fixed a NULL pointer dereference which could allow a denial-of-service attack (bsc#1115626). - CVE-2018-20481: Fixed a NULL pointer dereference while handling unallocated XRef entries which could allow a denial-of-service attack (bsc#1120495). - CVE-2018-20551: Fixed a reachable assertion which could allow a denial-of-service attack through specially crafted PDF files (bsc#1120496). - CVE-2018-20650: Fixed a reachable assertion which could allow denial-of-service through specially crafted PDF files (bsc#1120939). - CVE-2018-20662: Fixed a bug which could potentially crash the running process by SIGABRT resulting in a denial-of-service attack through a specially crafted PDF file (bsc#1120956). - CVE-2019-10871: Fixed a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc (bsc#1131696). - CVE-2019-10872: Fixed a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc (bsc#1131722). - CVE-2019-14494: Fixed a divide-by-zero error in the function SplashOutputDev::tilingPatternFill (bsc#1143950). - CVE-2019-7310: Fixed a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) that allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document (bsc#1124150). - CVE-2019-9200: Fixed a heap-based buffer underwrite which could allow denial-of-service attack through a specially crafted PDF file (bsc#1127329) - CVE-2019-9631: Fixed a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function (bsc#1129202). - CVE-2019-9903: Fixed excessive stack consumption in the Dict::find() method, which can be triggered by passing a crafted pdf file to the pdfunite binary (bsc#1130229). - CVE-2019-9959: Fixed integer overflow that made it possible to allocate a large memory chunk on the heap with a size controlled by an attacker (bsc#1142465). - CVE-2020-27778: Fixed buffer overflow vulnerability in pdftohtml (bsc#1179163). libpoppler73-0.62.0-4.6.1.x86_64.rpm libpoppler73-32bit-0.62.0-4.6.1.x86_64.rpm poppler-0.62.0-4.6.1.src.rpm libpoppler73-0.62.0-4.6.1.s390x.rpm libpoppler73-0.62.0-4.6.1.ppc64le.rpm libpoppler73-0.62.0-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-538 low SUSE Updates openSUSE-SLE 15.3 This update for xmltooling doesn't fix any user visible bugs. libxmltooling7-1.6.4-3.6.1.x86_64.rpm xmltooling-1.6.4-3.6.1.src.rpm libxmltooling7-1.6.4-3.6.1.s390x.rpm libxmltooling7-1.6.4-3.6.1.ppc64le.rpm libxmltooling7-1.6.4-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3242 moderate SUSE Updates openSUSE-SLE 15.3 This update for lasso fixes the following issues: - Implement package 'apache2-mod_auth_mellon' along with its dependency 'lasso' in SLE-15-SP2. (jsc#SLE-8958, jsc#ECO-1309) apache2-mod_auth_mellon-0.17.0-5.4.1.src.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.x86_64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.x86_64.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.x86_64.rpm lasso-2.6.1-16.2.src.rpm liblasso-devel-2.6.1-16.2.x86_64.rpm liblasso3-2.6.1-16.2.x86_64.rpm python3-lasso-2.6.1-16.2.x86_64.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.s390x.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.s390x.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.s390x.rpm liblasso-devel-2.6.1-16.2.s390x.rpm liblasso3-2.6.1-16.2.s390x.rpm python3-lasso-2.6.1-16.2.s390x.rpm liblasso-devel-2.6.1-16.2.ppc64le.rpm liblasso3-2.6.1-16.2.ppc64le.rpm python3-lasso-2.6.1-16.2.ppc64le.rpm apache2-mod_auth_mellon-0.17.0-5.4.1.aarch64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-5.4.1.aarch64.rpm apache2-mod_auth_mellon-doc-0.17.0-5.4.1.aarch64.rpm liblasso-devel-2.6.1-16.2.aarch64.rpm liblasso3-2.6.1-16.2.aarch64.rpm python3-lasso-2.6.1-16.2.aarch64.rpm openSUSE-SLE-15.3-2021-2125 important SUSE Updates openSUSE-SLE 15.3 This update for wireshark, libvirt, sbc and libqt5-qtmultimedia fixes the following issues: Update wireshark to version 3.4.5 - New and updated support and bug fixes for multiple protocols - Asynchronous DNS resolution is always enabled - Protobuf fields can be dissected as Wireshark (header) fields - UI improvements Including security fixes for: - CVE-2021-22191: Wireshark could open unsafe URLs (bsc#1183353). - CVE-2021-22207: MS-WSP dissector excessive memory consumption (bsc#1185128) - CVE-2020-26422: QUIC dissector crash (bsc#1180232) - CVE-2020-26418: Kafka dissector memory leak (bsc#1179930) - CVE-2020-26419: Multiple dissector memory leaks (bsc#1179931) - CVE-2020-26420: RTPS dissector memory leak (bsc#1179932) - CVE-2020-26421: USB HID dissector crash (bsc#1179933) - CVE-2021-22173: Fix USB HID dissector memory leak (bsc#1181598) - CVE-2021-22174: Fix USB HID dissector crash (bsc#1181599) libqt5-qtmultimedia and sbc are necessary dependencies. libvirt is needed to rebuild wireshark-plugin-libvirt. libsbc1-1.3-3.2.1.x86_64.rpm libsbc1-32bit-1.3-3.2.1.x86_64.rpm libwireshark14-3.4.5-3.53.1.x86_64.rpm libwiretap11-3.4.5-3.53.1.x86_64.rpm libwsutil12-3.4.5-3.53.1.x86_64.rpm sbc-1.3-3.2.1.src.rpm sbc-1.3-3.2.1.x86_64.rpm sbc-devel-1.3-3.2.1.x86_64.rpm wireshark-3.4.5-3.53.1.src.rpm wireshark-3.4.5-3.53.1.x86_64.rpm wireshark-devel-3.4.5-3.53.1.x86_64.rpm wireshark-ui-qt-3.4.5-3.53.1.x86_64.rpm libsbc1-1.3-3.2.1.s390x.rpm libwireshark14-3.4.5-3.53.1.s390x.rpm libwiretap11-3.4.5-3.53.1.s390x.rpm libwsutil12-3.4.5-3.53.1.s390x.rpm sbc-1.3-3.2.1.s390x.rpm sbc-devel-1.3-3.2.1.s390x.rpm wireshark-3.4.5-3.53.1.s390x.rpm wireshark-devel-3.4.5-3.53.1.s390x.rpm wireshark-ui-qt-3.4.5-3.53.1.s390x.rpm libsbc1-1.3-3.2.1.ppc64le.rpm libwireshark14-3.4.5-3.53.1.ppc64le.rpm libwiretap11-3.4.5-3.53.1.ppc64le.rpm libwsutil12-3.4.5-3.53.1.ppc64le.rpm sbc-1.3-3.2.1.ppc64le.rpm sbc-devel-1.3-3.2.1.ppc64le.rpm wireshark-3.4.5-3.53.1.ppc64le.rpm wireshark-devel-3.4.5-3.53.1.ppc64le.rpm wireshark-ui-qt-3.4.5-3.53.1.ppc64le.rpm libsbc1-1.3-3.2.1.aarch64.rpm libwireshark14-3.4.5-3.53.1.aarch64.rpm libwiretap11-3.4.5-3.53.1.aarch64.rpm libwsutil12-3.4.5-3.53.1.aarch64.rpm sbc-1.3-3.2.1.aarch64.rpm sbc-devel-1.3-3.2.1.aarch64.rpm wireshark-3.4.5-3.53.1.aarch64.rpm wireshark-devel-3.4.5-3.53.1.aarch64.rpm wireshark-ui-qt-3.4.5-3.53.1.aarch64.rpm openSUSE-SLE-15.3-2021-3233 moderate SUSE Updates openSUSE-SLE 15.3 This update for xfsprogs fixes the following issues: - Fixes an issue when 'fstests' with 'xfs' fail. (bsc#1181309, bsc#1181299) - xfsprogs: Split 'libhandle1' into a separate package, since nothing within xfsprogs dynamically links against it. The shared library is still required by xfsdump as a runtime dependency. - mkfs.xfs: Fix 'ASSERT' on too-small device with stripe geometry. (bsc#1181536) - mkfs.xfs: If either 'sunit' or 'swidth' is not zero, the other must be as well. (bsc#1085917, bsc#1181535) - xfs_growfs: Refactor geometry reporting. (bsc#1181306) - xfs_growfs: Allow mounted device node as argument. (bsc#1181299) - xfs_repair: Rebuild directory when non-root leafn blocks claim block 0. (bsc#1181309) - xfs_repair: Check plausibility of root dir pointer before trashing it. (bsc#1188651) - xfs_bmap: Remove '-c' from manpage. (bsc#1189552) - xfs_bmap: Do not reject '-e'. (bsc#1189552) - Implement 'libhandle1' through ECO. (jsc#SLE-20360) libhandle1-4.15.0-4.40.1.x86_64.rpm xfsprogs-4.15.0-4.40.1.src.rpm xfsprogs-4.15.0-4.40.1.x86_64.rpm xfsprogs-devel-4.15.0-4.40.1.x86_64.rpm libhandle1-4.15.0-4.40.1.s390x.rpm xfsprogs-4.15.0-4.40.1.s390x.rpm xfsprogs-devel-4.15.0-4.40.1.s390x.rpm libhandle1-4.15.0-4.40.1.ppc64le.rpm xfsprogs-4.15.0-4.40.1.ppc64le.rpm xfsprogs-devel-4.15.0-4.40.1.ppc64le.rpm libhandle1-4.15.0-4.40.1.aarch64.rpm xfsprogs-4.15.0-4.40.1.aarch64.rpm xfsprogs-devel-4.15.0-4.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-1845 important SUSE Updates openSUSE-SLE 15.3 This update for avahi fixes the following issues: - CVE-2021-3468: avoid infinite loop by handling HUP event in client_work (bsc#1184521). - CVE-2021-26720: drop privileges when invoking avahi-daemon-check-dns.sh (bsc#1180827) - Update avahi-daemon-check-dns.sh from Debian. Our previous version relied on ifconfig, route, and init.d. - Add sudo to requires: used to drop privileges. avahi-0.6.32-5.13.1.src.rpm avahi-glib2-0.6.32-5.13.1.src.rpm python-avahi-0.6.32-5.13.1.x86_64.rpm python-avahi-gtk-0.6.32-5.13.1.x86_64.rpm python-avahi-0.6.32-5.13.1.s390x.rpm python-avahi-gtk-0.6.32-5.13.1.s390x.rpm python-avahi-0.6.32-5.13.1.ppc64le.rpm python-avahi-gtk-0.6.32-5.13.1.ppc64le.rpm python-avahi-0.6.32-5.13.1.aarch64.rpm python-avahi-gtk-0.6.32-5.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-1643 important SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issues: - Fixed a bug, where the 'unlimited'/'-1' value was not interpreted correctly (bsc#1181443) - Fixed a bug, where pam_access interpreted the keyword 'LOCAL' incorrectly, leading to an attempt to resolve it as a hostname (bsc#1184358) - In the 32-bit compatibility package for 64-bit architectures, require "systemd-32bit" to be also installed as it contains pam_systemd.so for 32 bit applications. (bsc#1185562) pam-1.3.0-6.38.1.src.rpm pam-1.3.0-6.38.1.x86_64.rpm pam-32bit-1.3.0-6.38.1.x86_64.rpm pam-devel-1.3.0-6.38.1.x86_64.rpm pam-devel-32bit-1.3.0-6.38.1.x86_64.rpm pam-doc-1.3.0-6.38.1.noarch.rpm pam-extra-1.3.0-6.38.1.x86_64.rpm pam-extra-32bit-1.3.0-6.38.1.x86_64.rpm pam-1.3.0-6.38.1.s390x.rpm pam-devel-1.3.0-6.38.1.s390x.rpm pam-extra-1.3.0-6.38.1.s390x.rpm pam-1.3.0-6.38.1.ppc64le.rpm pam-devel-1.3.0-6.38.1.ppc64le.rpm pam-extra-1.3.0-6.38.1.ppc64le.rpm pam-1.3.0-6.38.1.aarch64.rpm pam-devel-1.3.0-6.38.1.aarch64.rpm pam-extra-1.3.0-6.38.1.aarch64.rpm openSUSE-SLE-15.3-2021-3227 moderate SUSE Updates openSUSE-SLE 15.3 This update for createrepo_c fixes the following issues: createrepo_c: - Does no longer perform a dir walk when --recycle-pkglist is specified - Added automatic module metadata handling for repos - Fixed a couple of memory leaks - Added --arch-expand option - Added --recycle-pkglist option - Set global_exit_status on sigint so that .repodata are cleaned up - Enhance error handling when locating repositories libmodulemd: - Just a rebuild of the package, no source changes zchunk: - Initial shipment of zchunk to SUSE Linux Enterprise createrepo_c-0.16.0-3.3.1.src.rpm createrepo_c-0.16.0-3.3.1.x86_64.rpm libcreaterepo_c-devel-0.16.0-3.3.1.x86_64.rpm libcreaterepo_c0-0.16.0-3.3.1.x86_64.rpm libmodulemd-2.12.0-3.10.1.src.rpm libmodulemd-devel-2.12.0-3.10.1.x86_64.rpm libmodulemd2-2.12.0-3.10.1.x86_64.rpm libzck-devel-1.1.5-3.2.1.x86_64.rpm libzck1-1.1.5-3.2.1.x86_64.rpm modulemd-validator-2.12.0-3.10.1.x86_64.rpm python3-createrepo_c-0.16.0-3.3.1.x86_64.rpm python3-libmodulemd-2.12.0-3.10.1.x86_64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.x86_64.rpm zchunk-1.1.5-3.2.1.src.rpm zchunk-1.1.5-3.2.1.x86_64.rpm createrepo_c-0.16.0-3.3.1.s390x.rpm libcreaterepo_c-devel-0.16.0-3.3.1.s390x.rpm libcreaterepo_c0-0.16.0-3.3.1.s390x.rpm libmodulemd-devel-2.12.0-3.10.1.s390x.rpm libmodulemd2-2.12.0-3.10.1.s390x.rpm libzck-devel-1.1.5-3.2.1.s390x.rpm libzck1-1.1.5-3.2.1.s390x.rpm modulemd-validator-2.12.0-3.10.1.s390x.rpm python3-createrepo_c-0.16.0-3.3.1.s390x.rpm python3-libmodulemd-2.12.0-3.10.1.s390x.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.s390x.rpm zchunk-1.1.5-3.2.1.s390x.rpm createrepo_c-0.16.0-3.3.1.ppc64le.rpm libcreaterepo_c-devel-0.16.0-3.3.1.ppc64le.rpm libcreaterepo_c0-0.16.0-3.3.1.ppc64le.rpm libmodulemd-devel-2.12.0-3.10.1.ppc64le.rpm libmodulemd2-2.12.0-3.10.1.ppc64le.rpm libzck-devel-1.1.5-3.2.1.ppc64le.rpm libzck1-1.1.5-3.2.1.ppc64le.rpm modulemd-validator-2.12.0-3.10.1.ppc64le.rpm python3-createrepo_c-0.16.0-3.3.1.ppc64le.rpm python3-libmodulemd-2.12.0-3.10.1.ppc64le.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.ppc64le.rpm zchunk-1.1.5-3.2.1.ppc64le.rpm createrepo_c-0.16.0-3.3.1.aarch64.rpm libcreaterepo_c-devel-0.16.0-3.3.1.aarch64.rpm libcreaterepo_c0-0.16.0-3.3.1.aarch64.rpm libmodulemd-devel-2.12.0-3.10.1.aarch64.rpm libmodulemd2-2.12.0-3.10.1.aarch64.rpm libzck-devel-1.1.5-3.2.1.aarch64.rpm libzck1-1.1.5-3.2.1.aarch64.rpm modulemd-validator-2.12.0-3.10.1.aarch64.rpm python3-createrepo_c-0.16.0-3.3.1.aarch64.rpm python3-libmodulemd-2.12.0-3.10.1.aarch64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.10.1.aarch64.rpm zchunk-1.1.5-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-1862 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - controller: Fix for the issue when the re-joined node gets the host names of non-DC nodes and fails. (bsc#1180618) - Fixed an issue when pacemaker generates invalid xml for certain failures. (rh#1931332) - fencer: Optimize merging of fencing history by removing unneeded entries on creation of history diff. (bsc#1181744) - fencing: Add a new function for checking if a fencing operation is in pending state. (bsc#1181744) - fencer: Update outdated pending operations according to returned ones from remote peer history. (bsc#1181744) - fencer: Fix if broadcast returned fencing operations to update outdated pending ones in remote peer history. (bsc#1181744) - execd: Skips merging of canceled fencing monitors. (#CLBZ5393) - liblrmd: Limit node name addition to proxied 'attrd' update commands. (rh#1907726) - controller, Pacemaker Explained: Improved the documentation of 'stonith-watchdog-timeout' cluster option. (bsc#1174696, bsc#1184557) - scheduler: Improved the documentation of 'have-watchdog' cluster option. (bsc#1174696, bsc#1184557) - libpe_status: Downgrade the message about the meaning of 'have-watchdog=true' to 'info'. (bsc#1174696, bsc#1184557) - scheduler: Update 'migrate-fail-9' test for migration code change. (bsc#1177212, bsc#1182607) - scheduler: Don't schedule a dangling migration stop if one already occurred. (bsc#1177212, bsc#1182607) libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.3.23.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.3.23.aarch64.rpm openSUSE-SLE-15.3-2021-2244 moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Create timestamp attribute in cache objects if missing (bsc#1182637) - Fix sss_cache spurious error messages when invoked from shadow-utils (bsc#1185017) - Using now /run instead of /var/run for daemon PID files (bsc#1185185) libipa_hbac-devel-1.16.1-23.8.1.x86_64.rpm libipa_hbac0-1.16.1-23.8.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.8.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_certmap0-1.16.1-23.8.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_idmap0-1.16.1-23.8.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.8.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.8.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.8.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.8.1.x86_64.rpm python3-sss-murmur-1.16.1-23.8.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.8.1.x86_64.rpm python3-sssd-config-1.16.1-23.8.1.x86_64.rpm sssd-1.16.1-23.8.1.src.rpm sssd-1.16.1-23.8.1.x86_64.rpm sssd-ad-1.16.1-23.8.1.x86_64.rpm sssd-common-1.16.1-23.8.1.x86_64.rpm sssd-dbus-1.16.1-23.8.1.x86_64.rpm sssd-ipa-1.16.1-23.8.1.x86_64.rpm sssd-krb5-1.16.1-23.8.1.x86_64.rpm sssd-krb5-common-1.16.1-23.8.1.x86_64.rpm sssd-ldap-1.16.1-23.8.1.x86_64.rpm sssd-proxy-1.16.1-23.8.1.x86_64.rpm sssd-tools-1.16.1-23.8.1.x86_64.rpm sssd-wbclient-1.16.1-23.8.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.8.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.8.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.8.1.s390x.rpm libipa_hbac0-1.16.1-23.8.1.s390x.rpm libnfsidmap-sss-1.16.1-23.8.1.s390x.rpm libsss_certmap-devel-1.16.1-23.8.1.s390x.rpm libsss_certmap0-1.16.1-23.8.1.s390x.rpm libsss_idmap-devel-1.16.1-23.8.1.s390x.rpm libsss_idmap0-1.16.1-23.8.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.8.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.8.1.s390x.rpm libsss_simpleifp0-1.16.1-23.8.1.s390x.rpm python3-ipa_hbac-1.16.1-23.8.1.s390x.rpm python3-sss-murmur-1.16.1-23.8.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.8.1.s390x.rpm python3-sssd-config-1.16.1-23.8.1.s390x.rpm sssd-1.16.1-23.8.1.s390x.rpm sssd-ad-1.16.1-23.8.1.s390x.rpm sssd-common-1.16.1-23.8.1.s390x.rpm sssd-dbus-1.16.1-23.8.1.s390x.rpm sssd-ipa-1.16.1-23.8.1.s390x.rpm sssd-krb5-1.16.1-23.8.1.s390x.rpm sssd-krb5-common-1.16.1-23.8.1.s390x.rpm sssd-ldap-1.16.1-23.8.1.s390x.rpm sssd-proxy-1.16.1-23.8.1.s390x.rpm sssd-tools-1.16.1-23.8.1.s390x.rpm sssd-wbclient-1.16.1-23.8.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.8.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.8.1.s390x.rpm libipa_hbac-devel-1.16.1-23.8.1.ppc64le.rpm libipa_hbac0-1.16.1-23.8.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.8.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_certmap0-1.16.1-23.8.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_idmap0-1.16.1-23.8.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.8.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.8.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.8.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.8.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.8.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.8.1.ppc64le.rpm python3-sssd-config-1.16.1-23.8.1.ppc64le.rpm sssd-1.16.1-23.8.1.ppc64le.rpm sssd-ad-1.16.1-23.8.1.ppc64le.rpm sssd-common-1.16.1-23.8.1.ppc64le.rpm sssd-dbus-1.16.1-23.8.1.ppc64le.rpm sssd-ipa-1.16.1-23.8.1.ppc64le.rpm sssd-krb5-1.16.1-23.8.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.8.1.ppc64le.rpm sssd-ldap-1.16.1-23.8.1.ppc64le.rpm sssd-proxy-1.16.1-23.8.1.ppc64le.rpm sssd-tools-1.16.1-23.8.1.ppc64le.rpm sssd-wbclient-1.16.1-23.8.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.8.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.8.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.8.1.aarch64.rpm libipa_hbac0-1.16.1-23.8.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.8.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_certmap0-1.16.1-23.8.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_idmap0-1.16.1-23.8.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.8.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.8.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.8.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.8.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.8.1.aarch64.rpm python3-sss-murmur-1.16.1-23.8.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.8.1.aarch64.rpm python3-sssd-config-1.16.1-23.8.1.aarch64.rpm sssd-1.16.1-23.8.1.aarch64.rpm sssd-ad-1.16.1-23.8.1.aarch64.rpm sssd-common-1.16.1-23.8.1.aarch64.rpm sssd-dbus-1.16.1-23.8.1.aarch64.rpm sssd-ipa-1.16.1-23.8.1.aarch64.rpm sssd-krb5-1.16.1-23.8.1.aarch64.rpm sssd-krb5-common-1.16.1-23.8.1.aarch64.rpm sssd-ldap-1.16.1-23.8.1.aarch64.rpm sssd-proxy-1.16.1-23.8.1.aarch64.rpm sssd-tools-1.16.1-23.8.1.aarch64.rpm sssd-wbclient-1.16.1-23.8.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.8.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2306 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-samba-client fixes the following issues: - Fix joining a domain when running a clustered Samba environment. (bsc#1181595) yast2-samba-client-4.3.3-3.3.1.noarch.rpm yast2-samba-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1840 important SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: - Upgrade to 1.4.16 - CVE-2021-21351: remote attacker to load and execute arbitrary code (bsc#1184796) - CVE-2021-21349: SSRF can lead to a remote attacker to request data from internal resources (bsc#1184797) - CVE-2021-21350: arbitrary code execution (bsc#1184380) - CVE-2021-21348: remote attacker could cause denial of service by consuming maximum CPU time (bsc#1184374) - CVE-2021-21347: remote attacker to load and execute arbitrary code from a remote host (bsc#1184378) - CVE-2021-21344: remote attacker could load and execute arbitrary code from a remote host (bsc#1184375) - CVE-2021-21342: server-side forgery (bsc#1184379) - CVE-2021-21341: remote attacker could cause a denial of service by allocating 100% CPU time (bsc#1184377) - CVE-2021-21346: remote attacker could load and execute arbitrary code (bsc#1184373) - CVE-2021-21345: remote attacker with sufficient rights could execute commands (bsc#1184372) - CVE-2021-21343: replace or inject objects, that result in the deletion of files on the local host (bsc#1184376) xstream-1.4.16-3.8.1.noarch.rpm xstream-1.4.16-3.8.1.src.rpm xstream-benchmark-1.4.16-3.8.1.noarch.rpm xstream-javadoc-1.4.16-3.8.1.noarch.rpm xstream-parent-1.4.16-3.8.1.noarch.rpm openSUSE-SLE-15.3-2021-2221 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Update to version 4.8.0 - HA-LVM systemid race condition introduces an error "active on 2 nodes". (bsc#1178680) - L3: azure-events puts both nodes in standby. (bsc#1183971) - 'ethmonitor' journal with warnings for VLAN. (bsc#1177796) - URL errors in 'azure-events' is fixed upstream. (bsc#1180590) - gcp-vpc-move-route resource agent file_cache is unavailable when using oauth2client. (bsc#1184607) - L3: anything RA stop operation fails if /root/.profile has unexpected content. (bsc#1179977) ldirectord-4.8.0+git30.d0077df0-8.5.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.5.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.5.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1630 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Update to version 4.3.0: * Fix: bootstrap: add sbd via bootstrap stage on an existing cluster (bsc#1181906) * Fix: bootstrap: change StrictHostKeyChecking=no as a constants(bsc#1185437) * Dev: bootstrap: disable unnecessary warnings (bsc#1178118) * Fix: bootstrap: sync corosync.conf before finished joining(bsc#1183359) * Dev: add "crm corosync status qdevice" sub-command * Dev: ui_cluster: add qdevice help info * Fix for bootstrap: parse space in sbd device correctly. (bsc#1183883) * Fix for bootstrap: get the peer node name correctly. (bsc#1183654) * Update version and author. (bsc#1183689) * Dev: bootstrap: enable configuring qdevice on interactive mode. (jsc#ECO-3567) crmsh-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm crmsh-4.3.0+20210507.bf02d791-5.50.1.src.rpm crmsh-scripts-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm crmsh-test-4.3.0+20210507.bf02d791-5.50.1.noarch.rpm openSUSE-SLE-15.3-2021-2420 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-bootloader fixes the following issues: - Fix crash when bootloader is not managed by yast and security module wants to show cpu mitigation. (bsc#1184968) - Add the os-prober package to the set of packages to install if the package is available and supported on the arch. (bsc#1186369) - Enable linuxefi/initrdefi on x86 only as grub does not understand those commands on other archs. (bsc#1183795) - Fixes for 'arm can boot on uefi'. (bsc#1183795) - arm can boot on uefi. (bsc#1183795) yast2-bootloader-4.3.30-3.5.1.src.rpm yast2-bootloader-4.3.30-3.5.1.x86_64.rpm yast2-bootloader-4.3.30-3.5.1.s390x.rpm yast2-bootloader-4.3.30-3.5.1.ppc64le.rpm yast2-bootloader-4.3.30-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1663 moderate SUSE Updates openSUSE-SLE 15.3 This update for drbd-formula fixes the following issues: - Support different backing device per node. (bsc#1179529) drbd-formula-0.4.2+git.1616116365.1e3ab34-3.6.1.noarch.rpm drbd-formula-0.4.2+git.1616116365.1e3ab34-3.6.1.src.rpm openSUSE-SLE-15.3-2021-1679 moderate SUSE Updates openSUSE-SLE 15.3 This update for ddclient fixes the following issues: - As '/var/run' is deprecated, replaced by '/run' in 'ddclient-tmpfiles.conf' (bsc#1185069) - Systemd expects the PID file to exist as soon as the main process exists. However, it takes quite a while until the pid file is created by the daemon process, so we delay the main process for 1 second before exit()ing. This gets rid of an annoying warning message in "systemctl status". ddclient-3.8.3-3.7.1.noarch.rpm ddclient-3.8.3-3.7.1.src.rpm openSUSE-SLE-15.3-2021-2172 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-matplotlib fixes the following issues: - Fix dependencies to explicit python3-* ones. (bsc#1184340) python-matplotlib-2.2.5-3.3.1.src.rpm python2-matplotlib-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-cairo-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-latex-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-qt5-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-tk-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-web-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-wx-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-cairo-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-latex-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-qt5-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-tk-2.2.5-3.3.1.x86_64.rpm python3-matplotlib-web-2.2.5-3.3.1.x86_64.rpm python2-matplotlib-2.2.5-3.3.1.s390x.rpm python2-matplotlib-cairo-2.2.5-3.3.1.s390x.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.s390x.rpm python2-matplotlib-latex-2.2.5-3.3.1.s390x.rpm python2-matplotlib-qt5-2.2.5-3.3.1.s390x.rpm python2-matplotlib-tk-2.2.5-3.3.1.s390x.rpm python2-matplotlib-web-2.2.5-3.3.1.s390x.rpm python2-matplotlib-wx-2.2.5-3.3.1.s390x.rpm python3-matplotlib-2.2.5-3.3.1.s390x.rpm python3-matplotlib-cairo-2.2.5-3.3.1.s390x.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.s390x.rpm python3-matplotlib-latex-2.2.5-3.3.1.s390x.rpm python3-matplotlib-qt5-2.2.5-3.3.1.s390x.rpm python3-matplotlib-tk-2.2.5-3.3.1.s390x.rpm python3-matplotlib-web-2.2.5-3.3.1.s390x.rpm python2-matplotlib-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-cairo-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-latex-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-qt5-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-tk-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-web-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-wx-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-cairo-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-latex-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-qt5-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-tk-2.2.5-3.3.1.ppc64le.rpm python3-matplotlib-web-2.2.5-3.3.1.ppc64le.rpm python2-matplotlib-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-cairo-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-gtk3-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-latex-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-qt5-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-tk-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-web-2.2.5-3.3.1.aarch64.rpm python2-matplotlib-wx-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-cairo-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-gtk3-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-latex-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-qt5-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-tk-2.2.5-3.3.1.aarch64.rpm python3-matplotlib-web-2.2.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1983 moderate SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issues: - Enabled S3 support for ovmf-x86_64-smm. (bsc#1184938) - Added "acpi-s4" tag to allow libvirt enable hibernation. (bsc#1182886) ovmf-202008-10.5.1.src.rpm ovmf-202008-10.5.1.x86_64.rpm ovmf-tools-202008-10.5.1.x86_64.rpm qemu-ovmf-ia32-202008-10.5.1.noarch.rpm qemu-ovmf-x86_64-202008-10.5.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-10.5.1.x86_64.rpm qemu-uefi-aarch32-202008-10.5.1.noarch.rpm qemu-uefi-aarch64-202008-10.5.1.noarch.rpm ovmf-202008-10.5.1.aarch64.rpm ovmf-tools-202008-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1662 moderate SUSE Updates openSUSE-SLE 15.3 This update for saphanabootstrap-formula fixes the following issues: - Fix the HANA sidadm usage to transform to lowercase some states managing the sudoers file in ha_cluster.sls state file. (bsc#1185090) saphanabootstrap-formula-0.7.1+git.1619008686.8600866-3.11.1.noarch.rpm saphanabootstrap-formula-0.7.1+git.1619008686.8600866-3.11.1.src.rpm openSUSE-SLE-15.3-2021-3188 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapnwbootstrap-formula fixes the following issues: Update to version 0.6.4+git.1621842068.a86c37c: - Set the default empty dictionary for 'virtual_addresses'. (bsc#1185627) - This also ensures that a dictionary is obtained if the value is None (needed by SUSE Manager) - Fix issue when 'azure-lb' resource for 'ASCS/ERS' is not added in the corresponding Resource Group (bsc#1186236) - Set the virtual ip addresses as permanent, except for HA scenarios, to have them even after a reboot of the machine. (bsc#1185093) - Give the option to mount '/sapmnt' folder locally without using a 'NFS' share. - Make '/sapmnt' path configurable using 'sapmnt_path' pillar variable - Update PAS and AAS templates to use HANA sid and instance number to create the configuration file - Fix error about missing instance installation requisite when monitoring is enabled. (bsc#1181541) sapnwbootstrap-formula-0.6.4+git.1621842068.a86c37c-10.1.noarch.rpm sapnwbootstrap-formula-0.6.4+git.1621842068.a86c37c-10.1.src.rpm openSUSE-SLE-15.3-2021-1826 important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25214: Fixed a broken inbound incremental zone update (IXFR) which could have caused named to terminate unexpectedly (bsc#1185345). - CVE-2021-25215: Fixed an assertion check which could have failed while answering queries for DNAME records that required the DNAME to be processed to resolve itself (bsc#1185345). - Switched from /var/run to /run (bsc#1185073) - Hardening: Compiled binary with PIE flags to make it position independent bind-9.16.6-22.7.1.src.rpm bind-9.16.6-22.7.1.x86_64.rpm bind-chrootenv-9.16.6-22.7.1.x86_64.rpm bind-devel-9.16.6-22.7.1.x86_64.rpm bind-doc-9.16.6-22.7.1.noarch.rpm bind-utils-9.16.6-22.7.1.x86_64.rpm libbind9-1600-9.16.6-22.7.1.x86_64.rpm libdns1605-9.16.6-22.7.1.x86_64.rpm libirs-devel-9.16.6-22.7.1.x86_64.rpm libirs1601-9.16.6-22.7.1.x86_64.rpm libisc1606-9.16.6-22.7.1.x86_64.rpm libisccc1600-9.16.6-22.7.1.x86_64.rpm libisccfg1600-9.16.6-22.7.1.x86_64.rpm libns1604-9.16.6-22.7.1.x86_64.rpm python3-bind-9.16.6-22.7.1.noarch.rpm bind-9.16.6-22.7.1.s390x.rpm bind-chrootenv-9.16.6-22.7.1.s390x.rpm bind-devel-9.16.6-22.7.1.s390x.rpm bind-utils-9.16.6-22.7.1.s390x.rpm libbind9-1600-9.16.6-22.7.1.s390x.rpm libdns1605-9.16.6-22.7.1.s390x.rpm libirs-devel-9.16.6-22.7.1.s390x.rpm libirs1601-9.16.6-22.7.1.s390x.rpm libisc1606-9.16.6-22.7.1.s390x.rpm libisccc1600-9.16.6-22.7.1.s390x.rpm libisccfg1600-9.16.6-22.7.1.s390x.rpm libns1604-9.16.6-22.7.1.s390x.rpm bind-9.16.6-22.7.1.ppc64le.rpm bind-chrootenv-9.16.6-22.7.1.ppc64le.rpm bind-devel-9.16.6-22.7.1.ppc64le.rpm bind-utils-9.16.6-22.7.1.ppc64le.rpm libbind9-1600-9.16.6-22.7.1.ppc64le.rpm libdns1605-9.16.6-22.7.1.ppc64le.rpm libirs-devel-9.16.6-22.7.1.ppc64le.rpm libirs1601-9.16.6-22.7.1.ppc64le.rpm libisc1606-9.16.6-22.7.1.ppc64le.rpm libisccc1600-9.16.6-22.7.1.ppc64le.rpm libisccfg1600-9.16.6-22.7.1.ppc64le.rpm libns1604-9.16.6-22.7.1.ppc64le.rpm bind-9.16.6-22.7.1.aarch64.rpm bind-chrootenv-9.16.6-22.7.1.aarch64.rpm bind-devel-9.16.6-22.7.1.aarch64.rpm bind-utils-9.16.6-22.7.1.aarch64.rpm libbind9-1600-9.16.6-22.7.1.aarch64.rpm libdns1605-9.16.6-22.7.1.aarch64.rpm libirs-devel-9.16.6-22.7.1.aarch64.rpm libirs1601-9.16.6-22.7.1.aarch64.rpm libisc1606-9.16.6-22.7.1.aarch64.rpm libisccc1600-9.16.6-22.7.1.aarch64.rpm libisccfg1600-9.16.6-22.7.1.aarch64.rpm libns1604-9.16.6-22.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3187 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - CVE-2021-20277: Fixed an out of bounds read in ldb_handler_fold (bsc#1183574). - CVE-2021-20254: Fixed a buffer overrun in sids_to_unixids() (bsc#1184677). - CVE-2020-27840: Fixed an unauthenticated remote heap corruption via bad DNs (bsc#1183572). - Spec file fixes around systemd and requires (bsc#1182830) - Fix dependency problem upgrading from libndr0 to libndr1 (bsc#1189875) - Fix dependency problem upgrading from libsmbldap0 to libsmbldap2 (bsc#1189875) ctdb-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-binding0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr1-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi-devel-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy0-python3-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap2-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient0-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.src.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ad-dc-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-ceph-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-client-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-doc-4.13.6+git.211.555d60b24ba-3.7.1.noarch.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-python3-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-winbind-32bit-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.x86_64.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.s390x.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.ppc64le.rpm ctdb-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm ctdb-pcp-pmda-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm ctdb-tests-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-binding0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-samr-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc-samr0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libdcerpc0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-krb5pac-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-krb5pac0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-nbt-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-nbt0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-standard-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr-standard0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libndr1-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libnetapi-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libnetapi0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-credentials-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-credentials0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-errors-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-errors0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-hostconfig-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-hostconfig0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-passdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-passdb0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy-python3-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-policy0-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamba-util0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamdb-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsamdb0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbclient0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbconf-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbconf0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbldap-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libsmbldap2-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libtevent-util-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libtevent-util0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libwbclient-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm libwbclient0-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-ad-dc-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-ceph-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-client-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-core-devel-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-dsdb-modules-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-libs-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-libs-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-python3-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-test-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm samba-winbind-4.13.6+git.211.555d60b24ba-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3665 low SUSE Updates openSUSE-SLE 15.3 This update for drbd-utils fixes the following issues: - make all binaries position independent (basc#1185132). - Upgrade to 9.0.18 (bsc#1189363) * build: remove rpm related targets * drbdsetup,v84: fix minor compile warnings * systemd: resource specific activation * systemd: drbd-reactor promoter templates * doc: fix maximum ping timeout * doc: add man pages for the systemd templates * drbdadm,v9: fix dstate for diskless volumes * build/release: use lbvers.py * drbd-attr: don't leak fd to drbdsetup * doc: various fixes and additions * drbdsetup,events2,v9: add backing_device * build,Debian: rm dh-systemd dependency * drbdsetup,events2,v9: fix --poll regression * drbdmeta: fix bug with ALs with small final extents * build,Debian: rm mail recommends * drbdsetup,events2,v9: allow --poll without --now * drbdsetup,invalidate: allow bitmap based resync after verify * drbdadm,sh-ll-dev: change output to "none" if diskless * drbdadm,v9: allow set-gi in single node clusters * drbsetup,events2,v9: diff(erential) output * drbsetup,events2,v9: add --full output * v9: allow resource rename, also in drbdmon * drbdadm,v9: allow c-max-rate to be disabled * New drbd-attr Pacemaker RA * events2: handle mixed initial state and multicast events * events2: fix regression to always print resync done - Prepare '/usr' merge. (bsc#1029961) drbd-utils-9.18.0-4.7.2.src.rpm drbd-utils-9.18.0-4.7.2.x86_64.rpm drbd-utils-9.18.0-4.7.2.s390x.rpm drbd-utils-9.18.0-4.7.2.ppc64le.rpm drbd-utils-9.18.0-4.7.2.aarch64.rpm openSUSE-SLE-15.3-2021-1954 important SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.6-ce (bsc#1184768, bsc#1182947, bsc#1181594) * Switch version to use -ce suffix rather than _ce to avoid confusing other tools (bsc#1182476). * CVE-2021-21284: Fixed a potential privilege escalation when the root user in the remapped namespace has access to the host filesystem (bsc#1181732) * CVE-2021-21285: Fixed an issue where pulling a malformed Docker image manifest crashes the dockerd daemon (bsc#1181730). * btrfs quotas being removed by Docker regularly (bsc#1183855, bsc#1175081) runc was updated to v1.0.0~rc93 (bsc#1182451, bsc#1175821 bsc#1184962). * Use the upstream runc package (bsc#1181641, bsc#1181677, bsc#1175821). * Fixed /dev/null is not available (bsc#1168481). * CVE-2021-30465: Fixed a symlink-exchange attack vulnarability (bsc#1185405). containerd was updated to v1.4.4 * CVE-2021-21334: Fixed a potential information leak through environment variables (bsc#1183397). * Handle a requirement from docker (bsc#1181594). Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.4.4-5.32.1.src.rpm containerd-1.4.4-5.32.1.x86_64.rpm containerd-ctr-1.4.4-5.32.1.x86_64.rpm docker-20.10.6_ce-6.49.3.src.rpm docker-20.10.6_ce-6.49.3.x86_64.rpm docker-bash-completion-20.10.6_ce-6.49.3.noarch.rpm docker-fish-completion-20.10.6_ce-6.49.3.noarch.rpm docker-zsh-completion-20.10.6_ce-6.49.3.noarch.rpm runc-1.0.0~rc93-1.14.2.src.rpm runc-1.0.0~rc93-1.14.2.x86_64.rpm containerd-1.4.4-5.32.1.s390x.rpm containerd-ctr-1.4.4-5.32.1.s390x.rpm docker-20.10.6_ce-6.49.3.s390x.rpm runc-1.0.0~rc93-1.14.2.s390x.rpm containerd-1.4.4-5.32.1.ppc64le.rpm containerd-ctr-1.4.4-5.32.1.ppc64le.rpm docker-20.10.6_ce-6.49.3.ppc64le.rpm runc-1.0.0~rc93-1.14.2.ppc64le.rpm containerd-1.4.4-5.32.1.aarch64.rpm containerd-ctr-1.4.4-5.32.1.aarch64.rpm docker-20.10.6_ce-6.49.3.aarch64.rpm runc-1.0.0~rc93-1.14.2.aarch64.rpm openSUSE-SLE-15.3-2021-3044 critical SUSE Updates openSUSE-SLE 15.3 This update for ghostscript fixes the following issues: Security issue fixed: - CVE-2021-3781: Fixed a trivial -dSAFER bypass command injection (bsc#1190381) Also a hardening fix was added: - Link as position independent executable (bsc#1184123) ghostscript-9.52-155.1.src.rpm ghostscript-9.52-155.1.x86_64.rpm ghostscript-devel-9.52-155.1.x86_64.rpm ghostscript-x11-9.52-155.1.x86_64.rpm libspectre-0.2.8-3.12.1.src.rpm libspectre-devel-0.2.8-3.12.1.x86_64.rpm libspectre1-0.2.8-3.12.1.x86_64.rpm ghostscript-9.52-155.1.s390x.rpm ghostscript-devel-9.52-155.1.s390x.rpm ghostscript-x11-9.52-155.1.s390x.rpm libspectre-devel-0.2.8-3.12.1.s390x.rpm libspectre1-0.2.8-3.12.1.s390x.rpm ghostscript-9.52-155.1.ppc64le.rpm ghostscript-devel-9.52-155.1.ppc64le.rpm ghostscript-x11-9.52-155.1.ppc64le.rpm libspectre-devel-0.2.8-3.12.1.ppc64le.rpm libspectre1-0.2.8-3.12.1.ppc64le.rpm ghostscript-9.52-155.1.aarch64.rpm ghostscript-devel-9.52-155.1.aarch64.rpm ghostscript-x11-9.52-155.1.aarch64.rpm libspectre-devel-0.2.8-3.12.1.aarch64.rpm libspectre1-0.2.8-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2107 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-node_exporter fixes the following issues: Update from version 1.0.1 to version 1.1.2 - Bug fixes: - Do not include sources (bsc#1151558) - Handle errors from disabled `Pressure Stall Information (PSI)` subsystem - Sanitize strings from `/sys/class/power_supply` - Silence missing `netclass` errors - Fix `ineffassign` issue - Demote some warning to `Debug` level - `filesystem_freebsd`: Fix label values - Fix various `procfs` parsing errors - Handle no data from the power supply class - `udp_queues_linux.go`: change `upd` to `udp` in two error strings - Fix `node_scrape_collector_success` behavior - Fix `NodeRAIDDegraded` to not use a string rule expressions - Fix `node_md_disks` state label from fail to failed - Handle `EPERM` for syscall in timex collector - `bcache`: fix typo in a metric name - Fix XFS read/write stats - Enhancements: - Improve filter flag names - Add `btrfs` and `powersupplyclass` to list of exporters enabled by default - Add more `InfiniBand` counters - Add a flag to aggregate `ipvs` metrics to avoid high cardinality metrics - Add `backlog/current` queue length to `qdisc` collector - Include `TCP OutRsts` in `netstat` metrics - Add the `pool size` to entropy collector - Remove `CGO` dependencies for OpenBSD amd64 - `bcache`: add `writeback_rate_debug` statistics - Add `check state` for `mdadm` arrays via `node_md_state metric` - Expose `XFS inode` statistics - Expose `zfs zpool` state - Add the ability to pass `collector.supervisord.url` via `SUPERVISORD_URL` environment variable - Features: - Add fiber channel collector - Expose cpu bugs and flags as info metrics. - Add `network_route` collector - Add `zoneinfo` collector golang-github-prometheus-node_exporter-1.1.2-3.9.3.src.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.x86_64.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.s390x.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.ppc64le.rpm golang-github-prometheus-node_exporter-1.1.2-3.9.3.aarch64.rpm openSUSE-SLE-15.3-2021-1984 low SUSE Updates openSUSE-SLE 15.3 This update for sbd fixes the following issues: - Deprecated path "/var/run/" used in systemd-services (bsc#1185182) sbd-1.4.2+20210305.926b554-3.3.1.src.rpm sbd-1.4.2+20210305.926b554-3.3.1.x86_64.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.x86_64.rpm sbd-1.4.2+20210305.926b554-3.3.1.s390x.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.s390x.rpm sbd-1.4.2+20210305.926b554-3.3.1.ppc64le.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.ppc64le.rpm sbd-1.4.2+20210305.926b554-3.3.1.aarch64.rpm sbd-devel-1.4.2+20210305.926b554-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1877 low SUSE Updates openSUSE-SLE 15.3 This update for gpm fixes the following issues: - Removed unnecessary StandardOutput override in the unit definition file. (bsc#1182147) - Fixed a compilation issue when using -fno-common during compilation (bsc#1160873) gpm-1.20.7-7.3.1.src.rpm gpm-1.20.7-7.3.1.x86_64.rpm gpm-devel-1.20.7-7.3.1.x86_64.rpm libgpm2-1.20.7-7.3.1.x86_64.rpm libgpm2-32bit-1.20.7-7.3.1.x86_64.rpm gpm-1.20.7-7.3.1.s390x.rpm gpm-devel-1.20.7-7.3.1.s390x.rpm libgpm2-1.20.7-7.3.1.s390x.rpm gpm-1.20.7-7.3.1.ppc64le.rpm gpm-devel-1.20.7-7.3.1.ppc64le.rpm libgpm2-1.20.7-7.3.1.ppc64le.rpm gpm-1.20.7-7.3.1.aarch64.rpm gpm-devel-1.20.7-7.3.1.aarch64.rpm libgpm2-1.20.7-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1852 low SUSE Updates openSUSE-SLE 15.3 This update for libstoragemgmt fixes the following issues: - Moved from /var/run to /run because of deprecation warnings (bsc#1185067) libstoragemgmt-1.8.5-3.3.1.src.rpm libstoragemgmt-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-arcconf-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-devel-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-hpsa-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-local-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-megaraid-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-netapp-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-nfs-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-nstor-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-smis-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-targetd-plugin-1.8.5-3.3.1.noarch.rpm libstoragemgmt-udev-1.8.5-3.3.1.x86_64.rpm libstoragemgmt1-1.8.5-3.3.1.x86_64.rpm python3-libstoragemgmt-1.8.5-3.3.1.noarch.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.x86_64.rpm libstoragemgmt-1.8.5-3.3.1.s390x.rpm libstoragemgmt-devel-1.8.5-3.3.1.s390x.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.s390x.rpm libstoragemgmt-udev-1.8.5-3.3.1.s390x.rpm libstoragemgmt1-1.8.5-3.3.1.s390x.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.s390x.rpm libstoragemgmt-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-devel-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-udev-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt1-1.8.5-3.3.1.ppc64le.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.ppc64le.rpm libstoragemgmt-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-devel-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-nfs-plugin-clibs-1.8.5-3.3.1.aarch64.rpm libstoragemgmt-udev-1.8.5-3.3.1.aarch64.rpm libstoragemgmt1-1.8.5-3.3.1.aarch64.rpm python3-libstoragemgmt-clibs-1.8.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1986 low SUSE Updates openSUSE-SLE 15.3 This update for mcelog fixes the following issues: - Removed the deprecated "StandardOutput=syslog" option from the systemd unit file in order to fix a warning from systemd (bsc#1185151) mcelog-175-3.3.1.src.rpm mcelog-175-3.3.1.x86_64.rpm openSUSE-SLE-15.3-2021-1853 moderate SUSE Updates openSUSE-SLE 15.3 This update for exfatprogs fixes the following issue: - Make `set_bit_le()` 64-bit compatible. (bsc#1184882) bitmap data is not written normally in bitmap location s390x (64bit big endian system) and this fix makes it 64-bit compatible. exfatprogs-1.0.4-3.3.1.src.rpm exfatprogs-1.0.4-3.3.1.x86_64.rpm exfatprogs-1.0.4-3.3.1.s390x.rpm exfatprogs-1.0.4-3.3.1.ppc64le.rpm exfatprogs-1.0.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1974 moderate SUSE Updates openSUSE-SLE 15.3 This update for kexec-tools fixes the following issue: - Hardening: link as Position-Independent Executable PIE (bsc#1185020). kexec-tools-2.0.20-10.3.1.src.rpm kexec-tools-2.0.20-10.3.1.x86_64.rpm kexec-tools-2.0.20-10.3.1.s390x.rpm kexec-tools-2.0.20-10.3.1.ppc64le.rpm kexec-tools-2.0.20-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1664 moderate SUSE Updates openSUSE-SLE 15.3 This update for libass fixes the following issues: - CVE-2020-24994: Fixed a stack overflow in the parse_tag (bsc#1184153). libass-0.14.0-3.6.1.src.rpm libass-devel-0.14.0-3.6.1.x86_64.rpm libass9-0.14.0-3.6.1.x86_64.rpm libass9-32bit-0.14.0-3.6.1.x86_64.rpm libass-devel-0.14.0-3.6.1.s390x.rpm libass9-0.14.0-3.6.1.s390x.rpm libass-devel-0.14.0-3.6.1.ppc64le.rpm libass9-0.14.0-3.6.1.ppc64le.rpm libass-devel-0.14.0-3.6.1.aarch64.rpm libass9-0.14.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2275 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-country fixes the following issues: - Fix wrong keyboard layout codes. (bsc#1181952) yast2-country-4.3.14-3.3.1.src.rpm yast2-country-4.3.14-3.3.1.x86_64.rpm yast2-country-data-4.3.14-3.3.1.x86_64.rpm yast2-country-4.3.14-3.3.1.s390x.rpm yast2-country-data-4.3.14-3.3.1.s390x.rpm yast2-country-4.3.14-3.3.1.ppc64le.rpm yast2-country-data-4.3.14-3.3.1.ppc64le.rpm yast2-country-4.3.14-3.3.1.aarch64.rpm yast2-country-data-4.3.14-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1833 moderate SUSE Updates openSUSE-SLE 15.3 This update for zypper fixes the following issues: zypper was upgraded to 1.14.44: - man page: Recommend the needs-rebooting command to test whether a system reboot is suggested. - patch: Let a patch's reboot-needed flag overrule included packages. (bsc#1183268) - Quickfix setting "openSUSE_Tumbleweed" as default platform for "MicroOS". (bsc#1153687) - Protect against strict/relaxed user umask via sudo. (bsc#1183589) - xml summary: Add solvables repository alias. (bsc#1182372) libzypp was upgraded from version 17.25.8 to version 17.25.10 - Properly handle permission denied when providing optional files. (bsc#1185239) - Fix service detection with `cgroupv2`. (bsc#1184997) - Add missing includes for GCC 11. (bsc#1181874) - Fix unsafe usage of static in media verifier. - `Solver`: Avoid segfault if no system is loaded. (bsc#1183628) - `MediaVerifier`: Relax media set verification in case of a single not-volatile medium. (bsc#1180851) - Do no cleanup in custom cache dirs. (bsc#1182936) - `ZConfig`: let `pubkeyCachePath` follow `repoCachePath`. libzypp-17.25.10-6.1.src.rpm True libzypp-17.25.10-6.1.x86_64.rpm True libzypp-devel-17.25.10-6.1.x86_64.rpm True libzypp-devel-doc-17.25.10-6.1.x86_64.rpm True zypper-1.14.44-7.1.src.rpm True zypper-1.14.44-7.1.x86_64.rpm True zypper-aptitude-1.14.44-7.1.noarch.rpm True zypper-log-1.14.44-7.1.noarch.rpm True zypper-needs-restarting-1.14.44-7.1.noarch.rpm True libzypp-17.25.10-6.1.s390x.rpm True libzypp-devel-17.25.10-6.1.s390x.rpm True libzypp-devel-doc-17.25.10-6.1.s390x.rpm True zypper-1.14.44-7.1.s390x.rpm True libzypp-17.25.10-6.1.ppc64le.rpm True libzypp-devel-17.25.10-6.1.ppc64le.rpm True libzypp-devel-doc-17.25.10-6.1.ppc64le.rpm True zypper-1.14.44-7.1.ppc64le.rpm True libzypp-17.25.10-6.1.aarch64.rpm True libzypp-devel-17.25.10-6.1.aarch64.rpm True libzypp-devel-doc-17.25.10-6.1.aarch64.rpm True zypper-1.14.44-7.1.aarch64.rpm True openSUSE-SLE-15.3-2021-1806 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-httplib2 fixes the following issues: - Update to version 0.19.0 (bsc#1182053). - CVE-2021-21240: Fixed regular expression denial of service via malicious header (bsc#1182053). - CVE-2020-11078: Fixed unescaped part of uri where an attacker could change request headers and body (bsc#1182053). python-httplib2-0.19.0-3.3.1.src.rpm python2-httplib2-0.19.0-3.3.1.noarch.rpm python3-httplib2-0.19.0-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-1863 important SUSE Updates openSUSE-SLE 15.3 This update for umoci fixes the following issues: Update to v0.4.7 (bsc#1184147). - CVE-2021-29136: Fixed overwriting of host files via malicious layer (bsc#1184147). umoci-0.4.7-3.12.1.src.rpm umoci-0.4.7-3.12.1.x86_64.rpm umoci-0.4.7-3.12.1.s390x.rpm umoci-0.4.7-3.12.1.ppc64le.rpm umoci-0.4.7-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1942 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - Switch method of splitting off hw-s390x-virtio-gpu-ccw.so as a module to what was accepted upstream (bsc#1181103) - Fix OOB access in sdhci interface (CVE-2020-17380, bsc#1175144, CVE-2020-25085, bsc#1176681, CVE-2021-3409, bsc#1182282) - Fix potential privilege escalation in virtiofsd tool (CVE-2021-20263, bsc#1183373) - Fix OOB access (stack overflow) in rtl8139 NIC emulation (CVE-2021-3416, bsc#1182968) - Fix heap overflow in MSIx emulation (CVE-2020-27821, bsc#1179686) - Fix package scripts to not use hard coded paths for temporary working directories and log files (bsc#1182425) - QEMU BIOS fails to read stage2 loader on s390x (bsc#1186290) - For the record, these issues are fixed in this package already. Most are alternate references to previously mentioned issues: (CVE-2019-15890, bsc#1149813, CVE-2020-8608, bsc#1163019, CVE-2020-14364, bsc#1175534, CVE-2020-25707, bsc#1178683, CVE-2020-25723, bsc#1178935, CVE-2020-29130, bsc#1179477, CVE-2020-29129, bsc#1179484, CVE-2021-3419, bsc#1182975) qemu-5.2.0-17.1.src.rpm qemu-5.2.0-17.1.x86_64.rpm qemu-arm-5.2.0-17.1.x86_64.rpm qemu-audio-alsa-5.2.0-17.1.x86_64.rpm qemu-audio-pa-5.2.0-17.1.x86_64.rpm qemu-audio-spice-5.2.0-17.1.x86_64.rpm qemu-block-curl-5.2.0-17.1.x86_64.rpm qemu-block-dmg-5.2.0-17.1.x86_64.rpm qemu-block-gluster-5.2.0-17.1.x86_64.rpm qemu-block-iscsi-5.2.0-17.1.x86_64.rpm qemu-block-nfs-5.2.0-17.1.x86_64.rpm qemu-block-rbd-5.2.0-17.1.x86_64.rpm qemu-block-ssh-5.2.0-17.1.x86_64.rpm qemu-chardev-baum-5.2.0-17.1.x86_64.rpm qemu-chardev-spice-5.2.0-17.1.x86_64.rpm qemu-extra-5.2.0-17.1.x86_64.rpm qemu-guest-agent-5.2.0-17.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-17.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-17.1.x86_64.rpm qemu-ipxe-1.0.0+-17.1.noarch.rpm qemu-ivshmem-tools-5.2.0-17.1.x86_64.rpm qemu-ksm-5.2.0-17.1.x86_64.rpm qemu-kvm-5.2.0-17.1.x86_64.rpm qemu-lang-5.2.0-17.1.x86_64.rpm qemu-microvm-5.2.0-17.1.noarch.rpm qemu-ppc-5.2.0-17.1.x86_64.rpm qemu-s390x-5.2.0-17.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-17.1.noarch.rpm qemu-sgabios-8-17.1.noarch.rpm qemu-skiboot-5.2.0-17.1.noarch.rpm qemu-tools-5.2.0-17.1.x86_64.rpm qemu-ui-curses-5.2.0-17.1.x86_64.rpm qemu-ui-gtk-5.2.0-17.1.x86_64.rpm qemu-ui-opengl-5.2.0-17.1.x86_64.rpm qemu-ui-spice-app-5.2.0-17.1.x86_64.rpm qemu-ui-spice-core-5.2.0-17.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-17.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-17.1.x86_64.rpm qemu-x86-5.2.0-17.1.x86_64.rpm qemu-5.2.0-17.1.s390x.rpm qemu-arm-5.2.0-17.1.s390x.rpm qemu-audio-alsa-5.2.0-17.1.s390x.rpm qemu-audio-pa-5.2.0-17.1.s390x.rpm qemu-audio-spice-5.2.0-17.1.s390x.rpm qemu-block-curl-5.2.0-17.1.s390x.rpm qemu-block-dmg-5.2.0-17.1.s390x.rpm qemu-block-gluster-5.2.0-17.1.s390x.rpm qemu-block-iscsi-5.2.0-17.1.s390x.rpm qemu-block-nfs-5.2.0-17.1.s390x.rpm qemu-block-rbd-5.2.0-17.1.s390x.rpm qemu-block-ssh-5.2.0-17.1.s390x.rpm qemu-chardev-baum-5.2.0-17.1.s390x.rpm qemu-chardev-spice-5.2.0-17.1.s390x.rpm qemu-extra-5.2.0-17.1.s390x.rpm qemu-guest-agent-5.2.0-17.1.s390x.rpm qemu-hw-display-qxl-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-17.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-17.1.s390x.rpm qemu-ivshmem-tools-5.2.0-17.1.s390x.rpm qemu-ksm-5.2.0-17.1.s390x.rpm qemu-kvm-5.2.0-17.1.s390x.rpm qemu-lang-5.2.0-17.1.s390x.rpm qemu-ppc-5.2.0-17.1.s390x.rpm qemu-s390x-5.2.0-17.1.s390x.rpm qemu-tools-5.2.0-17.1.s390x.rpm qemu-ui-curses-5.2.0-17.1.s390x.rpm qemu-ui-gtk-5.2.0-17.1.s390x.rpm qemu-ui-opengl-5.2.0-17.1.s390x.rpm qemu-ui-spice-app-5.2.0-17.1.s390x.rpm qemu-ui-spice-core-5.2.0-17.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-17.1.s390x.rpm qemu-x86-5.2.0-17.1.s390x.rpm qemu-5.2.0-17.1.ppc64le.rpm qemu-arm-5.2.0-17.1.ppc64le.rpm qemu-audio-alsa-5.2.0-17.1.ppc64le.rpm qemu-audio-pa-5.2.0-17.1.ppc64le.rpm qemu-audio-spice-5.2.0-17.1.ppc64le.rpm qemu-block-curl-5.2.0-17.1.ppc64le.rpm qemu-block-dmg-5.2.0-17.1.ppc64le.rpm qemu-block-gluster-5.2.0-17.1.ppc64le.rpm qemu-block-iscsi-5.2.0-17.1.ppc64le.rpm qemu-block-nfs-5.2.0-17.1.ppc64le.rpm qemu-block-rbd-5.2.0-17.1.ppc64le.rpm qemu-block-ssh-5.2.0-17.1.ppc64le.rpm qemu-chardev-baum-5.2.0-17.1.ppc64le.rpm qemu-chardev-spice-5.2.0-17.1.ppc64le.rpm qemu-extra-5.2.0-17.1.ppc64le.rpm qemu-guest-agent-5.2.0-17.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-17.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-17.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-17.1.ppc64le.rpm qemu-ksm-5.2.0-17.1.ppc64le.rpm qemu-lang-5.2.0-17.1.ppc64le.rpm qemu-ppc-5.2.0-17.1.ppc64le.rpm qemu-s390x-5.2.0-17.1.ppc64le.rpm qemu-tools-5.2.0-17.1.ppc64le.rpm qemu-ui-curses-5.2.0-17.1.ppc64le.rpm qemu-ui-gtk-5.2.0-17.1.ppc64le.rpm qemu-ui-opengl-5.2.0-17.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-17.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-17.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-17.1.ppc64le.rpm qemu-x86-5.2.0-17.1.ppc64le.rpm qemu-5.2.0-17.1.aarch64.rpm qemu-arm-5.2.0-17.1.aarch64.rpm qemu-audio-alsa-5.2.0-17.1.aarch64.rpm qemu-audio-pa-5.2.0-17.1.aarch64.rpm qemu-audio-spice-5.2.0-17.1.aarch64.rpm qemu-block-curl-5.2.0-17.1.aarch64.rpm qemu-block-dmg-5.2.0-17.1.aarch64.rpm qemu-block-gluster-5.2.0-17.1.aarch64.rpm qemu-block-iscsi-5.2.0-17.1.aarch64.rpm qemu-block-nfs-5.2.0-17.1.aarch64.rpm qemu-block-rbd-5.2.0-17.1.aarch64.rpm qemu-block-ssh-5.2.0-17.1.aarch64.rpm qemu-chardev-baum-5.2.0-17.1.aarch64.rpm qemu-chardev-spice-5.2.0-17.1.aarch64.rpm qemu-extra-5.2.0-17.1.aarch64.rpm qemu-guest-agent-5.2.0-17.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-17.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-17.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-17.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-17.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-17.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-17.1.aarch64.rpm qemu-ksm-5.2.0-17.1.aarch64.rpm qemu-lang-5.2.0-17.1.aarch64.rpm qemu-ppc-5.2.0-17.1.aarch64.rpm qemu-s390x-5.2.0-17.1.aarch64.rpm qemu-tools-5.2.0-17.1.aarch64.rpm qemu-ui-curses-5.2.0-17.1.aarch64.rpm qemu-ui-gtk-5.2.0-17.1.aarch64.rpm qemu-ui-opengl-5.2.0-17.1.aarch64.rpm qemu-ui-spice-app-5.2.0-17.1.aarch64.rpm qemu-ui-spice-core-5.2.0-17.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-17.1.aarch64.rpm qemu-x86-5.2.0-17.1.aarch64.rpm openSUSE-SLE-15.3-2021-1859 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-py fixes the following issues: - CVE-2020-29651: Fixed regular expression denial of service in svnwc.py (bsc#1179805, bsc#1184505). python-py-1.8.1-5.6.1.src.rpm python2-py-1.8.1-5.6.1.noarch.rpm python3-py-1.8.1-5.6.1.noarch.rpm openSUSE-SLE-15.3-2021-2817 moderate SUSE Updates openSUSE-SLE 15.3 This patch updates the Python AWS SDK stack in SLE 15: General: # aws-cli - Version updated to upstream release v1.19.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-boto3 - Version updated to upstream release 1.17.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-botocore - Version updated to upstream release 1.20.9 For a detailed list of all changes, please refer to the changelog file of this package. # python-urllib3 - Version updated to upstream release 1.25.10 For a detailed list of all changes, please refer to the changelog file of this package. # python-service_identity - Added this new package to resolve runtime dependencies for other packages. Version: 18.1.0 # python-trustme - Added this new package to resolve runtime dependencies for other packages. Version: 0.6.0 Security fixes: # python-urllib3: - CVE-2020-26137: urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method, as demonstrated by inserting CR and LF control characters in the first argument of putrequest() (bsc#1177120) aws-cli-1.19.9-26.1.noarch.rpm aws-cli-1.19.9-26.1.src.rpm python-asn1crypto-0.24.0-3.2.1.src.rpm python-boto3-1.17.9-19.1.src.rpm python-botocore-1.20.9-33.1.src.rpm python-cffi-1.13.2-3.2.5.src.rpm python-cryptography-2.8-10.1.src.rpm python-pyasn1-0.4.2-3.2.1.src.rpm python-pycparser-2.17-3.2.1.src.rpm python-urllib3-1.25.10-9.14.1.src.rpm python2-asn1crypto-0.24.0-3.2.1.noarch.rpm python2-boto3-1.17.9-19.1.noarch.rpm python2-botocore-1.20.9-33.1.noarch.rpm python2-cffi-1.13.2-3.2.5.x86_64.rpm python2-cryptography-2.8-10.1.x86_64.rpm python2-pyasn1-0.4.2-3.2.1.noarch.rpm python2-pycparser-2.17-3.2.1.noarch.rpm python2-urllib3-1.25.10-9.14.1.noarch.rpm python3-asn1crypto-0.24.0-3.2.1.noarch.rpm python3-boto3-1.17.9-19.1.noarch.rpm python3-botocore-1.20.9-33.1.noarch.rpm python3-cffi-1.13.2-3.2.5.x86_64.rpm python3-cryptography-2.8-10.1.x86_64.rpm python3-pyasn1-0.4.2-3.2.1.noarch.rpm python3-pycparser-2.17-3.2.1.noarch.rpm python2-cffi-1.13.2-3.2.5.s390x.rpm python2-cryptography-2.8-10.1.s390x.rpm python3-cffi-1.13.2-3.2.5.s390x.rpm python3-cryptography-2.8-10.1.s390x.rpm python2-cffi-1.13.2-3.2.5.ppc64le.rpm python2-cryptography-2.8-10.1.ppc64le.rpm python3-cffi-1.13.2-3.2.5.ppc64le.rpm python3-cryptography-2.8-10.1.ppc64le.rpm python2-cffi-1.13.2-3.2.5.aarch64.rpm python2-cryptography-2.8-10.1.aarch64.rpm python3-cffi-1.13.2-3.2.5.aarch64.rpm python3-cryptography-2.8-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-1526 important SUSE Updates openSUSE-SLE 15.3 This update for bash fixes the following issues: - Fixed a segmentation fault that used to occur when bash read a history file that was malformed in a very specific way. (bsc#1183064) bash-4.4-19.3.1.src.rpm bash-4.4-19.3.1.x86_64.rpm bash-devel-4.4-19.3.1.x86_64.rpm bash-doc-4.4-19.3.1.noarch.rpm bash-lang-4.4-19.3.1.noarch.rpm bash-loadables-4.4-19.3.1.x86_64.rpm libreadline7-32bit-7.0-19.3.1.x86_64.rpm libreadline7-7.0-19.3.1.x86_64.rpm readline-devel-32bit-7.0-19.3.1.x86_64.rpm readline-devel-7.0-19.3.1.x86_64.rpm readline-devel-static-7.0-19.3.1.x86_64.rpm readline-doc-7.0-19.3.1.noarch.rpm bash-4.4-19.3.1.s390x.rpm bash-devel-4.4-19.3.1.s390x.rpm bash-loadables-4.4-19.3.1.s390x.rpm libreadline7-7.0-19.3.1.s390x.rpm readline-devel-7.0-19.3.1.s390x.rpm readline-devel-static-7.0-19.3.1.s390x.rpm bash-4.4-19.3.1.ppc64le.rpm bash-devel-4.4-19.3.1.ppc64le.rpm bash-loadables-4.4-19.3.1.ppc64le.rpm libreadline7-7.0-19.3.1.ppc64le.rpm readline-devel-7.0-19.3.1.ppc64le.rpm readline-devel-static-7.0-19.3.1.ppc64le.rpm bash-4.4-19.3.1.aarch64.rpm bash-devel-4.4-19.3.1.aarch64.rpm bash-loadables-4.4-19.3.1.aarch64.rpm libreadline7-7.0-19.3.1.aarch64.rpm readline-devel-7.0-19.3.1.aarch64.rpm readline-devel-static-7.0-19.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1861 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc10 fixes the following issues: - Disable nvptx offloading for aarch64 again since it doesn't work - Fixed a build failure issue. (bsc#1182016) - Fix for memory miscompilation on 'aarch64'. (bsc#1178624, bsc#1178577) - Fix 32bit 'libgnat.so' link. (bsc#1178675) - prepare usrmerge: Install libgcc_s into %_libdir. ABI wise it stays /%lib. (bsc#1029961) - Build complete set of multilibs for arm-none target. (bsc#1106014) cpp10-10.3.0+git1587-1.6.4.x86_64.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-nvptx-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-nvptx-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-nvptx-newlib10-devel-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.x86_64.rpm gcc10-10.3.0+git1587-1.6.4.src.rpm gcc10-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-ada-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-ada-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-c++-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-c++-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-d-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-d-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-fortran-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-fortran-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-go-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-go-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-info-10.3.0+git1587-1.6.4.noarch.rpm gcc10-locale-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-obj-c++-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-objc-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-objc-32bit-10.3.0+git1587-1.6.4.x86_64.rpm gcc10-testresults-10.3.0+git1587-1.6.7.src.rpm gcc10-testresults-10.3.0+git1587-1.6.7.x86_64.rpm libada10-10.3.0+git1587-1.6.4.x86_64.rpm libada10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libasan6-10.3.0+git1587-1.6.4.x86_64.rpm libasan6-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libatomic1-10.3.0+git1587-1.6.4.x86_64.rpm libatomic1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgcc_s1-10.3.0+git1587-1.6.4.x86_64.rpm libgcc_s1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgdruntime1-10.3.0+git1587-1.6.4.x86_64.rpm libgdruntime1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgfortran5-10.3.0+git1587-1.6.4.x86_64.rpm libgfortran5-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgo16-10.3.0+git1587-1.6.4.x86_64.rpm libgo16-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgomp1-10.3.0+git1587-1.6.4.x86_64.rpm libgomp1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libgphobos1-10.3.0+git1587-1.6.4.x86_64.rpm libgphobos1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libitm1-10.3.0+git1587-1.6.4.x86_64.rpm libitm1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm liblsan0-10.3.0+git1587-1.6.4.x86_64.rpm libobjc4-10.3.0+git1587-1.6.4.x86_64.rpm libobjc4-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libquadmath0-10.3.0+git1587-1.6.4.x86_64.rpm libquadmath0-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-devel-gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.x86_64.rpm libstdc++6-pp-gcc10-32bit-10.3.0+git1587-1.6.4.x86_64.rpm libtsan0-10.3.0+git1587-1.6.4.x86_64.rpm libubsan1-10.3.0+git1587-1.6.4.x86_64.rpm libubsan1-32bit-10.3.0+git1587-1.6.4.x86_64.rpm cpp10-10.3.0+git1587-1.6.4.s390x.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.s390x.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.src.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.s390x.rpm gcc10-10.3.0+git1587-1.6.4.s390x.rpm gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-ada-10.3.0+git1587-1.6.4.s390x.rpm gcc10-ada-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-c++-10.3.0+git1587-1.6.4.s390x.rpm gcc10-c++-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-d-10.3.0+git1587-1.6.4.s390x.rpm gcc10-d-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-fortran-10.3.0+git1587-1.6.4.s390x.rpm gcc10-fortran-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-go-10.3.0+git1587-1.6.4.s390x.rpm gcc10-go-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-locale-10.3.0+git1587-1.6.4.s390x.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.s390x.rpm gcc10-obj-c++-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-objc-10.3.0+git1587-1.6.4.s390x.rpm gcc10-objc-32bit-10.3.0+git1587-1.6.4.s390x.rpm gcc10-testresults-10.3.0+git1587-1.6.7.s390x.rpm libada10-10.3.0+git1587-1.6.4.s390x.rpm libada10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libasan6-10.3.0+git1587-1.6.4.s390x.rpm libasan6-32bit-10.3.0+git1587-1.6.4.s390x.rpm libatomic1-10.3.0+git1587-1.6.4.s390x.rpm libatomic1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgcc_s1-10.3.0+git1587-1.6.4.s390x.rpm libgcc_s1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgdruntime1-10.3.0+git1587-1.6.4.s390x.rpm libgdruntime1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgfortran5-10.3.0+git1587-1.6.4.s390x.rpm libgfortran5-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgo16-10.3.0+git1587-1.6.4.s390x.rpm libgo16-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgomp1-10.3.0+git1587-1.6.4.s390x.rpm libgomp1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libgphobos1-10.3.0+git1587-1.6.4.s390x.rpm libgphobos1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libitm1-10.3.0+git1587-1.6.4.s390x.rpm libitm1-32bit-10.3.0+git1587-1.6.4.s390x.rpm libobjc4-10.3.0+git1587-1.6.4.s390x.rpm libobjc4-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-devel-gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.s390x.rpm libstdc++6-pp-gcc10-32bit-10.3.0+git1587-1.6.4.s390x.rpm libubsan1-10.3.0+git1587-1.6.4.s390x.rpm libubsan1-32bit-10.3.0+git1587-1.6.4.s390x.rpm cpp10-10.3.0+git1587-1.6.4.ppc64le.rpm cross-aarch64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-aarch64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.ppc64le.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.ppc64le.rpm gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-ada-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-c++-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-fortran-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-go-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-locale-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-objc-10.3.0+git1587-1.6.4.ppc64le.rpm gcc10-testresults-10.3.0+git1587-1.6.7.ppc64le.rpm libada10-10.3.0+git1587-1.6.4.ppc64le.rpm libasan6-10.3.0+git1587-1.6.4.ppc64le.rpm libatomic1-10.3.0+git1587-1.6.4.ppc64le.rpm libgcc_s1-10.3.0+git1587-1.6.4.ppc64le.rpm libgfortran5-10.3.0+git1587-1.6.4.ppc64le.rpm libgo16-10.3.0+git1587-1.6.4.ppc64le.rpm libgomp1-10.3.0+git1587-1.6.4.ppc64le.rpm libitm1-10.3.0+git1587-1.6.4.ppc64le.rpm liblsan0-10.3.0+git1587-1.6.4.ppc64le.rpm libobjc4-10.3.0+git1587-1.6.4.ppc64le.rpm libquadmath0-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.ppc64le.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.ppc64le.rpm libtsan0-10.3.0+git1587-1.6.4.ppc64le.rpm libubsan1-10.3.0+git1587-1.6.4.ppc64le.rpm cpp10-10.3.0+git1587-1.6.4.aarch64.rpm cross-arm-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-arm-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-hppa-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-hppa-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-i386-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-i386-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-m68k-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-m68k-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-mips-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-mips-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64le-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-ppc64le-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-riscv64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-riscv64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-s390x-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-s390x-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparc64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-sparcv9-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm cross-x86_64-gcc10-10.3.0+git1587-1.6.3.aarch64.rpm cross-x86_64-gcc10-icecream-backend-10.3.0+git1587-1.6.3.aarch64.rpm gcc10-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-ada-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-c++-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-d-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-fortran-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-go-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-locale-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-obj-c++-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-objc-10.3.0+git1587-1.6.4.aarch64.rpm gcc10-testresults-10.3.0+git1587-1.6.7.aarch64.rpm libada10-10.3.0+git1587-1.6.4.aarch64.rpm libasan6-10.3.0+git1587-1.6.4.aarch64.rpm libatomic1-10.3.0+git1587-1.6.4.aarch64.rpm libgcc_s1-10.3.0+git1587-1.6.4.aarch64.rpm libgdruntime1-10.3.0+git1587-1.6.4.aarch64.rpm libgfortran5-10.3.0+git1587-1.6.4.aarch64.rpm libgo16-10.3.0+git1587-1.6.4.aarch64.rpm libgomp1-10.3.0+git1587-1.6.4.aarch64.rpm libgphobos1-10.3.0+git1587-1.6.4.aarch64.rpm libitm1-10.3.0+git1587-1.6.4.aarch64.rpm liblsan0-10.3.0+git1587-1.6.4.aarch64.rpm libobjc4-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-devel-gcc10-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-locale-10.3.0+git1587-1.6.4.aarch64.rpm libstdc++6-pp-gcc10-10.3.0+git1587-1.6.4.aarch64.rpm libtsan0-10.3.0+git1587-1.6.4.aarch64.rpm libubsan1-10.3.0+git1587-1.6.4.aarch64.rpm openSUSE-SLE-15.3-2021-1973 important SUSE Updates openSUSE-SLE 15.3 This update for libreoffice and xmlsec1 fixes the following issues: libreoffice: Update from version 7.1.2.2 to version 7.1.3.2 - Searching in PPTX document makes LibreOffice crash. (bsc#1185797) - Fix a text highlight issue when saving as PPTX. (bsc#1185505) - Recommend `libreoffice-qt5` only when it is actually created - Fix a build error with GCC11. (bsc#1186110) - LibreOffice requires at least java 1.8.0 to run properly. - Fix a potential dataloss in LibreOffice Math. (bsc#1184961, bsc#1184527) The issue occurred only while trying to close the document via shortcuts. In this case LibreOffice Math was closed without asking to save the document. xmlsec1: - Provide missing binaries to SUSE Linux Enterprise 15-SP3 with l3 support level. (bsc#1186706) myspell-dictionaries: - Provide missing binaries to SUSE Linux Enterprise 15-SP3 with l2 support level. (bsc#1186706) libraptor-devel-2.0.15-9.5.1.x86_64.rpm libraptor2-0-2.0.15-9.5.1.x86_64.rpm libraptor2-0-32bit-2.0.15-9.5.1.x86_64.rpm libreoffice-7.1.3.2-4.5.3.src.rpm libreoffice-7.1.3.2-4.5.3.x86_64.rpm libreoffice-base-7.1.3.2-4.5.3.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.x86_64.rpm libreoffice-branding-upstream-7.1.3.2-4.5.3.noarch.rpm libreoffice-calc-7.1.3.2-4.5.3.x86_64.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.x86_64.rpm libreoffice-draw-7.1.3.2-4.5.3.x86_64.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.3.2-4.5.3.noarch.rpm libreoffice-glade-7.1.3.2-4.5.3.noarch.rpm libreoffice-gnome-7.1.3.2-4.5.3.x86_64.rpm libreoffice-gtk3-7.1.3.2-4.5.3.x86_64.rpm libreoffice-icon-themes-7.1.3.2-4.5.3.noarch.rpm libreoffice-impress-7.1.3.2-4.5.3.x86_64.rpm libreoffice-l10n-af-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-am-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ar-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-as-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ast-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-be-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bg-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bn_IN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-br-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-brx-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-bs-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ca-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ca_valencia-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ckb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-cs-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-cy-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-da-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-de-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dgo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dsb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-dz-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-el-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en_GB-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-en_ZA-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-eo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-es-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-et-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-eu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fa-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fur-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-fy-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ga-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gd-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-gug-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-he-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hsb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-hu-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-id-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-is-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-it-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ja-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ka-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kab-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-km-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ko-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-kok-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ks-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lo-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lt-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-lv-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mai-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ml-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mni-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-mr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-my-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nb-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ne-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-nso-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-oc-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-om-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-or-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pa-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pt_BR-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-pt_PT-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ro-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ru-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-rw-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sa_IN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sat-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sd-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-si-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sid-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sq-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ss-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-st-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sv-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-sw_TZ-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-szl-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ta-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-te-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tg-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-th-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tn-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tr-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ts-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-tt-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ug-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-uk-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-uz-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-ve-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-vec-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-vi-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-xh-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zh_CN-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zh_TW-7.1.3.2-4.5.3.noarch.rpm libreoffice-l10n-zu-7.1.3.2-4.5.3.noarch.rpm libreoffice-librelogo-7.1.3.2-4.5.3.x86_64.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.x86_64.rpm libreoffice-math-7.1.3.2-4.5.3.x86_64.rpm libreoffice-officebean-7.1.3.2-4.5.3.x86_64.rpm libreoffice-pyuno-7.1.3.2-4.5.3.x86_64.rpm libreoffice-qt5-7.1.3.2-4.5.3.x86_64.rpm libreoffice-sdk-7.1.3.2-4.5.3.x86_64.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.x86_64.rpm libreoffice-writer-7.1.3.2-4.5.3.x86_64.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.x86_64.rpm libreofficekit-7.1.3.2-4.5.3.x86_64.rpm libreofficekit-devel-7.1.3.2-4.5.3.x86_64.rpm libucpp13-1.3.4-3.2.1.x86_64.rpm libxmlsec1-1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-nss1-1.2.28-7.7.1.x86_64.rpm libxmlsec1-openssl1-1.2.28-7.7.1.x86_64.rpm myspell-af_NA-20191219-3.19.1.noarch.rpm myspell-af_ZA-20191219-3.19.1.noarch.rpm myspell-an-20191219-3.19.1.noarch.rpm myspell-an_ES-20191219-3.19.1.noarch.rpm myspell-ar-20191219-3.19.1.noarch.rpm myspell-ar_AE-20191219-3.19.1.noarch.rpm myspell-ar_BH-20191219-3.19.1.noarch.rpm myspell-ar_DZ-20191219-3.19.1.noarch.rpm myspell-ar_EG-20191219-3.19.1.noarch.rpm myspell-ar_IQ-20191219-3.19.1.noarch.rpm myspell-ar_JO-20191219-3.19.1.noarch.rpm myspell-ar_KW-20191219-3.19.1.noarch.rpm myspell-ar_LB-20191219-3.19.1.noarch.rpm myspell-ar_LY-20191219-3.19.1.noarch.rpm myspell-ar_MA-20191219-3.19.1.noarch.rpm myspell-ar_OM-20191219-3.19.1.noarch.rpm myspell-ar_QA-20191219-3.19.1.noarch.rpm myspell-ar_SA-20191219-3.19.1.noarch.rpm myspell-ar_SD-20191219-3.19.1.noarch.rpm myspell-ar_SY-20191219-3.19.1.noarch.rpm myspell-ar_TN-20191219-3.19.1.noarch.rpm myspell-ar_YE-20191219-3.19.1.noarch.rpm myspell-be_BY-20191219-3.19.1.noarch.rpm myspell-bg_BG-20191219-3.19.1.noarch.rpm myspell-bn_BD-20191219-3.19.1.noarch.rpm myspell-bn_IN-20191219-3.19.1.noarch.rpm myspell-bo-20191219-3.19.1.noarch.rpm myspell-bo_CN-20191219-3.19.1.noarch.rpm myspell-bo_IN-20191219-3.19.1.noarch.rpm myspell-br_FR-20191219-3.19.1.noarch.rpm myspell-bs-20191219-3.19.1.noarch.rpm myspell-bs_BA-20191219-3.19.1.noarch.rpm myspell-ca-20191219-3.19.1.noarch.rpm myspell-ca_AD-20191219-3.19.1.noarch.rpm myspell-ca_ES-20191219-3.19.1.noarch.rpm myspell-ca_ES_valencia-20191219-3.19.1.noarch.rpm myspell-ca_FR-20191219-3.19.1.noarch.rpm myspell-ca_IT-20191219-3.19.1.noarch.rpm myspell-cs_CZ-20191219-3.19.1.noarch.rpm myspell-da_DK-20191219-3.19.1.noarch.rpm myspell-de-20191219-3.19.1.noarch.rpm myspell-de_AT-20191219-3.19.1.noarch.rpm myspell-de_CH-20191219-3.19.1.noarch.rpm myspell-de_DE-20191219-3.19.1.noarch.rpm myspell-dictionaries-20191219-3.19.1.src.rpm myspell-dictionaries-20191219-3.19.1.x86_64.rpm myspell-el_GR-20191219-3.19.1.noarch.rpm myspell-en-20191219-3.19.1.noarch.rpm myspell-en_AU-20191219-3.19.1.noarch.rpm myspell-en_BS-20191219-3.19.1.noarch.rpm myspell-en_BZ-20191219-3.19.1.noarch.rpm myspell-en_CA-20191219-3.19.1.noarch.rpm myspell-en_GB-20191219-3.19.1.noarch.rpm myspell-en_GH-20191219-3.19.1.noarch.rpm myspell-en_IE-20191219-3.19.1.noarch.rpm myspell-en_IN-20191219-3.19.1.noarch.rpm myspell-en_JM-20191219-3.19.1.noarch.rpm myspell-en_MW-20191219-3.19.1.noarch.rpm myspell-en_NA-20191219-3.19.1.noarch.rpm myspell-en_NZ-20191219-3.19.1.noarch.rpm myspell-en_PH-20191219-3.19.1.noarch.rpm myspell-en_TT-20191219-3.19.1.noarch.rpm myspell-en_US-20191219-3.19.1.noarch.rpm myspell-en_ZA-20191219-3.19.1.noarch.rpm myspell-en_ZW-20191219-3.19.1.noarch.rpm myspell-es-20191219-3.19.1.noarch.rpm myspell-es_AR-20191219-3.19.1.noarch.rpm myspell-es_BO-20191219-3.19.1.noarch.rpm myspell-es_CL-20191219-3.19.1.noarch.rpm myspell-es_CO-20191219-3.19.1.noarch.rpm myspell-es_CR-20191219-3.19.1.noarch.rpm myspell-es_CU-20191219-3.19.1.noarch.rpm myspell-es_DO-20191219-3.19.1.noarch.rpm myspell-es_EC-20191219-3.19.1.noarch.rpm myspell-es_ES-20191219-3.19.1.noarch.rpm myspell-es_GT-20191219-3.19.1.noarch.rpm myspell-es_HN-20191219-3.19.1.noarch.rpm myspell-es_MX-20191219-3.19.1.noarch.rpm myspell-es_NI-20191219-3.19.1.noarch.rpm myspell-es_PA-20191219-3.19.1.noarch.rpm myspell-es_PE-20191219-3.19.1.noarch.rpm myspell-es_PR-20191219-3.19.1.noarch.rpm myspell-es_PY-20191219-3.19.1.noarch.rpm myspell-es_SV-20191219-3.19.1.noarch.rpm myspell-es_UY-20191219-3.19.1.noarch.rpm myspell-es_VE-20191219-3.19.1.noarch.rpm myspell-et_EE-20191219-3.19.1.noarch.rpm myspell-fr_BE-20191219-3.19.1.noarch.rpm myspell-fr_CA-20191219-3.19.1.noarch.rpm myspell-fr_CH-20191219-3.19.1.noarch.rpm myspell-fr_FR-20191219-3.19.1.noarch.rpm myspell-fr_LU-20191219-3.19.1.noarch.rpm myspell-fr_MC-20191219-3.19.1.noarch.rpm myspell-gd_GB-20191219-3.19.1.noarch.rpm myspell-gl-20191219-3.19.1.noarch.rpm myspell-gl_ES-20191219-3.19.1.noarch.rpm myspell-gu_IN-20191219-3.19.1.noarch.rpm myspell-gug-20191219-3.19.1.noarch.rpm myspell-gug_PY-20191219-3.19.1.noarch.rpm myspell-he_IL-20191219-3.19.1.noarch.rpm myspell-hi_IN-20191219-3.19.1.noarch.rpm myspell-hr_HR-20191219-3.19.1.noarch.rpm myspell-hu_HU-20191219-3.19.1.noarch.rpm myspell-id-20191219-3.19.1.noarch.rpm myspell-id_ID-20191219-3.19.1.noarch.rpm myspell-is-20191219-3.19.1.noarch.rpm myspell-is_IS-20191219-3.19.1.noarch.rpm myspell-it_IT-20191219-3.19.1.noarch.rpm myspell-kmr_Latn-20191219-3.19.1.noarch.rpm myspell-kmr_Latn_SY-20191219-3.19.1.noarch.rpm myspell-kmr_Latn_TR-20191219-3.19.1.noarch.rpm myspell-lightproof-en-20191219-3.19.1.x86_64.rpm myspell-lightproof-hu_HU-20191219-3.19.1.x86_64.rpm myspell-lightproof-pt_BR-20191219-3.19.1.x86_64.rpm myspell-lightproof-ru_RU-20191219-3.19.1.x86_64.rpm myspell-lo_LA-20191219-3.19.1.noarch.rpm myspell-lt_LT-20191219-3.19.1.noarch.rpm myspell-lv_LV-20191219-3.19.1.noarch.rpm myspell-nb_NO-20191219-3.19.1.noarch.rpm myspell-ne_NP-20191219-3.19.1.noarch.rpm myspell-nl_BE-20191219-3.19.1.noarch.rpm myspell-nl_NL-20191219-3.19.1.noarch.rpm myspell-nn_NO-20191219-3.19.1.noarch.rpm myspell-no-20191219-3.19.1.noarch.rpm myspell-oc_FR-20191219-3.19.1.noarch.rpm myspell-pl_PL-20191219-3.19.1.noarch.rpm myspell-pt_AO-20191219-3.19.1.noarch.rpm myspell-pt_BR-20191219-3.19.1.noarch.rpm myspell-pt_PT-20191219-3.19.1.noarch.rpm myspell-ro-20191219-3.19.1.noarch.rpm myspell-ro_RO-20191219-3.19.1.noarch.rpm myspell-ru_RU-20191219-3.19.1.noarch.rpm myspell-si_LK-20191219-3.19.1.noarch.rpm myspell-sk_SK-20191219-3.19.1.noarch.rpm myspell-sl_SI-20191219-3.19.1.noarch.rpm myspell-sq_AL-20191219-3.19.1.noarch.rpm myspell-sr-20191219-3.19.1.noarch.rpm myspell-sr_CS-20191219-3.19.1.noarch.rpm myspell-sr_Latn_CS-20191219-3.19.1.noarch.rpm myspell-sr_Latn_RS-20191219-3.19.1.noarch.rpm myspell-sr_RS-20191219-3.19.1.noarch.rpm myspell-sv_FI-20191219-3.19.1.noarch.rpm myspell-sv_SE-20191219-3.19.1.noarch.rpm myspell-sw_TZ-20191219-3.19.1.noarch.rpm myspell-te-20191219-3.19.1.noarch.rpm myspell-te_IN-20191219-3.19.1.noarch.rpm myspell-th_TH-20191219-3.19.1.noarch.rpm myspell-tr-20191219-3.19.1.noarch.rpm myspell-tr_TR-20191219-3.19.1.noarch.rpm myspell-uk_UA-20191219-3.19.1.noarch.rpm myspell-vi-20191219-3.19.1.noarch.rpm myspell-vi_VN-20191219-3.19.1.noarch.rpm myspell-zu_ZA-20191219-3.19.1.noarch.rpm raptor-2.0.15-9.5.1.src.rpm raptor-2.0.15-9.5.1.x86_64.rpm ucpp-1.3.4-3.2.1.src.rpm ucpp-1.3.4-3.2.1.x86_64.rpm ucpp-devel-1.3.4-3.2.1.x86_64.rpm xmlsec1-1.2.28-7.7.1.src.rpm xmlsec1-1.2.28-7.7.1.x86_64.rpm xmlsec1-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-nss-devel-1.2.28-7.7.1.x86_64.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.x86_64.rpm libraptor-devel-2.0.15-9.5.1.s390x.rpm libraptor2-0-2.0.15-9.5.1.s390x.rpm libucpp13-1.3.4-3.2.1.s390x.rpm libxmlsec1-1-1.2.28-7.7.1.s390x.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.s390x.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.s390x.rpm libxmlsec1-nss1-1.2.28-7.7.1.s390x.rpm libxmlsec1-openssl1-1.2.28-7.7.1.s390x.rpm myspell-dictionaries-20191219-3.19.1.s390x.rpm myspell-lightproof-en-20191219-3.19.1.s390x.rpm myspell-lightproof-hu_HU-20191219-3.19.1.s390x.rpm myspell-lightproof-pt_BR-20191219-3.19.1.s390x.rpm myspell-lightproof-ru_RU-20191219-3.19.1.s390x.rpm raptor-2.0.15-9.5.1.s390x.rpm ucpp-1.3.4-3.2.1.s390x.rpm ucpp-devel-1.3.4-3.2.1.s390x.rpm xmlsec1-1.2.28-7.7.1.s390x.rpm xmlsec1-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-nss-devel-1.2.28-7.7.1.s390x.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.s390x.rpm libraptor-devel-2.0.15-9.5.1.ppc64le.rpm libraptor2-0-2.0.15-9.5.1.ppc64le.rpm libreoffice-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-base-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-calc-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-draw-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-gnome-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-gtk3-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-impress-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-librelogo-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-math-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-officebean-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-pyuno-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-qt5-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-sdk-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-writer-7.1.3.2-4.5.3.ppc64le.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.ppc64le.rpm libreofficekit-7.1.3.2-4.5.3.ppc64le.rpm libreofficekit-devel-7.1.3.2-4.5.3.ppc64le.rpm libucpp13-1.3.4-3.2.1.ppc64le.rpm libxmlsec1-1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-nss1-1.2.28-7.7.1.ppc64le.rpm libxmlsec1-openssl1-1.2.28-7.7.1.ppc64le.rpm myspell-dictionaries-20191219-3.19.1.ppc64le.rpm myspell-lightproof-en-20191219-3.19.1.ppc64le.rpm myspell-lightproof-hu_HU-20191219-3.19.1.ppc64le.rpm myspell-lightproof-pt_BR-20191219-3.19.1.ppc64le.rpm myspell-lightproof-ru_RU-20191219-3.19.1.ppc64le.rpm raptor-2.0.15-9.5.1.ppc64le.rpm ucpp-1.3.4-3.2.1.ppc64le.rpm ucpp-devel-1.3.4-3.2.1.ppc64le.rpm xmlsec1-1.2.28-7.7.1.ppc64le.rpm xmlsec1-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-nss-devel-1.2.28-7.7.1.ppc64le.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.ppc64le.rpm libraptor-devel-2.0.15-9.5.1.aarch64.rpm libraptor2-0-2.0.15-9.5.1.aarch64.rpm libreoffice-7.1.3.2-4.5.3.aarch64.rpm libreoffice-base-7.1.3.2-4.5.3.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-4.5.3.aarch64.rpm libreoffice-calc-7.1.3.2-4.5.3.aarch64.rpm libreoffice-calc-extensions-7.1.3.2-4.5.3.aarch64.rpm libreoffice-draw-7.1.3.2-4.5.3.aarch64.rpm libreoffice-filters-optional-7.1.3.2-4.5.3.aarch64.rpm libreoffice-gnome-7.1.3.2-4.5.3.aarch64.rpm libreoffice-gtk3-7.1.3.2-4.5.3.aarch64.rpm libreoffice-impress-7.1.3.2-4.5.3.aarch64.rpm libreoffice-librelogo-7.1.3.2-4.5.3.aarch64.rpm libreoffice-mailmerge-7.1.3.2-4.5.3.aarch64.rpm libreoffice-math-7.1.3.2-4.5.3.aarch64.rpm libreoffice-officebean-7.1.3.2-4.5.3.aarch64.rpm libreoffice-pyuno-7.1.3.2-4.5.3.aarch64.rpm libreoffice-qt5-7.1.3.2-4.5.3.aarch64.rpm libreoffice-sdk-7.1.3.2-4.5.3.aarch64.rpm libreoffice-sdk-doc-7.1.3.2-4.5.3.aarch64.rpm libreoffice-writer-7.1.3.2-4.5.3.aarch64.rpm libreoffice-writer-extensions-7.1.3.2-4.5.3.aarch64.rpm libreofficekit-7.1.3.2-4.5.3.aarch64.rpm libreofficekit-devel-7.1.3.2-4.5.3.aarch64.rpm libucpp13-1.3.4-3.2.1.aarch64.rpm libxmlsec1-1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-gcrypt1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-gnutls1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-nss1-1.2.28-7.7.1.aarch64.rpm libxmlsec1-openssl1-1.2.28-7.7.1.aarch64.rpm myspell-dictionaries-20191219-3.19.1.aarch64.rpm myspell-lightproof-en-20191219-3.19.1.aarch64.rpm myspell-lightproof-hu_HU-20191219-3.19.1.aarch64.rpm myspell-lightproof-pt_BR-20191219-3.19.1.aarch64.rpm myspell-lightproof-ru_RU-20191219-3.19.1.aarch64.rpm raptor-2.0.15-9.5.1.aarch64.rpm ucpp-1.3.4-3.2.1.aarch64.rpm ucpp-devel-1.3.4-3.2.1.aarch64.rpm xmlsec1-1.2.28-7.7.1.aarch64.rpm xmlsec1-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-gcrypt-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-gnutls-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-nss-devel-1.2.28-7.7.1.aarch64.rpm xmlsec1-openssl-devel-1.2.28-7.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1680 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapwmp fixes the following issues: * Call 'sapwmp check' in supportconfig. * Remove 'sapstartsrv' from process tree and enable SLE15SP3 wmp-check. (bsc#1184865) * Install the 'wmp-check' to /usr/sbin * Include a script to check the setup of wmp. * capture: Graceful handling of missing PARENT_COMMANDS * capture: Apply scope limits only when they are non-zero * capture: Parse scope properties from config file sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.src.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.x86_64.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.s390x.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.ppc64le.rpm sapwmp-0.1+git.1619087532.40eb1b0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2311 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-ntp-client fixes the following issues: - Adapted proposal client returning the dhcp ntp servers as strings. (bsc#1185545) yast2-ntp-client-4.3.3-3.3.1.noarch.rpm yast2-ntp-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1872 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Do not crash when a client execution return false. (bsc#1185561, bsc#1180954) - Fixed an issue when calling the registration module crashed YaST. (bsc#1180954) - Revert disable of hibernation based on product and virtual machines. (bsc#1184470) yast2-4.3.62-3.5.1.src.rpm yast2-4.3.62-3.5.1.x86_64.rpm yast2-logs-4.3.62-3.5.1.x86_64.rpm yast2-4.3.62-3.5.1.s390x.rpm yast2-logs-4.3.62-3.5.1.s390x.rpm yast2-4.3.62-3.5.1.ppc64le.rpm yast2-logs-4.3.62-3.5.1.ppc64le.rpm yast2-4.3.62-3.5.1.aarch64.rpm yast2-logs-4.3.62-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2374 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-auth-client fixes the following issues: - Fix an error importing the configuration when the json does not contain all keys. (bsc#1184630) - Fix 'nss_ldap' package unnecessarily installed. (bsc#1185499) - Fix cli 'help' handling for 'auth-client' and 'ldapkrb'. (bsc#1172340)2 yast2-auth-client-4.3.3-3.3.1.noarch.rpm yast2-auth-client-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1884 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.11.0 ESR (bsc#1186696) * CVE-2021-29964: Out of bounds-read when parsing a `WM_COPYDATA` message * CVE-2021-29967: Memory safety bugs fixed in Firefox MozillaFirefox-78.11.0-8.43.1.src.rpm MozillaFirefox-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-buildsymbols-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-devel-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.x86_64.rpm MozillaFirefox-78.11.0-8.43.1.s390x.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.s390x.rpm MozillaFirefox-devel-78.11.0-8.43.1.s390x.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.s390x.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.s390x.rpm MozillaFirefox-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-devel-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.ppc64le.rpm MozillaFirefox-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-branding-upstream-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-devel-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-translations-common-78.11.0-8.43.1.aarch64.rpm MozillaFirefox-translations-other-78.11.0-8.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-2945 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-iscsi fixes the following issues: - Update 'iscsi.service' so that it tries to logon to any "onboot" and firmware targets, in case a target was offline when booted but back up when the service is started. (bsc#1153806) - Merged with latest from upstream, which contains these fixes: * Add "no wait" option to iscsiadm firmware login * Check for ISCSI_ERR_ISCSID_NOTCONN in iscsistart * Log proper error message when AUTH failure occurs * Support the "qede" CMA-card driver. (bsc#1188579) * iscsistart: fix null pointer deref before exit * Set default 'startup' to 'onboot' for FW nodes. (bsc#1185930) iscsiuio-0.7.8.6-32.5.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.x86_64.rpm open-iscsi-2.1.4-32.5.1.src.rpm open-iscsi-2.1.4-32.5.1.x86_64.rpm open-iscsi-devel-2.1.4-32.5.1.x86_64.rpm iscsiuio-0.7.8.6-32.5.1.s390x.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.s390x.rpm open-iscsi-2.1.4-32.5.1.s390x.rpm open-iscsi-devel-2.1.4-32.5.1.s390x.rpm iscsiuio-0.7.8.6-32.5.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.ppc64le.rpm open-iscsi-2.1.4-32.5.1.ppc64le.rpm open-iscsi-devel-2.1.4-32.5.1.ppc64le.rpm iscsiuio-0.7.8.6-32.5.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.4-32.5.1.aarch64.rpm open-iscsi-2.1.4-32.5.1.aarch64.rpm open-iscsi-devel-2.1.4-32.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2464 moderate SUSE Updates openSUSE-SLE 15.3 This update for shim fixes the following issues: - shim-install: Always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) - Avoid deleting the mirrored RT variables (bsc#1187696) - Split the keys in vendor-dbx.bin to vendor-dbx-sles and vendor-dbx-opensuse for shim-sles and shim-opensuse to reduce the size of MokListXRT (bsc#1185261) + Also update generate-vendor-dbx.sh in dbx-cert.tar.xz - Handle ignore_db and user_insecure_mode correctly (bsc#1185441, bsc#1187071) - Relax the maximum variable size check for u-boot (bsc#1185621) - Relax the check for import_mok_state() when Secure Boot is off. (bsc#1185261) - Ignore the odd LoadOptions length (bsc#1185232) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - Fided the size of rela sections for AArch64 - Disable exporting vendor-dbx to MokListXRT since writing a large RT variable could crash some machines (bsc#1185261) - Avoid potential crash when calling QueryVariableInfo in EFI 1.10 machines (bsc#1187260) - Avoid buffer overflow when copying data to the MOK config table (bsc#1185232) shim-15.4-4.7.1.src.rpm shim-15.4-4.7.1.x86_64.rpm shim-15.4-4.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1997 moderate SUSE Updates openSUSE-SLE 15.3 This update for tpm2.0-abrmd fixes the following issue: - Remove deprecated `syslog` option from `systemd unit` file to prevent deprecation warning. (bsc#1185154) libtss2-tcti-tabrmd0-2.3.3-3.3.1.x86_64.rpm tpm2.0-abrmd-2.3.3-3.3.1.src.rpm tpm2.0-abrmd-2.3.3-3.3.1.x86_64.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.x86_64.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.s390x.rpm tpm2.0-abrmd-2.3.3-3.3.1.s390x.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.s390x.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.ppc64le.rpm tpm2.0-abrmd-2.3.3-3.3.1.ppc64le.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.ppc64le.rpm libtss2-tcti-tabrmd0-2.3.3-3.3.1.aarch64.rpm tpm2.0-abrmd-2.3.3-3.3.1.aarch64.rpm tpm2.0-abrmd-devel-2.3.3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2106 critical SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: Update to Salt release version 3002.2 (jsc#ECO-3212, jsc#SLE-18033, jsc#SLE-18028) - Check if dpkgnotify is executable (bsc#1186674) - Drop support for Python2. Obsoletes `python2-salt` package (jsc#SLE-18028) - virt module updates * network: handle missing ipv4 netmask attribute * more network support * PCI/USB host devices passthrough support - Set distro requirement to oldest supported version in requirements/base.txt - Bring missing part of async batch implementation back (CVE-2021-25315, bsc#1182382) - Always require `python3-distro` (bsc#1182293) - Remove deprecated warning that breaks minion execution when "server_id_use_crc" opts is missing - Fix pkg states when DEB package has "all" arch - Do not force beacons configuration to be a list. - Remove msgpack < 1.0.0 from base requirements (bsc#1176293) - msgpack support for version >= 1.0.0 (bsc#1171257) - Fix issue parsing errors in ansiblegate state module - Prevent command injection in the snapper module (bsc#1185281, CVE-2021-31607) - transactional_update: detect recursion in the executor - Add subpackage salt-transactional-update (jsc#SLE-18033) - Improvements on "ansiblegate" module (bsc#1185092): * New methods: ansible.targets / ansible.discover_playbooks - Add support for Alibaba Cloud Linux 2 (Aliyun Linux) - Regression fix of salt-ssh on processing targets - Update target fix for salt-ssh and avoiding race condition on salt-ssh event processing (bsc#1179831, bsc#1182281) - Add notify beacon for Debian/Ubuntu systems - Fix zmq bug that causes salt-call to freeze (bsc#1181368) python-distro-1.5.0-3.5.1.src.rpm True python2-distro-1.5.0-3.5.1.noarch.rpm True python3-distro-1.5.0-3.5.1.noarch.rpm True openSUSE-SLE-15.3-2021-2141 moderate SUSE Updates openSUSE-SLE 15.3 This update for libstorage-ng fixes the following issues: - Fixed an issue when the installer fails to delete partitions on SD cards (bsc#1185610) - Remove double mount options to fix partition setup in AutoYaST. (bsc#1186298) libstorage-ng-4.3.108-3.5.1.src.rpm libstorage-ng-devel-4.3.108-3.5.1.x86_64.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.x86_64.rpm libstorage-ng-lang-4.3.108-3.5.1.noarch.rpm libstorage-ng-python3-4.3.108-3.5.1.x86_64.rpm libstorage-ng-ruby-4.3.108-3.5.1.x86_64.rpm libstorage-ng-utils-4.3.108-3.5.1.x86_64.rpm libstorage-ng1-4.3.108-3.5.1.x86_64.rpm libstorage-ng-devel-4.3.108-3.5.1.s390x.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.s390x.rpm libstorage-ng-python3-4.3.108-3.5.1.s390x.rpm libstorage-ng-ruby-4.3.108-3.5.1.s390x.rpm libstorage-ng-utils-4.3.108-3.5.1.s390x.rpm libstorage-ng1-4.3.108-3.5.1.s390x.rpm libstorage-ng-devel-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-python3-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-ruby-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-utils-4.3.108-3.5.1.ppc64le.rpm libstorage-ng1-4.3.108-3.5.1.ppc64le.rpm libstorage-ng-devel-4.3.108-3.5.1.aarch64.rpm libstorage-ng-integration-tests-4.3.108-3.5.1.aarch64.rpm libstorage-ng-python3-4.3.108-3.5.1.aarch64.rpm libstorage-ng-ruby-4.3.108-3.5.1.aarch64.rpm libstorage-ng-utils-4.3.108-3.5.1.aarch64.rpm libstorage-ng1-4.3.108-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2482 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2, yast2-registration, yast2-schema and yast2-users fixes the following issues: - During autoupgrade do not try to register the system if it is explicitly disabled in the profile. (bsc#1176965) - Consider 'static_text' as a valid value for 'ask/type' elements. (bsc#1185909) - Install packages in the PackagesProposal during autoupgrade. (bsc#1184488) - Recommend 'icewm' in graphical installation. (bsc#1185095) - Import proxy settings during the 1st stage of the installation (bsc#1185016) - Do not crash when the general/storage section is empty (bsc#1187180) - AutoYaST: do not crash when cloning a registered system with no registration code. (bsc#1184216) - Fix the comment entry in the desktop file so the tooltip in the control center is properly translated. (bsc#1187270) - Properly register the script to reboot after applying online updates. (bsc#1187962) - Add missing elements to 'rules.xml' schema. (bsc#1176089, bsc#1188153) - Do not export the general/storage section when it is empty to prevent installation failing. (bsc#1171356, bsc#1187916) - Show warning when reading system settings fails (bsc#1177183) - Show errors when loading addons fails (bsc#1187844). - Copy the files to the right location when a 'file_location' is given. (bsc#1188357) - Add 'Security#SafeRead' to allow detecting read errors when calling it from perl modules. (bsc#1177183) - Do not rewrite authorized_keys unless it is needed. (bsc#1188361) autoyast2-4.3.86-3.17.1.noarch.rpm autoyast2-4.3.86-3.17.1.src.rpm autoyast2-installation-4.3.86-3.17.1.noarch.rpm yast2-registration-4.3.23-3.6.1.noarch.rpm yast2-registration-4.3.23-3.6.1.src.rpm yast2-schema-4.3.23-3.3.2.src.rpm yast2-schema-4.3.23-3.3.2.x86_64.rpm yast2-security-4.3.17-3.3.1.noarch.rpm yast2-security-4.3.17-3.3.1.src.rpm yast2-users-4.3.14-3.8.1.src.rpm yast2-users-4.3.14-3.8.1.x86_64.rpm yast2-schema-4.3.23-3.3.2.s390x.rpm yast2-users-4.3.14-3.8.1.s390x.rpm yast2-schema-4.3.23-3.3.2.ppc64le.rpm yast2-users-4.3.14-3.8.1.ppc64le.rpm yast2-schema-4.3.23-3.3.2.aarch64.rpm yast2-users-4.3.14-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-1677 low SUSE Updates openSUSE-SLE 15.3 This update for purge-kernels-service fixes the following issues: - Add 'ZYPP_LOCK_TIMEOUT=-1' to keep waiting for the lock to avoid possible conflict with other background services uding zypper. (bsc#1184399) purge-kernels-service-0-8.3.1.noarch.rpm purge-kernels-service-0-8.3.1.src.rpm openSUSE-SLE-15.3-2021-1773 low SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - Make sure to close the import_failed.map file after the exception has been raised in order to avoid ResourceWarnings when the failing import is part of a try...except block. libpython3_6m1_0-3.6.13-3.84.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.13-3.84.1.x86_64.rpm python3-3.6.13-3.84.1.src.rpm python3-3.6.13-3.84.1.x86_64.rpm python3-32bit-3.6.13-3.84.1.x86_64.rpm python3-base-3.6.13-3.84.1.x86_64.rpm python3-base-32bit-3.6.13-3.84.1.x86_64.rpm python3-core-3.6.13-3.84.1.src.rpm python3-curses-3.6.13-3.84.1.x86_64.rpm python3-dbm-3.6.13-3.84.1.x86_64.rpm python3-devel-3.6.13-3.84.1.x86_64.rpm python3-doc-devhelp-3.6.13-3.84.1.x86_64.rpm python3-documentation-3.6.13-3.84.1.src.rpm python3-idle-3.6.13-3.84.1.x86_64.rpm python3-testsuite-3.6.13-3.84.1.x86_64.rpm python3-tk-3.6.13-3.84.1.x86_64.rpm python3-tools-3.6.13-3.84.1.x86_64.rpm libpython3_6m1_0-3.6.13-3.84.1.s390x.rpm python3-3.6.13-3.84.1.s390x.rpm python3-base-3.6.13-3.84.1.s390x.rpm python3-curses-3.6.13-3.84.1.s390x.rpm python3-dbm-3.6.13-3.84.1.s390x.rpm python3-devel-3.6.13-3.84.1.s390x.rpm python3-doc-devhelp-3.6.13-3.84.1.s390x.rpm python3-idle-3.6.13-3.84.1.s390x.rpm python3-testsuite-3.6.13-3.84.1.s390x.rpm python3-tk-3.6.13-3.84.1.s390x.rpm python3-tools-3.6.13-3.84.1.s390x.rpm libpython3_6m1_0-3.6.13-3.84.1.ppc64le.rpm python3-3.6.13-3.84.1.ppc64le.rpm python3-base-3.6.13-3.84.1.ppc64le.rpm python3-curses-3.6.13-3.84.1.ppc64le.rpm python3-dbm-3.6.13-3.84.1.ppc64le.rpm python3-devel-3.6.13-3.84.1.ppc64le.rpm python3-doc-devhelp-3.6.13-3.84.1.ppc64le.rpm python3-idle-3.6.13-3.84.1.ppc64le.rpm python3-testsuite-3.6.13-3.84.1.ppc64le.rpm python3-tk-3.6.13-3.84.1.ppc64le.rpm python3-tools-3.6.13-3.84.1.ppc64le.rpm libpython3_6m1_0-3.6.13-3.84.1.aarch64.rpm python3-3.6.13-3.84.1.aarch64.rpm python3-base-3.6.13-3.84.1.aarch64.rpm python3-curses-3.6.13-3.84.1.aarch64.rpm python3-dbm-3.6.13-3.84.1.aarch64.rpm python3-devel-3.6.13-3.84.1.aarch64.rpm python3-doc-devhelp-3.6.13-3.84.1.aarch64.rpm python3-idle-3.6.13-3.84.1.aarch64.rpm python3-testsuite-3.6.13-3.84.1.aarch64.rpm python3-tk-3.6.13-3.84.1.aarch64.rpm python3-tools-3.6.13-3.84.1.aarch64.rpm openSUSE-SLE-15.3-2021-1759 important SUSE Updates openSUSE-SLE 15.3 This update for rubygem-actionpack-5_1 fixes the following issues: - CVE-2021-22885: Fixed possible information disclosure / unintended method execution in Action Pack (bsc#1185715). ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.x86_64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.x86_64.rpm rubygem-actionpack-5_1-5.1.4-3.9.1.src.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.s390x.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.s390x.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.ppc64le.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.ppc64le.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1.aarch64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1797 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-aliyun-img-utils, python-click-man, python-crcmod, python-oss2 fixes the following issues: - Include in SLE-15 (bsc#1181995, jsc#ECO-3329, jsc#PM-2475) - Cleanup spec file - Use fdupes - Do not bundle html doc - singlespec auto-conversion - Include in SLE 12 (FATE #316168) - No need to use upstream tarball, download PyPI tarball instead - Switch to github archive as the tests are not present on pypi version. - Initial build python-aliyun-img-utils-1.1.0-5.4.2.src.rpm python-click-man-0.4.1-5.3.2.src.rpm python-crcmod-1.7-5.3.2.src.rpm python-oss2-2.14.0-5.3.2.src.rpm python2-click-man-0.4.1-5.3.2.noarch.rpm python2-crcmod-1.7-5.3.2.x86_64.rpm python3-aliyun-img-utils-1.1.0-5.4.2.x86_64.rpm python3-click-man-0.4.1-5.3.2.noarch.rpm python3-crcmod-1.7-5.3.2.x86_64.rpm python3-oss2-2.14.0-5.3.2.noarch.rpm python2-crcmod-1.7-5.3.2.s390x.rpm python3-aliyun-img-utils-1.1.0-5.4.2.s390x.rpm python3-crcmod-1.7-5.3.2.s390x.rpm python2-crcmod-1.7-5.3.2.ppc64le.rpm python3-aliyun-img-utils-1.1.0-5.4.2.ppc64le.rpm python3-crcmod-1.7-5.3.2.ppc64le.rpm python2-crcmod-1.7-5.3.2.aarch64.rpm python3-aliyun-img-utils-1.1.0-5.4.2.aarch64.rpm python3-crcmod-1.7-5.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-1651 critical SUSE Updates openSUSE-SLE 15.3 This update for graphviz fixes the following issues: - CVE-2020-18032: Fixed possible remote code execution via buffer overflow (bsc#1185833). graphviz-2.40.1-6.9.1.src.rpm graphviz-2.40.1-6.9.1.x86_64.rpm graphviz-addons-2.40.1-6.9.1.src.rpm graphviz-devel-2.40.1-6.9.1.x86_64.rpm graphviz-doc-2.40.1-6.9.1.x86_64.rpm graphviz-gd-2.40.1-6.9.1.x86_64.rpm graphviz-gnome-2.40.1-6.9.1.x86_64.rpm graphviz-guile-2.40.1-6.9.1.x86_64.rpm graphviz-gvedit-2.40.1-6.9.1.x86_64.rpm graphviz-java-2.40.1-6.9.1.x86_64.rpm graphviz-lua-2.40.1-6.9.1.x86_64.rpm graphviz-perl-2.40.1-6.9.1.x86_64.rpm graphviz-php-2.40.1-6.9.1.x86_64.rpm graphviz-plugins-core-2.40.1-6.9.1.x86_64.rpm graphviz-python-2.40.1-6.9.1.x86_64.rpm graphviz-ruby-2.40.1-6.9.1.x86_64.rpm graphviz-smyrna-2.40.1-6.9.1.x86_64.rpm graphviz-tcl-2.40.1-6.9.1.x86_64.rpm libgraphviz6-2.40.1-6.9.1.x86_64.rpm graphviz-2.40.1-6.9.1.s390x.rpm graphviz-devel-2.40.1-6.9.1.s390x.rpm graphviz-doc-2.40.1-6.9.1.s390x.rpm graphviz-gd-2.40.1-6.9.1.s390x.rpm graphviz-gnome-2.40.1-6.9.1.s390x.rpm graphviz-guile-2.40.1-6.9.1.s390x.rpm graphviz-gvedit-2.40.1-6.9.1.s390x.rpm graphviz-java-2.40.1-6.9.1.s390x.rpm graphviz-lua-2.40.1-6.9.1.s390x.rpm graphviz-perl-2.40.1-6.9.1.s390x.rpm graphviz-php-2.40.1-6.9.1.s390x.rpm graphviz-plugins-core-2.40.1-6.9.1.s390x.rpm graphviz-python-2.40.1-6.9.1.s390x.rpm graphviz-ruby-2.40.1-6.9.1.s390x.rpm graphviz-smyrna-2.40.1-6.9.1.s390x.rpm graphviz-tcl-2.40.1-6.9.1.s390x.rpm libgraphviz6-2.40.1-6.9.1.s390x.rpm graphviz-2.40.1-6.9.1.ppc64le.rpm graphviz-devel-2.40.1-6.9.1.ppc64le.rpm graphviz-doc-2.40.1-6.9.1.ppc64le.rpm graphviz-gd-2.40.1-6.9.1.ppc64le.rpm graphviz-gnome-2.40.1-6.9.1.ppc64le.rpm graphviz-guile-2.40.1-6.9.1.ppc64le.rpm graphviz-gvedit-2.40.1-6.9.1.ppc64le.rpm graphviz-java-2.40.1-6.9.1.ppc64le.rpm graphviz-lua-2.40.1-6.9.1.ppc64le.rpm graphviz-perl-2.40.1-6.9.1.ppc64le.rpm graphviz-php-2.40.1-6.9.1.ppc64le.rpm graphviz-plugins-core-2.40.1-6.9.1.ppc64le.rpm graphviz-python-2.40.1-6.9.1.ppc64le.rpm graphviz-ruby-2.40.1-6.9.1.ppc64le.rpm graphviz-smyrna-2.40.1-6.9.1.ppc64le.rpm graphviz-tcl-2.40.1-6.9.1.ppc64le.rpm libgraphviz6-2.40.1-6.9.1.ppc64le.rpm graphviz-2.40.1-6.9.1.aarch64.rpm graphviz-devel-2.40.1-6.9.1.aarch64.rpm graphviz-doc-2.40.1-6.9.1.aarch64.rpm graphviz-gd-2.40.1-6.9.1.aarch64.rpm graphviz-gnome-2.40.1-6.9.1.aarch64.rpm graphviz-guile-2.40.1-6.9.1.aarch64.rpm graphviz-gvedit-2.40.1-6.9.1.aarch64.rpm graphviz-java-2.40.1-6.9.1.aarch64.rpm graphviz-lua-2.40.1-6.9.1.aarch64.rpm graphviz-perl-2.40.1-6.9.1.aarch64.rpm graphviz-php-2.40.1-6.9.1.aarch64.rpm graphviz-plugins-core-2.40.1-6.9.1.aarch64.rpm graphviz-python-2.40.1-6.9.1.aarch64.rpm graphviz-ruby-2.40.1-6.9.1.aarch64.rpm graphviz-smyrna-2.40.1-6.9.1.aarch64.rpm graphviz-tcl-2.40.1-6.9.1.aarch64.rpm libgraphviz6-2.40.1-6.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1950 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issues: - Update to version 0.347: + Updated pci, usb and vendor ids. (bsc#1185697) - Update to version 0.346: + Updated pci, usb and vendor ids. (bsc#1182482, jsc#SLE-13791, bsc#1170160) hwdata-0.347-3.21.1.noarch.rpm hwdata-0.347-3.21.1.src.rpm openSUSE-SLE-15.3-2021-1669 moderate SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - The '/var/run' is long deprecated - switch all relevant paths to '/run'. (bsc#1185170) - Improve logging of authentication (bsc#1181540) - Add man page of the 'nconnect mount'. (bsc#1181651) - Fixed an issue when HANA crashed due to inaccessible/hanging NFS mount. (bsc#1183194) nfs-client-2.1.1-10.15.1.x86_64.rpm nfs-doc-2.1.1-10.15.1.x86_64.rpm nfs-kernel-server-2.1.1-10.15.1.x86_64.rpm nfs-utils-2.1.1-10.15.1.src.rpm nfs-client-2.1.1-10.15.1.s390x.rpm nfs-doc-2.1.1-10.15.1.s390x.rpm nfs-kernel-server-2.1.1-10.15.1.s390x.rpm nfs-client-2.1.1-10.15.1.ppc64le.rpm nfs-doc-2.1.1-10.15.1.ppc64le.rpm nfs-kernel-server-2.1.1-10.15.1.ppc64le.rpm nfs-client-2.1.1-10.15.1.aarch64.rpm nfs-doc-2.1.1-10.15.1.aarch64.rpm nfs-kernel-server-2.1.1-10.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-1641 important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-32490 [bsc#1185895]: Out of bounds write in function DJVU:filter_bv() via crafted djvu file - CVE-2021-32491 [bsc#1185900]: Integer overflow in function render() in tools/ddjvu via crafted djvu file - CVE-2021-32492 [bsc#1185904]: Out of bounds read in function DJVU:DataPool:has_data() via crafted djvu file - CVE-2021-32493 [bsc#1185905]: Heap buffer overflow in function DJVU:GBitmap:decode() via crafted djvu file djvulibre-3.5.27-11.3.1.src.rpm djvulibre-3.5.27-11.3.1.x86_64.rpm djvulibre-doc-3.5.27-11.3.1.noarch.rpm libdjvulibre-devel-3.5.27-11.3.1.x86_64.rpm libdjvulibre21-3.5.27-11.3.1.x86_64.rpm djvulibre-3.5.27-11.3.1.s390x.rpm libdjvulibre-devel-3.5.27-11.3.1.s390x.rpm libdjvulibre21-3.5.27-11.3.1.s390x.rpm djvulibre-3.5.27-11.3.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.3.1.ppc64le.rpm libdjvulibre21-3.5.27-11.3.1.ppc64le.rpm djvulibre-3.5.27-11.3.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.3.1.aarch64.rpm libdjvulibre21-3.5.27-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1700 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-agent, google-guest-oslogin, google-osconfig-agent contains the following fixes: - Update to version 20210414.00 (bsc#1185848, bsc#1185849) * start sshd (#106) * Add systemd-networkd.service restart dependency. (#104) * Update error message for handleHealthCheckRequest. (#105) - Update to version 20210429.00 (bsc#1185848, bsc#1185849) * correct pagetoken in groupsforuser (#59) * resolve self groups last (#58) * support empty groups (#57) * no paginating to find groups (#56) * clear users vector (#55) * correct usage of pagetoken (#54) - Update to version 20210506.00 (bsc#1185848, bsc#1185849) * Add more os policy assignment examples (#348) * e2e_tests: enable stable tests for OSPolicies (#347) * Align start and end task logs (#346) * ConfigTask: add additional info logs (#345) * e2e_tests: add validation tests (#344) * Config Task: make sure agent respects policy mode (#343) * update * e2e_tests: readd retries to OSPolicies * Set minWaitDuration as a string instead of object (#341) * e2e_tests: Fix a few SUSE tests (#339) * Remove pre-release flag from config (#340) * e2e_tests: fixup OSPolicy tests (#338) * e2e_tests: unlock mutex for CreatePolicies as soon as create finishes (#337) * e2e_tests: Don't retry failed OSPolicy tests, fix msi test (#336) * Examples for os policy assignments (#334) * e2e_tests: increase the deadline for OSPolicy tests and only start after a zone has been secured (#335) * Fix panic when installing MSI (#332) * e2e_tests: Add test cases of installing dbe, rpm and msi packages (#333) * e2e_tests: add more logging * e2e_tests: (#330) * e2e_test: Add timouts to OSPolicy tests so we don't wait forever (#329) * Create top level directories for gcloud and console for os policy assignment examples (#328) * e2e_tests: Move api from an internal directory (#327) * Make sure we use the same test name for reruns (#326) * Add CONFIG_V1 capability (#325) * e2e_tests: reduce size of instances, use pd-balanced, rerun failed tests once (#324) * Only report installed packages for dpkg (#322) * e2e_tests: fix windows package and repository tests (#323) * Add top level directories for os policy examples (#321) * e2e_tests: move to using inventory api for inventory reporting (#320) * e2e_tests: add ExecResource tests (#319) * ExecResource: make sure we set permissions correctly for downloaded files (#318) * Config task: only run post check on resources that have already been evaluated (#317) * e2e_test: reorganize OSPolicy tests to be per Resource type (#316) * Set custom user agent (#299) * e2e_tests: check InstanceOSPoliciesCompliance for each test case, add LocalPath FileResource test (#314) * PackageResource: make sure to run AptUpdate prior to package install (#315) * Fix bugs/add more logging for OSPolicies (#313) * Change metadata http client to ignore http proxies (#312) * e2e_test: add tests for FileResource (#311) * Add task_type context logging (#310) * Fix e2e_test typo (#309) * Fix e2e_tests (#308) * Disable OSPolicies by default since it is an unreleased feature (#307) * e2e_tests: Add more OSPolicies package and repo tests (#306) * Do not enforce repo_gpgcheck in guestpolicies (#305) * Gather inventory 3-5min after agent start (#303) * e2e_tests: add OSPolicies tests for package install (#302) * Add helpful error log if a service account is missing (#304) * OSPolicies: correct apt repo extension, remove yum/zypper gpgcheck override (#301) * Update cos library to parse new version of packages file (#300) * config_task: Rework config step logic (#296) * e2e_test: enable serial logs in cos to support ReportInventory test (#297) google-guest-agent-20210414.00-1.20.1.src.rpm google-guest-agent-20210414.00-1.20.1.x86_64.rpm google-guest-oslogin-20210429.00-1.18.1.src.rpm google-guest-oslogin-20210429.00-1.18.1.x86_64.rpm google-osconfig-agent-20210506.00-1.11.1.src.rpm google-osconfig-agent-20210506.00-1.11.1.x86_64.rpm google-guest-agent-20210414.00-1.20.1.s390x.rpm google-guest-oslogin-20210429.00-1.18.1.s390x.rpm google-osconfig-agent-20210506.00-1.11.1.s390x.rpm google-guest-agent-20210414.00-1.20.1.ppc64le.rpm google-guest-oslogin-20210429.00-1.18.1.ppc64le.rpm google-osconfig-agent-20210506.00-1.11.1.ppc64le.rpm google-guest-agent-20210414.00-1.20.1.aarch64.rpm google-guest-oslogin-20210429.00-1.18.1.aarch64.rpm google-osconfig-agent-20210506.00-1.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-1655 important SUSE Updates openSUSE-SLE 15.3 This update for fribidi fixes the following issues: Security issues fixed: - CVE-2019-18397: Avoid buffer overflow. (bsc#1156260) fribidi-1.0.5-3.3.1.src.rpm fribidi-1.0.5-3.3.1.x86_64.rpm fribidi-devel-1.0.5-3.3.1.x86_64.rpm libfribidi0-1.0.5-3.3.1.x86_64.rpm libfribidi0-32bit-1.0.5-3.3.1.x86_64.rpm fribidi-1.0.5-3.3.1.s390x.rpm fribidi-devel-1.0.5-3.3.1.s390x.rpm libfribidi0-1.0.5-3.3.1.s390x.rpm fribidi-1.0.5-3.3.1.ppc64le.rpm fribidi-devel-1.0.5-3.3.1.ppc64le.rpm libfribidi0-1.0.5-3.3.1.ppc64le.rpm fribidi-1.0.5-3.3.1.aarch64.rpm fribidi-devel-1.0.5-3.3.1.aarch64.rpm libfribidi0-1.0.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1761 moderate SUSE Updates openSUSE-SLE 15.3 This update for hivex fixes the following issues: - CVE-2021-3504: hivex: missing bounds check within hivex_open() (bsc#1185013) hivex-1.3.14-5.3.1.src.rpm hivex-1.3.14-5.3.1.x86_64.rpm hivex-devel-1.3.14-5.3.1.x86_64.rpm hivex-lang-1.3.14-5.3.1.noarch.rpm libhivex0-1.3.14-5.3.1.x86_64.rpm ocaml-hivex-1.3.14-5.3.1.x86_64.rpm ocaml-hivex-devel-1.3.14-5.3.1.x86_64.rpm perl-Win-Hivex-1.3.14-5.3.1.x86_64.rpm python-hivex-1.3.14-5.3.1.x86_64.rpm hivex-1.3.14-5.3.1.s390x.rpm hivex-devel-1.3.14-5.3.1.s390x.rpm libhivex0-1.3.14-5.3.1.s390x.rpm ocaml-hivex-1.3.14-5.3.1.s390x.rpm ocaml-hivex-devel-1.3.14-5.3.1.s390x.rpm perl-Win-Hivex-1.3.14-5.3.1.s390x.rpm python-hivex-1.3.14-5.3.1.s390x.rpm hivex-1.3.14-5.3.1.ppc64le.rpm hivex-devel-1.3.14-5.3.1.ppc64le.rpm libhivex0-1.3.14-5.3.1.ppc64le.rpm ocaml-hivex-1.3.14-5.3.1.ppc64le.rpm ocaml-hivex-devel-1.3.14-5.3.1.ppc64le.rpm perl-Win-Hivex-1.3.14-5.3.1.ppc64le.rpm python-hivex-1.3.14-5.3.1.ppc64le.rpm hivex-1.3.14-5.3.1.aarch64.rpm hivex-devel-1.3.14-5.3.1.aarch64.rpm libhivex0-1.3.14-5.3.1.aarch64.rpm ocaml-hivex-1.3.14-5.3.1.aarch64.rpm ocaml-hivex-devel-1.3.14-5.3.1.aarch64.rpm perl-Win-Hivex-1.3.14-5.3.1.aarch64.rpm python-hivex-1.3.14-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2685 moderate SUSE Updates openSUSE-SLE 15.3 This update for libdnf fixes the following issues: - Fixed crash when loading DVD repositories Update to 0.62.0 + Change order of TransactionItemReason (rh#1921063) + Add two new comperators for security filters (rh#1918475) + Apply security filters for candidates with lower priority + Fix: Goal - translation of messages in global maps + Enhance description of modular solvables + Improve performance for module query + Change mechanism of modular errata applicability (rh#1804234) + dnf_transaction_commit(): Remove second call to rpmtsSetVSFlags + Fix a couple of memory leaks + Fix: Setting of librepo handle in newHandle function + Remove failsafe data when module is not enabled (rh#1847035) + Expose librepo's checksum functions via SWIG + Fix: Mising check of "hy_split_nevra()" return code + Do not allow 1 as installonly_limit value (rh#1926261) + Fix check whether the subkey can be used for signing + Hardening: add signature check with rpmcliVerifySignatures (CVE-2021-3445, CVE-2021-3421, CVE-2021-20271, rh#1932079, rh#1932089, rh#1932090, bsc#1183779) + Add a config option sslverifystatus, defaults to false (rh#1814383) + [context] Add API for distro-sync - Fix dependency for repo-config-zypp subpackage to work with SLE Update to 0.60.0 + Fix repo.fresh() implementation + Fix: Fully set ssl in newHandle function + [conf] Add options for working with certificates used with proxy + Apply proxy certificate options + lock: Switch return-if-fail to assert to quiet gcc -fanalyzer + build-sys: Clean up message about Python bindings + Modify module NSVCA parsing - context definition (rh#1926771) + [context] Fix: dnf_package_is_installonly (rh#1928056) + Fix problematic language + Add getApplicablePackages to advisory and isApplicable to advisorymodule + Keep isAdvisoryApplicable to preserve API + Run ModulePackageContainerTest tests in tmpdir, merge interdependent + [context] Support config file option "proxy_auth_method", defaults "any" + Properly handle multiple collections in updateinfo.xml (rh#1804234) + Support main config file option "installonlypkgs" + Support main config file option "protected_packages" - Add repo-config-zypp subpackage to allow easily using Zypper repository configuration - Backport support for using certificates for repository authorization - Backport another fix for adding controls to installonlypkgs - Add patch to move directory for dnf state data to /usr/lib/sysimage - Backport fixes to add controls for installonlypkgs and protected_packages Update to version 0.58.0 + Option: Add reset() method + Add OptionBinds::getOption() method + [context] Add dnf_repo_conf_from_gkeyfile() and dnf_repo_conf_reset() + [context] Add support for options: minrate, throttle, bandwidth, timeout + [context] Remove g_key_file_get_string() from dnf_repo_set_keyfile_data() + Allow loading ext metadata even if only cache (solv) is present + Add ASAN_OPTIONS for test_libdnf_main + [context,API] Functions for accessing main/global configuration options + [context,API] Function for adding setopt + Add getter for modular obsoletes from ModuleMetadata + Add ModulePackage.getStaticContext() and getRequires() + Add compatible layer for MdDocuments v2 + Fix modular queries with the new solver + Improve formatting of error string for modules + Change mechanism of module conflicts + Fix load/update FailSafe Update to version 0.55.2 + Improve performance of query installed() and available() + Swdb: Add a method to get the current transaction + [modules] Add special handling for src artifacts (rh#1809314) + Better msgs if "basecachedir" or "proxy_password" isn't set (rh#1888946) + Add new options module_stream_switch + Support allow_vendor_change setting in dnf context API Update to version 0.55.0 + Add vendor to dnf API (rh#1876561) + Add formatting function for solver error + Add error types in ModulePackageContainer + Implement module enable for context part + Improve string formatting for translation + Remove redundant printf and change logging info to notice (rh#1827424) + Add allow_vendor_change option (rh#1788371) (rh#1788371) Update to version 0.54.2 + history: Fix dnf history rollback when a package was removed (rh#1683134) + Add support for HY_GT, HY_LT in query nevra_strict + Fix parsing empty lines in config files + Accept '==' as an operator in reldeps (rh#1847946) + Add log file level main config option (rh#1802074) + Add protect_running_kernel configuration option (rh#1698145) + Context part of libdnf cannot assume zchunk is on (rh#1851841, rh#1779104) + Fix memory leak of resultingModuleIndex and handle g_object refs + Redirect librepo logs to libdnf logs with different source + Add hy_goal_lock + Enum/String conversions for Transaction Store/Replay + utils: Add a method to decode URLs + Unify hawkey.log line format with the rest of the logs Update to version 0.48.0 + Add prereq_ignoreinst & regular_requires properties for pkg (rh#1543449) + Reset active modules when no module enabled or default (rh#1767351) + Add comment option to transaction (rh#1773679) + Failing to get module defauls is a recoverable error + Baseurl is not exclusive with mirrorlist/metalink (rh#1775184) + Add new function to reset all modules in C API (dnf_context_reset_all_modules) + [context] Fix to preserve additionalMetadata content (rh#1808677) + Fix filtering of DepSolvables with source rpms (rh#1812596) + Add setter for running kernel protection setting + Handle situation when an unprivileged user cannot create history database (rh#1634385) + Add query filter: latest by priority + Add DNF_NO_PROTECTED flag to allow empty list of protected packages + Remove 'dim' option from terminal colors to make them more readable (rh#1807774, rh#1814563) + [context] Error when main config file can't be opened (rh#1794864) + [context] Add function function dnf_context_is_set_config_file_path + swdb: Catch only SQLite3 exceptions and simplify the messages + MergedTransaction list multiple comments (rh#1773679) + Modify CMake to pull *.po files from weblate + Optimize DependencyContainer creation from an existing queue + fix a memory leak in dnf_package_get_requires() + Fix memory leaks on g_build_filename() + Fix memory leak in dnf_context_setup() + Add `hy_goal_favor` and `hy_goal_disfavor` + Define a cleanup function for `DnfPackageSet` + dnf-repo: fix dnf_repo_get_public_keys double-free + Do not cache RPMDB + Use single-quotes around string literals used in SQL statements + SQLite3: Do not close the database if it wasn't opened (rh#1761976) + Don't create a new history DB connection for in-memory DB + transaction/Swdb: Use a single logger variable in constructor + utils: Add a safe version of pathExists() + swdb: Handle the case when pathExists() fails on e.g. permission + Repo: prepend "file://" if a local path is used as baseurl + Move urlEncode() to utils + utils: Add 'exclude' argument to urlEncode() + Encode package URL for downloading through librepo (rh#1817130) + Replace std::runtime_error with libdnf::RepoError + Fixes and error handling improvements of the File class + [context] Use ConfigRepo for gpgkey and baseurl (rh#1807864) + [context] support "priority" option in .repo config file (rh#1797265) hawkey-man-0.62.0-5.3.1.noarch.rpm libdnf-0.62.0-5.3.1.src.rpm libdnf-devel-0.62.0-5.3.1.i586.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.i586.rpm libdnf2-0.62.0-5.3.1.i586.rpm python3-hawkey-0.62.0-5.3.1.i586.rpm python3-libdnf-0.62.0-5.3.1.i586.rpm libdnf-devel-0.62.0-5.3.1.x86_64.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.x86_64.rpm libdnf2-0.62.0-5.3.1.x86_64.rpm python3-hawkey-0.62.0-5.3.1.x86_64.rpm python3-libdnf-0.62.0-5.3.1.x86_64.rpm libdnf-devel-0.62.0-5.3.1.s390x.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.s390x.rpm libdnf2-0.62.0-5.3.1.s390x.rpm python3-hawkey-0.62.0-5.3.1.s390x.rpm python3-libdnf-0.62.0-5.3.1.s390x.rpm libdnf-devel-0.62.0-5.3.1.ppc64le.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.ppc64le.rpm libdnf2-0.62.0-5.3.1.ppc64le.rpm python3-hawkey-0.62.0-5.3.1.ppc64le.rpm python3-libdnf-0.62.0-5.3.1.ppc64le.rpm libdnf-devel-0.62.0-5.3.1.aarch64.rpm libdnf-repo-config-zypp-0.62.0-5.3.1.aarch64.rpm libdnf2-0.62.0-5.3.1.aarch64.rpm python3-hawkey-0.62.0-5.3.1.aarch64.rpm python3-libdnf-0.62.0-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1675 moderate SUSE Updates openSUSE-SLE 15.3 This update for snappy fixes the following issues: Update from version 1.1.3 to 1.1.8 - Small performance improvements. - Removed `snappy::string` alias for `std::string`. - Improved `CMake` configuration. - Improved packages descriptions. - Fix RPM groups. - Aarch64 fixes - PPC speedups - PIE improvements - Fix license install. (bsc#1080040) - Fix a 1% performance regression when snappy is used in PIE executable. - Improve compression performance by 5%. - Improve decompression performance by 20%. - Use better download URL. - Fix a build issue for tensorflow2. (bsc#1184507) libsnappy1-1.1.8-3.3.1.x86_64.rpm libsnappy1-32bit-1.1.8-3.3.1.x86_64.rpm snappy-1.1.8-3.3.1.src.rpm snappy-devel-1.1.8-3.3.1.x86_64.rpm libsnappy1-1.1.8-3.3.1.s390x.rpm snappy-devel-1.1.8-3.3.1.s390x.rpm libsnappy1-1.1.8-3.3.1.ppc64le.rpm snappy-devel-1.1.8-3.3.1.ppc64le.rpm libsnappy1-1.1.8-3.3.1.aarch64.rpm snappy-devel-1.1.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1640 moderate SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - FIPS: Replace AEAD AES CCM patch with upstream variant (bsc#1185363) strongswan-5.8.2-11.14.1.src.rpm strongswan-5.8.2-11.14.1.x86_64.rpm strongswan-doc-5.8.2-11.14.1.noarch.rpm strongswan-hmac-5.8.2-11.14.1.x86_64.rpm strongswan-ipsec-5.8.2-11.14.1.x86_64.rpm strongswan-libs0-5.8.2-11.14.1.x86_64.rpm strongswan-mysql-5.8.2-11.14.1.x86_64.rpm strongswan-nm-5.8.2-11.14.1.x86_64.rpm strongswan-sqlite-5.8.2-11.14.1.x86_64.rpm strongswan-5.8.2-11.14.1.s390x.rpm strongswan-hmac-5.8.2-11.14.1.s390x.rpm strongswan-ipsec-5.8.2-11.14.1.s390x.rpm strongswan-libs0-5.8.2-11.14.1.s390x.rpm strongswan-mysql-5.8.2-11.14.1.s390x.rpm strongswan-nm-5.8.2-11.14.1.s390x.rpm strongswan-sqlite-5.8.2-11.14.1.s390x.rpm strongswan-5.8.2-11.14.1.ppc64le.rpm strongswan-hmac-5.8.2-11.14.1.ppc64le.rpm strongswan-ipsec-5.8.2-11.14.1.ppc64le.rpm strongswan-libs0-5.8.2-11.14.1.ppc64le.rpm strongswan-mysql-5.8.2-11.14.1.ppc64le.rpm strongswan-nm-5.8.2-11.14.1.ppc64le.rpm strongswan-sqlite-5.8.2-11.14.1.ppc64le.rpm strongswan-5.8.2-11.14.1.aarch64.rpm strongswan-hmac-5.8.2-11.14.1.aarch64.rpm strongswan-ipsec-5.8.2-11.14.1.aarch64.rpm strongswan-libs0-5.8.2-11.14.1.aarch64.rpm strongswan-mysql-5.8.2-11.14.1.aarch64.rpm strongswan-nm-5.8.2-11.14.1.aarch64.rpm strongswan-sqlite-5.8.2-11.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-1660 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issues: - Fix appx manifest for WSL containers This patch is two fold * This commit prevents KIWI from setting Identity Name attribute and DisplayName and PublisherDisplayName elements. Fixes #1780 * Fix WSL appx filemap relative paths not preserved During WSL appx image type creation step the file hierarchy under metadata_path is written to a temporary file for eventual use as argument to utility appx. The file hierarchy information is dropped resulting in all filemap entries appearing to be at the metadata_path root. The resulting image will side load and run but without icon and other resources. Stricter checks at Windows Store submission will fail due to mismatch between image manifest and contents. Fix by preserving relative path of filemap entries relative to metadata_path. Add log output showing both input absolute path and output relative path. (jsc#SLE-12986) - Recommend kiwi-systemdeps-containers This commit recommends 'kiwi-systemdeps-containers' instead of a hard requirement in kiwi-systemdeps package for SLE builds. This is needed because the containers tool chain is spread in different SLE modules. dracut-kiwi-lib-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-live-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-overlay-9.23.20-3.40.1.x86_64.rpm kiwi-man-pages-9.23.20-3.40.1.x86_64.rpm kiwi-pxeboot-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-core-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.x86_64.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.x86_64.rpm kiwi-tools-9.23.20-3.40.1.x86_64.rpm python-kiwi-9.23.20-3.40.1.src.rpm python3-kiwi-9.23.20-3.40.1.x86_64.rpm dracut-kiwi-lib-9.23.20-3.40.1.s390x.rpm dracut-kiwi-live-9.23.20-3.40.1.s390x.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.s390x.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.s390x.rpm dracut-kiwi-overlay-9.23.20-3.40.1.s390x.rpm kiwi-man-pages-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-core-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.s390x.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.s390x.rpm kiwi-tools-9.23.20-3.40.1.s390x.rpm python3-kiwi-9.23.20-3.40.1.s390x.rpm dracut-kiwi-lib-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-live-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-overlay-9.23.20-3.40.1.ppc64le.rpm kiwi-man-pages-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-core-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.ppc64le.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.ppc64le.rpm kiwi-tools-9.23.20-3.40.1.ppc64le.rpm python3-kiwi-9.23.20-3.40.1.ppc64le.rpm dracut-kiwi-lib-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-live-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-oem-dump-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-oem-repart-9.23.20-3.40.1.aarch64.rpm dracut-kiwi-overlay-9.23.20-3.40.1.aarch64.rpm kiwi-man-pages-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-bootloaders-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-containers-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-core-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-disk-images-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-filesystems-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-image-validation-9.23.20-3.40.1.aarch64.rpm kiwi-systemdeps-iso-media-9.23.20-3.40.1.aarch64.rpm kiwi-tools-9.23.20-3.40.1.aarch64.rpm python3-kiwi-9.23.20-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-1752 moderate SUSE Updates openSUSE-SLE 15.3 This update for expect fixes the following issues: - Fixed an issue when expect in permanently open connection causes hanging for scripts. (bsc#1183904) - pass explicit -pie flag to CFLAGS and hack `make` invocation so that /usr/bin/expect actually becomes a PIE binary. This is especially awkard since the expect build system implicitly passes -fPIC which breaks our gcc-PIE package, but does not pass -pie while linking the executable. Shared libraries are also not linked with -shared so we need to explicitly pass this, too, to avoid build breakage. (bsc#1184122) - Add an unversioned symlink to make linking easier for applications that use libexpect without Tcl. (bsc#1172681) expect-5.45.4-3.3.1.src.rpm expect-5.45.4-3.3.1.x86_64.rpm expect-devel-5.45.4-3.3.1.x86_64.rpm expect-5.45.4-3.3.1.s390x.rpm expect-devel-5.45.4-3.3.1.s390x.rpm expect-5.45.4-3.3.1.ppc64le.rpm expect-devel-5.45.4-3.3.1.ppc64le.rpm expect-5.45.4-3.3.1.aarch64.rpm expect-devel-5.45.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1678 moderate SUSE Updates openSUSE-SLE 15.3 This update for prometheus-ha_cluster_exporter fixes the following issues: - Add parsing of the `crm_config` node in the CIB parser. - Update the minimum required Go version to 1.14. - Avoid duplicate metric recording errors for non-running OCFS resources. (bsc#1184422) prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.src.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.x86_64.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.s390x.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.ppc64le.rpm prometheus-ha_cluster_exporter-1.2.2+git.1620117406.cf586eb-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1755 moderate SUSE Updates openSUSE-SLE 15.3 This update for libu2f-host fixes the following issues: This update ships the u2f-host package (jsc#ECO-3687 bsc#1184648) Version 1.1.10 (released 2019-05-15) - Add new devices to udev rules. - Fix a potentially uninitialized buffer (CVE-2019-9578, bsc#1128140) Version 1.1.9 (released 2019-03-06) - Fix CID copying from the init response, which broke compatibility with some devices. Version 1.1.8 (released 2019-03-05) - Add udev rules - Drop 70-old-u2f.rules and use 70-u2f.rules for everything - Use a random nonce for setting up CID to prevent fingerprinting - CVE-2019-9578: Parse the response to init in a more stable way to prevent leakage of uninitialized stack memory back to the device (bsc#1128140). Version 1.1.7 (released 2019-01-08) - Fix for trusting length from device in device init. - Fix for buffer overflow when receiving data from device. (YSA-2019-01, CVE-2018-20340, bsc#1124781) - Add udev rules for some new devices. - Add udev rule for Feitian ePass FIDO - Add a timeout to the register and authenticate actions. libu2f-host-1.1.10-3.9.1.src.rpm libu2f-host-devel-1.1.10-3.9.1.x86_64.rpm libu2f-host-doc-1.1.10-3.9.1.x86_64.rpm libu2f-host0-1.1.10-3.9.1.x86_64.rpm u2f-host-1.1.10-3.9.1.x86_64.rpm libu2f-host-devel-1.1.10-3.9.1.s390x.rpm libu2f-host-doc-1.1.10-3.9.1.s390x.rpm libu2f-host0-1.1.10-3.9.1.s390x.rpm u2f-host-1.1.10-3.9.1.s390x.rpm libu2f-host-devel-1.1.10-3.9.1.ppc64le.rpm libu2f-host-doc-1.1.10-3.9.1.ppc64le.rpm libu2f-host0-1.1.10-3.9.1.ppc64le.rpm u2f-host-1.1.10-3.9.1.ppc64le.rpm libu2f-host-devel-1.1.10-3.9.1.aarch64.rpm libu2f-host-doc-1.1.10-3.9.1.aarch64.rpm libu2f-host0-1.1.10-3.9.1.aarch64.rpm u2f-host-1.1.10-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1951 important SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Check if dpkgnotify is executable (bsc#1186674) - Update to Salt release version 3002.2 (jsc#ECO-3212, jsc#SLE-18033, jsc#SLE-18028) - Drop support for Python2. Obsoletes `python2-salt` package (jsc#SLE-18028) - Fix issue parsing errors in ansiblegate state module - Prevent command injection in the snapper module (bsc#1185281, CVE-2021-31607) - transactional_update: detect recursion in the executor - Add subpackage `salt-transactional-update` (jsc#SLE-18033) - Remove duplicate directories python3-salt-3002.2-8.41.8.1.x86_64.rpm True salt-3002.2-8.41.8.1.src.rpm True salt-3002.2-8.41.8.1.x86_64.rpm True salt-api-3002.2-8.41.8.1.x86_64.rpm True salt-bash-completion-3002.2-8.41.8.1.noarch.rpm True salt-cloud-3002.2-8.41.8.1.x86_64.rpm True salt-doc-3002.2-8.41.8.1.x86_64.rpm True salt-fish-completion-3002.2-8.41.8.1.noarch.rpm True salt-master-3002.2-8.41.8.1.x86_64.rpm True salt-minion-3002.2-8.41.8.1.x86_64.rpm True salt-proxy-3002.2-8.41.8.1.x86_64.rpm True salt-ssh-3002.2-8.41.8.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.x86_64.rpm True salt-syndic-3002.2-8.41.8.1.x86_64.rpm True salt-transactional-update-3002.2-8.41.8.1.x86_64.rpm True salt-zsh-completion-3002.2-8.41.8.1.noarch.rpm True python3-salt-3002.2-8.41.8.1.s390x.rpm True salt-3002.2-8.41.8.1.s390x.rpm True salt-api-3002.2-8.41.8.1.s390x.rpm True salt-cloud-3002.2-8.41.8.1.s390x.rpm True salt-doc-3002.2-8.41.8.1.s390x.rpm True salt-master-3002.2-8.41.8.1.s390x.rpm True salt-minion-3002.2-8.41.8.1.s390x.rpm True salt-proxy-3002.2-8.41.8.1.s390x.rpm True salt-ssh-3002.2-8.41.8.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.s390x.rpm True salt-syndic-3002.2-8.41.8.1.s390x.rpm True salt-transactional-update-3002.2-8.41.8.1.s390x.rpm True python3-salt-3002.2-8.41.8.1.ppc64le.rpm True salt-3002.2-8.41.8.1.ppc64le.rpm True salt-api-3002.2-8.41.8.1.ppc64le.rpm True salt-cloud-3002.2-8.41.8.1.ppc64le.rpm True salt-doc-3002.2-8.41.8.1.ppc64le.rpm True salt-master-3002.2-8.41.8.1.ppc64le.rpm True salt-minion-3002.2-8.41.8.1.ppc64le.rpm True salt-proxy-3002.2-8.41.8.1.ppc64le.rpm True salt-ssh-3002.2-8.41.8.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.ppc64le.rpm True salt-syndic-3002.2-8.41.8.1.ppc64le.rpm True salt-transactional-update-3002.2-8.41.8.1.ppc64le.rpm True python3-salt-3002.2-8.41.8.1.aarch64.rpm True salt-3002.2-8.41.8.1.aarch64.rpm True salt-api-3002.2-8.41.8.1.aarch64.rpm True salt-cloud-3002.2-8.41.8.1.aarch64.rpm True salt-doc-3002.2-8.41.8.1.aarch64.rpm True salt-master-3002.2-8.41.8.1.aarch64.rpm True salt-minion-3002.2-8.41.8.1.aarch64.rpm True salt-proxy-3002.2-8.41.8.1.aarch64.rpm True salt-ssh-3002.2-8.41.8.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-8.41.8.1.aarch64.rpm True salt-syndic-3002.2-8.41.8.1.aarch64.rpm True salt-transactional-update-3002.2-8.41.8.1.aarch64.rpm True openSUSE-SLE-15.3-2021-1762 moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22898: Fixed curl TELNET stack contents disclosure (bsc#1186114). - Allow partial chain verification [jsc#SLE-17956] * Have intermediate certificates in the trust store be treated as trust-anchors, in the same way as self-signed root CA certificates are. This allows users to verify servers using the intermediate cert only, instead of needing the whole chain. * Set FLAG_TRUSTED_FIRST unconditionally. * Do not check partial chains with CRL check. curl-7.66.0-4.17.1.src.rpm curl-7.66.0-4.17.1.x86_64.rpm curl-mini-7.66.0-4.17.1.src.rpm curl-mini-7.66.0-4.17.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.17.1.x86_64.rpm libcurl-devel-7.66.0-4.17.1.x86_64.rpm libcurl-mini-devel-7.66.0-4.17.1.x86_64.rpm libcurl4-32bit-7.66.0-4.17.1.x86_64.rpm libcurl4-7.66.0-4.17.1.x86_64.rpm libcurl4-mini-7.66.0-4.17.1.x86_64.rpm curl-7.66.0-4.17.1.s390x.rpm curl-mini-7.66.0-4.17.1.s390x.rpm libcurl-devel-7.66.0-4.17.1.s390x.rpm libcurl-mini-devel-7.66.0-4.17.1.s390x.rpm libcurl4-7.66.0-4.17.1.s390x.rpm libcurl4-mini-7.66.0-4.17.1.s390x.rpm curl-7.66.0-4.17.1.ppc64le.rpm curl-mini-7.66.0-4.17.1.ppc64le.rpm libcurl-devel-7.66.0-4.17.1.ppc64le.rpm libcurl-mini-devel-7.66.0-4.17.1.ppc64le.rpm libcurl4-7.66.0-4.17.1.ppc64le.rpm libcurl4-mini-7.66.0-4.17.1.ppc64le.rpm curl-7.66.0-4.17.1.aarch64.rpm curl-mini-7.66.0-4.17.1.aarch64.rpm libcurl-devel-7.66.0-4.17.1.aarch64.rpm libcurl-mini-devel-7.66.0-4.17.1.aarch64.rpm libcurl4-7.66.0-4.17.1.aarch64.rpm libcurl4-mini-7.66.0-4.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-1876 important SUSE Updates openSUSE-SLE 15.3 This update for snakeyaml fixes the following issues: - Upgrade to 1.28 - CVE-2017-18640: The Alias feature allows entity expansion during a load operation (bsc#1159488, bsc#1186088) snakeyaml-1.28-3.5.1.noarch.rpm snakeyaml-1.28-3.5.1.src.rpm snakeyaml-javadoc-1.28-3.5.1.noarch.rpm openSUSE-SLE-15.3-2021-2173 moderate SUSE Updates openSUSE-SLE 15.3 This update for automake fixes the following issues: - Implement generated autoconf makefiles reproducible (bsc#1182604) - Add fix to avoid date variations in docs. (bsc#1047218, jsc#SLE-17848) - Avoid bashisms in test-driver script. (bsc#1185540) This update for pcre fixes the following issues: - Do not run profiling 'check' in parallel to make package build reproducible. (bsc#1040589) This update for brp-check-suse fixes the following issues: - Add fixes to support reproducible builds. (bsc#1186049) automake-1.15.1-4.10.2.noarch.rpm automake-1.15.1-4.10.2.src.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.src.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.x86_64.rpm libpcre1-32bit-8.41-6.4.2.x86_64.rpm libpcre1-8.41-6.4.2.x86_64.rpm libpcre16-0-32bit-8.41-6.4.2.x86_64.rpm libpcre16-0-8.41-6.4.2.x86_64.rpm libpcrecpp0-32bit-8.41-6.4.2.x86_64.rpm libpcrecpp0-8.41-6.4.2.x86_64.rpm libpcreposix0-32bit-8.41-6.4.2.x86_64.rpm libpcreposix0-8.41-6.4.2.x86_64.rpm pcre-8.41-6.4.2.src.rpm pcre-devel-8.41-6.4.2.x86_64.rpm pcre-devel-static-8.41-6.4.2.x86_64.rpm pcre-doc-8.41-6.4.2.noarch.rpm pcre-tools-8.41-6.4.2.x86_64.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.s390x.rpm libpcre1-8.41-6.4.2.s390x.rpm libpcre16-0-8.41-6.4.2.s390x.rpm libpcrecpp0-8.41-6.4.2.s390x.rpm libpcreposix0-8.41-6.4.2.s390x.rpm pcre-devel-8.41-6.4.2.s390x.rpm pcre-devel-static-8.41-6.4.2.s390x.rpm pcre-tools-8.41-6.4.2.s390x.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.ppc64le.rpm libpcre1-8.41-6.4.2.ppc64le.rpm libpcre16-0-8.41-6.4.2.ppc64le.rpm libpcrecpp0-8.41-6.4.2.ppc64le.rpm libpcreposix0-8.41-6.4.2.ppc64le.rpm pcre-devel-8.41-6.4.2.ppc64le.rpm pcre-devel-static-8.41-6.4.2.ppc64le.rpm pcre-tools-8.41-6.4.2.ppc64le.rpm brp-check-suse-84.87+git20181106.224b37d-3.18.2.aarch64.rpm libpcre1-8.41-6.4.2.aarch64.rpm libpcre16-0-8.41-6.4.2.aarch64.rpm libpcrecpp0-8.41-6.4.2.aarch64.rpm libpcreposix0-8.41-6.4.2.aarch64.rpm pcre-devel-8.41-6.4.2.aarch64.rpm pcre-devel-static-8.41-6.4.2.aarch64.rpm pcre-tools-8.41-6.4.2.aarch64.rpm openSUSE-SLE-15.3-2021-1794 moderate SUSE Updates openSUSE-SLE 15.3 This update for radvd fixes the following issues: - replace '/var/run' with '/run' in '/usr/lib/tmpfiles.d/radvd.conf' (bsc#1185066) radvd-2.17-5.5.1.src.rpm radvd-2.17-5.5.1.x86_64.rpm radvd-2.17-5.5.1.s390x.rpm radvd-2.17-5.5.1.ppc64le.rpm radvd-2.17-5.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2103 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: POS_Image-Graphical7: - Use absolute path in bootloader service - Update install-local-bootloader.service for recent saltboot - Use linuxefi only on x86 POS_Image-JeOS7: - Use absolute path in bootloader service - Update install-local-bootloader.service for recent saltboot - Use linuxefi only on x86 golang-github-prometheus-prometheus: - Add tarball with vendor modules and web assets - Read formula data from exporters map - Add support for TLS targets - Upgrade to upstream version 2.26.0 + Changes * Alerting: Using Alertmanager v2 API by default. * Prometheus/Promtool: Binaries are now printing help and usage to stdout instead of stderr. * UI: Make the React UI default. * Remote write: The following metrics were removed/renamed in remote write. > prometheus_remote_storage_succeeded_samples_total was removed and prometheus_remote_storage_samples_total was introduced for all the samples attempted to send. > prometheus_remote_storage_sent_bytes_total was removed and replaced with prometheus_remote_storage_samples_bytes_total and prometheus_remote_storage_metadata_bytes_total. > prometheus_remote_storage_failed_samples_total -> prometheus_remote_storage_samples_failed_total. > prometheus_remote_storage_retried_samples_total -> prometheus_remote_storage_samples_retried_total. > prometheus_remote_storage_dropped_samples_total -> prometheus_remote_storage_samples_dropped_total. > prometheus_remote_storage_pending_samples -> prometheus_remote_storage_samples_pending. * Remote: Do not collect non-initialized timestamp metrics. + Features * Remote: Add support for AWS SigV4 auth method for remote_write. * PromQL: Allow negative offsets. Behind --enable-feature=promql-negative-offset flag. * UI: Add advanced auto-completion, syntax highlighting and linting to graph page query input. * Include a new `--enable-feature=` flag that enables experimental features. * Add TLS and basic authentication to HTTP endpoints. * promtool: Add check web-config subcommand to check web config files. * promtool: Add tsdb create-blocks-from openmetrics subcommand to backfill metrics data from an OpenMetrics file. + Enhancements * PromQL: Add last_over_time, sgn, clamp functions. * Scrape: Add support for specifying type of Authorization header credentials with Bearer by default. * Scrape: Add follow_redirects option to scrape configuration. * Remote: Allow retries on HTTP 429 response code for remote_write. * Remote: Allow configuring custom headers for remote_read. * UI: Hitting Enter now triggers new query. * UI: Better handling of long rule and names on the /rules and /targets pages. * UI: Add collapse/expand all button on the /targets page. * Add optional name property to testgroup for better test failure output. * Add warnings into React Panel on the Graph page. * TSDB: Increase the number of buckets for the compaction duration metric. * Remote: Allow passing along custom remote_write HTTP headers. * Mixins: Scope grafana configuration. * Kubernetes SD: Add endpoint labels metadata. * UI: Expose total number of label pairs in head in TSDB stats page. * TSDB: Reload blocks every minute, to detect new blocks and enforce retention more often. * Cache basic authentication results to significantly improve performance of HTTP endpoints. * HTTP API: Fast-fail queries with only empty matchers. * HTTP API: Support matchers for labels API. * promtool: Improve checking of URLs passed on the command line. * SD: Expose IPv6 as a label in EC2 SD. * SD: Reuse EC2 client, reducing frequency of requesting credentials. * TSDB: Add logging when compaction takes more than the block time range. * TSDB: Avoid unnecessary GC runs after compaction. * Remote write: Added a metric prometheus_remote_storage_max_samples_per_send for remote write. * TSDB: Make the snapshot directory name always the same length. * TSDB: Create a checkpoint only once at the end of all head compactions. * TSDB: Avoid Series API from hitting the chunks. * TSDB: Cache label name and last value when adding series during compactions making compactions faster. * PromQL: Improved performance of Hash method making queries a bit faster. * promtool: tsdb list now prints block sizes. * promtool: Calculate mint and maxt per test avoiding unnecessary calculations. * SD: Add filtering of services to Docker Swarm SD. + Bug fixes * API: Fix global URL when external address has no port. * Deprecate unused flag --alertmanager.timeout. mgr-cfg: - SPEC: Updated Python definitions for RHEL8 and quoted text comparisons. mgr-custom-info: - Update package version to 4.2.0 mgr-daemon: - Update translation strings - Update the translations from weblate - Added quotes around %{_vendor} token for the if statements in spec file. - Fix removal of mgr-deamon with selinux enabled (bsc#1177928) - Updating translations from weblate mgr-osad: - Change the log file permissions as expected by logrotate (bsc#1177884) - Change deprecated path /var/run into /run for systemd (bsc#1185178) - Python fixes - Removal of RHEL5 mgr-push: - Defined __python for python2. - Excluded RHEL8 for Python 2 build. mgr-virtualization: - Update package version to 4.2.0 python-hwdata: - Modified to build on RHEL8. rhnlib: - Update package version to 4.2.0 spacecmd: - Rename system migration to system transfer - Rename SP to product migration - Update translation strings - Add group_addconfigchannel and group_removeconfigchannel - Add group_listconfigchannels and configchannel_listgroups - Fix spacecmd compat with Python 3 - Deprecated "Software Crashes" feature - Document advanced package search on '--help' (bsc#1180583) - Fixed advanced search on 'package_listinstalledsystems' - Fixed duplicate results when using multiple search criteria (bsc#1180585) - Fixed "non-advanced" package search when using multiple package names (bsc#1180584) - Update translations - Fix: make spacecmd build on Debian - Add Service Pack migration operations (bsc#1173557) spacewalk-client-tools: - Update the translations from weblate - Drop the --noSSLServerURL option - Updated RHEL Python requirements. - Added quotes around %{_vendor}. spacewalk-koan: - Fix for spacewalk-koan test spacewalk-oscap: - Update package version to 4.2.0 spacewalk-remote-utils: - Update package version to 4.2.0 supportutils-plugin-susemanager-client: - Update package version to 4.2.0 suseRegisterInfo: - Add support for Amazon Linux 2 - Add support for Alibaba Cloud Linux 2 - Adapted for RHEL build. uyuni-common-libs: - Cleaning up unused Python 2 build leftovers. - Disabled debug package build. POS_Image-Graphical7-0.1.1620138994.d7f39a0-1.18.1.noarch.rpm POS_Image-Graphical7-0.1.1620138994.d7f39a0-1.18.1.src.rpm POS_Image-JeOS7-0.1.1620138994.d7f39a0-1.18.1.noarch.rpm POS_Image-JeOS7-0.1.1620138994.d7f39a0-1.18.1.src.rpm ansible-2.9.21-1.3.1.noarch.rpm ansible-2.9.21-1.3.1.src.rpm ansible-doc-2.9.21-1.3.1.noarch.rpm ansible-test-2.9.21-1.3.1.noarch.rpm memcached-1.5.6-4.7.1.src.rpm memcached-1.5.6-4.7.1.x86_64.rpm memcached-devel-1.5.6-4.7.1.x86_64.rpm mgr-cfg-4.2.2-1.15.1.noarch.rpm mgr-cfg-4.2.2-1.15.1.src.rpm mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm mgr-cfg-client-4.2.2-1.15.1.noarch.rpm mgr-cfg-management-4.2.2-1.15.1.noarch.rpm mgr-custom-info-4.2.1-1.9.1.noarch.rpm mgr-custom-info-4.2.1-1.9.1.src.rpm mgr-daemon-4.2.7-1.26.1.noarch.rpm mgr-daemon-4.2.7-1.26.1.src.rpm mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm mgr-osad-4.2.5-1.27.1.noarch.rpm mgr-osad-4.2.5-1.27.1.src.rpm mgr-push-4.2.2-1.9.1.noarch.rpm mgr-push-4.2.2-1.9.1.src.rpm mgr-virtualization-4.2.1-1.17.1.src.rpm mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python-hwdata-2.3.5-3.3.1.src.rpm python-python-memcached-1.59-3.5.1.src.rpm python-straight-plugin-1.5.0-1.3.1.src.rpm python2-hwdata-2.3.5-3.3.1.noarch.rpm python2-mgr-cfg-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-client-4.2.2-1.15.1.noarch.rpm python2-mgr-cfg-management-4.2.2-1.15.1.noarch.rpm python2-mgr-osa-common-4.2.5-1.27.1.noarch.rpm python2-mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm python2-mgr-osad-4.2.5-1.27.1.noarch.rpm python2-mgr-push-4.2.2-1.9.1.noarch.rpm python2-mgr-virtualization-common-4.2.1-1.17.1.noarch.rpm python2-mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python2-python-memcached-1.59-3.5.1.noarch.rpm python2-rhnlib-4.2.3-3.25.1.noarch.rpm python2-spacewalk-check-4.2.10-3.41.3.noarch.rpm python2-spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm python2-spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm python2-spacewalk-koan-4.2.3-3.18.1.noarch.rpm python2-spacewalk-oscap-4.2.1-3.9.1.noarch.rpm python2-straight-plugin-1.5.0-1.3.1.noarch.rpm python2-suseRegisterInfo-4.2.3-3.12.1.noarch.rpm python2-uyuni-common-libs-4.2.3-1.12.1.x86_64.rpm python3-hwdata-2.3.5-3.3.1.noarch.rpm python3-mgr-cfg-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-actions-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-client-4.2.2-1.15.1.noarch.rpm python3-mgr-cfg-management-4.2.2-1.15.1.noarch.rpm python3-mgr-osa-common-4.2.5-1.27.1.noarch.rpm python3-mgr-osa-dispatcher-4.2.5-1.27.1.noarch.rpm python3-mgr-osad-4.2.5-1.27.1.noarch.rpm python3-mgr-push-4.2.2-1.9.1.noarch.rpm python3-mgr-virtualization-common-4.2.1-1.17.1.noarch.rpm python3-mgr-virtualization-host-4.2.1-1.17.1.noarch.rpm python3-python-memcached-1.59-3.5.1.noarch.rpm python3-rhnlib-4.2.3-3.25.1.noarch.rpm python3-spacewalk-check-4.2.10-3.41.3.noarch.rpm python3-spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm python3-spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm python3-spacewalk-koan-4.2.3-3.18.1.noarch.rpm python3-spacewalk-oscap-4.2.1-3.9.1.noarch.rpm python3-straight-plugin-1.5.0-1.3.1.noarch.rpm python3-suseRegisterInfo-4.2.3-3.12.1.noarch.rpm python3-uyuni-common-libs-4.2.3-1.12.1.x86_64.rpm rhnlib-4.2.3-3.25.1.src.rpm spacecmd-4.2.8-3.59.1.noarch.rpm spacecmd-4.2.8-3.59.1.src.rpm spacewalk-check-4.2.10-3.41.3.noarch.rpm spacewalk-client-setup-4.2.10-3.41.3.noarch.rpm spacewalk-client-tools-4.2.10-3.41.3.noarch.rpm spacewalk-client-tools-4.2.10-3.41.3.src.rpm spacewalk-koan-4.2.3-3.18.1.noarch.rpm spacewalk-koan-4.2.3-3.18.1.src.rpm spacewalk-oscap-4.2.1-3.9.1.noarch.rpm spacewalk-oscap-4.2.1-3.9.1.src.rpm spacewalk-remote-utils-4.2.1-3.15.1.noarch.rpm spacewalk-remote-utils-4.2.1-3.15.1.src.rpm supportutils-plugin-susemanager-client-4.2.2-3.15.1.noarch.rpm supportutils-plugin-susemanager-client-4.2.2-3.15.1.src.rpm suseRegisterInfo-4.2.3-3.12.1.noarch.rpm suseRegisterInfo-4.2.3-3.12.1.src.rpm uyuni-common-libs-4.2.3-1.12.1.src.rpm memcached-1.5.6-4.7.1.s390x.rpm memcached-devel-1.5.6-4.7.1.s390x.rpm python2-uyuni-common-libs-4.2.3-1.12.1.s390x.rpm python3-uyuni-common-libs-4.2.3-1.12.1.s390x.rpm memcached-1.5.6-4.7.1.ppc64le.rpm memcached-devel-1.5.6-4.7.1.ppc64le.rpm python2-uyuni-common-libs-4.2.3-1.12.1.ppc64le.rpm python3-uyuni-common-libs-4.2.3-1.12.1.ppc64le.rpm memcached-1.5.6-4.7.1.aarch64.rpm memcached-devel-1.5.6-4.7.1.aarch64.rpm python2-uyuni-common-libs-4.2.3-1.12.1.aarch64.rpm python3-uyuni-common-libs-4.2.3-1.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1800 moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Fixed an issue when md device broke while adding another disk (bsc#1181619) - imsm: Addded nvme multipath support (bsc#1175758) mdadm-4.1-24.3.1.src.rpm mdadm-4.1-24.3.1.x86_64.rpm mdadm-4.1-24.3.1.s390x.rpm mdadm-4.1-24.3.1.ppc64le.rpm mdadm-4.1-24.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1666 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openj9 fixes the following issues: - Update to OpenJDK 8u292 build 10 with OpenJ9 0.26.0 virtual machine. - CVE-2021-2161: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). java-1_8_0-openj9-1.8.0.292-3.14.1.src.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-javadoc-1.8.0.292-3.14.1.noarch.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.x86_64.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.s390x.rpm java-1_8_0-openj9-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-accessibility-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-demo-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-devel-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-headless-1.8.0.292-3.14.1.ppc64le.rpm java-1_8_0-openj9-src-1.8.0.292-3.14.1.ppc64le.rpm openSUSE-SLE-15.3-2021-1795 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-migration fixes the following issues: - Show the new base product license in online migration. (bsc#1185808) yast2-migration-4.2.5-3.3.1.noarch.rpm yast2-migration-4.2.5-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1920 moderate SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - Add KATO fixes for NVMEoF (bsc#1182591) - Lookup existing persistent controllers (bsc#1179825) nvme-cli-1.13-3.3.1.src.rpm nvme-cli-1.13-3.3.1.x86_64.rpm nvme-cli-regress-script-1.13-3.3.1.x86_64.rpm nvme-cli-1.13-3.3.1.s390x.rpm nvme-cli-regress-script-1.13-3.3.1.s390x.rpm nvme-cli-1.13-3.3.1.ppc64le.rpm nvme-cli-regress-script-1.13-3.3.1.ppc64le.rpm nvme-cli-1.13-3.3.1.aarch64.rpm nvme-cli-regress-script-1.13-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1925 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network fixes the following issues: - Fixed an issue where the primary network interface became the secondary one (bsc#1185967) - Fixes an issue where ifroute files were lost (bsc#1186082) yast2-network-4.3.69-3.5.1.noarch.rpm yast2-network-4.3.69-3.5.1.src.rpm openSUSE-SLE-15.3-2021-1989 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u292 (icedtea 3.19.0). - CVE-2021-2161: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). java-1_8_0-openjdk-1.8.0.292-3.52.1.src.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.292-3.52.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.s390x.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.ppc64le.rpm java-1_8_0-openjdk-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.292-3.52.1.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.292-3.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-1825 important SUSE Updates openSUSE-SLE 15.3 This update for lz4 fixes the following issues: - CVE-2021-3520: Fixed memory corruption due to an integer overflow bug caused by memmove argument (bsc#1185438). liblz4-1-1.9.2-3.3.1.x86_64.rpm liblz4-1-32bit-1.9.2-3.3.1.x86_64.rpm liblz4-devel-1.9.2-3.3.1.x86_64.rpm lz4-1.9.2-3.3.1.src.rpm lz4-1.9.2-3.3.1.x86_64.rpm liblz4-1-1.9.2-3.3.1.s390x.rpm liblz4-devel-1.9.2-3.3.1.s390x.rpm lz4-1.9.2-3.3.1.s390x.rpm liblz4-1-1.9.2-3.3.1.ppc64le.rpm liblz4-devel-1.9.2-3.3.1.ppc64le.rpm lz4-1.9.2-3.3.1.ppc64le.rpm liblz4-1-1.9.2-3.3.1.aarch64.rpm liblz4-devel-1.9.2-3.3.1.aarch64.rpm lz4-1.9.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1970 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - Upgrade to version 10.17: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). postgresql10-10.17-8.35.1.src.rpm postgresql10-10.17-8.35.1.x86_64.rpm postgresql10-contrib-10.17-8.35.1.x86_64.rpm postgresql10-devel-10.17-8.35.1.x86_64.rpm postgresql10-docs-10.17-8.35.1.noarch.rpm postgresql10-plperl-10.17-8.35.1.x86_64.rpm postgresql10-plpython-10.17-8.35.1.x86_64.rpm postgresql10-pltcl-10.17-8.35.1.x86_64.rpm postgresql10-server-10.17-8.35.1.x86_64.rpm postgresql10-test-10.17-8.35.1.x86_64.rpm postgresql10-10.17-8.35.1.s390x.rpm postgresql10-contrib-10.17-8.35.1.s390x.rpm postgresql10-devel-10.17-8.35.1.s390x.rpm postgresql10-plperl-10.17-8.35.1.s390x.rpm postgresql10-plpython-10.17-8.35.1.s390x.rpm postgresql10-pltcl-10.17-8.35.1.s390x.rpm postgresql10-server-10.17-8.35.1.s390x.rpm postgresql10-test-10.17-8.35.1.s390x.rpm postgresql10-10.17-8.35.1.ppc64le.rpm postgresql10-contrib-10.17-8.35.1.ppc64le.rpm postgresql10-devel-10.17-8.35.1.ppc64le.rpm postgresql10-plperl-10.17-8.35.1.ppc64le.rpm postgresql10-plpython-10.17-8.35.1.ppc64le.rpm postgresql10-pltcl-10.17-8.35.1.ppc64le.rpm postgresql10-server-10.17-8.35.1.ppc64le.rpm postgresql10-test-10.17-8.35.1.ppc64le.rpm postgresql10-10.17-8.35.1.aarch64.rpm postgresql10-contrib-10.17-8.35.1.aarch64.rpm postgresql10-devel-10.17-8.35.1.aarch64.rpm postgresql10-plperl-10.17-8.35.1.aarch64.rpm postgresql10-plpython-10.17-8.35.1.aarch64.rpm postgresql10-pltcl-10.17-8.35.1.aarch64.rpm postgresql10-server-10.17-8.35.1.aarch64.rpm postgresql10-test-10.17-8.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2147 moderate SUSE Updates openSUSE-SLE 15.3 This update for freeradius-server fixes the following issues: - Fixed plaintext password entries in logfiles (bsc#1184016). freeradius-server-3.0.21-3.9.1.src.rpm freeradius-server-3.0.21-3.9.1.x86_64.rpm freeradius-server-devel-3.0.21-3.9.1.x86_64.rpm freeradius-server-doc-3.0.21-3.9.1.x86_64.rpm freeradius-server-krb5-3.0.21-3.9.1.x86_64.rpm freeradius-server-ldap-3.0.21-3.9.1.x86_64.rpm freeradius-server-libs-3.0.21-3.9.1.x86_64.rpm freeradius-server-mysql-3.0.21-3.9.1.x86_64.rpm freeradius-server-perl-3.0.21-3.9.1.x86_64.rpm freeradius-server-postgresql-3.0.21-3.9.1.x86_64.rpm freeradius-server-python3-3.0.21-3.9.1.x86_64.rpm freeradius-server-sqlite-3.0.21-3.9.1.x86_64.rpm freeradius-server-utils-3.0.21-3.9.1.x86_64.rpm freeradius-server-3.0.21-3.9.1.s390x.rpm freeradius-server-devel-3.0.21-3.9.1.s390x.rpm freeradius-server-doc-3.0.21-3.9.1.s390x.rpm freeradius-server-krb5-3.0.21-3.9.1.s390x.rpm freeradius-server-ldap-3.0.21-3.9.1.s390x.rpm freeradius-server-libs-3.0.21-3.9.1.s390x.rpm freeradius-server-mysql-3.0.21-3.9.1.s390x.rpm freeradius-server-perl-3.0.21-3.9.1.s390x.rpm freeradius-server-postgresql-3.0.21-3.9.1.s390x.rpm freeradius-server-python3-3.0.21-3.9.1.s390x.rpm freeradius-server-sqlite-3.0.21-3.9.1.s390x.rpm freeradius-server-utils-3.0.21-3.9.1.s390x.rpm freeradius-server-3.0.21-3.9.1.ppc64le.rpm freeradius-server-devel-3.0.21-3.9.1.ppc64le.rpm freeradius-server-doc-3.0.21-3.9.1.ppc64le.rpm freeradius-server-krb5-3.0.21-3.9.1.ppc64le.rpm freeradius-server-ldap-3.0.21-3.9.1.ppc64le.rpm freeradius-server-libs-3.0.21-3.9.1.ppc64le.rpm freeradius-server-mysql-3.0.21-3.9.1.ppc64le.rpm freeradius-server-perl-3.0.21-3.9.1.ppc64le.rpm freeradius-server-postgresql-3.0.21-3.9.1.ppc64le.rpm freeradius-server-python3-3.0.21-3.9.1.ppc64le.rpm freeradius-server-sqlite-3.0.21-3.9.1.ppc64le.rpm freeradius-server-utils-3.0.21-3.9.1.ppc64le.rpm freeradius-server-3.0.21-3.9.1.aarch64.rpm freeradius-server-devel-3.0.21-3.9.1.aarch64.rpm freeradius-server-doc-3.0.21-3.9.1.aarch64.rpm freeradius-server-krb5-3.0.21-3.9.1.aarch64.rpm freeradius-server-ldap-3.0.21-3.9.1.aarch64.rpm freeradius-server-libs-3.0.21-3.9.1.aarch64.rpm freeradius-server-mysql-3.0.21-3.9.1.aarch64.rpm freeradius-server-perl-3.0.21-3.9.1.aarch64.rpm freeradius-server-postgresql-3.0.21-3.9.1.aarch64.rpm freeradius-server-python3-3.0.21-3.9.1.aarch64.rpm freeradius-server-sqlite-3.0.21-3.9.1.aarch64.rpm freeradius-server-utils-3.0.21-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-1860 critical SUSE Updates openSUSE-SLE 15.3 This update for libwebp fixes the following issues: - CVE-2018-25010: Fixed heap-based buffer overflow in ApplyFilter() (bsc#1185685). - CVE-2020-36330: Fixed heap-based buffer overflow in ChunkVerifyAndAssign() (bsc#1185691). - CVE-2020-36332: Fixed extreme memory allocation when reading a file (bsc#1185674). - CVE-2020-36329: Fixed use-after-free in EmitFancyRGB() (bsc#1185652). - CVE-2018-25012: Fixed heap-based buffer overflow in GetLE24() (bsc#1185690). - CVE-2020-36328: Fixed heap-based buffer overflow in WebPDecode*Into functions (bsc#1185688). - CVE-2018-25013: Fixed heap-based buffer overflow in ShiftBytes() (bsc#1185654). - CVE-2020-36331: Fixed heap-based buffer overflow in ChunkAssignData() (bsc#1185686). - CVE-2018-25009: Fixed heap-based buffer overflow in GetLE16() (bsc#1185673). - CVE-2018-25011: Fixed fail on multiple image chunks (bsc#1186247). libwebp-0.5.0-3.5.1.src.rpm libwebp6-0.5.0-3.5.1.x86_64.rpm libwebp6-32bit-0.5.0-3.5.1.x86_64.rpm libwebpdecoder2-0.5.0-3.5.1.x86_64.rpm libwebpdecoder2-32bit-0.5.0-3.5.1.x86_64.rpm libwebpextras0-0.5.0-3.5.1.x86_64.rpm libwebpextras0-32bit-0.5.0-3.5.1.x86_64.rpm libwebpmux2-0.5.0-3.5.1.x86_64.rpm libwebpmux2-32bit-0.5.0-3.5.1.x86_64.rpm libwebp6-0.5.0-3.5.1.s390x.rpm libwebpdecoder2-0.5.0-3.5.1.s390x.rpm libwebpextras0-0.5.0-3.5.1.s390x.rpm libwebpmux2-0.5.0-3.5.1.s390x.rpm libwebp6-0.5.0-3.5.1.ppc64le.rpm libwebpdecoder2-0.5.0-3.5.1.ppc64le.rpm libwebpextras0-0.5.0-3.5.1.ppc64le.rpm libwebpmux2-0.5.0-3.5.1.ppc64le.rpm libwebp6-0.5.0-3.5.1.aarch64.rpm libwebpdecoder2-0.5.0-3.5.1.aarch64.rpm libwebpextras0-0.5.0-3.5.1.aarch64.rpm libwebpmux2-0.5.0-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1854 moderate SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 78.10.2 - CVE-2021-29957: Fixed partial protection of inline OpenPGP message not indicated (bsc#1186198). - CVE-2021-29956: Fixed Thunderbird stored OpenPGP secret keys without master password protection (bsc#1186199). - CVE-2021-29951: Fixed Thunderbird Maintenance Service could have been started or stopped by domain users (bsc#1185633). - CVE-2021-29950: Fixed logic issue potentially leaves key material unlocked (bsc#1185086). MozillaThunderbird-78.10.2-8.27.1.src.rpm MozillaThunderbird-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.x86_64.rpm MozillaThunderbird-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.s390x.rpm MozillaThunderbird-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.ppc64le.rpm MozillaThunderbird-78.10.2-8.27.1.aarch64.rpm MozillaThunderbird-translations-common-78.10.2-8.27.1.aarch64.rpm MozillaThunderbird-translations-other-78.10.2-8.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-1982 moderate SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: - Installer update repositories do now get enabled when enabling a product (bsc#1184814) - It does now set the 'cloud_povider' info when registering the instance rmt-server-2.6.9-3.3.1.src.rpm rmt-server-2.6.9-3.3.1.x86_64.rpm rmt-server-config-2.6.9-3.3.1.x86_64.rpm rmt-server-pubcloud-2.6.9-3.3.1.x86_64.rpm rmt-server-2.6.9-3.3.1.s390x.rpm rmt-server-config-2.6.9-3.3.1.s390x.rpm rmt-server-pubcloud-2.6.9-3.3.1.s390x.rpm rmt-server-2.6.9-3.3.1.ppc64le.rpm rmt-server-config-2.6.9-3.3.1.ppc64le.rpm rmt-server-pubcloud-2.6.9-3.3.1.ppc64le.rpm rmt-server-2.6.9-3.3.1.aarch64.rpm rmt-server-config-2.6.9-3.3.1.aarch64.rpm rmt-server-pubcloud-2.6.9-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1934 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - xwayland: Fix invisible window produced by Xwayland. (bsc#1186092, bsc#1184906) xorg-x11-server-1.20.3-22.5.33.1.src.rpm xorg-x11-server-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.s390x.rpm xorg-x11-server-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.33.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-1772 moderate SUSE Updates openSUSE-SLE 15.3 This update for motif fixes the following issues: - Add patches to prevent the third party application crashing. (bsc#1184184) libMrm4-2.3.4-3.3.1.x86_64.rpm libMrm4-32bit-2.3.4-3.3.1.x86_64.rpm libUil4-2.3.4-3.3.1.x86_64.rpm libUil4-32bit-2.3.4-3.3.1.x86_64.rpm libXm4-2.3.4-3.3.1.x86_64.rpm libXm4-32bit-2.3.4-3.3.1.x86_64.rpm motif-2.3.4-3.3.1.src.rpm motif-2.3.4-3.3.1.x86_64.rpm motif-devel-2.3.4-3.3.1.x86_64.rpm motif-devel-32bit-2.3.4-3.3.1.x86_64.rpm libMrm4-2.3.4-3.3.1.s390x.rpm libUil4-2.3.4-3.3.1.s390x.rpm libXm4-2.3.4-3.3.1.s390x.rpm motif-2.3.4-3.3.1.s390x.rpm motif-devel-2.3.4-3.3.1.s390x.rpm libMrm4-2.3.4-3.3.1.ppc64le.rpm libUil4-2.3.4-3.3.1.ppc64le.rpm libXm4-2.3.4-3.3.1.ppc64le.rpm motif-2.3.4-3.3.1.ppc64le.rpm motif-devel-2.3.4-3.3.1.ppc64le.rpm libMrm4-2.3.4-3.3.1.aarch64.rpm libUil4-2.3.4-3.3.1.aarch64.rpm libXm4-2.3.4-3.3.1.aarch64.rpm motif-2.3.4-3.3.1.aarch64.rpm motif-devel-2.3.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1994 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: Upgrade to version 12.7: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - CVE-2021-32029: Fixed possibly-incorrect computation of UPDATE ... RETURNING outputs for joined cross-partition updates (bsc#1185926). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). - Re-enable build of the llvmjit subpackage on SLE, but it will only be delivered on PackageHub for now (bsc#1183118). - Disable icu for PostgreSQL 10 (and older) on TW (bsc#1179945). postgresql12-12.7-8.20.1.src.rpm postgresql12-12.7-8.20.1.x86_64.rpm postgresql12-contrib-12.7-8.20.1.x86_64.rpm postgresql12-devel-12.7-8.20.1.x86_64.rpm postgresql12-docs-12.7-8.20.1.noarch.rpm postgresql12-llvmjit-12.7-8.20.1.x86_64.rpm postgresql12-plperl-12.7-8.20.1.x86_64.rpm postgresql12-plpython-12.7-8.20.1.x86_64.rpm postgresql12-pltcl-12.7-8.20.1.x86_64.rpm postgresql12-server-12.7-8.20.1.x86_64.rpm postgresql12-server-devel-12.7-8.20.1.x86_64.rpm postgresql12-test-12.7-8.20.1.x86_64.rpm postgresql12-12.7-8.20.1.s390x.rpm postgresql12-contrib-12.7-8.20.1.s390x.rpm postgresql12-devel-12.7-8.20.1.s390x.rpm postgresql12-llvmjit-12.7-8.20.1.s390x.rpm postgresql12-plperl-12.7-8.20.1.s390x.rpm postgresql12-plpython-12.7-8.20.1.s390x.rpm postgresql12-pltcl-12.7-8.20.1.s390x.rpm postgresql12-server-12.7-8.20.1.s390x.rpm postgresql12-server-devel-12.7-8.20.1.s390x.rpm postgresql12-test-12.7-8.20.1.s390x.rpm postgresql12-12.7-8.20.1.ppc64le.rpm postgresql12-contrib-12.7-8.20.1.ppc64le.rpm postgresql12-devel-12.7-8.20.1.ppc64le.rpm postgresql12-llvmjit-12.7-8.20.1.ppc64le.rpm postgresql12-plperl-12.7-8.20.1.ppc64le.rpm postgresql12-plpython-12.7-8.20.1.ppc64le.rpm postgresql12-pltcl-12.7-8.20.1.ppc64le.rpm postgresql12-server-12.7-8.20.1.ppc64le.rpm postgresql12-server-devel-12.7-8.20.1.ppc64le.rpm postgresql12-test-12.7-8.20.1.ppc64le.rpm postgresql12-12.7-8.20.1.aarch64.rpm postgresql12-contrib-12.7-8.20.1.aarch64.rpm postgresql12-devel-12.7-8.20.1.aarch64.rpm postgresql12-llvmjit-12.7-8.20.1.aarch64.rpm postgresql12-plperl-12.7-8.20.1.aarch64.rpm postgresql12-plpython-12.7-8.20.1.aarch64.rpm postgresql12-pltcl-12.7-8.20.1.aarch64.rpm postgresql12-server-12.7-8.20.1.aarch64.rpm postgresql12-server-devel-12.7-8.20.1.aarch64.rpm postgresql12-test-12.7-8.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-1785 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - Upgrade to version 13.3: - CVE-2021-32027: Fixed integer overflows in array subscripting calculations (bsc#1185924). - CVE-2021-32028: Fixed mishandling of junk columns in INSERT ... ON CONFLICT ... UPDATE target lists (bsc#1185925). - CVE-2021-32029: Fixed possibly-incorrect computation of UPDATE ... RETURNING outputs for joined cross-partition updates (bsc#1185926). - Don't use %_stop_on_removal, because it was meant to be private and got removed from openSUSE. %_restart_on_update is also private, but still supported and needed for now (bsc#1183168). - Re-enable build of the llvmjit subpackage on SLE, but it will only be delivered on PackageHub for now (bsc#1183118). - Disable icu for PostgreSQL 10 (and older) on TW (bsc#1179945). postgresql13-13.3-5.10.1.src.rpm postgresql13-13.3-5.10.1.x86_64.rpm postgresql13-contrib-13.3-5.10.1.x86_64.rpm postgresql13-devel-13.3-5.10.1.x86_64.rpm postgresql13-docs-13.3-5.10.1.noarch.rpm postgresql13-llvmjit-13.3-5.10.1.x86_64.rpm postgresql13-plperl-13.3-5.10.1.x86_64.rpm postgresql13-plpython-13.3-5.10.1.x86_64.rpm postgresql13-pltcl-13.3-5.10.1.x86_64.rpm postgresql13-server-13.3-5.10.1.x86_64.rpm postgresql13-server-devel-13.3-5.10.1.x86_64.rpm postgresql13-test-13.3-5.10.1.x86_64.rpm postgresql13-13.3-5.10.1.s390x.rpm postgresql13-contrib-13.3-5.10.1.s390x.rpm postgresql13-devel-13.3-5.10.1.s390x.rpm postgresql13-llvmjit-13.3-5.10.1.s390x.rpm postgresql13-plperl-13.3-5.10.1.s390x.rpm postgresql13-plpython-13.3-5.10.1.s390x.rpm postgresql13-pltcl-13.3-5.10.1.s390x.rpm postgresql13-server-13.3-5.10.1.s390x.rpm postgresql13-server-devel-13.3-5.10.1.s390x.rpm postgresql13-test-13.3-5.10.1.s390x.rpm postgresql13-13.3-5.10.1.ppc64le.rpm postgresql13-contrib-13.3-5.10.1.ppc64le.rpm postgresql13-devel-13.3-5.10.1.ppc64le.rpm postgresql13-llvmjit-13.3-5.10.1.ppc64le.rpm postgresql13-plperl-13.3-5.10.1.ppc64le.rpm postgresql13-plpython-13.3-5.10.1.ppc64le.rpm postgresql13-pltcl-13.3-5.10.1.ppc64le.rpm postgresql13-server-13.3-5.10.1.ppc64le.rpm postgresql13-server-devel-13.3-5.10.1.ppc64le.rpm postgresql13-test-13.3-5.10.1.ppc64le.rpm postgresql13-13.3-5.10.1.aarch64.rpm postgresql13-contrib-13.3-5.10.1.aarch64.rpm postgresql13-devel-13.3-5.10.1.aarch64.rpm postgresql13-llvmjit-13.3-5.10.1.aarch64.rpm postgresql13-plperl-13.3-5.10.1.aarch64.rpm postgresql13-plpython-13.3-5.10.1.aarch64.rpm postgresql13-pltcl-13.3-5.10.1.aarch64.rpm postgresql13-server-13.3-5.10.1.aarch64.rpm postgresql13-server-devel-13.3-5.10.1.aarch64.rpm postgresql13-test-13.3-5.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-1819 important SUSE Updates openSUSE-SLE 15.3 This update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly fixes the following issues: gstreamer was updated to version 1.16.3 (bsc#1181255): - delay creation of threadpools - bin: Fix `deep-element-removed` log message - buffer: fix meta sequence number fallback on rpi - bufferlist: foreach: always remove as parent if buffer is changed - bus: Make setting/replacing/clearing the sync handler thread-safe - elementfactory: Fix missing features in case a feature moves to another filename - element: When removing a ghost pad also unset its target - meta: intern registered impl string - registry: Use a toolchain-specific registry file on Windows - systemclock: Invalid internal time calculation causes non-increasing clock time on Windows - value: don't write to `const char *` - value: Fix segfault comparing empty GValueArrays - Revert floating enforcing - aggregator: fix iteration direction in skip_buffers - sparsefile: fix possible crash when seeking - baseparse: cache fix - baseparse: fix memory leak when subclass skips whole input buffer - baseparse: Set the private duration before posting a duration-changed message - basetransform: allow not passthrough if generate_output is implemented - identity: Fix a minor leak using meta_str - queue: protect against lost wakeups for iterm_del condition - queue2: Avoid races when posting buffering messages - queue2: Fix missing/dropped buffering messages at startup - identity: Unblock condition variable on FLUSH_START - check: Use `g_thread_yield()` instead of `g_usleep(1)` - tests: use cpu_family for arch checks - gst-launch: Follow up to missing `s/g_print/gst_print/g` - gst-inspect: Add define guard for `g_log_writer_supports_color()` - gst-launch: go back down to `GST_STATE_NULL` in one step. - device-monitor: list hidden providers before listing devices - autotools build fixes for GNU make 4.3 gstreamer-plugins-good was updated to version 1.16.3 (bsc#1181255): - deinterlace: on-the-fly renegotiation - flacenc: Pass audio info from set_format() to query_total_samples() explicitly - flacparse: fix broken reordering of flac metadata - jack: Use jack_free(3) to release ports - jpegdec: check buffer size before dereferencing - pulse: fix discovery of newly added devices - qtdemux fuzzing fixes - qtdemux: Add 'mp3 ' fourcc that VLC seems to produce now - qtdemux: Specify REDIRECT information in error message - rtpbin: fix shutdown crash in rtpbin - rtpsession: rename RTCP thread - rtpvp8pay, rtpvp9pay: fix caps leak in set_caps() - rtpjpegdepay: outputs framed jpeg - rtpjitterbuffer: Properly free internal packets queue in finalize() - rtspsrc: Don't return TRUE for unhandled query - rtspsrc: Avoid stack overflow recursing waiting for response - rtspsrc: Use the correct type for storing the max-rtcp-rtp-time-diff property - rtspsrc: Error out when failling to receive message response - rtspsrc: Fix for segmentation fault when handling set/get_parameter requests - speex: Fix crash on Windows caused by cross-CRT issue - speexdec: Crash when stopping the pipeline - splitmuxsrc: Properly stop the loop if no part reader is present - use gst_element_class_set_metadata when passing dynamic strings - v4l2videodec: Increase internal bitstream pool size - v4l2: fix crash when handling unsupported video format - videocrop: allow properties to be animated by GstController - videomixer: Don't leak peer caps - vp8enc/vp8enc: set 1 for the default value of VP8E_SET_STATIC_THRESHOLD - wavenc: Fix writing of the channel mask with >2 channels gstreamer-plugins-bad was updated to version 1.16.3 (bsc#1181255): - amcvideodec: fix sync meta copying not taking a reference - audiobuffersplit: Perform discont tracking on running time - audiobuffersplit: Specify in the template caps that only interleaved audio is supported - audiobuffersplit: Unset DISCONT flag if not discontinuous - autoconvert: Fix lock-less exchange or free condition - autoconvert: fix compiler warnings with g_atomic on recent GLib versions - avfvideosrc: element requests camera permissions even with capture-screen property is true - codecparsers: h264parser: guard against ref_pic_markings overflow - dtlsconnection: Avoid segmentation fault when no srtp capabilities are negotiated - dtls/connection: fix EOF handling with openssl 1.1.1e - fdkaacdec: add support for mpegversion=2 - hls: Check nettle version to ensure AES128 support - ipcpipeline: Rework compiler checks - interlace: Increment phase_index before checking if we're at the end of the phase - lv2: Make it build with -fno-common - h264parser: Do not allocate too large size of memory for registered user data SEI - ladspa: fix unbounded integer properties - modplug: avoid division by zero - msdkdec: Fix GstMsdkContext leak - msdkenc: fix leaks on windows - musepackdec: Don't fail all queries if no sample rate is known yet - openslessink: Allow openslessink to handle 48kHz streams. - opencv: allow compilation against 4.2.x - proxysink: event_function needs to handle the event when it is disconnecetd from proxysrc - vulkan: Drop use of VK_RESULT_BEGIN_RANGE - wasapi: added missing lock release in case of error in gst_wasapi_xxx_reset - wasapi: Fix possible deadlock while downwards state change - waylandsink: Clear window when pipeline is stopped - webrtc: Support non-trickle ICE candidates in the SDP - webrtc: Unmap all non-binary buffers received via the datachannel - meson: build with neon 0.31 - Drop upstream fixed patch: gstreamer-h264parser-fix-overflow.patch - h264parser: guard against ref_pic_markings overflow (bsc#1181255 CVE-2021-3185) - Disable the kate/libtiger plugin. Kate streams for karaoke are not used anymore, and the source tarball for libtiger is no longer available upstream. (jsc#SLE-13843) gstreamer-plugins-ugly was updated to version 1.16.3 (bsc#1181255): + x264enc: corrected em_data value in CEA-708 CC SEI message gstreamer-plugins-base was updated to version 1.16.3 (bsc#1181255): - audioaggregator: Check all downstream allowed caps structures if they support the upstream rate - audioaggregator: Fix negotiation with downstream if there is no peer yet - audioencoder: fix segment event leak - discoverer: Fix caps handling in `pad-added` signal handler - discoverer: Start discovering next URI from right thread - fft: Update our kiss fft version, fixes thread-safety and concurrency issues and misc other things - gl: numerous memory fixes (use-after-free, leaks, missing NULL-ify) - gl/display/egl: ensure debug category is initialized - gstglwindow_x11: fix resize - pbutils: Add latest H.264 level values - rtpbuffer: fix header extension length validation - video: Fix NV12_64Z32 number of component - video-format: RGB16/15 are not 16 bit per component but only 5.333 and 5 - video: fix top/bottom field flags - videodecoder: don't copy interlace-mode from reference state - appsrc/appsink: Make setting/replacing callbacks thread-safe - compositor: Fix checkerboard filling for BGRx/RGBx and UYVY/YUY2/YVYU - decodebin3: only force streams-selected seqnum after a select-streams - glupload: Fix fallback from direct dmabuf to dmabuf upload method - glvideomixer: perform `_get_highest_precision()` on the GL thread - libvisual: use `gst_element_class_set_metadata()` when passing dynamic strings - oggstream: Workaround for broken PAR in VP8 BOS - subparse: accept WebVTT timestamps without an hour component - playbin: Handle error message with redirection indication - textrender: Fix AYUV output. - typefind: Consider MPEG-PS PSM to be a PES type - uridecodebin3: default to non-0 buffer-size and buffer-duration, otherwise it could potentially cause big memory allocations over time - videoaggregator: Don't configure NULL chroma-site/colorimetry - videorate/videoscale/audioresample: Ensure that the caps returned from... - build: Replace bashisms in configure for Wayland and GLES3 gstreamer-1.16.3-3.3.1.src.rpm gstreamer-1.16.3-3.3.1.x86_64.rpm gstreamer-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-devel-1.16.3-3.3.1.x86_64.rpm gstreamer-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-lang-1.16.3-3.3.1.noarch.rpm gstreamer-plugins-base-1.16.3-4.3.1.src.rpm gstreamer-plugins-base-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-32bit-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-devel-32bit-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.x86_64.rpm gstreamer-plugins-base-lang-1.16.3-4.3.1.noarch.rpm gstreamer-plugins-good-1.16.3-3.3.1.src.rpm gstreamer-plugins-good-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-extra-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-jack-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-good-lang-1.16.3-3.3.1.noarch.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.src.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-32bit-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.x86_64.rpm gstreamer-plugins-ugly-lang-1.16.3-3.3.1.noarch.rpm gstreamer-utils-1.16.3-3.3.1.x86_64.rpm libgstallocators-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstallocators-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstapp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstapp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstaudio-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstaudio-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstfft-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstfft-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstgl-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstgl-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstpbutils-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstreamer-1_0-0-1.16.3-3.3.1.x86_64.rpm libgstreamer-1_0-0-32bit-1.16.3-3.3.1.x86_64.rpm libgstriff-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstriff-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstrtp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstrtp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstrtsp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstsdp-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstsdp-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgsttag-1_0-0-1.16.3-4.3.1.x86_64.rpm libgsttag-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm libgstvideo-1_0-0-1.16.3-4.3.1.x86_64.rpm libgstvideo-1_0-0-32bit-1.16.3-4.3.1.x86_64.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.x86_64.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.x86_64.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.x86_64.rpm gstreamer-1.16.3-3.3.1.s390x.rpm gstreamer-devel-1.16.3-3.3.1.s390x.rpm gstreamer-doc-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-base-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.s390x.rpm gstreamer-plugins-good-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.s390x.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.s390x.rpm gstreamer-utils-1.16.3-3.3.1.s390x.rpm libgstallocators-1_0-0-1.16.3-4.3.1.s390x.rpm libgstapp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstaudio-1_0-0-1.16.3-4.3.1.s390x.rpm libgstfft-1_0-0-1.16.3-4.3.1.s390x.rpm libgstgl-1_0-0-1.16.3-4.3.1.s390x.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.s390x.rpm libgstreamer-1_0-0-1.16.3-3.3.1.s390x.rpm libgstriff-1_0-0-1.16.3-4.3.1.s390x.rpm libgstrtp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.s390x.rpm libgstsdp-1_0-0-1.16.3-4.3.1.s390x.rpm libgsttag-1_0-0-1.16.3-4.3.1.s390x.rpm libgstvideo-1_0-0-1.16.3-4.3.1.s390x.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.s390x.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.s390x.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.s390x.rpm gstreamer-1.16.3-3.3.1.ppc64le.rpm gstreamer-devel-1.16.3-3.3.1.ppc64le.rpm gstreamer-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-base-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.ppc64le.rpm gstreamer-plugins-good-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.ppc64le.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.ppc64le.rpm gstreamer-utils-1.16.3-3.3.1.ppc64le.rpm libgstallocators-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstapp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstaudio-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstfft-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstgl-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstreamer-1_0-0-1.16.3-3.3.1.ppc64le.rpm libgstriff-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstrtp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstsdp-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgsttag-1_0-0-1.16.3-4.3.1.ppc64le.rpm libgstvideo-1_0-0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.ppc64le.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.ppc64le.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.ppc64le.rpm gstreamer-1.16.3-3.3.1.aarch64.rpm gstreamer-devel-1.16.3-3.3.1.aarch64.rpm gstreamer-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-base-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-base-devel-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-base-doc-1.16.3-4.3.1.aarch64.rpm gstreamer-plugins-good-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-extra-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-gtk-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-jack-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-good-qtqml-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-ugly-1.16.3-3.3.1.aarch64.rpm gstreamer-plugins-ugly-doc-1.16.3-3.3.1.aarch64.rpm gstreamer-utils-1.16.3-3.3.1.aarch64.rpm libgstallocators-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstapp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstaudio-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstfft-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstgl-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstpbutils-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstreamer-1_0-0-1.16.3-3.3.1.aarch64.rpm libgstriff-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstrtp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstrtsp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstsdp-1_0-0-1.16.3-4.3.1.aarch64.rpm libgsttag-1_0-0-1.16.3-4.3.1.aarch64.rpm libgstvideo-1_0-0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-Gst-1_0-1.16.3-3.3.1.aarch64.rpm typelib-1_0-GstAllocators-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstApp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstAudio-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstGL-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstPbutils-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstRtp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstRtsp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstSdp-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstTag-1_0-1.16.3-4.3.1.aarch64.rpm typelib-1_0-GstVideo-1_0-1.16.3-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1917 moderate SUSE Updates openSUSE-SLE 15.3 This update for libxml2 fixes the following issues: - CVE-2021-3541: Fixed exponential entity expansion attack bypasses all existing protection mechanisms. (bsc#1186015) libxml2-2-2.9.7-3.37.1.x86_64.rpm libxml2-2-32bit-2.9.7-3.37.1.x86_64.rpm libxml2-2.9.7-3.37.1.src.rpm libxml2-devel-2.9.7-3.37.1.x86_64.rpm libxml2-devel-32bit-2.9.7-3.37.1.x86_64.rpm libxml2-doc-2.9.7-3.37.1.noarch.rpm libxml2-tools-2.9.7-3.37.1.x86_64.rpm python-libxml2-python-2.9.7-3.37.1.src.rpm python2-libxml2-python-2.9.7-3.37.1.x86_64.rpm python3-libxml2-python-2.9.7-3.37.1.x86_64.rpm libxml2-2-2.9.7-3.37.1.s390x.rpm libxml2-devel-2.9.7-3.37.1.s390x.rpm libxml2-tools-2.9.7-3.37.1.s390x.rpm python2-libxml2-python-2.9.7-3.37.1.s390x.rpm python3-libxml2-python-2.9.7-3.37.1.s390x.rpm libxml2-2-2.9.7-3.37.1.ppc64le.rpm libxml2-devel-2.9.7-3.37.1.ppc64le.rpm libxml2-tools-2.9.7-3.37.1.ppc64le.rpm python2-libxml2-python-2.9.7-3.37.1.ppc64le.rpm python3-libxml2-python-2.9.7-3.37.1.ppc64le.rpm libxml2-2-2.9.7-3.37.1.aarch64.rpm libxml2-devel-2.9.7-3.37.1.aarch64.rpm libxml2-tools-2.9.7-3.37.1.aarch64.rpm python2-libxml2-python-2.9.7-3.37.1.aarch64.rpm python3-libxml2-python-2.9.7-3.37.1.aarch64.rpm openSUSE-SLE-15.3-2021-1948 important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-3500: Stack overflow in function DJVU:DjVuDocument:get_djvu_file() via crafted djvu file (bsc#1186253) djvulibre-3.5.27-11.6.1.src.rpm djvulibre-3.5.27-11.6.1.x86_64.rpm djvulibre-doc-3.5.27-11.6.1.noarch.rpm libdjvulibre-devel-3.5.27-11.6.1.x86_64.rpm libdjvulibre21-3.5.27-11.6.1.x86_64.rpm djvulibre-3.5.27-11.6.1.s390x.rpm libdjvulibre-devel-3.5.27-11.6.1.s390x.rpm libdjvulibre21-3.5.27-11.6.1.s390x.rpm djvulibre-3.5.27-11.6.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.6.1.ppc64le.rpm libdjvulibre21-3.5.27-11.6.1.ppc64le.rpm djvulibre-3.5.27-11.6.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.6.1.aarch64.rpm libdjvulibre21-3.5.27-11.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1815 important SUSE Updates openSUSE-SLE 15.3 This update for nginx fixes the following issues: - CVE-2021-23017: nginx DNS resolver off-by-one heap write (bsc#1186126) nginx-1.19.8-3.3.1.src.rpm nginx-1.19.8-3.3.1.x86_64.rpm nginx-source-1.19.8-3.3.1.noarch.rpm vim-plugin-nginx-1.19.8-3.3.1.noarch.rpm nginx-1.19.8-3.3.1.s390x.rpm nginx-1.19.8-3.3.1.ppc64le.rpm nginx-1.19.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1841 important SUSE Updates openSUSE-SLE 15.3 This update for dhcp fixes the following issues: - CVE-2021-25217: A buffer overrun in lease file parsing code can be used to exploit a common vulnerability shared by dhcpd and dhclient (bsc#1186382) dhcp-4.3.6.P1-6.11.1.src.rpm dhcp-4.3.6.P1-6.11.1.x86_64.rpm dhcp-client-4.3.6.P1-6.11.1.x86_64.rpm dhcp-devel-4.3.6.P1-6.11.1.x86_64.rpm dhcp-doc-4.3.6.P1-6.11.1.x86_64.rpm dhcp-relay-4.3.6.P1-6.11.1.x86_64.rpm dhcp-server-4.3.6.P1-6.11.1.x86_64.rpm dhcp-4.3.6.P1-6.11.1.s390x.rpm dhcp-client-4.3.6.P1-6.11.1.s390x.rpm dhcp-devel-4.3.6.P1-6.11.1.s390x.rpm dhcp-doc-4.3.6.P1-6.11.1.s390x.rpm dhcp-relay-4.3.6.P1-6.11.1.s390x.rpm dhcp-server-4.3.6.P1-6.11.1.s390x.rpm dhcp-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-client-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-devel-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-doc-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-relay-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-server-4.3.6.P1-6.11.1.ppc64le.rpm dhcp-4.3.6.P1-6.11.1.aarch64.rpm dhcp-client-4.3.6.P1-6.11.1.aarch64.rpm dhcp-devel-4.3.6.P1-6.11.1.aarch64.rpm dhcp-doc-4.3.6.P1-6.11.1.aarch64.rpm dhcp-relay-4.3.6.P1-6.11.1.aarch64.rpm dhcp-server-4.3.6.P1-6.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-1834 important SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Update to 15.2.12-83-g528da226523: - (CVE-2021-3509) fix cookie injection issue (bsc#1186021) - (CVE-2021-3531) RGWSwiftWebsiteHandler::is_web_dir checks empty subdir_name (bsc#1186020) - (CVE-2021-3524) sanitize \r in s3 CORSConfiguration’s ExposeHeader (bsc#1185619) ceph-15.2.12.83+g528da226523-3.25.1.src.rpm ceph-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-grafana-dashboards-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-mgr-cephadm-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-dashboard-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-k8sevents-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-modules-core-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mgr-rook-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-prometheus-alerts-15.2.12.83+g528da226523-3.25.1.noarch.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-test-15.2.12.83+g528da226523-3.25.1.src.rpm ceph-test-15.2.12.83+g528da226523-3.25.1.x86_64.rpm cephadm-15.2.12.83+g528da226523-3.25.1.noarch.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librados2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librbd1-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm librgw2-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.x86_64.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.x86_64.rpm ceph-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.s390x.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.s390x.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.s390x.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librados2-15.2.12.83+g528da226523-3.25.1.s390x.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librbd1-15.2.12.83+g528da226523-3.25.1.s390x.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm librgw2-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.s390x.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.s390x.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.s390x.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.s390x.rpm ceph-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librados2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librbd1-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm librgw2-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.ppc64le.rpm ceph-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-base-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-common-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-fuse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-immutable-object-cache-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mds-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mgr-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-mon-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-osd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm ceph-radosgw-15.2.12.83+g528da226523-3.25.1.aarch64.rpm cephfs-shell-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libcephfs-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libcephfs2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librados-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librados2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm libradospp-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librbd-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librbd1-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librgw-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm librgw2-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-ceph-argparse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-ceph-common-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-cephfs-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rados-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rbd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm python3-rgw-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rados-objclass-devel-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-fuse-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-mirror-15.2.12.83+g528da226523-3.25.1.aarch64.rpm rbd-nbd-15.2.12.83+g528da226523-3.25.1.aarch64.rpm openSUSE-SLE-15.3-2021-1961 important SUSE Updates openSUSE-SLE 15.3 This update for squid fixes the following issues: - update to 4.15: - CVE-2021-28652: Broken cache manager URL parsing (bsc#1185918) - CVE-2021-28651: Memory leak in RFC 2169 response parsing (bsc#1185921) - CVE-2021-28662: Limit HeaderLookupTable_t::lookup() to BadHdr and specific IDs (bsc#1185919) - CVE-2021-31806: Handle more Range requests (bsc#1185916) - CVE-2020-25097: HTTP Request Smuggling vulnerability (bsc#1183436) - Handle more partial responses (bsc#1185923) - fix previous change to reinstante permissions macros, because the wrong path has been used (bsc#1171569). - use libexecdir instead of libdir to conform to recent changes in Factory (bsc#1171164). - Reinstate permissions macros for pinger binary, because the permissions package is also responsible for setting up the cap_net_raw capability, currently a fresh squid install doesn't get a capability bit at all (bsc#1171569). - Change pinger and basic_pam_auth helper to use standard permissions. pinger uses cap_net_raw=ep instead (bsc#1171569) squid-4.15-5.26.1.src.rpm squid-4.15-5.26.1.x86_64.rpm squid-4.15-5.26.1.s390x.rpm squid-4.15-5.26.1.ppc64le.rpm squid-4.15-5.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-1798 moderate SUSE Updates openSUSE-SLE 15.3 This update for ipmitool fixes the following issues: - Deprecated the use of /var/run. Moved to /run now (bsc#1185162) - Fixed a delay when trying to identify the appropriate cipher suite (bsc#1179133) ipmitool-1.8.18+git20200204.7ccea28-3.3.1.src.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.x86_64.rpm ipmitool-bmc-snmp-proxy-1.8.18+git20200204.7ccea28-3.3.1.noarch.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.s390x.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.ppc64le.rpm ipmitool-1.8.18+git20200204.7ccea28-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2130 moderate SUSE Updates openSUSE-SLE 15.3 This update for python39-pip, python39-setuptools fixes the following issues: Changes in python39-setuptools: - Provide `python39-setuptools` version 44.1.1 with vendored dependencies. (jsc#SLE-17532, jsc#SLE-17957) Changes in python39-pip: - Provide `python39-pip` version 20.2.4 with vendored dependencies. (jsc#SLE-17532, jsc#SLE-17957) python39-pip-20.2.4-7.5.1.noarch.rpm python39-pip-20.2.4-7.5.1.src.rpm python39-setuptools-44.1.1-7.3.1.noarch.rpm python39-setuptools-44.1.1-7.3.1.src.rpm openSUSE-SLE-15.3-2021-1926 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc fixes the following issues: - Added gccgo symlink and go and gofmt as alternatives to support parallel installation of golang (bsc#1096677) cpp-7-3.6.1.x86_64.rpm gcc-32bit-7-3.6.1.x86_64.rpm gcc-7-3.6.1.src.rpm gcc-7-3.6.1.x86_64.rpm gcc-PIE-7-3.6.1.x86_64.rpm gcc-ada-32bit-7-3.6.1.x86_64.rpm gcc-ada-7-3.6.1.x86_64.rpm gcc-c++-32bit-7-3.6.1.x86_64.rpm gcc-c++-7-3.6.1.x86_64.rpm gcc-fortran-32bit-7-3.6.1.x86_64.rpm gcc-fortran-7-3.6.1.x86_64.rpm gcc-go-32bit-7-3.6.1.x86_64.rpm gcc-go-7-3.6.1.x86_64.rpm gcc-info-7-3.6.1.x86_64.rpm gcc-locale-7-3.6.1.x86_64.rpm gcc-obj-c++-7-3.6.1.x86_64.rpm gcc-objc-32bit-7-3.6.1.x86_64.rpm gcc-objc-7-3.6.1.x86_64.rpm libstdc++-devel-32bit-7-3.6.1.x86_64.rpm libstdc++-devel-7-3.6.1.x86_64.rpm cpp-7-3.6.1.s390x.rpm gcc-32bit-7-3.6.1.s390x.rpm gcc-7-3.6.1.s390x.rpm gcc-PIE-7-3.6.1.s390x.rpm gcc-ada-32bit-7-3.6.1.s390x.rpm gcc-ada-7-3.6.1.s390x.rpm gcc-c++-32bit-7-3.6.1.s390x.rpm gcc-c++-7-3.6.1.s390x.rpm gcc-fortran-32bit-7-3.6.1.s390x.rpm gcc-fortran-7-3.6.1.s390x.rpm gcc-go-32bit-7-3.6.1.s390x.rpm gcc-go-7-3.6.1.s390x.rpm gcc-info-7-3.6.1.s390x.rpm gcc-locale-7-3.6.1.s390x.rpm gcc-obj-c++-7-3.6.1.s390x.rpm gcc-objc-32bit-7-3.6.1.s390x.rpm gcc-objc-7-3.6.1.s390x.rpm libstdc++-devel-32bit-7-3.6.1.s390x.rpm libstdc++-devel-7-3.6.1.s390x.rpm cpp-7-3.6.1.ppc64le.rpm gcc-7-3.6.1.ppc64le.rpm gcc-PIE-7-3.6.1.ppc64le.rpm gcc-ada-7-3.6.1.ppc64le.rpm gcc-c++-7-3.6.1.ppc64le.rpm gcc-fortran-7-3.6.1.ppc64le.rpm gcc-go-7-3.6.1.ppc64le.rpm gcc-info-7-3.6.1.ppc64le.rpm gcc-locale-7-3.6.1.ppc64le.rpm gcc-obj-c++-7-3.6.1.ppc64le.rpm gcc-objc-7-3.6.1.ppc64le.rpm libstdc++-devel-7-3.6.1.ppc64le.rpm cpp-7-3.6.1.aarch64.rpm gcc-7-3.6.1.aarch64.rpm gcc-PIE-7-3.6.1.aarch64.rpm gcc-ada-7-3.6.1.aarch64.rpm gcc-c++-7-3.6.1.aarch64.rpm gcc-fortran-7-3.6.1.aarch64.rpm gcc-go-7-3.6.1.aarch64.rpm gcc-info-7-3.6.1.aarch64.rpm gcc-locale-7-3.6.1.aarch64.rpm gcc-obj-c++-7-3.6.1.aarch64.rpm gcc-objc-7-3.6.1.aarch64.rpm libstdc++-devel-7-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1781 moderate SUSE Updates openSUSE-SLE 15.3 This update for post-build-checks-malwarescan fixes the following issues: - EXCLUDELIST: Removed lvm2 unit-test (bsc#1172626). post-build-checks-malwarescan-0.1-3.16.1.noarch.rpm post-build-checks-malwarescan-0.1-3.16.1.src.rpm openSUSE-SLE-15.3-2021-1965 important SUSE Updates openSUSE-SLE 15.3 This update for multipath-tools fixes the following issues: - Update from version 0.8.5+30+suse.633836e to version 0.8.5+80+suse.73c50f5: * add `eh_deadline` option to avoid endless SCSI error handling. * add `wwid_recheck` option to detect storage configuration changes. * fixes for SAS expanders. (bsc#1178377, bsc#1178379, bsc#1177081) * Avoid access to root FS while queueing IO. (bsc#1178049, bsc#1181234) * backport of upstream fixes from version 0.8.6 for bugs, new additions to built-in hardware table. (bsc#1186212) * `kpartx`: free loop device after listing partitions. (bsc#1107187) kpartx-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.src.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.x86_64.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.s390x.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.ppc64le.rpm kpartx-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libdmmp-devel-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libdmmp0_2_0-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm libmpath0-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm multipath-tools-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm multipath-tools-devel-0.8.5+80+suse.73c50f5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2146 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issues: - Fixed a race condition leading to a sshd termination of multichannel sessions with non-root users (bsc#1115550, bsc#1174162). openssh-8.4p1-3.3.1.src.rpm openssh-8.4p1-3.3.1.x86_64.rpm openssh-askpass-gnome-8.4p1-3.3.1.src.rpm openssh-askpass-gnome-8.4p1-3.3.1.x86_64.rpm openssh-cavs-8.4p1-3.3.1.x86_64.rpm openssh-clients-8.4p1-3.3.1.x86_64.rpm openssh-common-8.4p1-3.3.1.x86_64.rpm openssh-fips-8.4p1-3.3.1.x86_64.rpm openssh-helpers-8.4p1-3.3.1.x86_64.rpm openssh-server-8.4p1-3.3.1.x86_64.rpm openssh-8.4p1-3.3.1.s390x.rpm openssh-askpass-gnome-8.4p1-3.3.1.s390x.rpm openssh-cavs-8.4p1-3.3.1.s390x.rpm openssh-clients-8.4p1-3.3.1.s390x.rpm openssh-common-8.4p1-3.3.1.s390x.rpm openssh-fips-8.4p1-3.3.1.s390x.rpm openssh-helpers-8.4p1-3.3.1.s390x.rpm openssh-server-8.4p1-3.3.1.s390x.rpm openssh-8.4p1-3.3.1.ppc64le.rpm openssh-askpass-gnome-8.4p1-3.3.1.ppc64le.rpm openssh-cavs-8.4p1-3.3.1.ppc64le.rpm openssh-clients-8.4p1-3.3.1.ppc64le.rpm openssh-common-8.4p1-3.3.1.ppc64le.rpm openssh-fips-8.4p1-3.3.1.ppc64le.rpm openssh-helpers-8.4p1-3.3.1.ppc64le.rpm openssh-server-8.4p1-3.3.1.ppc64le.rpm openssh-8.4p1-3.3.1.aarch64.rpm openssh-askpass-gnome-8.4p1-3.3.1.aarch64.rpm openssh-cavs-8.4p1-3.3.1.aarch64.rpm openssh-clients-8.4p1-3.3.1.aarch64.rpm openssh-common-8.4p1-3.3.1.aarch64.rpm openssh-fips-8.4p1-3.3.1.aarch64.rpm openssh-helpers-8.4p1-3.3.1.aarch64.rpm openssh-server-8.4p1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1848 low SUSE Updates openSUSE-SLE 15.3 This update for libraw fixes the following issues: - Hardening: Link as PIE (bsc#1184123) libraw-0.18.9-3.14.1.src.rpm libraw-devel-0.18.9-3.14.1.x86_64.rpm libraw-devel-static-0.18.9-3.14.1.x86_64.rpm libraw-tools-0.18.9-3.14.1.x86_64.rpm libraw16-0.18.9-3.14.1.x86_64.rpm libraw-devel-0.18.9-3.14.1.s390x.rpm libraw-devel-static-0.18.9-3.14.1.s390x.rpm libraw-tools-0.18.9-3.14.1.s390x.rpm libraw16-0.18.9-3.14.1.s390x.rpm libraw-devel-0.18.9-3.14.1.ppc64le.rpm libraw-devel-static-0.18.9-3.14.1.ppc64le.rpm libraw-tools-0.18.9-3.14.1.ppc64le.rpm libraw16-0.18.9-3.14.1.ppc64le.rpm libraw-devel-0.18.9-3.14.1.aarch64.rpm libraw-devel-static-0.18.9-3.14.1.aarch64.rpm libraw-tools-0.18.9-3.14.1.aarch64.rpm libraw16-0.18.9-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-1850 low SUSE Updates openSUSE-SLE 15.3 This update for doxygen fixes the following issues: - Hardeing: Removed non-PIE binaries (bsc#1184122) doxygen-1.8.14-3.3.1.src.rpm doxygen-1.8.14-3.3.1.x86_64.rpm doxywizard-1.8.14-3.3.1.src.rpm doxywizard-1.8.14-3.3.1.x86_64.rpm doxygen-1.8.14-3.3.1.s390x.rpm doxywizard-1.8.14-3.3.1.s390x.rpm doxygen-1.8.14-3.3.1.ppc64le.rpm doxywizard-1.8.14-3.3.1.ppc64le.rpm doxygen-1.8.14-3.3.1.aarch64.rpm doxywizard-1.8.14-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1849 low SUSE Updates openSUSE-SLE 15.3 This update for fltk fixes the following issues: - Hardening: Removed non position independent binaries (bsc#1184122) fltk-1.3.4-5.3.1.src.rpm fltk-devel-1.3.4-5.3.1.x86_64.rpm fltk-devel-32bit-1.3.4-5.3.1.x86_64.rpm fltk-devel-static-1.3.4-5.3.1.x86_64.rpm libfltk1-1.3.4-5.3.1.x86_64.rpm libfltk1-32bit-1.3.4-5.3.1.x86_64.rpm fltk-devel-1.3.4-5.3.1.s390x.rpm fltk-devel-static-1.3.4-5.3.1.s390x.rpm libfltk1-1.3.4-5.3.1.s390x.rpm fltk-devel-1.3.4-5.3.1.ppc64le.rpm fltk-devel-static-1.3.4-5.3.1.ppc64le.rpm libfltk1-1.3.4-5.3.1.ppc64le.rpm fltk-devel-1.3.4-5.3.1.aarch64.rpm fltk-devel-static-1.3.4-5.3.1.aarch64.rpm libfltk1-1.3.4-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2267 low SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - Made the 'Change Used Devices' menu item translatable (bsc#1185060) - Ensure mount options are not doubled (bsc#1186298) - Try harder matching device names to fix failing offline upgrade from SLE-12 SP5 to SLE-15 SP2 (bsc#1186268) yast2-storage-ng-4.3.53-3.5.1.src.rpm yast2-storage-ng-4.3.53-3.5.1.x86_64.rpm yast2-storage-ng-4.3.53-3.5.1.s390x.rpm yast2-storage-ng-4.3.53-3.5.1.ppc64le.rpm yast2-storage-ng-4.3.53-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1847 low SUSE Updates openSUSE-SLE 15.3 This update for bison fixes the following issues: - Fixed an issue when building bison for SUSE Linux Enterprise Server 15 SP3 (bsc#1183777) This update does not fix any user visible issues, thus it is optional to install. bison-3.0.4-3.3.1.src.rpm bison-3.0.4-3.3.1.x86_64.rpm bison-32bit-3.0.4-3.3.1.x86_64.rpm bison-lang-3.0.4-3.3.1.noarch.rpm bison-3.0.4-3.3.1.s390x.rpm bison-3.0.4-3.3.1.ppc64le.rpm bison-3.0.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1923 important SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - Ensured thread safety when opening files over NFS to prevent a use-after-free issue (bsc#1183194) nfs-client-2.1.1-10.18.1.x86_64.rpm nfs-doc-2.1.1-10.18.1.x86_64.rpm nfs-kernel-server-2.1.1-10.18.1.x86_64.rpm nfs-utils-2.1.1-10.18.1.src.rpm nfs-client-2.1.1-10.18.1.s390x.rpm nfs-doc-2.1.1-10.18.1.s390x.rpm nfs-kernel-server-2.1.1-10.18.1.s390x.rpm nfs-client-2.1.1-10.18.1.ppc64le.rpm nfs-doc-2.1.1-10.18.1.ppc64le.rpm nfs-kernel-server-2.1.1-10.18.1.ppc64le.rpm nfs-client-2.1.1-10.18.1.aarch64.rpm nfs-doc-2.1.1-10.18.1.aarch64.rpm nfs-kernel-server-2.1.1-10.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-1805 moderate SUSE Updates openSUSE-SLE 15.3 This update for amazon-ssm-agent and amazon-ecs-init fixes the following issues: - Added support for Amazon ECS Anywhere (bsc#1186239, bsc#1186262) The amazon-ssm-agent package provides a RELEASENOTES.md file with a more detailed list of all changes. amazon-ecs-init-1.52.1-4.8.1.src.rpm amazon-ecs-init-1.52.1-4.8.1.x86_64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.src.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.x86_64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.s390x.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.ppc64le.rpm amazon-ecs-init-1.52.1-4.8.1.aarch64.rpm amazon-ssm-agent-3.0.1209.0-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2163 moderate SUSE Updates openSUSE-SLE 15.3 This update for bouncycastle fixes the following issues: - CVE-2020-15522: Fixed a timing issue within the EC math library (bsc#1186328). bouncycastle-1.64-3.3.1.noarch.rpm bouncycastle-1.64-3.3.1.src.rpm bouncycastle-javadoc-1.64-3.3.1.noarch.rpm bouncycastle-mail-1.64-3.3.1.noarch.rpm bouncycastle-pg-1.64-3.3.1.noarch.rpm bouncycastle-pkix-1.64-3.3.1.noarch.rpm bouncycastle-tls-1.64-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2224 important SUSE Updates openSUSE-SLE 15.3 This update for psmisc fixes the following issues: - It does no longer list all processes from different private namespaces when fuser is run on an NFS mount. This led to an issue where the wrong processes were terminated in an SAP application cluster environment (bsc#1185208) psmisc-23.0-6.16.1.src.rpm psmisc-23.0-6.16.1.x86_64.rpm psmisc-lang-23.0-6.16.1.noarch.rpm psmisc-23.0-6.16.1.s390x.rpm psmisc-23.0-6.16.1.ppc64le.rpm psmisc-23.0-6.16.1.aarch64.rpm openSUSE-SLE-15.3-2021-1817 moderate SUSE Updates openSUSE-SLE 15.3 This update of google-poppins-fonts releases it in a higher version than on SLES 15 SP2, to allow better migration and solve a openSUSE Leap 15.3 patch problem. (bsc#1186642) google-poppins-fonts-4.003-6.3.1.noarch.rpm google-poppins-fonts-4.003-6.3.1.src.rpm openSUSE-SLE-15.3-2021-1818 moderate SUSE Updates openSUSE-SLE 15.3 This update of libgnomesu releases it in a higher version than on SUSE Linux Enterprise 15 SP2, to allow better migration and solve a openSUSE Leap 15.3 patch problem. (bsc#1186642) libgnomesu-2.0.6-3.6.1.src.rpm libgnomesu-2.0.6-3.6.1.x86_64.rpm libgnomesu-devel-2.0.6-3.6.1.x86_64.rpm libgnomesu-lang-2.0.6-3.6.1.noarch.rpm libgnomesu0-2.0.6-3.6.1.x86_64.rpm libgnomesu-2.0.6-3.6.1.s390x.rpm libgnomesu-devel-2.0.6-3.6.1.s390x.rpm libgnomesu0-2.0.6-3.6.1.s390x.rpm libgnomesu-2.0.6-3.6.1.ppc64le.rpm libgnomesu-devel-2.0.6-3.6.1.ppc64le.rpm libgnomesu0-2.0.6-3.6.1.ppc64le.rpm libgnomesu-2.0.6-3.6.1.aarch64.rpm libgnomesu-devel-2.0.6-3.6.1.aarch64.rpm libgnomesu0-2.0.6-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1802 moderate SUSE Updates openSUSE-SLE 15.3 This update for kglobalaccel fixes the following issues: - work around kglobalaccel breaking persistently after an unclean logout (kde#429415, bsc#1179033) kglobalaccel-5.76.0-3.3.1.src.rpm kglobalaccel-devel-32bit-5.76.0-3.3.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.3.1.x86_64.rpm kglobalaccel5-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-32bit-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-5.76.0-3.3.1.x86_64.rpm libKF5GlobalAccel5-lang-5.76.0-3.3.1.noarch.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.3.1.s390x.rpm kglobalaccel5-5.76.0-3.3.1.s390x.rpm libKF5GlobalAccel5-5.76.0-3.3.1.s390x.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.s390x.rpm kglobalaccel-devel-5.76.0-3.3.1.ppc64le.rpm kglobalaccel5-5.76.0-3.3.1.ppc64le.rpm libKF5GlobalAccel5-5.76.0-3.3.1.ppc64le.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.ppc64le.rpm kglobalaccel-devel-5.76.0-3.3.1.aarch64.rpm kglobalaccel5-5.76.0-3.3.1.aarch64.rpm libKF5GlobalAccel5-5.76.0-3.3.1.aarch64.rpm libKF5GlobalAccelPrivate5-5.76.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1998 moderate SUSE Updates openSUSE-SLE 15.3 This update for tpm2.0-tools fixes the following issues: - CVE-2021-3565: Fixed issue when no encrypted session with the TPM is used (bsc#1186490). tpm2.0-tools-4.3.0-4.3.1.src.rpm tpm2.0-tools-4.3.0-4.3.1.x86_64.rpm tpm2.0-tools-4.3.0-4.3.1.s390x.rpm tpm2.0-tools-4.3.0-4.3.1.ppc64le.rpm tpm2.0-tools-4.3.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1914 moderate SUSE Updates openSUSE-SLE 15.3 This update for libopenmpt fixes the following issues: Various bugfix and stability issues were fixed, some of those might have security impact. libopenmpt was updated to 0.3.28: * Fixed excessive memory consumption with malformed files in various formats. Changes in 0.3.27: * AMS: Avoid allocating excessive amount of memory for compressed song message in malformed files. * S3M: Some samples were imported with a too high sample rate if module was saved with Scream Tracker 3. Changes in 0.3.26: * DMF: Improve import of finetune effect with parameters larger than +/-15. Changes in 0.3.25: * AMS: An upper bound for uncompressed sample size is now established to avoid memory exhaustion from malformed files. * MO3: Avoid certain ModPlug hacks from being fixed up twice, which could lead to e.g. very narrow pan swing range for old OpenMPT IT files saved with a recent MO3 encoder version. * IMF: Instrument sample mapping was off by one octave, notable in the guitar part of Astaris by Karsten Koch. * PLM: Percentage offset (Mxx) was slightly off. Changes in 0.3.24: * PP20: The first few bytes of some files were not decompressed properly, making some files unplayable (depending on the original format). Changes in 0.3.23: * IT: Global volume slides with both nibbles set preferred the “slide up” nibble over the “slide down” nibble in old OpenMPT versions, unlike other slides. Such old files are now imported correctly again. * IT: Fixed an edge case where, if the filter hit full cutoff / no resonance on the first tick of a row where a new delayed note would be triggered, the filter would be disabled even though it should stay active. Fixes trace.it by maddie. * XM: Out-of-range arpeggio clamping behaviour broke in OpenMPT 1.23.05.00. The arpeggios in Binary World by Dakota now play correctly again. * S3M: Support old-style sample pre-amp value in very early S3M files. * S3M: Only force-enable fast slides for files ST 3.00. Previously, any S3M file made with an ST3 version older than 3.20 enabled them. * M15: Improve tracker detection heuristics to never assume SoundTracker 2.0 if there is a huge number of Dxx commands, as that is a definite hint that they should be treated as volume slides. Fixes Monty On The Run by Master Blaster. Changes in 0.3.22: * IT: Disable retrigger with short notes quirk for modules saved with Chibi Tracker, as it does not implement that quirk. * MOD: Fix early song ending due to ProTracker pattern jump quirk (EEx + Dxx on same row) if infinite looping is disabled. Fixes Haunted Tracks.mod by Triace. * MOD: Vibrato type “ramp down” was upside down. Changes in 0.3.21: * IT: Vibrato was too fast in Old Effects mode since libopenmpt 0.3. * XM: Treat 8bitbubsy’s FT2 clone exactly like Fasttracker 2 with respect to compatibility and playback flags. For example, FT2 Pan Law was not applied. * DMF: Some files had a wrong tempo since libopenmpt 0.2.5705-beta15. libmodplug-devel-0.3.28-2.13.1.x86_64.rpm libmodplug1-0.3.28-2.13.1.x86_64.rpm libmodplug1-32bit-0.3.28-2.13.1.x86_64.rpm libopenmpt-0.3.28-2.13.1.src.rpm libopenmpt-devel-0.3.28-2.13.1.x86_64.rpm libopenmpt0-0.3.28-2.13.1.x86_64.rpm libopenmpt0-32bit-0.3.28-2.13.1.x86_64.rpm libopenmpt_modplug1-0.3.28-2.13.1.x86_64.rpm libopenmpt_modplug1-32bit-0.3.28-2.13.1.x86_64.rpm openmpt123-0.3.28-2.13.1.x86_64.rpm libmodplug-devel-0.3.28-2.13.1.s390x.rpm libmodplug1-0.3.28-2.13.1.s390x.rpm libopenmpt-devel-0.3.28-2.13.1.s390x.rpm libopenmpt0-0.3.28-2.13.1.s390x.rpm libopenmpt_modplug1-0.3.28-2.13.1.s390x.rpm openmpt123-0.3.28-2.13.1.s390x.rpm libmodplug-devel-0.3.28-2.13.1.ppc64le.rpm libmodplug1-0.3.28-2.13.1.ppc64le.rpm libopenmpt-devel-0.3.28-2.13.1.ppc64le.rpm libopenmpt0-0.3.28-2.13.1.ppc64le.rpm libopenmpt_modplug1-0.3.28-2.13.1.ppc64le.rpm openmpt123-0.3.28-2.13.1.ppc64le.rpm libmodplug-devel-0.3.28-2.13.1.aarch64.rpm libmodplug1-0.3.28-2.13.1.aarch64.rpm libopenmpt-devel-0.3.28-2.13.1.aarch64.rpm libopenmpt0-0.3.28-2.13.1.aarch64.rpm libopenmpt_modplug1-0.3.28-2.13.1.aarch64.rpm openmpt123-0.3.28-2.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-1843 important SUSE Updates openSUSE-SLE 15.3 This update for polkit fixes the following issues: - CVE-2021-3560: Fixed a local privilege escalation using polkit_system_bus_name_get_creds_sync() (bsc#1186497). libpolkit0-0.116-3.3.1.x86_64.rpm libpolkit0-32bit-0.116-3.3.1.x86_64.rpm polkit-0.116-3.3.1.src.rpm polkit-0.116-3.3.1.x86_64.rpm polkit-devel-0.116-3.3.1.x86_64.rpm polkit-doc-0.116-3.3.1.noarch.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.x86_64.rpm libpolkit0-0.116-3.3.1.s390x.rpm polkit-0.116-3.3.1.s390x.rpm polkit-devel-0.116-3.3.1.s390x.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.s390x.rpm libpolkit0-0.116-3.3.1.ppc64le.rpm polkit-0.116-3.3.1.ppc64le.rpm polkit-devel-0.116-3.3.1.ppc64le.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.ppc64le.rpm libpolkit0-0.116-3.3.1.aarch64.rpm polkit-0.116-3.3.1.aarch64.rpm polkit-devel-0.116-3.3.1.aarch64.rpm typelib-1_0-Polkit-1_0-0.116-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1897 important SUSE Updates openSUSE-SLE 15.3 This update for libX11 fixes the following issues: - Regression in the fix for CVE-2021-31535, causing segfaults for xforms applications like fdesign (bsc#1186643) libX11-1.6.5-3.21.1.src.rpm libX11-6-1.6.5-3.21.1.x86_64.rpm libX11-6-32bit-1.6.5-3.21.1.x86_64.rpm libX11-data-1.6.5-3.21.1.noarch.rpm libX11-devel-1.6.5-3.21.1.x86_64.rpm libX11-devel-32bit-1.6.5-3.21.1.x86_64.rpm libX11-xcb1-1.6.5-3.21.1.x86_64.rpm libX11-xcb1-32bit-1.6.5-3.21.1.x86_64.rpm libX11-6-1.6.5-3.21.1.s390x.rpm libX11-devel-1.6.5-3.21.1.s390x.rpm libX11-xcb1-1.6.5-3.21.1.s390x.rpm libX11-6-1.6.5-3.21.1.ppc64le.rpm libX11-devel-1.6.5-3.21.1.ppc64le.rpm libX11-xcb1-1.6.5-3.21.1.ppc64le.rpm libX11-6-1.6.5-3.21.1.aarch64.rpm libX11-devel-1.6.5-3.21.1.aarch64.rpm libX11-xcb1-1.6.5-3.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-1896 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam_radius fixes the following issues: - CVE-2015-9542: pam_radius: buffer overflow in password field (bsc#1163933) pam_radius-1.4.0-3.3.1.src.rpm pam_radius-1.4.0-3.3.1.x86_64.rpm pam_radius-32bit-1.4.0-3.3.1.x86_64.rpm pam_radius-1.4.0-3.3.1.s390x.rpm pam_radius-1.4.0-3.3.1.ppc64le.rpm pam_radius-1.4.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2215 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: The scap-security-guide was updated to 0.1.56 release (jsc#ECO-3319) - Align ism_o profile with latest ISM SSP (#6878) - Align RHEL 7 STIG profile with DISA STIG V3R3 - Creating new RHEL 7 STIG GUI profile (#6863) - Creating new RHEL 8 STIG GUI profile (#6862) - Add the RHEL9 product (#6801) - Initial support for SUSE SLE-15 (#6666) - add support for osbuild blueprint remediations (#6970) This update brings the following SUSE Linux Enterprise STIG SCAP automations: - SCAP STIG automation for SUSE Linux Enterprise 12 (SUSE supplied, nearly complete, missing 4 rules) - SCAP STIG automation for SUSE Linux Enterprise 15 (SUSE supplied, nearly complete, missing 4 rules) - CIS automation for SUSE Linux Enterprise 15 (community supplied) It can be evaluated using "oscap" from "openscap-utils", e.g. by doing on SUSE Linux Enterprise 12: - oscap xccdf eval --profile stig /usr/share/xml/scap/ssg/content/ssg-sle12-ds.xml On SUSE Linux Enterprise 15: - oscap xccdf eval --profile stig /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml or the community supplied CIS on SUSE Linux Enterprise 15: - oscap xccdf eval --profile cis /usr/share/xml/scap/ssg/content/ssg-sle15-ds.xml More content will be added in future updates. scap-security-guide-0.1.56-1.13.2.noarch.rpm scap-security-guide-0.1.56-1.13.2.src.rpm scap-security-guide-debian-0.1.56-1.13.2.noarch.rpm scap-security-guide-redhat-0.1.56-1.13.2.noarch.rpm scap-security-guide-ubuntu-0.1.56-1.13.2.noarch.rpm openSUSE-SLE-15.3-2021-1827 moderate SUSE Updates openSUSE-SLE 15.3 This update provides python3-docker to the SUSE Linux Enterprise 15 SP2 and SP3 PackageHub. python-docker-4.2.0-3.2.1.src.rpm python-docker-pycreds-0.4.0-3.2.1.src.rpm python2-docker-4.2.0-3.2.1.noarch.rpm python2-docker-pycreds-0.4.0-3.2.1.noarch.rpm python3-docker-4.2.0-3.2.1.noarch.rpm python3-docker-pycreds-0.4.0-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-1977 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel memory (bsc#1186484). - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values. (bsc#1186111) - CVE-2020-26139: Fixed a denial-of-service when an Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. (bnc#1186062) - CVE-2021-23134: A Use After Free vulnerability in nfc sockets allowed local attackers to elevate their privileges. (bnc#1186060) - CVE-2021-3491: Fixed a potential heap overflow in mem_rw(). This vulnerability is related to the PROVIDE_BUFFERS operation, which allowed the MAX_RW_COUNT limit to be bypassed (bsc#1185642). - CVE-2021-32399: Fixed a race condition when removing the HCI controller (bnc#1184611). - CVE-2020-24586: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances this can be abused to inject arbitrary network packets and/or exfiltrate user data (bnc#1185859). - CVE-2020-24587: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed (bnc#1185859 bnc#1185862). - CVE-2020-24588: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. (bnc#1185861) - CVE-2020-26147: The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments, even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used (bnc#1185859). - CVE-2020-26145: An issue was discovered with Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration. (bnc#1185860) - CVE-2020-26141: An issue was discovered in the ALFA driver for AWUS036H, where the Message Integrity Check (authenticity) of fragmented TKIP frames was not verified. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol. (bnc#1185987) - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c that performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences of pointer arithmetic operations, the pointer modification performed by the first operation was not correctly accounted for when restricting subsequent operations (bnc#1184942). - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184170). - CVE-2021-3428: Fixed an integer overflow in ext4_es_cache_extent (bsc#1173485). - CVE-2021-29647: Fixed an issue in qrtr_recvmsg which could have allowed attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure (bsc#1184192 ). - CVE-2021-29265: Fixed an issue in usbip_sockfd_store which could have allowed attackers to cause a denial of service due to race conditions during an update of the local and shared status (bsc#1184167). - CVE-2021-29264: Fixed an issue in the Freescale Gianfar Ethernet driver which could have allowed attackers to cause a system crash due to a calculation of negative fragment size (bsc#1184168). - CVE-2021-28972: Fixed a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly (bsc#1184198). - CVE-2021-28971: Fixed an issue in intel_pmu_drain_pebs_nhm which could have caused a system crash because the PEBS status in a PEBS record was mishandled (bsc#1184196 ). - CVE-2021-28964: Fixed a race condition in get_old_root which could have allowed attackers to cause a denial of service (bsc#1184193). - CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc#1183646). - CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan (bsc#1183593 ). - CVE-2021-28375: Fixed an issue in fastrpc_internal_invoke which did not prevent user applications from sending kernel RPC messages (bsc#1183596). - CVE-2021-28038: Fixed an issue with the netback driver which was lacking necessary treatment of errors such as failed memory allocations (bsc#1183022). - CVE-2021-27365: Fixed an issue where an unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum length of a Netlink message (bsc#1182715). - CVE-2021-27364: Fixed an issue where an attacker could craft Netlink messages (bsc#1182717). - CVE-2021-27363: Fixed a kernel pointer leak which could have been used to determine the address of the iscsi_transport structure (bsc#1182716). - CVE-2020-35519: Fixed an out-of-bounds memory access was found in x25_bind (bsc#1183696). - CVE-2020-27815: Fixed an issue in JFS filesystem where could have allowed an attacker to execute code (bsc#1179454). - CVE-2020-27171: Fixed an off-by-one error affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183775). - CVE-2020-27170: Fixed potential side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183686). - CVE-2019-19769: Fixed a use-after-free in the perf_trace_lock_acquire function (bsc#1159280 ). - CVE-2019-18814: Fixed a use-after-free when aa_label_parse() fails in aa_audit_rule_init() (bsc#1156256). - CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393). - CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120). - CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391). - CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h due to a retry loop continually was finding the same bad inode (bsc#1184194). - CVE-2021-28952: Fixed a buffer overflow in the soundwire device driver, triggered when an unexpected port ID number is encountered. (bnc#1184197). - CVE-2021-20268: Fixed an out-of-bounds access flaw in the implementation of the eBPF code verifier. This flaw allowed a local user to crash the system or possibly escalate their privileges. (bnc#1183077) - CVE-2020-27673: Fixed a vulnerability with xen, where guest OS users could cause a denial of service (host OS hang) via a high rate of events to dom0 (bnc#1177411). - CVE-2020-36312: Fixed a memory leak upon a kmalloc failure (bsc#1184509 ). - CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511). - CVE-2020-36310: Fixed infinite loop for certain nested page faults (bsc#1184512). - CVE-2021-3489: Fixed an issue where the eBPF RINGBUF bpf_ringbuf_reserve did not check that the allocated size was smaller than the ringbuf size (bnc#1185640). - CVE-2021-3490: Fixed an issue where the eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) did not update the 32-bit bounds (bnc#1185641 bnc#1185796 ). - CVE-2020-36322: Fixed an issue was discovered in FUSE filesystem implementation which could have caused a system crash (bsc#1184211). - CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181). The following non-security bugs were fixed: - ACPI / hotplug / PCI: Fix reference count leak in enable_slot() (git-fixes). - ACPI / idle: override c-state latency when not in conformance with s0ix (bsc#1185840). - ACPI: CPPC: Replace cppc_attr with kobj_attribute (git-fixes). - ACPI: GTDT: Do not corrupt interrupt mappings on watchdow probe failure (git-fixes). - ACPI: PM: Add ACPI ID of Alder Lake Fan (git-fixes). - ACPI: PM: s2idle: Add AMD support to handle _DSM (bsc#1185840). - ACPI: PM: s2idle: Add missing LPS0 functions for AMD (bsc#1185840). - ACPI: PM: s2idle: Drop unused local variables and related code (bsc#1185840). - ACPI: PM: s2idle: Move x86-specific code to the x86 directory (bsc#1185840). - ACPI: custom_method: fix a possible memory leak (git-fixes). - ACPI: custom_method: fix potential use-after-free issue (git-fixes). - ACPI: processor: Fix CPU0 wakeup in acpi_idle_play_dead() (git-fixes). - ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m (git-fixes). - ACPI: scan: Rearrange memory allocation in acpi_device_add() (git-fixes). - ACPI: video: Add DMI quirk for GIGABYTE GB-BXBT-2807 (git-fixes). - ACPI: video: Add missing callback back for Sony VPCEH3U1E (git-fixes). - ACPICA: Always create namespace nodes using acpi_ns_create_node() (git-fixes). - ACPICA: Enable sleep button on ACPI legacy wake (bsc#1181383). - ACPICA: Fix race in generic_serial_bus (I2C) and GPIO op_region parameter handling (git-fixes). - ALSA: Convert strlcpy to strscpy when return value is unused (git-fixes). - ALSA: aloop: Fix initialization of controls (git-fixes). - ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro (git-fixes). - ALSA: bebob: enable to deliver MIDI messages for multiple ports (git-fixes). - ALSA: core: remove redundant spin_lock pair in snd_card_disconnect (git-fixes). - ALSA: dice: fix null pointer dereference when node is disconnected (git-fixes). - ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26 (git-fixes). - ALSA: dice: fix stream format for TC Electronic Konnekt Live at high sampling transfer frequency (git-fixes). - ALSA: emu8000: Fix a use after free in snd_emu8000_create_mixer (git-fixes). - ALSA: firewire-lib: fix amdtp_packet tracepoints event for packet_index field (git-fixes). - ALSA: firewire-lib: fix calculation for size of IR context payload (git-fixes). - ALSA: firewire-lib: fix check for the size of isochronous packet payload (git-fixes). - ALSA: hda/ca0132: Add Sound BlasterX AE-5 Plus support (git-fixes). - ALSA: hda/cirrus: Add Headphone and Headset MIC Volume Control (git-fixes). - ALSA: hda/cirrus: Add error handling into CS8409 I2C functions (git-fixes). - ALSA: hda/cirrus: Add jack detect interrupt support from CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Add support for CS8409 HDA bridge and CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Cleanup patch_cirrus.c code (git-fixes). - ALSA: hda/cirrus: Fix CS42L42 Headset Mic volume control name (git-fixes). - ALSA: hda/cirrus: Make CS8409 driver more generic by using fixups (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume for Bullseye to -26 dB (git-fixes). - ALSA: hda/cirrus: Use CS8409 filter to fix abnormal sounds on Bullseye (git-fixes). - ALSA: hda/conexant: Add quirk for mute LED control on HP ZBook G5 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ZBook G5 model (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/hdmi: Cancel pending works before suspend (bsc#1182377). - ALSA: hda/hdmi: Cancel pending works before suspend (git-fixes). - ALSA: hda/hdmi: fix race in handling acomp ELD notification at resume (git-fixes). - ALSA: hda/realtek - Headset Mic issue on HP platform (git-fixes). - ALSA: hda/realtek: ALC285 Thinkpad jack pin quirk is unreachable (git-fixes). - ALSA: hda/realtek: Add fixup for HP OMEN laptop (git-fixes). - ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: Add quirk for Intel Clevo PCx0Dx (git-fixes). - ALSA: hda/realtek: Add quirk for Lenovo Ideapad S740 (git-fixes). - ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293 (git-fixes). - ALSA: hda/realtek: Apply headset-mic quirks for Xiaomi Redmibook Air (git-fixes). - ALSA: hda/realtek: Chain in pop reduction fixup for ThinkStation P340 (git-fixes). - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on EliteBook 845 G8 (git-fixes). - ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA (git-fixes). - ALSA: hda/realtek: Fix speaker amp on HP Envy AiO 32 (git-fixes). - ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1 (git-fixes). - ALSA: hda/realtek: GA503 use same quirks as GA401 (git-fixes). - ALSA: hda/realtek: Headphone volume is controlled by Front mixer (git-fixes). - ALSA: hda/realtek: Re-order ALC269 ASUS quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Dell quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 HP quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Lenovo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC662 quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Clevo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order remaining ALC269 quirk table entries (git-fixes). - ALSA: hda/realtek: Remove redundant entry for ALC861 Haier/Uniwill devices (git-fixes). - ALSA: hda/realtek: apply pin quirk for XiaomiNotebook Pro (git-fixes). - ALSA: hda/realtek: call alc_update_headset_mode() in hp_automute_hook (git-fixes). - ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO (git-fixes). - ALSA: hda/realtek: fix mic boost on Intel NUC 8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 15 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 17 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 440 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 640 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 840 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 850 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 855 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G7 (git-fixes). - ALSA: hda/realtek: fix static noise on ALC285 Lenovo laptops (git-fixes). - ALSA: hda/realtek: reset eapd coeff to default value for alc287 (git-fixes). - ALSA: hda/realtek: the bass speaker can't output sound on Yoga 9i (git-fixes). - ALSA: hda: Add missing sanity checks in PM prepare/complete callbacks (git-fixes). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (bsc#1182377). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (git-fixes). - ALSA: hda: Drop the BATCH workaround for AMD controllers (git-fixes). - ALSA: hda: Flush pending unsolicited events before suspend (bsc#1182377). - ALSA: hda: Re-add dropped snd_poewr_change_state() calls (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: generic: Fix the micmute led init state (git-fixes). - ALSA: hda: generic: change the DAC ctl name for LO+SPK or LO+HP (git-fixes). - ALSA: hda: ignore invalid NHLT table (git-fixes). - ALSA: hdsp: do not disable if not enabled (git-fixes). - ALSA: hdspm: do not disable if not enabled (git-fixes). - ALSA: intel8x0: Do not update period unless prepared (git-fixes). - ALSA: line6: Fix racy initialization of LINE6 MIDI (git-fixes). - ALSA: rme9652: do not disable if not enabled (git-fixes). - ALSA: sb: Fix two use after free in snd_sb_qsound_build (git-fixes). - ALSA: usb-audio: Add DJM-450 to the quirks table (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM750 to Pioneer mixer quirk (git-fixes). - ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX (git-fixes). - ALSA: usb-audio: Add Pioneer DJM-850 to quirks-table (git-fixes). - ALSA: usb-audio: Add dB range mapping for Sennheiser Communications Headset PC 8 (git-fixes). - ALSA: usb-audio: Add error checks for usb_driver_claim_interface() calls (git-fixes). - ALSA: usb-audio: Add implicit feeback support for the BOSS GT-1 (git-fixes). - ALSA: usb-audio: Add support for Pioneer DJM-750 (git-fixes). - ALSA: usb-audio: Add support for many Roland devices' implicit feedback quirks (git-fixes). - ALSA: usb-audio: Apply implicit feedback mode for BOSS devices (git-fixes). - ALSA: usb-audio: Apply sample rate quirk to Logitech Connect (git-fixes). - ALSA: usb-audio: Carve out connector value checking into a helper (git-fixes). - ALSA: usb-audio: Check connector value on resume (git-fixes). - ALSA: usb-audio: Configure Pioneer DJM-850 samplerate (git-fixes). - ALSA: usb-audio: Convert remaining strlcpy() to strscpy() (git-fixes). - ALSA: usb-audio: Convert the last strlcpy() usage (git-fixes). - ALSA: usb-audio: DJM-750: ensure format is set (git-fixes). - ALSA: usb-audio: Declare Pioneer DJM-850 mixer controls (git-fixes). - ALSA: usb-audio: Drop implicit fb quirk entries dubbed for capture (git-fixes). - ALSA: usb-audio: Explicitly set up the clock selector (git-fixes). - ALSA: usb-audio: Fix "RANGE setting not yet supported" errors (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix implicit sync clearance at stopping stream (git-fixes). - ALSA: usb-audio: Fix potential out-of-bounce access in MIDI EP parser (git-fixes). - ALSA: usb-audio: Fix unintentional sign extension issue (git-fixes). - ALSA: usb-audio: Generic application of implicit fb to Roland/BOSS devices (git-fixes). - ALSA: usb-audio: Re-apply implicit feedback mode to Pioneer devices (git-fixes). - ALSA: usb-audio: Remove redundant assignment to len (git-fixes). - ALSA: usb-audio: Skip probe of UA-101 devices (git-fixes). - ALSA: usb-audio: Skip the clock selector inquiry for single connections (git-fixes). - ALSA: usb-audio: Validate MS endpoint descriptors (git-fixes). - ALSA: usb-audio: add mixer quirks for Pioneer DJM-900NXS2 (git-fixes). - ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe (bsc#1182552). - ALSA: usb-audio: fix Pioneer DJM-850 control label info (git-fixes). - ALSA: usb-audio: fix control-request direction (git-fixes). - ALSA: usb-audio: fix use after free in usb_audio_disconnect (bsc#1182552). - ALSA: usb-audio: generate midi streaming substream names from jack names (git-fixes). - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci (git-fixes). - ALSA: usb-audio: scarlett2: Improve driver startup messages (git-fixes). - ALSA: usb-audio: scarlett2: snd_scarlett_gen2_controls_create() can be static (git-fixes). - ALSA: usb-audio: use usb headers rather than define structs locally (git-fixes). - ALSA: usb: Use DIV_ROUND_UP() instead of open-coding it (git-fixes). - ALSA: usb: midi: do not return -ENOMEM when usb_urb_ep_type_check fails (git-fixes). - ASoC: Intel: Add DMI quirk table to soc_intel_is_byt_cr() (git-fixes). - ASoC: Intel: boards: sof-wm8804: add check for PLL setting (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Acer One S1002 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Chuwi Hi8 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Estar Beauty HD MID 7316R tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Voyo Winpad A15 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Enable jack-detect support on Asus T100TAF (git-fixes). - ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 10-p0XX OVCD current threshold (git-fixes). - ASoC: Intel: bytcr_rt5651: Add quirk for the Jumper EZpad 7 tablet (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function (git-fixes). - ASoC: Intel: sof_sdw: add quirk for HP Spectre x360 convertible (git-fixes). - ASoC: Intel: sof_sdw: add quirk for new ADL-P Rvp (git-fixes). - ASoC: Intel: sof_sdw: reorganize quirks by generation (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: hda: remove unnecessary parentheses (git-fixes). - ASoC: SOF: Intel: unregister DMIC device on probe error (git-fixes). - ASoC: SOF: intel: fix wrong poll bits in dsp power down (git-fixes). - ASoC: ak4458: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Fix s/show/slow/ typo (git-fixes). - ASoC: ak5558: correct reset polarity (git-fixes). - ASoC: codecs: wcd934x: add a sanity check in set channel map (git-fixes). - ASoC: cs35l33: fix an error code in probe() (git-fixes). - ASoC: cs42l42: Always wait at least 3ms after reset (git-fixes). - ASoC: cs42l42: Do not enable/disable regulator at Bias Level (git-fixes). - ASoC: cs42l42: Fix Bitclock polarity inversion (git-fixes). - ASoC: cs42l42: Fix channel width support (git-fixes). - ASoC: cs42l42: Fix mixer volume control (git-fixes). - ASoC: cs42l42: Regmap must use_single_read/write (git-fixes). - ASoC: cygnus: fix for_each_child.cocci warnings (git-fixes). - ASoC: es8316: Simplify adc_pga_gain_tlv table (git-fixes). - ASoC: fsl_esai: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: fsl_ssi: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: intel: atom: Remove 44100 sample-rate from the media and deep-buffer DAI descriptions (git-fixes). - ASoC: intel: atom: Stop advertising non working S24LE support (git-fixes). - ASoC: max98373: Added 30ms turn on/off time delay (git-fixes). - ASoC: max98373: Changed amp shutdown register as volatile (git-fixes). - ASoC: qcom: lpass-cpu: Fix lpass dai ids parse (git-fixes). - ASoC: qcom: sdm845: Fix array out of bounds access (git-fixes). - ASoC: qcom: sdm845: Fix array out of range on rx slim channels (git-fixes). - ASoC: rsnd: call rsnd_ssi_master_clk_start() from rsnd_ssi_init() (git-fixes). - ASoC: rsnd: check all BUSIF status when error (git-fixes). - ASoC: rsnd: core: Check convert rate in rsnd_hw_params (git-fixes). - ASoC: rt1015: fix i2c communication error (git-fixes). - ASoC: rt286: Generalize support for ALC3263 codec (git-fixes). - ASoC: rt286: Make RT286_SET_GPIO_* readable and writable (git-fixes). - ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5659: Update MCLK rate in set_sysclk() (git-fixes). - ASoC: rt5670: Add a quirk for the Dell Venue 10 Pro 5055 (git-fixes). - ASoC: rt5670: Add emulated 'DAC1 Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'HP Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'OUT Channel Switch' control (git-fixes). - ASoC: rt5670: Remove ADC vol-ctrl mute bits poking from Sto1 ADC mixer settings (git-fixes). - ASoC: rt711: add snd_soc_component remove callback (git-fixes). - ASoC: samsung: snow: remove useless test (git-fixes). - ASoC: samsung: tm2_wm5110: check of of_parse return value (git-fixes). - ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe (git-fixes). - ASoC: simple-card-utils: Do not handle device clock (git-fixes). - ASoC: simple-card: fix possible uninitialized single_cpu local variable (git-fixes). - ASoC: soc-core kABI workaround (git-fixes). - ASoC: soc-core: Prevent warning if no DMI table is present (git-fixes). - ASoC: sunxi: sun4i-codec: fill ASoC card owner (git-fixes). - ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips (git-fixes). - ASoC: wm8960: Remove bitclk relax condition in wm8960_configure_sysclk (git-fixes). - Bluetooth: Fix incorrect status handling in LE PHY UPDATE event (git-fixes). - Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data (git-fixes). - Bluetooth: L2CAP: Fix handling LE modes by L2CAP_OPTIONS (git-fixes). - Bluetooth: SMP: Fail if remote and local public keys are identical (git-fixes). - Bluetooth: Set CONF_NOT_COMPLETE as l2cap_chan default (git-fixes). - Bluetooth: avoid deadlock between hci_dev->lock and socket lock (git-fixes). - Bluetooth: btqca: Add valid le states quirk (git-fixes). - Bluetooth: btusb: Enable quirk boolean flag for Mediatek Chip (git-fixes). - Bluetooth: check for zapped sk before connecting (git-fixes). - Bluetooth: hci_h5: Set HCI_QUIRK_SIMULTANEOUS_DISCOVERY for btrtl (git-fixes). - Bluetooth: initialize skb_queue_head at l2cap_chan_create() (git-fixes). - Drivers: hv: vmbus: Fix Suspend-to-Idle for Generation-2 VM (git-fixes). - Drivers: hv: vmbus: Increase wait time for VMbus unload (bsc#1185725). - Drivers: hv: vmbus: Initialize unload_event statically (bsc#1185725). - Drivers: hv: vmbus: Use after free in __vmbus_open() (git-fixes). - EDAC/amd64: Check for memory before fully initializing an instance (bsc#1183815). - EDAC/amd64: Get rid of the ECC disabled long message (bsc#1183815). - EDAC/amd64: Use cached data when checking for ECC (bsc#1183815). - Goodix Fingerprint device is not a modem (git-fixes). - HID: alps: fix error return code in alps_input_configured() (git-fixes). - HID: google: add don USB id (git-fixes). - HID: i2c-hid: Add I2C_HID_QUIRK_NO_IRQ_AFTER_RESET for ITE8568 EC on Voyo Winpad A15 (git-fixes). - HID: mf: add support for 0079:1846 Mayflash/Dragonrise USB Gamecube Adapter (git-fixes). - HID: plantronics: Workaround for double volume key presses (git-fixes). - HID: wacom: Assign boolean values to a bool variable (git-fixes). - HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices (git-fixes). - HSI: Fix PM usage counter unbalance in ssi_hw_init (git-fixes). - IB/hfi1: Fix probe time panic when AIP is enabled with a buggy BIOS (jsc#SLE-13208). - IB/hfi1: Rework AIP and VNIC dummy netdev usage (jsc#SLE-13208). - Input: applespi - do not wait for responses to commands indefinitely (git-fixes). - Input: elantech - fix protocol errors for some trackpoints in SMBus mode (git-fixes). - Input: elants_i2c - do not bind to i2c-hid compatible ACPI instantiated devices (git-fixes). - Input: i8042 - fix Pegatron C15B ID entry (git-fixes). - Input: nspire-keypad - enable interrupts only when opened (git-fixes). - Input: s6sy761 - fix coordinate read bit shift (git-fixes). - Input: silead - add workaround for x86 BIOS-es which bring the chip up in a stuck state (git-fixes). - KEYS: trusted: Fix TPM reservation for seal/unseal (git-fixes). - KEYS: trusted: Fix memory leak on object td (git-fixes). - KVM x86: Extend AMD specific guest behavior to Hygon virtual CPUs (bsc#1183447). - KVM: PPC: Book3S HV P9: Restore host CTRL SPR after guest exit (bsc#1156395). - KVM: PPC: Make the VMX instruction emulation routines static (bsc#1156395). - KVM: SVM: Clear the CR4 register on reset (bsc#1183252). - KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (bsc#1152489). - KVM: nVMX: Properly handle userspace interrupt window request (bsc#1183427). - KVM: s390: fix guarded storage control register handling (bsc#1133021). - KVM: x86: Add helpers to perform CPUID-based guest vendor check (bsc#1183445). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183287). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183323). - KVM: x86: Expose XSAVEERPTR to the guest (jsc#SLE-13573). - KVM: x86: Return -E2BIG when KVM_GET_SUPPORTED_CPUID hits max entries (bsc#1183428). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183288). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183324). - KVM: x86: do not reset microcode version on INIT or RESET (bsc#1183412). - KVM: x86: list MSR_IA32_UCODE_REV as an emulated MSR (bsc#1183369). - NFC: nci: fix memory leak in nci_allocate_device (git-fixes). - PCI/AER: Add RCEC AER error injection support (bsc#1174426). - PCI/AER: Add pcie_walk_rcec() to RCEC AER handling (bsc#1174426). - PCI/AER: Clear AER status from Root Port when resetting Downstream Port (bsc#1174426). - PCI/AER: Specify the type of Port that was reset (bsc#1174426). - PCI/AER: Use "aer" variable for capability offset (bsc#1174426). - PCI/AER: Write AER Capability only when we control it (bsc#1174426). - PCI/ERR: Add pci_walk_bridge() to pcie_do_recovery() (bsc#1174426). - PCI/ERR: Add pcie_link_rcec() to associate RCiEPs (bsc#1174426). - PCI/ERR: Avoid negated conditional for clarity (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (jsc#SLE-13736 jsc#SLE-14845). - PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() (bsc#1174426). - PCI/ERR: Clear AER status only when we control AER (bsc#1174426). - PCI/ERR: Clear PCIe Device Status errors only if OS owns AER (bsc#1174426). - PCI/ERR: Clear status of the reporting device (bsc#1174426). - PCI/ERR: Recover from RCEC AER errors (bsc#1174426). - PCI/ERR: Recover from RCiEP AER errors (bsc#1174426). - PCI/ERR: Rename reset_link() to reset_subordinates() (bsc#1174426). - PCI/ERR: Retain status from error notification (bsc#1174426). - PCI/ERR: Simplify by computing pci_pcie_type() once (bsc#1174426). - PCI/ERR: Simplify by using pci_upstream_bridge() (bsc#1174426). - PCI/ERR: Use "bridge" for clarity in pcie_do_recovery() (bsc#1174426). - PCI/PME: Add pcie_walk_rcec() to RCEC PME handling (bsc#1174426). - PCI/RCEC: Fix RCiEP device to RCEC association (git-fixes). - PCI/RCEC: Fix RCiEP device to RCEC association (jsc#SLE-13736 jsc#SLE-14845 git-fixes). - PCI/portdrv: Report reset for frozen channel (bsc#1174426). - PCI: Add a REBAR size quirk for Sapphire RX 5600 XT Pulse (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 9215 SATA controller (git-fixes). - PCI: Allow VPD access for QLogic ISP2722 (git-fixes). - PCI: Fix pci_register_io_range() memory leak (git-fixes). - PCI: PM: Do not read power state in pci_enable_device_flags() (git-fixes). - PCI: Release OF node in pci_scan_device()'s error path (git-fixes). - PCI: designware-ep: Fix the Header Type check (git-fixes). - PCI: dwc: Move iATU detection earlier (git-fixes). - PCI: endpoint: Fix missing destroy_workqueue() (git-fixes). - PCI: iproc: Fix return value of iproc_msi_irq_domain_alloc() (git-fixes). - PCI: keystone: Let AM65 use the pci_ops defined in pcie-designware-host.c (git-fixes). - PCI: mediatek: Add missing of_node_put() to fix reference leak (git-fixes). - PCI: tegra: Fix ASPM-L1SS advertisement disable code (git-fixes). - PCI: tegra: Move "dbi" accesses to post common DWC initialization (git-fixes). - PCI: thunder: Fix compile testing (git-fixes). - PCI: xgene-msi: Fix race in installing chained irq handler (git-fixes). - PM / devfreq: Use more accurate returned new_freq as resume_freq (git-fixes). - PM: EM: postpone creating the debugfs dir till fs_initcall (git-fixes). - PM: runtime: Add documentation for pm_runtime_resume_and_get() (git-fixes). - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter (bsc#1183366). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix race getting/putting suppliers at probe (git-fixes). - Platform: OLPC: Fix probe error handling (git-fixes). - RAS/CEC: Correct ce_add_elem()'s returned values (bsc#1152489). - RDMA/addr: create addr_wq with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/cm: Fix IRQ restore in ib_send_cm_sidr_rep (jsc#SLE-15176). - RDMA/core: create ib_cm with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/hns: Delete redundant abnormal interrupt status (git-fixes). - RDMA/hns: Delete redundant condition judgment related to eq (git-fixes). - RDMA/mlx5: Fix drop packet rule in egress table (jsc#SLE-15175). - RDMA/qedr: Fix error return code in qedr_iw_connect() (jsc#SLE-8215). - RDMA/rtrs-clt: Close rtrs client conn before destroying rtrs clt session files (jsc#SLE-15176). - RDMA/rtrs-clt: destroy sysfs after removing session from active list (jsc#SLE-15176). - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srpt: Fix error return code in srpt_cm_req_recv() (git-fixes). - Re-enable yenta socket driver for x86_64 (bsc#1186349) - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet (git-fixes). - USB: Add reset-resume quirk for WD19's Realtek Hub (git-fixes). - USB: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984). - USB: CDC-ACM: fix poison/unpoison imbalance (git-fixes). - USB: cdc-acm: downgrade message to debug (git-fixes). - USB: cdc-acm: fix TIOCGSERIAL implementation (git-fixes). - USB: cdc-acm: fix double free on probe failure (git-fixes). - USB: cdc-acm: fix unprivileged TIOCCSERIAL (git-fixes). - USB: cdc-acm: fix use-after-free after probe failure (git-fixes). - USB: cdc-acm: untangle a circular dependency between callback and softint (git-fixes). - USB: gadget: u_ether: Fix a configfs return code (git-fixes). - USB: gadget: udc: fix wrong pointer passed to IS_ERR() and PTR_ERR() (git-fixes). - USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem (git-fixes). - USB: replace hardcode maximum usb string length by definition (git-fixes). - USB: serial: ark3116: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ch341: add new Product ID (git-fixes). - USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter (git-fixes). - USB: serial: cp210x: add some more GE USB IDs (git-fixes). - USB: serial: f81232: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: f81534: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: fix return value for unsupported ioctls (git-fixes). - USB: serial: io_edgeport: fix memory leak in edge_startup (git-fixes). - USB: serial: mos7720: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: opticon: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: pl2303: add support for PL2303HXN (bsc#1186320). - USB: serial: pl2303: fix line-speed handling on newer chips (bsc#1186320). - USB: serial: quatech2: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ssu100: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ti_usb_3410_5052: fix TIOCSSERIAL permission check (git-fixes). - USB: serial: usb_wwan: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions (git-fixes). - USB: serial: usb_wwan: fix unprivileged TIOCCSERIAL (git-fixes). - USB: usblp: fix a hang in poll() if disconnected (git-fixes). - Update bug reference for USB-audio fixes (bsc#1182552 bsc#1183598) - amd/amdgpu: Disable VCN DPG mode for Picasso (git-fixes). - amdgpu: avoid incorrect %hu format string (git-fixes). - apparmor: Fix aa_label refcnt leak in policy_update (git-fixes). - apparmor: check/put label on apparmor_sk_clone_security() (git-fixes). - appletalk: Fix skb allocation size in loopback case (git-fixes). - arm64: make STACKPROTECTOR_PER_TASK configurable (bsc#1181862). - ata: ahci: Disable SXS for Hisilicon Kunpeng920 (git-fixes). - ata: libahci_platform: fix IRQ check (git-fixes). - ath10k: Fix a use after free in ath10k_htc_send_bundle (git-fixes). - ath10k: Fix ath10k_wmi_tlv_op_pull_peer_stats_info() unlock without lock (git-fixes). - ath10k: fix wmi mgmt tx queue full due to race condition (git-fixes). - ath10k: hold RCU lock when calling ieee80211_find_sta_by_ifaddr() (git-fixes). - ath9k: Fix error check in ath9k_hw_read_revisions() for PCI devices (git-fixes). - ath9k: fix transmitting to stations in dynamic SMPS mode (git-fixes). - atl1c: fix error return code in atl1c_probe() (git-fixes). - atl1e: fix error return code in atl1e_probe() (git-fixes). - backlight: journada720: Fix Wmisleading-indentation warning (git-fixes). - batman-adv: initialize "struct batadv_tvlv_tt_vlan_data"->reserved field (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - blk-iocost: ioc_pd_free() shouldn't assume irq disabled (git-fixes). - blk-mq: plug request for shared sbitmap (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blk-mq: set default elevator as deadline in case of hctx shared tagset (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blkcg: fix memleak for iolatency (git-fixes). - block, bfq: set next_rq to waker_bfqq->next_rq in waker injection (bsc#1168838). - block: fix get_max_io_size() (git-fixes). - block: recalculate segment count for multi-segment discards correctly (bsc#1184724). - block: rsxx: fix error return code of rsxx_pci_probe() (git-fixes). - block: rsxx: select CONFIG_CRC32 (git-fixes). - bluetooth: eliminate the potential race condition when removing the HCI controller (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: fix ternary sign extension bug in bnxt_show_temp() (git-fixes). - bnxt_en: reliably allocate IRQ table on reset to avoid crash (jsc#SLE-8371 bsc#1153274). - bnxt_en: reverse order of TX disable and carrier off (git-fixes). - bpf, sockmap: Fix sk->prot unhash op reset (bsc#1155518). - bpf,x64: Pad NOPs to make images converge more easily (bsc#1178163). - bpf: Add sanity check for upper ptr_limit (bsc#1183686 bsc#1183775). - bpf: Avoid warning when re-casting __bpf_call_base into __bpf_call_base_args (bsc#1155518). - bpf: Declare __bpf_free_used_maps() unconditionally (bsc#1155518). - bpf: Do not do bpf_cgroup_storage_set() for kuprobe/tp programs (bsc#1155518). - bpf: Enforce that struct_ops programs be GPL-only (bsc#1177028). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1184170). - bpf: Fix an unitialized value in bpf_iter (bsc#1177028). - bpf: Fix leakage of uninitialized bpf stack under speculation (bsc#1155518). - bpf: Fix masking negation logic upon negative dst register (bsc#1155518). - bpf: Fix propagation of 32 bit unsigned bounds from 64 bit bounds (bsc#1177028). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1155518). - bpf: Refcount task stack in bpf_get_task_stack (bsc#1177028). - bpf: Remove MTU check in __bpf_skb_max_len (bsc#1155518). - bpf: Simplify alu_limit masking for pointer arithmetic (bsc#1183686 bsc#1183775). - bpf: link: Refuse non-O_RDWR flags in BPF_OBJ_GET (bsc#1177028). - bpf_lru_list: Read double-checked variable once without lock (bsc#1155518). - brcmfmac: Add DMI nvram filename quirk for Predia Basic tablet (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Voyo winpad A15 tablet (git-fixes). - brcmfmac: clear EAP/association status bits on linkdown events (git-fixes). - bsg: free the request before return error code (git-fixes). - btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root (bsc#1184217). - btrfs: always pin deleted leaves when there are active tree mod log users (bsc#1184224). - btrfs: fix exhaustion of the system chunk array due to concurrent allocations (bsc#1183386). - btrfs: fix extent buffer leak on failure to copy root (bsc#1184218). - btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race when cloning extent buffer during rewind of an old root (bsc#1184193). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix stale data exposure after cloning a hole with NO_HOLES enabled (bsc#1184220). - btrfs: fix subvolume/snapshot deletion not triggered on mount (bsc#1184219). - btrfs: track qgroup released data in own variable in insert_prealloc_file_extent (bsc#1185549). - bus: fsl-mc: add the dpdbg device type (bsc#1185670). - bus: fsl-mc: list more commands as accepted through the ioctl (bsc#1185670). - bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD (git-fixes). - bus: qcom: Put child node before return (git-fixes). - bus: ti-sysc: Fix warning on unbind if reset is not deasserted (git-fixes). - can: c_can: move runtime PM enable/disable to c_can_platform (git-fixes). - can: c_can_pci: c_can_pci_remove(): fix use-after-free (git-fixes). - can: flexcan: assert FRZ bit in flexcan_chip_freeze() (git-fixes). - can: flexcan: enable RX FIFO after FRZ/HALT valid (git-fixes). - can: flexcan: flexcan_chip_freeze(): fix chip freeze for missing bitrate (git-fixes). - can: flexcan: invoke flexcan_chip_freeze() to enter freeze mode (git-fixes). - can: m_can: m_can_do_rx_poll(): fix extraneous msg loss warning (git-fixes). - can: peak_usb: Revert "can: peak_usb: add forgotten supported devices" (git-fixes). - can: peak_usb: add forgotten supported devices (git-fixes). - can: skb: can_skb_set_owner(): fix ref counting if socket was closed before setting skb ownership (git-fixes). - cdc-acm: fix BREAK rx code path adding necessary calls (git-fixes). - cdc-wdm: untangle a circular dependency between callback and softint (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - cfg80211: remove WARN_ON() in cfg80211_sme_connect (git-fixes). - cfg80211: scan: drop entry from hidden_list on overflow (git-fixes). - ch_ktls: Fix kernel panic (jsc#SLE-15131). - ch_ktls: do not send snd_una update to TCB in middle (jsc#SLE-15131). - ch_ktls: fix device connection close (jsc#SLE-15131). - ch_ktls: fix enum-conversion warning (jsc#SLE-15129). - ch_ktls: tcb close causes tls connection failure (jsc#SLE-15131). - cifs: New optype for session operations (bsc#1181507). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: check pointer before freeing (bsc#1183534). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs_debug: use %pd instead of messing with ->d_name (bsc#1181507). - clk: exynos7: Mark aclk_fsys1_200 as critical (git-fixes). - clk: fix invalid usage of list cursor in register (git-fixes). - clk: fix invalid usage of list cursor in unregister (git-fixes). - clk: mvebu: armada-37xx-periph: Fix switching CPU freq from 250 Mhz to 1 GHz (git-fixes). - clk: mvebu: armada-37xx-periph: Fix workaround for switching from L1 to L0 (git-fixes). - clk: mvebu: armada-37xx-periph: remove .set_parent method for CPU PM clock (git-fixes). - clk: qcom: a53-pll: Add missing MODULE_DEVICE_TABLE (git-fixes). - clk: socfpga: arria10: Fix memory leak of socfpga_clk on error return (git-fixes). - clk: socfpga: fix iomem pointer cast on 64-bit (git-fixes). - clk: uniphier: Fix potential infinite loop (git-fixes). - clk: zynqmp: move zynqmp_pll_set_mode out of round_rate callback (git-fixes). - completion: Drop init_completion define (git-fixes). - configfs: fix a use-after-free in __configfs_open_file (git-fixes). - coresight: etm4x: Fix issues on trcseqevr access (git-fixes). - coresight: etm4x: Fix save and restore of TRCVMIDCCTLR1 register (git-fixes). - coresight: remove broken __exit annotations (git-fixes). - coresight: tmc-etr: Fix barrier packet insertion for perf buffer (git-fixes). - cpufreq: Kconfig: fix documentation links (git-fixes). - cpufreq: armada-37xx: Fix determining base CPU frequency (git-fixes). - cpufreq: armada-37xx: Fix driver cleanup when registration failed (git-fixes). - cpufreq: armada-37xx: Fix setting TBG parent for load levels (git-fixes). - cpufreq: armada-37xx: Fix the AVS value for load L1 (git-fixes). - cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758). - cpuidle/pseries: Fixup CEDE0 latency only for POWER10 onwards (bsc#1185550 ltc#192610). - crypto: api - check for ERR pointers in crypto_destroy_tfm() (git-fixes). - crypto: arm/curve25519 - Move '.fpu' after '.arch' (git-fixes). - crypto: chelsio - Read rxchannel-id from firmware (git-fixes). - crypto: mips/poly1305 - enable for all MIPS processors (git-fixes). - crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init (git-fixes). - crypto: qat - Fix a double free in adf_create_ring (git-fixes). - crypto: qat - do not release uninitialized resources (git-fixes). - crypto: qat - fix error path in adf_isr_resource_alloc() (git-fixes). - crypto: qat - fix unmap invalid dma address (git-fixes). - crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS (git-fixes). - crypto: stm32/cryp - Fix PM reference leak on stm32-cryp.c (git-fixes). - crypto: stm32/hash - Fix PM reference leak on stm32-hash.c (git-fixes). - crypto: tcrypt - avoid signed overflow in byte count (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4: Fix unintentional sign extension issues (git-fixes). - cxgb4: avoid collecting SGE_QBASE regs during traffic (git-fixes). - dm era: Fix bitset memory leaks (git-fixes). - dm era: Recover committed writeset after crash (git-fixes). - dm era: Reinitialize bitset cache before digesting a new writeset (git-fixes). - dm era: Update in-core bitset after committing the metadata (git-fixes). - dm era: Use correct value size in equality function of writeset tree (git-fixes). - dm era: Verify the data block size hasn't changed (git-fixes). - dm era: only resize metadata in preresume (git-fixes). - dm integrity: fix error reporting in bitmap mode after creation (git-fixes). - dm ioctl: fix error return code in target_message (git-fixes). - dm mpath: fix racey management of PG initialization (git-fixes). - dm mpath: switch paths in dm_blk_ioctl() code path (bsc#1167574, bsc#1175995, bsc#1184485). - dm raid: fix discard limits for raid1 (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (bsc#1185581). - dm writecache: fix the maximum number of arguments (git-fixes). - dm writecache: handle DAX to partitions on persistent memory correctly (git-fixes). - dm writecache: remove BUG() and fail gracefully instead (git-fixes). - dm zoned: select CONFIG_CRC32 (git-fixes). - dm: avoid filesystem lookup in dm_get_dev_t() (git-fixes). - dm: eliminate potential source of excessive kernel log noise (git-fixes). - dm: fix bug with RCU locking in dm_blk_report_zones (git-fixes). - dm: remove invalid sparse __acquires and __releases annotations (git-fixes). - dmaengine: Fix a double free in dma_async_device_register (git-fixes). - dmaengine: dw-edma: Fix crash on loading/unloading driver (git-fixes). - dmaengine: dw: Make it dependent to HAS_IOMEM (git-fixes). - dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback (git-fixes). - dmaengine: idxd: Fix potential null dereference on pointer status (git-fixes). - dmaengine: idxd: cleanup pci interrupt vector allocation management (git-fixes). - dmaengine: idxd: clear MSIX permission entry on shutdown (git-fixes). - dmaengine: idxd: fix cdev setup and free device lifetime issues (git-fixes). - dmaengine: idxd: fix delta_rec and crc size field for completion record (git-fixes). - dmaengine: idxd: fix dma device lifetime (git-fixes). - dmaengine: idxd: fix opcap sysfs attribute output (git-fixes). - dmaengine: idxd: fix wq cleanup of WQCFG registers (git-fixes). - dmaengine: idxd: fix wq size store permission state (git-fixes). - dmaengine: idxd: removal of pcim managed mmio mapping (git-fixes). - docs: kernel-parameters: Add gpio_mockup_named_lines (git-fixes). - docs: kernel-parameters: Move gpio-mockup for alphabetic order (git-fixes). - dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom (git-fixes). - dpaa_eth: Use random MAC address when none is given (bsc#1184811). - dpaa_eth: copy timestamp fields to new skb in A-050385 workaround (git-fixes). - dpaa_eth: fix the RX headroom size alignment (git-fixes). - dpaa_eth: update the buffer layout for non-A050385 erratum scenarios (git-fixes). - drivers: hv: Fix whitespace errors (bsc#1185725). - drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drm/amd/display/dc/dce/dce_aux: Remove duplicate line causing 'field overwritten' issue (git-fixes). - drm/amd/display: Check for DSC support instead of ASIC revision (git-fixes). - drm/amd/display: Correct algorithm for reversed gamma (git-fixes). - drm/amd/display: DCHUB underflow counter increasing in some scenarios (git-fixes). - drm/amd/display: Do not optimize bandwidth before disabling planes (git-fixes). - drm/amd/display: Fix UBSAN warning for not a valid value for type '_Bool' (git-fixes). - drm/amd/display: Fix UBSAN: shift-out-of-bounds warning (git-fixes). - drm/amd/display: Fix debugfs link_settings entry (git-fixes). - drm/amd/display: Fix nested FPU context in dcn21_validate_bandwidth() (git-fixes). - drm/amd/display: Fix off by one in hdmi_14_process_transaction() (git-fixes). - drm/amd/display: Fix two cursor duplication when using overlay (git-fixes). - drm/amd/display: Force vsync flip when reconfiguring MPCC (git-fixes). - drm/amd/display: Guard against NULL pointer deref when get_i2c_info fails (git-fixes). - drm/amd/display: Initialize attribute for hdcp_srm sysfs file (git-fixes). - drm/amd/display: Reject non-zero src_y and src_x for video planes (git-fixes). - drm/amd/display: Revert dram_clock_change_latency for DCN2.1 (git-fixes). - drm/amd/display: Try YCbCr420 color when YCbCr444 fails (git-fixes). - drm/amd/display: add handling for hdcp2 rx id list validation (git-fixes). - drm/amd/display: changing sr exit latency (git-fixes). - drm/amd/display: fix dml prefetch validation (git-fixes). - drm/amd/display: fixed divide by zero kernel crash during dsc enablement (git-fixes). - drm/amd/display: turn DPMS off on connector unplug (git-fixes). - drm/amd/pm: fix workload mismatch on vega10 (git-fixes). - drm/amd/powerplay: fix spelling mistake "smu_state_memroy_block" -> (bsc#1152489) Backporting notes: * rename amd/pm to amd/powerplay * context changes - drm/amdgpu : Fix asic reset regression issue introduce by 8f211fe8ac7c4f (git-fixes). - drm/amdgpu/display/dm: add missing parameter documentation (git-fixes). - drm/amdgpu/display: buffer INTERRUPT_LOW_IRQ_CONTEXT interrupt work (git-fixes). - drm/amdgpu/display: remove redundant continue statement (git-fixes). - drm/amdgpu/display: restore AUX_DPHY_TX_CONTROL for DCN2.x (git-fixes). - drm/amdgpu/display: use GFP_ATOMIC in dcn21_validate_bandwidth_fp() (git-fixes). - drm/amdgpu/swsmu: add interrupt work function (git-fixes). - drm/amdgpu/swsmu: add interrupt work handler for smu11 parts (git-fixes). - drm/amdgpu: Add additional Sienna Cichlid PCI ID (git-fixes). - drm/amdgpu: Add check to prevent IH overflow (git-fixes). - drm/amdgpu: Add mem sync flag for IB allocated by SA (git-fixes). - drm/amdgpu: Fix GPU TLB update error when PAGE_SIZE > AMDGPU_PAGE_SIZE (git-fixes). - drm/amdgpu: Fix some unload driver issues (git-fixes). - drm/amdgpu: Init GFX10_ADDR_CONFIG for VCN v3 in DPG mode (git-fixes). - drm/amdgpu: check alignment on CPU page for bo map (git-fixes). - drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang (git-fixes). - drm/amdgpu: fb BO should be ttm_bo_type_device (git-fixes). - drm/amdgpu: fix NULL pointer dereference (git-fixes). - drm/amdgpu: fix concurrent VM flushes on Vega/Navi v2 (git-fixes). - drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings() (git-fixes). - drm/amdgpu: fix parameter error of RREG32_PCIE() in amdgpu_regs_pcie (git-fixes). - drm/amdgpu: mask the xgmi number of hops reported from psp to kfd (git-fixes). - drm/amdgpu: remove unused variable from struct amdgpu_bo (git-fixes). - drm/amdgpu: update gc golden setting for Navi12 (git-fixes). - drm/amdgpu: update sdma golden setting for Navi12 (git-fixes). - drm/amdkfd: Fix UBSAN shift-out-of-bounds warning (git-fixes). - drm/amdkfd: Fix cat debugfs hang_hws file causes system crash bug (git-fixes). - drm/amdkfd: Put ACPI table after using it (bsc#1152489) Backporting notes: * context changes - drm/amdkfd: dqm fence memory corruption (git-fixes). - drm/amdkfd: fix build error with AMD_IOMMU_V2=m (git-fixes). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix invalid usage of AST_MAX_HWC_WIDTH in cursor atomic_check (git-fixes). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/compat: Clear bounce structures (git-fixes). - drm/dp_mst: Revise broadcast msg lct & lcr (git-fixes). - drm/dp_mst: Set CLEAR_PAYLOAD_ID_TABLE as broadcast (git-fixes). - drm/hisilicon: Fix use-after-free (git-fixes). - drm/i915/display: fix compiler warning about array overrun (git-fixes). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (git-fixes). - drm/i915/gt: Disable HiZ Raw Stall Optimization on broken gen7 (git-fixes). - drm/i915/gvt: Fix error code in intel_gvt_init_device() (git-fixes). - drm/i915/gvt: Set SNOOP for PAT3 on BXT/APL to workaround GPU BB hang (git-fixes). - drm/i915/overlay: Fix active retire callback alignment (git-fixes). - drm/i915/selftests: Fix some error codes (git-fixes). - drm/i915: Avoid div-by-zero on gen2 (git-fixes). - drm/i915: Fix ICL MG PHY vswing handling (git-fixes). - drm/i915: Fix crash in auto_retire (git-fixes). - drm/i915: Fix invalid access to ACPI _DSM objects (bsc#1184074). - drm/i915: Hold onto an explicit ref to i915_vma_work.pinned (git-fixes). - drm/i915: Read C0DRB3/C1DRB3 as 16 bits again (git-fixes). - drm/i915: Wedge the GPU if command parser setup fails (git-fixes). - drm/imx: imx-ldb: fix out of bounds array access warning (git-fixes). - drm/ingenic: Fix non-OSD mode (git-fixes). - drm/ingenic: Register devm action to cleanup encoders (git-fixes). - drm/komeda: Fix bit check to import to value of proper type (git-fixes). - drm/lima: fix reference leak in lima_pm_busy (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (git-fixes). - drm/mediatek: Fix aal size config (bsc#1152489) Backporting notes: * replaced mtk_ddp_write() with writel() - drm/msm/a5xx: Remove overwriting A5XX_PC_DBG_ECO_CNTL register (git-fixes). - drm/msm/adreno: a5xx_power: Do not apply A540 lm_setup to other GPUs (git-fixes). - drm/msm/gem: Add obj->lock wrappers (bsc#1152489) Backporting notes: * taken for 9b73bde39cf2 ("drm/msm: Fix use-after-free in msm_gem with carveout") * context changes - drm/msm/mdp5: Configure PP_SYNC_HEIGHT to double the vtotal (git-fixes). - drm/msm/mdp5: Do not multiply vclk line count by 100 (git-fixes). - drm/msm: Fix WARN_ON() splat in _free_object() (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix a5xx/a6xx timestamps (git-fixes). - drm/msm: Fix races managing the OOB state for timestamp vs (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix suspend/resume on i.MX5 (git-fixes). - drm/msm: Fix use-after-free in msm_gem with carveout (bsc#1152489) Backporting notes: * context changes - drm/msm: Ratelimit invalid-fence message (git-fixes). - drm/msm: Set drvdata to NULL when msm_drm_init() fails (git-fixes). - drm/msm: fix shutdown hook in case GPU components failed to bind (git-fixes). - drm/nouveau/kms/nv50-: Get rid of bogus nouveau_conn_mode_valid() (git-fixes). - drm/omap: fix misleading indentation in pixinc() (git-fixes). - drm/panfrost: Clear MMU irqs before handling the fault (git-fixes). - drm/panfrost: Do not corrupt the queue mutex on open/close (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Do not try to map pages that are already mapped (git-fixes). - drm/panfrost: Fix job timeout handling (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Remove unused variables in panfrost_job_close() (bsc#1152472) - drm/probe-helper: Check epoch counter in output_poll_execute() (git-fixes). - drm/qxl: do not run release if qxl failed to init (git-fixes). - drm/radeon/dpm: Disable sclk switching on Oland when two 4K 60Hz monitors are connected (git-fixes). - drm/radeon: Avoid power table parsing memory leaks (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (git-fixes). - drm/radeon: Fix off-by-one power_state index heap overwrite (git-fixes). - drm/radeon: fix AGP dependency (git-fixes). - drm/radeon: fix copy of uninitialized variable back to userspace (git-fixes). - drm/shmem-helper: Check for purged buffers in fault handler (git-fixes). - drm/shmem-helper: Do not remove the offset in vm_area_struct pgoff (git-fixes). - drm/shmem-helpers: vunmap: Do not put pages for dma-buf (git-fixes). - drm/sun4i: tcon: fix inverted DCLK polarity (bsc#1152489) Backporting notes: * context changes - drm/tegra: Fix reference leak when pm_runtime_get_sync() fails (git-fixes). - drm/tegra: dc: Do not set PLL clock to 0Hz (git-fixes). - drm/tegra: dc: Restore coupling of display controllers (git-fixes). - drm/tegra: sor: Grab runtime PM reference across reset (git-fixes). - drm/tilcdc: send vblank event when disabling crtc (git-fixes). - drm/vc4: crtc: Reduce PV fifo threshold on hvs4 (git-fixes). - drm/vc4: hdmi: Restore cec physical address on reconnect (bsc#1152472) Backporting notes: * context changes * change vc4_hdmi to vc4->hdmi * removed references to encoder->hdmi_monitor - drm/vkms: fix misuse of WARN_ON (git-fixes). - drm: Added orientation quirk for OneGX1 Pro (git-fixes). - drm: meson_drv add shutdown function (git-fixes). - drm: rcar-du: Fix PM reference leak in rcar_cmm_enable() (git-fixes). - drm: rcar-du: Fix crash when using LVDS1 clock for CRTC (bsc#1152489) Backporting notes: * context changes - drm: rcar-du: Fix leak of CMM platform device reference (git-fixes). - drm: xlnx: zynqmp: fix a memset in zynqmp_dp_train() (git-fixes). - e1000e: Fix duplicate include guard (git-fixes). - e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (git-fixes). - e1000e: add rtnl_lock() to e1000_reset_task (git-fixes). - efi: use 32-bit alignment for efi_guid_t literals (git-fixes). - enetc: Fix reporting of h/w packet counters (git-fixes). - enetc: Let the hardware auto-advance the taprio base-time of 0 (git-fixes). - enetc: Workaround for MDIO register access issue (git-fixes). - epoll: check for events when removing a timed out thread from the wait queue (git-fixes). - ethernet/netronome/nfp: Fix a use after free in nfp_bpf_ctrl_msg_rx (git-fixes). - ethernet: alx: fix order of calls on resume (git-fixes). - ethernet:enic: Fix a use after free bug in enic_hard_start_xmit (git-fixes). - ethtool: fix incorrect datatype in set_eee ops (bsc#1176447). - ethtool: fix missing NLM_F_MULTI flag when dumping (bsc#1176447). - ethtool: pause: make sure we init driver stats (jsc#SLE-15075). - exec: Move would_dump into flush_old_exec (git-fixes). - ext4: do not try to set xattr into ea_inode if value is empty (bsc#1184730). - ext4: find old entry again if failed to rename whiteout (bsc#1184742). - ext4: fix potential error in ext4_do_update_inode (bsc#1184731). - ext4: fix potential htree index checksum corruption (bsc#1184728). - extcon: Add stubs for extcon_register_notifier_all() functions (git-fixes). - extcon: Fix error handling in extcon_dev_register (git-fixes). - extcon: arizona: Fix some issues when HPDET IRQ fires after the jack has been unplugged (git-fixes). - extcon: arizona: Fix various races on driver unbind (git-fixes). - fbdev: zero-fill colormap in fbcmap.c (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Fix a use after bug in efi_mem_reserve_persistent (git-fixes). - firmware: arm_scpi: Prevent the ternary sign expansion bug (git-fixes). - firmware: qcom-scm: Fix QCOM_SCM configuration (git-fixes). - firmware: qcom_scm: Fix kernel-doc function names to match (git-fixes). - firmware: qcom_scm: Make __qcom_scm_is_call_available() return bool (git-fixes). - firmware: qcom_scm: Reduce locking section for __get_convention() (git-fixes). - firmware: qcom_scm: Workaround lack of "is available" call on SC7180 (git-fixes). - flow_dissector: fix byteorder of dissected ICMP ID (bsc#1154353). - fnic: use scsi_host_busy_iter() to traverse commands (bsc#1179851). - fotg210-udc: Complete OUT requests on short packets (git-fixes). - fotg210-udc: Do not DMA more than the buffer can take (git-fixes). - fotg210-udc: Fix DMA on EP0 for length > max packet size (git-fixes). - fotg210-udc: Fix EP0 IN requests bigger than two packets (git-fixes). - fotg210-udc: Mask GRP2 interrupts we do not handle (git-fixes). - fotg210-udc: Remove a dubious condition leading to fotg210_done (git-fixes). - fs/epoll: restore waking from ep_done_scan() (bsc#1183868). - fs/jfs: fix potential integer overflow on shift of a int (bsc#1184741). - fs: direct-io: fix missing sdio->boundary (bsc#1184736). - fsl/fman: check dereferencing null pointer (git-fixes). - fsl/fman: fix dereference null return value (git-fixes). - fsl/fman: fix eth hash table allocation (git-fixes). - fsl/fman: fix unreachable code (git-fixes). - fsl/fman: reuse set_mac_address() in dtsec init() (bsc#1184811). - fsl/fman: tolerate missing MAC address in device tree (bsc#1184811). - fsl/fman: use 32-bit unsigned integer (git-fixes). - ftrace/x86: Tell objtool to ignore nondeterministic ftrace stack layout (bsc#1177028). - ftrace: Fix modify_ftrace_direct (bsc#1177028). - ftrace: Handle commands when closing set_ftrace_filter file (git-fixes). - fuse: fix bad inode (bsc#1184211). - fuse: fix bad inode (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix write deadlock (bsc#1185573). - fuse: verify write return (git-fixes). - futex: Change utime parameter to be 'const ... *' (git-fixes). - futex: Do not apply time namespace adjustment on FUTEX_LOCK_PI (bsc#1164648). - futex: Get rid of the val2 conditional dance (git-fixes). - futex: Make syscall entry points less convoluted (git-fixes). - gcc-plugins: drop support for GCC &lt;= 4.7 (bcs#1181862). - gcc-plugins: make it possible to disable CONFIG_GCC_PLUGINS again (bcs#1181862). - gcc-plugins: simplify GCC plugin-dev capability test (bsc#1181862). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (git-fixes). - genirq/irqdomain: Do not try to free an interrupt that has no (git-fixes) - genirq: Disable interrupts for force threaded handlers (git-fixes) - genirq: Reduce irqdebug cacheline bouncing (bsc#1185703 ltc#192641). - gianfar: Account for Tx PTP timestamp in the skb headroom (git-fixes). - gianfar: Fix TX timestamping with a stacked DSA driver (git-fixes). - gianfar: Handle error code at MAC address change (git-fixes). - gianfar: Replace skb_realloc_headroom with skb_cow_head for PTP (git-fixes). - gpio: omap: Save and restore sysconfig (git-fixes). - gpio: pca953x: Set IRQ type when handle Intel Galileo Gen 2 (git-fixes). - gpio: sysfs: Obey valid_mask (git-fixes). - gpio: xilinx: Correct kernel doc for xgpio_probe() (git-fixes). - gpio: zynq: fix reference leak in zynq_gpio functions (git-fixes). - gpiolib: Do not free if pin ranges are not defined (git-fixes). - gpiolib: acpi: Add missing IRQF_ONESHOT (git-fixes). - gpiolib: acpi: Add quirk to ignore EC wakeups on Dell Venue 10 Pro 5055 (git-fixes). - gpu/xen: Fix a use after free in xen_drm_drv_init (git-fixes). - hrtimer: Update softirq_expires_next correctly after (git-fixes) - hv_netvsc: Reset the RSC count if NVSP_STAT_FAIL in netvsc_receive() (git-fixes). - hwmon: (ina3221) Fix PM usage counter unbalance in ina3221_write_enable (git-fixes). - hwmon: (occ) Fix poll rate limiting (git-fixes). - i2c: Add I2C_AQ_NO_REP_START adapter quirk (git-fixes). - i2c: bail out early when RDWR parameters are wrong (git-fixes). - i2c: cadence: add IRQ check (git-fixes). - i2c: emev2: add IRQ check (git-fixes). - i2c: img-scb: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: jz4780: add IRQ check (git-fixes). - i2c: mlxbf: add IRQ check (git-fixes). - i2c: omap: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: rcar: faster irq code to minimize HW race condition (git-fixes). - i2c: rcar: optimize cacheline to minimize HW race condition (git-fixes). - i2c: sh7760: add IRQ check (git-fixes). - i2c: sh7760: fix IRQ error path (git-fixes). - i2c: sprd: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: tegra: Add missing pm_runtime_put() (bsc#1184386). - i2c: tegra: Check errors for both positive and negative values (bsc#1184386). - i2c: tegra: Clean up and improve comments (bsc#1184386). - i2c: tegra: Clean up printk messages (bsc#1184386). - i2c: tegra: Clean up probe function (bsc#1184386). - i2c: tegra: Clean up variable names (bsc#1184386). - i2c: tegra: Clean up variable types (bsc#1184386). - i2c: tegra: Clean up whitespaces, newlines and indentation (bsc#1184386). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1184386). - i2c: tegra: Factor out error recovery from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out hardware initialization into separate function (bsc#1184386). - i2c: tegra: Factor out packet header setup from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out register polling into separate function (bsc#1184386). - i2c: tegra: Handle potential error of tegra_i2c_flush_fifos() (bsc#1184386). - i2c: tegra: Improve driver module description (bsc#1184386). - i2c: tegra: Improve formatting of variables (bsc#1184386). - i2c: tegra: Initialize div-clk rate unconditionally (bsc#1184386). - i2c: tegra: Make tegra_i2c_flush_fifos() usable in atomic transfer (bsc#1184386). - i2c: tegra: Mask interrupt in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Move out all device-tree parsing into tegra_i2c_parse_dt() (bsc#1184386). - i2c: tegra: Remove "dma" variable from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Remove error message used for devm_request_irq() failure (bsc#1184386). - i2c: tegra: Remove i2c_dev.clk_divisor_non_hs_mode member (bsc#1184386). - i2c: tegra: Remove likely/unlikely from the code (bsc#1184386). - i2c: tegra: Remove outdated barrier() (bsc#1184386). - i2c: tegra: Remove redundant check in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Rename wait/poll functions (bsc#1184386). - i2c: tegra: Reorder location of functions in the code (bsc#1184386). - i2c: tegra: Runtime PM always available on Tegra (bsc#1184386). - i2c: tegra: Use clk-bulk helpers (bsc#1184386). - i2c: tegra: Use devm_platform_get_and_ioremap_resource() (bsc#1184386). - i2c: tegra: Use platform_get_irq() (bsc#1184386). - i2c: tegra: Use reset_control_reset() (bsc#1184386). - i2c: tegra: Use threaded interrupt (bsc#1184386). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1184386). - i40e: Add zero-initialization of AQ command structures (git-fixes). - i40e: Added Asym_Pause to supported link modes (git-fixes). - i40e: Fix PHY type identifiers for 2.5G and 5G adapters (git-fixes). - i40e: Fix add TC filter for IPv6 (git-fixes). - i40e: Fix addition of RX filters after enabling FW LLDP agent (git-fixes). - i40e: Fix display statistics for veb_tc (git-fixes). - i40e: Fix endianness conversions (git-fixes). - i40e: Fix flow for IPv6 next header (extension header) (git-fixes). - i40e: Fix kernel oops when i40e driver removes VF's (git-fixes). - i40e: Fix overwriting flow control settings during driver loading (git-fixes). - i40e: Fix parameters in aq_get_phy_register() (jsc#SLE-8025). - i40e: Fix sparse error: 'vsi->netdev' could be null (jsc#SLE-8025). - i40e: Fix sparse error: uninitialized symbol 'ring' (jsc#SLE-13701). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse warning: missing error code 'err' (git-fixes). - i40e: Fix use-after-free in i40e_client_subtask() (git-fixes). - i40e: fix broken XDP support (git-fixes). - i40e: fix the panic when running bpf in xdpdrv mode (git-fixes). - i40e: fix the restart auto-negotiation after FEC modified (git-fixes). - i915/perf: Start hrtimer only if sampling the OA buffer (git-fixes). - iavf: Fix incorrect adapter get in iavf_resume (git-fixes). - iavf: use generic power management (git-fixes). - ibmvfc: Avoid move login if fast fail is enabled (bsc#1185938 ltc#192043). - ibmvfc: Handle move login failure (bsc#1185938 ltc#192043). - ibmvfc: Reinit target retries (bsc#1185938 ltc#192043). - ibmvnic: add comments for spinlock_t definitions (bsc#1183871 ltc#192139). - ibmvnic: avoid calling napi_disable() twice (bsc#1065729). - ibmvnic: avoid multiple line dereference (bsc#1183871 ltc#192139). - ibmvnic: clean up the remaining debugfs data structures (bsc#1065729). - ibmvnic: correctly use dev_consume/free_skb_irq (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290 git-fixes). - ibmvnic: fix block comments (bsc#1183871 ltc#192139). - ibmvnic: fix braces (bsc#1183871 ltc#192139). - ibmvnic: fix miscellaneous checks (bsc#1183871 ltc#192139). - ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes). - ibmvnic: merge do_change_param_reset into do_reset (bsc#1183871 ltc#192139). - ibmvnic: prefer 'unsigned long' over 'unsigned long int' (bsc#1183871 ltc#192139). - ibmvnic: prefer strscpy over strlcpy (bsc#1183871 ltc#192139). - ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove default label from to_string switch (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#1065729). - ibmvnic: remove duplicate napi_schedule call in open function (bsc#1065729). - ibmvnic: remove unnecessary rmb() inside ibmvnic_poll (bsc#1183871 ltc#192139). - ibmvnic: remove unused spinlock_t stats_lock definition (bsc#1183871 ltc#192139). - ibmvnic: rework to ensure SCRQ entry reads are properly ordered (bsc#1183871 ltc#192139). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Cleanup fltr list in case of allocation issues (git-fixes). - ice: Continue probe on link/PHY errors (jsc#SLE-12878). - ice: Fix for dereference of NULL pointer (git-fixes). - ice: Increase control queue timeout (git-fixes). - ice: Use port number instead of PF ID for WoL (jsc#SLE-12878). - ice: fix memory allocation call (jsc#SLE-12878). - ice: fix memory leak if register_netdev_fails (git-fixes). - ice: fix memory leak in ice_vsi_setup (git-fixes). - ice: fix memory leak of aRFS after resuming from suspend (jsc#SLE-12878). - ice: prevent ice_open and ice_stop during reset (git-fixes). - ice: remove DCBNL_DEVRESET bit from PF state (jsc#SLE-7926). - ics932s401: fix broken handling of errors when word reading fails (git-fixes). - igb: Fix duplicate include guard (git-fixes). - igb: XDP extack message on error (jsc#SLE-13536). - igb: XDP xmit back fix error code (jsc#SLE-13536). - igb: avoid premature Rx buffer reuse (jsc#SLE-13536). - igb: avoid transmit queue timeout in xdp path (jsc#SLE-13536). - igb: check timestamp validity (git-fixes). - igb: skb add metasize for xdp (jsc#SLE-13536). - igb: take VLAN double header into account (jsc#SLE-13536). - igb: use xdp_do_flush (jsc#SLE-13536). - igc: Fix Pause Frame Advertising (git-fixes). - igc: Fix Supported Pause Frame Link Setting (git-fixes). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - iio: adc: ad7949: fix wrong ADC result due to incorrect bit mask (git-fixes). - iio: adis16400: Fix an error code in adis16400_initial_setup() (git-fixes). - iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler (git-fixes). - iio: gyro: mpu3050: Fix reported temperature value (git-fixes). - iio: hid-sensor-humidity: Fix alignment issue of timestamp channel (git-fixes). - iio: hid-sensor-prox: Fix scale not correct issue (git-fixes). - iio: hid-sensor-temperature: Fix issues of timestamp channel (git-fixes). - iio: proximity: pulsedlight: Fix rumtime PM imbalance on error (git-fixes). - iio: tsl2583: Fix division by a zero lux_val (git-fixes). - iio:accel:adis16201: Fix wrong axis assignment that prevents loading (git-fixes). - iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel (git-fixes). - ima: Free IMA measurement buffer after kexec syscall (git-fixes). - include/linux/sched/mm.h: use rcu_dereference in in_vfork() (git-fixes). - intel_th: Consistency and off-by-one fix (git-fixes). - intel_th: pci: Add Alder Lake-M support (git-fixes). - intel_th: pci: Add Rocket Lake CPU support (git-fixes). - interconnect: core: fix error return code of icc_link_destroy() (git-fixes). - iommu/amd: Add support for map/unmap_resource (jsc#ECO-3482). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183277). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183310). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183278). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183312). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183313). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183637). - iommu/vt-d: Add get_domain_info() helper (bsc#1183279). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183280). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183315). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183281). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183316). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183282). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183317). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183283). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183318). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183284). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183319). - iommu/vt-d: Fix status code for Allocate/Free PASID command (bsc#1183320). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183285). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183321). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183286). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183322). - iommu/vt-d: Use device numa domain if RHSA is missing (bsc#1184585). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1183311). - iommu: Switch gather->end to the inclusive end (bsc#1183314). - ionic: linearize tso skb with too many frags (bsc#1167773). - ionic: linearize tso skb with too many frags (bsc#1167773). - iopoll: introduce read_poll_timeout macro (git-fixes). - ipc/mqueue, msg, sem: Avoid relying on a stack reference past its expiry (bsc#1185988). - ipmi/watchdog: Stop watchdog timer when the current action is 'none' (bsc#1184855). - ipw2x00: potential buffer overflow in libipw_wx_set_encodeext() (git-fixes). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1184264). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1185233). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1184264). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1185233). - irqchip: Add support for Layerscape external interrupt lines (bsc#1185233). - isofs: release buffer head before return (bsc#1182613). - iwlwifi: add support for Qu with AX201 device (git-fixes). - iwlwifi: pcie: make cfg vs. trans_cfg more robust (git-fixes). - ixgbe: fail to create xfrm offload of IPsec tunnel mode SA (git-fixes). - ixgbe: fix unbalanced device enable/disable in suspend/resume (jsc#SLE-13706). - jffs2: fix use after free in jffs2_sum_write_data() (bsc#1184740). - kABI: Fix kABI caused by fixes for bsc#1174426 (bsc#1174426). - kABI: cover up change in struct kvm_arch (bsc#1184969). - kABI: powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - kbuild: Fail if gold linker is detected (bcs#1181862). - kbuild: add dummy toolchains to enable all cc-option etc. in Kconfig (bcs#1181862). - kbuild: change *FLAGS_&lt;basetarget>.o to take the path relative to $(obj) (bcs#1181862). - kbuild: dummy-tools, fix inverted tests for gcc (bcs#1181862). - kbuild: dummy-tools, support MPROFILE_KERNEL checks for ppc (bsc#1181862). - kbuild: improve cc-option to clean up all temporary files (bsc#1178330). - kbuild: include scripts/Makefile.* only when relevant CONFIG is enabled (bcs#1181862). - kbuild: simplify GCC_PLUGINS enablement in dummy-tools/gcc (bcs#1181862). - kbuild: stop filtering out $(GCC_PLUGINS_CFLAGS) from cc-option base (bcs#1181862). - kbuild: use -S instead of -E for precise cc-option test in Kconfig (bsc#1178330). - kconfig: introduce m32-flag and m64-flag (bcs#1181862). - kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale. - kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846). - kvm: svm: Update svm_xsaves_supported (jsc#SLE-13573). - kvm: x86: Enumerate support for CLZERO instruction (jsc#SLE-13573). - leds: lp5523: check return value of lp5xx_read and jump to cleanup code (git-fixes). - lib/syscall: fix syscall registers retrieval on 32-bit platforms (git-fixes). - libbpf: Add explicit padding to bpf_xdp_set_link_opts (bsc#1177028). - libbpf: Add explicit padding to btf_dump_emit_type_decl_opts (bsc#1177028). - libbpf: Clear map_info before each bpf_obj_get_info_by_fd (bsc#1155518). - libbpf: Fix BTF dump of pointer-to-array-of-struct (bsc#1155518). - libbpf: Fix INSTALL flag order (bsc#1155518). - libbpf: Fix bail out from 'ringbuf_process_ring()' on error (bsc#1177028). - libbpf: Fix error path in bpf_object__elf_init() (bsc#1177028). - libbpf: Fix signed overflow in ringbuf_process_ring (bsc#1177028). - libbpf: Initialize the bpf_seq_printf parameters array field by field (bsc#1177028). - libbpf: Only create rx and tx XDP rings when necessary (bsc#1155518). - libbpf: Use SOCK_CLOEXEC when opening the netlink socket (bsc#1155518). - libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#1185269). - libnvdimm/namespace: Fix reaping of invalidated block-window-namespace labels (bsc#1185269). - libnvdimm/region: Fix nvdimm_has_flush() to handle ND_REGION_ASYNC (bsc#1184969 git-fixes). - libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr (git-fixes). - liquidio: Fix unintented sign extension of a left shift of a u16 (git-fixes). - locking/mutex: Fix non debug version of mutex_lock_io_nested() (git-fixes). - locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#1185041). - lpfc: Decouple port_template and vport_template (bsc#185032). - mISDN: fix crash in fritzpci (git-fixes). - mac80211: Allow HE operation to be longer than expected (git-fixes). - mac80211: bail out if cipher schemes are invalid (git-fixes). - mac80211: choose first enabled channel for monitor (git-fixes). - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN (git-fixes). - mac80211: clear the beacon's CRC after channel switch (git-fixes). - mac80211: fix TXQ AC confusion (git-fixes). - mac80211: fix double free in ibss_leave (git-fixes). - mac80211: fix rate mask reset (git-fixes). - macvlan: macvlan_count_rx() needs to be aware of preemption (git-fixes). - md-cluster: fix use-after-free issue when removing rdev (bsc#1184082). - md/raid1: properly indicate failure when ending a failed write request (bsc#1185680). - md: do not flush workqueue unconditionally in md_open (bsc#1184081). - md: factor out a mddev_find_locked helper from mddev_find (bsc#1184081). - md: md_open returns -EBUSY when entering racing area (bsc#1184081). - md: split mddev_find (bsc#1184081). - mdio: fix mdio-thunder.c dependency & build error (git-fixes). - media: adv7604: fix possible use-after-free in adv76xx_remove() (git-fixes). - media: cros-ec-cec: do not bail on device_init_wakeup failure (git-fixes). - media: cx23885: add more quirks for reset DMA on some AMD IOMMU (git-fixes). - media: drivers: media: pci: sta2x11: fix Kconfig dependency on GPIOLIB (git-fixes). - media: dvb-usb: fix memory leak in dvb_usb_adapter_init (git-fixes). - media: dvbdev: Fix memory leak in dvb_media_device_free() (git-fixes). - media: em28xx: fix memory leak (git-fixes). - media: gspca/sq905.c: fix uninitialized variable (git-fixes). - media: i2c: adv7511-v4l2: fix possible use-after-free in adv7511_remove() (git-fixes). - media: i2c: adv7842: fix possible use-after-free in adv7842_remove() (git-fixes). - media: i2c: tda1997: Fix possible use-after-free in tda1997x_remove() (git-fixes). - media: imx: capture: Return -EPIPE from __capture_legacy_try_fmt() (git-fixes). - media: ite-cir: check for receive overflow (git-fixes). - media: m88rs6000t: avoid potential out-of-bounds reads on arrays (git-fixes). - media: mantis: remove orphan mantis_core.c (git-fixes). - media: mceusb: sanity check for prescaler value (git-fixes). - media: media/saa7164: fix saa7164_encoder_register() memory leak bugs (git-fixes). - media: omap4iss: return error code when omap4iss_get() failed (git-fixes). - media: platform: sti: Fix runtime PM imbalance in regs_show (git-fixes). - media: platform: sunxi: sun6i-csi: fix error return code of sun6i_video_start_streaming() (git-fixes). - media: rc: compile rc-cec.c into rc-core (git-fixes). - media: saa7134: use sg_dma_len when building pgtable (git-fixes). - media: saa7146: use sg_dma_len when building pgtable (git-fixes). - media: staging/intel-ipu3: Fix memory leak in imu_fmt (git-fixes). - media: staging/intel-ipu3: Fix race condition during set_fmt (git-fixes). - media: staging/intel-ipu3: Fix set_fmt error handling (git-fixes). - media: tc358743: fix possible use-after-free in tc358743_remove() (git-fixes). - media: usbtv: Fix deadlock on suspend (git-fixes). - media: uvcvideo: Allow entities with no pads (git-fixes). - media: v4l2-ctrls.c: fix race condition in hdl->requests list (git-fixes). - media: v4l2-ctrls.c: fix shift-out-of-bounds in std_validate (git-fixes). - media: v4l: vsp1: Fix bru null pointer access (git-fixes). - media: v4l: vsp1: Fix uif null pointer access (git-fixes). - media: vicodec: add missing v4l2_ctrl_request_hdl_put() (git-fixes). - memory: gpmc: fix out of bounds read and dereference on gpmc_cs[] (git-fixes). - memory: mtk-smi: Fix PM usage counter unbalance in mtk_smi ops (bsc#1183325). - memory: pl353: fix mask of ECC page_size config register (git-fixes). - mfd: arizona: Fix rumtime PM imbalance on error (git-fixes). - mfd: intel_pmt: Fix nuisance messages and handling of disabled capabilities (git-fixes). - mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000" (git-fixes). - mfd: stm32-timers: Avoid clearing auto reload register (git-fixes). - misc/pvpanic: Export module FDT device table (git-fixes). - misc: eeprom_93xx46: Add quirk to support Microchip 93LC46B eeprom (git-fixes). - misc: fastrpc: restrict user apps from sending kernel RPC messages (git-fixes). - misc: lis3lv02d: Fix false-positive WARN on various HP models (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_datagram payload (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct (git-fixes). - mlxsw: spectrum_mr: Update egress RIF list before route's action (git-fixes). - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa (bsc#1168777). - mm/rmap: fix potential pte_unmap on an not mapped pte (git-fixes). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (git-fixes). - mm: memcontrol: fix cpuhotplug statistics flushing (bsc#1185606). - mmc: block: Update ext_csd.cache_ctrl if it was written (git-fixes). - mmc: core: Correct descriptions in mmc_of_parse() (git-fixes). - mmc: core: Do a power cycle when the CMD11 fails (git-fixes). - mmc: core: Fix partition switch time for eMMC (git-fixes). - mmc: core: Set read only for SD cards with permanent write protect bit (git-fixes). - mmc: cqhci: Add cqhci_deactivate() (git-fixes). - mmc: cqhci: Fix random crash when remove mmc module/card (git-fixes). - mmc: mmc_spi: Drop unused NO_IRQ definition (git-fixes). - mmc: mxs-mmc: Fix a resource leak in an error handling path in 'mxs_mmc_probe()' (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (bsc#1186009) - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (bsc#1186009) - mmc: sdhci-of-arasan: Add missed checks for devm_clk_register() (git-fixes). - mmc: sdhci-of-dwcmshc: fix rpmb access (git-fixes). - mmc: sdhci-of-dwcmshc: implement specific set_uhs_signaling (git-fixes). - mmc: sdhci-of-dwcmshc: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN (git-fixes). - mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes). - mmc: sdhci-of-esdhc: set timeout to max before tuning (git-fixes). - mmc: sdhci-pci-gli: increase 1.8V regulator wait (git-fixes). - mmc: sdhci-pci: Add PCI IDs for Intel LKF (git-fixes). - mmc: sdhci-pci: Fix SDHCI_RESET_ALL for CQHCI for Intel GLK-based controllers (git-fixes). - mmc: sdhci-pci: Fix initialization of some SD cards for Intel BYT-based controllers (git-fixes). - mmc: sdhci: Check for reset prior to DMA address unmap (git-fixes). - mmc: sdhci: Use Auto CMD Auto Select only when v4_mode is true (git-fixes). - mmc: uniphier-sd: Fix a resource leak in the remove function (git-fixes). - mmc: uniphier-sd: Fix an error handling path in uniphier_sd_probe() (git-fixes). - mount: fix mounting of detached mounts onto targets that reside on shared mounts (git-fixes). - mt7601u: fix always true expression (git-fixes). - mt76: dma: do not report truncated frames to mac80211 (git-fixes). - mt76: mt7615: fix entering driver-own state on mt7663 (git-fixes). - mt76: mt7615: support loading EEPROM for MT7613BE (git-fixes). - mt76: mt76x0: disable GTK offloading (git-fixes). - mt76: mt7915: fix aggr len debugfs node (git-fixes). - mt76: mt7915: fix txpower init for TSSI off chips (git-fixes). - mtd: Handle possible -EPROBE_DEFER from parse_mtd_partitions() (git-fixes). - mtd: rawnand: atmel: Update ecc_stats.corrected counter (git-fixes). - mtd: rawnand: brcmnand: fix OOB R/W with Hamming ECC (git-fixes). - mtd: rawnand: fsmc: Fix error code in fsmc_nand_probe() (git-fixes). - mtd: rawnand: gpmi: Fix a double free in gpmi_nand_init (git-fixes). - mtd: rawnand: qcom: Return actual error code instead of -ENODEV (git-fixes). - mtd: require write permissions for locking and badblock ioctls (git-fixes). - mtd: spi-nor: Rename "n25q512a" to "mt25qu512a (n25q512a)" (bsc#1167260). - mtd: spi-nor: Split mt25qu512a (n25q512a) entry into two (bsc#1167260). - mtd: spinand: core: add missing MODULE_DEVICE_TABLE() (git-fixes). - mwifiex: pcie: skip cancel_work_sync() on reset failure path (git-fixes). - nbd: fix a block_device refcount leak in nbd_release (git-fixes). - net, xdp: Update pkt_type if generic XDP changes unicast MAC (git-fixes). - net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (git-fixes). - net/mlx4_en: update moderation when config reset (git-fixes). - net/mlx5: Add back multicast stats for uplink representor (jsc#SLE-15172). - net/mlx5: Delete extra dump stack that gives nothing (git-fixes). - net/mlx5: Do not request more than supported EQs (git-fixes). - net/mlx5: Fix PPLM register mapping (jsc#SLE-8464). - net/mlx5: Fix bit-wise and with zero (jsc#SLE-15172). - net/mlx5: Fix health error state handling (bsc#1186467). - net/mlx5e: Allow to match on MPLS parameters only for MPLS over UDP (jsc#SLE-15172). - net/mlx5e: Do not match on Geneve options in case option masks are all zero (git-fixes). - net/mlx5e: E-switch, Fix rate calculation division (jsc#SLE-8464). - net/mlx5e: Fix error path for ethtool set-priv-flag (git-fixes). - net/mlx5e: Fix ethtool indication of connector type (git-fixes). - net/mlx5e: Fix setting of RS FEC mode (jsc#SLE-15172). - net/mlx5e: Offload tuple rewrite for non-CT flows (jsc#SLE-15172). - net/mlx5e: RX, Mind the MPWQE gaps when calculating offsets (jsc#SLE-15172). - net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta (jsc#SLE-8464). - net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template (git-fixes). - net/sched: act_ct: fix wild memory access when clearing fragments (bsc#1176447). - net: arc_emac: Fix memleak in arc_mdio_probe (git-fixes). - net: atheros: switch from 'pci_' to 'dma_' API (git-fixes). - net: atlantic: fix out of range usage of active_vlans array (git-fixes). - net: atlantic: fix potential error handling (git-fixes). - net: atlantic: fix use after free kasan warn (git-fixes). - net: b44: fix error return code in b44_init_one() (git-fixes). - net: bonding: fix error return code of bond_neigh_init() (bsc#1154353). - net: cdc-phonet: fix data-interface release on probe failure (git-fixes). - net: cls_api: Fix uninitialised struct field bo->unlocked_driver_cb (bsc#1176447). - net: dsa: felix: implement port flushing on .phylink_mac_link_down (git-fixes). - net: dsa: rtl8366: Fix VLAN semantics (git-fixes). - net: dsa: rtl8366: Fix VLAN set-up (git-fixes). - net: dsa: rtl8366rb: Support all 4096 VLANs (git-fixes). - net: enetc: allow hardware timestamping on TX queues with tc-etf enabled (git-fixes). - net: enetc: do not disable VLAN filtering in IFF_PROMISC mode (git-fixes). - net: enetc: fix link error again (git-fixes). - net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr (git-fixes). - net: enetc: take the MDIO lock only once per NAPI poll cycle (git-fixes). - net: enic: Cure the enic api locking trainwreck (git-fixes). - net: ethernet: aquantia: Fix wrong return value (git-fixes). - net: ethernet: cavium: octeon_mgmt: use phy_start and phy_stop (git-fixes). - net: ethernet: ibm: ibmvnic: Fix some kernel-doc misdemeanours (bsc#1183871 ltc#192139). - net: ethernet: ti: cpsw: fix clean up of vlan mc entries for host port (git-fixes). - net: ethernet: ti: cpsw: fix error return code in cpsw_probe() (git-fixes). - net: fec: Fix PHY init after phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix reference count leak in fec series ops (git-fixes). - net: gemini: Fix another missing clk_disable_unprepare() in probe (git-fixes). - net: gemini: Fix missing free_netdev() in error path of gemini_ethernet_port_probe() (git-fixes). - net: geneve: check skb is large enough for IPv4/IPv6 header (git-fixes). - net: geneve: modify IP header check in geneve6_xmit_skb and geneve_xmit_skb (git-fixes). - net: gianfar: Add of_node_put() before goto statement (git-fixes). - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device (git-fixes). - net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup (git-fixes). - net: hns3: Fix for geneve tx checksum bug (git-fixes). - net: hns3: Remove the left over redundant check & assignment (bsc#1154353). - net: hns3: Remove un-necessary 'else-if' in the hclge_reset_event() (git-fixes). - net: hns3: add check for HNS3_NIC_STATE_INITED in hns3_reset_notify_up_enet() (git-fixes). - net: hns3: clear VF down state bit before request link status (git-fixes). - net: hns3: clear unnecessary reset request in hclge_reset_rebuild (git-fixes). - net: hns3: disable phy loopback setting in hclge_mac_start_phy (git-fixes). - net: hns3: fix bug when calculating the TCAM table info (git-fixes). - net: hns3: fix for vxlan gpe tx checksum bug (git-fixes). - net: hns3: fix incorrect configuration for igu_egu_hw_err (git-fixes). - net: hns3: fix query vlan mask value error for flow director (git-fixes). - net: hns3: initialize the message content in hclge_get_link_mode() (git-fixes). - net: hns3: use netif_tx_disable to stop the transmit queue (git-fixes). - net: korina: cast KSEG0 address to pointer in kfree (git-fixes). - net: korina: fix kfree of rx/tx descriptor array (git-fixes). - net: lantiq: Wait for the GPHY firmware to be ready (git-fixes). - net: ll_temac: Add more error handling of dma_map_single() calls (git-fixes). - net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure (git-fixes). - net: ll_temac: Fix race condition causing TX hang (git-fixes). - net: ll_temac: Handle DMA halt condition caused by buffer underrun (git-fixes). - net: mvneta: fix double free of txq->buf (git-fixes). - net: mvneta: make tx buffer array agnostic (git-fixes). - net: pasemi: fix error return code in pasemi_mac_open() (git-fixes). - net: phy: broadcom: Only advertise EEE for supported modes (git-fixes). - net: phy: intel-xway: enable integrated led functions (git-fixes). - net: phy: marvell: fix m88e1011_set_downshift (git-fixes). - net: phy: marvell: fix m88e1111_set_downshift (git-fixes). - net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init (git-fixes). - net: qualcomm: rmnet: Fix incorrect receive packet handling during cleanup (git-fixes). - net: sched: disable TCQ_F_NOLOCK for pfifo_fast (bsc#1183405) - net: smc911x: Adjust indentation in smc911x_phy_configure (git-fixes). - net: spider_net: Fix the size used in a 'dma_free_coherent()' call (git-fixes). - net: stmmac: Fix incorrect location to set real_num_rx|tx_queues (git-fixes). - net: stmmac: Use rtnl_lock/unlock on netif_set_real_num_rx_queues() call (git-fixes). - net: stmmac: fix missing IFF_MULTICAST check in dwmac4_set_filter (git-fixes). - net: stmmac: removed enabling eee in EEE set callback (git-fixes). - net: stmmac: use netif_tx_start|stop_all_queues() function (git-fixes). - net: stmmac: xgmac: fix missing IFF_MULTICAST checki in dwxgmac2_set_filter (git-fixes). - net: thunderx: Fix unintentional sign extension issue (git-fixes). - net: tulip: Adjust indentation in {dmfe, uli526x}_init_module (git-fixes). - net: usb: ax88179_178a: fix missing stop entry in driver_info (git-fixes). - net: usb: qmi_wwan: allow qmimux add/del with master up (git-fixes). - net: usb: qmi_wwan: support ZTE P685M modem (git-fixes). - net: wan/lmc: unregister device when no matching device is found (git-fixes). - net:nfc:digital: Fix a double free in digital_tg_recv_dep_req (git-fixes). - netdevice: Add missing IFF_PHONY_HEADROOM self-definition (git-fixes). - netdevsim: init u64 stats for 32bit hardware (git-fixes). - netfilter: conntrack: Make global sysctls readonly in non-init netns (bsc#1176447). - netfilter: conntrack: add new sysctl to disable RST check (bsc#1183947 bsc#1185950). - netfilter: conntrack: avoid misleading 'invalid' in log message (bsc#1183947 bsc#1185950). - netfilter: conntrack: improve RST handling when tuple is re-used (bsc#1183947 bsc#1185950). - netfilter: flowtable: Make sure GC works periodically in idle system (bsc#1176447). - netfilter: flowtable: fix NAT IPv6 offload mangling (bsc#1176447). - netfilter: nftables: allow to update flowtable flags (bsc#1176447). - netfilter: nftables: report EOPNOTSUPP on unsupported flowtable flags (bsc#1176447). - netsec: restore phy power state after controller reset (bsc#1183757). - nfc: pn533: prevent potential memory corruption (git-fixes). - nfp: devlink: initialize the devlink port attribute "lanes" (bsc#1176447). - nfp: flower: add ipv6 bit to pre_tunnel control message (bsc#1176447). - nfp: flower: fix pre_tun mask id allocation (bsc#1154353). - nfp: flower: ignore duplicate merge hints from FW (git-fixes). - node: fix device cleanups in error handling code (git-fixes). - null_blk: fix passing of REQ_FUA flag in null_handle_rq (git-fixes). - nvme-core: add cancel tagset helpers (bsc#1183976). - nvme-fabrics: decode host pathing error for connect (bsc#1179827). - nvme-fabrics: fix kato initialization (bsc#1182591). - nvme-fabrics: only reserve a single tag (bsc#1182077). - nvme-fabrics: reject I/O to offline device (bsc#1181161). - nvme-fc: check sgl supported by target (bsc#1179827). - nvme-fc: clear q_live at beginning of association teardown (bsc#1186479). - nvme-fc: fix racing controller reset and create association (bsc#1183048). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1180197). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1184259). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1180197). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1184259). - nvme-fc: short-circuit reconnect retries (bsc#1179827). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259). - nvme-multipath: reset bdev to ns head when failover (bsc#178378 bsc#1182999). - nvme-tcp: Fix possible race of io_work and direct send (git-fixes). - nvme-tcp: Fix warning with CONFIG_DEBUG_PREEMPT (git-fixes). - nvme-tcp: add clean action for failed reconnection (bsc#1183976). - nvme-tcp: fix kconfig dependency warning when !CRYPTO (git-fixes). - nvme-tcp: fix misuse of __smp_processor_id with preemption (git-fixes). - nvme-tcp: fix possible hang waiting for icresp response (bsc#1179519). - nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161). - nvme-tcp: use cancel tagset helper for tear down (bsc#1183976). - nvme: Fix NULL dereference for pci nvme controllers (bsc#1182378). - nvme: add 'kato' sysfs attribute (bsc#1179825). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1180197). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1184259). - nvme: allocate the keep alive request using BLK_MQ_REQ_NOWAIT (bsc#1182077). - nvme: call nvme_identify_ns as the first thing in nvme_alloc_ns_block (bsc#1180197). - nvme: clean up the check for too large logic block sizes (bsc#1180197). - nvme: define constants for identification values (git-fixes). - nvme: do not intialize hwmon for discovery controllers (bsc#1184259). - nvme: do not intialize hwmon for discovery controllers (git-fixes). - nvme: explicitly update mpath disk capacity on revalidation (git-fixes). - nvme: expose reconnect_delay and ctrl_loss_tmo via sysfs (bsc#1182378). - nvme: factor out a nvme_configure_metadata helper (bsc#1180197). - nvme: fix controller instance leak (git-fixes). - nvme: fix initialization of the zone bitmaps (bsc#1180197). - nvme: fix possible deadlock when I/O is blocked (git-fixes). - nvme: freeze the queue over ->lba_shift updates (bsc#1180197). - nvme: lift the check for an unallocated namespace into nvme_identify_ns (bsc#1180197). - nvme: merge nvme_keep_alive into nvme_keep_alive_work (bsc#1182077). - nvme: move nvme_validate_ns (bsc#1180197). - nvme: opencode revalidate_disk in nvme_validate_ns (bsc#1180197). - nvme: query namespace identifiers before adding the namespace (bsc#1180197). - nvme: refactor nvme_validate_ns (bsc#1180197). - nvme: remove nvme_identify_ns_list (bsc#1180197). - nvme: remove nvme_update_formats (bsc#1180197). - nvme: remove superfluous else in nvme_ctrl_loss_tmo_store (bsc#1182378). - nvme: remove the 0 lba_shift check in nvme_update_ns_info (bsc#1180197). - nvme: remove the disk argument to nvme_update_zone_info (bsc#1180197). - nvme: rename __nvme_revalidate_disk (bsc#1180197). - nvme: rename _nvme_revalidate_disk (bsc#1180197). - nvme: rename nvme_validate_ns to nvme_validate_or_alloc_ns (bsc#1180197). - nvme: retrigger ANA log update if group descriptor isn't found (git-fixes) - nvme: return an error if nvme_set_queue_count() fails (bsc#1180197). - nvme: revalidate zone bitmaps in nvme_update_ns_info (bsc#1180197). - nvme: sanitize KATO setting (bsc#1179825). - nvme: set the queue limits in nvme_update_ns_info (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1184259). - nvme: update the known admin effects (bsc#1180197). - nvmet-rdma: Fix list_del corruption on queue establishment failure (bsc#1183501). - nvmet: fix a memory leak (git-fixes). - nvmet: seset ns->file when open fails (bsc#1183873). - nvmet: use new ana_log_size instead the old one (bsc#1184259). - ocfs2: fix a use after free on error (bsc#1184738). - ovl: fix dentry leak in ovl_get_redirect (bsc#1184176). - ovl: fix out of date comment and unreachable code (bsc#1184176). - ovl: fix regression with re-formatted lower squashfs (bsc#1184176). - ovl: fix unneeded call to ovl_change_flags() (bsc#1184176). - ovl: fix value of i_ino for lower hardlink corner case (bsc#1184176). - ovl: initialize error in ovl_copy_xattr (bsc#1184176). - ovl: relax WARN_ON() when decoding lower directory file handle (bsc#1184176). - pata_arasan_cf: fix IRQ check (git-fixes). - pata_ipx4xx_cf: fix IRQ check (git-fixes). - perf/amd/uncore: Fix sysfs type mismatch (bsc#1178134). - phy: marvell: ARMADA375_USBCLUSTER_PHY should not default to y, unconditionally (git-fixes). - phy: phy-twl4030-usb: Fix possible use-after-free in twl4030_usb_remove() (git-fixes). - partitions/ibm: fix non-DASD devices (bsc#1185857 LTC#192526). - pinctrl: Ingenic: Add missing pins to the JZ4770 MAC MII group (git-fixes). - pinctrl: core: Fix kernel doc string for pin_get_name() (git-fixes). - pinctrl: ingenic: Improve unreachable code generation (git-fixes). - pinctrl: lewisburg: Update number of pins in community (git-fixes). - pinctrl: qcom: spmi-gpio: fix warning about irq chip reusage (git-fixes). - pinctrl: rockchip: fix restore error in resume (git-fixes). - pinctrl: samsung: use 'int' for register masks in Exynos (git-fixes). - platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_KBD_DOCK quirk for the Aspire Switch 10E SW3-016 (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_SET_FUNCTION_MODE capability flag (git-fixes). - platform/x86: acer-wmi: Add new force_caps module parameter (git-fixes). - platform/x86: acer-wmi: Add support for SW_TABLET_MODE on Switch devices (git-fixes). - platform/x86: acer-wmi: Cleanup ACER_CAP_FOO defines (git-fixes). - platform/x86: acer-wmi: Cleanup accelerometer device handling (git-fixes). - platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2 (git-fixes). - platform/x86: intel-vbtn: Stop reporting SW_DOCK events (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_pmc_core: Do not use global pmcdev in quirks (git-fixes). - platform/x86: intel_pmt_crashlog: Fix incorrect macros (git-fixes). - platform/x86: pmc_atom: Match all Beckhoff Automation baytrail boards with critclk_systems DMI table (git-fixes). - platform/x86: thinkpad_acpi: Allow the FnLock LED to change state (git-fixes). - platform/x86: thinkpad_acpi: Correct thermal sensor allocation (git-fixes). - posix-timers: Preserve return value in clock_adjtime32() (git-fixes) - post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388). - power: supply: Use IRQF_ONESHOT (git-fixes). - power: supply: generic-adc-battery: fix possible use-after-free in gab_remove() (git-fixes). - power: supply: s3c_adc_battery: fix possible use-after-free in s3c_adc_bat_remove() (git-fixes). - powerepc/book3s64/hash: Align start/end address correctly with bolt mapping (bsc#1184957). - powerpc/64s/exception: Clean up a missed SRR specifier (jsc#SLE-9246 git-fixes). - powerpc/64s: Fix crashes when toggling entry flush barrier (bsc#1177666 git-fixes). - powerpc/64s: Fix crashes when toggling stf barrier (bsc#1087082 git-fixes). - powerpc/64s: Fix instruction encoding for lis in ppc_function_entry() (bsc#1065729). - powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117 git-fixes). - powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729). - powerpc/book3s64/radix: Remove WARN_ON in destroy_context() (bsc#1183692 ltc#191963). - powerpc/eeh: Fix EEH handling for hugepages in ioremap space (bsc#1156395). - powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729). - powerpc/kexec_file: Use current CPU info while setting up FDT (bsc#1184615 ltc#189835). - powerpc/kuap: Restore AMR after replaying soft interrupts (bsc#1156395). - powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289 ltc#191637). - powerpc/papr_scm: Fix build error due to wrong printf specifier (bsc#1184969). - powerpc/papr_scm: Implement support for H_SCM_FLUSH hcall (bsc#1184969). - powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729). - powerpc/perf: Fix sampled instruction type for larx/stcx (jsc#SLE-13513). - powerpc/perf: Fix the threshold event selection for memory events in power10 (jsc#SLE-13513). - powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729). - powerpc/pseries/mobility: handle premature return from H_JOIN (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/mobility: use struct for shared state (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729). - powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - powerpc/pseries: Do not trace hcall tracing wrapper (bsc#1185110 ltc#192091). - powerpc/pseries: Fix hcall tracing recursion in pv queued spinlocks (bsc#1185110 ltc#192091). - powerpc/pseries: use notrace hcall variant for H_CEDE idle (bsc#1185110 ltc#192091). - powerpc/pseries: warn if recursing into the hcall tracing code (bsc#1185110 ltc#192091). - powerpc/smp: Reintroduce cpu_core_mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Fix darn emulation (bsc#1156395). - powerpc/sstep: Fix incorrect return from analyze_instr() (bsc#1156395). - powerpc/sstep: Fix load-store and update emulation (bsc#1156395). - powerpc/time: Enable sched clock for irqtime (bsc#1156395). - powerpc/uaccess: Avoid might_fault() when user access is enabled (bsc#1156395). - powerpc/uaccess: Perform barrier_nospec() in KUAP allowance helpers (bsc#1156395). - powerpc/uaccess: Simplify unsafe_put_user() implementation (bsc#1156395). - powerpc/xive: Drop check on irq_data in xive_core_debug_show() (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc/xmon: Fix build failure for 8xx (jsc#SLE-12936 git-fixes). - powerpc: Fix inverted SET_FULL_REGS bitop (jsc#SLE-9246 git-fixes). - powerpc: Fix missing declaration ofable_kernel_vsx() (git-fixes). - proc: fix lookup in /proc/net subdirectories after setns(2) (git-fixes). - qlcnic: fix error return code in qlcnic_83xx_restart_hw() (git-fixes). - qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth (git-fixes). - qxl: Fix uninitialised struct field head.surface_id (git-fixes). - r8169: do not advertise pause in jumbo mode (git-fixes). - r8169: fix DMA being used after buffer free if WoL is enabled (git-fixes). - r8169: tweak max read request size for newer chips also in jumbo mtu mode (git-fixes). - regmap: set debugfs_name to NULL after it is freed (git-fixes). - regulator: Avoid a double 'of_node_get' in 'regulator_of_get_init_node()' (git-fixes). - regulator: bd9571mwv: Fix AVS and DVFS voltage range (git-fixes). - reintroduce cqhci_suspend for kABI (git-fixes). - reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737). - rsi: Fix TX EAPOL packet handling against iwlwifi AP (git-fixes). - rsi: Move card interrupt handling to RX thread (git-fixes). - rsi: Use resume_noirq for SDIO (git-fixes). - rsxx: remove extraneous 'const' qualifier (git-fixes). - rtc: ds1307: Fix wday settings for rx8130 (git-fixes). - rtc: fsl-ftm-alarm: add MODULE_TABLE() (bsc#1185454). - rtc: fsl-ftm-alarm: avoid struct rtc_time conversions (bsc#1185454). - rtc: fsl-ftm-alarm: enable acpi support (bsc#1185454). - rtc: fsl-ftm-alarm: fix freeze(s2idle) failed to wake (bsc#1185454). - rtc: fsl-ftm-alarm: report alarm to core (bsc#1185454). - rtc: fsl-ftm-alarm: switch to ktime_get_real_seconds (bsc#1185454). - rtc: fsl-ftm-alarm: switch to rtc_time64_to_tm/rtc_tm_to_time64 (bsc#1185454). - rtc: fsl-ftm-alarm: update acpi device id (bsc#1185454). - rtc: pcf2127: add alarm support (bsc#1185233). - rtc: pcf2127: add pca2129 device id (bsc#1185233). - rtc: pcf2127: add tamper detection support (bsc#1185233). - rtc: pcf2127: add watchdog feature support (bsc#1185233). - rtc: pcf2127: bugfix: watchdog build dependency (bsc#1185233). - rtc: pcf2127: cleanup register and bit defines (bsc#1185233). - rtc: pcf2127: convert to devm_rtc_allocate_device (bsc#1185233). - rtc: pcf2127: fix a bug when not specify interrupts property (bsc#1185233). - rtc: pcf2127: fix alarm handling (bsc#1185233). - rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (bsc#1185233). - rtc: pcf2127: handle boot-enabled watchdog feature (bsc#1185233). - rtc: pcf2127: handle timestamp interrupts (bsc#1185495). - rtc: pcf2127: let the core handle rtc range (bsc#1185233). - rtc: pcf2127: move watchdog initialisation to a separate function (bsc#1185233). - rtc: pcf2127: only use watchdog when explicitly available (bsc#1185233). - rtc: pcf2127: properly set flag WD_CD for rtc chips(pcf2129, pca2129) (bsc#1185233). - rtc: pcf2127: remove unnecessary #ifdef (bsc#1185233). - rtc: pcf2127: set regmap max_register (bsc#1185233). - rtc: pcf2127: watchdog: handle nowayout feature (bsc#1185233). - rtlwifi: 8821ae: upgrade PHY and RF parameters (git-fixes). - rtw88: Fix an error code in rtw_debugfs_set_rsvd_page() (git-fixes). - rtw88: Fix array overrun in rtw_get_tx_power_params() (git-fixes). - rtw88: coex: 8821c: correct antenna switch function (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/crypto: return -EFAULT if copy_to_user() fails (git-fixes). - s390/dasd: fix hanging DASD driver unbind (bsc#1183932 LTC#192153). - s390/dasd: fix hanging IO request during DASD driver unbind (git-fixes). - s390/entry: save the caller of psw_idle (bsc#1185677). - s390/ipl: support NVMe IPL kernel parameters (bsc#1185980 LTC#192679). - s390/kdump: fix out-of-memory with PCI (bsc#1182257 LTC#191375). - s390/pci: fix leak of PCI device structure (git-fixes). - s390/qeth: fix memory leak after failed TX Buffer allocation (git-fixes). - s390/qeth: fix notification for pending buffers during teardown (git-fixes). - s390/qeth: improve completion of pending TX buffers (git-fixes). - s390/qeth: schedule TX NAPI on QAOB completion (git-fixes). - s390/vtime: fix increased steal time accounting (bsc#1183859). - s390/zcrypt: return EIO when msg retry limit reached (git-fixes). - samples, bpf: Add missing munmap in xdpsock (bsc#1155518). - samples/bpf: Fix possible hang in xdpsock with multiple threads (bsc#1155518). - sata_mv: add IRQ checks (git-fixes). - sched/eas: Do not update misfit status if the task is pinned (git-fixes) - sched/fair: Avoid stale CPU util_est value for schedutil in (git-fixes) - sched/fair: Fix shift-out-of-bounds in load_balance() (git fixes (sched)). - sched/fair: Fix unfairness caused by missing load decay (git-fixes) - scripts/git_sort/git_sort.py: add bpf git repo - scsi: aacraid: Improve compat_ioctl handlers (bsc#1186352). - scsi: block: Fix a race in the runtime power management code (git-fixes). - scsi: core: Only return started requests from scsi_host_find_tag() (bsc#1179851). - scsi: core: Run queue in case of I/O resource contention failure (bsc#1186416). - scsi: core: add scsi_host_busy_iter() (bsc#1179851). - scsi: fnic: Kill 'exclude_id' argument to fnic_cleanup_io() (bsc#1179851). - scsi: fnic: Remove bogus ratelimit messages (bsc#1183249). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1186573). - scsi: lpfc: Add a option to enable interlocked ABTS before job completion (bsc#1186451). - scsi: lpfc: Add ndlp kref accounting for resume RPI path (bsc#1186451). - scsi: lpfc: Change wording of invalid pci reset log message (bsc#1182574). - scsi: lpfc: Correct function header comments related to ndlp reference counting (bsc#1182574). - scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472). - scsi: lpfc: Fix "Unexpected timeout" error in direct attach topology (bsc#1186451). - scsi: lpfc: Fix ADISC handling that never frees nodes (bsc#1182574). - scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365). - scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1182574). - scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency (bsc#1185472). - scsi: lpfc: Fix Node recovery when driver is handling simultaneous PLOGIs (bsc#1186451). - scsi: lpfc: Fix PLOGI ACC to be transmit after REG_LOGIN (bsc#1182574). - scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472). - scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472). - scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472). - scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472). - scsi: lpfc: Fix a typo (bsc#1185472). - scsi: lpfc: Fix bad memory access during VPD DUMP mailbox command (bsc#1186451). - scsi: lpfc: Fix crash caused by switch reboot (bsc#1182574). - scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO response (bsc#1185472). - scsi: lpfc: Fix crash when lpfc_sli4_hba_setup() fails to initialize the SGLs (bsc#1186451). - scsi: lpfc: Fix dropped FLOGI during pt2pt discovery recovery (bsc#1182574). - scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode (bsc#1185472). - scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472). - scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472). - scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203). - scsi: lpfc: Fix incorrect dbde assignment when building target abts wqe (bsc#1182574). - scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#1185472). - scsi: lpfc: Fix incorrectly documented function lpfc_debugfs_commonxripools_data() (bsc#1185472). - scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472). - scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#1185472). - scsi: lpfc: Fix lpfc_els_retry() possible null pointer dereference (bsc#1182574). - scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472). - scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#1185472). - scsi: lpfc: Fix node handling for Fabric Controller and Domain Controller (bsc#1186451). - scsi: lpfc: Fix nodeinfo debugfs output (bsc#1182574). - scsi: lpfc: Fix non-optimized ERSP handling (bsc#1186451). - scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() (bsc#1182574). - scsi: lpfc: Fix pt2pt connection does not recover after LOGO (bsc#1182574). - scsi: lpfc: Fix pt2pt state transition causing rmmod hang (bsc#1182574). - scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#1185472). - scsi: lpfc: Fix reftag generation sizing errors (bsc#1182574). - scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#1185472). - scsi: lpfc: Fix silent memory allocation failure in lpfc_sli4_bsg_link_diag_test() (bsc#1185472). - scsi: lpfc: Fix some error codes in debugfs (bsc#1185472). - scsi: lpfc: Fix stale node accesses on stale RRQ request (bsc#1182574). - scsi: lpfc: Fix status returned in lpfc_els_retry() error exit path (bsc#1182574). - scsi: lpfc: Fix unnecessary null check in lpfc_release_scsi_buf (bsc#1182574). - scsi: lpfc: Fix unreleased RPIs when NPIV ports are created (bsc#1186451). - scsi: lpfc: Fix use after free in lpfc_els_free_iocb (bsc#1182574). - scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#1185472). - scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#1185472). - scsi: lpfc: Fix vport indices in lpfc_find_vport_by_vpid() (bsc#1182574). - scsi: lpfc: Ignore GID-FT response that may be received after a link flip (bsc#1186451). - scsi: lpfc: Reduce LOG_TRACE_EVENT logging for vports (bsc#1182574). - scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472). - scsi: lpfc: Reregister FPIN types if ELS_RDF is received from fabric controller (bsc#1186451). - scsi: lpfc: Standardize discovery object logging format (bsc#1185472). - scsi: lpfc: Update copyrights for 12.8.0.7 and 12.8.0.8 changes (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.10 (bsc#1186451). - scsi: lpfc: Update lpfc version to 12.8.0.8 (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472). - scsi: mpt3sas: Only one vSES is present even when IOC has multi vSES (bsc#1185954). - scsi: pm80xx: Do not sleep in atomic context (bsc#1186353). - scsi: pm80xx: Fix chip initialization failure (bsc#1186354). - scsi: pm80xx: Fix potential infinite loop (bsc#1186354). - scsi: pm80xx: Increase timeout for pm80xx mpi_uninit_check() (bsc#1186355). - scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#1185491). - scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491). - scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats() (bsc#1185491). - scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491). - scsi: qla2xxx: Check kzalloc() return value (bsc#1185491). - scsi: qla2xxx: Consolidate zio threshold setting for both FCP & NVMe (bsc#1185491). - scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491). - scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#1185491). - scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491). - scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491). - scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491). - scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491). - scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491). - scsi: qla2xxx: Fix broken #endif placement (bsc#1185491). - scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491). - scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491). - scsi: qla2xxx: Fix endianness annotations (bsc#1185491). - scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#1185491). - scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491). - scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491). - scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491). - scsi: qla2xxx: Fix some memory corruption (bsc#1185491). - scsi: qla2xxx: Fix stuck session (bsc#1185491). - scsi: qla2xxx: Fix use after free in bsg (bsc#1185491). - scsi: qla2xxx: Implementation to get and manage host, target stats and initiator port (bsc#1185491). - scsi: qla2xxx: Move some messages from debug to normal log level (bsc#1185491). - scsi: qla2xxx: Remove redundant NULL check (bsc#1185491). - scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491). - scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491). - scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#1185491). - scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1184436). - scsi: qla2xxx: Reuse existing error handling path (bsc#1185491). - scsi: qla2xxx: Simplify if statement (bsc#1185491). - scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491). - scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491). - scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491). - scsi: qla2xxx: Update default AER debug mask (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491). - scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491). - scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#1185491). - scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#1185491). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: target: pscsi: Avoid OOM in pscsi_map_sg() (bsc#1183843). - scsi: target: pscsi: Clean up after failure in pscsi_map_sg() (bsc#1183843). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1186356). - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized (bsc#1186357). - sctp: delay auto_asconf init until binding the first addr (&lt;cover.1620748346.git.mkubecek@suse.cz>). - security: keys: trusted: fix TPM2 authorizations (git-fixes). - selftests/bpf: Fix BPF_CORE_READ_BITFIELD() macro (bsc#1177028). - selftests/bpf: Fix the ASSERT_ERR_PTR macro (bsc#1177028). - selftests/bpf: Mask bpf_csum_diff() return value to 16 bits in test_verifier (bsc#1155518). - selftests/bpf: No need to drop the packet when there is no geneve opt (bsc#1155518). - selftests/bpf: Re-generate vmlinux.h and BPF skeletons if bpftool changed (bsc#1177028). - selftests/bpf: Set gopt opt_class to 0 if get tunnel opt failed (bsc#1155518). - selftests/powerpc: Add pkey helpers for rights (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for execute-disabled pkeys (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for pkey siginfo verification (bsc#1184934 ltc#191460). - selftests/powerpc: Add wrapper for gettid (bsc#1184934 ltc#191460). - selftests/powerpc: Fix L1D flushing tests for Power10 (bsc#1184934 ltc#191460). - selftests/powerpc: Fix exit status of pkey tests (bsc#1184934 ltc#191460). - selftests/powerpc: Fix pkey syscall redefinitions (bsc#1184934 ltc#191460). - selftests/powerpc: Move pkey helpers to headers (bsc#1184934 ltc#191460). - selftests/powerpc: refactor entry and rfi_flush tests (bsc#1184934 ltc#191460). - selftests: mlxsw: Remove a redundant if statement in tc_flower_scale test (bsc#1176774). - selinux: Fix error return code in sel_ib_pkey_sid_slow() (git-fixes). - selinux: fix error initialization in inode_doinit_with_dentry() (git-fixes). - selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling (git-fixes). - serial: core: return early on unsupported ioctls (git-fixes). - serial: stm32: fix incorrect characters on console (git-fixes). - serial: stm32: fix tx_empty condition (git-fixes). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smc: disallow TCP_ULP in smc_setsockopt() (git-fixes). - soc/fsl: qbman: fix conflicting alignment attributes (git-fixes). - soc: aspeed: fix a ternary sign expansion bug (git-fixes). - soc: fsl: qe: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - soc: qcom: mdt_loader: Detect truncated read of segments (git-fixes). - soc: qcom: mdt_loader: Validate that p_filesz &lt; p_memsz (git-fixes). - software node: Fix node registration (git-fixes). - soundwire: bus: Fix device found flag correctly (git-fixes). - soundwire: stream: fix memory leak in stream config error path (git-fixes). - spi: Introduce dspi_slave_abort() function for NXP's dspi SPI driver (bsc#1167260). - spi: ath79: always call chipselect function (git-fixes). - spi: ath79: remove spi-master setup and cleanup assignment (git-fixes). - spi: cadence: set cqspi to the driver_data field of struct device (git-fixes). - spi: dln2: Fix reference leak to master (git-fixes). - spi: fsl-dspi: fix NULL pointer dereference (bsc#1167260). - spi: fsl-dspi: fix use-after-free in remove path (bsc#1167260). - spi: fsl-dspi: fix wrong pointer in suspend/resume (bsc#1167260). - spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() (git-fixes). - spi: omap-100k: Fix reference leak to master (git-fixes). - spi: qup: fix PM reference leak in spi_qup_remove() (git-fixes). - spi: spi-fsl-dspi: Accelerate transfers using larger word size if possible (bsc#1167260). - spi: spi-fsl-dspi: Add comments around dspi_pop_tx and dspi_push_rx functions (bsc#1167260). - spi: spi-fsl-dspi: Add support for LS1028A (bsc#1167260). - spi: spi-fsl-dspi: Adding shutdown hook (bsc#1167260). - spi: spi-fsl-dspi: Always use the TCFQ devices in poll mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid NULL pointer in dspi_slave_abort for non-DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid reading more data than written in EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros (bsc#1167260). - spi: spi-fsl-dspi: Convert TCFQ users to XSPI FIFO mode (bsc#1167260). - spi: spi-fsl-dspi: Convert the instantiations that support it to DMA (bsc#1167260). - spi: spi-fsl-dspi: Demistify magic value in SPI_SR_CLEAR (bsc#1167260). - spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (bsc#1167260). - spi: spi-fsl-dspi: Do not mask off undefined bits (bsc#1167260). - spi: spi-fsl-dspi: Exit the ISR with IRQ_NONE when it's not ours (bsc#1167260). - spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Fix a resource leak in an error handling path (git-fixes). - spi: spi-fsl-dspi: Fix bits-per-word acceleration in DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Fix code alignment (bsc#1167260). - spi: spi-fsl-dspi: Fix external abort on interrupt in resume or exit paths (bsc#1167260). - spi: spi-fsl-dspi: Fix interrupt-less DMA mode taking an XSPI code path (bsc#1167260). - spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix race condition in TCFQ/EOQ interrupt (bsc#1167260). - spi: spi-fsl-dspi: Fix typos (bsc#1167260). - spi: spi-fsl-dspi: Free DMA memory with matching function (bsc#1167260). - spi: spi-fsl-dspi: Implement .max_message_size method for EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Initialize completion before possible interrupt (bsc#1167260). - spi: spi-fsl-dspi: LS2080A and LX2160A support XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Make bus-num property optional (bsc#1167260). - spi: spi-fsl-dspi: Move dspi_interrupt above dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Move invariant configs out of dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Optimize dspi_setup_accel for lowest interrupt count (bsc#1167260). - spi: spi-fsl-dspi: Parameterize the FIFO size and DMA buffer size (bsc#1167260). - spi: spi-fsl-dspi: Protect against races on dspi->words_in_flight (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation in dspi_release_dma() (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation level in dspi_interrupt (bsc#1167260). - spi: spi-fsl-dspi: Remove impossible to reach error check (bsc#1167260). - spi: spi-fsl-dspi: Remove pointless assignment of master->transfer to NULL (bsc#1167260). - spi: spi-fsl-dspi: Remove unused chip->void_write_data (bsc#1167260). - spi: spi-fsl-dspi: Remove unused defines and includes (bsc#1167260). - spi: spi-fsl-dspi: Remove unused initialization of 'ret' in dspi_probe (bsc#1167260). - spi: spi-fsl-dspi: Rename fifo_{read,write} and {tx,cmd}_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Replace interruptible wait queue with a simple completion (bsc#1167260). - spi: spi-fsl-dspi: Replace legacy spi_master names with spi_controller (bsc#1167260). - spi: spi-fsl-dspi: Simplify bytes_per_word gymnastics (bsc#1167260). - spi: spi-fsl-dspi: Take software timestamp in dspi_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Use BIT() and GENMASK() macros (bsc#1167260). - spi: spi-fsl-dspi: Use EOQ for last word in buffer even for XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Use dma_request_chan() instead dma_request_slave_channel() (bsc#1167260). - spi: spi-fsl-dspi: Use poll mode in case the platform IRQ is missing (bsc#1167260). - spi: spi-fsl-dspi: Use reverse Christmas tree declaration order (bsc#1167260). - spi: spi-fsl-dspi: Use specific compatible strings for all SoC instantiations (bsc#1167260). - spi: spi-fsl-dspi: delete EOQ transfer mode (bsc#1167260). - spi: spi-fsl-dspi: fix DMA mapping (bsc#1167260). - spi: spi-fsl-dspi: fix native data copy (bsc#1167260). - spi: spi-fsl-dspi: remove git-fixes Remove git-fixes. Prepare to update the driver. References: bsc#1167260 - spi: spi-fsl-dspi: set ColdFire to DMA mode (bsc#1167260). - spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs (bsc#1167260). - spi: spi-ti-qspi: Free DMA resources (git-fixes). - spi: stm32: make spurious and overrun interrupts visible (git-fixes). - squashfs: fix inode lookup sanity checks (bsc#1183750). - squashfs: fix xattr id and id lookup sanity checks (bsc#1183750). - staging: bcm2835-audio: Replace unsafe strcpy() with strscpy() (git-fixes). - staging: comedi: addi_apci_1032: Fix endian problem for COS sample (git-fixes). - staging: comedi: addi_apci_1500: Fix endian problem for command sample (git-fixes). - staging: comedi: adv_pci1710: Fix endian problem for AI command data (git-fixes). - staging: comedi: cb_pcidas64: fix request_irq() warn (git-fixes). - staging: comedi: cb_pcidas: fix request_irq() warn (git-fixes). - staging: comedi: das6402: Fix endian problem for AI command data (git-fixes). - staging: comedi: das800: Fix endian problem for AI command data (git-fixes). - staging: comedi: dmm32at: Fix endian problem for AI command data (git-fixes). - staging: comedi: me4000: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl711: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl818: Fix endian problem for AI command data (git-fixes). - staging: fwserial: Fix error handling in fwserial_create (git-fixes). - staging: fwserial: fix TIOCGSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL jiffies conversions (git-fixes). - staging: fwserial: fix TIOCSSERIAL permission check (git-fixes). - staging: ks7010: prevent buffer overflow in ks_wlan_set_scan() (git-fixes). - staging: most: sound: add sanity check for function argument (git-fixes). - staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data() (git-fixes). - staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan() (git-fixes). - staging: rtl8192e: Change state information from u16 to u8 (git-fixes). - staging: rtl8192e: Fix incorrect source in memcpy() (git-fixes). - staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan (git-fixes). - staging: rtl8192u: Fix potential infinite loop (git-fixes). - staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan() (git-fixes). - staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd (git-fixes). - staging: rtl8712: unterminated string leads to read overflow (git-fixes). - stop_machine: mark helpers __always_inline (git-fixes). - supported.conf: - supported.conf: add bsc1185010 dependency - supported.conf: mark usb_otg_fsm as supported (bsc#1185010) - tcp: fix to update snd_wl1 in bulk receiver fast path (&lt;cover.1620748346.git.mkubecek@suse.cz>). - tee: optee: remove need_resched() before cond_resched() (git-fixes). - tee: optee: replace might_sleep with cond_resched (git-fixes). - thermal/core: Add NULL pointer check before using cooling device stats (git-fixes). - thermal/drivers/cpufreq_cooling: Update cpufreq_state only if state has changed (git-fixes). - thermal/drivers/ti-soc-thermal/bandgap Remove unused variable 'val' (git-fixes). - thermal: thermal_of: Fix error return code of thermal_of_populate_bind_params() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Initialize HopID IDAs in tb_switch_alloc() (git-fixes). - tools/resolve_btfids: Fix build error with older host toolchains (bsc#1177028). - tpm: acpi: Check eventlog signature before using it (git-fixes). - tracing: Map all PIDs to command lines (git-fixes). - tty: amiserial: fix TIOCSSERIAL permission check (git-fixes). - tty: fix memory leak in vc_deallocate (git-fixes). - tty: moxa: fix TIOCSSERIAL jiffies conversions (git-fixes). - tty: moxa: fix TIOCSSERIAL permission check (git-fixes). - tty: serial: lpuart: fix lpuart32_write usage (git-fixes). - tty: serial: ucc_uart: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - udlfb: Fix memory leak in dlfb_usb_probe (git-fixes). - uio: uio_hv_generic: use devm_kzalloc() for private data alloc (git-fixes). - uio_hv_generic: Fix a memory leak in error handling paths (git-fixes). - uio_hv_generic: Fix another memory leak in error handling paths (git-fixes). - uio_hv_generic: add missed sysfs_remove_bin_file (git-fixes). - usb-storage: Add quirk to defeat Kindle's automatic unload (git-fixes). - usb: Remove dev_err() usage after platform_get_irq() (git-fixes). - usb: core: hub: Fix PM reference leak in usb_port_resume() (git-fixes). - usb: core: hub: fix race condition about TRSMRCY of resume (git-fixes). - usb: dwc2: Fix HPRT0.PrtSusp bit setting for HiKey 960 board (git-fixes). - usb: dwc2: Fix gadget DMA unmap direction (git-fixes). - usb: dwc2: Fix hibernation between host and device modes (git-fixes). - usb: dwc2: Fix host mode hibernation exit with remote wakeup flow (git-fixes). - usb: dwc2: Fix session request interrupt handler (git-fixes). - usb: dwc2: Prevent core suspend when port connection flag is 0 (git-fixes). - usb: dwc3: Switch to use device_property_count_u32() (git-fixes). - usb: dwc3: Update soft-reset wait polling rate (git-fixes). - usb: dwc3: gadget: Fix START_TRANSFER link state check (git-fixes). - usb: dwc3: gadget: Return success always for kick transfer in ep queue (git-fixes). - usb: dwc3: keystone: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: meson-g12a: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: omap: improve extcon initialization (git-fixes). - usb: dwc3: pci: Enable usb2-gadget-lpm-disable for Intel Merrifield (git-fixes). - usb: dwc3: qcom: Add missing DWC3 OF node refcount decrement (git-fixes). - usb: dwc3: qcom: Honor wakeup enabled/disabled state (git-fixes). - usb: fotg210-hcd: Fix an error message (git-fixes). - usb: gadget/function/f_fs string table fix for multiple languages (git-fixes). - usb: gadget: Fix double free of device descriptor pointers (git-fixes). - usb: gadget: aspeed: fix dma map failure (git-fixes). - usb: gadget: configfs: Fix KASAN use-after-free (git-fixes). - usb: gadget: dummy_hcd: fix gpf in gadget_setup (git-fixes). - usb: gadget: f_uac1: stop playback on function disable (git-fixes). - usb: gadget: f_uac1: validate input parameters (git-fixes). - usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot (git-fixes). - usb: gadget: f_uac2: validate input parameters (git-fixes). - usb: gadget: pch_udc: Check for DMA mapping error (git-fixes). - usb: gadget: pch_udc: Check if driver is present before calling ->setup() (git-fixes). - usb: gadget: pch_udc: Move pch_udc_init() to satisfy kernel doc (git-fixes). - usb: gadget: pch_udc: Replace cpu_to_le32() by lower_32_bits() (git-fixes). - usb: gadget: pch_udc: Revert d3cb25a12138 completely (git-fixes). - usb: gadget: r8a66597: Add missing null check on return from platform_get_resource (git-fixes). - usb: gadget: udc: amd5536udc_pci fix null-ptr-dereference (git-fixes). - usb: gadget: uvc: add bInterval checking for HS mode (git-fixes). - usb: musb: Fix suspend with devices connected for a64 (git-fixes). - usb: musb: fix PM reference leak in musb_irq_work() (git-fixes). - usb: pci-quirks: disable D3cold on xhci suspend for s2idle on AMD Renoire (bsc#1185840). - usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: sl811-hcd: improve misleading indentation (git-fixes). - usb: typec: Remove vdo[3] part of tps6598x_rx_identity_reg struct (git-fixes). - usb: typec: tcpci: Check ROLE_CONTROL while interpreting CC_STATUS (git-fixes). - usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply (git-fixes). - usb: typec: tcpm: Honour pSnkStdby requirement during negotiation (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: webcam: Invalid size of Processing Unit Descriptor (git-fixes). - usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (git-fixes). - usb: xhci-mtk: improve bandwidth scheduling with TT (git-fixes). - usb: xhci-mtk: remove or operator for setting schedule parameters (git-fixes). - usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing (git-fixes). - usb: xhci: Fix port minor revision (git-fixes). - usb: xhci: Increase timeout for HC halt (git-fixes). - usb: xhci: do not perform Soft Retry for some xHCI hosts (git-fixes). - usbip: Fix incorrect double assignment to udc->ud.tcp_rx (git-fixes). - usbip: fix stub_dev to check for stream socket (git-fixes). - usbip: fix stub_dev usbip_sockfd_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd attach_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd to check for stream socket (git-fixes). - usbip: fix vudc to check for stream socket (git-fixes). - usbip: fix vudc usbip_sockfd_store races leading to gpf (git-fixes). - usbip: tools: fix build error for multiple definition (git-fixes). - usbip: vhci_hcd fix shift out-of-bounds in vhci_hub_control() (git-fixes). - use __netdev_notify_peers in ibmvnic (bsc#1183871 ltc#192139). - veth: Store queue_mapping independently of XDP prog presence (git-fixes). - vfio-pci/zdev: fix possible segmentation fault issue (git-fixes). - vfio/iommu_type1: Populate full dirty when detach non-pinned group (bsc#1183326). - vfio/mdev: Do not allow a mdev_type to have a NULL parent pointer (git-fixes). - vfio/mdev: Make to_mdev_device() into a static inline (git-fixes). - vfio/pci: Add missing range check in vfio_pci_mmap (git-fixes). - vfio/pci: Move VGA and VF initialization to functions (git-fixes). - vfio/pci: Re-order vfio_pci_probe() (git-fixes). - vgacon: Record video mode changes with VT_RESIZEX (git-fixes). - video: fbdev: acornfb: remove free_unused_pages() (bsc#1152489) - video: hyperv_fb: Add ratelimit on error message (bsc#1185725). - video: hyperv_fb: Fix a double free in hvfb_probe (git-fixes). - virt_wifi: Return micros for BSS TSF values (git-fixes). - virtiofs: fix memory leak in virtio_fs_probe() (bsc#1185558). - vrf: fix a comment about loopback device (git-fixes). - vt/consolemap: do font sum unsigned (git-fixes). - vxlan: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - vxlan: move debug check after netdev unregister (git-fixes). - watchdog/softlockup: Remove obsolete check of last reported task (bsc#1185982). - watchdog/softlockup: report the overall time of softlockups (bsc#1185982). - watchdog: explicitly update timestamp when reporting softlockup (bsc#1185982). - watchdog: rename __touch_watchdog() to a better descriptive name (bsc#1185982). - whitespace cleanup - wl3501_cs: Fix out-of-bounds warnings in wl3501_mgmt_join (git-fixes). - wl3501_cs: Fix out-of-bounds warnings in wl3501_send_pkt (git-fixes). - wlcore: Fix command execute failure 19 for wl12xx (git-fixes). - workqueue: Minor follow-ups to the rescuer destruction change (bsc#1185911). - workqueue: Move the position of debug_work_activate() in __queue_work() (bsc#1184893). - workqueue: more destroy_workqueue() fixes (bsc#1185911). - x86,swiotlb: Adjust SWIOTLB bounce buffer size for SEV guests (bsc#1186219). - x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#1152489). - x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task (bsc#1152489). - x86/insn: Add some Intel instructions to the opcode map (bsc#1184760). - x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760). - x86/ioapic: Ignore IRQ2 again (bsc#1152489). - x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc() (bsc#1152489). - x86/microcode: Check for offline CPUs before requesting new microcode (bsc#1152489). - x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1152489). - x86/platform/uv: Set section block size for hubless architectures (bsc#1152489). - x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#1152489). - x86/sev-es: Invalidate the GHCB after completing VMGEXIT (bsc#1178134). - x86/sev-es: Move sev_es_put_ghcb() in prep for follow on patch (bsc#1178134). - x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall() (bsc#1152489). - xen/events: avoid handling the same event on two cpus at the same time (git-fixes). - xen/events: do not unmask an event channel when an eoi is pending (git-fixes). - xen/events: reset affinity of 2-level event when tearing it down (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: Provide private skb extensions for segmented and hw offloaded ESP packets (bsc#1176447). - xfs: group quota should return EDQUOT when prj quota enabled (bsc#1180980). - xhci: Do not use GFP_KERNEL in (potentially) atomic context (git-fixes). - xhci: Fix repeated xhci wake after suspend due to uncleared internal wake state (git-fixes). - xhci: Improve detection of device initiated wake signal (git-fixes). - xhci: check control context is valid before dereferencing it (git-fixes). - xhci: fix potential array out of bounds with several interrupters (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). cluster-md-kmp-default-5.3.18-59.5.2.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True dlm-kmp-default-5.3.18-59.5.2.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True gfs2-kmp-default-5.3.18-59.5.2.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True kernel-debug-5.3.18-59.5.2.nosrc.rpm True kernel-debug-5.3.18-59.5.2.x86_64.rpm True kernel-debug-devel-5.3.18-59.5.2.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-5.3.18-59.5.2.nosrc.rpm True kernel-default-5.3.18-59.5.2.x86_64.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.src.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.x86_64.rpm True kernel-default-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-extra-5.3.18-59.5.2.x86_64.rpm True kernel-default-livepatch-5.3.18-59.5.2.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-default-optional-5.3.18-59.5.2.x86_64.rpm True kernel-devel-5.3.18-59.5.2.noarch.rpm True kernel-docs-5.3.18-59.5.2.noarch.rpm True kernel-docs-5.3.18-59.5.2.nosrc.rpm True kernel-docs-html-5.3.18-59.5.2.noarch.rpm True kernel-kvmsmall-5.3.18-59.5.2.nosrc.rpm True kernel-kvmsmall-5.3.18-59.5.2.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.5.2.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-macros-5.3.18-59.5.2.noarch.rpm True kernel-obs-build-5.3.18-59.5.1.src.rpm True kernel-obs-build-5.3.18-59.5.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.5.1.src.rpm True kernel-obs-qa-5.3.18-59.5.1.x86_64.rpm True kernel-preempt-5.3.18-59.5.2.nosrc.rpm True kernel-preempt-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-devel-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-extra-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.5.2.x86_64.rpm True kernel-preempt-optional-5.3.18-59.5.2.x86_64.rpm True kernel-source-5.3.18-59.5.2.noarch.rpm True kernel-source-5.3.18-59.5.2.src.rpm True kernel-source-vanilla-5.3.18-59.5.2.noarch.rpm True kernel-syms-5.3.18-59.5.1.src.rpm True kernel-syms-5.3.18-59.5.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.5.2.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.5.2.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.5.2.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.5.2.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.5.2.s390x.rpm True dlm-kmp-default-5.3.18-59.5.2.s390x.rpm True gfs2-kmp-default-5.3.18-59.5.2.s390x.rpm True kernel-default-5.3.18-59.5.2.s390x.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.s390x.rpm True kernel-default-devel-5.3.18-59.5.2.s390x.rpm True kernel-default-extra-5.3.18-59.5.2.s390x.rpm True kernel-default-livepatch-5.3.18-59.5.2.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.s390x.rpm True kernel-default-optional-5.3.18-59.5.2.s390x.rpm True kernel-obs-build-5.3.18-59.5.1.s390x.rpm True kernel-obs-qa-5.3.18-59.5.1.s390x.rpm True kernel-syms-5.3.18-59.5.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.5.2.nosrc.rpm True kernel-zfcpdump-5.3.18-59.5.2.s390x.rpm True kselftests-kmp-default-5.3.18-59.5.2.s390x.rpm True ocfs2-kmp-default-5.3.18-59.5.2.s390x.rpm True reiserfs-kmp-default-5.3.18-59.5.2.s390x.rpm True cluster-md-kmp-default-5.3.18-59.5.2.ppc64le.rpm True dlm-kmp-default-5.3.18-59.5.2.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-5.3.18-59.5.2.ppc64le.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.ppc64le.rpm True kernel-default-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-extra-5.3.18-59.5.2.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.5.2.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-default-optional-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.5.2.ppc64le.rpm True kernel-obs-build-5.3.18-59.5.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.5.1.ppc64le.rpm True kernel-syms-5.3.18-59.5.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.5.2.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.5.2.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.5.2.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.5.2.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-default-5.3.18-59.5.2.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-default-5.3.18-59.5.2.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-5.3.18-59.5.2.nosrc.rpm True kernel-64kb-devel-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-extra-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-64kb-optional-5.3.18-59.5.2.aarch64.rpm True kernel-default-5.3.18-59.5.2.aarch64.rpm True kernel-default-base-5.3.18-59.5.2.18.2.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.5.2.18.2.2.aarch64.rpm True kernel-default-devel-5.3.18-59.5.2.aarch64.rpm True kernel-default-extra-5.3.18-59.5.2.aarch64.rpm True kernel-default-livepatch-5.3.18-59.5.2.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-default-optional-5.3.18-59.5.2.aarch64.rpm True kernel-obs-build-5.3.18-59.5.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.5.1.aarch64.rpm True kernel-preempt-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-devel-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-extra-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.5.2.aarch64.rpm True kernel-preempt-optional-5.3.18-59.5.2.aarch64.rpm True kernel-syms-5.3.18-59.5.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True kselftests-kmp-default-5.3.18-59.5.2.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.5.2.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.5.2.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.5.2.aarch64.rpm True openSUSE-SLE-15.3-2021-1883 moderate SUSE Updates openSUSE-SLE 15.3 This update for file-roller fixes the following issues: - Prevent segmentation fault while displaying error messages when trying to extract broken/corrupted files. (bsc#1186435) file-roller-3.32.5-3.3.1.src.rpm file-roller-3.32.5-3.3.1.x86_64.rpm file-roller-lang-3.32.5-3.3.1.noarch.rpm file-roller-3.32.5-3.3.1.s390x.rpm file-roller-3.32.5-3.3.1.ppc64le.rpm file-roller-3.32.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1846 moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issue: - Provide some missing binaries from `mozilla-nss` not added in `SLE-Module-Basesystem_15-SP3`. (bsc#1185910) libfreebl3-3.53.1-3.53.1.x86_64.rpm libfreebl3-32bit-3.53.1-3.53.1.x86_64.rpm libfreebl3-hmac-3.53.1-3.53.1.x86_64.rpm libfreebl3-hmac-32bit-3.53.1-3.53.1.x86_64.rpm libsoftokn3-3.53.1-3.53.1.x86_64.rpm libsoftokn3-32bit-3.53.1-3.53.1.x86_64.rpm libsoftokn3-hmac-3.53.1-3.53.1.x86_64.rpm libsoftokn3-hmac-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-3.53.1-3.53.1.src.rpm mozilla-nss-3.53.1-3.53.1.x86_64.rpm mozilla-nss-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-certs-3.53.1-3.53.1.x86_64.rpm mozilla-nss-certs-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-devel-3.53.1-3.53.1.x86_64.rpm mozilla-nss-sysinit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.53.1-3.53.1.x86_64.rpm mozilla-nss-tools-3.53.1-3.53.1.x86_64.rpm libfreebl3-3.53.1-3.53.1.s390x.rpm libfreebl3-hmac-3.53.1-3.53.1.s390x.rpm libsoftokn3-3.53.1-3.53.1.s390x.rpm libsoftokn3-hmac-3.53.1-3.53.1.s390x.rpm mozilla-nss-3.53.1-3.53.1.s390x.rpm mozilla-nss-certs-3.53.1-3.53.1.s390x.rpm mozilla-nss-devel-3.53.1-3.53.1.s390x.rpm mozilla-nss-sysinit-3.53.1-3.53.1.s390x.rpm mozilla-nss-tools-3.53.1-3.53.1.s390x.rpm libfreebl3-3.53.1-3.53.1.ppc64le.rpm libfreebl3-hmac-3.53.1-3.53.1.ppc64le.rpm libsoftokn3-3.53.1-3.53.1.ppc64le.rpm libsoftokn3-hmac-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-certs-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-devel-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-sysinit-3.53.1-3.53.1.ppc64le.rpm mozilla-nss-tools-3.53.1-3.53.1.ppc64le.rpm libfreebl3-3.53.1-3.53.1.aarch64.rpm libfreebl3-hmac-3.53.1-3.53.1.aarch64.rpm libsoftokn3-3.53.1-3.53.1.aarch64.rpm libsoftokn3-hmac-3.53.1-3.53.1.aarch64.rpm mozilla-nss-3.53.1-3.53.1.aarch64.rpm mozilla-nss-certs-3.53.1-3.53.1.aarch64.rpm mozilla-nss-devel-3.53.1-3.53.1.aarch64.rpm mozilla-nss-sysinit-3.53.1-3.53.1.aarch64.rpm mozilla-nss-tools-3.53.1-3.53.1.aarch64.rpm openSUSE-SLE-15.3-2021-2249 low SUSE Updates openSUSE-SLE 15.3 This update for gnutls does not fix any user visible issues. It is therefore optional to install. gnutls-3.6.7-14.13.5.src.rpm gnutls-3.6.7-14.13.5.x86_64.rpm gnutls-guile-3.6.7-14.13.5.x86_64.rpm libgnutls-devel-3.6.7-14.13.5.x86_64.rpm libgnutls-devel-32bit-3.6.7-14.13.5.x86_64.rpm libgnutls30-3.6.7-14.13.5.x86_64.rpm libgnutls30-32bit-3.6.7-14.13.5.x86_64.rpm libgnutls30-hmac-3.6.7-14.13.5.x86_64.rpm libgnutls30-hmac-32bit-3.6.7-14.13.5.x86_64.rpm libgnutlsxx-devel-3.6.7-14.13.5.x86_64.rpm libgnutlsxx28-3.6.7-14.13.5.x86_64.rpm gnutls-3.6.7-14.13.5.s390x.rpm gnutls-guile-3.6.7-14.13.5.s390x.rpm libgnutls-devel-3.6.7-14.13.5.s390x.rpm libgnutls30-3.6.7-14.13.5.s390x.rpm libgnutls30-hmac-3.6.7-14.13.5.s390x.rpm libgnutlsxx-devel-3.6.7-14.13.5.s390x.rpm libgnutlsxx28-3.6.7-14.13.5.s390x.rpm gnutls-3.6.7-14.13.5.ppc64le.rpm gnutls-guile-3.6.7-14.13.5.ppc64le.rpm libgnutls-devel-3.6.7-14.13.5.ppc64le.rpm libgnutls30-3.6.7-14.13.5.ppc64le.rpm libgnutls30-hmac-3.6.7-14.13.5.ppc64le.rpm libgnutlsxx-devel-3.6.7-14.13.5.ppc64le.rpm libgnutlsxx28-3.6.7-14.13.5.ppc64le.rpm gnutls-3.6.7-14.13.5.aarch64.rpm gnutls-guile-3.6.7-14.13.5.aarch64.rpm libgnutls-devel-3.6.7-14.13.5.aarch64.rpm libgnutls30-3.6.7-14.13.5.aarch64.rpm libgnutls30-hmac-3.6.7-14.13.5.aarch64.rpm libgnutlsxx-devel-3.6.7-14.13.5.aarch64.rpm libgnutlsxx28-3.6.7-14.13.5.aarch64.rpm openSUSE-SLE-15.3-2021-2285 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-apparmor fixes the following issues: - Fixes a crash when the profiles list was empty (bsc#1186330) yast2-apparmor-4.3.2-3.3.1.noarch.rpm yast2-apparmor-4.3.2-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2286 moderate SUSE Updates openSUSE-SLE 15.3 This update for dosfstools fixes the following issue: - Fixed a bug that was causing an installation issue when trying to create an EFI partition on an NVMe-over-Fabrics device (bsc#1172863) dosfstools-4.1-3.3.1.src.rpm dosfstools-4.1-3.3.1.x86_64.rpm dosfstools-4.1-3.3.1.s390x.rpm dosfstools-4.1-3.3.1.ppc64le.rpm dosfstools-4.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2870 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-packager fixes the following issues: - Corrects package selection when on "armv7l" (bsc#1183795) yast2-packager-4.3.22-3.3.6.src.rpm yast2-packager-4.3.22-3.3.6.x86_64.rpm yast2-packager-4.3.22-3.3.6.s390x.rpm yast2-packager-4.3.22-3.3.6.ppc64le.rpm yast2-packager-4.3.22-3.3.6.aarch64.rpm openSUSE-SLE-15.3-2021-2171 moderate SUSE Updates openSUSE-SLE 15.3 This update for btrfsmaintenance fixes the following issues: - Remove [Install] section from btrfsmaintenance. (bsc#1178874) btrfsmaintenance-0.4.2-3.3.1.noarch.rpm btrfsmaintenance-0.4.2-3.3.1.src.rpm openSUSE-SLE-15.3-2021-1958 moderate SUSE Updates openSUSE-SLE 15.3 This update for libjpeg-turbo fixes the following issues: - CVE-2020-17541: Fixed a stack-based buffer overflow in the "transform" component (bsc#1186764). libjpeg-turbo-1.5.3-5.18.1.src.rpm libjpeg-turbo-1.5.3-5.18.1.x86_64.rpm libjpeg62-32bit-62.2.0-5.18.1.x86_64.rpm libjpeg62-62.2.0-5.18.1.x86_64.rpm libjpeg62-devel-32bit-62.2.0-5.18.1.x86_64.rpm libjpeg62-devel-62.2.0-5.18.1.x86_64.rpm libjpeg62-turbo-1.5.3-5.18.1.src.rpm libjpeg62-turbo-1.5.3-5.18.1.x86_64.rpm libjpeg8-32bit-8.1.2-5.18.1.x86_64.rpm libjpeg8-8.1.2-5.18.1.x86_64.rpm libjpeg8-devel-32bit-8.1.2-5.18.1.x86_64.rpm libjpeg8-devel-8.1.2-5.18.1.x86_64.rpm libturbojpeg0-32bit-8.1.2-5.18.1.x86_64.rpm libturbojpeg0-8.1.2-5.18.1.x86_64.rpm libjpeg-turbo-1.5.3-5.18.1.s390x.rpm libjpeg62-62.2.0-5.18.1.s390x.rpm libjpeg62-devel-62.2.0-5.18.1.s390x.rpm libjpeg62-turbo-1.5.3-5.18.1.s390x.rpm libjpeg8-8.1.2-5.18.1.s390x.rpm libjpeg8-devel-8.1.2-5.18.1.s390x.rpm libturbojpeg0-8.1.2-5.18.1.s390x.rpm libjpeg-turbo-1.5.3-5.18.1.ppc64le.rpm libjpeg62-62.2.0-5.18.1.ppc64le.rpm libjpeg62-devel-62.2.0-5.18.1.ppc64le.rpm libjpeg62-turbo-1.5.3-5.18.1.ppc64le.rpm libjpeg8-8.1.2-5.18.1.ppc64le.rpm libjpeg8-devel-8.1.2-5.18.1.ppc64le.rpm libturbojpeg0-8.1.2-5.18.1.ppc64le.rpm libjpeg-turbo-1.5.3-5.18.1.aarch64.rpm libjpeg62-62.2.0-5.18.1.aarch64.rpm libjpeg62-devel-62.2.0-5.18.1.aarch64.rpm libjpeg62-turbo-1.5.3-5.18.1.aarch64.rpm libjpeg8-8.1.2-5.18.1.aarch64.rpm libjpeg8-devel-8.1.2-5.18.1.aarch64.rpm libturbojpeg0-8.1.2-5.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-2414 important SUSE Updates openSUSE-SLE 15.3 This update for caribou fixes the following issues: Security issue fixed: - CVE-2021-3567: Fixed a segfault when attempting to use shifted characters (bsc#1186617). caribou-0.4.21-12.5.1.src.rpm caribou-0.4.21-12.5.1.x86_64.rpm caribou-common-0.4.21-12.5.1.x86_64.rpm caribou-devel-0.4.21-12.5.1.x86_64.rpm caribou-gtk-module-common-0.4.21-12.5.1.x86_64.rpm caribou-gtk2-module-0.4.21-12.5.1.x86_64.rpm caribou-gtk3-module-0.4.21-12.5.1.x86_64.rpm caribou-lang-0.4.21-12.5.1.noarch.rpm libcaribou0-0.4.21-12.5.1.x86_64.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.x86_64.rpm caribou-0.4.21-12.5.1.s390x.rpm caribou-common-0.4.21-12.5.1.s390x.rpm caribou-devel-0.4.21-12.5.1.s390x.rpm caribou-gtk-module-common-0.4.21-12.5.1.s390x.rpm caribou-gtk2-module-0.4.21-12.5.1.s390x.rpm caribou-gtk3-module-0.4.21-12.5.1.s390x.rpm libcaribou0-0.4.21-12.5.1.s390x.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.s390x.rpm caribou-0.4.21-12.5.1.ppc64le.rpm caribou-common-0.4.21-12.5.1.ppc64le.rpm caribou-devel-0.4.21-12.5.1.ppc64le.rpm caribou-gtk-module-common-0.4.21-12.5.1.ppc64le.rpm caribou-gtk2-module-0.4.21-12.5.1.ppc64le.rpm caribou-gtk3-module-0.4.21-12.5.1.ppc64le.rpm libcaribou0-0.4.21-12.5.1.ppc64le.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.ppc64le.rpm caribou-0.4.21-12.5.1.aarch64.rpm caribou-common-0.4.21-12.5.1.aarch64.rpm caribou-devel-0.4.21-12.5.1.aarch64.rpm caribou-gtk-module-common-0.4.21-12.5.1.aarch64.rpm caribou-gtk2-module-0.4.21-12.5.1.aarch64.rpm caribou-gtk3-module-0.4.21-12.5.1.aarch64.rpm libcaribou0-0.4.21-12.5.1.aarch64.rpm typelib-1_0-Caribou-1_0-0.4.21-12.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-1879 important SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: libzypp was updated to 17.26.0: - Work around download.o.o broken https redirects. - Allow trusted repos to add additional signing keys (bsc#1184326) Repositories signed with a trusted gpg key may import additional package signing keys. This is needed if different keys were used to sign the the packages shipped by the repository. - MediaCurl: Fix logging of redirects. - Use 15.3 resolver problem and solution texts on all distros. - $ZYPP_LOCK_TIMEOUT: Let negative values wait forever for the zypp lock (bsc#1184399) Helps boot time services like 'zypper purge-kernels' to wait for the zypp lock until other services using zypper have completed. - Fix purge-kernels is broken in Leap 15.3 (bsc#1185325) Leap 15.3 introduces a new kernel package called kernel-flavour-extra, which contain kmp's. Currently kmp's are detected by name ".*-kmp(-.*)?" but this does not work which those new packages. This patch fixes the problem by checking packages for kmod(*) and ksym(*) provides and only falls back to name checking if the package in question does not provide one of those. - Introduce zypp-runpurge, a tool to run purge-kernels on testcases. zypper was updated to 1.14.45: - Fix service detection with cgroupv2 (bsc#1184997) - Add hints to 'trust GPG key' prompt. - Add report when receiving new package signing keys from a trusted repo (bsc#1184326) - Added translation using Weblate (Kabyle) libsolv-0.7.19-6.1.src.rpm True libsolv-demo-0.7.19-6.1.x86_64.rpm True libsolv-devel-0.7.19-6.1.x86_64.rpm True libsolv-tools-0.7.19-6.1.x86_64.rpm True libzypp-17.26.0-9.1.src.rpm True libzypp-17.26.0-9.1.x86_64.rpm True libzypp-devel-17.26.0-9.1.x86_64.rpm True libzypp-devel-doc-17.26.0-9.1.x86_64.rpm True perl-solv-0.7.19-6.1.x86_64.rpm True python-solv-0.7.19-6.1.x86_64.rpm True python3-solv-0.7.19-6.1.x86_64.rpm True ruby-solv-0.7.19-6.1.x86_64.rpm True zypper-1.14.45-10.1.src.rpm True zypper-1.14.45-10.1.x86_64.rpm True zypper-aptitude-1.14.45-10.1.noarch.rpm True zypper-log-1.14.45-10.1.noarch.rpm True zypper-needs-restarting-1.14.45-10.1.noarch.rpm True libsolv-demo-0.7.19-6.1.s390x.rpm True libsolv-devel-0.7.19-6.1.s390x.rpm True libsolv-tools-0.7.19-6.1.s390x.rpm True libzypp-17.26.0-9.1.s390x.rpm True libzypp-devel-17.26.0-9.1.s390x.rpm True libzypp-devel-doc-17.26.0-9.1.s390x.rpm True perl-solv-0.7.19-6.1.s390x.rpm True python-solv-0.7.19-6.1.s390x.rpm True python3-solv-0.7.19-6.1.s390x.rpm True ruby-solv-0.7.19-6.1.s390x.rpm True zypper-1.14.45-10.1.s390x.rpm True libsolv-demo-0.7.19-6.1.ppc64le.rpm True libsolv-devel-0.7.19-6.1.ppc64le.rpm True libsolv-tools-0.7.19-6.1.ppc64le.rpm True libzypp-17.26.0-9.1.ppc64le.rpm True libzypp-devel-17.26.0-9.1.ppc64le.rpm True libzypp-devel-doc-17.26.0-9.1.ppc64le.rpm True perl-solv-0.7.19-6.1.ppc64le.rpm True python-solv-0.7.19-6.1.ppc64le.rpm True python3-solv-0.7.19-6.1.ppc64le.rpm True ruby-solv-0.7.19-6.1.ppc64le.rpm True zypper-1.14.45-10.1.ppc64le.rpm True libsolv-demo-0.7.19-6.1.aarch64.rpm True libsolv-devel-0.7.19-6.1.aarch64.rpm True libsolv-tools-0.7.19-6.1.aarch64.rpm True libzypp-17.26.0-9.1.aarch64.rpm True libzypp-devel-17.26.0-9.1.aarch64.rpm True libzypp-devel-doc-17.26.0-9.1.aarch64.rpm True perl-solv-0.7.19-6.1.aarch64.rpm True python-solv-0.7.19-6.1.aarch64.rpm True python3-solv-0.7.19-6.1.aarch64.rpm True ruby-solv-0.7.19-6.1.aarch64.rpm True zypper-1.14.45-10.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2090 low SUSE Updates openSUSE-SLE 15.3 This update for p7zip fixes the following issues: - Initial shipping of p7zip-full (bsc#1185910) p7zip-16.02-14.7.1.src.rpm p7zip-16.02-14.7.1.x86_64.rpm p7zip-doc-16.02-14.7.1.noarch.rpm p7zip-full-16.02-14.7.1.x86_64.rpm p7zip-16.02-14.7.1.s390x.rpm p7zip-full-16.02-14.7.1.s390x.rpm p7zip-16.02-14.7.1.ppc64le.rpm p7zip-full-16.02-14.7.1.ppc64le.rpm p7zip-16.02-14.7.1.aarch64.rpm p7zip-full-16.02-14.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2116 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-configs contains the following fix: - Sync package in Public Cloud 15-SP3. google-guest-configs-20210317.00-1.13.1.noarch.rpm google-guest-configs-20210317.00-1.13.1.src.rpm openSUSE-SLE-15.3-2021-1995 important SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: Upgrade to 1.4.17 - CVE-2021-29505: Fixed potential code execution when unmarshalling with XStream instances using an uninitialized security framework (bsc#1186651) xstream-1.4.17-3.11.2.noarch.rpm xstream-1.4.17-3.11.2.src.rpm xstream-benchmark-1.4.17-3.11.2.noarch.rpm xstream-javadoc-1.4.17-3.11.2.noarch.rpm xstream-parent-1.4.17-3.11.2.noarch.rpm openSUSE-SLE-15.3-2021-1935 moderate SUSE Updates openSUSE-SLE 15.3 This update for gzip fixes the following issue: - gzip had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) gzip-1.10-7.1.src.rpm gzip-1.10-7.1.x86_64.rpm gzip-1.10-7.1.s390x.rpm gzip-1.10-7.1.ppc64le.rpm gzip-1.10-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-1936 moderate SUSE Updates openSUSE-SLE 15.3 This update for numactl fixes the following issue: - numactl had a lower release number in 15 sp3 than in earlier service packs, which could lead to migration issues. (bsc#1186642) libnuma-devel-2.0.14-7.1.x86_64.rpm libnuma1-2.0.14-7.1.x86_64.rpm libnuma1-32bit-2.0.14-7.1.x86_64.rpm numactl-2.0.14-7.1.src.rpm numactl-2.0.14-7.1.x86_64.rpm libnuma-devel-2.0.14-7.1.s390x.rpm libnuma1-2.0.14-7.1.s390x.rpm numactl-2.0.14-7.1.s390x.rpm libnuma-devel-2.0.14-7.1.ppc64le.rpm libnuma1-2.0.14-7.1.ppc64le.rpm numactl-2.0.14-7.1.ppc64le.rpm libnuma-devel-2.0.14-7.1.aarch64.rpm libnuma1-2.0.14-7.1.aarch64.rpm numactl-2.0.14-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2923 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: Update to Xen 4.13.3 general bug fix release (bsc#1027519). Security issues fixed: - CVE-2021-28693: xen/arm: Boot modules are not scrubbed (bsc#1186428) - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling (bsc#1186429) - CVE-2021-0089: xen: Speculative Code Store Bypass (bsc#1186433) - CVE-2021-28690: xen: x86: TSX Async Abort protections not restored after S3 (bsc#1186434) - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: IOMMU page mapping issues on x86 (XSA-378)(bsc#1189373). - CVE-2021-28697: grant table v2 status pages may remain accessible after de-allocation (XSA-379)(bsc#1189376). - CVE-2021-28698: long running loops in grant table handling (XSA-380)(bsc#1189378). - CVE-2021-28699: inadequate grant-v2 status frames array bounds check (XSA-382)(bsc#1189380). - CVE-2021-28700: No memory limit for dom0less domUs (XSA-383)(bsc#1189381). Other issues fixed: - Fixed "Panic on CPU 0: IO-APIC + timer doesn't work!" (bsc#1180491) - Fixed an issue with xencommons, where file format expecations by fillup did not allign (bsc#1185682) - Fixed shell macro expansion in the spec file, so that ExecStart= in xendomains-wait-disks.service is created correctly (bsc#1183877) - Upstream bug fixes (bsc#1027519) - Fixed Xen SLES11SP4 guest hangs on cluster (bsc#1188050). - xl monitoring process exits during xl save -p|-c keep the monitoring process running to cleanup the domU during shutdown (bsc#1176189). - Dom0 hangs when pinning CPUs for dom0 with HVM guest (bsc#1179246). - Some long deprecated commands were finally removed in qemu6. Adjust libxl to use supported commands (bsc#1183243). - Update logrotate.conf, move global options into per-file sections to prevent globbering of global state (bsc#1187406). - Prevent superpage allocation in the LAPIC and ACPI_INFO range (bsc#1189882). xen-4.14.2_04-3.9.1.src.rpm xen-4.14.2_04-3.9.1.x86_64.rpm xen-devel-4.14.2_04-3.9.1.x86_64.rpm xen-doc-html-4.14.2_04-3.9.1.x86_64.rpm xen-libs-32bit-4.14.2_04-3.9.1.x86_64.rpm xen-libs-4.14.2_04-3.9.1.x86_64.rpm xen-tools-4.14.2_04-3.9.1.x86_64.rpm xen-tools-domU-4.14.2_04-3.9.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.14.2_04-3.9.1.noarch.rpm xen-4.14.2_04-3.9.1.aarch64.rpm xen-devel-4.14.2_04-3.9.1.aarch64.rpm xen-doc-html-4.14.2_04-3.9.1.aarch64.rpm xen-libs-4.14.2_04-3.9.1.aarch64.rpm xen-tools-4.14.2_04-3.9.1.aarch64.rpm xen-tools-domU-4.14.2_04-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2248 low SUSE Updates openSUSE-SLE 15.3 This update for sysstat fixes the following issues: - Dropped systemd runtime requirement (bsc#1186827) sysstat-12.0.2-3.30.1.src.rpm sysstat-12.0.2-3.30.1.x86_64.rpm sysstat-isag-12.0.2-3.30.1.x86_64.rpm sysstat-12.0.2-3.30.1.s390x.rpm sysstat-isag-12.0.2-3.30.1.s390x.rpm sysstat-12.0.2-3.30.1.ppc64le.rpm sysstat-isag-12.0.2-3.30.1.ppc64le.rpm sysstat-12.0.2-3.30.1.aarch64.rpm sysstat-isag-12.0.2-3.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-1937 moderate SUSE Updates openSUSE-SLE 15.3 This update for nghttp2 fixes the following issue: - The (lib)nghttp2 packages had a lower release number in SUSE Linux Enterprise 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libnghttp2-14-1.40.0-6.1.x86_64.rpm libnghttp2-14-32bit-1.40.0-6.1.x86_64.rpm libnghttp2-devel-1.40.0-6.1.x86_64.rpm libnghttp2_asio-devel-1.40.0-6.1.x86_64.rpm libnghttp2_asio1-1.40.0-6.1.x86_64.rpm libnghttp2_asio1-32bit-1.40.0-6.1.x86_64.rpm nghttp2-1.40.0-6.1.src.rpm nghttp2-1.40.0-6.1.x86_64.rpm libnghttp2-14-1.40.0-6.1.s390x.rpm libnghttp2-devel-1.40.0-6.1.s390x.rpm libnghttp2_asio-devel-1.40.0-6.1.s390x.rpm libnghttp2_asio1-1.40.0-6.1.s390x.rpm nghttp2-1.40.0-6.1.s390x.rpm libnghttp2-14-1.40.0-6.1.ppc64le.rpm libnghttp2-devel-1.40.0-6.1.ppc64le.rpm libnghttp2_asio-devel-1.40.0-6.1.ppc64le.rpm libnghttp2_asio1-1.40.0-6.1.ppc64le.rpm nghttp2-1.40.0-6.1.ppc64le.rpm libnghttp2-14-1.40.0-6.1.aarch64.rpm libnghttp2-devel-1.40.0-6.1.aarch64.rpm libnghttp2_asio-devel-1.40.0-6.1.aarch64.rpm libnghttp2_asio1-1.40.0-6.1.aarch64.rpm nghttp2-1.40.0-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2307 moderate SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fixed an issue with an incorrect output from the 'dasdfmt' command when *not* using "YaST mode". (bsc#1182816, bsc#1182820) - If more DASD volumes are to be formatted than are allowed by the "maximum number to do in parallel" parameter, dasdfmt waits until one of the child processes ends before starting another. For YaST to be able to figure out how many cylinders a particular DASD volume has, that information has to be output for all of the volumes, before any of the child processes are spawned. (bsc#1187012) libekmfweb1-2.15.1-8.5.1.s390x.rpm libekmfweb1-devel-2.15.1-8.5.1.s390x.rpm osasnmpd-2.15.1-8.5.1.s390x.rpm s390-tools-2.15.1-8.5.1.s390x.rpm s390-tools-2.15.1-8.5.1.src.rpm s390-tools-hmcdrvfs-2.15.1-8.5.1.s390x.rpm s390-tools-zdsfs-2.15.1-8.5.1.s390x.rpm openSUSE-SLE-15.3-2021-1941 moderate SUSE Updates openSUSE-SLE 15.3 This update for sysconfig fixes the following issue: - sysconfig had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) sysconfig-0.85.6-6.1.src.rpm sysconfig-0.85.6-6.1.x86_64.rpm sysconfig-netconfig-0.85.6-6.1.x86_64.rpm sysconfig-0.85.6-6.1.s390x.rpm sysconfig-netconfig-0.85.6-6.1.s390x.rpm sysconfig-0.85.6-6.1.ppc64le.rpm sysconfig-netconfig-0.85.6-6.1.ppc64le.rpm sysconfig-0.85.6-6.1.aarch64.rpm sysconfig-netconfig-0.85.6-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-1946 moderate SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect fixes the following issue: - SUSEConnect had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) SUSEConnect-0.3.29-10.1.src.rpm SUSEConnect-0.3.29-10.1.x86_64.rpm SUSEConnect-0.3.29-10.1.s390x.rpm SUSEConnect-0.3.29-10.1.ppc64le.rpm SUSEConnect-0.3.29-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-2197 moderate SUSE Updates openSUSE-SLE 15.3 Deliver package 'anthy' to SLE 15 SP3 channels so the ibus-anthy can be delivered for SP3 too. (jsc#ECO-3104) anthy-9100h-8.3.1.src.rpm anthy-9100h-8.3.1.x86_64.rpm anthy-devel-9100h-8.3.1.x86_64.rpm libanthy0-32bit-9100h-8.3.1.x86_64.rpm libanthy0-9100h-8.3.1.x86_64.rpm anthy-9100h-8.3.1.s390x.rpm anthy-devel-9100h-8.3.1.s390x.rpm libanthy0-9100h-8.3.1.s390x.rpm anthy-9100h-8.3.1.ppc64le.rpm anthy-devel-9100h-8.3.1.ppc64le.rpm libanthy0-9100h-8.3.1.ppc64le.rpm anthy-9100h-8.3.1.aarch64.rpm anthy-devel-9100h-8.3.1.aarch64.rpm libanthy0-9100h-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2555 moderate SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: Update from version 2.26.2 to version 2.31.1 (jsc#SLE-18152) Security fixes: - CVE-2021-21300: On case-insensitive file systems with support for symbolic links, if Git is configured globally to apply delay-capable clean/smudge filters (such as Git LFS), Git could run remote code during a clone. (bsc#1183026) Non security changes: - Add `sysusers` file to create `git-daemon` user. - Remove `perl-base` and `openssh-server` dependency on `git-core`and provide a `perl-Git` package. (jsc#SLE-17838) - `fsmonitor` bug fixes - Fix `git bisect` to take an annotated tag as a good/bad endpoint - Fix a corner case in `git mv` on case insensitive systems - Require only `openssh-clients` where possible (like Tumbleweed or SUSE Linux Enterprise >= 15 SP3). (bsc#1183580) - Drop `rsync` requirement, not necessary anymore. - Use of `pack-redundant` command is discouraged and will trigger a warning. The replacement is `repack -d`. - The `--format=%(trailers)` mechanism gets enhanced to make it easier to design output for machine consumption. - No longer give message to choose between rebase or merge upon pull if the history `fast-forwards`. - The configuration variable `core.abbrev` can be set to `no` to force no abbreviation regardless of the hash algorithm - `git rev-parse` can be explicitly told to give output as absolute or relative path with the `--path-format=(absolute|relative)` option. - Bash completion update to make it easier for end-users to add completion for their custom `git` subcommands. - `git maintenance` learned to drive scheduled maintenance on platforms whose native scheduling methods are not 'cron'. - After expiring a reflog and making a single commit, the reflog for the branch would record a single entry that knows both `@{0}` and `@{1}`, but we failed to answer "what commit were we on?", i.e. `@{1}` - `git bundle` learns `--stdin` option to read its refs from the standard input. Also, it now does not lose refs when they point at the same object. - `git log` learned a new `--diff-merges=<how>` option. - `git ls-files` can and does show multiple entries when the index is unmerged, which is a source for confusion unless `-s/-u` option is in use. A new option `--deduplicate` has been introduced. - `git worktree list` now annotates worktrees as prunable, shows locked and prunable attributes in `--porcelain mode`, and gained a `--verbose` option. - `git clone` tries to locally check out the branch pointed at by HEAD of the remote repository after it is done, but the protocol did not convey the information necessary to do so when copying an empty repository. The protocol v2 learned how to do so. - There are other ways than `..` for a single token to denote a `commit range", namely `<rev>^!` and `<rev>^-<n>`, but `git range-diff` did not understand them. - The `git range-diff` command learned `--(left|right)-only` option to show only one side of the compared range. - `git mergetool` feeds three versions (base, local and remote) of a conflicted path unmodified. The command learned to optionally prepare these files with unconflicted parts already resolved. - The `.mailmap` is documented to be read only from the root level of a working tree, but a stray file in a bare repository also was read by accident, which has been corrected. - `git maintenance` tool learned a new `pack-refs` maintenance task. - Improved error message given when a configuration variable that is expected to have a boolean value. - Signed commits and tags now allow verification of objects, whose two object names (one in SHA-1, the other in SHA-256) are both signed. - `git rev-list` command learned `--disk-usage` option. - `git diff`, `git log` `--{skip,rotate}-to=<path>` allows the user to discard diff output for early paths or move them to the end of the output. - `git difftool` learned `--skip-to=<path>` option to restart an interrupted session from an arbitrary path. - `git grep` has been tweaked to be limited to the sparse checkout paths. - `git rebase --[no-]fork-point` gained a configuration variable `rebase.forkPoint` so that users do not have to keep specifying a non-default setting. - `git stash` did not work well in a sparsely checked out working tree. - Newline characters in the host and path part of `git://` URL are now forbidden. - `Userdiff` updates for PHP, Rust, CSS - Avoid administrator error leading to data loss with `git push --force-with-lease[=<ref>]` by introducing `--force-if-includes` - only pull `asciidoctor` for the default ruby version - The `--committer-date-is-author-date` option of `rebase` and `am` subcommands lost the e-mail address by mistake in 2.29 - The transport protocol v2 has become the default again - `git worktree` gained a `repair` subcommand, `git init --separate-git-dir` no longer corrupts administrative data related to linked worktrees - `git maintenance` introduced for repository maintenance tasks - `fetch.writeCommitGraph` is deemed to be still a bit too risky and is no longer part of the `feature.experimental` set. - The commands in the `diff` family honors the `diff.relative` configuration variable. - `git diff-files` has been taught to say paths that are marked as `intent-to-add` are new files, not modified from an empty blob. - `git gui` now allows opening work trees from the start-up dialog. - `git bugreport` reports what shell is in use. - Some repositories have commits that record wrong committer timezone; `git fast-import` has an option to pass these timestamps intact to allow recreating existing repositories as-is. - `git describe` will always use the `long` version when giving its output based misplaced tags - `git pull` issues a warning message until the `pull.rebase` configuration variable is explicitly given git-2.31.1-10.3.1.src.rpm git-2.31.1-10.3.1.x86_64.rpm git-arch-2.31.1-10.3.1.x86_64.rpm git-core-2.31.1-10.3.1.x86_64.rpm git-credential-gnome-keyring-2.31.1-10.3.1.x86_64.rpm git-credential-libsecret-2.31.1-10.3.1.x86_64.rpm git-cvs-2.31.1-10.3.1.x86_64.rpm git-daemon-2.31.1-10.3.1.x86_64.rpm git-doc-2.31.1-10.3.1.noarch.rpm git-email-2.31.1-10.3.1.x86_64.rpm git-gui-2.31.1-10.3.1.x86_64.rpm git-p4-2.31.1-10.3.1.x86_64.rpm git-svn-2.31.1-10.3.1.x86_64.rpm git-web-2.31.1-10.3.1.x86_64.rpm gitk-2.31.1-10.3.1.x86_64.rpm perl-Git-2.31.1-10.3.1.x86_64.rpm git-2.31.1-10.3.1.s390x.rpm git-arch-2.31.1-10.3.1.s390x.rpm git-core-2.31.1-10.3.1.s390x.rpm git-credential-gnome-keyring-2.31.1-10.3.1.s390x.rpm git-credential-libsecret-2.31.1-10.3.1.s390x.rpm git-cvs-2.31.1-10.3.1.s390x.rpm git-daemon-2.31.1-10.3.1.s390x.rpm git-email-2.31.1-10.3.1.s390x.rpm git-gui-2.31.1-10.3.1.s390x.rpm git-p4-2.31.1-10.3.1.s390x.rpm git-svn-2.31.1-10.3.1.s390x.rpm git-web-2.31.1-10.3.1.s390x.rpm gitk-2.31.1-10.3.1.s390x.rpm perl-Git-2.31.1-10.3.1.s390x.rpm git-2.31.1-10.3.1.ppc64le.rpm git-arch-2.31.1-10.3.1.ppc64le.rpm git-core-2.31.1-10.3.1.ppc64le.rpm git-credential-gnome-keyring-2.31.1-10.3.1.ppc64le.rpm git-credential-libsecret-2.31.1-10.3.1.ppc64le.rpm git-cvs-2.31.1-10.3.1.ppc64le.rpm git-daemon-2.31.1-10.3.1.ppc64le.rpm git-email-2.31.1-10.3.1.ppc64le.rpm git-gui-2.31.1-10.3.1.ppc64le.rpm git-p4-2.31.1-10.3.1.ppc64le.rpm git-svn-2.31.1-10.3.1.ppc64le.rpm git-web-2.31.1-10.3.1.ppc64le.rpm gitk-2.31.1-10.3.1.ppc64le.rpm perl-Git-2.31.1-10.3.1.ppc64le.rpm git-2.31.1-10.3.1.aarch64.rpm git-arch-2.31.1-10.3.1.aarch64.rpm git-core-2.31.1-10.3.1.aarch64.rpm git-credential-gnome-keyring-2.31.1-10.3.1.aarch64.rpm git-credential-libsecret-2.31.1-10.3.1.aarch64.rpm git-cvs-2.31.1-10.3.1.aarch64.rpm git-daemon-2.31.1-10.3.1.aarch64.rpm git-email-2.31.1-10.3.1.aarch64.rpm git-gui-2.31.1-10.3.1.aarch64.rpm git-p4-2.31.1-10.3.1.aarch64.rpm git-svn-2.31.1-10.3.1.aarch64.rpm git-web-2.31.1-10.3.1.aarch64.rpm gitk-2.31.1-10.3.1.aarch64.rpm perl-Git-2.31.1-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-1955 moderate SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issue: - webkit2gtk3 had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libjavascriptcoregtk-4_0-18-2.32.0-6.7.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.0-6.7.x86_64.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.0-6.7.x86_64.rpm libwebkit2gtk3-lang-2.32.0-6.7.noarch.rpm libwoff2common1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2common1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm libwoff2dec1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2dec1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm libwoff2enc1_0_2-1.0.2-3.2.1.x86_64.rpm libwoff2enc1_0_2-32bit-1.0.2-3.2.1.x86_64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.x86_64.rpm webkit-jsc-4-2.32.0-6.7.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.x86_64.rpm webkit2gtk3-2.32.0-6.7.src.rpm webkit2gtk3-devel-2.32.0-6.7.x86_64.rpm webkit2gtk3-minibrowser-2.32.0-6.7.x86_64.rpm woff2-1.0.2-3.2.1.src.rpm woff2-devel-1.0.2-3.2.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.s390x.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.s390x.rpm libwoff2common1_0_2-1.0.2-3.2.1.s390x.rpm libwoff2dec1_0_2-1.0.2-3.2.1.s390x.rpm libwoff2enc1_0_2-1.0.2-3.2.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.s390x.rpm webkit-jsc-4-2.32.0-6.7.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.s390x.rpm webkit2gtk3-devel-2.32.0-6.7.s390x.rpm webkit2gtk3-minibrowser-2.32.0-6.7.s390x.rpm woff2-devel-1.0.2-3.2.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.ppc64le.rpm libwoff2common1_0_2-1.0.2-3.2.1.ppc64le.rpm libwoff2dec1_0_2-1.0.2-3.2.1.ppc64le.rpm libwoff2enc1_0_2-1.0.2-3.2.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.ppc64le.rpm webkit-jsc-4-2.32.0-6.7.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.ppc64le.rpm webkit2gtk3-devel-2.32.0-6.7.ppc64le.rpm webkit2gtk3-minibrowser-2.32.0-6.7.ppc64le.rpm woff2-devel-1.0.2-3.2.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.0-6.7.aarch64.rpm libwebkit2gtk-4_0-37-2.32.0-6.7.aarch64.rpm libwoff2common1_0_2-1.0.2-3.2.1.aarch64.rpm libwoff2dec1_0_2-1.0.2-3.2.1.aarch64.rpm libwoff2enc1_0_2-1.0.2-3.2.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.0-6.7.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.0-6.7.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.0-6.7.aarch64.rpm webkit-jsc-4-2.32.0-6.7.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.0-6.7.aarch64.rpm webkit2gtk3-devel-2.32.0-6.7.aarch64.rpm webkit2gtk3-minibrowser-2.32.0-6.7.aarch64.rpm woff2-devel-1.0.2-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2091 moderate SUSE Updates openSUSE-SLE 15.3 This update for wget fixes the following issue: - When running recursively, wget will verify the length of the whole URL when saving the files. This will make it overwrite files with truncated names, throwing the following message: "The name is too long,... trying to shorten". (bsc#1181173) wget-1.20.3-3.12.1.src.rpm wget-1.20.3-3.12.1.x86_64.rpm wget-lang-1.20.3-3.12.1.noarch.rpm wget-1.20.3-3.12.1.s390x.rpm wget-1.20.3-3.12.1.ppc64le.rpm wget-1.20.3-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-1933 important SUSE Updates openSUSE-SLE 15.3 This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20210608 release. - CVE-2020-24513: A domain bypass transient execution vulnerability was discovered on some Intel Atom processors that use a micro-architectural incident channel. (INTEL-SA-00465 bsc#1179833) See also: https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00465.html - CVE-2020-24511: The IBRS feature to mitigate Spectre variant 2 transient execution side channel vulnerabilities may not fully prevent non-root (guest) branches from controlling the branch predictions of the root (host) (INTEL-SA-00464 bsc#1179836) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html) - CVE-2020-24512: Fixed trivial data value cache-lines such as all-zero value cache-lines may lead to changes in cache-allocation or write-back behavior for such cache-lines (bsc#1179837 INTEL-SA-00464) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00464.html) - CVE-2020-24489: Fixed Intel VT-d device pass through potential local privilege escalation (INTEL-SA-00442 bsc#1179839) See also https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00442.html Other fixes: - Update for functional issues. Refer to [Third Generation Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/637780)for details. - Update for functional issues. Refer to [Second Generation Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/338848) for details. - Update for functional issues. Refer to [Intel Xeon Processor Scalable Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/613537) for details. - Update for functional issues. Refer to [Intel Xeon Processor D-1500, D-1500 NS and D-1600 NS Spec Update](https://www.intel.com/content/www/us/en/products/docs/processors/xeon/xeon-d-1500-specification-update.html) for details. - Update for functional issues. Refer to [Intel Xeon E7-8800 and E7-4800 v3 Processor Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e7-v3-spec-update.html) for details. - Update for functional issues. Refer to [Intel Xeon Processor E5 v3 Product Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e5-v3-spec-update.html?wapkw=processor+spec+update+e5) for details. - Update for functional issues. Refer to [10th Gen Intel Core Processor Families Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/10th-gen-core-families-specification-update.html) for details. - Update for functional issues. Refer to [8th and 9th Gen Intel Core Processor Family Spec Update](https://www.intel.com/content/www/us/en/products/docs/processors/core/8th-gen-core-spec-update.html) for details. - Update for functional issues. Refer to [7th Gen and 8th Gen (U Quad-Core) Intel Processor Families Specification Update](https://www.intel.com/content/www/us/en/processors/core/7th-gen-core-family-spec-update.html) for details. - Update for functional issues. Refer to [6th Gen Intel Processor Family Specification Update](https://cdrdv2.intel.com/v1/dl/getContent/332689) for details. - Update for functional issues. Refer to [Intel Xeon E3-1200 v6 Processor Family Specification Update](https://www.intel.com/content/www/us/en/processors/xeon/xeon-e3-1200v6-spec-update.html) for details. - Update for functional issues. Refer to [Intel Xeon E-2100 and E-2200 Processor Family Specification Update](https://www.intel.com/content/www/us/en/products/docs/processors/xeon/xeon-e-2100-specification-update.html) for details. - New platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | CLX-SP | A0 | 06-55-05/b7 | | 03000010 | Xeon Scalable Gen2 | ICX-SP | C0 | 06-6a-05/87 | | 0c0002f0 | Xeon Scalable Gen3 | ICX-SP | D0 | 06-6a-06/87 | | 0d0002a0 | Xeon Scalable Gen3 | SNR | B0 | 06-86-04/01 | | 0b00000f | Atom P59xxB | SNR | B1 | 06-86-05/01 | | 0b00000f | Atom P59xxB | TGL | B1 | 06-8c-01/80 | | 00000088 | Core Gen11 Mobile | TGL-R | C0 | 06-8c-02/c2 | | 00000016 | Core Gen11 Mobile | TGL-H | R0 | 06-8d-01/c2 | | 0000002c | Core Gen11 Mobile | EHL | B1 | 06-96-01/01 | | 00000011 | Pentium J6426/N6415, Celeron J6412/J6413/N6210/N6211, Atom x6000E | JSL | A0/A1 | 06-9c-00/01 | | 0000001d | Pentium N6000/N6005, Celeron N4500/N4505/N5100/N5105 | RKL-S | B0 | 06-a7-01/02 | | 00000040 | Core Gen11 - Updated platforms: | Processor | Stepping | F-M-S/PI | Old Ver | New Ver | Products |:---------------|:---------|:------------|:---------|:---------|:--------- | HSX-E/EP | Cx/M1 | 06-3f-02/6f | 00000044 | 00000046 | Core Gen4 X series; Xeon E5 v3 | HSX-EX | E0 | 06-3f-04/80 | 00000016 | 00000019 | Xeon E7 v3 | SKL-U/Y | D0 | 06-4e-03/c0 | 000000e2 | 000000ea | Core Gen6 Mobile | SKL-U23e | K1 | 06-4e-03/c0 | 000000e2 | 000000ea | Core Gen6 Mobile | BDX-ML | B0/M0/R0 | 06-4f-01/ef | 0b000038 | 0b00003e | Xeon E5/E7 v4; Core i7-69xx/68xx | SKX-SP | B1 | 06-55-03/97 | 01000159 | 0100015b | Xeon Scalable | SKX-SP | H0/M0/U0 | 06-55-04/b7 | 02006a0a | 02006b06 | Xeon Scalable | SKX-D | M1 | 06-55-04/b7 | 02006a0a | 02006b06 | Xeon D-21xx | CLX-SP | B0 | 06-55-06/bf | 04003006 | 04003102 | Xeon Scalable Gen2 | CLX-SP | B1 | 06-55-07/bf | 05003006 | 05003102 | Xeon Scalable Gen2 | CPX-SP | A1 | 06-55-0b/bf | 0700001e | 07002302 | Xeon Scalable Gen3 | BDX-DE | V2/V3 | 06-56-03/10 | 07000019 | 0700001b | Xeon D-1518/19/21/27/28/31/33/37/41/48, Pentium D1507/08/09/17/19 | BDX-DE | Y0 | 06-56-04/10 | 0f000017 | 0f000019 | Xeon D-1557/59/67/71/77/81/87 | BDX-NS | A0 | 06-56-05/10 | 0e00000f | 0e000012 | Xeon D-1513N/23/33/43/53 | APL | D0 | 06-5c-09/03 | 00000040 | 00000044 | Pentium N/J4xxx, Celeron N/J3xxx, Atom x5/7-E39xx | APL | E0 | 06-5c-0a/03 | 0000001e | 00000020 | Atom x5-E39xx | SKL-H/S | R0/N0 | 06-5e-03/36 | 000000e2 | 000000ea | Core Gen6; Xeon E3 v5 | DNV | B0 | 06-5f-01/01 | 0000002e | 00000034 | Atom C Series | GLK | B0 | 06-7a-01/01 | 00000034 | 00000036 | Pentium Silver N/J5xxx, Celeron N/J4xxx | GKL-R | R0 | 06-7a-08/01 | 00000018 | 0000001a | Pentium J5040/N5030, Celeron J4125/J4025/N4020/N4120 | ICL-U/Y | D1 | 06-7e-05/80 | 000000a0 | 000000a6 | Core Gen10 Mobile | LKF | B2/B3 | 06-8a-01/10 | 00000028 | 0000002a | Core w/Hybrid Technology | AML-Y22 | H0 | 06-8e-09/10 | 000000de | 000000ea | Core Gen8 Mobile | KBL-U/Y | H0 | 06-8e-09/c0 | 000000de | 000000ea | Core Gen7 Mobile | CFL-U43e | D0 | 06-8e-0a/c0 | 000000e0 | 000000ea | Core Gen8 Mobile | WHL-U | W0 | 06-8e-0b/d0 | 000000de | 000000ea | Core Gen8 Mobile | AML-Y42 | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen10 Mobile | CML-Y42 | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen10 Mobile | WHL-U | V0 | 06-8e-0c/94 | 000000de | 000000ea | Core Gen8 Mobile | KBL-G/H/S/E3 | B0 | 06-9e-09/2a | 000000de | 000000ea | Core Gen7; Xeon E3 v6 | CFL-H/S/E3 | U0 | 06-9e-0a/22 | 000000de | 000000ea | Core Gen8 Desktop, Mobile, Xeon E | CFL-S | B0 | 06-9e-0b/02 | 000000de | 000000ea | Core Gen8 | CFL-H/S | P0 | 06-9e-0c/22 | 000000de | 000000ea | Core Gen9 | CFL-H | R0 | 06-9e-0d/22 | 000000de | 000000ea | Core Gen9 Mobile | CML-H | R1 | 06-a5-02/20 | 000000e0 | 000000ea | Core Gen10 Mobile | CML-S62 | G1 | 06-a5-03/22 | 000000e0 | 000000ea | Core Gen10 | CML-S102 | Q0 | 06-a5-05/22 | 000000e0 | 000000ec | Core Gen10 | CML-U62 | A0 | 06-a6-00/80 | 000000e0 | 000000e8 | Core Gen10 Mobile | CML-U62 V2 | K0 | 06-a6-01/80 | 000000e0 | 000000ea | Core Gen10 Mobile ucode-intel-20210525-7.1.src.rpm True ucode-intel-20210525-7.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2000 moderate SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issue: - tomcat had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) tomcat-9.0.36-8.1.noarch.rpm tomcat-9.0.36-8.1.src.rpm tomcat-admin-webapps-9.0.36-8.1.noarch.rpm tomcat-docs-webapp-9.0.36-8.1.noarch.rpm tomcat-el-3_0-api-9.0.36-8.1.noarch.rpm tomcat-embed-9.0.36-8.1.noarch.rpm tomcat-javadoc-9.0.36-8.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-8.1.noarch.rpm tomcat-jsvc-9.0.36-8.1.noarch.rpm tomcat-lib-9.0.36-8.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-8.1.noarch.rpm tomcat-webapps-9.0.36-8.1.noarch.rpm openSUSE-SLE-15.3-2021-1975 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33200: Enforcing incorrect limits for pointer arithmetic operations by the BPF verifier could be abused to perform out-of-bounds reads and writes in kernel memory (bsc#1186484). - CVE-2021-33034: Fixed a use-after-free when destroying an hci_chan. This could lead to writing an arbitrary values. (bsc#1186111) - CVE-2020-26139: Fixed a denial-of-service when an Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. (bnc#1186062) - CVE-2021-23134: A Use After Free vulnerability in nfc sockets allowed local attackers to elevate their privileges. (bnc#1186060) - CVE-2021-3491: Fixed a potential heap overflow in mem_rw(). This vulnerability is related to the PROVIDE_BUFFERS operation, which allowed the MAX_RW_COUNT limit to be bypassed (bsc#1185642). - CVE-2021-32399: Fixed a race condition when removing the HCI controller (bnc#1184611). - CVE-2020-24586: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances this can be abused to inject arbitrary network packets and/or exfiltrate user data (bnc#1185859). - CVE-2020-24587: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed (bnc#1185859 bnc#1185862). - CVE-2020-24588: The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn't require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets. (bnc#1185861) - CVE-2020-26147: The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments, even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used (bnc#1185859). - CVE-2020-26145: An issue was discovered with Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept second (or subsequent) broadcast fragments even when sent in plaintext and process them as full unfragmented frames. An adversary can abuse this to inject arbitrary network packets independent of the network configuration. (bnc#1185860) - CVE-2020-26141: An issue was discovered in the ALFA driver for AWUS036H, where the Message Integrity Check (authenticity) of fragmented TKIP frames was not verified. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol. (bnc#1185987) - CVE-2021-29650: Fixed an issue with the netfilter subsystem that allowed attackers to cause a denial of service (panic) because net/netfilter/x_tables.c and include/linux/netfilter/x_tables.h lack a full memory barrier upon the assignment of a new table value (bnc#1184208). - CVE-2021-29155: Fixed an issue that was discovered in kernel/bpf/verifier.c that performs undesirable out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory. Specifically, for sequences of pointer arithmetic operations, the pointer modification performed by the first operation was not correctly accounted for when restricting subsequent operations (bnc#1184942). - CVE-2021-3444: Fixed an issue with the bpf verifier which did not properly handle mod32 destination register truncation when the source register was known to be 0 leading to out of bounds read (bsc#1184170). - CVE-2021-3428: Fixed an integer overflow in ext4_es_cache_extent (bsc#1173485). - CVE-2021-29647: Fixed an issue in qrtr_recvmsg which could have allowed attackers to obtain sensitive information from kernel memory because of a partially uninitialized data structure (bsc#1184192 ). - CVE-2021-29265: Fixed an issue in usbip_sockfd_store which could have allowed attackers to cause a denial of service due to race conditions during an update of the local and shared status (bsc#1184167). - CVE-2021-29264: Fixed an issue in the Freescale Gianfar Ethernet driver which could have allowed attackers to cause a system crash due to a calculation of negative fragment size (bsc#1184168). - CVE-2021-28972: Fixed a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly (bsc#1184198). - CVE-2021-28971: Fixed an issue in intel_pmu_drain_pebs_nhm which could have caused a system crash because the PEBS status in a PEBS record was mishandled (bsc#1184196 ). - CVE-2021-28964: Fixed a race condition in get_old_root which could have allowed attackers to cause a denial of service (bsc#1184193). - CVE-2021-28688: Fixed an issue introduced by XSA-365 (bsc#1183646). - CVE-2021-28660: Fixed an out of bounds write in rtw_wx_set_scan (bsc#1183593 ). - CVE-2021-28375: Fixed an issue in fastrpc_internal_invoke which did not prevent user applications from sending kernel RPC messages (bsc#1183596). - CVE-2021-28038: Fixed an issue with the netback driver which was lacking necessary treatment of errors such as failed memory allocations (bsc#1183022). - CVE-2021-27365: Fixed an issue where an unprivileged user can send a Netlink message that is associated with iSCSI, and has a length up to the maximum length of a Netlink message (bsc#1182715). - CVE-2021-27364: Fixed an issue where an attacker could craft Netlink messages (bsc#1182717). - CVE-2021-27363: Fixed a kernel pointer leak which could have been used to determine the address of the iscsi_transport structure (bsc#1182716). - CVE-2020-35519: Fixed an out-of-bounds memory access was found in x25_bind (bsc#1183696). - CVE-2020-27815: Fixed an issue in JFS filesystem where could have allowed an attacker to execute code (bsc#1179454). - CVE-2020-27171: Fixed an off-by-one error affecting out-of-bounds speculation on pointer arithmetic, leading to side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183775). - CVE-2020-27170: Fixed potential side-channel attacks that defeat Spectre mitigations and obtain sensitive information from kernel memory (bsc#1183686). - CVE-2019-19769: Fixed a use-after-free in the perf_trace_lock_acquire function (bsc#1159280 ). - CVE-2019-18814: Fixed a use-after-free when aa_label_parse() fails in aa_audit_rule_init() (bsc#1156256). - CVE-2021-3483: Fixed a use-after-free in nosy.c (bsc#1184393). - CVE-2021-30002: Fixed a memory leak for large arguments in video_usercopy (bsc#1184120). - CVE-2021-29154: Fixed incorrect computation of branch displacements, allowing arbitrary code execution (bsc#1184391). - CVE-2021-28950: Fixed an issue in fs/fuse/fuse_i.h due to a retry loop continually was finding the same bad inode (bsc#1184194). - CVE-2021-28952: Fixed a buffer overflow in the soundwire device driver, triggered when an unexpected port ID number is encountered. (bnc#1184197). - CVE-2021-20268: Fixed an out-of-bounds access flaw in the implementation of the eBPF code verifier. This flaw allowed a local user to crash the system or possibly escalate their privileges. (bnc#1183077) - CVE-2020-27673: Fixed a vulnerability with xen, where guest OS users could cause a denial of service (host OS hang) via a high rate of events to dom0 (bnc#1177411). - CVE-2020-36312: Fixed a memory leak upon a kmalloc failure (bsc#1184509 ). - CVE-2020-36311: Fixed a denial of service (soft lockup) by triggering destruction of a large SEV VM (bsc#1184511). - CVE-2020-36310: Fixed infinite loop for certain nested page faults (bsc#1184512). - CVE-2021-3489: Fixed an issue where the eBPF RINGBUF bpf_ringbuf_reserve did not check that the allocated size was smaller than the ringbuf size (bnc#1185640). - CVE-2021-3490: Fixed an issue where the eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) did not update the 32-bit bounds (bnc#1185641 bnc#1185796 ). - CVE-2020-36322: Fixed an issue was discovered in FUSE filesystem implementation which could have caused a system crash (bsc#1184211). - CVE-2020-25670, CVE-2020-25671, CVE-2020-25672, CVE-2020-25673: Fixed multiple bugs in NFC subsytem (bsc#1178181). The following non-security bugs were fixed: - ACPI / hotplug / PCI: Fix reference count leak in enable_slot() (git-fixes). - ACPI / idle: override c-state latency when not in conformance with s0ix (bsc#1185840). - ACPI: CPPC: Replace cppc_attr with kobj_attribute (git-fixes). - ACPI: GTDT: Do not corrupt interrupt mappings on watchdow probe failure (git-fixes). - ACPI: PM: Add ACPI ID of Alder Lake Fan (git-fixes). - ACPI: PM: s2idle: Add AMD support to handle _DSM (bsc#1185840). - ACPI: PM: s2idle: Add missing LPS0 functions for AMD (bsc#1185840). - ACPI: PM: s2idle: Drop unused local variables and related code (bsc#1185840). - ACPI: PM: s2idle: Move x86-specific code to the x86 directory (bsc#1185840). - ACPI: custom_method: fix a possible memory leak (git-fixes). - ACPI: custom_method: fix potential use-after-free issue (git-fixes). - ACPI: processor: Fix CPU0 wakeup in acpi_idle_play_dead() (git-fixes). - ACPI: processor: Fix build when CONFIG_ACPI_PROCESSOR=m (git-fixes). - ACPI: scan: Rearrange memory allocation in acpi_device_add() (git-fixes). - ACPI: video: Add DMI quirk for GIGABYTE GB-BXBT-2807 (git-fixes). - ACPI: video: Add missing callback back for Sony VPCEH3U1E (git-fixes). - ACPICA: Always create namespace nodes using acpi_ns_create_node() (git-fixes). - ACPICA: Enable sleep button on ACPI legacy wake (bsc#1181383). - ACPICA: Fix race in generic_serial_bus (I2C) and GPIO op_region parameter handling (git-fixes). - ALSA: Convert strlcpy to strscpy when return value is unused (git-fixes). - ALSA: aloop: Fix initialization of controls (git-fixes). - ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro (git-fixes). - ALSA: bebob: enable to deliver MIDI messages for multiple ports (git-fixes). - ALSA: core: remove redundant spin_lock pair in snd_card_disconnect (git-fixes). - ALSA: dice: fix null pointer dereference when node is disconnected (git-fixes). - ALSA: dice: fix stream format at middle sampling rate for Alesis iO 26 (git-fixes). - ALSA: dice: fix stream format for TC Electronic Konnekt Live at high sampling transfer frequency (git-fixes). - ALSA: emu8000: Fix a use after free in snd_emu8000_create_mixer (git-fixes). - ALSA: firewire-lib: fix amdtp_packet tracepoints event for packet_index field (git-fixes). - ALSA: firewire-lib: fix calculation for size of IR context payload (git-fixes). - ALSA: firewire-lib: fix check for the size of isochronous packet payload (git-fixes). - ALSA: hda/ca0132: Add Sound BlasterX AE-5 Plus support (git-fixes). - ALSA: hda/cirrus: Add Headphone and Headset MIC Volume Control (git-fixes). - ALSA: hda/cirrus: Add error handling into CS8409 I2C functions (git-fixes). - ALSA: hda/cirrus: Add jack detect interrupt support from CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Add support for CS8409 HDA bridge and CS42L42 companion codec (git-fixes). - ALSA: hda/cirrus: Cleanup patch_cirrus.c code (git-fixes). - ALSA: hda/cirrus: Fix CS42L42 Headset Mic volume control name (git-fixes). - ALSA: hda/cirrus: Make CS8409 driver more generic by using fixups (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume for Bullseye to -26 dB (git-fixes). - ALSA: hda/cirrus: Use CS8409 filter to fix abnormal sounds on Bullseye (git-fixes). - ALSA: hda/conexant: Add quirk for mute LED control on HP ZBook G5 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ZBook G5 model (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/conexant: Re-order CX5066 quirk table entries (git-fixes). - ALSA: hda/hdmi: Cancel pending works before suspend (bsc#1182377). - ALSA: hda/hdmi: Cancel pending works before suspend (git-fixes). - ALSA: hda/hdmi: fix race in handling acomp ELD notification at resume (git-fixes). - ALSA: hda/realtek - Headset Mic issue on HP platform (git-fixes). - ALSA: hda/realtek: ALC285 Thinkpad jack pin quirk is unreachable (git-fixes). - ALSA: hda/realtek: Add fixup for HP OMEN laptop (git-fixes). - ALSA: hda/realtek: Add fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: Add quirk for Intel Clevo PCx0Dx (git-fixes). - ALSA: hda/realtek: Add quirk for Lenovo Ideapad S740 (git-fixes). - ALSA: hda/realtek: Add some CLOVE SSIDs of ALC293 (git-fixes). - ALSA: hda/realtek: Apply headset-mic quirks for Xiaomi Redmibook Air (git-fixes). - ALSA: hda/realtek: Chain in pop reduction fixup for ThinkStation P340 (git-fixes). - ALSA: hda/realtek: Enable mute/micmute LEDs and limit mic boost on EliteBook 845 G8 (git-fixes). - ALSA: hda/realtek: Fix silent headphone output on ASUS UX430UA (git-fixes). - ALSA: hda/realtek: Fix speaker amp on HP Envy AiO 32 (git-fixes). - ALSA: hda/realtek: Fix speaker amp setup on Acer Aspire E1 (git-fixes). - ALSA: hda/realtek: GA503 use same quirks as GA401 (git-fixes). - ALSA: hda/realtek: Headphone volume is controlled by Front mixer (git-fixes). - ALSA: hda/realtek: Re-order ALC269 ASUS quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Dell quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 HP quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Lenovo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC269 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC662 quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Acer quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Clevo quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order ALC882 Sony quirk table entries (git-fixes). - ALSA: hda/realtek: Re-order remaining ALC269 quirk table entries (git-fixes). - ALSA: hda/realtek: Remove redundant entry for ALC861 Haier/Uniwill devices (git-fixes). - ALSA: hda/realtek: apply pin quirk for XiaomiNotebook Pro (git-fixes). - ALSA: hda/realtek: call alc_update_headset_mode() in hp_automute_hook (git-fixes). - ALSA: hda/realtek: fix a determine_headset_type issue for a Dell AIO (git-fixes). - ALSA: hda/realtek: fix mic boost on Intel NUC 8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 15 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook Fury 17 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Zbook G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 440 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 640 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 840 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 850 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP 855 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G7 (git-fixes). - ALSA: hda/realtek: fix static noise on ALC285 Lenovo laptops (git-fixes). - ALSA: hda/realtek: reset eapd coeff to default value for alc287 (git-fixes). - ALSA: hda/realtek: the bass speaker can't output sound on Yoga 9i (git-fixes). - ALSA: hda: Add missing sanity checks in PM prepare/complete callbacks (git-fixes). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (bsc#1182377). - ALSA: hda: Avoid spurious unsol event handling during S3/S4 (git-fixes). - ALSA: hda: Drop the BATCH workaround for AMD controllers (git-fixes). - ALSA: hda: Flush pending unsolicited events before suspend (bsc#1182377). - ALSA: hda: Re-add dropped snd_poewr_change_state() calls (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: fixup headset for ASUS GU502 laptop (git-fixes). - ALSA: hda: generic: Fix the micmute led init state (git-fixes). - ALSA: hda: generic: change the DAC ctl name for LO+SPK or LO+HP (git-fixes). - ALSA: hda: ignore invalid NHLT table (git-fixes). - ALSA: hdsp: do not disable if not enabled (git-fixes). - ALSA: hdspm: do not disable if not enabled (git-fixes). - ALSA: intel8x0: Do not update period unless prepared (git-fixes). - ALSA: line6: Fix racy initialization of LINE6 MIDI (git-fixes). - ALSA: rme9652: do not disable if not enabled (git-fixes). - ALSA: sb: Fix two use after free in snd_sb_qsound_build (git-fixes). - ALSA: usb-audio: Add DJM-450 to the quirks table (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM450 to Pioneer format quirk (git-fixes). - ALSA: usb-audio: Add DJM750 to Pioneer mixer quirk (git-fixes). - ALSA: usb-audio: Add MIDI quirk for Vox ToneLab EX (git-fixes). - ALSA: usb-audio: Add Pioneer DJM-850 to quirks-table (git-fixes). - ALSA: usb-audio: Add dB range mapping for Sennheiser Communications Headset PC 8 (git-fixes). - ALSA: usb-audio: Add error checks for usb_driver_claim_interface() calls (git-fixes). - ALSA: usb-audio: Add implicit feeback support for the BOSS GT-1 (git-fixes). - ALSA: usb-audio: Add support for Pioneer DJM-750 (git-fixes). - ALSA: usb-audio: Add support for many Roland devices' implicit feedback quirks (git-fixes). - ALSA: usb-audio: Apply implicit feedback mode for BOSS devices (git-fixes). - ALSA: usb-audio: Apply sample rate quirk to Logitech Connect (git-fixes). - ALSA: usb-audio: Carve out connector value checking into a helper (git-fixes). - ALSA: usb-audio: Check connector value on resume (git-fixes). - ALSA: usb-audio: Configure Pioneer DJM-850 samplerate (git-fixes). - ALSA: usb-audio: Convert remaining strlcpy() to strscpy() (git-fixes). - ALSA: usb-audio: Convert the last strlcpy() usage (git-fixes). - ALSA: usb-audio: DJM-750: ensure format is set (git-fixes). - ALSA: usb-audio: Declare Pioneer DJM-850 mixer controls (git-fixes). - ALSA: usb-audio: Drop implicit fb quirk entries dubbed for capture (git-fixes). - ALSA: usb-audio: Explicitly set up the clock selector (git-fixes). - ALSA: usb-audio: Fix "RANGE setting not yet supported" errors (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix Pioneer DJM devices URB_CONTROL request direction to set samplerate (git-fixes). - ALSA: usb-audio: Fix implicit sync clearance at stopping stream (git-fixes). - ALSA: usb-audio: Fix potential out-of-bounce access in MIDI EP parser (git-fixes). - ALSA: usb-audio: Fix unintentional sign extension issue (git-fixes). - ALSA: usb-audio: Generic application of implicit fb to Roland/BOSS devices (git-fixes). - ALSA: usb-audio: Re-apply implicit feedback mode to Pioneer devices (git-fixes). - ALSA: usb-audio: Remove redundant assignment to len (git-fixes). - ALSA: usb-audio: Skip probe of UA-101 devices (git-fixes). - ALSA: usb-audio: Skip the clock selector inquiry for single connections (git-fixes). - ALSA: usb-audio: Validate MS endpoint descriptors (git-fixes). - ALSA: usb-audio: add mixer quirks for Pioneer DJM-900NXS2 (git-fixes). - ALSA: usb-audio: fix NULL ptr dereference in usb_audio_probe (bsc#1182552). - ALSA: usb-audio: fix Pioneer DJM-850 control label info (git-fixes). - ALSA: usb-audio: fix control-request direction (git-fixes). - ALSA: usb-audio: fix use after free in usb_audio_disconnect (bsc#1182552). - ALSA: usb-audio: generate midi streaming substream names from jack names (git-fixes). - ALSA: usb-audio: scarlett2: Fix device hang with ehci-pci (git-fixes). - ALSA: usb-audio: scarlett2: Improve driver startup messages (git-fixes). - ALSA: usb-audio: scarlett2: snd_scarlett_gen2_controls_create() can be static (git-fixes). - ALSA: usb-audio: use usb headers rather than define structs locally (git-fixes). - ALSA: usb: Use DIV_ROUND_UP() instead of open-coding it (git-fixes). - ALSA: usb: midi: do not return -ENOMEM when usb_urb_ep_type_check fails (git-fixes). - ARM64: vdso32: Install vdso32 from vdso_install (git-fixes). - ASoC: Intel: Add DMI quirk table to soc_intel_is_byt_cr() (git-fixes). - ASoC: Intel: boards: sof-wm8804: add check for PLL setting (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for ARCHOS Cesium 140 (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Acer One S1002 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Chuwi Hi8 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Estar Beauty HD MID 7316R tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Voyo Winpad A15 tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Enable jack-detect support on Asus T100TAF (git-fixes). - ASoC: Intel: bytcr_rt5640: Fix HP Pavilion x2 10-p0XX OVCD current threshold (git-fixes). - ASoC: Intel: bytcr_rt5651: Add quirk for the Jumper EZpad 7 tablet (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix kabylake_ssp_fixup function (git-fixes). - ASoC: Intel: sof_sdw: add quirk for HP Spectre x360 convertible (git-fixes). - ASoC: Intel: sof_sdw: add quirk for new ADL-P Rvp (git-fixes). - ASoC: Intel: sof_sdw: reorganize quirks by generation (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: HDA: fix core status verification (git-fixes). - ASoC: SOF: Intel: hda: remove unnecessary parentheses (git-fixes). - ASoC: SOF: Intel: unregister DMIC device on probe error (git-fixes). - ASoC: SOF: intel: fix wrong poll bits in dsp power down (git-fixes). - ASoC: ak4458: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Add MODULE_DEVICE_TABLE (git-fixes). - ASoC: ak5558: Fix s/show/slow/ typo (git-fixes). - ASoC: ak5558: correct reset polarity (git-fixes). - ASoC: codecs: wcd934x: add a sanity check in set channel map (git-fixes). - ASoC: cs35l33: fix an error code in probe() (git-fixes). - ASoC: cs42l42: Always wait at least 3ms after reset (git-fixes). - ASoC: cs42l42: Do not enable/disable regulator at Bias Level (git-fixes). - ASoC: cs42l42: Fix Bitclock polarity inversion (git-fixes). - ASoC: cs42l42: Fix channel width support (git-fixes). - ASoC: cs42l42: Fix mixer volume control (git-fixes). - ASoC: cs42l42: Regmap must use_single_read/write (git-fixes). - ASoC: cygnus: fix for_each_child.cocci warnings (git-fixes). - ASoC: es8316: Simplify adc_pga_gain_tlv table (git-fixes). - ASoC: fsl_esai: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: fsl_ssi: Fix TDM slot setup for I2S mode (git-fixes). - ASoC: intel: atom: Remove 44100 sample-rate from the media and deep-buffer DAI descriptions (git-fixes). - ASoC: intel: atom: Stop advertising non working S24LE support (git-fixes). - ASoC: max98373: Added 30ms turn on/off time delay (git-fixes). - ASoC: max98373: Changed amp shutdown register as volatile (git-fixes). - ASoC: qcom: lpass-cpu: Fix lpass dai ids parse (git-fixes). - ASoC: qcom: sdm845: Fix array out of bounds access (git-fixes). - ASoC: qcom: sdm845: Fix array out of range on rx slim channels (git-fixes). - ASoC: rsnd: call rsnd_ssi_master_clk_start() from rsnd_ssi_init() (git-fixes). - ASoC: rsnd: check all BUSIF status when error (git-fixes). - ASoC: rsnd: core: Check convert rate in rsnd_hw_params (git-fixes). - ASoC: rt1015: fix i2c communication error (git-fixes). - ASoC: rt286: Generalize support for ALC3263 codec (git-fixes). - ASoC: rt286: Make RT286_SET_GPIO_* readable and writable (git-fixes). - ASoC: rt5640: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5651: Fix dac- and adc- vol-tlv values being off by a factor of 10 (git-fixes). - ASoC: rt5659: Update MCLK rate in set_sysclk() (git-fixes). - ASoC: rt5670: Add a quirk for the Dell Venue 10 Pro 5055 (git-fixes). - ASoC: rt5670: Add emulated 'DAC1 Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'HP Playback Switch' control (git-fixes). - ASoC: rt5670: Remove 'OUT Channel Switch' control (git-fixes). - ASoC: rt5670: Remove ADC vol-ctrl mute bits poking from Sto1 ADC mixer settings (git-fixes). - ASoC: rt711: add snd_soc_component remove callback (git-fixes). - ASoC: samsung: snow: remove useless test (git-fixes). - ASoC: samsung: tm2_wm5110: check of of_parse return value (git-fixes). - ASoC: sgtl5000: set DAP_AVC_CTRL register to correct default value on probe (git-fixes). - ASoC: simple-card-utils: Do not handle device clock (git-fixes). - ASoC: simple-card: fix possible uninitialized single_cpu local variable (git-fixes). - ASoC: soc-core kABI workaround (git-fixes). - ASoC: soc-core: Prevent warning if no DMI table is present (git-fixes). - ASoC: sunxi: sun4i-codec: fill ASoC card owner (git-fixes). - ASoC: wm8960: Fix wrong bclk and lrclk with pll enabled for some chips (git-fixes). - ASoC: wm8960: Remove bitclk relax condition in wm8960_configure_sysclk (git-fixes). - Bluetooth: Fix incorrect status handling in LE PHY UPDATE event (git-fixes). - Bluetooth: Fix null pointer dereference in amp_read_loc_assoc_final_data (git-fixes). - Bluetooth: L2CAP: Fix handling LE modes by L2CAP_OPTIONS (git-fixes). - Bluetooth: SMP: Fail if remote and local public keys are identical (git-fixes). - Bluetooth: Set CONF_NOT_COMPLETE as l2cap_chan default (git-fixes). - Bluetooth: avoid deadlock between hci_dev->lock and socket lock (git-fixes). - Bluetooth: btqca: Add valid le states quirk (git-fixes). - Bluetooth: btusb: Enable quirk boolean flag for Mediatek Chip (git-fixes). - Bluetooth: check for zapped sk before connecting (git-fixes). - Bluetooth: hci_h5: Set HCI_QUIRK_SIMULTANEOUS_DISCOVERY for btrtl (git-fixes). - Bluetooth: initialize skb_queue_head at l2cap_chan_create() (git-fixes). - Documentation/ABI: sysfs-platform-ideapad-laptop: update device attribute paths (git-fixes). - Drivers: hv: vmbus: Fix Suspend-to-Idle for Generation-2 VM (git-fixes). - Drivers: hv: vmbus: Increase wait time for VMbus unload (bsc#1185725). - Drivers: hv: vmbus: Initialize unload_event statically (bsc#1185725). - Drivers: hv: vmbus: Use after free in __vmbus_open() (git-fixes). - EDAC/amd64: Check for memory before fully initializing an instance (bsc#1183815). - EDAC/amd64: Get rid of the ECC disabled long message (bsc#1183815). - EDAC/amd64: Use cached data when checking for ECC (bsc#1183815). - Goodix Fingerprint device is not a modem (git-fixes). - HID: alps: fix error return code in alps_input_configured() (git-fixes). - HID: google: add don USB id (git-fixes). - HID: i2c-hid: Add I2C_HID_QUIRK_NO_IRQ_AFTER_RESET for ITE8568 EC on Voyo Winpad A15 (git-fixes). - HID: mf: add support for 0079:1846 Mayflash/Dragonrise USB Gamecube Adapter (git-fixes). - HID: plantronics: Workaround for double volume key presses (git-fixes). - HID: wacom: Assign boolean values to a bool variable (git-fixes). - HID: wacom: set EV_KEY and EV_ABS only for non-HID_GENERIC type of devices (git-fixes). - HSI: Fix PM usage counter unbalance in ssi_hw_init (git-fixes). - Hibernation: Fix Hibernate not blocked in Secure Boot with no EFI secret key - IB/hfi1: Fix probe time panic when AIP is enabled with a buggy BIOS (jsc#SLE-13208). - IB/hfi1: Rework AIP and VNIC dummy netdev usage (jsc#SLE-13208). - Input: applespi - do not wait for responses to commands indefinitely (git-fixes). - Input: elantech - fix protocol errors for some trackpoints in SMBus mode (git-fixes). - Input: elants_i2c - do not bind to i2c-hid compatible ACPI instantiated devices (git-fixes). - Input: i8042 - fix Pegatron C15B ID entry (git-fixes). - Input: nspire-keypad - enable interrupts only when opened (git-fixes). - Input: s6sy761 - fix coordinate read bit shift (git-fixes). - Input: silead - add workaround for x86 BIOS-es which bring the chip up in a stuck state (git-fixes). - KEYS: trusted: Fix TPM reservation for seal/unseal (git-fixes). - KEYS: trusted: Fix memory leak on object td (git-fixes). - KVM x86: Extend AMD specific guest behavior to Hygon virtual CPUs (bsc#1183447). - KVM: PPC: Book3S HV P9: Restore host CTRL SPR after guest exit (bsc#1156395). - KVM: PPC: Make the VMX instruction emulation routines static (bsc#1156395). - KVM: SVM: Clear the CR4 register on reset (bsc#1183252). - KVM: kvmclock: Fix vCPUs > 64 can't be online/hotpluged (bsc#1152489). - KVM: nVMX: Properly handle userspace interrupt window request (bsc#1183427). - KVM: s390: fix guarded storage control register handling (bsc#1133021). - KVM: x86: Add helpers to perform CPUID-based guest vendor check (bsc#1183445). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183287). - KVM: x86: Allow guests to see MSR_IA32_TSX_CTRL even if tsx=off (bsc#1183323). - KVM: x86: Expose XSAVEERPTR to the guest (jsc#SLE-13573). - KVM: x86: Return -E2BIG when KVM_GET_SUPPORTED_CPUID hits max entries (bsc#1183428). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183288). - KVM: x86: Set so called 'reserved CR3 bits in LM mask' at vCPU reset (bsc#1183324). - KVM: x86: do not reset microcode version on INIT or RESET (bsc#1183412). - KVM: x86: list MSR_IA32_UCODE_REV as an emulated MSR (bsc#1183369). - NFC: nci: fix memory leak in nci_allocate_device (git-fixes). - PCI/AER: Add RCEC AER error injection support (bsc#1174426). - PCI/AER: Add pcie_walk_rcec() to RCEC AER handling (bsc#1174426). - PCI/AER: Clear AER status from Root Port when resetting Downstream Port (bsc#1174426). - PCI/AER: Specify the type of Port that was reset (bsc#1174426). - PCI/AER: Use "aer" variable for capability offset (bsc#1174426). - PCI/AER: Write AER Capability only when we control it (bsc#1174426). - PCI/ERR: Add pci_walk_bridge() to pcie_do_recovery() (bsc#1174426). - PCI/ERR: Add pcie_link_rcec() to associate RCiEPs (bsc#1174426). - PCI/ERR: Avoid negated conditional for clarity (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (bsc#1174426). - PCI/ERR: Bind RCEC devices to the Root Port driver (jsc#SLE-13736 jsc#SLE-14845). - PCI/ERR: Cache RCEC EA Capability offset in pci_init_capabilities() (bsc#1174426). - PCI/ERR: Clear AER status only when we control AER (bsc#1174426). - PCI/ERR: Clear PCIe Device Status errors only if OS owns AER (bsc#1174426). - PCI/ERR: Clear status of the reporting device (bsc#1174426). - PCI/ERR: Recover from RCEC AER errors (bsc#1174426). - PCI/ERR: Recover from RCiEP AER errors (bsc#1174426). - PCI/ERR: Rename reset_link() to reset_subordinates() (bsc#1174426). - PCI/ERR: Retain status from error notification (bsc#1174426). - PCI/ERR: Simplify by computing pci_pcie_type() once (bsc#1174426). - PCI/ERR: Simplify by using pci_upstream_bridge() (bsc#1174426). - PCI/ERR: Use "bridge" for clarity in pcie_do_recovery() (bsc#1174426). - PCI/PME: Add pcie_walk_rcec() to RCEC PME handling (bsc#1174426). - PCI/RCEC: Fix RCiEP device to RCEC association (git-fixes). - PCI/RCEC: Fix RCiEP device to RCEC association (jsc#SLE-13736 jsc#SLE-14845 git-fixes). - PCI/portdrv: Report reset for frozen channel (bsc#1174426). - PCI: Add a REBAR size quirk for Sapphire RX 5600 XT Pulse (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 9215 SATA controller (git-fixes). - PCI: Allow VPD access for QLogic ISP2722 (git-fixes). - PCI: Fix pci_register_io_range() memory leak (git-fixes). - PCI: PM: Do not read power state in pci_enable_device_flags() (git-fixes). - PCI: Release OF node in pci_scan_device()'s error path (git-fixes). - PCI: designware-ep: Fix the Header Type check (git-fixes). - PCI: dwc: Move iATU detection earlier (git-fixes). - PCI: endpoint: Fix missing destroy_workqueue() (git-fixes). - PCI: iproc: Fix return value of iproc_msi_irq_domain_alloc() (git-fixes). - PCI: keystone: Let AM65 use the pci_ops defined in pcie-designware-host.c (git-fixes). - PCI: mediatek: Add missing of_node_put() to fix reference leak (git-fixes). - PCI: tegra: Fix ASPM-L1SS advertisement disable code (git-fixes). - PCI: tegra: Move "dbi" accesses to post common DWC initialization (git-fixes). - PCI: thunder: Fix compile testing (git-fixes). - PCI: xgene-msi: Fix race in installing chained irq handler (git-fixes). - PM / devfreq: Use more accurate returned new_freq as resume_freq (git-fixes). - PM: EM: postpone creating the debugfs dir till fs_initcall (git-fixes). - PM: runtime: Add documentation for pm_runtime_resume_and_get() (git-fixes). - PM: runtime: Add pm_runtime_resume_and_get to deal with usage counter (bsc#1183366). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix ordering in pm_runtime_get_suppliers() (git-fixes). - PM: runtime: Fix race getting/putting suppliers at probe (git-fixes). - Platform: OLPC: Fix probe error handling (git-fixes). - RAS/CEC: Correct ce_add_elem()'s returned values (bsc#1152489). - RDMA/addr: create addr_wq with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/cm: Fix IRQ restore in ib_send_cm_sidr_rep (jsc#SLE-15176). - RDMA/core: create ib_cm with WQ_MEM_RECLAIM flag (bsc#1183346). - RDMA/hns: Delete redundant abnormal interrupt status (git-fixes). - RDMA/hns: Delete redundant condition judgment related to eq (git-fixes). - RDMA/mlx5: Fix drop packet rule in egress table (jsc#SLE-15175). - RDMA/qedr: Fix error return code in qedr_iw_connect() (jsc#SLE-8215). - RDMA/rtrs-clt: Close rtrs client conn before destroying rtrs clt session files (jsc#SLE-15176). - RDMA/rtrs-clt: destroy sysfs after removing session from active list (jsc#SLE-15176). - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srp: Fix support for unpopulated and unbalanced NUMA nodes (bsc#1169709) - RDMA/srpt: Fix error return code in srpt_cm_req_recv() (git-fixes). - Re-enable yenta socket driver for x86_64 (bsc#1186349) - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - USB: Add LPM quirk for Lenovo ThinkPad USB-C Dock Gen2 Ethernet (git-fixes). - USB: Add reset-resume quirk for WD19's Realtek Hub (git-fixes). - USB: CDC-ACM: fix poison/unpoison imbalance (bsc#1184984). - USB: CDC-ACM: fix poison/unpoison imbalance (git-fixes). - USB: cdc-acm: downgrade message to debug (git-fixes). - USB: cdc-acm: fix TIOCGSERIAL implementation (git-fixes). - USB: cdc-acm: fix double free on probe failure (git-fixes). - USB: cdc-acm: fix unprivileged TIOCCSERIAL (git-fixes). - USB: cdc-acm: fix use-after-free after probe failure (git-fixes). - USB: cdc-acm: untangle a circular dependency between callback and softint (git-fixes). - USB: gadget: u_ether: Fix a configfs return code (git-fixes). - USB: gadget: udc: fix wrong pointer passed to IS_ERR() and PTR_ERR() (git-fixes). - USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem (git-fixes). - USB: replace hardcode maximum usb string length by definition (git-fixes). - USB: serial: ark3116: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ch341: add new Product ID (git-fixes). - USB: serial: cp210x: add ID for Acuity Brands nLight Air Adapter (git-fixes). - USB: serial: cp210x: add some more GE USB IDs (git-fixes). - USB: serial: f81232: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: f81534: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: fix return value for unsupported ioctls (git-fixes). - USB: serial: io_edgeport: fix memory leak in edge_startup (git-fixes). - USB: serial: mos7720: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: opticon: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: pl2303: add support for PL2303HXN (bsc#1186320). - USB: serial: pl2303: fix line-speed handling on newer chips (bsc#1186320). - USB: serial: quatech2: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ssu100: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: ti_usb_3410_5052: fix TIOCSSERIAL permission check (git-fixes). - USB: serial: usb_wwan: fix TIOCGSERIAL implementation (git-fixes). - USB: serial: usb_wwan: fix TIOCSSERIAL jiffies conversions (git-fixes). - USB: serial: usb_wwan: fix unprivileged TIOCCSERIAL (git-fixes). - USB: trancevibrator: fix control-request direction (git-fixes). - USB: usblp: fix a hang in poll() if disconnected (git-fixes). - Update config files. (bsc#1185010) - amd/amdgpu: Disable VCN DPG mode for Picasso (git-fixes). - amdgpu: avoid incorrect %hu format string (git-fixes). - apparmor: Fix aa_label refcnt leak in policy_update (git-fixes). - apparmor: check/put label on apparmor_sk_clone_security() (git-fixes). - appletalk: Fix skb allocation size in loopback case (git-fixes). - arm64/mm: Fix pfn_valid() for ZONE_DEVICE based memory (git-fixes). - arm64: Add missing ISB after invalidating TLB in __primary_switch (git-fixes). - arm64: avoid -Woverride-init warning (git-fixes). - arm64: kasan: fix page_alloc tagging with DEBUG_VIRTUAL (git-fixes). - arm64: kdump: update ppos when reading elfcorehdr (git-fixes). - arm64: kexec_file: fix memory leakage in create_dtb() when fdt_open_into() fails (git-fixes). - arm64: link with -z norelro for LLD or aarch64-elf (git-fixes). - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE (git-fixes). - arm64: make STACKPROTECTOR_PER_TASK configurable (bsc#1181862). - arm64: ptrace: Fix seccomp of traced syscall -1 (NO_SYSCALL) (git-fixes). - arm64: ptrace: Use NO_SYSCALL instead of -1 in syscall_trace_enter() (git-fixes). - arm64: vdso32: make vdso32 install conditional (git-fixes). - arm: mm: use __pfn_to_section() to get mem_section (git-fixes). - ata: ahci: Disable SXS for Hisilicon Kunpeng920 (git-fixes). - ata: libahci_platform: fix IRQ check (git-fixes). - ath10k: Fix a use after free in ath10k_htc_send_bundle (git-fixes). - ath10k: Fix ath10k_wmi_tlv_op_pull_peer_stats_info() unlock without lock (git-fixes). - ath10k: fix wmi mgmt tx queue full due to race condition (git-fixes). - ath10k: hold RCU lock when calling ieee80211_find_sta_by_ifaddr() (git-fixes). - ath9k: Fix error check in ath9k_hw_read_revisions() for PCI devices (git-fixes). - ath9k: fix transmitting to stations in dynamic SMPS mode (git-fixes). - atl1c: fix error return code in atl1c_probe() (git-fixes). - atl1e: fix error return code in atl1e_probe() (git-fixes). - backlight: journada720: Fix Wmisleading-indentation warning (git-fixes). - batman-adv: initialize "struct batadv_tvlv_tt_vlan_data"->reserved field (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - binfmt_misc: fix possible deadlock in bm_register_write (git-fixes). - blk-iocost: ioc_pd_free() shouldn't assume irq disabled (git-fixes). - blk-mq: Swap two calls in blk_mq_exit_queue() (git-fixes). - blk-mq: plug request for shared sbitmap (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blk-mq: set default elevator as deadline in case of hctx shared tagset (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - blkcg: fix memleak for iolatency (git-fixes). - block, bfq: set next_rq to waker_bfqq->next_rq in waker injection (bsc#1168838). - block/genhd: use atomic_t for disk_event->block (bsc#1185497). - block: Fix three kernel-doc warnings (git-fixes). - block: fix get_max_io_size() (git-fixes). - block: recalculate segment count for multi-segment discards correctly (bsc#1184724). - block: rsxx: fix error return code of rsxx_pci_probe() (git-fixes). - block: rsxx: select CONFIG_CRC32 (git-fixes). - bluetooth: eliminate the potential race condition when removing the HCI controller (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: Fix RX consumer index logic in the error path (git-fixes). - bnxt_en: fix ternary sign extension bug in bnxt_show_temp() (git-fixes). - bnxt_en: reliably allocate IRQ table on reset to avoid crash (jsc#SLE-8371 bsc#1153274). - bnxt_en: reverse order of TX disable and carrier off (git-fixes). - bpf, sockmap: Fix sk->prot unhash op reset (bsc#1155518). - bpf,x64: Pad NOPs to make images converge more easily (bsc#1178163). - bpf: Add sanity check for upper ptr_limit (bsc#1183686 bsc#1183775). - bpf: Avoid warning when re-casting __bpf_call_base into __bpf_call_base_args (bsc#1155518). - bpf: Declare __bpf_free_used_maps() unconditionally (bsc#1155518). - bpf: Do not do bpf_cgroup_storage_set() for kuprobe/tp programs (bsc#1155518). - bpf: Enforce that struct_ops programs be GPL-only (bsc#1177028). - bpf: Fix 32 bit src register truncation on div/mod (bsc#1184170). - bpf: Fix an unitialized value in bpf_iter (bsc#1177028). - bpf: Fix leakage of uninitialized bpf stack under speculation (bsc#1155518). - bpf: Fix masking negation logic upon negative dst register (bsc#1155518). - bpf: Fix propagation of 32 bit unsigned bounds from 64 bit bounds (bsc#1177028). - bpf: Fix verifier jsgt branch analysis on max bound (bsc#1155518). - bpf: Refcount task stack in bpf_get_task_stack (bsc#1177028). - bpf: Remove MTU check in __bpf_skb_max_len (bsc#1155518). - bpf: Simplify alu_limit masking for pointer arithmetic (bsc#1183686 bsc#1183775). - bpf: link: Refuse non-O_RDWR flags in BPF_OBJ_GET (bsc#1177028). - bpf_lru_list: Read double-checked variable once without lock (bsc#1155518). - brcmfmac: Add DMI nvram filename quirk for Predia Basic tablet (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Voyo winpad A15 tablet (git-fixes). - brcmfmac: clear EAP/association status bits on linkdown events (git-fixes). - bsg: free the request before return error code (git-fixes). - btrfs: abort the transaction if we fail to inc ref in btrfs_copy_root (bsc#1184217). - btrfs: always pin deleted leaves when there are active tree mod log users (bsc#1184224). - btrfs: fix exhaustion of the system chunk array due to concurrent allocations (bsc#1183386). - btrfs: fix extent buffer leak on failure to copy root (bsc#1184218). - btrfs: fix qgroup data rsv leak caused by falloc failure (bsc#1185549). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between swap file activation and snapshot creation (bsc#1185587). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between transaction aborts and fsyncs leading to use-after-free (bsc#1186441). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race between writes to swap files and scrub (bsc#1185586). - btrfs: fix race when cloning extent buffer during rewind of an old root (bsc#1184193). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix race when picking most recent mod log operation for an old root (bsc#1186439). - btrfs: fix stale data exposure after cloning a hole with NO_HOLES enabled (bsc#1184220). - btrfs: fix subvolume/snapshot deletion not triggered on mount (bsc#1184219). - btrfs: track qgroup released data in own variable in insert_prealloc_file_extent (bsc#1185549). - bus: fsl-mc: add the dpdbg device type (bsc#1185670). - bus: fsl-mc: list more commands as accepted through the ioctl (bsc#1185670). - bus: omap_l3_noc: mark l3 irqs as IRQF_NO_THREAD (git-fixes). - bus: qcom: Put child node before return (git-fixes). - bus: ti-sysc: Fix warning on unbind if reset is not deasserted (git-fixes). - can: c_can: move runtime PM enable/disable to c_can_platform (git-fixes). - can: c_can_pci: c_can_pci_remove(): fix use-after-free (git-fixes). - can: flexcan: assert FRZ bit in flexcan_chip_freeze() (git-fixes). - can: flexcan: enable RX FIFO after FRZ/HALT valid (git-fixes). - can: flexcan: flexcan_chip_freeze(): fix chip freeze for missing bitrate (git-fixes). - can: flexcan: invoke flexcan_chip_freeze() to enter freeze mode (git-fixes). - can: m_can: m_can_do_rx_poll(): fix extraneous msg loss warning (git-fixes). - can: peak_usb: Revert "can: peak_usb: add forgotten supported devices" (git-fixes). - can: peak_usb: add forgotten supported devices (git-fixes). - can: skb: can_skb_set_owner(): fix ref counting if socket was closed before setting skb ownership (git-fixes). - cdc-acm: fix BREAK rx code path adding necessary calls (git-fixes). - cdc-wdm: untangle a circular dependency between callback and softint (git-fixes). - cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom (git-fixes). - cdrom: gdrom: initialize global variable at init time (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - cfg80211: remove WARN_ON() in cfg80211_sme_connect (git-fixes). - cfg80211: scan: drop entry from hidden_list on overflow (git-fixes). - ch_ktls: Fix kernel panic (jsc#SLE-15131). - ch_ktls: do not send snd_una update to TCB in middle (jsc#SLE-15131). - ch_ktls: fix device connection close (jsc#SLE-15131). - ch_ktls: fix enum-conversion warning (jsc#SLE-15129). - ch_ktls: tcb close causes tls connection failure (jsc#SLE-15131). - cifs: New optype for session operations (bsc#1181507). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: check pointer before freeing (bsc#1183534). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs_debug: use %pd instead of messing with ->d_name (bsc#1181507). - clk: exynos7: Mark aclk_fsys1_200 as critical (git-fixes). - clk: fix invalid usage of list cursor in register (git-fixes). - clk: fix invalid usage of list cursor in unregister (git-fixes). - clk: mvebu: armada-37xx-periph: Fix switching CPU freq from 250 Mhz to 1 GHz (git-fixes). - clk: mvebu: armada-37xx-periph: Fix workaround for switching from L1 to L0 (git-fixes). - clk: mvebu: armada-37xx-periph: remove .set_parent method for CPU PM clock (git-fixes). - clk: qcom: a53-pll: Add missing MODULE_DEVICE_TABLE (git-fixes). - clk: socfpga: arria10: Fix memory leak of socfpga_clk on error return (git-fixes). - clk: socfpga: fix iomem pointer cast on 64-bit (git-fixes). - clk: uniphier: Fix potential infinite loop (git-fixes). - clk: zynqmp: move zynqmp_pll_set_mode out of round_rate callback (git-fixes). - completion: Drop init_completion define (git-fixes). - configfs: fix a use-after-free in __configfs_open_file (git-fixes). - coresight: etm4x: Fix issues on trcseqevr access (git-fixes). - coresight: etm4x: Fix save and restore of TRCVMIDCCTLR1 register (git-fixes). - coresight: remove broken __exit annotations (git-fixes). - coresight: tmc-etr: Fix barrier packet insertion for perf buffer (git-fixes). - cpufreq: Kconfig: fix documentation links (git-fixes). - cpufreq: armada-37xx: Fix determining base CPU frequency (git-fixes). - cpufreq: armada-37xx: Fix driver cleanup when registration failed (git-fixes). - cpufreq: armada-37xx: Fix setting TBG parent for load levels (git-fixes). - cpufreq: armada-37xx: Fix the AVS value for load L1 (git-fixes). - cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758). - cpuidle/pseries: Fixup CEDE0 latency only for POWER10 onwards (bsc#1185550 ltc#192610). - crypto: api - check for ERR pointers in crypto_destroy_tfm() (git-fixes). - crypto: arm/curve25519 - Move '.fpu' after '.arch' (git-fixes). - crypto: chelsio - Read rxchannel-id from firmware (git-fixes). - crypto: mips/poly1305 - enable for all MIPS processors (git-fixes). - crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init (git-fixes). - crypto: qat - Fix a double free in adf_create_ring (git-fixes). - crypto: qat - do not release uninitialized resources (git-fixes). - crypto: qat - fix error path in adf_isr_resource_alloc() (git-fixes). - crypto: qat - fix unmap invalid dma address (git-fixes). - crypto: rng - fix crypto_rng_reset() refcounting when !CRYPTO_STATS (git-fixes). - crypto: stm32/cryp - Fix PM reference leak on stm32-cryp.c (git-fixes). - crypto: stm32/hash - Fix PM reference leak on stm32-hash.c (git-fixes). - crypto: tcrypt - avoid signed overflow in byte count (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4/chtls/cxgbit: Keeping the max ofld immediate data size same in cxgb4 and ulds (git-fixes). - cxgb4: Fix unintentional sign extension issues (git-fixes). - cxgb4: avoid collecting SGE_QBASE regs during traffic (git-fixes). - dm era: Fix bitset memory leaks (git-fixes). - dm era: Recover committed writeset after crash (git-fixes). - dm era: Reinitialize bitset cache before digesting a new writeset (git-fixes). - dm era: Update in-core bitset after committing the metadata (git-fixes). - dm era: Use correct value size in equality function of writeset tree (git-fixes). - dm era: Verify the data block size hasn't changed (git-fixes). - dm era: only resize metadata in preresume (git-fixes). - dm integrity: fix error reporting in bitmap mode after creation (git-fixes). - dm ioctl: fix error return code in target_message (git-fixes). - dm mpath: fix racey management of PG initialization (git-fixes). - dm mpath: switch paths in dm_blk_ioctl() code path (bsc#1167574, bsc#1175995, bsc#1184485). - dm raid: fix discard limits for raid1 (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (bsc#1185581). - dm writecache: fix the maximum number of arguments (git-fixes). - dm writecache: handle DAX to partitions on persistent memory correctly (git-fixes). - dm writecache: remove BUG() and fail gracefully instead (git-fixes). - dm zoned: select CONFIG_CRC32 (git-fixes). - dm: avoid filesystem lookup in dm_get_dev_t() (git-fixes). - dm: eliminate potential source of excessive kernel log noise (git-fixes). - dm: fix bug with RCU locking in dm_blk_report_zones (git-fixes). - dm: remove invalid sparse __acquires and __releases annotations (git-fixes). - dmaengine: Fix a double free in dma_async_device_register (git-fixes). - dmaengine: dw-edma: Fix crash on loading/unloading driver (git-fixes). - dmaengine: dw: Make it dependent to HAS_IOMEM (git-fixes). - dmaengine: idxd: Fix clobbering of SWERR overflow bit on writeback (git-fixes). - dmaengine: idxd: Fix potential null dereference on pointer status (git-fixes). - dmaengine: idxd: cleanup pci interrupt vector allocation management (git-fixes). - dmaengine: idxd: clear MSIX permission entry on shutdown (git-fixes). - dmaengine: idxd: fix cdev setup and free device lifetime issues (git-fixes). - dmaengine: idxd: fix delta_rec and crc size field for completion record (git-fixes). - dmaengine: idxd: fix dma device lifetime (git-fixes). - dmaengine: idxd: fix opcap sysfs attribute output (git-fixes). - dmaengine: idxd: fix wq cleanup of WQCFG registers (git-fixes). - dmaengine: idxd: fix wq size store permission state (git-fixes). - dmaengine: idxd: removal of pcim managed mmio mapping (git-fixes). - docs: kernel-parameters: Add gpio_mockup_named_lines (git-fixes). - docs: kernel-parameters: Move gpio-mockup for alphabetic order (git-fixes). - dpaa_eth: Remove unnecessary boolean expression in dpaa_get_headroom (git-fixes). - dpaa_eth: Use random MAC address when none is given (bsc#1184811). - dpaa_eth: copy timestamp fields to new skb in A-050385 workaround (git-fixes). - dpaa_eth: fix the RX headroom size alignment (git-fixes). - dpaa_eth: update the buffer layout for non-A050385 erratum scenarios (git-fixes). - drivers: hv: Fix whitespace errors (bsc#1185725). - drivers: net: xgene: Fix the order of the arguments of 'alloc_etherdev_mqs()' (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drivers: video: fbcon: fix NULL dereference in fbcon_cursor() (git-fixes). - drm/amd/display/dc/dce/dce_aux: Remove duplicate line causing 'field overwritten' issue (git-fixes). - drm/amd/display: Check for DSC support instead of ASIC revision (git-fixes). - drm/amd/display: Correct algorithm for reversed gamma (git-fixes). - drm/amd/display: DCHUB underflow counter increasing in some scenarios (git-fixes). - drm/amd/display: Do not optimize bandwidth before disabling planes (git-fixes). - drm/amd/display: Fix UBSAN warning for not a valid value for type '_Bool' (git-fixes). - drm/amd/display: Fix UBSAN: shift-out-of-bounds warning (git-fixes). - drm/amd/display: Fix debugfs link_settings entry (git-fixes). - drm/amd/display: Fix nested FPU context in dcn21_validate_bandwidth() (git-fixes). - drm/amd/display: Fix off by one in hdmi_14_process_transaction() (git-fixes). - drm/amd/display: Fix two cursor duplication when using overlay (git-fixes). - drm/amd/display: Force vsync flip when reconfiguring MPCC (git-fixes). - drm/amd/display: Guard against NULL pointer deref when get_i2c_info fails (git-fixes). - drm/amd/display: Initialize attribute for hdcp_srm sysfs file (git-fixes). - drm/amd/display: Reject non-zero src_y and src_x for video planes (git-fixes). - drm/amd/display: Revert dram_clock_change_latency for DCN2.1 (git-fixes). - drm/amd/display: Try YCbCr420 color when YCbCr444 fails (git-fixes). - drm/amd/display: add handling for hdcp2 rx id list validation (git-fixes). - drm/amd/display: changing sr exit latency (git-fixes). - drm/amd/display: fix dml prefetch validation (git-fixes). - drm/amd/display: fixed divide by zero kernel crash during dsc enablement (git-fixes). - drm/amd/display: turn DPMS off on connector unplug (git-fixes). - drm/amd/pm: fix workload mismatch on vega10 (git-fixes). - drm/amd/powerplay: fix spelling mistake "smu_state_memroy_block" (bsc#1152489) - drm/amdgpu : Fix asic reset regression issue introduce by 8f211fe8ac7c4f (git-fixes). - drm/amdgpu/display/dm: add missing parameter documentation (git-fixes). - drm/amdgpu/display: buffer INTERRUPT_LOW_IRQ_CONTEXT interrupt work (git-fixes). - drm/amdgpu/display: remove redundant continue statement (git-fixes). - drm/amdgpu/display: restore AUX_DPHY_TX_CONTROL for DCN2.x (git-fixes). - drm/amdgpu/display: use GFP_ATOMIC in dcn21_validate_bandwidth_fp() (git-fixes). - drm/amdgpu/swsmu: add interrupt work function (git-fixes). - drm/amdgpu/swsmu: add interrupt work handler for smu11 parts (git-fixes). - drm/amdgpu: Add additional Sienna Cichlid PCI ID (git-fixes). - drm/amdgpu: Add check to prevent IH overflow (git-fixes). - drm/amdgpu: Add mem sync flag for IB allocated by SA (git-fixes). - drm/amdgpu: Fix GPU TLB update error when PAGE_SIZE > AMDGPU_PAGE_SIZE (git-fixes). - drm/amdgpu: Fix some unload driver issues (git-fixes). - drm/amdgpu: Init GFX10_ADDR_CONFIG for VCN v3 in DPG mode (git-fixes). - drm/amdgpu: check alignment on CPU page for bo map (git-fixes). - drm/amdgpu: disable 3DCGCG on picasso/raven1 to avoid compute hang (git-fixes). - drm/amdgpu: fb BO should be ttm_bo_type_device (git-fixes). - drm/amdgpu: fix NULL pointer dereference (git-fixes). - drm/amdgpu: fix concurrent VM flushes on Vega/Navi v2 (git-fixes). - drm/amdgpu: fix offset calculation in amdgpu_vm_bo_clear_mappings() (git-fixes). - drm/amdgpu: fix parameter error of RREG32_PCIE() in amdgpu_regs_pcie (git-fixes). - drm/amdgpu: mask the xgmi number of hops reported from psp to kfd (git-fixes). - drm/amdgpu: remove unused variable from struct amdgpu_bo (git-fixes). - drm/amdgpu: update gc golden setting for Navi12 (git-fixes). - drm/amdgpu: update sdma golden setting for Navi12 (git-fixes). - drm/amdkfd: Fix UBSAN shift-out-of-bounds warning (git-fixes). - drm/amdkfd: Fix cat debugfs hang_hws file causes system crash bug (git-fixes). - drm/amdkfd: Put ACPI table after using it (bsc#1152489) Backporting notes: * context changes - drm/amdkfd: dqm fence memory corruption (git-fixes). - drm/amdkfd: fix build error with AMD_IOMMU_V2=m (git-fixes). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: AST2500 fixups (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add 25MHz refclk support (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for 1152x864 mode (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Add support for AIP200 (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Correct mode table for AST2500 precatch (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable VGA decoding while driver is active (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Disable screen on register init (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix P2A config detection (bsc#1174416). - drm/ast: Fix invalid usage of AST_MAX_HWC_WIDTH in cursor atomic_check (git-fixes). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Fix register access in non-P2A mode for DP501 (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: Keep MISC fields when enabling VGA (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/ast: drm/ast: Fix boot address for AST2500 (bsc#1174416). - drm/compat: Clear bounce structures (git-fixes). - drm/dp_mst: Revise broadcast msg lct & lcr (git-fixes). - drm/dp_mst: Set CLEAR_PAYLOAD_ID_TABLE as broadcast (git-fixes). - drm/hisilicon: Fix use-after-free (git-fixes). - drm/i915/display: fix compiler warning about array overrun (git-fixes). - drm/i915/gt: Clear CACHE_MODE prior to clearing residuals (git-fixes). - drm/i915/gt: Disable HiZ Raw Stall Optimization on broken gen7 (git-fixes). - drm/i915/gvt: Fix error code in intel_gvt_init_device() (git-fixes). - drm/i915/gvt: Set SNOOP for PAT3 on BXT/APL to workaround GPU BB hang (git-fixes). - drm/i915/overlay: Fix active retire callback alignment (git-fixes). - drm/i915/selftests: Fix some error codes (git-fixes). - drm/i915: Avoid div-by-zero on gen2 (git-fixes). - drm/i915: Fix ICL MG PHY vswing handling (git-fixes). - drm/i915: Fix crash in auto_retire (git-fixes). - drm/i915: Fix invalid access to ACPI _DSM objects (bsc#1184074). - drm/i915: Hold onto an explicit ref to i915_vma_work.pinned (git-fixes). - drm/i915: Read C0DRB3/C1DRB3 as 16 bits again (git-fixes). - drm/i915: Wedge the GPU if command parser setup fails (git-fixes). - drm/imx: imx-ldb: fix out of bounds array access warning (git-fixes). - drm/ingenic: Fix non-OSD mode (git-fixes). - drm/ingenic: Register devm action to cleanup encoders (git-fixes). - drm/komeda: Fix bit check to import to value of proper type (git-fixes). - drm/lima: fix reference leak in lima_pm_busy (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (git-fixes). - drm/mediatek: Fix aal size config (bsc#1152489) Backporting notes: * replaced mtk_ddp_write() with writel() - drm/meson: fix shutdown crash when component not probed (git-fixes). - drm/msm/a5xx: Remove overwriting A5XX_PC_DBG_ECO_CNTL register (git-fixes). - drm/msm/adreno: a5xx_power: Do not apply A540 lm_setup to other GPUs (git-fixes). - drm/msm/gem: Add obj->lock wrappers (bsc#1152489) Backporting notes: * taken for 9b73bde39cf2 ("drm/msm: Fix use-after-free in msm_gem with carveout") * context changes - drm/msm/mdp5: Configure PP_SYNC_HEIGHT to double the vtotal (git-fixes). - drm/msm/mdp5: Do not multiply vclk line count by 100 (git-fixes). - drm/msm: Fix WARN_ON() splat in _free_object() (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix a5xx/a6xx timestamps (git-fixes). - drm/msm: Fix races managing the OOB state for timestamp vs (bsc#1152489) Backporting notes: * context changes - drm/msm: Fix suspend/resume on i.MX5 (git-fixes). - drm/msm: Fix use-after-free in msm_gem with carveout (bsc#1152489) Backporting notes: * context changes - drm/msm: Ratelimit invalid-fence message (git-fixes). - drm/msm: Set drvdata to NULL when msm_drm_init() fails (git-fixes). - drm/msm: fix shutdown hook in case GPU components failed to bind (git-fixes). - drm/nouveau/kms/nv50-: Get rid of bogus nouveau_conn_mode_valid() (git-fixes). - drm/nouveau: bail out of nouveau_channel_new if channel init fails (bsc#1152489) - drm/omap: fix misleading indentation in pixinc() (git-fixes). - drm/panfrost: Clear MMU irqs before handling the fault (git-fixes). - drm/panfrost: Do not corrupt the queue mutex on open/close (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Do not try to map pages that are already mapped (git-fixes). - drm/panfrost: Fix job timeout handling (bsc#1152472) Backporting notes: * context changes - drm/panfrost: Remove unused variables in panfrost_job_close() (bsc#1152472) - drm/probe-helper: Check epoch counter in output_poll_execute() (git-fixes). - drm/qxl: do not run release if qxl failed to init (git-fixes). - drm/radeon/dpm: Disable sclk switching on Oland when two 4K 60Hz monitors are connected (git-fixes). - drm/radeon: Avoid power table parsing memory leaks (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (git-fixes). - drm/radeon: Fix off-by-one power_state index heap overwrite (git-fixes). - drm/radeon: fix AGP dependency (git-fixes). - drm/radeon: fix copy of uninitialized variable back to userspace (git-fixes). - drm/shmem-helper: Check for purged buffers in fault handler (git-fixes). - drm/shmem-helper: Do not remove the offset in vm_area_struct pgoff (git-fixes). - drm/shmem-helpers: vunmap: Do not put pages for dma-buf (git-fixes). - drm/sun4i: tcon: fix inverted DCLK polarity (bsc#1152489) Backporting notes: * context changes - drm/tegra: Fix reference leak when pm_runtime_get_sync() fails (git-fixes). - drm/tegra: dc: Do not set PLL clock to 0Hz (git-fixes). - drm/tegra: dc: Restore coupling of display controllers (git-fixes). - drm/tegra: sor: Grab runtime PM reference across reset (git-fixes). - drm/tilcdc: send vblank event when disabling crtc (git-fixes). - drm/vc4: crtc: Reduce PV fifo threshold on hvs4 (git-fixes). - drm/vc4: hdmi: Restore cec physical address on reconnect (bsc#1152472) Backporting notes: * context changes * change vc4_hdmi to vc4->hdmi * removed references to encoder->hdmi_monitor - drm/vkms: fix misuse of WARN_ON (git-fixes). - drm: Added orientation quirk for OneGX1 Pro (git-fixes). - drm: meson_drv add shutdown function (git-fixes). - drm: rcar-du: Fix PM reference leak in rcar_cmm_enable() (git-fixes). - drm: rcar-du: Fix crash when using LVDS1 clock for CRTC (bsc#1152489) Backporting notes: * context changes - drm: rcar-du: Fix leak of CMM platform device reference (git-fixes). - drm: xlnx: zynqmp: fix a memset in zynqmp_dp_train() (git-fixes). - e1000e: Fix duplicate include guard (git-fixes). - e1000e: Fix error handling in e1000_set_d0_lplu_state_82571 (git-fixes). - e1000e: add rtnl_lock() to e1000_reset_task (git-fixes). - efi: use 32-bit alignment for efi_guid_t literals (git-fixes). - enetc: Fix reporting of h/w packet counters (git-fixes). - enetc: Let the hardware auto-advance the taprio base-time of 0 (git-fixes). - enetc: Workaround for MDIO register access issue (git-fixes). - epoll: check for events when removing a timed out thread from the wait queue (git-fixes). - ethernet/netronome/nfp: Fix a use after free in nfp_bpf_ctrl_msg_rx (git-fixes). - ethernet: alx: fix order of calls on resume (git-fixes). - ethernet:enic: Fix a use after free bug in enic_hard_start_xmit (git-fixes). - ethtool: fix incorrect datatype in set_eee ops (bsc#1176447). - ethtool: fix missing NLM_F_MULTI flag when dumping (bsc#1176447). - ethtool: pause: make sure we init driver stats (jsc#SLE-15075). - exec: Move would_dump into flush_old_exec (git-fixes). - ext4: do not try to set xattr into ea_inode if value is empty (bsc#1184730). - ext4: find old entry again if failed to rename whiteout (bsc#1184742). - ext4: fix potential error in ext4_do_update_inode (bsc#1184731). - ext4: fix potential htree index checksum corruption (bsc#1184728). - extcon: Add stubs for extcon_register_notifier_all() functions (git-fixes). - extcon: Fix error handling in extcon_dev_register (git-fixes). - extcon: arizona: Fix some issues when HPDET IRQ fires after the jack has been unplugged (git-fixes). - extcon: arizona: Fix various races on driver unbind (git-fixes). - fbdev: zero-fill colormap in fbcmap.c (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Fix a use after bug in efi_mem_reserve_persistent (git-fixes). - firmware: arm_scpi: Prevent the ternary sign expansion bug (git-fixes). - firmware: qcom-scm: Fix QCOM_SCM configuration (git-fixes). - firmware: qcom_scm: Fix kernel-doc function names to match (git-fixes). - firmware: qcom_scm: Make __qcom_scm_is_call_available() return bool (git-fixes). - firmware: qcom_scm: Reduce locking section for __get_convention() (git-fixes). - firmware: qcom_scm: Workaround lack of "is available" call on SC7180 (git-fixes). - flow_dissector: fix byteorder of dissected ICMP ID (bsc#1154353). - fnic: use scsi_host_busy_iter() to traverse commands (bsc#1179851). - fotg210-udc: Complete OUT requests on short packets (git-fixes). - fotg210-udc: Do not DMA more than the buffer can take (git-fixes). - fotg210-udc: Fix DMA on EP0 for length > max packet size (git-fixes). - fotg210-udc: Fix EP0 IN requests bigger than two packets (git-fixes). - fotg210-udc: Mask GRP2 interrupts we do not handle (git-fixes). - fotg210-udc: Remove a dubious condition leading to fotg210_done (git-fixes). - fs/epoll: restore waking from ep_done_scan() (bsc#1183868). - fs/jfs: fix potential integer overflow on shift of a int (bsc#1184741). - fs: direct-io: fix missing sdio->boundary (bsc#1184736). - fsl/fman: check dereferencing null pointer (git-fixes). - fsl/fman: fix dereference null return value (git-fixes). - fsl/fman: fix eth hash table allocation (git-fixes). - fsl/fman: fix unreachable code (git-fixes). - fsl/fman: reuse set_mac_address() in dtsec init() (bsc#1184811). - fsl/fman: tolerate missing MAC address in device tree (bsc#1184811). - fsl/fman: use 32-bit unsigned integer (git-fixes). - ftrace/x86: Tell objtool to ignore nondeterministic ftrace stack layout (bsc#1177028). - ftrace: Fix modify_ftrace_direct (bsc#1177028). - ftrace: Handle commands when closing set_ftrace_filter file (git-fixes). - fuse: fix bad inode (bsc#1184211). - fuse: fix bad inode (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix live lock in fuse_iget() (bsc#1184211). - fuse: fix write deadlock (bsc#1185573). - fuse: verify write return (git-fixes). - futex: Change utime parameter to be 'const ... *' (git-fixes). - futex: Do not apply time namespace adjustment on FUTEX_LOCK_PI (bsc#1164648). - futex: Get rid of the val2 conditional dance (git-fixes). - futex: Make syscall entry points less convoluted (git-fixes). - gcc-plugins: drop support for GCC &lt;= 4.7 (bcs#1181862). - gcc-plugins: make it possible to disable CONFIG_GCC_PLUGINS again (bcs#1181862). - gcc-plugins: simplify GCC plugin-dev capability test (bsc#1181862). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - geneve: do not modify the shared tunnel info when PMTU triggers an ICMP reply (git-fixes). - genirq/irqdomain: Do not try to free an interrupt that has no (git-fixes) - genirq: Disable interrupts for force threaded handlers (git-fixes) - genirq: Reduce irqdebug cacheline bouncing (bsc#1185703 ltc#192641). - gianfar: Account for Tx PTP timestamp in the skb headroom (git-fixes). - gianfar: Fix TX timestamping with a stacked DSA driver (git-fixes). - gianfar: Handle error code at MAC address change (git-fixes). - gianfar: Replace skb_realloc_headroom with skb_cow_head for PTP (git-fixes). - gpio: omap: Save and restore sysconfig (git-fixes). - gpio: pca953x: Set IRQ type when handle Intel Galileo Gen 2 (git-fixes). - gpio: sysfs: Obey valid_mask (git-fixes). - gpio: xilinx: Correct kernel doc for xgpio_probe() (git-fixes). - gpio: zynq: fix reference leak in zynq_gpio functions (git-fixes). - gpiolib: Do not free if pin ranges are not defined (git-fixes). - gpiolib: acpi: Add missing IRQF_ONESHOT (git-fixes). - gpiolib: acpi: Add quirk to ignore EC wakeups on Dell Venue 10 Pro 5055 (git-fixes). - gpu/xen: Fix a use after free in xen_drm_drv_init (git-fixes). - hrtimer: Update softirq_expires_next correctly after (git-fixes) - hv_netvsc: Reset the RSC count if NVSP_STAT_FAIL in netvsc_receive() (git-fixes). - hwmon: (ina3221) Fix PM usage counter unbalance in ina3221_write_enable (git-fixes). - hwmon: (occ) Fix poll rate limiting (git-fixes). - i2c: Add I2C_AQ_NO_REP_START adapter quirk (git-fixes). - i2c: bail out early when RDWR parameters are wrong (git-fixes). - i2c: cadence: add IRQ check (git-fixes). - i2c: emev2: add IRQ check (git-fixes). - i2c: i801: Do not generate an interrupt on bus reset (git-fixes). - i2c: img-scb: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: imx-lpi2c: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: jz4780: add IRQ check (git-fixes). - i2c: mlxbf: add IRQ check (git-fixes). - i2c: omap: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: rcar: faster irq code to minimize HW race condition (git-fixes). - i2c: rcar: optimize cacheline to minimize HW race condition (git-fixes). - i2c: s3c2410: fix possible NULL pointer deref on read message after write (git-fixes). - i2c: sh7760: add IRQ check (git-fixes). - i2c: sh7760: fix IRQ error path (git-fixes). - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E (git-fixes). - i2c: sprd: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: tegra: Add missing pm_runtime_put() (bsc#1184386). - i2c: tegra: Check errors for both positive and negative values (bsc#1184386). - i2c: tegra: Clean up and improve comments (bsc#1184386). - i2c: tegra: Clean up printk messages (bsc#1184386). - i2c: tegra: Clean up probe function (bsc#1184386). - i2c: tegra: Clean up variable names (bsc#1184386). - i2c: tegra: Clean up variable types (bsc#1184386). - i2c: tegra: Clean up whitespaces, newlines and indentation (bsc#1184386). - i2c: tegra: Create i2c_writesl_vi() to use with VI I2C for filling TX FIFO (bsc#1184386). - i2c: tegra: Factor out error recovery from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out hardware initialization into separate function (bsc#1184386). - i2c: tegra: Factor out packet header setup from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Factor out register polling into separate function (bsc#1184386). - i2c: tegra: Handle potential error of tegra_i2c_flush_fifos() (bsc#1184386). - i2c: tegra: Improve driver module description (bsc#1184386). - i2c: tegra: Improve formatting of variables (bsc#1184386). - i2c: tegra: Initialize div-clk rate unconditionally (bsc#1184386). - i2c: tegra: Make tegra_i2c_flush_fifos() usable in atomic transfer (bsc#1184386). - i2c: tegra: Mask interrupt in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Move out all device-tree parsing into tegra_i2c_parse_dt() (bsc#1184386). - i2c: tegra: Remove "dma" variable from tegra_i2c_xfer_msg() (bsc#1184386). - i2c: tegra: Remove error message used for devm_request_irq() failure (bsc#1184386). - i2c: tegra: Remove i2c_dev.clk_divisor_non_hs_mode member (bsc#1184386). - i2c: tegra: Remove likely/unlikely from the code (bsc#1184386). - i2c: tegra: Remove outdated barrier() (bsc#1184386). - i2c: tegra: Remove redundant check in tegra_i2c_issue_bus_clear() (bsc#1184386). - i2c: tegra: Rename wait/poll functions (bsc#1184386). - i2c: tegra: Reorder location of functions in the code (bsc#1184386). - i2c: tegra: Runtime PM always available on Tegra (bsc#1184386). - i2c: tegra: Use clk-bulk helpers (bsc#1184386). - i2c: tegra: Use devm_platform_get_and_ioremap_resource() (bsc#1184386). - i2c: tegra: Use platform_get_irq() (bsc#1184386). - i2c: tegra: Use reset_control_reset() (bsc#1184386). - i2c: tegra: Use threaded interrupt (bsc#1184386). - i2c: tegra: Wait for config load atomically while in ISR (bsc#1184386). - i40e: Add zero-initialization of AQ command structures (git-fixes). - i40e: Added Asym_Pause to supported link modes (git-fixes). - i40e: Fix PHY type identifiers for 2.5G and 5G adapters (git-fixes). - i40e: Fix add TC filter for IPv6 (git-fixes). - i40e: Fix addition of RX filters after enabling FW LLDP agent (git-fixes). - i40e: Fix display statistics for veb_tc (git-fixes). - i40e: Fix endianness conversions (git-fixes). - i40e: Fix flow for IPv6 next header (extension header) (git-fixes). - i40e: Fix kernel oops when i40e driver removes VF's (git-fixes). - i40e: Fix overwriting flow control settings during driver loading (git-fixes). - i40e: Fix parameters in aq_get_phy_register() (jsc#SLE-8025). - i40e: Fix sparse error: 'vsi->netdev' could be null (jsc#SLE-8025). - i40e: Fix sparse error: uninitialized symbol 'ring' (jsc#SLE-13701). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse errors in i40e_txrx.c (git-fixes). - i40e: Fix sparse warning: missing error code 'err' (git-fixes). - i40e: Fix use-after-free in i40e_client_subtask() (git-fixes). - i40e: fix broken XDP support (git-fixes). - i40e: fix the panic when running bpf in xdpdrv mode (git-fixes). - i40e: fix the restart auto-negotiation after FEC modified (git-fixes). - i915/perf: Start hrtimer only if sampling the OA buffer (git-fixes). - iavf: Fix incorrect adapter get in iavf_resume (git-fixes). - iavf: use generic power management (git-fixes). - ibmvfc: Avoid move login if fast fail is enabled (bsc#1185938 ltc#192043). - ibmvfc: Handle move login failure (bsc#1185938 ltc#192043). - ibmvfc: Reinit target retries (bsc#1185938 ltc#192043). - ibmvnic: add comments for spinlock_t definitions (bsc#1183871 ltc#192139). - ibmvnic: avoid calling napi_disable() twice (bsc#1065729). - ibmvnic: avoid multiple line dereference (bsc#1183871 ltc#192139). - ibmvnic: clean up the remaining debugfs data structures (bsc#1065729). - ibmvnic: correctly use dev_consume/free_skb_irq (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290 git-fixes). - ibmvnic: fix block comments (bsc#1183871 ltc#192139). - ibmvnic: fix braces (bsc#1183871 ltc#192139). - ibmvnic: fix miscellaneous checks (bsc#1183871 ltc#192139). - ibmvnic: improve failover sysfs entry (bsc#1043990 ltc#155681 git-fixes). - ibmvnic: merge do_change_param_reset into do_reset (bsc#1183871 ltc#192139). - ibmvnic: prefer 'unsigned long' over 'unsigned long int' (bsc#1183871 ltc#192139). - ibmvnic: prefer strscpy over strlcpy (bsc#1183871 ltc#192139). - ibmvnic: print adapter state as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: print reset reason as a string (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: queue reset work in system_long_wq (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove default label from to_string switch (bsc#1152457 ltc#174432 git-fixes). - ibmvnic: remove duplicate napi_schedule call in do_reset function (bsc#1065729). - ibmvnic: remove duplicate napi_schedule call in open function (bsc#1065729). - ibmvnic: remove unnecessary rmb() inside ibmvnic_poll (bsc#1183871 ltc#192139). - ibmvnic: remove unused spinlock_t stats_lock definition (bsc#1183871 ltc#192139). - ibmvnic: rework to ensure SCRQ entry reads are properly ordered (bsc#1183871 ltc#192139). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Account for port VLAN in VF max packet size calculation (git-fixes). - ice: Cleanup fltr list in case of allocation issues (git-fixes). - ice: Continue probe on link/PHY errors (jsc#SLE-12878). - ice: Fix for dereference of NULL pointer (git-fixes). - ice: Increase control queue timeout (git-fixes). - ice: Use port number instead of PF ID for WoL (jsc#SLE-12878). - ice: fix memory allocation call (jsc#SLE-12878). - ice: fix memory leak if register_netdev_fails (git-fixes). - ice: fix memory leak in ice_vsi_setup (git-fixes). - ice: fix memory leak of aRFS after resuming from suspend (jsc#SLE-12878). - ice: prevent ice_open and ice_stop during reset (git-fixes). - ice: remove DCBNL_DEVRESET bit from PF state (jsc#SLE-7926). - ics932s401: fix broken handling of errors when word reading fails (git-fixes). - igb: Fix duplicate include guard (git-fixes). - igb: XDP extack message on error (jsc#SLE-13536). - igb: XDP xmit back fix error code (jsc#SLE-13536). - igb: avoid premature Rx buffer reuse (jsc#SLE-13536). - igb: avoid transmit queue timeout in xdp path (jsc#SLE-13536). - igb: check timestamp validity (git-fixes). - igb: skb add metasize for xdp (jsc#SLE-13536). - igb: take VLAN double header into account (jsc#SLE-13536). - igb: use xdp_do_flush (jsc#SLE-13536). - igc: Fix Pause Frame Advertising (git-fixes). - igc: Fix Supported Pause Frame Link Setting (git-fixes). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: Fix igc_ptp_rx_pktstamp() (bsc#1160634). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - igc: reinit_locked() should be called with rtnl_lock (git-fixes). - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error (git-fixes). - iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers (git-fixes). - iio: adc: ad7768-1: Fix too small buffer passed to iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ad7793: Add missing error code in ad7793_setup() (git-fixes). - iio: adc: ad7949: fix wrong ADC result due to incorrect bit mask (git-fixes). - iio: adis16400: Fix an error code in adis16400_initial_setup() (git-fixes). - iio: gyro: fxas21002c: balance runtime power in error path (git-fixes). - iio: gyro: mpu3050: Fix error handling in mpu3050_trigger_handler (git-fixes). - iio: gyro: mpu3050: Fix reported temperature value (git-fixes). - iio: hid-sensor-humidity: Fix alignment issue of timestamp channel (git-fixes). - iio: hid-sensor-prox: Fix scale not correct issue (git-fixes). - iio: hid-sensor-temperature: Fix issues of timestamp channel (git-fixes). - iio: proximity: pulsedlight: Fix rumtime PM imbalance on error (git-fixes). - iio: tsl2583: Fix division by a zero lux_val (git-fixes). - iio:accel:adis16201: Fix wrong axis assignment that prevents loading (git-fixes). - iio:adc:qcom-spmi-vadc: add default scale to LR_MUX2_BAT_ID channel (git-fixes). - ima: Free IMA measurement buffer after kexec syscall (git-fixes). - include/linux/sched/mm.h: use rcu_dereference in in_vfork() (git-fixes). - intel_th: Consistency and off-by-one fix (git-fixes). - intel_th: pci: Add Alder Lake-M support (git-fixes). - intel_th: pci: Add Rocket Lake CPU support (git-fixes). - interconnect: core: fix error return code of icc_link_destroy() (git-fixes). - iommu/amd: Add support for map/unmap_resource (jsc#ECO-3482). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183277). - iommu/amd: Fix sleeping in atomic in increase_address_space() (bsc#1183310). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183278). - iommu/intel: Fix memleak in intel_irq_remapping_alloc (bsc#1183312). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183313). - iommu/qcom: add missing put_device() call in qcom_iommu_of_xlate() (bsc#1183637). - iommu/vt-d: Add get_domain_info() helper (bsc#1183279). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183280). - iommu/vt-d: Avoid panic if iommu init fails in tboot system (bsc#1183315). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183281). - iommu/vt-d: Correctly check addr alignment in qi_flush_dev_iotlb_pasid() (bsc#1183316). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183282). - iommu/vt-d: Do not use flush-queue when caching-mode is on (bsc#1183317). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183283). - iommu/vt-d: Fix general protection fault in aux_detach_device() (bsc#1183318). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183284). - iommu/vt-d: Fix ineffective devTLB invalidation for subdevices (bsc#1183319). - iommu/vt-d: Fix status code for Allocate/Free PASID command (bsc#1183320). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183285). - iommu/vt-d: Fix unaligned addresses for intel_flush_svm_range_dev() (bsc#1183321). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183286). - iommu/vt-d: Move intel_iommu info from struct intel_svm to struct intel_svm_dev (bsc#1183322). - iommu/vt-d: Use device numa domain if RHSA is missing (bsc#1184585). - iommu: Check dev->iommu in dev_iommu_priv_get() before dereferencing it (bsc#1183311). - iommu: Switch gather->end to the inclusive end (bsc#1183314). - ionic: linearize tso skb with too many frags (bsc#1167773). - ionic: linearize tso skb with too many frags (bsc#1167773). - iopoll: introduce read_poll_timeout macro (git-fixes). - ipc/mqueue, msg, sem: Avoid relying on a stack reference past its expiry (bsc#1185988). - ipmi/watchdog: Stop watchdog timer when the current action is 'none' (bsc#1184855). - ipw2x00: potential buffer overflow in libipw_wx_set_encodeext() (git-fixes). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1184264). - irqchip/ls-extirq: Add LS1043A, LS1088A external interrupt support (bsc#1185233). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1184264). - irqchip/ls-extirq: add IRQCHIP_SKIP_SET_WAKE to the irqchip flags (bsc#1185233). - irqchip: Add support for Layerscape external interrupt lines (bsc#1185233). - isofs: release buffer head before return (bsc#1182613). - iwlwifi: add support for Qu with AX201 device (git-fixes). - iwlwifi: pcie: make cfg vs. trans_cfg more robust (git-fixes). - ixgbe: fail to create xfrm offload of IPsec tunnel mode SA (git-fixes). - ixgbe: fix unbalanced device enable/disable in suspend/resume (jsc#SLE-13706). - jffs2: fix use after free in jffs2_sum_write_data() (bsc#1184740). - kABI: Fix kABI caused by fixes for bsc#1174426 (bsc#1174426). - kABI: cover up change in struct kvm_arch (bsc#1184969). - kABI: powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - kABI: powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - kABI: repair after "nVMX: Properly handle userspace interrupt window request" - kbuild: Fail if gold linker is detected (bcs#1181862). - kbuild: add dummy toolchains to enable all cc-option etc. in Kconfig (bcs#1181862). - kbuild: change *FLAGS_&lt;basetarget>.o to take the path relative to $(obj) (bcs#1181862). - kbuild: dummy-tools, fix inverted tests for gcc (bcs#1181862). - kbuild: dummy-tools, support MPROFILE_KERNEL checks for ppc (bsc#1181862). - kbuild: improve cc-option to clean up all temporary files (bsc#1178330). - kbuild: include scripts/Makefile.* only when relevant CONFIG is enabled (bcs#1181862). - kbuild: simplify GCC_PLUGINS enablement in dummy-tools/gcc (bcs#1181862). - kbuild: stop filtering out $(GCC_PLUGINS_CFLAGS) from cc-option base (bcs#1181862). - kbuild: use -S instead of -E for precise cc-option test in Kconfig (bsc#1178330). - kconfig: introduce m32-flag and m64-flag (bcs#1181862). - kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale. - kernel/smp: make csdlock timeout depend on boot parameter (bsc#1180846). - kvm: svm: Update svm_xsaves_supported (jsc#SLE-13573). - kvm: x86: Enumerate support for CLZERO instruction (jsc#SLE-13573). - leds: lp5523: check return value of lp5xx_read and jump to cleanup code (git-fixes). - lib/syscall: fix syscall registers retrieval on 32-bit platforms (git-fixes). - libbpf: Add explicit padding to bpf_xdp_set_link_opts (bsc#1177028). - libbpf: Add explicit padding to btf_dump_emit_type_decl_opts (bsc#1177028). - libbpf: Clear map_info before each bpf_obj_get_info_by_fd (bsc#1155518). - libbpf: Fix BTF dump of pointer-to-array-of-struct (bsc#1155518). - libbpf: Fix INSTALL flag order (bsc#1155518). - libbpf: Fix bail out from 'ringbuf_process_ring()' on error (bsc#1177028). - libbpf: Fix error path in bpf_object__elf_init() (bsc#1177028). - libbpf: Fix signed overflow in ringbuf_process_ring (bsc#1177028). - libbpf: Initialize the bpf_seq_printf parameters array field by field (bsc#1177028). - libbpf: Only create rx and tx XDP rings when necessary (bsc#1155518). - libbpf: Use SOCK_CLOEXEC when opening the netlink socket (bsc#1155518). - libnvdimm/label: Return -ENXIO for no slot in __blk_label_update (bsc#1185269). - libnvdimm/namespace: Fix reaping of invalidated block-window-namespace labels (bsc#1185269). - libnvdimm/region: Fix nvdimm_has_flush() to handle ND_REGION_ASYNC (bsc#1184969 git-fixes). - libnvdimm/security: ensure sysfs poll thread woke up and fetch updated attr (git-fixes). - liquidio: Fix unintented sign extension of a left shift of a u16 (git-fixes). - locking/mutex: Fix non debug version of mutex_lock_io_nested() (git-fixes). - locking/qrwlock: Fix ordering in queued_write_lock_slowpath() (bsc#1185041). - lpfc: Decouple port_template and vport_template (bsc#185032). - mISDN: fix crash in fritzpci (git-fixes). - mac80211: Allow HE operation to be longer than expected (git-fixes). - mac80211: bail out if cipher schemes are invalid (git-fixes). - mac80211: choose first enabled channel for monitor (git-fixes). - mac80211: clear sta->fast_rx when STA removed from 4-addr VLAN (git-fixes). - mac80211: clear the beacon's CRC after channel switch (git-fixes). - mac80211: fix TXQ AC confusion (git-fixes). - mac80211: fix double free in ibss_leave (git-fixes). - mac80211: fix rate mask reset (git-fixes). - macvlan: macvlan_count_rx() needs to be aware of preemption (git-fixes). - md-cluster: fix use-after-free issue when removing rdev (bsc#1184082). - md/raid1: properly indicate failure when ending a failed write request (bsc#1185680). - md: do not flush workqueue unconditionally in md_open (bsc#1184081). - md: factor out a mddev_find_locked helper from mddev_find (bsc#1184081). - md: md_open returns -EBUSY when entering racing area (bsc#1184081). - md: split mddev_find (bsc#1184081). - mdio: fix mdio-thunder.c dependency & build error (git-fixes). - media: adv7604: fix possible use-after-free in adv76xx_remove() (git-fixes). - media: cros-ec-cec: do not bail on device_init_wakeup failure (git-fixes). - media: cx23885: add more quirks for reset DMA on some AMD IOMMU (git-fixes). - media: drivers: media: pci: sta2x11: fix Kconfig dependency on GPIOLIB (git-fixes). - media: dvb-usb: fix memory leak in dvb_usb_adapter_init (git-fixes). - media: dvbdev: Fix memory leak in dvb_media_device_free() (git-fixes). - media: em28xx: fix memory leak (git-fixes). - media: gspca/sq905.c: fix uninitialized variable (git-fixes). - media: i2c: adv7511-v4l2: fix possible use-after-free in adv7511_remove() (git-fixes). - media: i2c: adv7842: fix possible use-after-free in adv7842_remove() (git-fixes). - media: i2c: tda1997: Fix possible use-after-free in tda1997x_remove() (git-fixes). - media: imx: capture: Return -EPIPE from __capture_legacy_try_fmt() (git-fixes). - media: ite-cir: check for receive overflow (git-fixes). - media: m88rs6000t: avoid potential out-of-bounds reads on arrays (git-fixes). - media: mantis: remove orphan mantis_core.c (git-fixes). - media: mceusb: sanity check for prescaler value (git-fixes). - media: media/saa7164: fix saa7164_encoder_register() memory leak bugs (git-fixes). - media: omap4iss: return error code when omap4iss_get() failed (git-fixes). - media: platform: sti: Fix runtime PM imbalance in regs_show (git-fixes). - media: platform: sunxi: sun6i-csi: fix error return code of sun6i_video_start_streaming() (git-fixes). - media: rc: compile rc-cec.c into rc-core (git-fixes). - media: saa7134: use sg_dma_len when building pgtable (git-fixes). - media: saa7146: use sg_dma_len when building pgtable (git-fixes). - media: staging/intel-ipu3: Fix memory leak in imu_fmt (git-fixes). - media: staging/intel-ipu3: Fix race condition during set_fmt (git-fixes). - media: staging/intel-ipu3: Fix set_fmt error handling (git-fixes). - media: tc358743: fix possible use-after-free in tc358743_remove() (git-fixes). - media: usbtv: Fix deadlock on suspend (git-fixes). - media: uvcvideo: Allow entities with no pads (git-fixes). - media: v4l2-ctrls.c: fix race condition in hdl->requests list (git-fixes). - media: v4l2-ctrls.c: fix shift-out-of-bounds in std_validate (git-fixes). - media: v4l: vsp1: Fix bru null pointer access (git-fixes). - media: v4l: vsp1: Fix uif null pointer access (git-fixes). - media: vicodec: add missing v4l2_ctrl_request_hdl_put() (git-fixes). - memory: gpmc: fix out of bounds read and dereference on gpmc_cs[] (git-fixes). - memory: mtk-smi: Fix PM usage counter unbalance in mtk_smi ops (bsc#1183325). - memory: pl353: fix mask of ECC page_size config register (git-fixes). - mfd: arizona: Fix rumtime PM imbalance on error (git-fixes). - mfd: intel_pmt: Fix nuisance messages and handling of disabled capabilities (git-fixes). - mfd: lpc_sch: Partially revert "Add support for Intel Quark X1000" (git-fixes). - mfd: stm32-timers: Avoid clearing auto reload register (git-fixes). - misc/pvpanic: Export module FDT device table (git-fixes). - misc/uss720: fix memory leak in uss720_probe (git-fixes). - misc: eeprom_93xx46: Add quirk to support Microchip 93LC46B eeprom (git-fixes). - misc: fastrpc: restrict user apps from sending kernel RPC messages (git-fixes). - misc: lis3lv02d: Fix false-positive WARN on various HP models (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_datagram payload (git-fixes). - misc: vmw_vmci: explicitly initialize vmci_notify_bm_set_msg struct (git-fixes). - mlxsw: spectrum_mr: Update egress RIF list before route's action (git-fixes). - mm, numa: fix bad pmd by atomically check for pmd_trans_huge when marking page tables prot_numa (bsc#1168777). - mm/rmap: fix potential pte_unmap on an not mapped pte (git-fixes). - mm: hugetlbfs: fix cannot migrate the fallocated HugeTLB page (git-fixes). - mm: memcontrol: fix cpuhotplug statistics flushing (bsc#1185606). - mmc: block: Update ext_csd.cache_ctrl if it was written (git-fixes). - mmc: core: Correct descriptions in mmc_of_parse() (git-fixes). - mmc: core: Do a power cycle when the CMD11 fails (git-fixes). - mmc: core: Fix partition switch time for eMMC (git-fixes). - mmc: core: Set read only for SD cards with permanent write protect bit (git-fixes). - mmc: cqhci: Add cqhci_deactivate() (git-fixes). - mmc: cqhci: Fix random crash when remove mmc module/card (git-fixes). - mmc: mmc_spi: Drop unused NO_IRQ definition (git-fixes). - mmc: mxs-mmc: Fix a resource leak in an error handling path in 'mxs_mmc_probe()' (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (bsc#1186009) - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (bsc#1186009) - mmc: sdhci-of-arasan: Add missed checks for devm_clk_register() (git-fixes). - mmc: sdhci-of-dwcmshc: fix rpmb access (git-fixes). - mmc: sdhci-of-dwcmshc: implement specific set_uhs_signaling (git-fixes). - mmc: sdhci-of-dwcmshc: set SDHCI_QUIRK2_PRESET_VALUE_BROKEN (git-fixes). - mmc: sdhci-of-esdhc: make sure delay chain locked for HS400 (git-fixes). - mmc: sdhci-of-esdhc: set timeout to max before tuning (git-fixes). - mmc: sdhci-pci-gli: increase 1.8V regulator wait (git-fixes). - mmc: sdhci-pci: Add PCI IDs for Intel LKF (git-fixes). - mmc: sdhci-pci: Fix SDHCI_RESET_ALL for CQHCI for Intel GLK-based controllers (git-fixes). - mmc: sdhci-pci: Fix initialization of some SD cards for Intel BYT-based controllers (git-fixes). - mmc: sdhci: Check for reset prior to DMA address unmap (git-fixes). - mmc: sdhci: Use Auto CMD Auto Select only when v4_mode is true (git-fixes). - mmc: uniphier-sd: Fix a resource leak in the remove function (git-fixes). - mmc: uniphier-sd: Fix an error handling path in uniphier_sd_probe() (git-fixes). - mount: fix mounting of detached mounts onto targets that reside on shared mounts (git-fixes). - mt7601u: fix always true expression (git-fixes). - mt76: dma: do not report truncated frames to mac80211 (git-fixes). - mt76: mt7615: fix entering driver-own state on mt7663 (git-fixes). - mt76: mt7615: support loading EEPROM for MT7613BE (git-fixes). - mt76: mt76x0: disable GTK offloading (git-fixes). - mt76: mt7915: fix aggr len debugfs node (git-fixes). - mt76: mt7915: fix txpower init for TSSI off chips (git-fixes). - mtd: Handle possible -EPROBE_DEFER from parse_mtd_partitions() (git-fixes). - mtd: rawnand: atmel: Update ecc_stats.corrected counter (git-fixes). - mtd: rawnand: brcmnand: fix OOB R/W with Hamming ECC (git-fixes). - mtd: rawnand: fsmc: Fix error code in fsmc_nand_probe() (git-fixes). - mtd: rawnand: gpmi: Fix a double free in gpmi_nand_init (git-fixes). - mtd: rawnand: qcom: Return actual error code instead of -ENODEV (git-fixes). - mtd: require write permissions for locking and badblock ioctls (git-fixes). - mtd: spi-nor: Rename "n25q512a" to "mt25qu512a (n25q512a)" (bsc#1167260). - mtd: spi-nor: Split mt25qu512a (n25q512a) entry into two (bsc#1167260). - mtd: spinand: core: add missing MODULE_DEVICE_TABLE() (git-fixes). - mwifiex: pcie: skip cancel_work_sync() on reset failure path (git-fixes). - nbd: fix a block_device refcount leak in nbd_release (git-fixes). - net, xdp: Update pkt_type if generic XDP changes unicast MAC (git-fixes). - net/mlx4_core: Add missed mlx4_free_cmd_mailbox() (git-fixes). - net/mlx4_en: update moderation when config reset (git-fixes). - net/mlx5: Add back multicast stats for uplink representor (jsc#SLE-15172). - net/mlx5: Delete extra dump stack that gives nothing (git-fixes). - net/mlx5: Do not request more than supported EQs (git-fixes). - net/mlx5: Fix PPLM register mapping (jsc#SLE-8464). - net/mlx5: Fix bit-wise and with zero (jsc#SLE-15172). - net/mlx5: Fix health error state handling (bsc#1186467). - net/mlx5e: Allow to match on MPLS parameters only for MPLS over UDP (jsc#SLE-15172). - net/mlx5e: Do not match on Geneve options in case option masks are all zero (git-fixes). - net/mlx5e: E-switch, Fix rate calculation division (jsc#SLE-8464). - net/mlx5e: Fix error path for ethtool set-priv-flag (git-fixes). - net/mlx5e: Fix ethtool indication of connector type (git-fixes). - net/mlx5e: Fix setting of RS FEC mode (jsc#SLE-15172). - net/mlx5e: Offload tuple rewrite for non-CT flows (jsc#SLE-15172). - net/mlx5e: RX, Mind the MPWQE gaps when calculating offsets (jsc#SLE-15172). - net/mlx5e: fix ingress_ifindex check in mlx5e_flower_parse_meta (jsc#SLE-8464). - net/qlcnic: Fix a use after free in qlcnic_83xx_get_minidump_template (git-fixes). - net/sched: act_ct: fix wild memory access when clearing fragments (bsc#1176447). - net: arc_emac: Fix memleak in arc_mdio_probe (git-fixes). - net: atheros: switch from 'pci_' to 'dma_' API (git-fixes). - net: atlantic: fix out of range usage of active_vlans array (git-fixes). - net: atlantic: fix potential error handling (git-fixes). - net: atlantic: fix use after free kasan warn (git-fixes). - net: b44: fix error return code in b44_init_one() (git-fixes). - net: bonding: fix error return code of bond_neigh_init() (bsc#1154353). - net: cdc-phonet: fix data-interface release on probe failure (git-fixes). - net: cls_api: Fix uninitialised struct field bo->unlocked_driver_cb (bsc#1176447). - net: dsa: felix: implement port flushing on .phylink_mac_link_down (git-fixes). - net: dsa: rtl8366: Fix VLAN semantics (git-fixes). - net: dsa: rtl8366: Fix VLAN set-up (git-fixes). - net: dsa: rtl8366rb: Support all 4096 VLANs (git-fixes). - net: enetc: allow hardware timestamping on TX queues with tc-etf enabled (git-fixes). - net: enetc: do not disable VLAN filtering in IFF_PROMISC mode (git-fixes). - net: enetc: fix link error again (git-fixes). - net: enetc: remove bogus write to SIRXIDR from enetc_setup_rxbdr (git-fixes). - net: enetc: take the MDIO lock only once per NAPI poll cycle (git-fixes). - net: enic: Cure the enic api locking trainwreck (git-fixes). - net: ethernet: aquantia: Fix wrong return value (git-fixes). - net: ethernet: cavium: octeon_mgmt: use phy_start and phy_stop (git-fixes). - net: ethernet: ibm: ibmvnic: Fix some kernel-doc misdemeanours (bsc#1183871 ltc#192139). - net: ethernet: ti: cpsw: fix clean up of vlan mc entries for host port (git-fixes). - net: ethernet: ti: cpsw: fix error return code in cpsw_probe() (git-fixes). - net: fec: Fix PHY init after phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix phy_device lookup for phy_reset_after_clk_enable() (git-fixes). - net: fec: Fix reference count leak in fec series ops (git-fixes). - net: gemini: Fix another missing clk_disable_unprepare() in probe (git-fixes). - net: gemini: Fix missing free_netdev() in error path of gemini_ethernet_port_probe() (git-fixes). - net: geneve: check skb is large enough for IPv4/IPv6 header (git-fixes). - net: geneve: modify IP header check in geneve6_xmit_skb and geneve_xmit_skb (git-fixes). - net: gianfar: Add of_node_put() before goto statement (git-fixes). - net: hdlc: In hdlc_rcv, check to make sure dev is an HDLC device (git-fixes). - net: hdlc_raw_eth: Clear the IFF_TX_SKB_SHARING flag after calling ether_setup (git-fixes). - net: hns3: Fix for geneve tx checksum bug (git-fixes). - net: hns3: Remove the left over redundant check & assignment (bsc#1154353). - net: hns3: Remove un-necessary 'else-if' in the hclge_reset_event() (git-fixes). - net: hns3: add check for HNS3_NIC_STATE_INITED in hns3_reset_notify_up_enet() (git-fixes). - net: hns3: clear VF down state bit before request link status (git-fixes). - net: hns3: clear unnecessary reset request in hclge_reset_rebuild (git-fixes). - net: hns3: disable phy loopback setting in hclge_mac_start_phy (git-fixes). - net: hns3: fix bug when calculating the TCAM table info (git-fixes). - net: hns3: fix for vxlan gpe tx checksum bug (git-fixes). - net: hns3: fix incorrect configuration for igu_egu_hw_err (git-fixes). - net: hns3: fix query vlan mask value error for flow director (git-fixes). - net: hns3: initialize the message content in hclge_get_link_mode() (git-fixes). - net: hns3: use netif_tx_disable to stop the transmit queue (git-fixes). - net: korina: cast KSEG0 address to pointer in kfree (git-fixes). - net: korina: fix kfree of rx/tx descriptor array (git-fixes). - net: lantiq: Wait for the GPHY firmware to be ready (git-fixes). - net: ll_temac: Add more error handling of dma_map_single() calls (git-fixes). - net: ll_temac: Fix RX buffer descriptor handling on GFP_ATOMIC pressure (git-fixes). - net: ll_temac: Fix race condition causing TX hang (git-fixes). - net: ll_temac: Handle DMA halt condition caused by buffer underrun (git-fixes). - net: mvneta: fix double free of txq->buf (git-fixes). - net: mvneta: make tx buffer array agnostic (git-fixes). - net: pasemi: fix error return code in pasemi_mac_open() (git-fixes). - net: phy: broadcom: Only advertise EEE for supported modes (git-fixes). - net: phy: intel-xway: enable integrated led functions (git-fixes). - net: phy: marvell: fix m88e1011_set_downshift (git-fixes). - net: phy: marvell: fix m88e1111_set_downshift (git-fixes). - net: qcom/emac: add missed clk_disable_unprepare in error path of emac_clks_phase1_init (git-fixes). - net: qualcomm: rmnet: Fix incorrect receive packet handling during cleanup (git-fixes). - net: sched: disable TCQ_F_NOLOCK for pfifo_fast (bsc#1183405) - net: smc911x: Adjust indentation in smc911x_phy_configure (git-fixes). - net: spider_net: Fix the size used in a 'dma_free_coherent()' call (git-fixes). - net: stmmac: Fix incorrect location to set real_num_rx|tx_queues (git-fixes). - net: stmmac: Use rtnl_lock/unlock on netif_set_real_num_rx_queues() call (git-fixes). - net: stmmac: fix missing IFF_MULTICAST check in dwmac4_set_filter (git-fixes). - net: stmmac: removed enabling eee in EEE set callback (git-fixes). - net: stmmac: use netif_tx_start|stop_all_queues() function (git-fixes). - net: stmmac: xgmac: fix missing IFF_MULTICAST checki in dwxgmac2_set_filter (git-fixes). - net: thunderx: Fix unintentional sign extension issue (git-fixes). - net: tulip: Adjust indentation in {dmfe, uli526x}_init_module (git-fixes). - net: usb: ax88179_178a: fix missing stop entry in driver_info (git-fixes). - net: usb: fix memory leak in smsc75xx_bind (git-fixes). - net: usb: qmi_wwan: allow qmimux add/del with master up (git-fixes). - net: usb: qmi_wwan: support ZTE P685M modem (git-fixes). - net: wan/lmc: unregister device when no matching device is found (git-fixes). - net:nfc:digital: Fix a double free in digital_tg_recv_dep_req (git-fixes). - netdevice: Add missing IFF_PHONY_HEADROOM self-definition (git-fixes). - netdevsim: init u64 stats for 32bit hardware (git-fixes). - netfilter: conntrack: Make global sysctls readonly in non-init netns (bsc#1176447). - netfilter: conntrack: add new sysctl to disable RST check (bsc#1183947 bsc#1185950). - netfilter: conntrack: avoid misleading 'invalid' in log message (bsc#1183947 bsc#1185950). - netfilter: conntrack: improve RST handling when tuple is re-used (bsc#1183947 bsc#1185950). - netfilter: flowtable: Make sure GC works periodically in idle system (bsc#1176447). - netfilter: flowtable: fix NAT IPv6 offload mangling (bsc#1176447). - netfilter: nftables: allow to update flowtable flags (bsc#1176447). - netfilter: nftables: report EOPNOTSUPP on unsupported flowtable flags (bsc#1176447). - netsec: restore phy power state after controller reset (bsc#1183757). - nfc: pn533: prevent potential memory corruption (git-fixes). - nfp: devlink: initialize the devlink port attribute "lanes" (bsc#1176447). - nfp: flower: add ipv6 bit to pre_tunnel control message (bsc#1176447). - nfp: flower: fix pre_tun mask id allocation (bsc#1154353). - nfp: flower: ignore duplicate merge hints from FW (git-fixes). - node: fix device cleanups in error handling code (git-fixes). - null_blk: fix passing of REQ_FUA flag in null_handle_rq (git-fixes). - nvme-core: add cancel tagset helpers (bsc#1183976). - nvme-fabrics: decode host pathing error for connect (bsc#1179827). - nvme-fabrics: fix kato initialization (bsc#1182591). - nvme-fabrics: only reserve a single tag (bsc#1182077). - nvme-fabrics: reject I/O to offline device (bsc#1181161). - nvme-fc: check sgl supported by target (bsc#1179827). - nvme-fc: clear q_live at beginning of association teardown (bsc#1186479). - nvme-fc: fix racing controller reset and create association (bsc#1183048). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1180197). - nvme-fc: return NVME_SC_HOST_ABORTED_CMD when a command has been aborted (bsc#1184259). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1180197). - nvme-fc: set NVME_REQ_CANCELLED in nvme_fc_terminate_exchange() (bsc#1184259). - nvme-fc: short-circuit reconnect retries (bsc#1179827). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-hwmon: Return error code when registration fails (bsc#1177326). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259). - nvme-multipath: reset bdev to ns head when failover (bsc#178378 bsc#1182999). - nvme-pci: Remove tag from process cq (git-fixes). - nvme-pci: Remove two-pass completions (git-fixes). - nvme-pci: Simplify nvme_poll_irqdisable (git-fixes). - nvme-pci: align io queue count with allocted nvme_queue in (git-fixes). - nvme-pci: avoid race between nvme_reap_pending_cqes() and nvme_poll() (git-fixes). - nvme-pci: dma read memory barrier for completions (git-fixes). - nvme-pci: fix "slimmer CQ head update" (git-fixes). - nvme-pci: make sure write/poll_queues less or equal then cpu (git-fixes). - nvme-pci: remove last_sq_tail (git-fixes). - nvme-pci: remove volatile cqes (git-fixes). - nvme-pci: slimmer CQ head update (git-fixes). - nvme-pci: use simple suspend when a HMB is enabled (git-fixes). - nvme-tcp: Fix possible race of io_work and direct send (git-fixes). - nvme-tcp: Fix warning with CONFIG_DEBUG_PREEMPT (git-fixes). - nvme-tcp: add clean action for failed reconnection (bsc#1183976). - nvme-tcp: fix kconfig dependency warning when !CRYPTO (git-fixes). - nvme-tcp: fix misuse of __smp_processor_id with preemption (git-fixes). - nvme-tcp: fix possible hang waiting for icresp response (bsc#1179519). - nvme-tcp: fix possible hang when failing to set io queues (bsc#1181161). - nvme-tcp: use cancel tagset helper for tear down (bsc#1183976). - nvme: Fix NULL dereference for pci nvme controllers (bsc#1182378). - nvme: add 'kato' sysfs attribute (bsc#1179825). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1180197). - nvme: add NVME_REQ_CANCELLED flag in nvme_cancel_request() (bsc#1184259). - nvme: allocate the keep alive request using BLK_MQ_REQ_NOWAIT (bsc#1182077). - nvme: call nvme_identify_ns as the first thing in nvme_alloc_ns_block (bsc#1180197). - nvme: clean up the check for too large logic block sizes (bsc#1180197). - nvme: define constants for identification values (git-fixes). - nvme: do not intialize hwmon for discovery controllers (bsc#1184259). - nvme: do not intialize hwmon for discovery controllers (git-fixes). - nvme: document nvme controller states (git-fixes). - nvme: explicitly update mpath disk capacity on revalidation (git-fixes). - nvme: expose reconnect_delay and ctrl_loss_tmo via sysfs (bsc#1182378). - nvme: factor out a nvme_configure_metadata helper (bsc#1180197). - nvme: fix controller instance leak (git-fixes). - nvme: fix deadlock in disconnect during scan_work and/or ana_work (git-fixes). - nvme: fix initialization of the zone bitmaps (bsc#1180197). - nvme: fix possible deadlock when I/O is blocked (git-fixes). - nvme: freeze the queue over ->lba_shift updates (bsc#1180197). - nvme: lift the check for an unallocated namespace into nvme_identify_ns (bsc#1180197). - nvme: merge nvme_keep_alive into nvme_keep_alive_work (bsc#1182077). - nvme: move nvme_validate_ns (bsc#1180197). - nvme: opencode revalidate_disk in nvme_validate_ns (bsc#1180197). - nvme: query namespace identifiers before adding the namespace (bsc#1180197). - nvme: refactor nvme_validate_ns (bsc#1180197). - nvme: remove nvme_identify_ns_list (bsc#1180197). - nvme: remove nvme_update_formats (bsc#1180197). - nvme: remove superfluous else in nvme_ctrl_loss_tmo_store (bsc#1182378). - nvme: remove the 0 lba_shift check in nvme_update_ns_info (bsc#1180197). - nvme: remove the disk argument to nvme_update_zone_info (bsc#1180197). - nvme: rename __nvme_revalidate_disk (bsc#1180197). - nvme: rename _nvme_revalidate_disk (bsc#1180197). - nvme: rename nvme_validate_ns to nvme_validate_or_alloc_ns (bsc#1180197). - nvme: retrigger ANA log update if group descriptor isn't found (git-fixes) - nvme: return an error if nvme_set_queue_count() fails (bsc#1180197). - nvme: revalidate zone bitmaps in nvme_update_ns_info (bsc#1180197). - nvme: sanitize KATO setting (bsc#1179825). - nvme: set the queue limits in nvme_update_ns_info (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1180197). - nvme: simplify error logic in nvme_validate_ns() (bsc#1184259). - nvme: update the known admin effects (bsc#1180197). - nvmet-rdma: Fix list_del corruption on queue establishment failure (bsc#1183501). - nvmet: fix a memory leak (git-fixes). - nvmet: seset ns->file when open fails (bsc#1183873). - nvmet: use new ana_log_size instead the old one (bsc#1184259). - nxp-i2c: restore includes for kABI (bsc#1185589). - nxp-nci: add NXP1002 id (bsc#1185589). - ocfs2: fix a use after free on error (bsc#1184738). - ovl: fix dentry leak in ovl_get_redirect (bsc#1184176). - ovl: fix out of date comment and unreachable code (bsc#1184176). - ovl: fix regression with re-formatted lower squashfs (bsc#1184176). - ovl: fix unneeded call to ovl_change_flags() (bsc#1184176). - ovl: fix value of i_ino for lower hardlink corner case (bsc#1184176). - ovl: initialize error in ovl_copy_xattr (bsc#1184176). - ovl: relax WARN_ON() when decoding lower directory file handle (bsc#1184176). - partitions/ibm: fix non-DASD devices (bsc#1185857 LTC#192526). - pata_arasan_cf: fix IRQ check (git-fixes). - pata_ipx4xx_cf: fix IRQ check (git-fixes). - perf/amd/uncore: Fix sysfs type mismatch (bsc#1178134). - phy: marvell: ARMADA375_USBCLUSTER_PHY should not default to y, unconditionally (git-fixes). - phy: phy-twl4030-usb: Fix possible use-after-free in twl4030_usb_remove() (git-fixes). - pinctrl: Ingenic: Add missing pins to the JZ4770 MAC MII group (git-fixes). - pinctrl: core: Fix kernel doc string for pin_get_name() (git-fixes). - pinctrl: ingenic: Improve unreachable code generation (git-fixes). - pinctrl: lewisburg: Update number of pins in community (git-fixes). - pinctrl: qcom: spmi-gpio: fix warning about irq chip reusage (git-fixes). - pinctrl: rockchip: fix restore error in resume (git-fixes). - pinctrl: samsung: use 'int' for register masks in Exynos (git-fixes). - platform/mellanox: mlxbf-tmfifo: Fix a memory barrier issue (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_KBD_DOCK quirk for the Aspire Switch 10E SW3-016 (git-fixes). - platform/x86: acer-wmi: Add ACER_CAP_SET_FUNCTION_MODE capability flag (git-fixes). - platform/x86: acer-wmi: Add new force_caps module parameter (git-fixes). - platform/x86: acer-wmi: Add support for SW_TABLET_MODE on Switch devices (git-fixes). - platform/x86: acer-wmi: Cleanup ACER_CAP_FOO defines (git-fixes). - platform/x86: acer-wmi: Cleanup accelerometer device handling (git-fixes). - platform/x86: intel-hid: Support Lenovo ThinkPad X1 Tablet Gen 2 (git-fixes). - platform/x86: intel-vbtn: Stop reporting SW_DOCK events (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_pmc_core: Do not use global pmcdev in quirks (git-fixes). - platform/x86: intel_pmt_crashlog: Fix incorrect macros (git-fixes). - platform/x86: pmc_atom: Match all Beckhoff Automation baytrail boards with critclk_systems DMI table (git-fixes). - platform/x86: thinkpad_acpi: Allow the FnLock LED to change state (git-fixes). - platform/x86: thinkpad_acpi: Correct thermal sensor allocation (git-fixes). - posix-timers: Preserve return value in clock_adjtime32() (git-fixes) - post.sh: Return an error when module update fails (bsc#1047233 bsc#1184388). - power: supply: Use IRQF_ONESHOT (git-fixes). - power: supply: generic-adc-battery: fix possible use-after-free in gab_remove() (git-fixes). - power: supply: s3c_adc_battery: fix possible use-after-free in s3c_adc_bat_remove() (git-fixes). - powerepc/book3s64/hash: Align start/end address correctly with bolt mapping (bsc#1184957). - powerpc/64s/exception: Clean up a missed SRR specifier (jsc#SLE-9246 git-fixes). - powerpc/64s: Fix crashes when toggling entry flush barrier (bsc#1177666 git-fixes). - powerpc/64s: Fix crashes when toggling stf barrier (bsc#1087082 git-fixes). - powerpc/64s: Fix instruction encoding for lis in ppc_function_entry() (bsc#1065729). - powerpc/64s: Fix pte update for kernel memory on radix (bsc#1055117 git-fixes). - powerpc/asm-offsets: GPR14 is not needed either (bsc#1065729). - powerpc/book3s64/radix: Remove WARN_ON in destroy_context() (bsc#1183692 ltc#191963). - powerpc/eeh: Fix EEH handling for hugepages in ioremap space (bsc#1156395). - powerpc/fadump: Mark fadump_calculate_reserve_size as __init (bsc#1065729). - powerpc/kexec_file: Use current CPU info while setting up FDT (bsc#1184615 ltc#189835). - powerpc/kuap: Restore AMR after replaying soft interrupts (bsc#1156395). - powerpc/mm: Add cond_resched() while removing hpte mappings (bsc#1183289 ltc#191637). - powerpc/papr_scm: Fix build error due to wrong printf specifier (bsc#1184969). - powerpc/papr_scm: Implement support for H_SCM_FLUSH hcall (bsc#1184969). - powerpc/perf: Fix PMU constraint check for EBB events (bsc#1065729). - powerpc/perf: Fix sampled instruction type for larx/stcx (jsc#SLE-13513). - powerpc/perf: Fix the threshold event selection for memory events in power10 (jsc#SLE-13513). - powerpc/pmem: Include pmem prototypes (bsc#1113295 git-fixes). - powerpc/prom: Mark identical_pvr_fixup as __init (bsc#1065729). - powerpc/pseries/mobility: handle premature return from H_JOIN (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/mobility: use struct for shared state (bsc#1181674 ltc#189159 git-fixes bsc#1183662 ltc#191922). - powerpc/pseries/ras: Remove unused variable 'status' (bsc#1065729). - powerpc/pseries: Add shutdown() to vio_driver and vio_bus (bsc#1184209 ltc#190917). - powerpc/pseries: Do not trace hcall tracing wrapper (bsc#1185110 ltc#192091). - powerpc/pseries: Fix hcall tracing recursion in pv queued spinlocks (bsc#1185110 ltc#192091). - powerpc/pseries: use notrace hcall variant for H_CEDE idle (bsc#1185110 ltc#192091). - powerpc/pseries: warn if recursing into the hcall tracing code (bsc#1185110 ltc#192091). - powerpc/smp: Reintroduce cpu_core_mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Check instruction validity against ISA version before emulation (bsc#1156395). - powerpc/sstep: Fix darn emulation (bsc#1156395). - powerpc/sstep: Fix incorrect return from analyze_instr() (bsc#1156395). - powerpc/sstep: Fix load-store and update emulation (bsc#1156395). - powerpc/time: Enable sched clock for irqtime (bsc#1156395). - powerpc/uaccess: Avoid might_fault() when user access is enabled (bsc#1156395). - powerpc/uaccess: Perform barrier_nospec() in KUAP allowance helpers (bsc#1156395). - powerpc/uaccess: Simplify unsafe_put_user() implementation (bsc#1156395). - powerpc/xive: Drop check on irq_data in xive_core_debug_show() (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc/xmon: Fix build failure for 8xx (jsc#SLE-12936 git-fixes). - powerpc: Fix inverted SET_FULL_REGS bitop (jsc#SLE-9246 git-fixes). - powerpc: Fix missing declaration ofable_kernel_vsx() (git-fixes). - proc: fix lookup in /proc/net subdirectories after setns(2) (git-fixes). - qlcnic: fix error return code in qlcnic_83xx_restart_hw() (git-fixes). - qtnfmac: Fix possible buffer overflow in qtnf_event_handle_external_auth (git-fixes). - qxl: Fix uninitialised struct field head.surface_id (git-fixes). - r8169: do not advertise pause in jumbo mode (git-fixes). - r8169: fix DMA being used after buffer free if WoL is enabled (git-fixes). - r8169: tweak max read request size for newer chips also in jumbo mtu mode (git-fixes). - regmap: set debugfs_name to NULL after it is freed (git-fixes). - regulator: Avoid a double 'of_node_get' in 'regulator_of_get_init_node()' (git-fixes). - regulator: bd9571mwv: Fix AVS and DVFS voltage range (git-fixes). - reintroduce cqhci_suspend for kABI (git-fixes). - reiserfs: update reiserfs_xattrs_initialized() condition (bsc#1184737). - rsi: Fix TX EAPOL packet handling against iwlwifi AP (git-fixes). - rsi: Move card interrupt handling to RX thread (git-fixes). - rsi: Use resume_noirq for SDIO (git-fixes). - rsxx: remove extraneous 'const' qualifier (git-fixes). - rtc: ds1307: Fix wday settings for rx8130 (git-fixes). - rtc: fsl-ftm-alarm: add MODULE_TABLE() (bsc#1185454). - rtc: fsl-ftm-alarm: avoid struct rtc_time conversions (bsc#1185454). - rtc: fsl-ftm-alarm: enable acpi support (bsc#1185454). - rtc: fsl-ftm-alarm: fix freeze(s2idle) failed to wake (bsc#1185454). - rtc: fsl-ftm-alarm: report alarm to core (bsc#1185454). - rtc: fsl-ftm-alarm: switch to ktime_get_real_seconds (bsc#1185454). - rtc: fsl-ftm-alarm: switch to rtc_time64_to_tm/rtc_tm_to_time64 (bsc#1185454). - rtc: fsl-ftm-alarm: update acpi device id (bsc#1185454). - rtc: pcf2127: add alarm support (bsc#1185233). - rtc: pcf2127: add pca2129 device id (bsc#1185233). - rtc: pcf2127: add tamper detection support (bsc#1185233). - rtc: pcf2127: add watchdog feature support (bsc#1185233). - rtc: pcf2127: bugfix: watchdog build dependency (bsc#1185233). - rtc: pcf2127: cleanup register and bit defines (bsc#1185233). - rtc: pcf2127: convert to devm_rtc_allocate_device (bsc#1185233). - rtc: pcf2127: fix a bug when not specify interrupts property (bsc#1185233). - rtc: pcf2127: fix alarm handling (bsc#1185233). - rtc: pcf2127: fix pcf2127_nvmem_read/write() returns (bsc#1185233). - rtc: pcf2127: handle boot-enabled watchdog feature (bsc#1185233). - rtc: pcf2127: handle timestamp interrupts (bsc#1185495). - rtc: pcf2127: let the core handle rtc range (bsc#1185233). - rtc: pcf2127: move watchdog initialisation to a separate function (bsc#1185233). - rtc: pcf2127: only use watchdog when explicitly available (bsc#1185233). - rtc: pcf2127: properly set flag WD_CD for rtc chips(pcf2129, pca2129) (bsc#1185233). - rtc: pcf2127: remove unnecessary #ifdef (bsc#1185233). - rtc: pcf2127: set regmap max_register (bsc#1185233). - rtc: pcf2127: watchdog: handle nowayout feature (bsc#1185233). - rtlwifi: 8821ae: upgrade PHY and RF parameters (git-fixes). - rtw88: Fix an error code in rtw_debugfs_set_rsvd_page() (git-fixes). - rtw88: Fix array overrun in rtw_get_tx_power_params() (git-fixes). - rtw88: coex: 8821c: correct antenna switch function (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/cio: return -EFAULT if copy_to_user() fails (git-fixes). - s390/crypto: return -EFAULT if copy_to_user() fails (git-fixes). - s390/dasd: fix hanging DASD driver unbind (bsc#1183932 LTC#192153). - s390/dasd: fix hanging IO request during DASD driver unbind (git-fixes). - s390/entry: save the caller of psw_idle (bsc#1185677). - s390/ipl: support NVMe IPL kernel parameters (bsc#1185980 LTC#192679). - s390/kdump: fix out-of-memory with PCI (bsc#1182257 LTC#191375). - s390/pci: fix leak of PCI device structure (git-fixes). - s390/qeth: fix memory leak after failed TX Buffer allocation (git-fixes). - s390/qeth: fix notification for pending buffers during teardown (git-fixes). - s390/qeth: improve completion of pending TX buffers (git-fixes). - s390/qeth: schedule TX NAPI on QAOB completion (git-fixes). - s390/vtime: fix increased steal time accounting (bsc#1183859). - s390/zcrypt: return EIO when msg retry limit reached (git-fixes). - samples, bpf: Add missing munmap in xdpsock (bsc#1155518). - samples/bpf: Fix possible hang in xdpsock with multiple threads (bsc#1155518). - sata_mv: add IRQ checks (git-fixes). - sched/eas: Do not update misfit status if the task is pinned (git-fixes) - sched/fair: Avoid stale CPU util_est value for schedutil in (git-fixes) - sched/fair: Fix shift-out-of-bounds in load_balance() (git fixes (sched)). - sched/fair: Fix unfairness caused by missing load decay (git-fixes) - scripts/git_sort/git_sort.py: add bpf git repo - scsi: aacraid: Improve compat_ioctl handlers (bsc#1186352). - scsi: block: Fix a race in the runtime power management code (git-fixes). - scsi: core: Only return started requests from scsi_host_find_tag() (bsc#1179851). - scsi: core: Run queue in case of I/O resource contention failure (bsc#1186416). - scsi: core: add scsi_host_busy_iter() (bsc#1179851). - scsi: fnic: Kill 'exclude_id' argument to fnic_cleanup_io() (bsc#1179851). - scsi: fnic: Remove bogus ratelimit messages (bsc#1183249). - scsi: libfc: Avoid invoking response handler twice if ep is already completed (bsc#1186573). - scsi: lpfc: Add a option to enable interlocked ABTS before job completion (bsc#1186451). - scsi: lpfc: Add ndlp kref accounting for resume RPI path (bsc#1186451). - scsi: lpfc: Change wording of invalid pci reset log message (bsc#1182574). - scsi: lpfc: Copyright updates for 12.8.0.9 patches (bsc#1185472). - scsi: lpfc: Correct function header comments related to ndlp reference counting (bsc#1182574). - scsi: lpfc: Eliminate use of LPFC_DRIVER_NAME in lpfc_attr.c (bsc#1185472). - scsi: lpfc: Fix "Unexpected timeout" error in direct attach topology (bsc#1186451). - scsi: lpfc: Fix ADISC handling that never frees nodes (bsc#1182574). - scsi: lpfc: Fix DMA virtual address ptr assignment in bsg (bsc#1185365). - scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1182574). - scsi: lpfc: Fix NMI crash during rmmod due to circular hbalock dependency (bsc#1185472). - scsi: lpfc: Fix Node recovery when driver is handling simultaneous PLOGIs (bsc#1186451). - scsi: lpfc: Fix PLOGI ACC to be transmit after REG_LOGIN (bsc#1182574). - scsi: lpfc: Fix a bunch of kernel-doc issues (bsc#1185472). - scsi: lpfc: Fix a bunch of kernel-doc misdemeanours (bsc#1185472). - scsi: lpfc: Fix a bunch of misnamed functions (bsc#1185472). - scsi: lpfc: Fix a few incorrectly named functions (bsc#1185472). - scsi: lpfc: Fix a typo (bsc#1185472). - scsi: lpfc: Fix bad memory access during VPD DUMP mailbox command (bsc#1186451). - scsi: lpfc: Fix crash caused by switch reboot (bsc#1182574). - scsi: lpfc: Fix crash when a REG_RPI mailbox fails triggering a LOGO response (bsc#1185472). - scsi: lpfc: Fix crash when lpfc_sli4_hba_setup() fails to initialize the SGLs (bsc#1186451). - scsi: lpfc: Fix dropped FLOGI during pt2pt discovery recovery (bsc#1182574). - scsi: lpfc: Fix error handling for mailboxes completed in MBX_POLL mode (bsc#1185472). - scsi: lpfc: Fix formatting and misspelling issues (bsc#1185472). - scsi: lpfc: Fix gcc -Wstringop-overread warning (bsc#1185472). - scsi: lpfc: Fix illegal memory access on Abort IOCBs (bsc#1183203). - scsi: lpfc: Fix incorrect dbde assignment when building target abts wqe (bsc#1182574). - scsi: lpfc: Fix incorrect naming of __lpfc_update_fcf_record() (bsc#1185472). - scsi: lpfc: Fix incorrectly documented function lpfc_debugfs_commonxripools_data() (bsc#1185472). - scsi: lpfc: Fix kernel-doc formatting issue (bsc#1185472). - scsi: lpfc: Fix lack of device removal on port swaps with PRLIs (bsc#1185472). - scsi: lpfc: Fix lpfc_els_retry() possible null pointer dereference (bsc#1182574). - scsi: lpfc: Fix lpfc_hdw_queue attribute being ignored (bsc#1185472). - scsi: lpfc: Fix missing FDMI registrations after Mgmt Svc login (bsc#1185472). - scsi: lpfc: Fix node handling for Fabric Controller and Domain Controller (bsc#1186451). - scsi: lpfc: Fix nodeinfo debugfs output (bsc#1182574). - scsi: lpfc: Fix non-optimized ERSP handling (bsc#1186451). - scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() (bsc#1182574). - scsi: lpfc: Fix pt2pt connection does not recover after LOGO (bsc#1182574). - scsi: lpfc: Fix pt2pt state transition causing rmmod hang (bsc#1182574). - scsi: lpfc: Fix reference counting errors in lpfc_cmpl_els_rsp() (bsc#1185472). - scsi: lpfc: Fix reftag generation sizing errors (bsc#1182574). - scsi: lpfc: Fix rmmod crash due to bad ring pointers to abort_iotag (bsc#1185472). - scsi: lpfc: Fix silent memory allocation failure in lpfc_sli4_bsg_link_diag_test() (bsc#1185472). - scsi: lpfc: Fix some error codes in debugfs (bsc#1185472). - scsi: lpfc: Fix stale node accesses on stale RRQ request (bsc#1182574). - scsi: lpfc: Fix status returned in lpfc_els_retry() error exit path (bsc#1182574). - scsi: lpfc: Fix unnecessary null check in lpfc_release_scsi_buf (bsc#1182574). - scsi: lpfc: Fix unreleased RPIs when NPIV ports are created (bsc#1186451). - scsi: lpfc: Fix use after free in lpfc_els_free_iocb (bsc#1182574). - scsi: lpfc: Fix use-after-free on unused nodes after port swap (bsc#1185472). - scsi: lpfc: Fix various trivial errors in comments and log messages (bsc#1185472). - scsi: lpfc: Fix vport indices in lpfc_find_vport_by_vpid() (bsc#1182574). - scsi: lpfc: Ignore GID-FT response that may be received after a link flip (bsc#1186451). - scsi: lpfc: Reduce LOG_TRACE_EVENT logging for vports (bsc#1182574). - scsi: lpfc: Remove unsupported mbox PORT_CAPABILITIES logic (bsc#1185472). - scsi: lpfc: Reregister FPIN types if ELS_RDF is received from fabric controller (bsc#1186451). - scsi: lpfc: Standardize discovery object logging format (bsc#1185472). - scsi: lpfc: Update copyrights for 12.8.0.7 and 12.8.0.8 changes (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.10 (bsc#1186451). - scsi: lpfc: Update lpfc version to 12.8.0.8 (bsc#1182574). - scsi: lpfc: Update lpfc version to 12.8.0.9 (bsc#1185472). - scsi: mpt3sas: Only one vSES is present even when IOC has multi vSES (bsc#1185954). - scsi: pm80xx: Do not sleep in atomic context (bsc#1186353). - scsi: pm80xx: Fix chip initialization failure (bsc#1186354). - scsi: pm80xx: Fix potential infinite loop (bsc#1186354). - scsi: pm80xx: Increase timeout for pm80xx mpi_uninit_check() (bsc#1186355). - scsi: qla2xxx: Add H:C:T info in the log message for fc ports (bsc#1185491). - scsi: qla2xxx: Add error counters to debugfs node (bsc#1185491). - scsi: qla2xxx: Always check the return value of qla24xx_get_isp_stats() (bsc#1185491). - scsi: qla2xxx: Assign boolean values to a bool variable (bsc#1185491). - scsi: qla2xxx: Check kzalloc() return value (bsc#1185491). - scsi: qla2xxx: Consolidate zio threshold setting for both FCP & NVMe (bsc#1185491). - scsi: qla2xxx: Constify struct qla_tgt_func_tmpl (bsc#1185491). - scsi: qla2xxx: Do logout even if fabric scan retries got exhausted (bsc#1185491). - scsi: qla2xxx: Enable NVMe CONF (BIT_7) when enabling SLER (bsc#1185491). - scsi: qla2xxx: Fix IOPS drop seen in some adapters (bsc#1185491). - scsi: qla2xxx: Fix RISC RESET completion polling (bsc#1185491). - scsi: qla2xxx: Fix a couple of misdocumented functions (bsc#1185491). - scsi: qla2xxx: Fix a couple of misnamed functions (bsc#1185491). - scsi: qla2xxx: Fix broken #endif placement (bsc#1185491). - scsi: qla2xxx: Fix crash in PCIe error handling (bsc#1185491). - scsi: qla2xxx: Fix crash in qla2xxx_mqueuecommand() (bsc#1185491). - scsi: qla2xxx: Fix endianness annotations (bsc#1185491). - scsi: qla2xxx: Fix incorrectly named function qla8044_check_temp() (bsc#1185491). - scsi: qla2xxx: Fix mailbox Ch erroneous error (bsc#1185491). - scsi: qla2xxx: Fix mailbox recovery during PCIe error (bsc#1185491). - scsi: qla2xxx: Fix some incorrect formatting/spelling issues (bsc#1185491). - scsi: qla2xxx: Fix some memory corruption (bsc#1185491). - scsi: qla2xxx: Fix stuck session (bsc#1185491). - scsi: qla2xxx: Fix use after free in bsg (bsc#1185491). - scsi: qla2xxx: Implementation to get and manage host, target stats and initiator port (bsc#1185491). - scsi: qla2xxx: Move some messages from debug to normal log level (bsc#1185491). - scsi: qla2xxx: Remove redundant NULL check (bsc#1185491). - scsi: qla2xxx: Remove unnecessary NULL check (bsc#1185491). - scsi: qla2xxx: Remove unneeded if-null-free check (bsc#1185491). - scsi: qla2xxx: Replace __qla2x00_marker()'s missing underscores (bsc#1185491). - scsi: qla2xxx: Reserve extra IRQ vectors (bsc#1184436). - scsi: qla2xxx: Reuse existing error handling path (bsc#1185491). - scsi: qla2xxx: Simplify if statement (bsc#1185491). - scsi: qla2xxx: Simplify qla8044_minidump_process_control() (bsc#1185491). - scsi: qla2xxx: Simplify the calculation of variables (bsc#1185491). - scsi: qla2xxx: Suppress Coverity complaints about dseg_r* (bsc#1185491). - scsi: qla2xxx: Update default AER debug mask (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.105-k (bsc#1185491). - scsi: qla2xxx: Update version to 10.02.00.106-k (bsc#1185491). - scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1185491). - scsi: qla2xxx: Wait for ABTS response on I/O timeouts for NVMe (bsc#1185491). - scsi: qla2xxx: fc_remote_port_chkready() returns a SCSI result value (bsc#1185491). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct driver removal with HBA disks (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Correct pqi_sas_smp_handler busy condition (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: smartpqi: Update version to 1.2.16-012 (bsc#1178089). - scsi: target: pscsi: Avoid OOM in pscsi_map_sg() (bsc#1183843). - scsi: target: pscsi: Clean up after failure in pscsi_map_sg() (bsc#1183843). - scsi: target: tcmu: Fix use-after-free of se_cmd->priv (bsc#1186356). - scsi: target: tcmu: Fix warning: 'page' may be used uninitialized (bsc#1186357). - sctp: delay auto_asconf init until binding the first addr (&lt;cover.1620748346.git.mkubecek@suse.cz>). - security: keys: trusted: fix TPM2 authorizations (git-fixes). - selftests/bpf: Fix BPF_CORE_READ_BITFIELD() macro (bsc#1177028). - selftests/bpf: Fix the ASSERT_ERR_PTR macro (bsc#1177028). - selftests/bpf: Mask bpf_csum_diff() return value to 16 bits in test_verifier (bsc#1155518). - selftests/bpf: No need to drop the packet when there is no geneve opt (bsc#1155518). - selftests/bpf: Re-generate vmlinux.h and BPF skeletons if bpftool changed (bsc#1177028). - selftests/bpf: Set gopt opt_class to 0 if get tunnel opt failed (bsc#1155518). - selftests/powerpc: Add pkey helpers for rights (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for execute-disabled pkeys (bsc#1184934 ltc#191460). - selftests/powerpc: Add test for pkey siginfo verification (bsc#1184934 ltc#191460). - selftests/powerpc: Add wrapper for gettid (bsc#1184934 ltc#191460). - selftests/powerpc: Fix L1D flushing tests for Power10 (bsc#1184934 ltc#191460). - selftests/powerpc: Fix exit status of pkey tests (bsc#1184934 ltc#191460). - selftests/powerpc: Fix pkey syscall redefinitions (bsc#1184934 ltc#191460). - selftests/powerpc: Move pkey helpers to headers (bsc#1184934 ltc#191460). - selftests/powerpc: refactor entry and rfi_flush tests (bsc#1184934 ltc#191460). - selftests: mlxsw: Remove a redundant if statement in tc_flower_scale test (bsc#1176774). - selinux: Fix error return code in sel_ib_pkey_sid_slow() (git-fixes). - selinux: fix error initialization in inode_doinit_with_dentry() (git-fixes). - selinux: fix inode_doinit_with_dentry() LABEL_INVALID error handling (git-fixes). - serial: core: fix suspicious security_locked_down() call (git-fixes). - serial: core: return early on unsupported ioctls (git-fixes). - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting (git-fixes). - serial: stm32: fix incorrect characters on console (git-fixes). - serial: stm32: fix tx_empty condition (git-fixes). - serial: tegra: Fix a mask operation that is always true (git-fixes). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smc: disallow TCP_ULP in smc_setsockopt() (git-fixes). - soc/fsl: qbman: fix conflicting alignment attributes (git-fixes). - soc: aspeed: fix a ternary sign expansion bug (git-fixes). - soc: fsl: qe: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - soc: qcom: mdt_loader: Detect truncated read of segments (git-fixes). - soc: qcom: mdt_loader: Validate that p_filesz &lt; p_memsz (git-fixes). - software node: Fix node registration (git-fixes). - soundwire: bus: Fix device found flag correctly (git-fixes). - soundwire: stream: fix memory leak in stream config error path (git-fixes). - spi: Introduce dspi_slave_abort() function for NXP's dspi SPI driver (bsc#1167260). - spi: ath79: always call chipselect function (git-fixes). - spi: ath79: remove spi-master setup and cleanup assignment (git-fixes). - spi: cadence: set cqspi to the driver_data field of struct device (git-fixes). - spi: dln2: Fix reference leak to master (git-fixes). - spi: fsl-dspi: fix NULL pointer dereference (bsc#1167260). - spi: fsl-dspi: fix use-after-free in remove path (bsc#1167260). - spi: fsl-dspi: fix wrong pointer in suspend/resume (bsc#1167260). - spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() (git-fixes). - spi: omap-100k: Fix reference leak to master (git-fixes). - spi: qup: fix PM reference leak in spi_qup_remove() (git-fixes). - spi: spi-fsl-dspi: Accelerate transfers using larger word size if possible (bsc#1167260). - spi: spi-fsl-dspi: Add comments around dspi_pop_tx and dspi_push_rx functions (bsc#1167260). - spi: spi-fsl-dspi: Add support for LS1028A (bsc#1167260). - spi: spi-fsl-dspi: Adding shutdown hook (bsc#1167260). - spi: spi-fsl-dspi: Always use the TCFQ devices in poll mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid NULL pointer in dspi_slave_abort for non-DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Avoid reading more data than written in EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Change usage pattern of SPI_MCR_* and SPI_CTAR_* macros (bsc#1167260). - spi: spi-fsl-dspi: Convert TCFQ users to XSPI FIFO mode (bsc#1167260). - spi: spi-fsl-dspi: Convert the instantiations that support it to DMA (bsc#1167260). - spi: spi-fsl-dspi: Demistify magic value in SPI_SR_CLEAR (bsc#1167260). - spi: spi-fsl-dspi: Do not access reserved fields in SPI_MCR (bsc#1167260). - spi: spi-fsl-dspi: Do not mask off undefined bits (bsc#1167260). - spi: spi-fsl-dspi: Exit the ISR with IRQ_NONE when it's not ours (bsc#1167260). - spi: spi-fsl-dspi: Fix 16-bit word order in 32-bit XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Fix a resource leak in an error handling path (git-fixes). - spi: spi-fsl-dspi: Fix bits-per-word acceleration in DMA mode (bsc#1167260). - spi: spi-fsl-dspi: Fix code alignment (bsc#1167260). - spi: spi-fsl-dspi: Fix external abort on interrupt in resume or exit paths (bsc#1167260). - spi: spi-fsl-dspi: Fix interrupt-less DMA mode taking an XSPI code path (bsc#1167260). - spi: spi-fsl-dspi: Fix little endian access to PUSHR CMD and TXDATA (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is removed during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix lockup if device is shutdown during SPI transfer (bsc#1167260). - spi: spi-fsl-dspi: Fix race condition in TCFQ/EOQ interrupt (bsc#1167260). - spi: spi-fsl-dspi: Fix typos (bsc#1167260). - spi: spi-fsl-dspi: Free DMA memory with matching function (bsc#1167260). - spi: spi-fsl-dspi: Implement .max_message_size method for EOQ mode (bsc#1167260). - spi: spi-fsl-dspi: Initialize completion before possible interrupt (bsc#1167260). - spi: spi-fsl-dspi: LS2080A and LX2160A support XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Make bus-num property optional (bsc#1167260). - spi: spi-fsl-dspi: Move dspi_interrupt above dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Move invariant configs out of dspi_transfer_one_message (bsc#1167260). - spi: spi-fsl-dspi: Optimize dspi_setup_accel for lowest interrupt count (bsc#1167260). - spi: spi-fsl-dspi: Parameterize the FIFO size and DMA buffer size (bsc#1167260). - spi: spi-fsl-dspi: Protect against races on dspi->words_in_flight (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation in dspi_release_dma() (bsc#1167260). - spi: spi-fsl-dspi: Reduce indentation level in dspi_interrupt (bsc#1167260). - spi: spi-fsl-dspi: Remove impossible to reach error check (bsc#1167260). - spi: spi-fsl-dspi: Remove pointless assignment of master->transfer to NULL (bsc#1167260). - spi: spi-fsl-dspi: Remove unused chip->void_write_data (bsc#1167260). - spi: spi-fsl-dspi: Remove unused defines and includes (bsc#1167260). - spi: spi-fsl-dspi: Remove unused initialization of 'ret' in dspi_probe (bsc#1167260). - spi: spi-fsl-dspi: Rename fifo_{read,write} and {tx,cmd}_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Replace interruptible wait queue with a simple completion (bsc#1167260). - spi: spi-fsl-dspi: Replace legacy spi_master names with spi_controller (bsc#1167260). - spi: spi-fsl-dspi: Simplify bytes_per_word gymnastics (bsc#1167260). - spi: spi-fsl-dspi: Take software timestamp in dspi_fifo_write (bsc#1167260). - spi: spi-fsl-dspi: Use BIT() and GENMASK() macros (bsc#1167260). - spi: spi-fsl-dspi: Use EOQ for last word in buffer even for XSPI mode (bsc#1167260). - spi: spi-fsl-dspi: Use dma_request_chan() instead dma_request_slave_channel() (bsc#1167260). - spi: spi-fsl-dspi: Use poll mode in case the platform IRQ is missing (bsc#1167260). - spi: spi-fsl-dspi: Use reverse Christmas tree declaration order (bsc#1167260). - spi: spi-fsl-dspi: Use specific compatible strings for all SoC instantiations (bsc#1167260). - spi: spi-fsl-dspi: delete EOQ transfer mode (bsc#1167260). - spi: spi-fsl-dspi: fix DMA mapping (bsc#1167260). - spi: spi-fsl-dspi: fix native data copy (bsc#1167260). - spi: spi-fsl-dspi: remove git-fixes Remove git-fixes. Prepare to update the driver. References: bsc#1167260 - spi: spi-fsl-dspi: set ColdFire to DMA mode (bsc#1167260). - spi: spi-fsl-dspi: use XSPI mode instead of DMA for DPAA2 SoCs (bsc#1167260). - spi: spi-ti-qspi: Free DMA resources (git-fixes). - spi: stm32: make spurious and overrun interrupts visible (git-fixes). - squashfs: fix inode lookup sanity checks (bsc#1183750). - squashfs: fix xattr id and id lookup sanity checks (bsc#1183750). - staging: bcm2835-audio: Replace unsafe strcpy() with strscpy() (git-fixes). - staging: comedi: addi_apci_1032: Fix endian problem for COS sample (git-fixes). - staging: comedi: addi_apci_1500: Fix endian problem for command sample (git-fixes). - staging: comedi: adv_pci1710: Fix endian problem for AI command data (git-fixes). - staging: comedi: cb_pcidas64: fix request_irq() warn (git-fixes). - staging: comedi: cb_pcidas: fix request_irq() warn (git-fixes). - staging: comedi: das6402: Fix endian problem for AI command data (git-fixes). - staging: comedi: das800: Fix endian problem for AI command data (git-fixes). - staging: comedi: dmm32at: Fix endian problem for AI command data (git-fixes). - staging: comedi: me4000: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl711: Fix endian problem for AI command data (git-fixes). - staging: comedi: pcl818: Fix endian problem for AI command data (git-fixes). - staging: emxx_udc: fix loop in _nbu2ss_nuke() (git-fixes). - staging: fwserial: Fix error handling in fwserial_create (git-fixes). - staging: fwserial: fix TIOCGSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL implementation (git-fixes). - staging: fwserial: fix TIOCSSERIAL jiffies conversions (git-fixes). - staging: fwserial: fix TIOCSSERIAL permission check (git-fixes). - staging: iio: cdc: ad7746: avoid overwrite of num_channels (git-fixes). - staging: ks7010: prevent buffer overflow in ks_wlan_set_scan() (git-fixes). - staging: most: sound: add sanity check for function argument (git-fixes). - staging: rtl8188eu: fix potential memory corruption in rtw_check_beacon_data() (git-fixes). - staging: rtl8188eu: prevent ->ssid overflow in rtw_wx_set_scan() (git-fixes). - staging: rtl8192e: Change state information from u16 to u8 (git-fixes). - staging: rtl8192e: Fix incorrect source in memcpy() (git-fixes). - staging: rtl8192e: Fix possible buffer overflow in _rtl92e_wx_set_scan (git-fixes). - staging: rtl8192u: Fix potential infinite loop (git-fixes). - staging: rtl8192u: fix ->ssid overflow in r8192_wx_set_scan() (git-fixes). - staging: rtl8712: Fix possible buffer overflow in r8712_sitesurvey_cmd (git-fixes). - staging: rtl8712: unterminated string leads to read overflow (git-fixes). - stop_machine: mark helpers __always_inline (git-fixes). - supported.conf: - supported.conf: add bsc1185010 dependency - supported.conf: mark usb_otg_fsm as supported (bsc#1185010) - tcp: fix to update snd_wl1 in bulk receiver fast path (&lt;cover.1620748346.git.mkubecek@suse.cz>). - tee: optee: remove need_resched() before cond_resched() (git-fixes). - tee: optee: replace might_sleep with cond_resched (git-fixes). - thermal/core: Add NULL pointer check before using cooling device stats (git-fixes). - thermal/drivers/cpufreq_cooling: Update cpufreq_state only if state has changed (git-fixes). - thermal/drivers/ti-soc-thermal/bandgap Remove unused variable 'val' (git-fixes). - thermal: thermal_of: Fix error return code of thermal_of_populate_bind_params() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix a leak in tb_retimer_add() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Fix off by one in tb_port_find_retimer() (git-fixes). - thunderbolt: Initialize HopID IDAs in tb_switch_alloc() (git-fixes). - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue (git-fixes). - tools/resolve_btfids: Fix build error with older host toolchains (bsc#1177028). - tpm: acpi: Check eventlog signature before using it (git-fixes). - tracing: Map all PIDs to command lines (git-fixes). - tty: amiserial: fix TIOCSSERIAL permission check (git-fixes). - tty: fix memory leak in vc_deallocate (git-fixes). - tty: moxa: fix TIOCSSERIAL jiffies conversions (git-fixes). - tty: moxa: fix TIOCSSERIAL permission check (git-fixes). - tty: serial: lpuart: fix lpuart32_write usage (git-fixes). - tty: serial: ucc_uart: replace qe_io{read,write}* wrappers by generic io{read,write}* (git-fixes). - udlfb: Fix memory leak in dlfb_usb_probe (git-fixes). - uio: uio_hv_generic: use devm_kzalloc() for private data alloc (git-fixes). - uio_hv_generic: Fix a memory leak in error handling paths (git-fixes). - uio_hv_generic: Fix another memory leak in error handling paths (git-fixes). - uio_hv_generic: add missed sysfs_remove_bin_file (git-fixes). - usb-storage: Add quirk to defeat Kindle's automatic unload (git-fixes). - usb: Remove dev_err() usage after platform_get_irq() (git-fixes). - usb: core: hub: Fix PM reference leak in usb_port_resume() (git-fixes). - usb: core: hub: fix race condition about TRSMRCY of resume (git-fixes). - usb: dwc2: Fix HPRT0.PrtSusp bit setting for HiKey 960 board (git-fixes). - usb: dwc2: Fix gadget DMA unmap direction (git-fixes). - usb: dwc2: Fix hibernation between host and device modes (git-fixes). - usb: dwc2: Fix host mode hibernation exit with remote wakeup flow (git-fixes). - usb: dwc2: Fix session request interrupt handler (git-fixes). - usb: dwc2: Prevent core suspend when port connection flag is 0 (git-fixes). - usb: dwc3: Switch to use device_property_count_u32() (git-fixes). - usb: dwc3: Update soft-reset wait polling rate (git-fixes). - usb: dwc3: gadget: Enable suspend events (git-fixes). - usb: dwc3: gadget: Fix START_TRANSFER link state check (git-fixes). - usb: dwc3: gadget: Return success always for kick transfer in ep queue (git-fixes). - usb: dwc3: keystone: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: meson-g12a: use devm_platform_ioremap_resource() to simplify code (git-fixes). - usb: dwc3: omap: improve extcon initialization (git-fixes). - usb: dwc3: pci: Enable usb2-gadget-lpm-disable for Intel Merrifield (git-fixes). - usb: dwc3: qcom: Add missing DWC3 OF node refcount decrement (git-fixes). - usb: dwc3: qcom: Honor wakeup enabled/disabled state (git-fixes). - usb: fotg210-hcd: Fix an error message (git-fixes). - usb: gadget/function/f_fs string table fix for multiple languages (git-fixes). - usb: gadget: Fix double free of device descriptor pointers (git-fixes). - usb: gadget: aspeed: fix dma map failure (git-fixes). - usb: gadget: configfs: Fix KASAN use-after-free (git-fixes). - usb: gadget: dummy_hcd: fix gpf in gadget_setup (git-fixes). - usb: gadget: f_uac1: stop playback on function disable (git-fixes). - usb: gadget: f_uac1: validate input parameters (git-fixes). - usb: gadget: f_uac2: always increase endpoint max_packet_size by one audio slot (git-fixes). - usb: gadget: f_uac2: validate input parameters (git-fixes). - usb: gadget: pch_udc: Check for DMA mapping error (git-fixes). - usb: gadget: pch_udc: Check if driver is present before calling ->setup() (git-fixes). - usb: gadget: pch_udc: Move pch_udc_init() to satisfy kernel doc (git-fixes). - usb: gadget: pch_udc: Replace cpu_to_le32() by lower_32_bits() (git-fixes). - usb: gadget: pch_udc: Revert d3cb25a12138 completely (git-fixes). - usb: gadget: r8a66597: Add missing null check on return from platform_get_resource (git-fixes). - usb: gadget: udc: amd5536udc_pci fix null-ptr-dereference (git-fixes). - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen() (git-fixes). - usb: gadget: uvc: add bInterval checking for HS mode (git-fixes). - usb: musb: Fix suspend with devices connected for a64 (git-fixes). - usb: musb: fix PM reference leak in musb_irq_work() (git-fixes). - usb: pci-quirks: disable D3cold on xhci suspend for s2idle on AMD Renoire (bsc#1185840). - usb: renesas_usbhs: Clear PIPECFG for re-enabling pipe with other EPNUM (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: roles: Call try_module_get() from usb_role_switch_find_by_fwnode() (git-fixes). - usb: sl811-hcd: improve misleading indentation (git-fixes). - usb: typec: Remove vdo[3] part of tps6598x_rx_identity_reg struct (git-fixes). - usb: typec: tcpci: Check ROLE_CONTROL while interpreting CC_STATUS (git-fixes). - usb: typec: tcpm: Address incorrect values of tcpm psy for fixed supply (git-fixes). - usb: typec: tcpm: Honour pSnkStdby requirement during negotiation (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tcpm: Invoke power_supply_changed for tcpm-source-psy- (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: tps6598x: Fix return value check in tps6598x_probe() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: webcam: Invalid size of Processing Unit Descriptor (git-fixes). - usb: xhci-mtk: fix broken streams issue on 0.96 xHCI (git-fixes). - usb: xhci-mtk: improve bandwidth scheduling with TT (git-fixes). - usb: xhci-mtk: remove or operator for setting schedule parameters (git-fixes). - usb: xhci: Fix ASMedia ASM1042A and ASM3242 DMA addressing (git-fixes). - usb: xhci: Fix port minor revision (git-fixes). - usb: xhci: Increase timeout for HC halt (git-fixes). - usb: xhci: do not perform Soft Retry for some xHCI hosts (git-fixes). - usbip: Fix incorrect double assignment to udc->ud.tcp_rx (git-fixes). - usbip: fix stub_dev to check for stream socket (git-fixes). - usbip: fix stub_dev usbip_sockfd_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd attach_store() races leading to gpf (git-fixes). - usbip: fix vhci_hcd to check for stream socket (git-fixes). - usbip: fix vudc to check for stream socket (git-fixes). - usbip: fix vudc usbip_sockfd_store races leading to gpf (git-fixes). - usbip: tools: fix build error for multiple definition (git-fixes). - usbip: vhci_hcd fix shift out-of-bounds in vhci_hub_control() (git-fixes). - use __netdev_notify_peers in ibmvnic (bsc#1183871 ltc#192139). - veth: Store queue_mapping independently of XDP prog presence (git-fixes). - vfio-pci/zdev: fix possible segmentation fault issue (git-fixes). - vfio/iommu_type1: Populate full dirty when detach non-pinned group (bsc#1183326). - vfio/mdev: Do not allow a mdev_type to have a NULL parent pointer (git-fixes). - vfio/mdev: Make to_mdev_device() into a static inline (git-fixes). - vfio/pci: Add missing range check in vfio_pci_mmap (git-fixes). - vfio/pci: Move VGA and VF initialization to functions (git-fixes). - vfio/pci: Re-order vfio_pci_probe() (git-fixes). - vgacon: Record video mode changes with VT_RESIZEX (git-fixes). - video: fbdev: acornfb: remove free_unused_pages() (bsc#1152489) - video: hyperv_fb: Add ratelimit on error message (bsc#1185725). - video: hyperv_fb: Fix a double free in hvfb_probe (git-fixes). - virt_wifi: Return micros for BSS TSF values (git-fixes). - virtiofs: fix memory leak in virtio_fs_probe() (bsc#1185558). - vrf: fix a comment about loopback device (git-fixes). - vt/consolemap: do font sum unsigned (git-fixes). - vxlan: do not modify the shared tunnel info when PMTU triggers an ICMP reply (bsc#1176447). - vxlan: move debug check after netdev unregister (git-fixes). - watchdog/softlockup: Remove obsolete check of last reported task (bsc#1185982). - watchdog/softlockup: report the overall time of softlockups (bsc#1185982). - watchdog: explicitly update timestamp when reporting softlockup (bsc#1185982). - watchdog: rename __touch_watchdog() to a better descriptive name (bsc#1185982). - whitespace cleanup - wl3501_cs: Fix out-of-bounds warnings in wl3501_mgmt_join (git-fixes). - wl3501_cs: Fix out-of-bounds warnings in wl3501_send_pkt (git-fixes). - wlcore: Fix command execute failure 19 for wl12xx (git-fixes). - workqueue: Minor follow-ups to the rescuer destruction change (bsc#1185911). - workqueue: Move the position of debug_work_activate() in __queue_work() (bsc#1184893). - workqueue: more destroy_workqueue() fixes (bsc#1185911). - x86,swiotlb: Adjust SWIOTLB bounce buffer size for SEV guests (bsc#1186219). - x86/cpu: Initialize MSR_TSC_AUX if RDTSCP *or* RDPID is supported (bsc#1152489). - x86/crash: Fix crash_setup_memmap_entries() out-of-bounds access (bsc#1152489). - x86/fsgsbase/64: Fix NULL deref in 86_fsgsbase_read_task (bsc#1152489). - x86/insn: Add some Intel instructions to the opcode map (bsc#1184760). - x86/insn: Add some more Intel instructions to the opcode map (bsc#1184760). - x86/ioapic: Ignore IRQ2 again (bsc#1152489). - x86/mem_encrypt: Correct physical address calculation in __set_clr_pte_enc() (bsc#1152489). - x86/microcode: Check for offline CPUs before requesting new microcode (bsc#1152489). - x86/mm: Fix NX bit clearing issue in kernel_map_pages_in_pgd (bsc#1152489). - x86/platform/uv: Set section block size for hubless architectures (bsc#1152489). - x86/reboot: Force all cpus to exit VMX root if VMX is supported (bsc#1152489). - x86/sev-es: Invalidate the GHCB after completing VMGEXIT (bsc#1178134). - x86/sev-es: Move sev_es_put_ghcb() in prep for follow on patch (bsc#1178134). - x86: Introduce TS_COMPAT_RESTART to fix get_nr_restart_syscall() (bsc#1152489). - xen/events: avoid handling the same event on two cpus at the same time (git-fixes). - xen/events: do not unmask an event channel when an eoi is pending (git-fixes). - xen/events: reset affinity of 2-level event when tearing it down (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: Provide private skb extensions for segmented and hw offloaded ESP packets (bsc#1176447). - xfs: group quota should return EDQUOT when prj quota enabled (bsc#1180980). - xhci: Do not use GFP_KERNEL in (potentially) atomic context (git-fixes). - xhci: Fix repeated xhci wake after suspend due to uncleared internal wake state (git-fixes). - xhci: Improve detection of device initiated wake signal (git-fixes). - xhci: check control context is valid before dereferencing it (git-fixes). - xhci: fix potential array out of bounds with several interrupters (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). - xsk: Respect device's headroom and tailroom on generic xmit path (git-fixes). cluster-md-kmp-azure-5.3.18-38.3.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.3.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.3.1.x86_64.rpm True kernel-azure-5.3.18-38.3.1.nosrc.rpm True kernel-azure-5.3.18-38.3.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.3.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.3.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.3.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.3.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.3.1.noarch.rpm True kernel-source-azure-5.3.18-38.3.1.noarch.rpm True kernel-source-azure-5.3.18-38.3.1.src.rpm True kernel-syms-azure-5.3.18-38.3.1.src.rpm True kernel-syms-azure-5.3.18-38.3.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.3.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.3.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.3.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2140 moderate SUSE Updates openSUSE-SLE 15.3 This update for prometheus-ha_cluster_exporter fixes the following issues: Update from version 1.2.2 to version 1.2.3: - Compress GitHub artifacts after having built them. - Fix cloned resource collection and track stopped resources even when they are cloned. `Pacemaker Clone Resources` appear multiple times in `crm_mon`; since the main discriminator field is the node, and that's missing when a resource is stopped, the cloned and stopped entries will appear multiple times in the `crm_mon` output, with the exact same fields and values: this is a problem for the `Prometheus SDK`, which doesn't expect duplicate metrics over the course of a single collection cycle. - Remove the `make download` target, which was required when using old Go versions. prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.src.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.x86_64.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.s390x.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.ppc64le.rpm prometheus-ha_cluster_exporter-1.2.3+git.1622185790.d319147-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2003 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 78.11 (bsc#1186696) Security issues fixed: - CVE-2021-29964: Out of bounds-read when parsing a `WM_COPYDATA` message - CVE-2021-29967: Memory safety bugs fixed in Thunderbird 78.11 General improvements: - OpenPGP could not be disabled for an account if a key was previously configured - Recipients were unable to decrypt some messages when the sender had changed the message encryption from OpenPGP to S/MIME - Contacts moved between CardDAV address books were not synced to the new server - CardDAV compatibility fixes for Google Contacts - Folder pane had no clear indication of focus on macOS MozillaThunderbird-78.11.0-8.30.1.src.rpm MozillaThunderbird-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.x86_64.rpm MozillaThunderbird-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.s390x.rpm MozillaThunderbird-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.ppc64le.rpm MozillaThunderbird-78.11.0-8.30.1.aarch64.rpm MozillaThunderbird-translations-common-78.11.0-8.30.1.aarch64.rpm MozillaThunderbird-translations-other-78.11.0-8.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2178 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-presets-common-SUSE fixes the following issues: When installing the systemd-presets-common-SUSE package for the first time in a new system, it might happen that some services are installed before systemd so the %systemd_pre/post macros would not work. This is handled by enabling all preset services in this package's %posttrans section but it wasn't enabling user services, just system services. Now it enables also the user services installed before this package (bsc#1186561) systemd-presets-common-SUSE-15-8.9.1.noarch.rpm systemd-presets-common-SUSE-15-8.9.1.src.rpm openSUSE-SLE-15.3-2021-2265 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb-connector-c fixes the following issues: Update to release 3.1.13 [bsc#1185870], [bsc#1185872], [bsc#1185868] - CONC-537: Only read from MYSQL_HOME if MARIADB_HOME was not set - CONC-548: Symbol conflict with libsodium - CONC-490: Handshake error when CLIENT_CONNECT_WITH_DB flag was set without specifying database - CONC-543: Hash functions conflict with GnuTLS - CONC-539: Added cipher suites ECDHE-RSA-AES128-SHA256 (0xC027) and ECDHE-RSA-AES256-SHA384 (0xC028) to the cipher map which maps cipher suite names to the corresponding algorithm ids (Windows Schannel) - CONC-535: Disabled checksum ignored in events (replication/ binlog API) libmariadb-devel-3.1.13-3.30.1.x86_64.rpm libmariadb3-3.1.13-3.30.1.x86_64.rpm libmariadb3-32bit-3.1.13-3.30.1.x86_64.rpm libmariadb_plugins-3.1.13-3.30.1.x86_64.rpm libmariadbprivate-3.1.13-3.30.1.x86_64.rpm mariadb-connector-c-3.1.13-3.30.1.src.rpm libmariadb-devel-3.1.13-3.30.1.s390x.rpm libmariadb3-3.1.13-3.30.1.s390x.rpm libmariadb_plugins-3.1.13-3.30.1.s390x.rpm libmariadbprivate-3.1.13-3.30.1.s390x.rpm libmariadb-devel-3.1.13-3.30.1.ppc64le.rpm libmariadb3-3.1.13-3.30.1.ppc64le.rpm libmariadb_plugins-3.1.13-3.30.1.ppc64le.rpm libmariadbprivate-3.1.13-3.30.1.ppc64le.rpm libmariadb-devel-3.1.13-3.30.1.aarch64.rpm libmariadb3-3.1.13-3.30.1.aarch64.rpm libmariadb_plugins-3.1.13-3.30.1.aarch64.rpm libmariadbprivate-3.1.13-3.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2210 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - Link test as position independent executable and update packages with non-PIE binaries. (bsc#1184124) device-mapper-1.02.163-8.33.1.x86_64.rpm device-mapper-devel-1.02.163-8.33.1.x86_64.rpm device-mapper-devel-32bit-1.02.163-8.33.1.x86_64.rpm libdevmapper-event1_03-1.02.163-8.33.1.x86_64.rpm libdevmapper-event1_03-32bit-1.02.163-8.33.1.x86_64.rpm libdevmapper1_03-1.02.163-8.33.1.x86_64.rpm libdevmapper1_03-32bit-1.02.163-8.33.1.x86_64.rpm liblvm2cmd2_03-2.03.05-8.33.1.x86_64.rpm lvm2-2.03.05-8.33.1.src.rpm lvm2-2.03.05-8.33.1.x86_64.rpm lvm2-devel-2.03.05-8.33.1.x86_64.rpm lvm2-device-mapper-2.03.05-8.33.1.src.rpm lvm2-testsuite-2.03.05-8.33.1.x86_64.rpm device-mapper-1.02.163-8.33.1.s390x.rpm device-mapper-devel-1.02.163-8.33.1.s390x.rpm libdevmapper-event1_03-1.02.163-8.33.1.s390x.rpm libdevmapper1_03-1.02.163-8.33.1.s390x.rpm liblvm2cmd2_03-2.03.05-8.33.1.s390x.rpm lvm2-2.03.05-8.33.1.s390x.rpm lvm2-devel-2.03.05-8.33.1.s390x.rpm lvm2-testsuite-2.03.05-8.33.1.s390x.rpm device-mapper-1.02.163-8.33.1.ppc64le.rpm device-mapper-devel-1.02.163-8.33.1.ppc64le.rpm libdevmapper-event1_03-1.02.163-8.33.1.ppc64le.rpm libdevmapper1_03-1.02.163-8.33.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-8.33.1.ppc64le.rpm lvm2-2.03.05-8.33.1.ppc64le.rpm lvm2-devel-2.03.05-8.33.1.ppc64le.rpm lvm2-testsuite-2.03.05-8.33.1.ppc64le.rpm device-mapper-1.02.163-8.33.1.aarch64.rpm device-mapper-devel-1.02.163-8.33.1.aarch64.rpm libdevmapper-event1_03-1.02.163-8.33.1.aarch64.rpm libdevmapper1_03-1.02.163-8.33.1.aarch64.rpm liblvm2cmd2_03-2.03.05-8.33.1.aarch64.rpm lvm2-2.03.05-8.33.1.aarch64.rpm lvm2-devel-2.03.05-8.33.1.aarch64.rpm lvm2-testsuite-2.03.05-8.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2351 low SUSE Updates openSUSE-SLE 15.3 This update for mgetty fixes the following issues: - Link /usr/bin/newslock as PIE. (bsc#1184124) g3utils-1.1.37-3.11.2.x86_64.rpm mgetty-1.1.37-3.11.2.src.rpm mgetty-1.1.37-3.11.2.x86_64.rpm sendfax-1.1.37-3.11.2.x86_64.rpm g3utils-1.1.37-3.11.2.s390x.rpm mgetty-1.1.37-3.11.2.s390x.rpm sendfax-1.1.37-3.11.2.s390x.rpm g3utils-1.1.37-3.11.2.ppc64le.rpm mgetty-1.1.37-3.11.2.ppc64le.rpm sendfax-1.1.37-3.11.2.ppc64le.rpm g3utils-1.1.37-3.11.2.aarch64.rpm mgetty-1.1.37-3.11.2.aarch64.rpm sendfax-1.1.37-3.11.2.aarch64.rpm openSUSE-SLE-15.3-2021-2418 low SUSE Updates openSUSE-SLE 15.3 This update for mstflint fixes the following issues: - Link as position independent executables. (bsc#1184124) mstflint-4.15.0-3.3.1.src.rpm mstflint-4.15.0-3.3.1.x86_64.rpm mstflint-4.15.0-3.3.1.s390x.rpm mstflint-4.15.0-3.3.1.ppc64le.rpm mstflint-4.15.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2277 moderate SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - Add config to run ipsec on namespaces. (bsc#1183670) strongswan-5.8.2-11.17.3.src.rpm strongswan-5.8.2-11.17.3.x86_64.rpm strongswan-doc-5.8.2-11.17.3.noarch.rpm strongswan-hmac-5.8.2-11.17.3.x86_64.rpm strongswan-ipsec-5.8.2-11.17.3.x86_64.rpm strongswan-libs0-5.8.2-11.17.3.x86_64.rpm strongswan-mysql-5.8.2-11.17.3.x86_64.rpm strongswan-nm-5.8.2-11.17.3.x86_64.rpm strongswan-sqlite-5.8.2-11.17.3.x86_64.rpm strongswan-5.8.2-11.17.3.s390x.rpm strongswan-hmac-5.8.2-11.17.3.s390x.rpm strongswan-ipsec-5.8.2-11.17.3.s390x.rpm strongswan-libs0-5.8.2-11.17.3.s390x.rpm strongswan-mysql-5.8.2-11.17.3.s390x.rpm strongswan-nm-5.8.2-11.17.3.s390x.rpm strongswan-sqlite-5.8.2-11.17.3.s390x.rpm strongswan-5.8.2-11.17.3.ppc64le.rpm strongswan-hmac-5.8.2-11.17.3.ppc64le.rpm strongswan-ipsec-5.8.2-11.17.3.ppc64le.rpm strongswan-libs0-5.8.2-11.17.3.ppc64le.rpm strongswan-mysql-5.8.2-11.17.3.ppc64le.rpm strongswan-nm-5.8.2-11.17.3.ppc64le.rpm strongswan-sqlite-5.8.2-11.17.3.ppc64le.rpm strongswan-5.8.2-11.17.3.aarch64.rpm strongswan-hmac-5.8.2-11.17.3.aarch64.rpm strongswan-ipsec-5.8.2-11.17.3.aarch64.rpm strongswan-libs0-5.8.2-11.17.3.aarch64.rpm strongswan-mysql-5.8.2-11.17.3.aarch64.rpm strongswan-nm-5.8.2-11.17.3.aarch64.rpm strongswan-sqlite-5.8.2-11.17.3.aarch64.rpm openSUSE-SLE-15.3-2021-2223 moderate SUSE Updates openSUSE-SLE 15.3 This update for chrony fixes the following issues: - Fixed an issue when chrony aborts in FIPS mode due to MD5. (bsc#1173760) chrony-3.2-9.24.2.src.rpm chrony-3.2-9.24.2.x86_64.rpm chrony-pool-empty-3.2-9.24.2.noarch.rpm chrony-pool-openSUSE-3.2-9.24.2.noarch.rpm chrony-pool-suse-3.2-9.24.2.noarch.rpm chrony-3.2-9.24.2.s390x.rpm chrony-3.2-9.24.2.ppc64le.rpm chrony-3.2-9.24.2.aarch64.rpm openSUSE-SLE-15.3-2021-2260 moderate SUSE Updates openSUSE-SLE 15.3 This update for pipewire fixes the following issues: - Introduce a workaround for systems where %systemd_user_post didn't enable the user services correctly due to different reasons. (bsc#1184852, bsc#1183012, bsc#1186561) - Disable gstreamer device provider by now because the timestamp bug makes cheese video record abnormally longer than it should be. (rh#1884260) - Replace all tab characters to space. gstreamer-plugin-pipewire-0.3.24-4.3.1.x86_64.rpm libpipewire-0_3-0-0.3.24-4.3.1.x86_64.rpm libpipewire-0_3-0-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-0.3.24-4.3.1.src.rpm pipewire-0.3.24-4.3.1.x86_64.rpm pipewire-alsa-0.3.24-4.3.1.x86_64.rpm pipewire-devel-0.3.24-4.3.1.x86_64.rpm pipewire-doc-0.3.24-4.3.1.x86_64.rpm pipewire-lang-0.3.24-4.3.1.noarch.rpm pipewire-libjack-0_3-0.3.24-4.3.1.x86_64.rpm pipewire-libjack-0_3-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-modules-0.3.24-4.3.1.x86_64.rpm pipewire-modules-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-pulseaudio-0.3.24-4.3.1.x86_64.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.x86_64.rpm pipewire-spa-plugins-0_2-32bit-0.3.24-4.3.1.x86_64.rpm pipewire-spa-tools-0.3.24-4.3.1.x86_64.rpm pipewire-tools-0.3.24-4.3.1.x86_64.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.s390x.rpm libpipewire-0_3-0-0.3.24-4.3.1.s390x.rpm pipewire-0.3.24-4.3.1.s390x.rpm pipewire-alsa-0.3.24-4.3.1.s390x.rpm pipewire-devel-0.3.24-4.3.1.s390x.rpm pipewire-doc-0.3.24-4.3.1.s390x.rpm pipewire-libjack-0_3-0.3.24-4.3.1.s390x.rpm pipewire-modules-0.3.24-4.3.1.s390x.rpm pipewire-pulseaudio-0.3.24-4.3.1.s390x.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.s390x.rpm pipewire-spa-tools-0.3.24-4.3.1.s390x.rpm pipewire-tools-0.3.24-4.3.1.s390x.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.ppc64le.rpm libpipewire-0_3-0-0.3.24-4.3.1.ppc64le.rpm pipewire-0.3.24-4.3.1.ppc64le.rpm pipewire-alsa-0.3.24-4.3.1.ppc64le.rpm pipewire-devel-0.3.24-4.3.1.ppc64le.rpm pipewire-doc-0.3.24-4.3.1.ppc64le.rpm pipewire-libjack-0_3-0.3.24-4.3.1.ppc64le.rpm pipewire-modules-0.3.24-4.3.1.ppc64le.rpm pipewire-pulseaudio-0.3.24-4.3.1.ppc64le.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.ppc64le.rpm pipewire-spa-tools-0.3.24-4.3.1.ppc64le.rpm pipewire-tools-0.3.24-4.3.1.ppc64le.rpm gstreamer-plugin-pipewire-0.3.24-4.3.1.aarch64.rpm libpipewire-0_3-0-0.3.24-4.3.1.aarch64.rpm pipewire-0.3.24-4.3.1.aarch64.rpm pipewire-alsa-0.3.24-4.3.1.aarch64.rpm pipewire-devel-0.3.24-4.3.1.aarch64.rpm pipewire-doc-0.3.24-4.3.1.aarch64.rpm pipewire-libjack-0_3-0.3.24-4.3.1.aarch64.rpm pipewire-modules-0.3.24-4.3.1.aarch64.rpm pipewire-pulseaudio-0.3.24-4.3.1.aarch64.rpm pipewire-spa-plugins-0_2-0.3.24-4.3.1.aarch64.rpm pipewire-spa-tools-0.3.24-4.3.1.aarch64.rpm pipewire-tools-0.3.24-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2203 moderate SUSE Updates openSUSE-SLE 15.3 This update for postfix fixes the following issues: - Remove incorrect requirements from the postfix service configuration. (bsc#1186669) postfix-3.5.9-5.3.3.src.rpm postfix-3.5.9-5.3.3.x86_64.rpm postfix-bdb-3.5.9-5.3.3.src.rpm postfix-bdb-3.5.9-5.3.3.x86_64.rpm postfix-bdb-lmdb-3.5.9-5.3.3.x86_64.rpm postfix-devel-3.5.9-5.3.3.x86_64.rpm postfix-doc-3.5.9-5.3.3.noarch.rpm postfix-ldap-3.5.9-5.3.3.x86_64.rpm postfix-mysql-3.5.9-5.3.3.x86_64.rpm postfix-postgresql-3.5.9-5.3.3.x86_64.rpm postfix-3.5.9-5.3.3.s390x.rpm postfix-bdb-3.5.9-5.3.3.s390x.rpm postfix-bdb-lmdb-3.5.9-5.3.3.s390x.rpm postfix-devel-3.5.9-5.3.3.s390x.rpm postfix-ldap-3.5.9-5.3.3.s390x.rpm postfix-mysql-3.5.9-5.3.3.s390x.rpm postfix-postgresql-3.5.9-5.3.3.s390x.rpm postfix-3.5.9-5.3.3.ppc64le.rpm postfix-bdb-3.5.9-5.3.3.ppc64le.rpm postfix-bdb-lmdb-3.5.9-5.3.3.ppc64le.rpm postfix-devel-3.5.9-5.3.3.ppc64le.rpm postfix-ldap-3.5.9-5.3.3.ppc64le.rpm postfix-mysql-3.5.9-5.3.3.ppc64le.rpm postfix-postgresql-3.5.9-5.3.3.ppc64le.rpm postfix-3.5.9-5.3.3.aarch64.rpm postfix-bdb-3.5.9-5.3.3.aarch64.rpm postfix-bdb-lmdb-3.5.9-5.3.3.aarch64.rpm postfix-devel-3.5.9-5.3.3.aarch64.rpm postfix-ldap-3.5.9-5.3.3.aarch64.rpm postfix-mysql-3.5.9-5.3.3.aarch64.rpm postfix-postgresql-3.5.9-5.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-2276 moderate SUSE Updates openSUSE-SLE 15.3 This update for libgnomekbd fixes the following issues: - Add fix to avoid crashing 'libgnomekbd' when working with ibus. (bsc#1160963) - Set the common keyboard layout indicator as "default" to avoid misleading information. (bsc#1034390) libgnomekbd-3.26.0-3.3.1.src.rpm libgnomekbd-3.26.0-3.3.1.x86_64.rpm libgnomekbd-3.26.0-3.3.1.s390x.rpm libgnomekbd-3.26.0-3.3.1.ppc64le.rpm libgnomekbd-3.26.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2231 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Ignore 'sysctl' configuration files that do not have the '.conf', extension except kernel files. (bsc#1187018) yast2-4.3.63-3.8.1.src.rpm yast2-4.3.63-3.8.1.x86_64.rpm yast2-logs-4.3.63-3.8.1.x86_64.rpm yast2-4.3.63-3.8.1.s390x.rpm yast2-logs-4.3.63-3.8.1.s390x.rpm yast2-4.3.63-3.8.1.ppc64le.rpm yast2-logs-4.3.63-3.8.1.ppc64le.rpm yast2-4.3.63-3.8.1.aarch64.rpm yast2-logs-4.3.63-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2207 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-ftp-server fixes the following issues: - Fix the label of the certificate input field (bsc#1183786) yast2-ftp-server-4.3.3-3.3.1.noarch.rpm yast2-ftp-server-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2476 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-proxy fixes the following issues: - Added 'to_target' variable which will determine whether the configuration should be written to the target system at the end of the installation or not (bsc#1185016) - Replace novell urls by SUSE ones (bsc#1100366) This update for yast2-installation fixes the following issues: - Start the "memsample" tool in a subshell to avoid "Terminated" message displayed at the end. (bsc#1184491) - Better evaluate the old and new repositories during upgrade, do not preselect new repositories for removal if they accidentally use the same repository as already present in the system. (bsc#1185822) - Export also the 'https_proxy' environment variable when a proxy config is given through 'linuxrc'. (bsc#1185016) yast2-installation-4.3.40-3.4.1.noarch.rpm yast2-installation-4.3.40-3.4.1.src.rpm yast2-proxy-4.3.3-3.3.1.noarch.rpm yast2-proxy-4.3.3-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2148 moderate SUSE Updates openSUSE-SLE 15.3 This update for csync2 fixes the following issues: - Removal of csync2 package throws error for non-existent service template. (bsc#1187080) csync2-2.0+git.1600444747.83b3644-3.3.1.src.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.x86_64.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.s390x.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.ppc64le.rpm csync2-2.0+git.1600444747.83b3644-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2228 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql fixes the following issues: - Re-enable build of the 'llvmjit' subpackage on SLE. (bsc#1183118) postgresql-13-10.3.3.noarch.rpm postgresql-13-10.3.3.src.rpm postgresql-contrib-13-10.3.3.noarch.rpm postgresql-devel-13-10.3.3.noarch.rpm postgresql-docs-13-10.3.3.noarch.rpm postgresql-plperl-13-10.3.3.noarch.rpm postgresql-plpython-13-10.3.3.noarch.rpm postgresql-pltcl-13-10.3.3.noarch.rpm postgresql-server-13-10.3.3.noarch.rpm postgresql-server-devel-13-10.3.3.noarch.rpm postgresql-test-13-10.3.3.noarch.rpm openSUSE-SLE-15.3-2021-2179 moderate SUSE Updates openSUSE-SLE 15.3 This update for thin-provisioning-tools fixes the following issues: - Link as position-independent executable (bsc#1184124) thin-provisioning-tools-0.7.5-3.3.1.src.rpm thin-provisioning-tools-0.7.5-3.3.1.x86_64.rpm thin-provisioning-tools-0.7.5-3.3.1.s390x.rpm thin-provisioning-tools-0.7.5-3.3.1.ppc64le.rpm thin-provisioning-tools-0.7.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2127 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - fixed CVE-2021-30641 [bsc#1187174]: MergeSlashes regression - fixed CVE-2021-31618 [bsc#1186924]: NULL pointer dereference on specially crafted HTTP/2 request - fixed CVE-2020-13950 [bsc#1187040]: mod_proxy NULL pointer dereference - fixed CVE-2020-35452 [bsc#1186922]: Single zero byte stack overflow in mod_auth_digest - fixed CVE-2021-26690 [bsc#1186923]: mod_session NULL pointer dereference in parser - fixed CVE-2021-26691 [bsc#1187017]: Heap overflow in mod_session apache2-2.4.43-3.22.1.src.rpm apache2-2.4.43-3.22.1.x86_64.rpm apache2-devel-2.4.43-3.22.1.x86_64.rpm apache2-doc-2.4.43-3.22.1.noarch.rpm apache2-event-2.4.43-3.22.1.x86_64.rpm apache2-example-pages-2.4.43-3.22.1.x86_64.rpm apache2-prefork-2.4.43-3.22.1.x86_64.rpm apache2-utils-2.4.43-3.22.1.x86_64.rpm apache2-worker-2.4.43-3.22.1.x86_64.rpm apache2-2.4.43-3.22.1.s390x.rpm apache2-devel-2.4.43-3.22.1.s390x.rpm apache2-event-2.4.43-3.22.1.s390x.rpm apache2-example-pages-2.4.43-3.22.1.s390x.rpm apache2-prefork-2.4.43-3.22.1.s390x.rpm apache2-utils-2.4.43-3.22.1.s390x.rpm apache2-worker-2.4.43-3.22.1.s390x.rpm apache2-2.4.43-3.22.1.ppc64le.rpm apache2-devel-2.4.43-3.22.1.ppc64le.rpm apache2-event-2.4.43-3.22.1.ppc64le.rpm apache2-example-pages-2.4.43-3.22.1.ppc64le.rpm apache2-prefork-2.4.43-3.22.1.ppc64le.rpm apache2-utils-2.4.43-3.22.1.ppc64le.rpm apache2-worker-2.4.43-3.22.1.ppc64le.rpm apache2-2.4.43-3.22.1.aarch64.rpm apache2-devel-2.4.43-3.22.1.aarch64.rpm apache2-event-2.4.43-3.22.1.aarch64.rpm apache2-example-pages-2.4.43-3.22.1.aarch64.rpm apache2-prefork-2.4.43-3.22.1.aarch64.rpm apache2-utils-2.4.43-3.22.1.aarch64.rpm apache2-worker-2.4.43-3.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2316 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Restore framebuffer devices as possible master of seat. Until simpledrm driver is released, this change is prematured as some graphical chips don't have DRM driver and fallback to framebuffer. (bsc#1187154) - Fixed an issue when '/var/lock/subsys' dropped when the creation of 'filesystem' package took the initialization of the generic paths over. (bsc#1187292) - 'udev' requires systemd in its %post (bsc#1185958) nspawn: turn on higher optimization level in seccomp nspawn: return ENOSYS by default, EPERM for "known" calls (bsc#1186411) shared/seccomp-util: added functionality to make list of filtred syscalls hared/syscall-list: filter out some obviously platform-specific syscalls shared/seccomp: reduce scope of indexing variables generate-syscall-list: require python3 shared: add @known syscall list meson: add syscall-names-update target shared/seccomp: use _cleanup_ in one more place home: fix homed.conf install location - We need to make sure that the creation of the symlinks is done after updating udev DB so if worker A is preempted by worker B before A updates the DB but after it creates the symlinks, worker B won't manage to overwrite the freshly created symlinks (by A) because A has still yet not registered the symlinks in the DB. (bsc#1185828) - Expect 644 permissions for /usr/lib/udev/compat-symlink-generation (bsc#1185807) libsystemd0-246.13-7.5.1.x86_64.rpm libsystemd0-32bit-246.13-7.5.1.x86_64.rpm libudev-devel-246.13-7.5.1.x86_64.rpm libudev-devel-32bit-246.13-7.5.1.x86_64.rpm libudev1-246.13-7.5.1.x86_64.rpm libudev1-32bit-246.13-7.5.1.x86_64.rpm nss-myhostname-246.13-7.5.1.x86_64.rpm nss-myhostname-32bit-246.13-7.5.1.x86_64.rpm nss-mymachines-246.13-7.5.1.x86_64.rpm nss-mymachines-32bit-246.13-7.5.1.x86_64.rpm nss-resolve-246.13-7.5.1.x86_64.rpm nss-systemd-246.13-7.5.1.x86_64.rpm systemd-246.13-7.5.1.src.rpm systemd-246.13-7.5.1.x86_64.rpm systemd-32bit-246.13-7.5.1.x86_64.rpm systemd-container-246.13-7.5.1.x86_64.rpm systemd-coredump-246.13-7.5.1.x86_64.rpm systemd-devel-246.13-7.5.1.x86_64.rpm systemd-doc-246.13-7.5.1.x86_64.rpm systemd-journal-remote-246.13-7.5.1.x86_64.rpm systemd-lang-246.13-7.5.1.noarch.rpm systemd-logger-246.13-7.5.1.x86_64.rpm systemd-network-246.13-7.5.1.x86_64.rpm systemd-sysvinit-246.13-7.5.1.x86_64.rpm udev-246.13-7.5.1.x86_64.rpm libsystemd0-246.13-7.5.1.s390x.rpm libsystemd0-mini-246.13-7.5.1.s390x.rpm libudev-devel-246.13-7.5.1.s390x.rpm libudev-mini-devel-246.13-7.5.1.s390x.rpm libudev-mini1-246.13-7.5.1.s390x.rpm libudev1-246.13-7.5.1.s390x.rpm nss-myhostname-246.13-7.5.1.s390x.rpm nss-mymachines-246.13-7.5.1.s390x.rpm nss-resolve-246.13-7.5.1.s390x.rpm nss-systemd-246.13-7.5.1.s390x.rpm systemd-246.13-7.5.1.s390x.rpm systemd-container-246.13-7.5.1.s390x.rpm systemd-coredump-246.13-7.5.1.s390x.rpm systemd-devel-246.13-7.5.1.s390x.rpm systemd-doc-246.13-7.5.1.s390x.rpm systemd-journal-remote-246.13-7.5.1.s390x.rpm systemd-logger-246.13-7.5.1.s390x.rpm systemd-mini-246.13-7.5.1.s390x.rpm systemd-mini-container-246.13-7.5.1.s390x.rpm systemd-mini-devel-246.13-7.5.1.s390x.rpm systemd-mini-sysvinit-246.13-7.5.1.s390x.rpm systemd-network-246.13-7.5.1.s390x.rpm systemd-sysvinit-246.13-7.5.1.s390x.rpm udev-246.13-7.5.1.s390x.rpm udev-mini-246.13-7.5.1.s390x.rpm libsystemd0-246.13-7.5.1.ppc64le.rpm libsystemd0-mini-246.13-7.5.1.ppc64le.rpm libudev-devel-246.13-7.5.1.ppc64le.rpm libudev-mini-devel-246.13-7.5.1.ppc64le.rpm libudev-mini1-246.13-7.5.1.ppc64le.rpm libudev1-246.13-7.5.1.ppc64le.rpm nss-myhostname-246.13-7.5.1.ppc64le.rpm nss-mymachines-246.13-7.5.1.ppc64le.rpm nss-resolve-246.13-7.5.1.ppc64le.rpm nss-systemd-246.13-7.5.1.ppc64le.rpm systemd-246.13-7.5.1.ppc64le.rpm systemd-container-246.13-7.5.1.ppc64le.rpm systemd-coredump-246.13-7.5.1.ppc64le.rpm systemd-devel-246.13-7.5.1.ppc64le.rpm systemd-doc-246.13-7.5.1.ppc64le.rpm systemd-journal-remote-246.13-7.5.1.ppc64le.rpm systemd-logger-246.13-7.5.1.ppc64le.rpm systemd-mini-246.13-7.5.1.ppc64le.rpm systemd-mini-container-246.13-7.5.1.ppc64le.rpm systemd-mini-devel-246.13-7.5.1.ppc64le.rpm systemd-mini-sysvinit-246.13-7.5.1.ppc64le.rpm systemd-network-246.13-7.5.1.ppc64le.rpm systemd-sysvinit-246.13-7.5.1.ppc64le.rpm udev-246.13-7.5.1.ppc64le.rpm udev-mini-246.13-7.5.1.ppc64le.rpm libsystemd0-246.13-7.5.1.aarch64.rpm libsystemd0-mini-246.13-7.5.1.aarch64.rpm libudev-devel-246.13-7.5.1.aarch64.rpm libudev-mini-devel-246.13-7.5.1.aarch64.rpm libudev-mini1-246.13-7.5.1.aarch64.rpm libudev1-246.13-7.5.1.aarch64.rpm nss-myhostname-246.13-7.5.1.aarch64.rpm nss-mymachines-246.13-7.5.1.aarch64.rpm nss-resolve-246.13-7.5.1.aarch64.rpm nss-systemd-246.13-7.5.1.aarch64.rpm systemd-246.13-7.5.1.aarch64.rpm systemd-container-246.13-7.5.1.aarch64.rpm systemd-coredump-246.13-7.5.1.aarch64.rpm systemd-devel-246.13-7.5.1.aarch64.rpm systemd-doc-246.13-7.5.1.aarch64.rpm systemd-journal-remote-246.13-7.5.1.aarch64.rpm systemd-logger-246.13-7.5.1.aarch64.rpm systemd-mini-246.13-7.5.1.aarch64.rpm systemd-mini-container-246.13-7.5.1.aarch64.rpm systemd-mini-devel-246.13-7.5.1.aarch64.rpm systemd-mini-sysvinit-246.13-7.5.1.aarch64.rpm systemd-network-246.13-7.5.1.aarch64.rpm systemd-sysvinit-246.13-7.5.1.aarch64.rpm udev-246.13-7.5.1.aarch64.rpm udev-mini-246.13-7.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2005 important SUSE Updates openSUSE-SLE 15.3 This update for jetty-minimal fixes the following issues: Update to version 9.4.42.v20210604 - Fix: bsc#1187117, CVE-2021-28169 - possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory - Fix: bsc#1184367, CVE-2021-28165 - jetty server high CPU when client send data length > 17408 - Fix: bsc#1184368, CVE-2021-28164 - Normalize ambiguous URIs - Fix: bsc#1184366, CVE-2021-28163 - Exclude webapps directory from deployment scan jetty-annotations-9.4.42-3.9.1.noarch.rpm jetty-client-9.4.42-3.9.1.noarch.rpm jetty-continuation-9.4.42-3.9.1.noarch.rpm jetty-http-9.4.42-3.9.1.noarch.rpm jetty-io-9.4.42-3.9.1.noarch.rpm jetty-jaas-9.4.42-3.9.1.noarch.rpm jetty-javax-websocket-client-impl-9.4.42-3.9.1.noarch.rpm jetty-javax-websocket-server-impl-9.4.42-3.9.1.noarch.rpm jetty-jmx-9.4.42-3.9.1.noarch.rpm jetty-jndi-9.4.42-3.9.1.noarch.rpm jetty-jsp-9.4.42-3.9.1.noarch.rpm jetty-minimal-9.4.42-3.9.1.src.rpm jetty-minimal-javadoc-9.4.42-3.9.1.noarch.rpm jetty-openid-9.4.42-3.9.1.noarch.rpm jetty-plus-9.4.42-3.9.1.noarch.rpm jetty-proxy-9.4.42-3.9.1.noarch.rpm jetty-security-9.4.42-3.9.1.noarch.rpm jetty-server-9.4.42-3.9.1.noarch.rpm jetty-servlet-9.4.42-3.9.1.noarch.rpm jetty-util-9.4.42-3.9.1.noarch.rpm jetty-util-ajax-9.4.42-3.9.1.noarch.rpm jetty-webapp-9.4.42-3.9.1.noarch.rpm jetty-websocket-9.4.42-3.9.1.src.rpm jetty-websocket-api-9.4.42-3.9.1.noarch.rpm jetty-websocket-client-9.4.42-3.9.1.noarch.rpm jetty-websocket-common-9.4.42-3.9.1.noarch.rpm jetty-websocket-javadoc-9.4.42-3.9.1.noarch.rpm jetty-websocket-server-9.4.42-3.9.1.noarch.rpm jetty-websocket-servlet-9.4.42-3.9.1.noarch.rpm jetty-xml-9.4.42-3.9.1.noarch.rpm openSUSE-SLE-15.3-2021-2011 important SUSE Updates openSUSE-SLE 15.3 This update for xterm fixes the following issues: - CVE-2021-27135: Fixed buffer-overflow when clicking on selected utf8 text. (bsc#1182091) xterm-330-11.3.1.src.rpm xterm-330-11.3.1.x86_64.rpm xterm-bin-330-11.3.1.x86_64.rpm xterm-330-11.3.1.s390x.rpm xterm-bin-330-11.3.1.s390x.rpm xterm-330-11.3.1.ppc64le.rpm xterm-bin-330-11.3.1.ppc64le.rpm xterm-330-11.3.1.aarch64.rpm xterm-bin-330-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2196 moderate SUSE Updates openSUSE-SLE 15.3 This update for lua53 fixes the following issues: Update to version 5.3.6: - CVE-2020-24371: lgc.c mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage (bsc#1175449) - CVE-2020-24370: ldebug.c allows a negation overflow and segmentation fault in getlocal and setlocal (bsc#1175448) - Long brackets with a huge number of '=' overflow some internal buffer arithmetic. liblua5_3-5-32bit-5.3.6-3.6.1.x86_64.rpm liblua5_3-5-5.3.6-3.6.1.x86_64.rpm lua53-5.3.6-3.6.1.src.rpm lua53-5.3.6-3.6.1.x86_64.rpm lua53-devel-5.3.6-3.6.1.x86_64.rpm lua53-doc-5.3.6-3.6.1.noarch.rpm liblua5_3-5-5.3.6-3.6.1.s390x.rpm lua53-5.3.6-3.6.1.s390x.rpm lua53-devel-5.3.6-3.6.1.s390x.rpm liblua5_3-5-5.3.6-3.6.1.ppc64le.rpm lua53-5.3.6-3.6.1.ppc64le.rpm lua53-devel-5.3.6-3.6.1.ppc64le.rpm liblua5_3-5-5.3.6-3.6.1.aarch64.rpm lua53-5.3.6-3.6.1.aarch64.rpm lua53-devel-5.3.6-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2291 moderate SUSE Updates openSUSE-SLE 15.3 This update for bluez fixes the following issues: - CVE-2021-0129,CVE-2020-26558: Check bluetooth security flags (bsc#1186463). bluez-5.55-3.3.1.src.rpm bluez-5.55-3.3.1.x86_64.rpm bluez-auto-enable-devices-5.55-3.3.1.noarch.rpm bluez-cups-5.55-3.3.1.x86_64.rpm bluez-deprecated-5.55-3.3.1.x86_64.rpm bluez-devel-32bit-5.55-3.3.1.x86_64.rpm bluez-devel-5.55-3.3.1.x86_64.rpm bluez-test-5.55-3.3.1.x86_64.rpm libbluetooth3-32bit-5.55-3.3.1.x86_64.rpm libbluetooth3-5.55-3.3.1.x86_64.rpm bluez-5.55-3.3.1.s390x.rpm bluez-cups-5.55-3.3.1.s390x.rpm bluez-deprecated-5.55-3.3.1.s390x.rpm bluez-devel-5.55-3.3.1.s390x.rpm bluez-test-5.55-3.3.1.s390x.rpm libbluetooth3-5.55-3.3.1.s390x.rpm bluez-5.55-3.3.1.ppc64le.rpm bluez-cups-5.55-3.3.1.ppc64le.rpm bluez-deprecated-5.55-3.3.1.ppc64le.rpm bluez-devel-5.55-3.3.1.ppc64le.rpm bluez-test-5.55-3.3.1.ppc64le.rpm libbluetooth3-5.55-3.3.1.ppc64le.rpm bluez-5.55-3.3.1.aarch64.rpm bluez-cups-5.55-3.3.1.aarch64.rpm bluez-deprecated-5.55-3.3.1.aarch64.rpm bluez-devel-5.55-3.3.1.aarch64.rpm bluez-test-5.55-3.3.1.aarch64.rpm libbluetooth3-5.55-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2012 important SUSE Updates openSUSE-SLE 15.3 This update for python-urllib3 fixes the following issues: - CVE-2021-33503: Fixed a denial of service when the URL contained many @ characters in the authority component (bsc#1187045) python-urllib3-1.25.10-4.3.1.src.rpm python3-urllib3-1.25.10-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2143 important SUSE Updates openSUSE-SLE 15.3 This update for libnettle fixes the following issues: - CVE-2021-3580: Fixed a remote denial of service in the RSA decryption via manipulated ciphertext (bsc#1187060). libhogweed4-3.4.1-4.18.1.x86_64.rpm libhogweed4-32bit-3.4.1-4.18.1.x86_64.rpm libnettle-3.4.1-4.18.1.src.rpm libnettle-devel-3.4.1-4.18.1.x86_64.rpm libnettle-devel-32bit-3.4.1-4.18.1.x86_64.rpm libnettle6-3.4.1-4.18.1.x86_64.rpm libnettle6-32bit-3.4.1-4.18.1.x86_64.rpm nettle-3.4.1-4.18.1.x86_64.rpm libhogweed4-3.4.1-4.18.1.s390x.rpm libnettle-devel-3.4.1-4.18.1.s390x.rpm libnettle6-3.4.1-4.18.1.s390x.rpm nettle-3.4.1-4.18.1.s390x.rpm libhogweed4-3.4.1-4.18.1.ppc64le.rpm libnettle-devel-3.4.1-4.18.1.ppc64le.rpm libnettle6-3.4.1-4.18.1.ppc64le.rpm nettle-3.4.1-4.18.1.ppc64le.rpm libhogweed4-3.4.1-4.18.1.aarch64.rpm libnettle-devel-3.4.1-4.18.1.aarch64.rpm libnettle6-3.4.1-4.18.1.aarch64.rpm nettle-3.4.1-4.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-2001 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pycryptodome fixes the following issue: - python-pycryptodome had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) python-pycryptodome-3.9.0-6.1.src.rpm python2-pycryptodome-3.9.0-6.1.x86_64.rpm python3-pycryptodome-3.9.0-6.1.x86_64.rpm python2-pycryptodome-3.9.0-6.1.s390x.rpm python3-pycryptodome-3.9.0-6.1.s390x.rpm python2-pycryptodome-3.9.0-6.1.ppc64le.rpm python3-pycryptodome-3.9.0-6.1.ppc64le.rpm python2-pycryptodome-3.9.0-6.1.aarch64.rpm python3-pycryptodome-3.9.0-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2079 moderate SUSE Updates openSUSE-SLE 15.3 This update for build fixes the following issue: - build had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) build-20210120-6.1.noarch.rpm build-20210120-6.1.src.rpm build-initvm-x86_64-20210120-6.1.noarch.rpm build-mkbaselibs-20210120-6.1.noarch.rpm build-mkdrpms-20210120-6.1.noarch.rpm build-initvm-s390x-20210120-6.1.noarch.rpm build-initvm-powerpc64le-20210120-6.1.noarch.rpm build-initvm-aarch64-20210120-6.1.noarch.rpm openSUSE-SLE-15.3-2021-2008 important SUSE Updates openSUSE-SLE 15.3 This update for python-rsa fixes the following issues: - CVE-2020-13757: Proper handling of leading '\0' bytes during decryption of ciphertext (bsc#1172389) python-rsa-3.4.2-3.4.1.src.rpm python2-rsa-3.4.2-3.4.1.noarch.rpm python3-rsa-3.4.2-3.4.1.noarch.rpm openSUSE-SLE-15.3-2021-2093 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - updated ceph to upstream version 15.2.13: * mgr/dashboard: allow getting fresh inventory data from the orchestrator (bsc#1174526) The whole upstream changelog can be found here: https://ceph.io/releases/v15-2-13-octopus-released/ ceph-15.2.13.79+g51835b62d61-3.28.1.src.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-grafana-dashboards-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-mgr-cephadm-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-dashboard-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-k8sevents-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-modules-core-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mgr-rook-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-prometheus-alerts-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-test-15.2.13.79+g51835b62d61-3.28.1.src.rpm ceph-test-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm cephadm-15.2.13.79+g51835b62d61-3.28.1.noarch.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.x86_64.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.s390x.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.ppc64le.rpm ceph-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-base-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-common-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-fuse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-immutable-object-cache-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mds-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mgr-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-mon-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-osd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm ceph-radosgw-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm cephfs-shell-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libcephfs-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libcephfs2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librados-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librados2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm libradospp-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librbd-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librbd1-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librgw-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm librgw2-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-ceph-argparse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-ceph-common-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-cephfs-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rados-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rbd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm python3-rgw-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rados-objclass-devel-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-fuse-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-mirror-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm rbd-nbd-15.2.13.79+g51835b62d61-3.28.1.aarch64.rpm openSUSE-SLE-15.3-2021-2002 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issue: - open-vm-tools had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) libvmtools-devel-11.2.5-7.1.x86_64.rpm libvmtools0-11.2.5-7.1.x86_64.rpm open-vm-tools-11.2.5-7.1.src.rpm open-vm-tools-11.2.5-7.1.x86_64.rpm open-vm-tools-desktop-11.2.5-7.1.x86_64.rpm open-vm-tools-sdmp-11.2.5-7.1.x86_64.rpm libvmtools-devel-11.2.5-7.1.aarch64.rpm libvmtools0-11.2.5-7.1.aarch64.rpm open-vm-tools-11.2.5-7.1.aarch64.rpm open-vm-tools-desktop-11.2.5-7.1.aarch64.rpm open-vm-tools-sdmp-11.2.5-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2157 important SUSE Updates openSUSE-SLE 15.3 This update for libgcrypt fixes the following issues: - CVE-2021-33560: Fixed a side-channel against ElGamal encryption, caused by missing exponent blinding (bsc#1187212). libgcrypt-1.8.2-8.39.1.src.rpm libgcrypt-cavs-1.8.2-8.39.1.x86_64.rpm libgcrypt-devel-1.8.2-8.39.1.x86_64.rpm libgcrypt-devel-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt20-1.8.2-8.39.1.x86_64.rpm libgcrypt20-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt20-hmac-1.8.2-8.39.1.x86_64.rpm libgcrypt20-hmac-32bit-1.8.2-8.39.1.x86_64.rpm libgcrypt-cavs-1.8.2-8.39.1.s390x.rpm libgcrypt-devel-1.8.2-8.39.1.s390x.rpm libgcrypt20-1.8.2-8.39.1.s390x.rpm libgcrypt20-hmac-1.8.2-8.39.1.s390x.rpm libgcrypt-cavs-1.8.2-8.39.1.ppc64le.rpm libgcrypt-devel-1.8.2-8.39.1.ppc64le.rpm libgcrypt20-1.8.2-8.39.1.ppc64le.rpm libgcrypt20-hmac-1.8.2-8.39.1.ppc64le.rpm libgcrypt-cavs-1.8.2-8.39.1.aarch64.rpm libgcrypt-devel-1.8.2-8.39.1.aarch64.rpm libgcrypt20-1.8.2-8.39.1.aarch64.rpm libgcrypt20-hmac-1.8.2-8.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-1981 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-tar_scm fixes the following issues: * Fix filelist: align config(noreplace) usage with obs-service-download_files * Support gitlab/github merge requests obs-service-appimage-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-obs_scm-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-obs_scm-common-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-snapcraft-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar_scm-0.10.22.1615538418.07a353d-3.12.1.noarch.rpm obs-service-tar_scm-0.10.22.1615538418.07a353d-3.12.1.src.rpm openSUSE-SLE-15.3-2021-2177 important SUSE Updates openSUSE-SLE 15.3 This update for arpwatch fixes the following issues: - CVE-2021-25321: Fixed local privilege escalation from runtime user to root (bsc#1186240). arpwatch-2.1a15-5.12.1.src.rpm arpwatch-2.1a15-5.12.1.x86_64.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.x86_64.rpm arpwatch-2.1a15-5.12.1.s390x.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.s390x.rpm arpwatch-2.1a15-5.12.1.ppc64le.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.ppc64le.rpm arpwatch-2.1a15-5.12.1.aarch64.rpm arpwatch-ethercodes-build-2.1a15-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2076 moderate SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issue: - dovecot23 had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) dovecot23-2.3.11.3-52.1.src.rpm dovecot23-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-mysql-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.x86_64.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.x86_64.rpm dovecot23-devel-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-lucene-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-solr-2.3.11.3-52.1.x86_64.rpm dovecot23-fts-squat-2.3.11.3-52.1.x86_64.rpm dovecot23-2.3.11.3-52.1.s390x.rpm dovecot23-backend-mysql-2.3.11.3-52.1.s390x.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.s390x.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.s390x.rpm dovecot23-devel-2.3.11.3-52.1.s390x.rpm dovecot23-fts-2.3.11.3-52.1.s390x.rpm dovecot23-fts-lucene-2.3.11.3-52.1.s390x.rpm dovecot23-fts-solr-2.3.11.3-52.1.s390x.rpm dovecot23-fts-squat-2.3.11.3-52.1.s390x.rpm dovecot23-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-mysql-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.ppc64le.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.ppc64le.rpm dovecot23-devel-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-lucene-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-solr-2.3.11.3-52.1.ppc64le.rpm dovecot23-fts-squat-2.3.11.3-52.1.ppc64le.rpm dovecot23-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-mysql-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-pgsql-2.3.11.3-52.1.aarch64.rpm dovecot23-backend-sqlite-2.3.11.3-52.1.aarch64.rpm dovecot23-devel-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-lucene-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-solr-2.3.11.3-52.1.aarch64.rpm dovecot23-fts-squat-2.3.11.3-52.1.aarch64.rpm openSUSE-SLE-15.3-2021-2668 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issue: - salt had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) - Do noop for services states when running systemd in offline mode (bsc#1187787) - transactional_updates: do not execute states in parallel but use a queue (bsc#1188170) - Handle "master tops" data when states are applied by "transactional_update" (bsc#1187787) - Enhance openscap module: add "xccdf_eval" call - virt: pass emulator when getting domain capabilities from libvirt - Adding preliminary support for Rocky Linux - Implementation of held/unheld functions for state pkg (bsc#1187813) - Replace deprecated 'Thread.isAlive()' with 'Thread.is_alive()' - Fix exception in 'yumpkg.remove' for not installed package - Fix save for iptables state module (bsc#1185131) - virt: use '/dev/kvm' to detect KVM - zypperpkg: improve logic for handling vendorchange flags - Add bundled provides for tornado to the spec file - Enhance logging when inotify beacon is missing pyinotify (bsc#1186310) - Add 'python3-pyinotify' as a recommended package for Salt in SUSE/openSUSE distros - Fix 'tmpfiles.d' configuration for salt to not use legacy paths (bsc#1173103) - Detect Python version to use inside container (bsc#1167586, bsc#1164192) - Handle volumes on stopped pools in 'virt.vm_info' (bsc#1186287) - grains.extra: support old non-intel kernels (bsc#1180650) - Fix missing minion returns in batch mode (bsc#1184659) - Parsing Epoch out of version provided during pkg remove (bsc#1173692) python3-salt-3002.2-50.1.9.1.x86_64.rpm True salt-3002.2-50.1.9.1.src.rpm True salt-3002.2-50.1.9.1.x86_64.rpm True salt-api-3002.2-50.1.9.1.x86_64.rpm True salt-bash-completion-3002.2-50.1.9.1.noarch.rpm True salt-cloud-3002.2-50.1.9.1.x86_64.rpm True salt-doc-3002.2-50.1.9.1.x86_64.rpm True salt-fish-completion-3002.2-50.1.9.1.noarch.rpm True salt-master-3002.2-50.1.9.1.x86_64.rpm True salt-minion-3002.2-50.1.9.1.x86_64.rpm True salt-proxy-3002.2-50.1.9.1.x86_64.rpm True salt-ssh-3002.2-50.1.9.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.x86_64.rpm True salt-syndic-3002.2-50.1.9.1.x86_64.rpm True salt-transactional-update-3002.2-50.1.9.1.x86_64.rpm True salt-zsh-completion-3002.2-50.1.9.1.noarch.rpm True python3-salt-3002.2-50.1.9.1.s390x.rpm True salt-3002.2-50.1.9.1.s390x.rpm True salt-api-3002.2-50.1.9.1.s390x.rpm True salt-cloud-3002.2-50.1.9.1.s390x.rpm True salt-doc-3002.2-50.1.9.1.s390x.rpm True salt-master-3002.2-50.1.9.1.s390x.rpm True salt-minion-3002.2-50.1.9.1.s390x.rpm True salt-proxy-3002.2-50.1.9.1.s390x.rpm True salt-ssh-3002.2-50.1.9.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.s390x.rpm True salt-syndic-3002.2-50.1.9.1.s390x.rpm True salt-transactional-update-3002.2-50.1.9.1.s390x.rpm True python3-salt-3002.2-50.1.9.1.ppc64le.rpm True salt-3002.2-50.1.9.1.ppc64le.rpm True salt-api-3002.2-50.1.9.1.ppc64le.rpm True salt-cloud-3002.2-50.1.9.1.ppc64le.rpm True salt-doc-3002.2-50.1.9.1.ppc64le.rpm True salt-master-3002.2-50.1.9.1.ppc64le.rpm True salt-minion-3002.2-50.1.9.1.ppc64le.rpm True salt-proxy-3002.2-50.1.9.1.ppc64le.rpm True salt-ssh-3002.2-50.1.9.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.ppc64le.rpm True salt-syndic-3002.2-50.1.9.1.ppc64le.rpm True salt-transactional-update-3002.2-50.1.9.1.ppc64le.rpm True python3-salt-3002.2-50.1.9.1.aarch64.rpm True salt-3002.2-50.1.9.1.aarch64.rpm True salt-api-3002.2-50.1.9.1.aarch64.rpm True salt-cloud-3002.2-50.1.9.1.aarch64.rpm True salt-doc-3002.2-50.1.9.1.aarch64.rpm True salt-master-3002.2-50.1.9.1.aarch64.rpm True salt-minion-3002.2-50.1.9.1.aarch64.rpm True salt-proxy-3002.2-50.1.9.1.aarch64.rpm True salt-ssh-3002.2-50.1.9.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.9.1.aarch64.rpm True salt-syndic-3002.2-50.1.9.1.aarch64.rpm True salt-transactional-update-3002.2-50.1.9.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2089 important SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issue: - LibreOffice migration conflict from SUSE Linux Enterprise 15-SP2 to SUSE Linux Enterprise 15-SP3. (bsc#1187354) libreoffice-7.1.3.2-14.22.6.1.src.rpm libreoffice-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-base-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-branding-upstream-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-calc-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-draw-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-glade-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-icon-themes-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-impress-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-l10n-af-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-am-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ar-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-as-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ast-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-be-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bg-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bn_IN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-br-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-brx-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-bs-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ca-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ca_valencia-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ckb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-cs-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-cy-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-da-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-de-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dgo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dsb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-dz-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-el-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en_GB-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-en_ZA-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-eo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-es-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-et-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-eu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fa-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fur-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-fy-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ga-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gd-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-gug-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-he-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hsb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-hu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-id-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-is-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-it-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ja-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ka-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kab-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-km-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ko-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-kok-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ks-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lo-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lt-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-lv-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mai-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ml-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mni-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-mr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-my-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nb-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ne-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-nso-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-oc-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-om-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-or-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pa-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pt_BR-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-pt_PT-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ro-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ru-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-rw-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sa_IN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sat-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sd-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-si-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sid-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sq-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ss-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-st-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sv-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-sw_TZ-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-szl-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ta-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-te-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tg-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-th-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tn-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tr-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ts-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-tt-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ug-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-uk-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-uz-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-ve-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-vec-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-vi-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-xh-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zh_CN-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zh_TW-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-l10n-zu-7.1.3.2-14.22.6.1.noarch.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-math-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-writer-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.x86_64.rpm libreofficekit-7.1.3.2-14.22.6.1.x86_64.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.x86_64.rpm libreoffice-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-base-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-calc-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-draw-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-impress-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-math-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-writer-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.ppc64le.rpm libreofficekit-7.1.3.2-14.22.6.1.ppc64le.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.ppc64le.rpm libreoffice-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-base-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-calc-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-calc-extensions-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-draw-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-filters-optional-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-gnome-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-gtk3-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-impress-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-librelogo-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-mailmerge-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-math-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-officebean-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-pyuno-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-qt5-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-sdk-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-sdk-doc-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-writer-7.1.3.2-14.22.6.1.aarch64.rpm libreoffice-writer-extensions-7.1.3.2-14.22.6.1.aarch64.rpm libreofficekit-7.1.3.2-14.22.6.1.aarch64.rpm libreofficekit-devel-7.1.3.2-14.22.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2118 important SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issues: - Fixed a possible buffer overflow in IScsiDxe (bsc#1186151) ovmf-202008-10.8.1.src.rpm ovmf-202008-10.8.1.x86_64.rpm ovmf-tools-202008-10.8.1.x86_64.rpm qemu-ovmf-ia32-202008-10.8.1.noarch.rpm qemu-ovmf-x86_64-202008-10.8.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-10.8.1.x86_64.rpm qemu-uefi-aarch32-202008-10.8.1.noarch.rpm qemu-uefi-aarch64-202008-10.8.1.noarch.rpm ovmf-202008-10.8.1.aarch64.rpm ovmf-tools-202008-10.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2274 moderate SUSE Updates openSUSE-SLE 15.3 This update for kubevirt fixes the following issues: General: - Updated kubevirt to version 0.40.0 - Fixed an issue when calling `virsh-domcapabilities` - Fixed the the wrong registry path for containers. Security fixes: - CVE-2021-20286: A flaw was found in libnbd 1.7.3. An assertion failure in nbd_unlocked_opt_go in ilb/opt.c may lead to denial of service. kubevirt-0.40.0-5.11.2.src.rpm kubevirt-container-disk-0.40.0-5.11.2.x86_64.rpm kubevirt-manifests-0.40.0-5.11.2.x86_64.rpm kubevirt-tests-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-api-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-controller-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-handler-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-launcher-0.40.0-5.11.2.x86_64.rpm kubevirt-virt-operator-0.40.0-5.11.2.x86_64.rpm kubevirt-virtctl-0.40.0-5.11.2.x86_64.rpm openSUSE-SLE-15.3-2021-2158 important SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - Fixed CVE-2021-3605 [bsc#1187395]: Heap buffer overflow in the rleUncompress function - Fixed CVE-2021-3598 [bsc#1187310]: Heap buffer overflow in Imf_3_1:CharPtrIO:readChars libIlmImf-2_2-23-2.2.1-3.32.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.32.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.32.1.x86_64.rpm openexr-2.2.1-3.32.1.src.rpm openexr-2.2.1-3.32.1.x86_64.rpm openexr-devel-2.2.1-3.32.1.x86_64.rpm openexr-doc-2.2.1-3.32.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.32.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.s390x.rpm openexr-2.2.1-3.32.1.s390x.rpm openexr-devel-2.2.1-3.32.1.s390x.rpm openexr-doc-2.2.1-3.32.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.32.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.ppc64le.rpm openexr-2.2.1-3.32.1.ppc64le.rpm openexr-devel-2.2.1-3.32.1.ppc64le.rpm openexr-doc-2.2.1-3.32.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.32.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.32.1.aarch64.rpm openexr-2.2.1-3.32.1.aarch64.rpm openexr-devel-2.2.1-3.32.1.aarch64.rpm openexr-doc-2.2.1-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-2213 moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-3546: Fixed out-of-bounds write in virgl_cmd_get_capset (bsc#1185981). - CVE-2021-3544: Fixed memory leaks found in the virtio vhost-user GPU device (bsc#1186010). - CVE-2021-3545: Fixed information disclosure due to uninitialized memory read (bsc#1185990). qemu-5.2.0-20.1.src.rpm qemu-5.2.0-20.1.x86_64.rpm qemu-arm-5.2.0-20.1.x86_64.rpm qemu-audio-alsa-5.2.0-20.1.x86_64.rpm qemu-audio-pa-5.2.0-20.1.x86_64.rpm qemu-audio-spice-5.2.0-20.1.x86_64.rpm qemu-block-curl-5.2.0-20.1.x86_64.rpm qemu-block-dmg-5.2.0-20.1.x86_64.rpm qemu-block-gluster-5.2.0-20.1.x86_64.rpm qemu-block-iscsi-5.2.0-20.1.x86_64.rpm qemu-block-nfs-5.2.0-20.1.x86_64.rpm qemu-block-rbd-5.2.0-20.1.x86_64.rpm qemu-block-ssh-5.2.0-20.1.x86_64.rpm qemu-chardev-baum-5.2.0-20.1.x86_64.rpm qemu-chardev-spice-5.2.0-20.1.x86_64.rpm qemu-extra-5.2.0-20.1.x86_64.rpm qemu-guest-agent-5.2.0-20.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-20.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-20.1.x86_64.rpm qemu-ipxe-1.0.0+-20.1.noarch.rpm qemu-ivshmem-tools-5.2.0-20.1.x86_64.rpm qemu-ksm-5.2.0-20.1.x86_64.rpm qemu-kvm-5.2.0-20.1.x86_64.rpm qemu-lang-5.2.0-20.1.x86_64.rpm qemu-microvm-5.2.0-20.1.noarch.rpm qemu-ppc-5.2.0-20.1.x86_64.rpm qemu-s390x-5.2.0-20.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-20.1.noarch.rpm qemu-sgabios-8-20.1.noarch.rpm qemu-skiboot-5.2.0-20.1.noarch.rpm qemu-tools-5.2.0-20.1.x86_64.rpm qemu-ui-curses-5.2.0-20.1.x86_64.rpm qemu-ui-gtk-5.2.0-20.1.x86_64.rpm qemu-ui-opengl-5.2.0-20.1.x86_64.rpm qemu-ui-spice-app-5.2.0-20.1.x86_64.rpm qemu-ui-spice-core-5.2.0-20.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-20.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-20.1.x86_64.rpm qemu-x86-5.2.0-20.1.x86_64.rpm qemu-5.2.0-20.1.s390x.rpm qemu-arm-5.2.0-20.1.s390x.rpm qemu-audio-alsa-5.2.0-20.1.s390x.rpm qemu-audio-pa-5.2.0-20.1.s390x.rpm qemu-audio-spice-5.2.0-20.1.s390x.rpm qemu-block-curl-5.2.0-20.1.s390x.rpm qemu-block-dmg-5.2.0-20.1.s390x.rpm qemu-block-gluster-5.2.0-20.1.s390x.rpm qemu-block-iscsi-5.2.0-20.1.s390x.rpm qemu-block-nfs-5.2.0-20.1.s390x.rpm qemu-block-rbd-5.2.0-20.1.s390x.rpm qemu-block-ssh-5.2.0-20.1.s390x.rpm qemu-chardev-baum-5.2.0-20.1.s390x.rpm qemu-chardev-spice-5.2.0-20.1.s390x.rpm qemu-extra-5.2.0-20.1.s390x.rpm qemu-guest-agent-5.2.0-20.1.s390x.rpm qemu-hw-display-qxl-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-20.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-20.1.s390x.rpm qemu-ivshmem-tools-5.2.0-20.1.s390x.rpm qemu-ksm-5.2.0-20.1.s390x.rpm qemu-kvm-5.2.0-20.1.s390x.rpm qemu-lang-5.2.0-20.1.s390x.rpm qemu-ppc-5.2.0-20.1.s390x.rpm qemu-s390x-5.2.0-20.1.s390x.rpm qemu-tools-5.2.0-20.1.s390x.rpm qemu-ui-curses-5.2.0-20.1.s390x.rpm qemu-ui-gtk-5.2.0-20.1.s390x.rpm qemu-ui-opengl-5.2.0-20.1.s390x.rpm qemu-ui-spice-app-5.2.0-20.1.s390x.rpm qemu-ui-spice-core-5.2.0-20.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-20.1.s390x.rpm qemu-x86-5.2.0-20.1.s390x.rpm qemu-5.2.0-20.1.ppc64le.rpm qemu-arm-5.2.0-20.1.ppc64le.rpm qemu-audio-alsa-5.2.0-20.1.ppc64le.rpm qemu-audio-pa-5.2.0-20.1.ppc64le.rpm qemu-audio-spice-5.2.0-20.1.ppc64le.rpm qemu-block-curl-5.2.0-20.1.ppc64le.rpm qemu-block-dmg-5.2.0-20.1.ppc64le.rpm qemu-block-gluster-5.2.0-20.1.ppc64le.rpm qemu-block-iscsi-5.2.0-20.1.ppc64le.rpm qemu-block-nfs-5.2.0-20.1.ppc64le.rpm qemu-block-rbd-5.2.0-20.1.ppc64le.rpm qemu-block-ssh-5.2.0-20.1.ppc64le.rpm qemu-chardev-baum-5.2.0-20.1.ppc64le.rpm qemu-chardev-spice-5.2.0-20.1.ppc64le.rpm qemu-extra-5.2.0-20.1.ppc64le.rpm qemu-guest-agent-5.2.0-20.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-20.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-20.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-20.1.ppc64le.rpm qemu-ksm-5.2.0-20.1.ppc64le.rpm qemu-lang-5.2.0-20.1.ppc64le.rpm qemu-ppc-5.2.0-20.1.ppc64le.rpm qemu-s390x-5.2.0-20.1.ppc64le.rpm qemu-tools-5.2.0-20.1.ppc64le.rpm qemu-ui-curses-5.2.0-20.1.ppc64le.rpm qemu-ui-gtk-5.2.0-20.1.ppc64le.rpm qemu-ui-opengl-5.2.0-20.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-20.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-20.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-20.1.ppc64le.rpm qemu-x86-5.2.0-20.1.ppc64le.rpm qemu-5.2.0-20.1.aarch64.rpm qemu-arm-5.2.0-20.1.aarch64.rpm qemu-audio-alsa-5.2.0-20.1.aarch64.rpm qemu-audio-pa-5.2.0-20.1.aarch64.rpm qemu-audio-spice-5.2.0-20.1.aarch64.rpm qemu-block-curl-5.2.0-20.1.aarch64.rpm qemu-block-dmg-5.2.0-20.1.aarch64.rpm qemu-block-gluster-5.2.0-20.1.aarch64.rpm qemu-block-iscsi-5.2.0-20.1.aarch64.rpm qemu-block-nfs-5.2.0-20.1.aarch64.rpm qemu-block-rbd-5.2.0-20.1.aarch64.rpm qemu-block-ssh-5.2.0-20.1.aarch64.rpm qemu-chardev-baum-5.2.0-20.1.aarch64.rpm qemu-chardev-spice-5.2.0-20.1.aarch64.rpm qemu-extra-5.2.0-20.1.aarch64.rpm qemu-guest-agent-5.2.0-20.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-20.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-20.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-20.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-20.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-20.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-20.1.aarch64.rpm qemu-ksm-5.2.0-20.1.aarch64.rpm qemu-lang-5.2.0-20.1.aarch64.rpm qemu-ppc-5.2.0-20.1.aarch64.rpm qemu-s390x-5.2.0-20.1.aarch64.rpm qemu-tools-5.2.0-20.1.aarch64.rpm qemu-ui-curses-5.2.0-20.1.aarch64.rpm qemu-ui-gtk-5.2.0-20.1.aarch64.rpm qemu-ui-opengl-5.2.0-20.1.aarch64.rpm qemu-ui-spice-app-5.2.0-20.1.aarch64.rpm qemu-ui-spice-core-5.2.0-20.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-20.1.aarch64.rpm qemu-x86-5.2.0-20.1.aarch64.rpm openSUSE-SLE-15.3-2021-3480 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network fixes the following issues: - Don't crash when the interfaces table contains a not configured one (bnc#1190645, bsc#1190915). - Fix the shown description using the interface friendly name when it is empty (bsc#1190933). - Consider aliases sections as case insensitive (bsc#1190739). - Display user defined device name in the devices overview (bnc#1190645). - Don't crash when defined aliases in AutoYaST profile are not defined as a map (bsc#1188344). - Support 'boot' and 'on' as aliases for the 'auto' startmode (bsc#1186910). - Fix desktop file so the control center tooltip is translated (bsc#1187270). - Use the linuxrc proxy settings for the HTTPS and FTP proxies (bsc#1185016). - Don't crash at the end of installation when storing wifi configuration for NetworkManager (bsc#1185524, bsc#1187512). augeas-1.10.1-3.3.1.src.rpm augeas-1.10.1-3.3.1.x86_64.rpm augeas-devel-1.10.1-3.3.1.x86_64.rpm augeas-devel-32bit-1.10.1-3.3.1.x86_64.rpm augeas-lense-tests-1.10.1-3.3.1.x86_64.rpm augeas-lenses-1.10.1-3.3.1.x86_64.rpm libaugeas0-1.10.1-3.3.1.x86_64.rpm libaugeas0-32bit-1.10.1-3.3.1.x86_64.rpm yast2-network-4.3.77-3.16.1.noarch.rpm yast2-network-4.3.77-3.16.1.src.rpm augeas-1.10.1-3.3.1.s390x.rpm augeas-devel-1.10.1-3.3.1.s390x.rpm augeas-lense-tests-1.10.1-3.3.1.s390x.rpm augeas-lenses-1.10.1-3.3.1.s390x.rpm libaugeas0-1.10.1-3.3.1.s390x.rpm augeas-1.10.1-3.3.1.ppc64le.rpm augeas-devel-1.10.1-3.3.1.ppc64le.rpm augeas-lense-tests-1.10.1-3.3.1.ppc64le.rpm augeas-lenses-1.10.1-3.3.1.ppc64le.rpm libaugeas0-1.10.1-3.3.1.ppc64le.rpm augeas-1.10.1-3.3.1.aarch64.rpm augeas-devel-1.10.1-3.3.1.aarch64.rpm augeas-lense-tests-1.10.1-3.3.1.aarch64.rpm augeas-lenses-1.10.1-3.3.1.aarch64.rpm libaugeas0-1.10.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2288 moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxrc fixes the following issues: - Prevent memory corruption while iterating through network device list. (bsc#1187014) linuxrc-7.0.30.4-3.3.1.src.rpm linuxrc-7.0.30.4-3.3.1.x86_64.rpm linuxrc-7.0.30.4-3.3.1.s390x.rpm linuxrc-7.0.30.4-3.3.1.ppc64le.rpm linuxrc-7.0.30.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2273 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: - Enhance XML output of repo GPG options - Add optional attributes showing the raw values actually present in the '.repo' file. - Link all executables with -PIE (bsc#1186447) - Ship an empty '/etc/zypp/needreboot' per default (jsc#PM-2645) - Add 'Solvable::isBlacklisted' as superset of retracted and ptf packages (bsc#1186503) - Fix segv if 'ZYPP_FULLOG' is set. libzypp-17.27.0-12.1.src.rpm True libzypp-17.27.0-12.1.x86_64.rpm True libzypp-devel-17.27.0-12.1.x86_64.rpm True libzypp-devel-doc-17.27.0-12.1.x86_64.rpm True zypper-1.14.46-13.1.src.rpm True zypper-1.14.46-13.1.x86_64.rpm True zypper-aptitude-1.14.46-13.1.noarch.rpm True zypper-log-1.14.46-13.1.noarch.rpm True zypper-needs-restarting-1.14.46-13.1.noarch.rpm True libzypp-17.27.0-12.1.s390x.rpm True libzypp-devel-17.27.0-12.1.s390x.rpm True libzypp-devel-doc-17.27.0-12.1.s390x.rpm True zypper-1.14.46-13.1.s390x.rpm True libzypp-17.27.0-12.1.ppc64le.rpm True libzypp-devel-17.27.0-12.1.ppc64le.rpm True libzypp-devel-doc-17.27.0-12.1.ppc64le.rpm True zypper-1.14.46-13.1.ppc64le.rpm True libzypp-17.27.0-12.1.aarch64.rpm True libzypp-devel-17.27.0-12.1.aarch64.rpm True libzypp-devel-doc-17.27.0-12.1.aarch64.rpm True zypper-1.14.46-13.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2268 moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - When detecting HNV connection list all connections, not only active ones. (bsc#1187148) powerpc-utils-1.3.8-9.3.1.ppc64le.rpm powerpc-utils-1.3.8-9.3.1.src.rpm openSUSE-SLE-15.3-2021-2142 moderate SUSE Updates openSUSE-SLE 15.3 This update for dpdk fixes the following issue: - dpdk had a lower release number in 15 sp2 than in sp3, which could lead to migration issues. (bsc#1186642) dpdk-19.11.4-6.1.src.rpm dpdk-19.11.4-6.1.x86_64.rpm dpdk-devel-19.11.4-6.1.x86_64.rpm dpdk-doc-19.11.4-6.1.noarch.rpm dpdk-examples-19.11.4-6.1.x86_64.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.x86_64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_59.5-6.1.x86_64.rpm dpdk-tools-19.11.4-6.1.x86_64.rpm libdpdk-20_0-19.11.4-6.1.x86_64.rpm dpdk-19.11.4-6.1.ppc64le.rpm dpdk-devel-19.11.4-6.1.ppc64le.rpm dpdk-examples-19.11.4-6.1.ppc64le.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.ppc64le.rpm dpdk-tools-19.11.4-6.1.ppc64le.rpm libdpdk-20_0-19.11.4-6.1.ppc64le.rpm dpdk-19.11.4-6.1.aarch64.rpm dpdk-devel-19.11.4-6.1.aarch64.rpm dpdk-examples-19.11.4-6.1.aarch64.rpm dpdk-kmp-default-19.11.4_k5.3.18_59.5-6.1.aarch64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_59.5-6.1.aarch64.rpm dpdk-tools-19.11.4-6.1.aarch64.rpm libdpdk-20_0-19.11.4-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2136 important SUSE Updates openSUSE-SLE 15.3 This update for cryptctl fixes the following issues: Update to version 2.4: - CVE-2019-18906: Client side password hashing was equivalent to clear text password storage (bsc#1186226) - First step to use plain text password instead of hashed password. - Move repository into the SUSE github organization - in RPC server, if client comes from localhost, remember its ipv4 localhost address instead of ipv6 address - tell a record to clear expired pending commands upon saving a command result; introduce pending commands RPC test case - avoid hard coding 127.0.0.1 in host ID of alive message test; let system administrator mount and unmount disks by issuing these two commands on key server. cryptctl-2.4-4.5.1.src.rpm cryptctl-2.4-4.5.1.x86_64.rpm cryptctl-2.4-4.5.1.ppc64le.rpm openSUSE-SLE-15.3-2021-2290 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issue: - reduce requirement of clang and llvm to recommends in "postgresql13-server-devel". libecpg6-13.3-5.13.1.x86_64.rpm libecpg6-32bit-13.3-5.13.1.x86_64.rpm libpq5-13.3-5.13.1.x86_64.rpm postgresql13-13.3-5.13.1.src.rpm postgresql13-13.3-5.13.1.x86_64.rpm postgresql13-contrib-13.3-5.13.1.x86_64.rpm postgresql13-devel-13.3-5.13.1.x86_64.rpm postgresql13-docs-13.3-5.13.1.noarch.rpm postgresql13-llvmjit-13.3-5.13.1.x86_64.rpm postgresql13-plperl-13.3-5.13.1.x86_64.rpm postgresql13-plpython-13.3-5.13.1.x86_64.rpm postgresql13-pltcl-13.3-5.13.1.x86_64.rpm postgresql13-server-13.3-5.13.1.x86_64.rpm postgresql13-server-devel-13.3-5.13.1.x86_64.rpm postgresql13-test-13.3-5.13.1.x86_64.rpm libecpg6-13.3-5.13.1.s390x.rpm libpq5-13.3-5.13.1.s390x.rpm postgresql13-13.3-5.13.1.s390x.rpm postgresql13-contrib-13.3-5.13.1.s390x.rpm postgresql13-devel-13.3-5.13.1.s390x.rpm postgresql13-llvmjit-13.3-5.13.1.s390x.rpm postgresql13-plperl-13.3-5.13.1.s390x.rpm postgresql13-plpython-13.3-5.13.1.s390x.rpm postgresql13-pltcl-13.3-5.13.1.s390x.rpm postgresql13-server-13.3-5.13.1.s390x.rpm postgresql13-server-devel-13.3-5.13.1.s390x.rpm postgresql13-test-13.3-5.13.1.s390x.rpm libecpg6-13.3-5.13.1.ppc64le.rpm libpq5-13.3-5.13.1.ppc64le.rpm postgresql13-13.3-5.13.1.ppc64le.rpm postgresql13-contrib-13.3-5.13.1.ppc64le.rpm postgresql13-devel-13.3-5.13.1.ppc64le.rpm postgresql13-llvmjit-13.3-5.13.1.ppc64le.rpm postgresql13-plperl-13.3-5.13.1.ppc64le.rpm postgresql13-plpython-13.3-5.13.1.ppc64le.rpm postgresql13-pltcl-13.3-5.13.1.ppc64le.rpm postgresql13-server-13.3-5.13.1.ppc64le.rpm postgresql13-server-devel-13.3-5.13.1.ppc64le.rpm postgresql13-test-13.3-5.13.1.ppc64le.rpm libecpg6-13.3-5.13.1.aarch64.rpm libpq5-13.3-5.13.1.aarch64.rpm postgresql13-13.3-5.13.1.aarch64.rpm postgresql13-contrib-13.3-5.13.1.aarch64.rpm postgresql13-devel-13.3-5.13.1.aarch64.rpm postgresql13-llvmjit-13.3-5.13.1.aarch64.rpm postgresql13-plperl-13.3-5.13.1.aarch64.rpm postgresql13-plpython-13.3-5.13.1.aarch64.rpm postgresql13-pltcl-13.3-5.13.1.aarch64.rpm postgresql13-server-13.3-5.13.1.aarch64.rpm postgresql13-server-devel-13.3-5.13.1.aarch64.rpm postgresql13-test-13.3-5.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-2816 low SUSE Updates openSUSE-SLE 15.3 This patch provides the python3-kubernetes package to the following modules: - Container Module for SUSE Linux Enterprise 15 SP2 - Container Module for SUSE Linux Enterprise 15 SP3 python-cachetools-4.1.0-3.2.1.src.rpm python-google-auth-1.21.2-3.4.1.src.rpm python-kubernetes-8.0.1-3.5.1.src.rpm python-oauth2client-4.1.3-3.2.1.src.rpm python-pycrypto-2.6.1-3.2.1.src.rpm python2-google-auth-1.21.2-3.4.1.noarch.rpm python2-kubernetes-8.0.1-3.5.1.noarch.rpm python2-oauth2client-4.1.3-3.2.1.noarch.rpm python2-oauth2client-flask-4.1.3-3.2.1.noarch.rpm python2-oauth2client-gce-4.1.3-3.2.1.noarch.rpm python2-pycrypto-2.6.1-3.2.1.x86_64.rpm python3-cachetools-4.1.0-3.2.1.noarch.rpm python3-google-auth-1.21.2-3.4.1.noarch.rpm python3-kubernetes-8.0.1-3.5.1.noarch.rpm python3-oauth2client-4.1.3-3.2.1.noarch.rpm python3-oauth2client-flask-4.1.3-3.2.1.noarch.rpm python3-oauth2client-gce-4.1.3-3.2.1.noarch.rpm python3-pycrypto-2.6.1-3.2.1.x86_64.rpm python2-pycrypto-2.6.1-3.2.1.s390x.rpm python3-pycrypto-2.6.1-3.2.1.s390x.rpm python2-pycrypto-2.6.1-3.2.1.ppc64le.rpm python3-pycrypto-2.6.1-3.2.1.ppc64le.rpm python2-pycrypto-2.6.1-3.2.1.aarch64.rpm python3-pycrypto-2.6.1-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2154 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-Cython fixes the following issue: - python-Cython had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642 bsc#1187450) python-Cython-0.29.14-102.1.src.rpm python2-Cython-0.29.14-102.1.x86_64.rpm python3-Cython-0.29.14-102.1.x86_64.rpm python2-Cython-0.29.14-102.1.s390x.rpm python3-Cython-0.29.14-102.1.s390x.rpm python2-Cython-0.29.14-102.1.ppc64le.rpm python3-Cython-0.29.14-102.1.ppc64le.rpm python2-Cython-0.29.14-102.1.aarch64.rpm python3-Cython-0.29.14-102.1.aarch64.rpm openSUSE-SLE-15.3-2021-2287 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - Fixes an issue where screen rotation was not working (bsc#1182955) xorg-x11-server-1.20.3-22.5.36.1.src.rpm xorg-x11-server-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.s390x.rpm xorg-x11-server-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.36.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2289 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-bluetooth fixes the following issues: - Improved headset pairing when using gnome-control-center (bsc#1186277) gnome-bluetooth-3.34.5-4.3.1.src.rpm gnome-bluetooth-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-devel-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-lang-3.34.5-4.3.1.noarch.rpm libgnome-bluetooth13-3.34.5-4.3.1.x86_64.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.x86_64.rpm gnome-bluetooth-3.34.5-4.3.1.s390x.rpm gnome-bluetooth-devel-3.34.5-4.3.1.s390x.rpm libgnome-bluetooth13-3.34.5-4.3.1.s390x.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.s390x.rpm gnome-bluetooth-3.34.5-4.3.1.ppc64le.rpm gnome-bluetooth-devel-3.34.5-4.3.1.ppc64le.rpm libgnome-bluetooth13-3.34.5-4.3.1.ppc64le.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.ppc64le.rpm gnome-bluetooth-3.34.5-4.3.1.aarch64.rpm gnome-bluetooth-devel-3.34.5-4.3.1.aarch64.rpm libgnome-bluetooth13-3.34.5-4.3.1.aarch64.rpm typelib-1_0-GnomeBluetooth-1_0-3.34.5-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2435 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: Update to version 4.3.1+20210624.67223df2: - Fix: ocfs2: Skip verifying UUID for ocfs2 device on top of raid or lvm on the join node (bsc#1187553) - Fix: history: use Path.mkdir instead of mkdir command(bsc#1179999, CVE-2020-35459) - Dev: crash_test: Add big warnings to have users' attention to potential failover(jsc#SLE-17979) - Dev: crash_test: rename preflight_check as crash_test(jsc#SLE-17979) - Fix: bootstrap: update sbd watchdog timeout when using diskless SBD with qdevice(bsc#1184465) - Dev: utils: allow configure link-local ipv6 address(bsc#1163460) - Fix: parse: shouldn't allow property setting with an empty value(bsc#1185423) - Fix: help: show help message from argparse(bsc#1175982) crmsh-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm crmsh-4.3.1+20210702.4e0ee8fb-5.59.1.src.rpm crmsh-scripts-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm crmsh-test-4.3.1+20210702.4e0ee8fb-5.59.1.noarch.rpm openSUSE-SLE-15.3-2021-2153 important SUSE Updates openSUSE-SLE 15.3 This update for gupnp fixes the following issues: - CVE-2021-33516: Fixed a DNS rebinding, which could trick the browser into triggering actions against local UPnP services (bsc#1186590). gupnp-1.2.2-3.3.1.src.rpm libgupnp-1_2-0-1.2.2-3.3.1.x86_64.rpm libgupnp-1_2-0-32bit-1.2.2-3.3.1.x86_64.rpm libgupnp-devel-1.2.2-3.3.1.x86_64.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.x86_64.rpm libgupnp-1_2-0-1.2.2-3.3.1.s390x.rpm libgupnp-devel-1.2.2-3.3.1.s390x.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.s390x.rpm libgupnp-1_2-0-1.2.2-3.3.1.ppc64le.rpm libgupnp-devel-1.2.2-3.3.1.ppc64le.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.ppc64le.rpm libgupnp-1_2-0-1.2.2-3.3.1.aarch64.rpm libgupnp-devel-1.2.2-3.3.1.aarch64.rpm typelib-1_0-GUPnP-1_0-1.2.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2193 moderate SUSE Updates openSUSE-SLE 15.3 This update for tar fixes the following issues: - Link '/var/lib/tests/tar/bin/genfile' as Position-Independent Executable (bsc#1184124) tar-1.30-3.9.1.src.rpm tar-1.30-3.9.1.x86_64.rpm tar-backup-scripts-1.30-3.9.1.noarch.rpm tar-doc-1.30-3.9.1.noarch.rpm tar-lang-1.30-3.9.1.noarch.rpm tar-rmt-1.30-3.9.1.x86_64.rpm tar-tests-1.30-3.9.1.x86_64.rpm tar-1.30-3.9.1.s390x.rpm tar-rmt-1.30-3.9.1.s390x.rpm tar-tests-1.30-3.9.1.s390x.rpm tar-1.30-3.9.1.ppc64le.rpm tar-rmt-1.30-3.9.1.ppc64le.rpm tar-tests-1.30-3.9.1.ppc64le.rpm tar-1.30-3.9.1.aarch64.rpm tar-rmt-1.30-3.9.1.aarch64.rpm tar-tests-1.30-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2314 moderate SUSE Updates openSUSE-SLE 15.3 This update for netcontrol fixes the following issues: - Fixed an issue when the interface list takes too long with many interfaces. (bsc#1179144) - Install pkgconfig into libdir instead of datadir libnetcontrol-devel-0.3.2-10.5.1.x86_64.rpm libnetcontrol0-0.3.2-10.5.1.x86_64.rpm libnetcontrol0-32bit-0.3.2-10.5.1.x86_64.rpm netcontrol-0.3.2-10.5.1.src.rpm libnetcontrol-devel-0.3.2-10.5.1.s390x.rpm libnetcontrol0-0.3.2-10.5.1.s390x.rpm libnetcontrol-devel-0.3.2-10.5.1.ppc64le.rpm libnetcontrol0-0.3.2-10.5.1.ppc64le.rpm libnetcontrol-devel-0.3.2-10.5.1.aarch64.rpm libnetcontrol0-0.3.2-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2281 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: - build 32bit arches llvm without debuginfo to avoid oom during build (bsc#1181571) cargo-1.43.1-15.1.x86_64.rpm cargo-doc-1.43.1-15.1.noarch.rpm clippy-1.43.1-15.1.x86_64.rpm rls-1.43.1-15.1.x86_64.rpm rust-1.43.1-15.1.src.rpm rust-1.43.1-15.1.x86_64.rpm rust-analysis-1.43.1-15.1.x86_64.rpm rust-doc-1.43.1-15.1.x86_64.rpm rust-gdb-1.43.1-15.1.x86_64.rpm rust-src-1.43.1-15.1.noarch.rpm rust-std-static-1.43.1-15.1.x86_64.rpm rustfmt-1.43.1-15.1.x86_64.rpm cargo-1.43.1-15.1.s390x.rpm clippy-1.43.1-15.1.s390x.rpm rls-1.43.1-15.1.s390x.rpm rust-1.43.1-15.1.s390x.rpm rust-analysis-1.43.1-15.1.s390x.rpm rust-doc-1.43.1-15.1.s390x.rpm rust-gdb-1.43.1-15.1.s390x.rpm rust-std-static-1.43.1-15.1.s390x.rpm rustfmt-1.43.1-15.1.s390x.rpm cargo-1.43.1-15.1.ppc64le.rpm clippy-1.43.1-15.1.ppc64le.rpm rls-1.43.1-15.1.ppc64le.rpm rust-1.43.1-15.1.ppc64le.rpm rust-analysis-1.43.1-15.1.ppc64le.rpm rust-doc-1.43.1-15.1.ppc64le.rpm rust-gdb-1.43.1-15.1.ppc64le.rpm rust-std-static-1.43.1-15.1.ppc64le.rpm rustfmt-1.43.1-15.1.ppc64le.rpm cargo-1.43.1-15.1.aarch64.rpm clippy-1.43.1-15.1.aarch64.rpm rls-1.43.1-15.1.aarch64.rpm rust-1.43.1-15.1.aarch64.rpm rust-analysis-1.43.1-15.1.aarch64.rpm rust-doc-1.43.1-15.1.aarch64.rpm rust-gdb-1.43.1-15.1.aarch64.rpm rust-std-static-1.43.1-15.1.aarch64.rpm rustfmt-1.43.1-15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2096 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-six fixes the following issue: - python-six had a lower release number in 15 sp2 and sp3 than in 15 sp1, which could lead to migration issues. (bsc#1186642) python-six-1.14.0-10.1.src.rpm python2-six-1.14.0-10.1.noarch.rpm python3-six-1.14.0-10.1.noarch.rpm openSUSE-SLE-15.3-2021-2123 important SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issues: - CVE-2021-29157: Local attacker can login as any user and access their emails (bsc#1187418) - CVE-2021-33515: Attacker can potentially steal user credentials and mails (bsc#1187419) dovecot23-2.3.11.3-55.1.src.rpm dovecot23-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-mysql-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.x86_64.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.x86_64.rpm dovecot23-devel-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-lucene-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-solr-2.3.11.3-55.1.x86_64.rpm dovecot23-fts-squat-2.3.11.3-55.1.x86_64.rpm dovecot23-2.3.11.3-55.1.s390x.rpm dovecot23-backend-mysql-2.3.11.3-55.1.s390x.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.s390x.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.s390x.rpm dovecot23-devel-2.3.11.3-55.1.s390x.rpm dovecot23-fts-2.3.11.3-55.1.s390x.rpm dovecot23-fts-lucene-2.3.11.3-55.1.s390x.rpm dovecot23-fts-solr-2.3.11.3-55.1.s390x.rpm dovecot23-fts-squat-2.3.11.3-55.1.s390x.rpm dovecot23-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-mysql-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.ppc64le.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.ppc64le.rpm dovecot23-devel-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-lucene-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-solr-2.3.11.3-55.1.ppc64le.rpm dovecot23-fts-squat-2.3.11.3-55.1.ppc64le.rpm dovecot23-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-mysql-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-pgsql-2.3.11.3-55.1.aarch64.rpm dovecot23-backend-sqlite-2.3.11.3-55.1.aarch64.rpm dovecot23-devel-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-lucene-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-solr-2.3.11.3-55.1.aarch64.rpm dovecot23-fts-squat-2.3.11.3-55.1.aarch64.rpm openSUSE-SLE-15.3-2021-2144 moderate SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issue: - rebuilt against openssl 1.1.1 to support TLS 1.3 configuration. (bsc#1187083) redis-6.0.13-6.2.1.src.rpm redis-6.0.13-6.2.1.x86_64.rpm redis-6.0.13-6.2.1.s390x.rpm redis-6.0.13-6.2.1.ppc64le.rpm redis-6.0.13-6.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2191 moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-microos provides the following fix: - Add zypper-migration-plugin to the default pattern. (bsc#1186791) suse-build-key-12.0-8.16.1.noarch.rpm suse-build-key-12.0-8.16.1.src.rpm openSUSE-SLE-15.3-2021-2234 moderate SUSE Updates openSUSE-SLE 15.3 This update for ntp fixes the following issues: - Fix a typo in '%post' section. (bsc#1186431) ntp-4.2.8p15-4.19.1.src.rpm ntp-4.2.8p15-4.19.1.x86_64.rpm ntp-doc-4.2.8p15-4.19.1.x86_64.rpm ntp-4.2.8p15-4.19.1.s390x.rpm ntp-doc-4.2.8p15-4.19.1.s390x.rpm ntp-4.2.8p15-4.19.1.ppc64le.rpm ntp-doc-4.2.8p15-4.19.1.ppc64le.rpm ntp-4.2.8p15-4.19.1.aarch64.rpm ntp-doc-4.2.8p15-4.19.1.aarch64.rpm openSUSE-SLE-15.3-2021-2150 moderate SUSE Updates openSUSE-SLE 15.3 This update for x3270 fixes the following issue: - x3270 had a lower release number in 15 sp3 than in 15 sp2, which could lead to migration issues. (bsc#1186642) x3270-3.6-6.1.src.rpm x3270-3.6-6.1.x86_64.rpm x3270-3.6-6.1.s390x.rpm x3270-3.6-6.1.ppc64le.rpm x3270-3.6-6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2682 important SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Changed default package verification level to 'none' to be compatible to rpm-4.14.1 - Made illegal obsoletes a warning - Fixed a potential access of freed mem in ndb's glue code (bsc#1179416) - Added support for enforcing signature policy and payload verification step to transactions (jsc#SLE-17817) - Added :humansi and :hmaniec query formatters for human readable output - Added query selectors for whatobsoletes and whatconflicts - Added support for sorting caret higher than base version - rpm does no longer require the signature header to be in a contiguous region when signing (bsc#1181805) Security fixes: - CVE-2021-3421: A flaw was found in the RPM package in the read functionality. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package or compromise an RPM repository, to cause RPM database corruption. The highest threat from this vulnerability is to data integrity (bsc#1183543) - CVE-2021-20271: A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seemingly verifiable package, whose signature header was modified, to cause RPM database corruption and execute code. The highest threat from this vulnerability is to data integrity, confidentiality, and system availability (bsc#1183545) - CVE-2021-20266: A flaw was found in RPM's hdrblobInit() in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an out-of-bounds read. The highest threat from this vulnerability is to system availability. python-rpm-4.14.3-37.2.src.rpm True python2-rpm-4.14.3-37.2.x86_64.rpm True python3-rpm-4.14.3-37.2.x86_64.rpm True rpm-32bit-4.14.3-37.2.x86_64.rpm True rpm-4.14.3-37.2.src.rpm True rpm-4.14.3-37.2.x86_64.rpm True rpm-build-4.14.3-37.2.x86_64.rpm True rpm-devel-4.14.3-37.2.x86_64.rpm True rpm-ndb-32bit-4.14.3-37.2.x86_64.rpm True rpm-ndb-4.14.3-37.2.src.rpm True rpm-ndb-4.14.3-37.2.x86_64.rpm True python2-rpm-4.14.3-37.2.s390x.rpm True python3-rpm-4.14.3-37.2.s390x.rpm True rpm-4.14.3-37.2.s390x.rpm True rpm-build-4.14.3-37.2.s390x.rpm True rpm-devel-4.14.3-37.2.s390x.rpm True rpm-ndb-4.14.3-37.2.s390x.rpm True python2-rpm-4.14.3-37.2.ppc64le.rpm True python3-rpm-4.14.3-37.2.ppc64le.rpm True rpm-4.14.3-37.2.ppc64le.rpm True rpm-build-4.14.3-37.2.ppc64le.rpm True rpm-devel-4.14.3-37.2.ppc64le.rpm True rpm-ndb-4.14.3-37.2.ppc64le.rpm True python2-rpm-4.14.3-37.2.aarch64.rpm True python3-rpm-4.14.3-37.2.aarch64.rpm True rpm-4.14.3-37.2.aarch64.rpm True rpm-build-4.14.3-37.2.aarch64.rpm True rpm-devel-4.14.3-37.2.aarch64.rpm True rpm-ndb-4.14.3-37.2.aarch64.rpm True openSUSE-SLE-15.3-2021-2630 moderate SUSE Updates openSUSE-SLE 15.3 This update for crash fixes the following issue: - Use the value of 'xen_start_info' to determine whether the kernel is running in Xen ParaVirtual OPerationS (PVOPS) mode. (bsc#1187634) - Fix backtrace command when analyzing dump. (bsc#1185209) crash-7.2.9-23.5.3.src.rpm crash-7.2.9-23.5.3.x86_64.rpm crash-devel-7.2.9-23.5.3.x86_64.rpm crash-doc-7.2.9-23.5.3.x86_64.rpm crash-eppic-7.2.9-23.5.3.x86_64.rpm crash-gcore-7.2.9-23.5.3.x86_64.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.x86_64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.16-23.5.3.x86_64.rpm crash-7.2.9-23.5.3.s390x.rpm crash-devel-7.2.9-23.5.3.s390x.rpm crash-doc-7.2.9-23.5.3.s390x.rpm crash-eppic-7.2.9-23.5.3.s390x.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.s390x.rpm crash-7.2.9-23.5.3.ppc64le.rpm crash-devel-7.2.9-23.5.3.ppc64le.rpm crash-doc-7.2.9-23.5.3.ppc64le.rpm crash-eppic-7.2.9-23.5.3.ppc64le.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.ppc64le.rpm crash-7.2.9-23.5.3.aarch64.rpm crash-devel-7.2.9-23.5.3.aarch64.rpm crash-doc-7.2.9-23.5.3.aarch64.rpm crash-eppic-7.2.9-23.5.3.aarch64.rpm crash-kmp-64kb-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm crash-kmp-default-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.16-23.5.3.aarch64.rpm openSUSE-SLE-15.3-2021-2205 important SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issues: - Resolve issues in the idle / connection 'TTL' timeout implementation in OpenLDAP. (bsc#1187210) libldap-2_4-2-2.4.46-9.56.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-9.56.1.x86_64.rpm libldap-data-2.4.46-9.56.1.noarch.rpm openldap2-2.4.46-9.56.1.src.rpm openldap2-2.4.46-9.56.1.x86_64.rpm openldap2-back-meta-2.4.46-9.56.1.x86_64.rpm openldap2-back-perl-2.4.46-9.56.1.x86_64.rpm openldap2-back-sock-2.4.46-9.56.1.x86_64.rpm openldap2-back-sql-2.4.46-9.56.1.x86_64.rpm openldap2-client-2.4.46-9.56.1.x86_64.rpm openldap2-contrib-2.4.46-9.56.1.x86_64.rpm openldap2-devel-2.4.46-9.56.1.x86_64.rpm openldap2-devel-32bit-2.4.46-9.56.1.x86_64.rpm openldap2-devel-static-2.4.46-9.56.1.x86_64.rpm openldap2-doc-2.4.46-9.56.1.noarch.rpm openldap2-ppolicy-check-password-1.2-9.56.1.x86_64.rpm libldap-2_4-2-2.4.46-9.56.1.s390x.rpm openldap2-2.4.46-9.56.1.s390x.rpm openldap2-back-meta-2.4.46-9.56.1.s390x.rpm openldap2-back-perl-2.4.46-9.56.1.s390x.rpm openldap2-back-sock-2.4.46-9.56.1.s390x.rpm openldap2-back-sql-2.4.46-9.56.1.s390x.rpm openldap2-client-2.4.46-9.56.1.s390x.rpm openldap2-contrib-2.4.46-9.56.1.s390x.rpm openldap2-devel-2.4.46-9.56.1.s390x.rpm openldap2-devel-static-2.4.46-9.56.1.s390x.rpm openldap2-ppolicy-check-password-1.2-9.56.1.s390x.rpm libldap-2_4-2-2.4.46-9.56.1.ppc64le.rpm openldap2-2.4.46-9.56.1.ppc64le.rpm openldap2-back-meta-2.4.46-9.56.1.ppc64le.rpm openldap2-back-perl-2.4.46-9.56.1.ppc64le.rpm openldap2-back-sock-2.4.46-9.56.1.ppc64le.rpm openldap2-back-sql-2.4.46-9.56.1.ppc64le.rpm openldap2-client-2.4.46-9.56.1.ppc64le.rpm openldap2-contrib-2.4.46-9.56.1.ppc64le.rpm openldap2-devel-2.4.46-9.56.1.ppc64le.rpm openldap2-devel-static-2.4.46-9.56.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-9.56.1.ppc64le.rpm libldap-2_4-2-2.4.46-9.56.1.aarch64.rpm openldap2-2.4.46-9.56.1.aarch64.rpm openldap2-back-meta-2.4.46-9.56.1.aarch64.rpm openldap2-back-perl-2.4.46-9.56.1.aarch64.rpm openldap2-back-sock-2.4.46-9.56.1.aarch64.rpm openldap2-back-sql-2.4.46-9.56.1.aarch64.rpm openldap2-client-2.4.46-9.56.1.aarch64.rpm openldap2-contrib-2.4.46-9.56.1.aarch64.rpm openldap2-devel-2.4.46-9.56.1.aarch64.rpm openldap2-devel-static-2.4.46-9.56.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-9.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-2188 important SUSE Updates openSUSE-SLE 15.3 This update for nginx fixes the following issue: - Fix race condition between 'logrotate' and 'nginx' causing mass file reopening. (bsc#1183876) nginx-1.19.8-3.6.1.src.rpm nginx-1.19.8-3.6.1.x86_64.rpm nginx-source-1.19.8-3.6.1.noarch.rpm vim-plugin-nginx-1.19.8-3.6.1.noarch.rpm nginx-1.19.8-3.6.1.s390x.rpm nginx-1.19.8-3.6.1.ppc64le.rpm nginx-1.19.8-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2160 moderate SUSE Updates openSUSE-SLE 15.3 This update for vsftpd fixes the following issues: - Added an option ssl_tlsv1_3 that allows disabling TLS 1.3. (bsc#1187188) vsftpd-3.0.3-12.3.1.src.rpm vsftpd-3.0.3-12.3.1.x86_64.rpm vsftpd-3.0.3-12.3.1.s390x.rpm vsftpd-3.0.3-12.3.1.ppc64le.rpm vsftpd-3.0.3-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2282 low SUSE Updates openSUSE-SLE 15.3 This update for gnuplot fixes the following issue: - Hardening: link as position independent executable (PIE). (bsc#1184123) gnuplot-5.2.2-3.9.2.src.rpm gnuplot-5.2.2-3.9.2.x86_64.rpm gnuplot-doc-5.2.2-3.9.2.noarch.rpm gnuplot-5.2.2-3.9.2.s390x.rpm gnuplot-5.2.2-3.9.2.ppc64le.rpm gnuplot-5.2.2-3.9.2.aarch64.rpm openSUSE-SLE-15.3-2021-2580 moderate SUSE Updates openSUSE-SLE 15.3 This update for pdsh fixes the following issue: - pdsh had a lower release number in 15 sp3 than in 15 sp2, which could lead to migration issues. (bsc#1186642) pdsh-2.34-32.1.src.rpm pdsh-2.34-32.1.x86_64.rpm pdsh-dshgroup-2.34-32.1.x86_64.rpm pdsh-genders-2.34-32.1.x86_64.rpm pdsh-machines-2.34-32.1.x86_64.rpm pdsh-netgroup-2.34-32.1.x86_64.rpm pdsh-slurm-2.34-32.1.x86_64.rpm pdsh-2.34-32.1.s390x.rpm pdsh-dshgroup-2.34-32.1.s390x.rpm pdsh-genders-2.34-32.1.s390x.rpm pdsh-machines-2.34-32.1.s390x.rpm pdsh-netgroup-2.34-32.1.s390x.rpm pdsh-slurm-2.34-32.1.s390x.rpm pdsh-2.34-32.1.ppc64le.rpm pdsh-dshgroup-2.34-32.1.ppc64le.rpm pdsh-genders-2.34-32.1.ppc64le.rpm pdsh-machines-2.34-32.1.ppc64le.rpm pdsh-netgroup-2.34-32.1.ppc64le.rpm pdsh-slurm-2.34-32.1.ppc64le.rpm pdsh-2.34-32.1.aarch64.rpm pdsh-dshgroup-2.34-32.1.aarch64.rpm pdsh-genders-2.34-32.1.aarch64.rpm pdsh-machines-2.34-32.1.aarch64.rpm pdsh-netgroup-2.34-32.1.aarch64.rpm pdsh-slurm-2.34-32.1.aarch64.rpm openSUSE-SLE-15.3-2021-2184 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-26558: Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. (bnc#1179610 bnc#1186463) - CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463). - CVE-2020-36385: Fixed a use-after-free in drivers/infiniband/core/ucma.c which could be triggered if the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called (bnc#1187050). - CVE-2020-36386: Fixed a slab out-of-bounds read in hci_extended_inquiry_result_evt (bnc#1187038). The following non-security bugs were fixed: - ACPICA: Clean up context mutex during object deletion (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP EliteBook x360 1040 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Elite Dragonfly G2 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 840 Aero G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power G8 (git-fixes). - ALSA: hda/realtek: headphone and mic do not work on an Acer laptop (git-fixes). - ALSA: hda: update the power_state during the direct-complete (git-fixes). - ALSA: seq: Fix race of snd_seq_timer_open() (git-fixes). - ALSA: timer: Fix master timer notification (git-fixes). - arm64: Add missing ISB after invalidating TLB in __primary_switch (git-fixes). - arm64: avoid -Woverride-init warning (git-fixes). - arm64: kasan: fix page_alloc tagging with DEBUG_VIRTUAL (git-fixes). - arm64: kdump: update ppos when reading elfcorehdr (git-fixes). - arm64: kexec_file: fix memory leakage in create_dtb() when fdt_open_into() fails (git-fixes). - arm64: link with -z norelro for LLD or aarch64-elf (git-fixes). - arm64: link with -z norelro regardless of CONFIG_RELOCATABLE (git-fixes). - arm64/mm: Fix pfn_valid() for ZONE_DEVICE based memory (git-fixes). - arm64: ptrace: Fix seccomp of traced syscall -1 (NO_SYSCALL) (git-fixes). - arm64: ptrace: Use NO_SYSCALL instead of -1 in syscall_trace_enter() (git-fixes). - ARM64: vdso32: Install vdso32 from vdso_install (git-fixes). - arm64: vdso32: make vdso32 install conditional (git-fixes). - arm: mm: use __pfn_to_section() to get mem_section (git-fixes). - ASoC: amd: fix for pcm_read() error (git-fixes). - ASoC: cs43130: handle errors in cs43130_probe() properly (git-fixes). - ASoC: Intel: soc-acpi: remove TGL RVP mixed SoundWire/TDM config (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1187357). - bcache: do not pass BIOSET_NEED_BVECS for the 'bio_set' embedded in 'cache_set' (bsc#1187357). - bcache: fix a regression of code compiling failure in debug.c (bsc#1187357). - bcache: inherit the optimal I/O size (bsc#1187357). - bcache: reduce redundant code in bch_cached_dev_run() (bsc#1187357). - bcache: remove bcache device self-defined readahead (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: remove PTR_CACHE (bsc#1187357). - bcache: Use 64-bit arithmetic instead of 32-bit (bsc#1187357). - bcache: use NULL instead of using plain integer as pointer (bsc#1187357). - blk-mq: Swap two calls in blk_mq_exit_queue() (git-fixes). - blk-settings: align max_sectors on "logical_block_size" boundary (bsc#1185195). - block/genhd: use atomic_t for disk_event->block (bsc#1185497). - block: return the correct bvec when checking for gaps (bsc#1187143). - block: return the correct bvec when checking for gaps (bsc#1187144). - Bluetooth: fix the erroneous flush_work() order (git-fixes). - brcmfmac: Add clm_blob firmware files to modinfo (bsc#1186677). - brcmfmac: properly check for bus register errors (git-fixes). - btrfs: open device without device_list_mutex (bsc#1176771). - bus: ti-sysc: Fix flakey idling of uarts and stop using swsup_sidle_act (git-fixes). - cdrom: gdrom: deallocate struct gdrom_unit fields in remove_gdrom (git-fixes). - cdrom: gdrom: initialize global variable at init time (git-fixes). - ceph: do not clobber i_snap_caps on non-I_NEW inode (bsc#1186501). - ceph: fix inode leak on getattr error in __fh_to_dentry (bsc#1186501). - ceph: fix up error handling with snapdirs (bsc#1186501). - ceph: only check pool permissions for regular files (bsc#1186501). - char: hpet: add checks after calling ioremap (git-fixes). - chelsio/chtls: unlock on error in chtls_pt_recvmsg() (jsc#SLE-15129). - cxgb4: avoid accessing registers when clearing filters (git-fixes). - cxgb4: avoid link re-train during TC-MQPRIO configuration (jsc#SLE-8389). - cxgb4/ch_ktls: Clear resources when pf4 device is removed (jsc#SLE-15129). - cxgb4: fix regression with HASH tc prio value update (jsc#SLE-15131). - devlink: Correct VIRTUAL port to not have phys_port attributes (jsc#SLE-15172). - dmaengine: idxd: add missing dsa driver unregister (git-fixes). - dmaengine: idxd: Use cpu_feature_enabled() (git-fixes). - dmaengine: qcom_hidma: comment platform_driver_register call (git-fixes). - drm/amd/amdgpu: fix a potential deadlock in gpu reset (git-fixes). - drm/amd/amdgpu: fix refcount leak (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amdgpu: Do not query CE and UE errors (git-fixes). - drm/amdgpu: Fix a use-after-free (git-fixes). - drm/amdgpu/jpeg2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu: make sure we unpin the UVD BO (git-fixes). - drm/amdgpu: stop touching sched.ready in the backend (git-fixes). - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdkfd: correct sienna_cichlid SDMA RLC register offset error (git-fixes). - drm/i915/selftests: Fix return value check in live_breadcrumbs_smoketest() (git-fixes). - drm/mcde: Fix off by 10^3 in calculation (git-fixes). - drm/meson: fix shutdown crash when component not probed (git-fixes). - drm/msm/a6xx: fix incorrectly set uavflagprd_inv field for A650 (git-fixes). - drm/msm/a6xx: update/fix CP_PROTECT initialization (git-fixes). - efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared (git-fixes). - efi: cper: fix snprintf() use in cper_dimm_err_location() (git-fixes). - efi/libstub: prevent read overflow in find_file_option() (git-fixes). - Enable CONFIG_PCI_PF_STUB for Nvidia Ampere vGPU support (jsc#SLE-17882 jsc#ECO-3691) - fs/nfs: Use fatal_signal_pending instead of signal_pending (git-fixes). - gpio: cadence: Add missing MODULE_DEVICE_TABLE (git-fixes). - gpio: wcd934x: Fix shift-out-of-bounds error (git-fixes). - gve: Add NULL pointer checks when freeing irqs (git-fixes). - gve: Correct SKB queue index validation (git-fixes). - gve: Update mgmt_msix_idx if num_ntfy changes (git-fixes). - gve: Upgrade memory barrier in poll routine (git-fixes). - HID: i2c-hid: fix format string mismatch (git-fixes). - HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes). - HID: magicmouse: fix NULL-deref on disconnect (git-fixes). - HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes). - HID: pidff: fix error return code in hid_pidff_init() (git-fixes). - hwmon: (dell-smm-hwmon) Fix index values (git-fixes). - i2c: i801: Do not generate an interrupt on bus reset (git-fixes). - i2c: imx: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: qcom-geni: Suspend and resume the bus during SYSTEM_SLEEP_PM ops (git-fixes). - i2c: s3c2410: fix possible NULL pointer deref on read message after write (git-fixes). - i2c: sh_mobile: Use new clock calculation formulas for RZ/G2E (git-fixes). - ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926). - ice: Fix allowing VF to request more/less queues via virtchnl (jsc#SLE-12878). - ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes). - ice: handle the VF VSI rebuild failure (jsc#SLE-12878). - iio: adc: ad7124: Fix missbalanced regulator enable / disable on error (git-fixes). - iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers (git-fixes). - iio: adc: ad7768-1: Fix too small buffer passed to iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ad7793: Add missing error code in ad7793_setup() (git-fixes). - iio: gyro: fxas21002c: balance runtime power in error path (git-fixes). - iommu/amd: Keep track of amd_iommu_irq_remap state (https://bugzilla.kernel.org/show_bug.cgi?id=212133). - iommu: Fix a boundary issue to avoid performance drop (bsc#1187344). - iommu/virtio: Add missing MODULE_DEVICE_TABLE (bsc#1187345). - iommu/vt-d: Remove WO permissions on second-level paging entries (bsc#1187346). - iommu/vt-d: Report right snoop capability when using FL for IOVA (bsc#1187347). - iommu/vt-d: Use user privilege for RID2PASID translation (bsc#1187348). - isdn: mISDN: correctly handle ph_info allocation failure in hfcsusb_ph_info (git-fixes). - isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes). - ixgbe: fix large MTU request from VF (git-fixes). - kABI workaround for rtw88 (git-fixes). - kABI workaround for struct lis3lv02d change (git-fixes). - lib: crc64: fix kernel-doc warning (bsc#1187357). - libertas: register sysfs groups properly (git-fixes). - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal (git-fixes). - md: bcache: avoid -Wempty-body warnings (bsc#1187357). - md: bcache: Trivial typo fixes in the file journal.c (bsc#1187357). - md: Fix missing unused status line of /proc/mdstat (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - mei: request autosuspend after sending rx flow control (git-fixes). - misc/uss720: fix memory leak in uss720_probe (git-fixes). - mmc: sdhci: Clear unused bounce buffer at DMA mmap error path (bsc#1187039). - net: bnx2: Fix error return code in bnx2_init_board() (git-fixes). - netfilter: nf_tables: missing error reporting for not selected expressions (bsc#1176447). - netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-AVX2 version (bsc#1176447). - net: fix iteration for sctp transport seq_files (git-fixes). - net: hns3: fix incorrect resp_msg issue (jsc#SLE-14777). - net: hns3: Limiting the scope of vector_ring_chain variable (git-fixes). - net: hns3: put off calling register_netdev() until client initialize complete (bsc#1154353). - net/mlx4: Fix EEPROM dump support (git-fixes). - net/mlx5: DR, Create multi-destination flow table with level less than 64 (jsc#SLE-8464). - net/mlx5e: Fix error path of updating netdev queues (jsc#SLE-15172). - net/mlx5e: Fix incompatible casting (jsc#SLE-15172). - net/mlx5e: Fix multipath lag activation (git-fixes). - net/mlx5e: Fix null deref accessing lag dev (jsc#SLE-15172). - net/mlx5e: Fix nullptr in add_vlan_push_action() (git-fixes). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (jsc#SLE-15172). - net/mlx5: Set reformat action when needed for termination rules (jsc#SLE-15172). - net/mlx5: Set term table as an unmanaged flow table (jsc#SLE-15172). - net/sched: act_ct: Offload connections with commit action (jsc#SLE-15172). - net/sched: fq_pie: fix OOB access in the traffic path (jsc#SLE-15172). - net/sched: fq_pie: re-factor fix for fq_pie endless loop (jsc#SLE-15172). - net: usb: fix memory leak in smsc75xx_bind (git-fixes). - net: zero-initialize tc skb extension on allocation (bsc#1176447). - nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect (git-fixes). - NFC: SUSE specific brutal fix for runtime PM (bsc#1185589). - NFS: Deal correctly with attribute generation counter overflow (git-fixes). - NFS: Do not corrupt the value of pg_bytes_written in nfs_do_recoalesce() (git-fixes). - NFS: Do not discard pNFS layout segments that are marked for return (git-fixes). - NFS: Do not gratuitously clear the inode cache when lookup failed (git-fixes). - NFS: Do not revalidate the directory permissions on a lookup failure (git-fixes). - nfsd: register pernet ops last, unregister first (git-fixes). - NFSD: Repair misuse of sv_lock in 5.10.16-rt30 (git-fixes). - NFS: fix an incorrect limit in filelayout_decode_layout() (git-fixes). - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() (git-fixes). - NFSv4.2: Always flush out writes in nfs42_proc_fallocate() (git-fixes). - NFSv42: Copy offload should update the file size when appropriate (git-fixes). - NFSv4.2 fix handling of sr_eof in SEEK's reply (git-fixes). - NFSv4.2: fix return value of _nfs4_get_security_label() (git-fixes). - NFSv4: Do not discard segments marked for return in _pnfs_return_layout() (git-fixes). - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return() (git-fixes). - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config (git-fixes). - nvme: add new line after variable declatation (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: document nvme controller states (git-fixes). - nvme: do not check nvme_req flags for new req (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: fix deadlock in disconnect during scan_work and/or ana_work (git-fixes). - nvme: mark nvme_setup_passsthru() inline (bsc#1184259, bsc#1178612, bsc#1186155). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259, bsc#1186155). - nvme-pci: align io queue count with allocted nvme_queue in (git-fixes). - nvme-pci: avoid race between nvme_reap_pending_cqes() and nvme_poll() (git-fixes). - nvme-pci: dma read memory barrier for completions (git-fixes). - nvme-pci: fix "slimmer CQ head update" (git-fixes). - nvme-pci: make sure write/poll_queues less or equal then cpu (git-fixes). - nvme-pci: remove last_sq_tail (git-fixes). - nvme-pci: Remove tag from process cq (git-fixes). - nvme-pci: Remove two-pass completions (git-fixes). - nvme-pci: remove volatile cqes (git-fixes). - nvme-pci: Simplify nvme_poll_irqdisable (git-fixes). - nvme-pci: slimmer CQ head update (git-fixes). - nvme-pci: use simple suspend when a HMB is enabled (git-fixes). - nvme: reduce checks for zero command effects (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: rename nvme_init_identify() (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: split init identify into helper (bsc#1184259, bsc#1178612, bsc#1186155). - nvmet: use new ana_log_size instead the old one (bsc#1178612, bsc#1184259, bsc#1186155). - nvme: use NVME_CTRL_CMIC_ANA macro (bsc#1184259, bsc#1178612, bsc#1186155). - nxp-i2c: restore includes for kABI (bsc#1185589). - nxp-nci: add NXP1002 id (bsc#1185589). - PCI/LINK: Remove bandwidth notification (bsc#1183712). - pid: take a reference when initializing `cad_pid` (bsc#1152489). - platform/x86: hp_accel: Avoid invoking _INI to speed up resume (git-fixes). - platform/x86: hp-wireless: add AMD's hardware id to the supported list (git-fixes). - platform/x86: intel_punit_ipc: Append MODULE_DEVICE_TABLE for ACPI (git-fixes). - platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (git-fixes). - PM: sleep: Add pm_debug_messages kernel command line option (bsc#1186752). - pNFS/flexfiles: fix incorrect size check in decode_nfs_fh() (git-fixes). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (git-fixes). - powerpc/32: Fix boot failure with CONFIG_STACKPROTECTOR (jsc#SLE-13847 git-fixes). - powerpc/kprobes: Fix validation of prefixed instructions across page boundary (jsc#SLE-13847 git-fixes). - regulator: core: resolve supply for boot-on/always-on regulators (git-fixes). - regulator: max77620: Use device_set_of_node_from_dev() (git-fixes). - rtw88: 8822c: add LC calibration for RTL8822C (git-fixes). - scsi: aacraid: Fix an oops in error handling (bsc#1187072). - scsi: aacraid: Remove erroneous fallthrough annotation (bsc#1186950). - scsi: aacraid: Use memdup_user() as a cleanup (bsc#1186951). - scsi: acornscsi: Fix an error handling path in acornscsi_probe() (bsc#1186952). - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() (bsc#1186953). - scsi: be2iscsi: Revert "Fix a theoretical leak in beiscsi_create_eqs()" (bsc#1187067). - scsi: bfa: Fix error return in bfad_pci_init() (bsc#1186954). - scsi: bnx2fc: Fix Kconfig warning & CNIC build errors (bsc#1186955). - scsi: bnx2i: Requires MMU (bsc#1186956). - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() (bsc#1186957). - scsi: cumana_2: Fix different dev_id between request_irq() and free_irq() (bsc#1186958). - scsi: cxgb3i: Fix some leaks in init_act_open() (bsc#1186959). - scsi: cxgb4i: Fix TLS dependency (bsc#1186960). - scsi: eesox: Fix different dev_id between request_irq() and free_irq() (bsc#1186961). - scsi: fnic: Fix error return code in fnic_probe() (bsc#1186962). - scsi: hisi_sas: Fix IRQ checks (bsc#1186963). - scsi: hisi_sas: Remove preemptible() (bsc#1186964). - scsi: jazz_esp: Add IRQ check (bsc#1186965). - scsi: libfc: Fix enum-conversion warning (bsc#1186966). - scsi: libsas: Fix error path in sas_notify_lldd_dev_found() (bsc#1186967). - scsi: libsas: Reset num_scatter if libata marks qc as NODATA (bsc#1187068). - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA (bsc#1186968). - scsi: lpfc: Fix ancient double free (bsc#1186969). - scsi: lpfc: Fix failure to transmit ABTS on FC link (git-fixes). - scsi: megaraid_sas: Check user-provided offsets (bsc#1186970). - scsi: megaraid_sas: Clear affinity hint (bsc#1186971). - scsi: megaraid_sas: Do not call disable_irq from process IRQ poll (bsc#1186972). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1186973). - scsi: megaraid_sas: Remove undefined ENABLE_IRQ_POLL macro (bsc#1186974). - scsi: mesh: Fix panic after host or bus reset (bsc#1186976). - scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (bsc#1186977). - scsi: mpt3sas: Fix error return code of mpt3sas_base_attach() (bsc#1186978). - scsi: mpt3sas: Fix ioctl timeout (bsc#1186979). - scsi: myrs: Fix a double free in myrs_cleanup() (bsc#1186980). - scsi: pm80xx: Fix error return in pm8001_pci_probe() (bsc#1186981). - scsi: powertec: Fix different dev_id between request_irq() and free_irq() (bsc#1186982). - scsi: qedi: Check for buffer overflow in qedi_set_path() (bsc#1186983). - scsi: qedi: Fix error return code of qedi_alloc_global_queues() (bsc#1186984). - scsi: qedi: Fix missing destroy_workqueue() on error in __qedi_probe (bsc#1186985). - scsi: qla2xxx: Prevent PRLI in target mode (git-fixes). - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' (bsc#1186986). - scsi: qla4xxx: Remove in_interrupt() (bsc#1186987). - scsi: scsi_debug: Add check for sdebug_max_queue during module init (bsc#1186988). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - scsi: sd: Fix Opal support (bsc#1186989). - scsi: smartpqi: Add additional logging for LUN resets (bsc#1186472). - scsi: smartpqi: Add host level stream detection enable (bsc#1186472). - scsi: smartpqi: Add new PCI IDs (bsc#1186472). - scsi: smartpqi: Add phy ID support for the physical drives (bsc#1186472). - scsi: smartpqi: Add stream detection (bsc#1186472). - scsi: smartpqi: Add support for BMIC sense feature cmd and feature bits (bsc#1186472). - scsi: smartpqi: Add support for long firmware version (bsc#1186472). - scsi: smartpqi: Add support for new product ids (bsc#1186472). - scsi: smartpqi: Add support for RAID1 writes (bsc#1186472). - scsi: smartpqi: Add support for RAID5 and RAID6 writes (bsc#1186472). - scsi: smartpqi: Add support for wwid (bsc#1186472). - scsi: smartpqi: Align code with oob driver (bsc#1186472). - scsi: smartpqi: Convert snprintf() to scnprintf() (bsc#1186472). - scsi: smartpqi: Correct request leakage during reset operations (bsc#1186472). - scsi: smartpqi: Correct system hangs when resuming from hibernation (bsc#1186472). - scsi: smartpqi: Disable WRITE SAME for HBA NVMe disks (bsc#1186472). - scsi: smartpqi: Fix blocks_per_row static checker issue (bsc#1186472). - scsi: smartpqi: Fix device pointer variable reference static checker issue (bsc#1186472). - scsi: smartpqi: Fix driver synchronization issues (bsc#1186472). - scsi: smartpqi: Refactor aio submission code (bsc#1186472). - scsi: smartpqi: Refactor scatterlist code (bsc#1186472). - scsi: smartpqi: Remove timeouts from internal cmds (bsc#1186472). - scsi: smartpqi: Remove unused functions (bsc#1186472). - scsi: smartpqi: Synchronize device resets with mutex (bsc#1186472). - scsi: smartpqi: Update device scan operations (bsc#1186472). - scsi: smartpqi: Update enclosure identifier in sysfs (bsc#1186472). - scsi: smartpqi: Update event handler (bsc#1186472). - scsi: smartpqi: Update OFA management (bsc#1186472). - scsi: smartpqi: Update RAID bypass handling (bsc#1186472). - scsi: smartpqi: Update SAS initiator_port_protocols and target_port_protocols (bsc#1186472). - scsi: smartpqi: Update soft reset management for OFA (bsc#1186472). - scsi: smartpqi: Update suspend/resume and shutdown (bsc#1186472). - scsi: smartpqi: Update version to 2.1.8-045 (bsc#1186472). - scsi: smartpqi: Use host-wide tag space (bsc#1186472). - scsi: sni_53c710: Add IRQ check (bsc#1186990). - scsi: sun3x_esp: Add IRQ check (bsc#1186991). - scsi: ufs: Add quirk to disallow reset of interrupt aggregation (bsc#1186992). - scsi: ufs: Add quirk to enable host controller without hce (bsc#1186993). - scsi: ufs: Add quirk to fix abnormal ocs fatal error (bsc#1186994). - scsi: ufs: Add quirk to fix mishandling utrlclr/utmrlclr (bsc#1186995). - scsi: ufs: core: Narrow down fast path in system suspend path (bsc#1186996). - scsi: ufs: Do not update urgent bkops level when toggling auto bkops (bsc#1186997). - scsi: ufs: Fix race between shutdown and runtime resume flow (bsc#1186998). - scsi: ufshcd: use an enum for quirks (bsc#1186999). - scsi: ufs: Introduce UFSHCD_QUIRK_PRDT_BYTE_GRAN quirk (bsc#1187000). - scsi: ufs: Make ufshcd_print_trs() consider UFSHCD_QUIRK_PRDT_BYTE_GRAN (bsc#1187069). - scsi: ufs: Properly release resources if a task is aborted successfully (bsc#1187001). - scsi: ufs-qcom: Fix scheduling while atomic issue (bsc#1187002). - scsi: ufs: ufshcd-pltfrm: Fix deferred probing (bsc#1187003). - serial: 8250_pci: handle FL_NOIRQ board flag (git-fixes). - serial: core: fix suspicious security_locked_down() call (git-fixes). - serial: max310x: unregister uart driver in case of failure and abort (git-fixes). - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' (git-fixes). - serial: sh-sci: Fix off-by-one error in FIFO threshold register setting (git-fixes). - serial: tegra: Fix a mask operation that is always true (git-fixes). - staging: emxx_udc: fix loop in _nbu2ss_nuke() (git-fixes). - staging: iio: cdc: ad7746: avoid overwrite of num_channels (git-fixes). - staging: rtl8723bs: Fix uninitialized variables (git-fixes). - sunrpc: fix refcount leak for rpc auth modules (git-fixes). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - SUNRPC: Move fault injection call sites (git-fixes). - SUNRPC: Set memalloc_nofs_save() for sync tasks (git-fixes). - svcrdma: disable timeouts on rdma backchannel (git-fixes). - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID (git-fixes). - thunderbolt: dma_port: Fix NVM read buffer bounds and offset issue (git-fixes). - thunderbolt: usb4: Fix NVM read buffer bounds and offset issue (git-fixes). - tpm: fix error return code in tpm2_get_cc_attrs_tbl() (git-fixes). - ttyprintk: Add TTY hangup callback (git-fixes). - UCSI fixup of array of PDOs (git-fixes). - usb: chipidea: imx: Fix Battery Charger 1.2 CDP detection (git-fixes). - usb: core: reduce power-on-good delay time of root hub (git-fixes). - usb: dwc3: gadget: Enable suspend events (git-fixes). - usb: fix various gadgets null ptr deref on 10gbps cabling (git-fixes). - USB: f_ncm: ncm_bitrate (speed) is unsigned (git-fixes). - usb: gadget: udc: renesas_usb3: Fix a race in usb3_start_pipen() (git-fixes). - usb: musb: fix MUSB_QUIRK_B_DISCONNECT_99 handling (git-fixes). - usb: pd: Set PD_T_SINK_WAIT_CAP to 310ms (git-fixes). - USB: serial: cp210x: fix alternate function for CP2102N QFN20 (git-fixes). - USB: serial: ftdi_sio: add IDs for IDS GmbH Products (git-fixes). - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (git-fixes). - USB: serial: pl2303: add device id for ADLINK ND-6530 GC (git-fixes). - USB: serial: quatech2: fix control-request directions (git-fixes). - USB: serial: ti_usb_3410_5052: add startech.com device id (git-fixes). - USB: trancevibrator: fix control-request direction (git-fixes). - usb: typec: intel_pmc_mux: Put fwnode in error case during ->probe() (git-fixes). - usb: typec: mux: Fix copy-paste mistake in typec_mux_match (git-fixes). - usb: typec: mux: Fix matching with typec_altmode_desc (git-fixes). - usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header (git-fixes). - usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (git-fixes). - usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 (git-fixes). - usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (git-fixes). - USB: usbfs: Do not WARN about excessively large memory allocations (git-fixes). - vfio/pci: Fix error return code in vfio_ecap_init() (git-fixes). - vfio/pci: zap_vma_ptes() needs MMU (git-fixes). - vfio/platform: fix module_put call in error flow (git-fixes). - vmlinux.lds.h: Avoid orphan section with !SMP (git-fixes). - vsock/vmci: log once the failed queue pair allocation (git-fixes). - wireguard: allowedips: initialize list head in selftest (git-fixes). - wireguard: do not use -O3 (git-fixes). - wireguard: peer: allocate in kmem_cache (git-fixes). - wireguard: peer: put frequently used members above cache lines (git-fixes). - wireguard: queueing: get rid of per-peer ring buffers (git-fixes). - wireguard: selftests: make sure rp_filter is disabled on vethc (git-fixes). - wireguard: selftests: remove old conntrack kconfig value (git-fixes). - wireguard: use synchronize_net rather than synchronize_rcu (git-fixes). - x86/apic: Mark _all_ legacy interrupts when IO/APIC is missing (bsc#1152489). - x86/boot/64: Explicitly map boot_params and command line (jsc#SLE-14337). - x86/boot/compressed/64: Add 32-bit boot #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Add CPUID sanity check to 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in 64-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Cleanup exception handling before booting kernel (jsc#SLE-14337). - x86/boot/compressed/64: Introduce sev_status (jsc#SLE-14337). - x86/boot/compressed/64: Reload CS in startup_32 (jsc#SLE-14337). - x86/boot/compressed/64: Sanity-check CPUID results in the early #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Setup IDT in startup_32 boot path (jsc#SLE-14337). - x86/cpufeatures: Force disable X86_FEATURE_ENQCMD and remove update_pasid() (bsc#1178134). - x86/cpu: Initialize MSR_TSC_AUX if RDTSCP *or* RDPID is supported (bsc#1152489). - x86/fault: Do not send SIGSEGV twice on SEGV_PKUERR (bsc#1152489). - x86: fix seq_file iteration for pat.c (git-fixes). - x86/fpu: Prevent state corruption in __fpu__restore_sig() (bsc#1178134). - x86/head/64: Check SEV encryption before switching to kernel page-table (jsc#SLE-14337). - x86/head/64: Disable stack protection for head$(BITS).o (jsc#SLE-14337). - x86/ioremap: Map efi_mem_reserve() memory as encrypted for SEV (bsc#1186885). - x86/sev: Check SME/SEV support in CPUID first (jsc#SLE-14337). - x86/sev: Do not require Hypervisor CPUID bit for SEV guests (jsc#SLE-14337). - x86/sev-es: Do not return NULL from sev_es_get_ghcb() (bsc#1187349). - x86/sev-es: Do not support MMIO to/from encrypted memory (jsc#SLE-14337). - x86/sev-es: Forward page-faults which happen during emulation (bsc#1187350). - x86/sev-es: Replace open-coded hlt-loops with sev_es_terminate() (jsc#SLE-14337). - x86/sev-es: Use __put_user()/__get_user() for data accesses (bsc#1187351). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). - xprtrdma: Avoid Receive Queue wrapping (git-fixes). - xprtrdma: rpcrdma_mr_pop() already does list_del_init() (git-fixes). cluster-md-kmp-default-5.3.18-59.10.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.10.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.10.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True kernel-debug-5.3.18-59.10.1.nosrc.rpm True kernel-debug-5.3.18-59.10.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.10.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-5.3.18-59.10.1.nosrc.rpm True kernel-default-5.3.18-59.10.1.x86_64.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.src.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.x86_64.rpm True kernel-default-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-extra-5.3.18-59.10.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.10.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-default-optional-5.3.18-59.10.1.x86_64.rpm True kernel-devel-5.3.18-59.10.1.noarch.rpm True kernel-docs-5.3.18-59.10.1.noarch.rpm True kernel-docs-5.3.18-59.10.1.nosrc.rpm True kernel-docs-html-5.3.18-59.10.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.10.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.10.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.10.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-macros-5.3.18-59.10.1.noarch.rpm True kernel-obs-build-5.3.18-59.10.1.src.rpm True kernel-obs-build-5.3.18-59.10.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.10.1.src.rpm True kernel-obs-qa-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-5.3.18-59.10.1.nosrc.rpm True kernel-preempt-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.10.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.10.1.x86_64.rpm True kernel-source-5.3.18-59.10.1.noarch.rpm True kernel-source-5.3.18-59.10.1.src.rpm True kernel-source-vanilla-5.3.18-59.10.1.noarch.rpm True kernel-syms-5.3.18-59.10.1.src.rpm True kernel-syms-5.3.18-59.10.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.10.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.10.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.10.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.10.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.10.1.s390x.rpm True dlm-kmp-default-5.3.18-59.10.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.10.1.s390x.rpm True kernel-default-5.3.18-59.10.1.s390x.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.s390x.rpm True kernel-default-devel-5.3.18-59.10.1.s390x.rpm True kernel-default-extra-5.3.18-59.10.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.10.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.s390x.rpm True kernel-default-optional-5.3.18-59.10.1.s390x.rpm True kernel-obs-build-5.3.18-59.10.1.s390x.rpm True kernel-obs-qa-5.3.18-59.10.1.s390x.rpm True kernel-syms-5.3.18-59.10.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.10.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.10.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.10.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.10.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.10.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.10.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.10.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-5.3.18-59.10.1.ppc64le.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.ppc64le.rpm True kernel-default-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.10.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.10.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.10.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.10.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.10.1.ppc64le.rpm True kernel-syms-5.3.18-59.10.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.10.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.10.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.10.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.10.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.10.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.10.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-5.3.18-59.10.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.10.1.aarch64.rpm True kernel-default-5.3.18-59.10.1.aarch64.rpm True kernel-default-base-5.3.18-59.10.1.18.4.2.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.10.1.18.4.2.aarch64.rpm True kernel-default-devel-5.3.18-59.10.1.aarch64.rpm True kernel-default-extra-5.3.18-59.10.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.10.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-default-optional-5.3.18-59.10.1.aarch64.rpm True kernel-obs-build-5.3.18-59.10.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.10.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.10.1.aarch64.rpm True kernel-syms-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.10.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.10.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.10.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.10.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2202 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-26558: Bluetooth LE and BR/EDR secure pairing in Bluetooth Core Specification 2.1 may permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing by reflection of the public key and the authentication evidence of the initiating device, potentially permitting this attacker to complete authenticated pairing with the responding device using the correct Passkey for the pairing session. (bnc#1179610 bnc#1186463) - CVE-2021-0129: Improper access control in BlueZ may have allowed an authenticated user to potentially enable information disclosure via adjacent access (bnc#1186463). - CVE-2020-36385: Fixed a use-after-free in drivers/infiniband/core/ucma.c which could be triggered if the ctx is reached via the ctx_list in some ucma_migrate_id situations where ucma_close is called (bnc#1187050). - CVE-2020-36386: Fixed a slab out-of-bounds read in hci_extended_inquiry_result_evt (bnc#1187038). The following non-security bugs were fixed: - ACPICA: Clean up context mutex during object deletion (git-fixes). - ALSA: hda/cirrus: Set Initial DMIC volume to -26 dB (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP Elite Dragonfly G2 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs and speaker for HP EliteBook x360 1040 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 840 Aero G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ZBook Power G8 (git-fixes). - ALSA: hda/realtek: headphone and mic do not work on an Acer laptop (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: Fix for mute key LED for HP Pavilion 15-CK0xx (git-fixes). - ALSA: hda: update the power_state during the direct-complete (git-fixes). - ALSA: seq: Fix race of snd_seq_timer_open() (git-fixes). - ALSA: timer: Fix master timer notification (git-fixes). - ASoC: Intel: soc-acpi: remove TGL RVP mixed SoundWire/TDM config (git-fixes). - ASoC: amd: fix for pcm_read() error (git-fixes). - ASoC: cs43130: handle errors in cs43130_probe() properly (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - Bluetooth: fix the erroneous flush_work() order (git-fixes). - Enable CONFIG_PCI_PF_STUB for Nvidia Ampere vGPU support (jsc#SLE-17882 jsc#ECO-3691) - HID: i2c-hid: Skip ELAN power-on command after reset (git-fixes). - HID: i2c-hid: fix format string mismatch (git-fixes). - HID: magicmouse: fix NULL-deref on disconnect (git-fixes). - HID: multitouch: require Finger field to mark Win8 reports as MT (git-fixes). - HID: pidff: fix error return code in hid_pidff_init() (git-fixes). - NFC: SUSE specific brutal fix for runtime PM (bsc#1185589). - NFS: Deal correctly with attribute generation counter overflow (git-fixes). - NFS: Do not corrupt the value of pg_bytes_written in nfs_do_recoalesce() (git-fixes). - NFS: Do not discard pNFS layout segments that are marked for return (git-fixes). - NFS: Do not gratuitously clear the inode cache when lookup failed (git-fixes). - NFS: Do not revalidate the directory permissions on a lookup failure (git-fixes). - NFS: Fix an Oopsable condition in __nfs_pageio_add_request() (git-fixes). - NFS: fix an incorrect limit in filelayout_decode_layout() (git-fixes). - NFSD: Repair misuse of sv_lock in 5.10.16-rt30 (git-fixes). - NFSv4.2 fix handling of sr_eof in SEEK's reply (git-fixes). - NFSv4.2: Always flush out writes in nfs42_proc_fallocate() (git-fixes). - NFSv4.2: fix return value of _nfs4_get_security_label() (git-fixes). - NFSv42: Copy offload should update the file size when appropriate (git-fixes). - NFSv4: Do not discard segments marked for return in _pnfs_return_layout() (git-fixes). - NFSv4: Fix a NULL pointer dereference in pnfs_mark_matching_lsegs_return() (git-fixes). - NFSv4: Fix v4.0/v4.1 SEEK_DATA return -ENOTSUPP when set NFS_V4_2 config (git-fixes). - PCI/LINK: Remove bandwidth notification (bsc#1183712). - PM: sleep: Add pm_debug_messages kernel command line option (bsc#1186752). - SUNRPC: Move fault injection call sites (git-fixes). - SUNRPC: Set memalloc_nofs_save() for sync tasks (git-fixes). - UCSI fixup of array of PDOs (git-fixes). - USB: f_ncm: ncm_bitrate (speed) is unsigned (git-fixes). - USB: serial: cp210x: fix alternate function for CP2102N QFN20 (git-fixes). - USB: serial: ftdi_sio: add IDs for IDS GmbH Products (git-fixes). - USB: serial: option: add Telit LE910-S1 compositions 0x7010, 0x7011 (git-fixes). - USB: serial: pl2303: add device id for ADLINK ND-6530 GC (git-fixes). - USB: serial: quatech2: fix control-request directions (git-fixes). - USB: serial: ti_usb_3410_5052: add startech.com device id (git-fixes). - USB: usbfs: Do not WARN about excessively large memory allocations (git-fixes). - ath6kl: return error code in ath6kl_wmi_set_roam_lrssi_cmd() (git-fixes). - bcache: Convert to DEFINE_SHOW_ATTRIBUTE (bsc#1187357). - bcache: Use 64-bit arithmetic instead of 32-bit (bsc#1187357). - bcache: avoid oversized read request in cache missing code path (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: do not pass BIOSET_NEED_BVECS for the 'bio_set' embedded in 'cache_set' (bsc#1187357). - bcache: fix a regression of code compiling failure in debug.c (bsc#1187357). - bcache: inherit the optimal I/O size (bsc#1187357). - bcache: reduce redundant code in bch_cached_dev_run() (bsc#1187357). - bcache: remove PTR_CACHE (bsc#1187357). - bcache: remove bcache device self-defined readahead (bsc#1187357, bsc#1185570, bsc#1184631). - bcache: use NULL instead of using plain integer as pointer (bsc#1187357). - blk-settings: align max_sectors on "logical_block_size" boundary (bsc#1185195). - block: return the correct bvec when checking for gaps (bsc#1187143). - block: return the correct bvec when checking for gaps (bsc#1187144). - brcmfmac: Add clm_blob firmware files to modinfo (bsc#1186677). - brcmfmac: properly check for bus register errors (git-fixes). - btrfs: open device without device_list_mutex (bsc#1176771). - bus: ti-sysc: Fix flakey idling of uarts and stop using swsup_sidle_act (git-fixes). - char: hpet: add checks after calling ioremap (git-fixes). - chelsio/chtls: unlock on error in chtls_pt_recvmsg() (jsc#SLE-15129). - cxgb4/ch_ktls: Clear resources when pf4 device is removed (jsc#SLE-15129). - cxgb4: avoid accessing registers when clearing filters (git-fixes). - cxgb4: avoid link re-train during TC-MQPRIO configuration (jsc#SLE-8389). - cxgb4: fix regression with HASH tc prio value update (jsc#SLE-15131). - devlink: Correct VIRTUAL port to not have phys_port attributes (jsc#SLE-15172). - dmaengine: idxd: Use cpu_feature_enabled() (git-fixes). - dmaengine: idxd: add missing dsa driver unregister (git-fixes). - dmaengine: qcom_hidma: comment platform_driver_register call (git-fixes). - drm/amd/amdgpu: fix a potential deadlock in gpu reset (git-fixes). - drm/amd/amdgpu: fix refcount leak (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amd/display: Disconnect non-DP with no EDID (git-fixes). - drm/amdgpu/jpeg2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/jpeg3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn1: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.0: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn2.5: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu/vcn3: add cancel_delayed_work_sync before power gate (git-fixes). - drm/amdgpu: Do not query CE and UE errors (git-fixes). - drm/amdgpu: Fix a use-after-free (git-fixes). - drm/amdgpu: make sure we unpin the UVD BO (git-fixes). - drm/amdgpu: stop touching sched.ready in the backend (git-fixes). - drm/amdkfd: correct sienna_cichlid SDMA RLC register offset error (git-fixes). - drm/i915/selftests: Fix return value check in live_breadcrumbs_smoketest() (git-fixes). - drm/mcde: Fix off by 10^3 in calculation (git-fixes). - drm/msm/a6xx: fix incorrectly set uavflagprd_inv field for A650 (git-fixes). - drm/msm/a6xx: update/fix CP_PROTECT initialization (git-fixes). - efi/libstub: prevent read overflow in find_file_option() (git-fixes). - efi: Allow EFI_MEMORY_XP and EFI_MEMORY_RO both to be cleared (git-fixes). - efi: cper: fix snprintf() use in cper_dimm_err_location() (git-fixes). - fs/nfs: Use fatal_signal_pending instead of signal_pending (git-fixes). - gpio: cadence: Add missing MODULE_DEVICE_TABLE (git-fixes). - gpio: wcd934x: Fix shift-out-of-bounds error (git-fixes). - gve: Add NULL pointer checks when freeing irqs (git-fixes). - gve: Correct SKB queue index validation (git-fixes). - gve: Update mgmt_msix_idx if num_ntfy changes (git-fixes). - gve: Upgrade memory barrier in poll routine (git-fixes). - hwmon: (dell-smm-hwmon) Fix index values (git-fixes). - i2c: imx: fix reference leak when pm_runtime_get_sync fails (git-fixes). - i2c: qcom-geni: Suspend and resume the bus during SYSTEM_SLEEP_PM ops (git-fixes). - ice: Allow all LLDP packets from PF to Tx (jsc#SLE-7926). - ice: Fix VFR issues for AVF drivers that expect ATQLEN cleared (git-fixes). - ice: Fix allowing VF to request more/less queues via virtchnl (jsc#SLE-12878). - ice: handle the VF VSI rebuild failure (jsc#SLE-12878). - iommu/amd: Keep track of amd_iommu_irq_remap state (https://bugzilla.kernel.org/show_bug.cgi?id=212133). - iommu/virtio: Add missing MODULE_DEVICE_TABLE (bsc#1187345). - iommu/vt-d: Remove WO permissions on second-level paging entries (bsc#1187346). - iommu/vt-d: Report right snoop capability when using FL for IOVA (bsc#1187347). - iommu/vt-d: Use user privilege for RID2PASID translation (bsc#1187348). - iommu: Fix a boundary issue to avoid performance drop (bsc#1187344). - isdn: mISDN: correctly handle ph_info allocation failure in hfcsusb_ph_info (git-fixes). - isdn: mISDNinfineon: check/cleanup ioremap failure correctly in setup_io (git-fixes). - ixgbe: fix large MTU request from VF (git-fixes). - kABI workaround for rtw88 (git-fixes). - kABI workaround for struct lis3lv02d change (git-fixes). - lib: crc64: fix kernel-doc warning (bsc#1187357). - libertas: register sysfs groups properly (git-fixes). - locking/mutex: clear MUTEX_FLAGS if wait_list is empty due to signal (git-fixes). - md: Fix missing unused status line of /proc/mdstat (git-fixes). - md: bcache: Trivial typo fixes in the file journal.c (bsc#1187357). - md: bcache: avoid -Wempty-body warnings (bsc#1187357). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: dvb: Add check on sp8870_readreg return (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: mt9m111: Check write_bridge for timeout (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - media: gspca: properly check for errors in po1030_probe() (git-fixes). - mei: request autosuspend after sending rx flow control (git-fixes). - mmc: sdhci: Clear unused bounce buffer at DMA mmap error path (bsc#1187039). - net/mlx4: Fix EEPROM dump support (git-fixes). - net/mlx5: DR, Create multi-destination flow table with level less than 64 (jsc#SLE-8464). - net/mlx5: Set reformat action when needed for termination rules (jsc#SLE-15172). - net/mlx5: Set term table as an unmanaged flow table (jsc#SLE-15172). - net/mlx5e: Fix error path of updating netdev queues (jsc#SLE-15172). - net/mlx5e: Fix incompatible casting (jsc#SLE-15172). - net/mlx5e: Fix multipath lag activation (git-fixes). - net/mlx5e: Fix null deref accessing lag dev (jsc#SLE-15172). - net/mlx5e: Fix nullptr in add_vlan_push_action() (git-fixes). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (jsc#SLE-15172). - net/sched: act_ct: Offload connections with commit action (jsc#SLE-15172). - net/sched: fq_pie: fix OOB access in the traffic path (jsc#SLE-15172). - net/sched: fq_pie: re-factor fix for fq_pie endless loop (jsc#SLE-15172). - net: bnx2: Fix error return code in bnx2_init_board() (git-fixes). - net: fix iteration for sctp transport seq_files (git-fixes). - net: hns3: Limiting the scope of vector_ring_chain variable (git-fixes). - net: hns3: fix incorrect resp_msg issue (jsc#SLE-14777). - net: hns3: put off calling register_netdev() until client initialize complete (bsc#1154353). - net: zero-initialize tc skb extension on allocation (bsc#1176447). - netfilter: nf_tables: missing error reporting for not selected expressions (bsc#1176447). - netfilter: nft_set_pipapo_avx2: Add irq_fpu_usable() check, fallback to non-AVX2 version (bsc#1176447). - nfc: fix NULL ptr dereference in llcp_sock_getname() after failed connect (git-fixes). - nfsd: register pernet ops last, unregister first (git-fixes). - nvme-multipath: fix double initialization of ANA state (bsc#1178612, bsc#1184259, bsc#1186155). - nvme: add new line after variable declatation (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: do not check nvme_req flags for new req (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: mark nvme_setup_passsthru() inline (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: reduce checks for zero command effects (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: rename nvme_init_identify() (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: split init identify into helper (bsc#1184259, bsc#1178612, bsc#1186155). - nvme: use NVME_CTRL_CMIC_ANA macro (bsc#1184259, bsc#1178612, bsc#1186155). - nvmet: use new ana_log_size instead the old one (bsc#1178612, bsc#1184259, bsc#1186155). - pNFS/NFSv4: Fix a layout segment leak in pnfs_layout_process() (git-fixes). - pNFS/flexfiles: fix incorrect size check in decode_nfs_fh() (git-fixes). - pid: take a reference when initializing `cad_pid` (bsc#1152489). - platform/x86: hp-wireless: add AMD's hardware id to the supported list (git-fixes). - platform/x86: hp_accel: Avoid invoking _INI to speed up resume (git-fixes). - platform/x86: intel_punit_ipc: Append MODULE_DEVICE_TABLE for ACPI (git-fixes). - platform/x86: touchscreen_dmi: Add info for the Mediacom Winpad 7.0 W700 tablet (git-fixes). - powerpc/32: Fix boot failure with CONFIG_STACKPROTECTOR (jsc#SLE-13847 git-fixes). - powerpc/kprobes: Fix validation of prefixed instructions across page boundary (jsc#SLE-13847 git-fixes). - regulator: core: resolve supply for boot-on/always-on regulators (git-fixes). - regulator: max77620: Use device_set_of_node_from_dev() (git-fixes). - rtw88: 8822c: add LC calibration for RTL8822C (git-fixes). - scsi: aacraid: Fix an oops in error handling (bsc#1187072). - scsi: aacraid: Remove erroneous fallthrough annotation (bsc#1186950). - scsi: aacraid: Use memdup_user() as a cleanup (bsc#1186951). - scsi: acornscsi: Fix an error handling path in acornscsi_probe() (bsc#1186952). - scsi: be2iscsi: Fix a theoretical leak in beiscsi_create_eqs() (bsc#1186953). - scsi: be2iscsi: Revert "Fix a theoretical leak in beiscsi_create_eqs()" (bsc#1187067). - scsi: bfa: Fix error return in bfad_pci_init() (bsc#1186954). - scsi: bnx2fc: Fix Kconfig warning & CNIC build errors (bsc#1186955). - scsi: bnx2i: Requires MMU (bsc#1186956). - scsi: csiostor: Fix wrong return value in csio_hw_prep_fw() (bsc#1186957). - scsi: cumana_2: Fix different dev_id between request_irq() and free_irq() (bsc#1186958). - scsi: cxgb3i: Fix some leaks in init_act_open() (bsc#1186959). - scsi: cxgb4i: Fix TLS dependency (bsc#1186960). - scsi: eesox: Fix different dev_id between request_irq() and free_irq() (bsc#1186961). - scsi: fnic: Fix error return code in fnic_probe() (bsc#1186962). - scsi: hisi_sas: Fix IRQ checks (bsc#1186963). - scsi: hisi_sas: Remove preemptible() (bsc#1186964). - scsi: jazz_esp: Add IRQ check (bsc#1186965). - scsi: libfc: Fix enum-conversion warning (bsc#1186966). - scsi: libsas: Fix error path in sas_notify_lldd_dev_found() (bsc#1186967). - scsi: libsas: Reset num_scatter if libata marks qc as NODATA (bsc#1187068). - scsi: libsas: Set data_dir as DMA_NONE if libata marks qc as NODATA (bsc#1186968). - scsi: lpfc: Fix ancient double free (bsc#1186969). - scsi: lpfc: Fix failure to transmit ABTS on FC link (git-fixes). - scsi: megaraid_sas: Check user-provided offsets (bsc#1186970). - scsi: megaraid_sas: Clear affinity hint (bsc#1186971). - scsi: megaraid_sas: Do not call disable_irq from process IRQ poll (bsc#1186972). - scsi: megaraid_sas: Fix MEGASAS_IOC_FIRMWARE regression (bsc#1186973). - scsi: megaraid_sas: Remove undefined ENABLE_IRQ_POLL macro (bsc#1186974). - scsi: mesh: Fix panic after host or bus reset (bsc#1186976). - scsi: mpt3sas: Do not use GFP_KERNEL in atomic context (bsc#1186977). - scsi: mpt3sas: Fix error return code of mpt3sas_base_attach() (bsc#1186978). - scsi: mpt3sas: Fix ioctl timeout (bsc#1186979). - scsi: myrs: Fix a double free in myrs_cleanup() (bsc#1186980). - scsi: pm80xx: Fix error return in pm8001_pci_probe() (bsc#1186981). - scsi: powertec: Fix different dev_id between request_irq() and free_irq() (bsc#1186982). - scsi: qedi: Check for buffer overflow in qedi_set_path() (bsc#1186983). - scsi: qedi: Fix error return code of qedi_alloc_global_queues() (bsc#1186984). - scsi: qedi: Fix missing destroy_workqueue() on error in __qedi_probe (bsc#1186985). - scsi: qla2xxx: Prevent PRLI in target mode (git-fixes). - scsi: qla4xxx: Fix an error handling path in 'qla4xxx_get_host_stats()' (bsc#1186986). - scsi: qla4xxx: Remove in_interrupt() (bsc#1186987). - scsi: scsi_debug: Add check for sdebug_max_queue during module init (bsc#1186988). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - scsi: sd: Fix Opal support (bsc#1186989). - scsi: smartpqi: Add additional logging for LUN resets (bsc#1186472). - scsi: smartpqi: Add host level stream detection enable (bsc#1186472). - scsi: smartpqi: Add new PCI IDs (bsc#1186472). - scsi: smartpqi: Add phy ID support for the physical drives (bsc#1186472). - scsi: smartpqi: Add stream detection (bsc#1186472). - scsi: smartpqi: Add support for BMIC sense feature cmd and feature bits (bsc#1186472). - scsi: smartpqi: Add support for RAID1 writes (bsc#1186472). - scsi: smartpqi: Add support for RAID5 and RAID6 writes (bsc#1186472). - scsi: smartpqi: Add support for long firmware version (bsc#1186472). - scsi: smartpqi: Add support for new product ids (bsc#1186472). - scsi: smartpqi: Add support for wwid (bsc#1186472). - scsi: smartpqi: Align code with oob driver (bsc#1186472). - scsi: smartpqi: Convert snprintf() to scnprintf() (bsc#1186472). - scsi: smartpqi: Correct request leakage during reset operations (bsc#1186472). - scsi: smartpqi: Correct system hangs when resuming from hibernation (bsc#1186472). - scsi: smartpqi: Disable WRITE SAME for HBA NVMe disks (bsc#1186472). - scsi: smartpqi: Fix blocks_per_row static checker issue (bsc#1186472). - scsi: smartpqi: Fix device pointer variable reference static checker issue (bsc#1186472). - scsi: smartpqi: Fix driver synchronization issues (bsc#1186472). - scsi: smartpqi: Refactor aio submission code (bsc#1186472). - scsi: smartpqi: Refactor scatterlist code (bsc#1186472). - scsi: smartpqi: Remove timeouts from internal cmds (bsc#1186472). - scsi: smartpqi: Remove unused functions (bsc#1186472). - scsi: smartpqi: Synchronize device resets with mutex (bsc#1186472). - scsi: smartpqi: Update OFA management (bsc#1186472). - scsi: smartpqi: Update RAID bypass handling (bsc#1186472). - scsi: smartpqi: Update SAS initiator_port_protocols and target_port_protocols (bsc#1186472). - scsi: smartpqi: Update device scan operations (bsc#1186472). - scsi: smartpqi: Update enclosure identifier in sysfs (bsc#1186472). - scsi: smartpqi: Update event handler (bsc#1186472). - scsi: smartpqi: Update soft reset management for OFA (bsc#1186472). - scsi: smartpqi: Update suspend/resume and shutdown (bsc#1186472). - scsi: smartpqi: Update version to 2.1.8-045 (bsc#1186472). - scsi: smartpqi: Use host-wide tag space (bsc#1186472). - scsi: sni_53c710: Add IRQ check (bsc#1186990). - scsi: sun3x_esp: Add IRQ check (bsc#1186991). - scsi: ufs-qcom: Fix scheduling while atomic issue (bsc#1187002). - scsi: ufs: Add quirk to disallow reset of interrupt aggregation (bsc#1186992). - scsi: ufs: Add quirk to enable host controller without hce (bsc#1186993). - scsi: ufs: Add quirk to fix abnormal ocs fatal error (bsc#1186994). - scsi: ufs: Add quirk to fix mishandling utrlclr/utmrlclr (bsc#1186995). - scsi: ufs: Do not update urgent bkops level when toggling auto bkops (bsc#1186997). - scsi: ufs: Fix race between shutdown and runtime resume flow (bsc#1186998). - scsi: ufs: Introduce UFSHCD_QUIRK_PRDT_BYTE_GRAN quirk (bsc#1187000). - scsi: ufs: Make ufshcd_print_trs() consider UFSHCD_QUIRK_PRDT_BYTE_GRAN (bsc#1187069). - scsi: ufs: Properly release resources if a task is aborted successfully (bsc#1187001). - scsi: ufs: core: Narrow down fast path in system suspend path (bsc#1186996). - scsi: ufs: ufshcd-pltfrm: Fix deferred probing (bsc#1187003). - scsi: ufshcd: use an enum for quirks (bsc#1186999). - serial: 8250_pci: handle FL_NOIRQ board flag (git-fixes). - serial: max310x: unregister uart driver in case of failure and abort (git-fixes). - serial: rp2: use 'request_firmware' instead of 'request_firmware_nowait' (git-fixes). - staging: rtl8723bs: Fix uninitialized variables (git-fixes). - sunrpc: fix refcount leak for rpc auth modules (git-fixes). - svcrdma: disable timeouts on rdma backchannel (git-fixes). - thermal/drivers/intel: Initialize RW trip to THERMAL_TEMP_INVALID (git-fixes). - thunderbolt: usb4: Fix NVM read buffer bounds and offset issue (git-fixes). - tpm: fix error return code in tpm2_get_cc_attrs_tbl() (git-fixes). - ttyprintk: Add TTY hangup callback (git-fixes). - usb: chipidea: imx: Fix Battery Charger 1.2 CDP detection (git-fixes). - usb: core: reduce power-on-good delay time of root hub (git-fixes). - usb: fix various gadgets null ptr deref on 10gbps cabling (git-fixes). - usb: musb: fix MUSB_QUIRK_B_DISCONNECT_99 handling (git-fixes). - usb: pd: Set PD_T_SINK_WAIT_CAP to 310ms (git-fixes). - usb: typec: intel_pmc_mux: Put fwnode in error case during ->probe() (git-fixes). - usb: typec: mux: Fix copy-paste mistake in typec_mux_match (git-fixes). - usb: typec: mux: Fix matching with typec_altmode_desc (git-fixes). - usb: typec: tcpm: Use LE to CPU conversion when accessing msg->header (git-fixes). - usb: typec: ucsi: Clear PPM capability data in ucsi_init() error path (git-fixes). - usb: typec: ucsi: Retrieve all the PDOs instead of just the first 4 (git-fixes). - usb: typec: wcove: Use LE to CPU conversion when accessing msg->header (git-fixes). - vfio/pci: Fix error return code in vfio_ecap_init() (git-fixes). - vfio/pci: zap_vma_ptes() needs MMU (git-fixes). - vfio/platform: fix module_put call in error flow (git-fixes). - vmlinux.lds.h: Avoid orphan section with !SMP (git-fixes). - vsock/vmci: log once the failed queue pair allocation (git-fixes). - wireguard: allowedips: initialize list head in selftest (git-fixes). - wireguard: do not use -O3 (git-fixes). - wireguard: peer: allocate in kmem_cache (git-fixes). - wireguard: peer: put frequently used members above cache lines (git-fixes). - wireguard: queueing: get rid of per-peer ring buffers (git-fixes). - wireguard: selftests: make sure rp_filter is disabled on vethc (git-fixes). - wireguard: selftests: remove old conntrack kconfig value (git-fixes). - wireguard: use synchronize_net rather than synchronize_rcu (git-fixes). - x86/apic: Mark _all_ legacy interrupts when IO/APIC is missing (bsc#1152489). - x86/boot/64: Explicitly map boot_params and command line (jsc#SLE-14337). - x86/boot/compressed/64: Add 32-bit boot #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Add CPUID sanity check to 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in 64-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Check SEV encryption in the 32-bit boot-path (jsc#SLE-14337). - x86/boot/compressed/64: Cleanup exception handling before booting kernel (jsc#SLE-14337). - x86/boot/compressed/64: Introduce sev_status (jsc#SLE-14337). - x86/boot/compressed/64: Reload CS in startup_32 (jsc#SLE-14337). - x86/boot/compressed/64: Sanity-check CPUID results in the early #VC handler (jsc#SLE-14337). - x86/boot/compressed/64: Setup IDT in startup_32 boot path (jsc#SLE-14337). - x86/cpufeatures: Force disable X86_FEATURE_ENQCMD and remove update_pasid() (bsc#1178134). - x86/fault: Do not send SIGSEGV twice on SEGV_PKUERR (bsc#1152489). - x86/fpu: Prevent state corruption in __fpu__restore_sig() (bsc#1178134). - x86/head/64: Check SEV encryption before switching to kernel page-table (jsc#SLE-14337). - x86/head/64: Disable stack protection for head$(BITS).o (jsc#SLE-14337). - x86/ioremap: Map efi_mem_reserve() memory as encrypted for SEV (bsc#1186885). - x86/sev-es: Do not return NULL from sev_es_get_ghcb() (bsc#1187349). - x86/sev-es: Do not support MMIO to/from encrypted memory (jsc#SLE-14337). - x86/sev-es: Forward page-faults which happen during emulation (bsc#1187350). - x86/sev-es: Replace open-coded hlt-loops with sev_es_terminate() (jsc#SLE-14337). - x86/sev-es: Use __put_user()/__get_user() for data accesses (bsc#1187351). - x86/sev: Check SME/SEV support in CPUID first (jsc#SLE-14337). - x86/sev: Do not require Hypervisor CPUID bit for SEV guests (jsc#SLE-14337). - x86: fix seq_file iteration for pat.c (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). - xprtrdma: Avoid Receive Queue wrapping (git-fixes). - xprtrdma: rpcrdma_mr_pop() already does list_del_init() (git-fixes). cluster-md-kmp-azure-5.3.18-38.8.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.8.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.8.1.x86_64.rpm True kernel-azure-5.3.18-38.8.1.nosrc.rpm True kernel-azure-5.3.18-38.8.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.8.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.8.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.8.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.8.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.8.1.noarch.rpm True kernel-source-azure-5.3.18-38.8.1.noarch.rpm True kernel-source-azure-5.3.18-38.8.1.src.rpm True kernel-syms-azure-5.3.18-38.8.1.src.rpm True kernel-syms-azure-5.3.18-38.8.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.8.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.8.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.8.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2395 moderate SUSE Updates openSUSE-SLE 15.3 This update for efivar provides the following fix: - Fix the eMMC sysfs parsing. (bsc#1187386) efivar-37-6.12.1.src.rpm efivar-37-6.12.1.x86_64.rpm efivar-devel-37-6.12.1.x86_64.rpm libefivar1-37-6.12.1.x86_64.rpm efivar-37-6.12.1.s390x.rpm efivar-devel-37-6.12.1.s390x.rpm libefivar1-37-6.12.1.s390x.rpm efivar-37-6.12.1.ppc64le.rpm efivar-devel-37-6.12.1.ppc64le.rpm libefivar1-37-6.12.1.ppc64le.rpm efivar-37-6.12.1.aarch64.rpm efivar-devel-37-6.12.1.aarch64.rpm libefivar1-37-6.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2394 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools provides the following fixes: - Fix treatment of compressed modules. (bsc#1187093) - modprobe.d: Remove dma=none setting for parport_pc. (bsc#1177695) suse-module-tools-15.3.8-3.5.1.src.rpm suse-module-tools-15.3.8-3.5.1.x86_64.rpm suse-module-tools-legacy-15.3.8-3.5.1.x86_64.rpm suse-module-tools-15.3.8-3.5.1.s390x.rpm suse-module-tools-legacy-15.3.8-3.5.1.s390x.rpm suse-module-tools-15.3.8-3.5.1.ppc64le.rpm suse-module-tools-legacy-15.3.8-3.5.1.ppc64le.rpm suse-module-tools-15.3.8-3.5.1.aarch64.rpm suse-module-tools-legacy-15.3.8-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2272 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker provides the following fix: - controld: Purge attrd attributes when the remote node is up to ensure sync with CIB. (bsc#1186693) libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.6.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2308 moderate SUSE Updates openSUSE-SLE 15.3 This update for cpupower provides the following fix: - cpupower updates for Milan. (jsc#SLE-17797) cpupower-5.10-3.3.1.src.rpm cpupower-5.10-3.3.1.x86_64.rpm cpupower-bench-5.10-3.3.1.x86_64.rpm cpupower-devel-5.10-3.3.1.x86_64.rpm libcpupower0-5.10-3.3.1.x86_64.rpm cpupower-5.10-3.3.1.s390x.rpm cpupower-bench-5.10-3.3.1.s390x.rpm cpupower-devel-5.10-3.3.1.s390x.rpm libcpupower0-5.10-3.3.1.s390x.rpm cpupower-5.10-3.3.1.ppc64le.rpm cpupower-bench-5.10-3.3.1.ppc64le.rpm cpupower-devel-5.10-3.3.1.ppc64le.rpm libcpupower0-5.10-3.3.1.ppc64le.rpm cpupower-5.10-3.3.1.aarch64.rpm cpupower-bench-5.10-3.3.1.aarch64.rpm cpupower-devel-5.10-3.3.1.aarch64.rpm libcpupower0-5.10-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2271 moderate SUSE Updates openSUSE-SLE 15.3 This update for evolution provides the following fix: - Disable WebKit sandboxing to make printing work until WebkitGTK is fixed. (bsc#1174907) evolution-3.34.4-3.3.1.src.rpm evolution-3.34.4-3.3.1.x86_64.rpm evolution-devel-3.34.4-3.3.1.x86_64.rpm evolution-lang-3.34.4-3.3.1.noarch.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.x86_64.rpm evolution-plugin-pst-import-3.34.4-3.3.1.x86_64.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.x86_64.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.x86_64.rpm glade-catalog-evolution-3.34.4-3.3.1.x86_64.rpm evolution-3.34.4-3.3.1.s390x.rpm evolution-devel-3.34.4-3.3.1.s390x.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.s390x.rpm evolution-plugin-pst-import-3.34.4-3.3.1.s390x.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.s390x.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.s390x.rpm glade-catalog-evolution-3.34.4-3.3.1.s390x.rpm evolution-3.34.4-3.3.1.ppc64le.rpm evolution-devel-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-pst-import-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.ppc64le.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.ppc64le.rpm glade-catalog-evolution-3.34.4-3.3.1.ppc64le.rpm evolution-3.34.4-3.3.1.aarch64.rpm evolution-devel-3.34.4-3.3.1.aarch64.rpm evolution-plugin-bogofilter-3.34.4-3.3.1.aarch64.rpm evolution-plugin-pst-import-3.34.4-3.3.1.aarch64.rpm evolution-plugin-spamassassin-3.34.4-3.3.1.aarch64.rpm evolution-plugin-text-highlight-3.34.4-3.3.1.aarch64.rpm glade-catalog-evolution-3.34.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2283 moderate SUSE Updates openSUSE-SLE 15.3 This update for deja-dup provides the following fix: - Require duplicity as deja-dup cannot run without it. (bsc#1187256) deja-dup-40.6-3.3.1.src.rpm deja-dup-40.6-3.3.1.x86_64.rpm deja-dup-lang-40.6-3.3.1.noarch.rpm nautilus-deja-dup-40.6-3.3.1.x86_64.rpm deja-dup-40.6-3.3.1.s390x.rpm nautilus-deja-dup-40.6-3.3.1.s390x.rpm deja-dup-40.6-3.3.1.ppc64le.rpm nautilus-deja-dup-40.6-3.3.1.ppc64le.rpm deja-dup-40.6-3.3.1.aarch64.rpm nautilus-deja-dup-40.6-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2169 moderate SUSE Updates openSUSE-SLE 15.3 This update for hexchat fixes the following issues: - Added Libera.chat to available servers (bsc#1187587) hexchat-2.12.4-3.3.1.src.rpm hexchat-2.12.4-3.3.1.x86_64.rpm hexchat-devel-2.12.4-3.3.1.x86_64.rpm hexchat-lang-2.12.4-3.3.1.noarch.rpm hexchat-plugins-lua-2.12.4-3.3.1.x86_64.rpm hexchat-plugins-perl-2.12.4-3.3.1.x86_64.rpm hexchat-plugins-python3-2.12.4-3.3.1.x86_64.rpm hexchat-2.12.4-3.3.1.s390x.rpm hexchat-devel-2.12.4-3.3.1.s390x.rpm hexchat-plugins-lua-2.12.4-3.3.1.s390x.rpm hexchat-plugins-perl-2.12.4-3.3.1.s390x.rpm hexchat-plugins-python3-2.12.4-3.3.1.s390x.rpm hexchat-2.12.4-3.3.1.ppc64le.rpm hexchat-devel-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-lua-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-perl-2.12.4-3.3.1.ppc64le.rpm hexchat-plugins-python3-2.12.4-3.3.1.ppc64le.rpm hexchat-2.12.4-3.3.1.aarch64.rpm hexchat-devel-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-lua-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-perl-2.12.4-3.3.1.aarch64.rpm hexchat-plugins-python3-2.12.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2317 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvma fixes the following issues: - Link the tools as position independent executables. (bsc#1184124) libvma-8.9.4-3.3.1.src.rpm libvma8-8.9.4-3.3.1.x86_64.rpm libvma8-8.9.4-3.3.1.ppc64le.rpm libvma8-8.9.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2214 important SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: Update to 1.15.13. Includes these security fixes - CVE-2021-33195: net: Lookup functions may return invalid host names (bsc#1187443). - CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion (bsc#1186622). - CVE-2021-33197: net/http/httputil: ReverseProxy forwards Connection headers if first one is empty (bsc#1187444) - CVE-2021-33198: math/big: (*Rat).SetString with "1.770p02041010010011001001" crashes with "makeslice: len out of range" (bsc#1187445). go1.15-1.15.13-1.33.1.src.rpm go1.15-1.15.13-1.33.1.x86_64.rpm go1.15-doc-1.15.13-1.33.1.x86_64.rpm go1.15-race-1.15.13-1.33.1.x86_64.rpm go1.15-1.15.13-1.33.1.s390x.rpm go1.15-doc-1.15.13-1.33.1.s390x.rpm go1.15-1.15.13-1.33.1.ppc64le.rpm go1.15-doc-1.15.13-1.33.1.ppc64le.rpm go1.15-1.15.13-1.33.1.aarch64.rpm go1.15-doc-1.15.13-1.33.1.aarch64.rpm go1.15-race-1.15.13-1.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2186 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to 1.16.5. Includes these security fixes - CVE-2021-33195: net: Lookup functions may return invalid host names (bsc#1187443). - CVE-2021-33196: archive/zip: malformed archive may cause panic or memory exhaustion (bsc#1186622). - CVE-2021-33197: net/http/httputil: ReverseProxy forwards Connection headers if first one is empty (bsc#1187444) - CVE-2021-33198: math/big: (*Rat).SetString with "1.770p02041010010011001001" crashes with "makeslice: len out of range" (bsc#1187445). go1.16-1.16.5-1.17.1.src.rpm go1.16-1.16.5-1.17.1.x86_64.rpm go1.16-doc-1.16.5-1.17.1.x86_64.rpm go1.16-race-1.16.5-1.17.1.x86_64.rpm go1.16-1.16.5-1.17.1.s390x.rpm go1.16-doc-1.16.5-1.17.1.s390x.rpm go1.16-1.16.5-1.17.1.ppc64le.rpm go1.16-doc-1.16.5-1.17.1.ppc64le.rpm go1.16-1.16.5-1.17.1.aarch64.rpm go1.16-doc-1.16.5-1.17.1.aarch64.rpm go1.16-race-1.16.5-1.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-2292 important SUSE Updates openSUSE-SLE 15.3 This update for dbus-1 fixes the following issues: - CVE-2020-35512: Fixed a use-after-free or potential undefined behaviour caused by shared UID's (bsc#1187105) dbus-1-1.12.2-8.6.1.src.rpm True dbus-1-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-32bit-1.12.2-8.6.1.x86_64.rpm True dbus-1-devel-doc-1.12.2-8.6.1.noarch.rpm True dbus-1-x11-1.12.2-8.6.1.src.rpm True dbus-1-x11-1.12.2-8.6.1.x86_64.rpm True libdbus-1-3-1.12.2-8.6.1.x86_64.rpm True libdbus-1-3-32bit-1.12.2-8.6.1.x86_64.rpm True dbus-1-1.12.2-8.6.1.s390x.rpm True dbus-1-devel-1.12.2-8.6.1.s390x.rpm True dbus-1-x11-1.12.2-8.6.1.s390x.rpm True libdbus-1-3-1.12.2-8.6.1.s390x.rpm True dbus-1-1.12.2-8.6.1.ppc64le.rpm True dbus-1-devel-1.12.2-8.6.1.ppc64le.rpm True dbus-1-x11-1.12.2-8.6.1.ppc64le.rpm True libdbus-1-3-1.12.2-8.6.1.ppc64le.rpm True dbus-1-1.12.2-8.6.1.aarch64.rpm True dbus-1-devel-1.12.2-8.6.1.aarch64.rpm True dbus-1-x11-1.12.2-8.6.1.aarch64.rpm True libdbus-1-3-1.12.2-8.6.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2322 important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2020-13904: Fixed use-after-free via a crafted EXTINF duration in an m3u8 file (bsc#1172640). - CVE-2020-21041: Fixed buffer overflow vulnerability via apng_do_inverse_blend in libavcodec/pngenc.c (bsc#1186406). - CVE-2019-17539: Fixed NULL pointer dereference in avcodec_open2 in libavcodec/utils.c (bsc# 1154065). - CVE-2020-22026: Fixed buffer overflow vulnerability in config_input() at libavfilter/af_tremolo.c (bsc#1186583). - CVE-2020-22021: Fixed buffer overflow vulnerability in filter_edges function in libavfilter/vf_yadif.c (bsc#1186586). - CVE-2020-22020: Fixed buffer overflow vulnerability in build_diff_map() in libavfilter/vf_fieldmatch.c (bsc#1186587). - CVE-2020-22015: Fixed buffer overflow vulnerability in mov_write_video_tag() due to the out of bounds in libavformat/movenc.c (bsc#1186596). - CVE-2020-22016: Fixed a heap-based Buffer Overflow vulnerability at libavcodec/get_bits.h when writing .mov files (bsc#1186598). - CVE-2020-22017: Fixed a heap-based Buffer Overflow vulnerability in ff_fill_rectangle() in libavfilter/drawutils.c (bsc#1186600). - CVE-2020-22022: Fixed a heap-based Buffer Overflow vulnerability in filter_frame at libavfilter/vf_fieldorder.c (bsc#1186603). - CVE-2020-22023: Fixed a heap-based Buffer Overflow vulnerability in filter_frame at libavfilter/vf_bitplanenoise.c (bsc#1186604) - CVE-2020-22025: Fixed a heap-based Buffer Overflow vulnerability in gaussian_blur at libavfilter/vf_edgedetect.c (bsc#1186605). - CVE-2020-22031: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_w3fdif.c in filter16_complex_low() (bsc#1186613). - CVE-2020-22032: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_edgedetect.c in gaussian_blur() (bsc#1186614). - CVE-2020-22034: Fixed a heap-based Buffer Overflow vulnerability at libavfilter/vf_floodfill.c (bsc#1186616). - CVE-2020-20451: Fixed denial of service issue due to resource management errors via fftools/cmdutils.c (bsc#1186658). - CVE-2020-20448: Fixed divide by zero issue via libavcodec/ratecontrol.c (bsc#1186660). - CVE-2020-22038: Fixed denial of service vulnerability due to a memory leak in the ff_v4l2_m2m_create_context function in v4l2_m2m.c (bsc#1186757). - CVE-2020-22039: Fixed denial of service vulnerability due to a memory leak in the inavi_add_ientry function (bsc#1186758). - CVE-2020-22043: Fixed denial of service vulnerability due to a memory leak at the fifo_alloc_common function in libavutil/fifo.c (bsc#1186762). - CVE-2020-22044: Fixed denial of service vulnerability due to a memory leak in the url_open_dyn_buf_internal function in libavformat/aviobuf.c (bsc#1186763). - CVE-2020-22033,CVE-2020-22019: Fixed a heap-based Buffer Overflow Vulnerability at libavfilter/vf_vmafmotion.c in convolution_y_8bit() and in convolution_y_10bit() in libavfilter/vf_vmafmotion.c (bsc#1186615, bsc#1186597). ffmpeg-3.4.2-11.3.1.src.rpm ffmpeg-3.4.2-11.3.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.3.1.x86_64.rpm libavcodec-devel-3.4.2-11.3.1.x86_64.rpm libavcodec57-3.4.2-11.3.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.3.1.x86_64.rpm libavdevice-devel-3.4.2-11.3.1.x86_64.rpm libavdevice57-3.4.2-11.3.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.3.1.x86_64.rpm libavfilter-devel-3.4.2-11.3.1.x86_64.rpm libavfilter6-3.4.2-11.3.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.3.1.x86_64.rpm libavformat-devel-3.4.2-11.3.1.x86_64.rpm libavformat57-3.4.2-11.3.1.x86_64.rpm libavformat57-32bit-3.4.2-11.3.1.x86_64.rpm libavresample-devel-3.4.2-11.3.1.x86_64.rpm libavresample3-3.4.2-11.3.1.x86_64.rpm libavresample3-32bit-3.4.2-11.3.1.x86_64.rpm libavutil-devel-3.4.2-11.3.1.x86_64.rpm libavutil55-3.4.2-11.3.1.x86_64.rpm libavutil55-32bit-3.4.2-11.3.1.x86_64.rpm libpostproc-devel-3.4.2-11.3.1.x86_64.rpm libpostproc54-3.4.2-11.3.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.3.1.x86_64.rpm libswresample-devel-3.4.2-11.3.1.x86_64.rpm libswresample2-3.4.2-11.3.1.x86_64.rpm libswresample2-32bit-3.4.2-11.3.1.x86_64.rpm libswscale-devel-3.4.2-11.3.1.x86_64.rpm libswscale4-3.4.2-11.3.1.x86_64.rpm libswscale4-32bit-3.4.2-11.3.1.x86_64.rpm ffmpeg-3.4.2-11.3.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.3.1.s390x.rpm libavcodec-devel-3.4.2-11.3.1.s390x.rpm libavcodec57-3.4.2-11.3.1.s390x.rpm libavdevice-devel-3.4.2-11.3.1.s390x.rpm libavdevice57-3.4.2-11.3.1.s390x.rpm libavfilter-devel-3.4.2-11.3.1.s390x.rpm libavfilter6-3.4.2-11.3.1.s390x.rpm libavformat-devel-3.4.2-11.3.1.s390x.rpm libavformat57-3.4.2-11.3.1.s390x.rpm libavresample-devel-3.4.2-11.3.1.s390x.rpm libavresample3-3.4.2-11.3.1.s390x.rpm libavutil-devel-3.4.2-11.3.1.s390x.rpm libavutil55-3.4.2-11.3.1.s390x.rpm libpostproc-devel-3.4.2-11.3.1.s390x.rpm libpostproc54-3.4.2-11.3.1.s390x.rpm libswresample-devel-3.4.2-11.3.1.s390x.rpm libswresample2-3.4.2-11.3.1.s390x.rpm libswscale-devel-3.4.2-11.3.1.s390x.rpm libswscale4-3.4.2-11.3.1.s390x.rpm ffmpeg-3.4.2-11.3.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.3.1.ppc64le.rpm libavcodec-devel-3.4.2-11.3.1.ppc64le.rpm libavcodec57-3.4.2-11.3.1.ppc64le.rpm libavdevice-devel-3.4.2-11.3.1.ppc64le.rpm libavdevice57-3.4.2-11.3.1.ppc64le.rpm libavfilter-devel-3.4.2-11.3.1.ppc64le.rpm libavfilter6-3.4.2-11.3.1.ppc64le.rpm libavformat-devel-3.4.2-11.3.1.ppc64le.rpm libavformat57-3.4.2-11.3.1.ppc64le.rpm libavresample-devel-3.4.2-11.3.1.ppc64le.rpm libavresample3-3.4.2-11.3.1.ppc64le.rpm libavutil-devel-3.4.2-11.3.1.ppc64le.rpm libavutil55-3.4.2-11.3.1.ppc64le.rpm libpostproc-devel-3.4.2-11.3.1.ppc64le.rpm libpostproc54-3.4.2-11.3.1.ppc64le.rpm libswresample-devel-3.4.2-11.3.1.ppc64le.rpm libswresample2-3.4.2-11.3.1.ppc64le.rpm libswscale-devel-3.4.2-11.3.1.ppc64le.rpm libswscale4-3.4.2-11.3.1.ppc64le.rpm ffmpeg-3.4.2-11.3.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.3.1.aarch64.rpm libavcodec-devel-3.4.2-11.3.1.aarch64.rpm libavcodec57-3.4.2-11.3.1.aarch64.rpm libavdevice-devel-3.4.2-11.3.1.aarch64.rpm libavdevice57-3.4.2-11.3.1.aarch64.rpm libavfilter-devel-3.4.2-11.3.1.aarch64.rpm libavfilter6-3.4.2-11.3.1.aarch64.rpm libavformat-devel-3.4.2-11.3.1.aarch64.rpm libavformat57-3.4.2-11.3.1.aarch64.rpm libavresample-devel-3.4.2-11.3.1.aarch64.rpm libavresample3-3.4.2-11.3.1.aarch64.rpm libavutil-devel-3.4.2-11.3.1.aarch64.rpm libavutil55-3.4.2-11.3.1.aarch64.rpm libpostproc-devel-3.4.2-11.3.1.aarch64.rpm libpostproc54-3.4.2-11.3.1.aarch64.rpm libswresample-devel-3.4.2-11.3.1.aarch64.rpm libswresample2-3.4.2-11.3.1.aarch64.rpm libswscale-devel-3.4.2-11.3.1.aarch64.rpm libswscale4-3.4.2-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2547 moderate SUSE Updates openSUSE-SLE 15.3 This update for fence-agents fixes the following issues: - Corrections to support Azure SDK greater than 15 - including backward compatibility (bsc#1185058) - Fixed an issue when libvirt breaks the connection in every 30 seconds. - ECO: Update fence-agents. (jsc#SLE-18182) - Add upstream PR to aws-vpc-move-ip and apply required resource and fence agent patches. (jsc#SLE-17998) - Fixed an issue when fence-agent does not restart the node properly. (bsc#1182701) - Major rework of the original agent: * fence_gce: default method moved back to powercycle (#389) * fence_gce: make serviceaccount work with new libraries * fence_virt*: simple_auth: use %zu for sizeof to avoid failing verbose builds on some archs * configure: dont fail when --with-agents contains virt * fence_mpath: watchdog retries support * fencing: add multi plug support for reboot-action * fence_redfish: add missing diag logic * fencing: fix issue with hardcoded help text length for metadata * fencing: add stonith_status_sleep parameter for sleep between status calls during a STONITH action * fence_aws: add filter parameter to be able to limit which nodes are listed * virt: fix a bunch of coverity scan errors in ip_lookup * virt: make sure to provide an empty default to strncpy * virt: make sure buffers are big enough for 0 byte end string * virt: increase buffer size to avoid overruns * virt: check return code in virt-sockets * virt: fix plugin (minor) memory leak and plug in load race * virt: attempt to open file directly and avoid race condition * virt: fix different coverity scan errors in common/tcp * virt: cleanup deadcode in client/vsock * virt: cleanup deadcode in client/tcp * virt: fix potential buffer overrun * virt: fix mcast coverity scan errors * virt: drop pm-fence plugin * virt: drop libvirt-qmf plugin * virt: drop null plugin * virt: drop fence_virtd non-modular build * virt: fix plugin installation regression on upgrades * fence_virt: metadata fixes, implement manpage generation and metadata/delay/rng checks * virt: make sure variable is initialized * zvm: reformat fence_zvm to avoid gcc warnings * virt: drop -Werror to avoid unnecessary failures * virt: disable -Wunused for yy generated files * virt: disable fence-virt on bsd variants * virt: merge spec files * build: fix more gcc warnings * build: remove unused / obsoleted options * build: fix some annoying warnings at ./autogen.sh time * virt: move all virt CFLAGS/LDFLAGS in the right location * virt: fix unused gcc warnings and re-enable all build warnings * virt: fix write-strings gcc warnings * virt: fix pointer-arith gcc warnings * virt: fix declaration-after-statement gcc warnings * virt: fix build with -Wmissing-prototypes * build: don´t override clean target * virt: plug fence_virt into the build * virt: allow fence_virt build to be optional * virt: drop support for LSB init script * virt: collect docs in one location * virt: remove unnecessary files and move build macros in place * Ignore fence-virt man pages * Move fence_virt to the correct location * spec: use python3 path for newer releases * spec: undo autosetup change that breaks builds w/git commit hashes * Ignore unknown options on stdin * fence_gce: support google-auth and oauthlib and fallback to deprecated libs when not available * spec: add aliyun subpackage and fence_mpath_check* to mpath subpackage * fence_gce: Adds cloud-platform scope for bare metal API and optional proxy flags (#382) * fence_virt: Fix minor typo in metadata * fence_gce: update module reqs for SLES 15 (#383) * Add fence_ipmilanplus as fence_ipmilan wrapper always enabling lanplus * fence_redfish: Add diag action * fence_vbox: updated metadata file * fence_vbox: do not flood host account with vboxmanage calls * fence_aws/fence_gce: allow building without cloud libs * fence_gce: default to onoff * fence_lpar: Make --managed a required option * fence_zvmip: fix shell-timeout when using new disable-timeout parameter * Adds service account authentication to GCE fence agent * spec: dont build -all subpackage as noarch * fence_virt: add plug parameter that obsoletes old port parameter * Try to detect directory for initscripts configuration * Accept SIGTERM while waiting for initialization. * Add man pages to fence_virtd service file. * Fix spelling error in fence_virt.conf.5 * build: fix BRs for suse distros * build: remove ExclusiveArch * build: removed gcc-c++ BR * build: add spec-file and rpm build targets * build: cleanup/improvements to reworked build system * [build] rework build system to use automake/libtool * fence_virtd: Fix segfault in vl_get when no domains are found * fence_virt: fix core dump * build: harden and make it possible to build with -fPIE * fence_virt: dont report success for incorrect parameters * fence_virt: mcast: config: Warn when provided mcast addr is not used * fence_virtd: Return control to main loop on select interruption * fence-virtd: Add missing vsock makefile bits * fence-virt: Add vsock support * fence_virtd: Fix transposed arguments in startup message * fence_virt: Rename challenge functions * fence_virtd: Cleanup: remove unused configuration options * fence_virt: Remove remaining references to checkpoints * fence_virt: Remove remaining references to checkpoints * fence-virt: Format string cleanup * fence_virtd: Implment hostlist for the cpg backend * fence_virt: Fix logic error in fence_xvm * fence_virtd: Cleanup config module * fence_virtd: cpg: Fail initialization if no hypervisor connections * fence_virtd: Make the libvirt backend survive libvirtd restarts * fence_virtd: Allow the cpg backend to survive libvirt failures * fence_virtd: cpg: Fix typo * fence-virtd: Add cpg-virt backend plugin * fence_virtd: Remove checkpoint, replace it with a CPG only plugin * fence-virt: Bump version * fence_virtd: Add better debugging messages for the TCP listner * fence_virtd: Fix potential unlocked pthread_cond_timedwait() * fence-virtd: Cleanup small memory leak * fence_virtd: Fix select logic in listener plugins * Factor out common libvirt code so that it can be reused by multiple backends * Document the fence_virtd -p command line flag * fence_virtd: Log an error when startup fails * Retry writes in the TCP, mcast, and serial listener plugins while sending a response to clients, if the write fails or is incomplete. * Make the packet authentication code more resilient in the face of transient failures. * Disable the libvirt-qmf backend by default * Bump the versions of the libvirt and checkpoint plugins * fence-virtd: Enable TCP listener plugin by default * fence-virtd: Cleanup documentation of the TCP listener * fence_xvm/fence_virt: Add support for the validate-all status op * fence-virt: Add list-status command to man page and metadata * fence-virt: Cleanup numeric argument parsing * fence-virt: Log message to syslog in addition to stdout/stderr * fence-virt: Permit explicitly setting delay to 0 * fence-virt: Add 'list-status' operation for compat with other agents * Allow fence_virtd to run as non-root * Remove delay from the status, monitor and list functions * Resolves serveral problems in checkpoint plugin, making it functional. * daemon_init: Removed PID check and update * fence_virtd: drop legacy SysVStartPriority from service unit * fence-virt: client: Do not truncate VM domains in list output * client: fix "delay" parameter checking (copy-paste) * fence-virt: Fix broken restrictions on the port ranges * Clarify debug message * fence-virtd: Use perror only if the last system call returns an error. * fence-virtd: Fix printing wrong system call in perror * fence-virtd: Allow multiple hypervisors for the libvirt backend * fence-virt: Don't overrwrite saved errno * fence-virt: Fix small memory leak in the config module * fence-virt: Fix mismatched sizeof in memset call * fence-virt: Send complete hostlist info * fence-virt: Clarify the path option in serial mode * Bump version * fence-virt: Bump version * fence_virtd: Fix broken systemd service file * fence_virt/fence_xvm: Print status when invoked with -o status * fence-virt: Fix for missed libvirtd events * fence-virt: Fail properly if unable to bind the listener socket * client: dump all arguments structure in debug mode * Drop executable flag for man pages (finally) * Honor implicit "ip_family=auto" in fence_xvm w/IPv6 mult.addr. * Fix using bad struct item for auth algorithm * Drop executable flag for man pages * use bswap_X() instead of b_swapX() * fence_virtd: Fix memcpy size params in the TCP plugin * Revert "fence-virt: Fix possible descriptor leak" * fence_virtd: Return success if a domain exists but is already off. * fence-virt: Add back missing tcp_listener.h file * fence-virt: Fix a few fd leaks * fence-virt: Fix free of uninitialized variable * fence-virt: Fix possible null pointer dereference * fence-virt: Fix memory leak * fence-virt: Fix fd leak when finding local addresses * fence-virt: Fix possible descriptor leak * fence-virt: Fix possible fd leak * fence-virt: Fix null pointer deref * fence-virt: Explicitly set delay to 0 * fence-virt: Fix return with lock held * fence_virt: Fix typo in fence_virt(8) man page * fence_virt: Return failure for nonexistent domains * Improve fence_virt.conf man page description of 'hash' * Add a TCP listener plugin for use with viosproxy * In serial mode, return failure if the other end closes the connection before we see SERIAL_MAGIC in the reply or timeout. * Stop linking against unnecessary QPid libs. * Update libvirt-qmf plugin and docs * Fix crash when we fail to read key file. * Fix erroneous man page XML * Add 'interface' directive to example.conf * Add old wait_for_backend directive handling & docs * Return proper error if we can't set up our socket. * Fix startup in systemd environments * Add systemd unit file and generation * Don't override user's pick for backend server module * Use libvirt as default in shipped config * Clean up compiler warnings * Fix serial domain handling * Fix monolithic build * Clean up build and comments. * Add missing pm_fence source code * Disable CMAN / checkpoint build by default * Rename libvirt-qpid -> libvirt-qmf * Fix static analysis errors * Reword assignment to appease static analyzers * Handle return value from virDomainGetInfo * Fix bad sizeof() * Make listen() retry * Add map_check on 'status' action * Update README * Don't reference out-of-scope temporary * Ensure we don't try to strdup() or atoi() on NULL * Add libvirt-qmf support to the libvirt-qpid plugin * Convert libvirt-qpid plugin to QMFv2 * Fix incorrect return value on hash mismatch * Fix error getting status from libvirt-qpid plugin * Make fence-virt requests endian clean * Fix input parsing to allow domain again * Provide 'domain' in metadata output for compatibility * High: Fix UUID lookups in checkpoint backend * Curtail 'list' operation requests * Fix man page references: fence_virtd.conf -> fence_virt.conf * Add 'list' operation for plugins; fix missing getopt line * Fix build with newer versions of qpid * Make configure.in actually disable plugins * Rename parameters to match other fencing agents * Fix fence_xvm man page to point to the right location * client: Clarify license in serial.c * Return 2 for 'off' like other fencing agents * Reset flags before returning from connect_nb * Use nonblocking connect to vmchannel sockets * More parity with other fencing agents' parameters * Fix memory leaks found with valgrind * Add basic daemon functions * Fix bug in path pruning support for serial plugin * Fix libvirt-qpid bugs found while testing * Fix segfault caused by invalid map pointer assignment * Fix another compiler warning * Fix build warnings in client/serial.c * Add 'monitor' as an alias for 'status' * Add serial listener to configuration utility * Make serial/vmchannel module enabled by default * Add missing 'metadata' option to help text * Add missing static_map.h * Add metadata support to fence_xvm/fence_virt * Allow IPs to be members of groups * Allow use of static mappings w/ mcast listener * Make 'path' be a directory * Remove useless debug printfs * Enable VM Channel support in serial plugin * Pass source VM UUID (if known) to backend * Mirror libvirt-qpid's settings in libvirt-qpid plugin * libvirt-qpid: clean up global variable * Enable a configurable host/port on libvirt-qpid plugin * Minor config utility cleanups * Remove unnecessary name_mode from multicast plugin * Add prototypes and clean up build warnings * Use seqno in serial requests * Minor debugging message cleanup * Fix build error due to improper value * Static map support and permissions reporting * Sync up on SERIAL_MAGIC while waiting for a response * Don't build serial vmchannel module by default * Initial checkin of serial server-side support * Fix fence_virt.conf man page name * Add Fedora init script * Compiler warning cleanups in virt-serial.c * Add wait-for-backend mode * Fix up help text for clients * Minor XML cleanups, add missing free() call * add missing module_path to fence_virtd.conf.5 * Add capabilities to virt-serial * Note that serial support is experimental * Add a serial.so build target * Add vmchannel serial event interface * Split fence_virt vs. fence_xvm args * Add static map functions. * Fix build warning due to missing #include * Fix multiple query code * Better config query & multiple value/tag support * Add simple configuration mode * Allow setting config values to NULL to clear them * Clean up example config file * Sort plugins by type when printing them * Revert "Sort plugins by type when printing them" * Sort plugins by type when printing them * Clean up some configuration plugin information * add empty line between names * Make libvirt to automatically use uuid or names * Improve error reporting * Fix build for hostlist functionality * Hostlist functionality for libvirt, libvirt-qpid * Work around broken nspr headers * Fix installation target for man pages * Add man page build infrastructure * Make fence_xvm compatibility mode enabled by default * Fix libvirt / mcast support for name_mode * Fix agent option parsing * Fix dlsym mapping of C++ module * Make uuids work with libvirt-qpid * Fix uninitialized variable causing false returns * Add 'help' to fence_virtd * Fix libvirt-qpid build * Fix libvirt-qpid build * Add libvirt-qpid build target * Initial checking of libvirt-qpid plugin * Fix build on i686 * Make symlink/compatibilty mode disabled by default * Add simple tarball / release script * Use immediate resolution of symbols * Example config tweaks * Use sysconfdir for /etc/fence_virt.conf * Fix package name and install locations * Add 'maintainer-clean' target * Fix build errors on Fedora * Add missing header file * Ignore automake error * Make the build script actually build * Make cluster mode plugin work * Add basic cpg stuff for later * Enable 'on' operation for libvirt backend * Clean up modular build * Minor build cleanups * Yet more build fixes * More build cleanups * Build cleanups * Initial port to autoconf * Add checkpoint.c stub functions * Add sequence numbers to requests for tracking * Include missing include * Call generic history functions * Make history functions generic * Make debugging work from modules again * Revert "Fix build issue breaking debug printing from modules" * Fix build issue breaking debug printing from modules * Fix libvirt backend; VALIDATE was wrong * Cleanups, add daemon support * Add simple 'null' skeleton backend plugin * Make all plugins dynamically loaded. * Fix error message * Remove dummy serial prototypes * Remove modules in 'make clean' * Make listeners plugins. * Move name_mode to fence_virtd block * Add name_mode to example.conf * Move VM naming scheme to top level of config * Enable UUID use in libvirt.c * Move options.c to client directory * Drop duplicate fencing requests * Don't require specifying an interface in fence_virt.conf * Fix empty node parsing * Actually use the default port by default * Don't overwrite config files * Install modules, too. * Add temporary 'make install' target * Make a default configuration file * Make mcast work with UUIDs * Add checkpoint.so to the build * Fix missing carriage returns on debug prints * Add architecture overview description * Make serial_init match mcast_init. * Make multicast use config file * Integrate config file processing * Create server-side plugin architecture * Make libvirt a built-in plugin * Fix header in serial.c. fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.src.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.x86_64.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.s390x.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.ppc64le.rpm fence-agents-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2165 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-kiwi_metainfo_helper fixes the following issues: - Provide various modified spellings of 'PRETTY_NAME' useful for writing KIWI image definitions with reduced diff between SLE, Leap and Tumbleweed. (Needed for jsc#SLE-12986) - Update README and service definition XML to reflect all variables. - Don't enable pipefail: rpm got SIGPIPE because grep -q exits early and closes the other end, which made the whole expression fail. - Read os-release from the to be installed RPMs. This avoids pulling in distribution-release when not necessary. (bsc#1180263) obs-service-kiwi_metainfo_helper-0.3-1.12.1.noarch.rpm obs-service-kiwi_metainfo_helper-0.3-1.12.1.src.rpm openSUSE-SLE-15.3-2021-2315 moderate SUSE Updates openSUSE-SLE 15.3 This update for lsvpd fixes the following issues: - Fixed an issue when usb.ids file not found. (bsc#1171188, bsc#1187665) lsvpd-1.7.11-3.9.1.ppc64le.rpm lsvpd-1.7.11-3.9.1.src.rpm openSUSE-SLE-15.3-2021-2385 moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-manager fixes the following issues: - Upstream bug fixes (bsc#1027942) - Speeds up the volumeupload case for a local URI for the cost of some higher runtime memory - Unable to open graphical console of running virtual machine - Fix error message format string - Remove some unnecessary 'max_length' annotations - Fix forgetting password from keyring - Add support for detecting SUSE Linux Enterprise Micro. virt-install-3.2.0-7.4.1.noarch.rpm virt-manager-3.2.0-7.4.1.noarch.rpm virt-manager-3.2.0-7.4.1.src.rpm virt-manager-common-3.2.0-7.4.1.noarch.rpm openSUSE-SLE-15.3-2021-2350 moderate SUSE Updates openSUSE-SLE 15.3 This update for lttng-modules rebuilds it with the a new UEFI signing key. (bsc#1182570) lttng-modules-2.10.10-5.7.1.src.rpm lttng-modules-kmp-rt-2.10.10_k5.3.18_8.10-5.7.1.x86_64.rpm openSUSE-SLE-15.3-2021-2454 moderate SUSE Updates openSUSE-SLE 15.3 This update for transfig fixes the following issues: Update to version 3.2.8, including fixes for - CVE-2021-3561: overflow in fig2dev/read.c in function read_colordef() (bsc#1186329). - CVE-2019-19797: out-of-bounds write in read_colordef in read.c (bsc#1159293). - CVE-2019-19555: stack-based buffer overflow because of an incorrect sscanf (bsc#1161698). - CVE-2019-19746: segmentation fault and out-of-bounds write because of an integer overflow via a large arrow type (bsc#1159130). - CVE-2019-14275: stack-based buffer overflow in the calc_arrow function in bound.c (bsc#1143650). transfig-3.2.8a-4.12.2.src.rpm transfig-3.2.8a-4.12.2.x86_64.rpm transfig-3.2.8a-4.12.2.s390x.rpm transfig-3.2.8a-4.12.2.ppc64le.rpm transfig-3.2.8a-4.12.2.aarch64.rpm openSUSE-SLE-15.3-2021-2293 important SUSE Updates openSUSE-SLE 15.3 This update for jdom2 fixes the following issues: - CVE-2021-33813: XXE issue in SAXBuilder can cause a denial of service via a crafted HTTP request (bsc#1187446) jdom2-2.0.6-3.3.1.noarch.rpm jdom2-2.0.6-3.3.1.src.rpm jdom2-javadoc-2.0.6-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2255 moderate SUSE Updates openSUSE-SLE 15.3 This update rereleases myspell-dictionaries and ucpp for SUSE Linux Enterprise 15 sp3 to fix a migration issue. libucpp13-1.3.4-3.4.1.x86_64.rpm myspell-af_NA-20191219-3.21.1.noarch.rpm myspell-af_ZA-20191219-3.21.1.noarch.rpm myspell-an-20191219-3.21.1.noarch.rpm myspell-an_ES-20191219-3.21.1.noarch.rpm myspell-ar-20191219-3.21.1.noarch.rpm myspell-ar_AE-20191219-3.21.1.noarch.rpm myspell-ar_BH-20191219-3.21.1.noarch.rpm myspell-ar_DZ-20191219-3.21.1.noarch.rpm myspell-ar_EG-20191219-3.21.1.noarch.rpm myspell-ar_IQ-20191219-3.21.1.noarch.rpm myspell-ar_JO-20191219-3.21.1.noarch.rpm myspell-ar_KW-20191219-3.21.1.noarch.rpm myspell-ar_LB-20191219-3.21.1.noarch.rpm myspell-ar_LY-20191219-3.21.1.noarch.rpm myspell-ar_MA-20191219-3.21.1.noarch.rpm myspell-ar_OM-20191219-3.21.1.noarch.rpm myspell-ar_QA-20191219-3.21.1.noarch.rpm myspell-ar_SA-20191219-3.21.1.noarch.rpm myspell-ar_SD-20191219-3.21.1.noarch.rpm myspell-ar_SY-20191219-3.21.1.noarch.rpm myspell-ar_TN-20191219-3.21.1.noarch.rpm myspell-ar_YE-20191219-3.21.1.noarch.rpm myspell-be_BY-20191219-3.21.1.noarch.rpm myspell-bg_BG-20191219-3.21.1.noarch.rpm myspell-bn_BD-20191219-3.21.1.noarch.rpm myspell-bn_IN-20191219-3.21.1.noarch.rpm myspell-bo-20191219-3.21.1.noarch.rpm myspell-bo_CN-20191219-3.21.1.noarch.rpm myspell-bo_IN-20191219-3.21.1.noarch.rpm myspell-br_FR-20191219-3.21.1.noarch.rpm myspell-bs-20191219-3.21.1.noarch.rpm myspell-bs_BA-20191219-3.21.1.noarch.rpm myspell-ca-20191219-3.21.1.noarch.rpm myspell-ca_AD-20191219-3.21.1.noarch.rpm myspell-ca_ES-20191219-3.21.1.noarch.rpm myspell-ca_ES_valencia-20191219-3.21.1.noarch.rpm myspell-ca_FR-20191219-3.21.1.noarch.rpm myspell-ca_IT-20191219-3.21.1.noarch.rpm myspell-cs_CZ-20191219-3.21.1.noarch.rpm myspell-da_DK-20191219-3.21.1.noarch.rpm myspell-de-20191219-3.21.1.noarch.rpm myspell-de_AT-20191219-3.21.1.noarch.rpm myspell-de_CH-20191219-3.21.1.noarch.rpm myspell-de_DE-20191219-3.21.1.noarch.rpm myspell-dictionaries-20191219-3.21.1.src.rpm myspell-dictionaries-20191219-3.21.1.x86_64.rpm myspell-el_GR-20191219-3.21.1.noarch.rpm myspell-en-20191219-3.21.1.noarch.rpm myspell-en_AU-20191219-3.21.1.noarch.rpm myspell-en_BS-20191219-3.21.1.noarch.rpm myspell-en_BZ-20191219-3.21.1.noarch.rpm myspell-en_CA-20191219-3.21.1.noarch.rpm myspell-en_GB-20191219-3.21.1.noarch.rpm myspell-en_GH-20191219-3.21.1.noarch.rpm myspell-en_IE-20191219-3.21.1.noarch.rpm myspell-en_IN-20191219-3.21.1.noarch.rpm myspell-en_JM-20191219-3.21.1.noarch.rpm myspell-en_MW-20191219-3.21.1.noarch.rpm myspell-en_NA-20191219-3.21.1.noarch.rpm myspell-en_NZ-20191219-3.21.1.noarch.rpm myspell-en_PH-20191219-3.21.1.noarch.rpm myspell-en_TT-20191219-3.21.1.noarch.rpm myspell-en_US-20191219-3.21.1.noarch.rpm myspell-en_ZA-20191219-3.21.1.noarch.rpm myspell-en_ZW-20191219-3.21.1.noarch.rpm myspell-es-20191219-3.21.1.noarch.rpm myspell-es_AR-20191219-3.21.1.noarch.rpm myspell-es_BO-20191219-3.21.1.noarch.rpm myspell-es_CL-20191219-3.21.1.noarch.rpm myspell-es_CO-20191219-3.21.1.noarch.rpm myspell-es_CR-20191219-3.21.1.noarch.rpm myspell-es_CU-20191219-3.21.1.noarch.rpm myspell-es_DO-20191219-3.21.1.noarch.rpm myspell-es_EC-20191219-3.21.1.noarch.rpm myspell-es_ES-20191219-3.21.1.noarch.rpm myspell-es_GT-20191219-3.21.1.noarch.rpm myspell-es_HN-20191219-3.21.1.noarch.rpm myspell-es_MX-20191219-3.21.1.noarch.rpm myspell-es_NI-20191219-3.21.1.noarch.rpm myspell-es_PA-20191219-3.21.1.noarch.rpm myspell-es_PE-20191219-3.21.1.noarch.rpm myspell-es_PR-20191219-3.21.1.noarch.rpm myspell-es_PY-20191219-3.21.1.noarch.rpm myspell-es_SV-20191219-3.21.1.noarch.rpm myspell-es_UY-20191219-3.21.1.noarch.rpm myspell-es_VE-20191219-3.21.1.noarch.rpm myspell-et_EE-20191219-3.21.1.noarch.rpm myspell-fr_BE-20191219-3.21.1.noarch.rpm myspell-fr_CA-20191219-3.21.1.noarch.rpm myspell-fr_CH-20191219-3.21.1.noarch.rpm myspell-fr_FR-20191219-3.21.1.noarch.rpm myspell-fr_LU-20191219-3.21.1.noarch.rpm myspell-fr_MC-20191219-3.21.1.noarch.rpm myspell-gd_GB-20191219-3.21.1.noarch.rpm myspell-gl-20191219-3.21.1.noarch.rpm myspell-gl_ES-20191219-3.21.1.noarch.rpm myspell-gu_IN-20191219-3.21.1.noarch.rpm myspell-gug-20191219-3.21.1.noarch.rpm myspell-gug_PY-20191219-3.21.1.noarch.rpm myspell-he_IL-20191219-3.21.1.noarch.rpm myspell-hi_IN-20191219-3.21.1.noarch.rpm myspell-hr_HR-20191219-3.21.1.noarch.rpm myspell-hu_HU-20191219-3.21.1.noarch.rpm myspell-id-20191219-3.21.1.noarch.rpm myspell-id_ID-20191219-3.21.1.noarch.rpm myspell-is-20191219-3.21.1.noarch.rpm myspell-is_IS-20191219-3.21.1.noarch.rpm myspell-it_IT-20191219-3.21.1.noarch.rpm myspell-kmr_Latn-20191219-3.21.1.noarch.rpm myspell-kmr_Latn_SY-20191219-3.21.1.noarch.rpm myspell-kmr_Latn_TR-20191219-3.21.1.noarch.rpm myspell-lightproof-en-20191219-3.21.1.x86_64.rpm myspell-lightproof-hu_HU-20191219-3.21.1.x86_64.rpm myspell-lightproof-pt_BR-20191219-3.21.1.x86_64.rpm myspell-lightproof-ru_RU-20191219-3.21.1.x86_64.rpm myspell-lo_LA-20191219-3.21.1.noarch.rpm myspell-lt_LT-20191219-3.21.1.noarch.rpm myspell-lv_LV-20191219-3.21.1.noarch.rpm myspell-nb_NO-20191219-3.21.1.noarch.rpm myspell-ne_NP-20191219-3.21.1.noarch.rpm myspell-nl_BE-20191219-3.21.1.noarch.rpm myspell-nl_NL-20191219-3.21.1.noarch.rpm myspell-nn_NO-20191219-3.21.1.noarch.rpm myspell-no-20191219-3.21.1.noarch.rpm myspell-oc_FR-20191219-3.21.1.noarch.rpm myspell-pl_PL-20191219-3.21.1.noarch.rpm myspell-pt_AO-20191219-3.21.1.noarch.rpm myspell-pt_BR-20191219-3.21.1.noarch.rpm myspell-pt_PT-20191219-3.21.1.noarch.rpm myspell-ro-20191219-3.21.1.noarch.rpm myspell-ro_RO-20191219-3.21.1.noarch.rpm myspell-ru_RU-20191219-3.21.1.noarch.rpm myspell-si_LK-20191219-3.21.1.noarch.rpm myspell-sk_SK-20191219-3.21.1.noarch.rpm myspell-sl_SI-20191219-3.21.1.noarch.rpm myspell-sq_AL-20191219-3.21.1.noarch.rpm myspell-sr-20191219-3.21.1.noarch.rpm myspell-sr_CS-20191219-3.21.1.noarch.rpm myspell-sr_Latn_CS-20191219-3.21.1.noarch.rpm myspell-sr_Latn_RS-20191219-3.21.1.noarch.rpm myspell-sr_RS-20191219-3.21.1.noarch.rpm myspell-sv_FI-20191219-3.21.1.noarch.rpm myspell-sv_SE-20191219-3.21.1.noarch.rpm myspell-sw_TZ-20191219-3.21.1.noarch.rpm myspell-te-20191219-3.21.1.noarch.rpm myspell-te_IN-20191219-3.21.1.noarch.rpm myspell-th_TH-20191219-3.21.1.noarch.rpm myspell-tr-20191219-3.21.1.noarch.rpm myspell-tr_TR-20191219-3.21.1.noarch.rpm myspell-uk_UA-20191219-3.21.1.noarch.rpm myspell-vi-20191219-3.21.1.noarch.rpm myspell-vi_VN-20191219-3.21.1.noarch.rpm myspell-zu_ZA-20191219-3.21.1.noarch.rpm ucpp-1.3.4-3.4.1.src.rpm ucpp-1.3.4-3.4.1.x86_64.rpm ucpp-devel-1.3.4-3.4.1.x86_64.rpm libucpp13-1.3.4-3.4.1.s390x.rpm myspell-dictionaries-20191219-3.21.1.s390x.rpm myspell-lightproof-en-20191219-3.21.1.s390x.rpm myspell-lightproof-hu_HU-20191219-3.21.1.s390x.rpm myspell-lightproof-pt_BR-20191219-3.21.1.s390x.rpm myspell-lightproof-ru_RU-20191219-3.21.1.s390x.rpm ucpp-1.3.4-3.4.1.s390x.rpm ucpp-devel-1.3.4-3.4.1.s390x.rpm libucpp13-1.3.4-3.4.1.ppc64le.rpm myspell-dictionaries-20191219-3.21.1.ppc64le.rpm myspell-lightproof-en-20191219-3.21.1.ppc64le.rpm myspell-lightproof-hu_HU-20191219-3.21.1.ppc64le.rpm myspell-lightproof-pt_BR-20191219-3.21.1.ppc64le.rpm myspell-lightproof-ru_RU-20191219-3.21.1.ppc64le.rpm ucpp-1.3.4-3.4.1.ppc64le.rpm ucpp-devel-1.3.4-3.4.1.ppc64le.rpm libucpp13-1.3.4-3.4.1.aarch64.rpm myspell-dictionaries-20191219-3.21.1.aarch64.rpm myspell-lightproof-en-20191219-3.21.1.aarch64.rpm myspell-lightproof-hu_HU-20191219-3.21.1.aarch64.rpm myspell-lightproof-pt_BR-20191219-3.21.1.aarch64.rpm myspell-lightproof-ru_RU-20191219-3.21.1.aarch64.rpm ucpp-1.3.4-3.4.1.aarch64.rpm ucpp-devel-1.3.4-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2805 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Correct man pages regarding the 'INITRD_MODULES' as some parts already invalid. (bsc#1187115) - Fixed an issue when running mkinitrd inproper arch is being expanded. (bsc#1185615) - Fix for 'suse-initrd' exclude modules that are built-in to prevent failing modules to be installed. (bsc#1185646) - Fix informing on usage of obsolete -f parameter. (bsc#1187470) - Fix reference to 'insmodpost module' in the documentation. (bsc#1187774) dracut-049.1+suse.203.g8ee14a90-3.35.1.src.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.x86_64.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.s390x.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.ppc64le.rpm dracut-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-extra-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-fips-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-ima-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm dracut-tools-049.1+suse.203.g8ee14a90-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2258 moderate SUSE Updates openSUSE-SLE 15.3 This update for buildah fixes the following issues: - buildah requires cni for usage (bsc#1187812) buildah-1.17.0-3.9.1.src.rpm buildah-1.17.0-3.9.1.x86_64.rpm buildah-1.17.0-3.9.1.s390x.rpm buildah-1.17.0-3.9.1.ppc64le.rpm buildah-1.17.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2254 moderate SUSE Updates openSUSE-SLE 15.3 This update for raptor fixes the following issue: - raptor was not delivered correctly for openSUSE Leap 15.3 (bsc#1186642) libraptor-devel-2.0.15-9.7.1.x86_64.rpm libraptor2-0-2.0.15-9.7.1.x86_64.rpm libraptor2-0-32bit-2.0.15-9.7.1.x86_64.rpm raptor-2.0.15-9.7.1.src.rpm raptor-2.0.15-9.7.1.x86_64.rpm libraptor-devel-2.0.15-9.7.1.s390x.rpm libraptor2-0-2.0.15-9.7.1.s390x.rpm raptor-2.0.15-9.7.1.s390x.rpm libraptor-devel-2.0.15-9.7.1.ppc64le.rpm libraptor2-0-2.0.15-9.7.1.ppc64le.rpm raptor-2.0.15-9.7.1.ppc64le.rpm libraptor-devel-2.0.15-9.7.1.aarch64.rpm libraptor2-0-2.0.15-9.7.1.aarch64.rpm raptor-2.0.15-9.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2266 important SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issue: - In the "clamscan" and "clamdscan" manpages, document that files over a certain size by default will silently not be scanned and how this can be adjusted. (bsc#1187509) clamav-0.103.2-3.29.1.src.rpm clamav-0.103.2-3.29.1.x86_64.rpm clamav-devel-0.103.2-3.29.1.x86_64.rpm libclamav9-0.103.2-3.29.1.x86_64.rpm libfreshclam2-0.103.2-3.29.1.x86_64.rpm clamav-0.103.2-3.29.1.s390x.rpm clamav-devel-0.103.2-3.29.1.s390x.rpm libclamav9-0.103.2-3.29.1.s390x.rpm libfreshclam2-0.103.2-3.29.1.s390x.rpm clamav-0.103.2-3.29.1.ppc64le.rpm clamav-devel-0.103.2-3.29.1.ppc64le.rpm libclamav9-0.103.2-3.29.1.ppc64le.rpm libfreshclam2-0.103.2-3.29.1.ppc64le.rpm clamav-0.103.2-3.29.1.aarch64.rpm clamav-devel-0.103.2-3.29.1.aarch64.rpm libclamav9-0.103.2-3.29.1.aarch64.rpm libfreshclam2-0.103.2-3.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-2557 moderate SUSE Updates openSUSE-SLE 15.3 This update for openCryptoki fixes the following issues: - Fixed a segmentation fault with p11sak list-key. (bsc#1182726) - Fixed an issue when soft token does not check if an EC key is valid. (bsc#1185976) openCryptoki-3.15.1-5.3.1.src.rpm openCryptoki-3.15.1-5.3.1.x86_64.rpm openCryptoki-64bit-3.15.1-5.3.1.x86_64.rpm openCryptoki-devel-3.15.1-5.3.1.x86_64.rpm openCryptoki-3.15.1-5.3.1.s390x.rpm openCryptoki-64bit-3.15.1-5.3.1.s390x.rpm openCryptoki-devel-3.15.1-5.3.1.s390x.rpm openCryptoki-3.15.1-5.3.1.ppc64le.rpm openCryptoki-64bit-3.15.1-5.3.1.ppc64le.rpm openCryptoki-devel-3.15.1-5.3.1.ppc64le.rpm openCryptoki-3.15.1-5.3.1.aarch64.rpm openCryptoki-64bit-3.15.1-5.3.1.aarch64.rpm openCryptoki-devel-3.15.1-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2294 important SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issues: - Upgrade to 6.0.14 - CVE-2021-32625: An integer overflow bug could be exploited by using the STRALGO LCS command to cause remote remote code execution (bsc#1186722) - Fix crash in UNLINK on a stream key with deleted consumer groups - SINTERSTORE: Add missing keyspace del event when none of the sources exist redis-6.0.14-6.5.1.src.rpm redis-6.0.14-6.5.1.x86_64.rpm redis-6.0.14-6.5.1.s390x.rpm redis-6.0.14-6.5.1.ppc64le.rpm redis-6.0.14-6.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2619 important SUSE Updates openSUSE-SLE 15.3 This update for djvulibre fixes the following issues: - CVE-2021-3630: out-of-bounds write in DJVU:DjVuTXT:decode() in DjVuText.cpp (bsc#1187869) djvulibre-3.5.27-11.11.1.src.rpm djvulibre-3.5.27-11.11.1.x86_64.rpm djvulibre-doc-3.5.27-11.11.1.noarch.rpm libdjvulibre-devel-3.5.27-11.11.1.x86_64.rpm libdjvulibre21-3.5.27-11.11.1.x86_64.rpm djvulibre-3.5.27-11.11.1.s390x.rpm libdjvulibre-devel-3.5.27-11.11.1.s390x.rpm libdjvulibre21-3.5.27-11.11.1.s390x.rpm djvulibre-3.5.27-11.11.1.ppc64le.rpm libdjvulibre-devel-3.5.27-11.11.1.ppc64le.rpm libdjvulibre21-3.5.27-11.11.1.ppc64le.rpm djvulibre-3.5.27-11.11.1.aarch64.rpm libdjvulibre-devel-3.5.27-11.11.1.aarch64.rpm libdjvulibre21-3.5.27-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2662 important SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issues: - CVE-2021-27358: unauthenticated remote attackers to trigger a Denial of Service via a remote API call (bsc#1183803) - Update to version 7.5.7: * Updated relref to "Configuring exemplars" section (#34240) (#34243) * Added exemplar topic (#34147) (#34226) * Quota: Do not count folders towards dashboard quota (#32519) (#34025) * Instructions to separate emails with semicolons (#32499) (#34138) * Docs: Remove documentation of v8 generic OAuth feature (#34018) * Annotations: Prevent orphaned annotation tags cleanup when no annotations were cleaned (#33957) (#33975) * [GH-33898] Add missing --no-cache to Dockerfile. (#33906) (#33935) * ReleaseNotes: Updated changelog and release notes for 7.5.6 (#33932) (#33936) * Stop hoisting @icons/material (#33922) * Chore: fix react-color version in yarn.lock (#33914) * "Release: Updated versions in package to 7.5.6" (#33909) * Loki: fix label browser crashing when + typed (#33900) (#33901) * Document `hide_version` flag (#33670) (#33881) * Add isolation level db configuration parameter (#33830) (#33878) * Sanitize PromLink button (#33874) (#33876) * Removed content as per MarcusE's suggestion in https://github.com/grafana/grafana/issues/33822. (#33870) (#33872) * Docs feedback: /administration/provisioning.md (#33804) (#33842) * Docs: delete from high availability docs references to removed configurations related to session storage (#33827) (#33851) * Docs: Update _index.md (#33797) (#33799) * Docs: Update installation.md (#33656) (#33703) * GraphNG: uPlot 1.6.9 (#33598) (#33612) * dont consider invalid email address a failed email (#33671) (#33681) * InfluxDB: Improve measurement-autocomplete behavior in query editor (#33494) (#33625) * add template for dashboard url parameters (#33549) (#33588) * Add note to Snapshot API doc to specify that user has to provide the entire dashboard model (#33572) (#33586) * Update team.md (#33454) (#33536) * Removed duplicate file "dashboard_folder_permissions.md (#33497) * Document customQueryParameters for prometheus datasource provisioning (#33440) (#33495) * ReleaseNotes: Updated changelog and release notes for 7.5.5 (#33473) (#33492) * Documentation: Update developer-guide.md (#33478) (#33490) * add closed parenthesis to fix a hyperlink (#33471) (#33481) - Update to version 7.5.5: * "Release: Updated versions in package to 7.5.5" (#33469) * GraphNG: Fix exemplars window position (#33427) (#33462) * Remove field limitation from slack notification (#33113) (#33455) * Prometheus: Support POST in template variables (#33321) (#33441) * Instrumentation: Add success rate metrics for email notifications (#33359) (#33409) * Use either moment objects (for absolute times in the datepicker) or string (for relative time) (#33315) (#33406) * Docs: Removed type from find annotations example. (#33399) (#33403) * [v7.5.x]: FrontendMetrics: Adds new backend api that frontend can use to push frontend measurements and counters to prometheus (#33255) * Updated label for add panel. (#33285) (#33286) * Bug: Add git to Dockerfile.ubuntu (#33247) (#33248) * Docs: Sync latest master docs with 7.5.x (#33156) * Docs: Update getting-started-influxdb.md (#33234) (#33241) * Doc: Document the X-Grafana-Org-Id HTTP header (#32478) (#33239) * Minor Changes in Auditing.md (#31435) (#33238) * Docs: Add license check endpoint doc (#32987) (#33236) * Postgres: Fix time group macro when TimescaleDB is enabled and interval is less than a second (#33153) (#33219) * Docs: InfluxDB doc improvements (#32815) (#33185) * [v7.5.x] Loki: Pass Skip TLS Verify setting to alert queries (#33031) * update cla (#33181) * Fix inefficient regular expression (#33155) (#33159) * Auth: Don't clear auth token cookie when lookup token fails (#32999) (#33136) * Elasticsearch: Add documentation for supported Elasticsearch query transformations (#33072) (#33128) * Update team.md (#33060) (#33084) * GE issue 1268 (#33049) (#33081) * Fixed some formatting issues for PRs from yesterday. (#33078) (#33079) * Explore: Load default data source in Explore when the provided source does not exist (#32992) (#33061) * Docs: Replace next with latest in aliases (#33054) (#33059) * Added missing link item. (#33052) (#33055) * Backport 33034 (#33038) * Docs: Backport 32916 to v7.5x (#33008) * ReleaseNotes: Updated changelog and release notes for 7.5.4 (#32973) (#32998) * Elasticsearch: Force re-rendering of each editor row type change (#32993) (#32996) * Docs: Sync release branch with latest docs (#32986) - Update to version 7.5.4: * "Release: Updated versions in package to 7.5.4" (#32971) * fix(datasource_srv): prevent infinite loop where default datasource is named default (#32949) (#32967) * Added Azure Monitor support for Microsoft.AppConfiguration/configurationStores namespace (#32123) (#32968) * fix sqlite3 tx retry condition operator precedence (#32897) (#32952) * AzureMonitor: Add support for Virtual WAN namespaces (#32935) (#32947) * Plugins: Allow a non-dashboard page to be the default home page (#32926) (#32945) * GraphNG: uPlot 1.6.8 (#32859) (#32863) * Alerting: Add ability to include aliases with dashes (/) and at (@) signs in InfluxDB (#32844) * Prometheus: Allow exemplars endpoint in data source proxy (#32802) (#32804) * [v7.5.x] Table: Fixes table data links so they refer to correct row after sorting (#32758) * TablePanel: Makes sorting case-insensitive (#32435) (#32752) - Update to version 7.5.3: * "Release: Updated versions in package to 7.5.3" (#32745) * FolderPicker: Prevent dropdown menu from disappearing off screen (#32603) (#32741) * Loki: Remove empty annotations tags (#32359) (#32490) * SingleStat: fix wrong call to getDataLinkUIModel (#32721) (#32739) * Prometheus: Fix instant query to run two times when exemplars enabled (#32508) (#32726) * Elasticsearch: Fix bucket script variable duplication in UI (#32705) (#32714) * Variables: Confirms selection before opening new picker (#32586) (#32710) * CloudWarch: Fix service quotas link (#32686) (#32689) * Configuration: Prevent browser hanging / crashing with large number of org users (#32546) (#32598) * chore: bump execa to v2.1.0 (#32543) (#32592) * Explore: Fix bug where navigating to explore would result in wrong query and datasource to be shown (#32558) * Fix broken gtime tests (#32582) (#32587) * resolve conflicts (#32567) * gtime: Make ParseInterval deterministic (#32539) (#32560) * Dashboard: No longer includes default datasource when externally exporting dashboard with row (#32494) (#32535) * TextboxVariable: Limits the length of the preview value (#32472) (#32530) * AdHocVariable: Adds default data source (#32470) (#32476) * Variables: Fixes Unsupported data format error for null values (#32480) (#32487) * Prometheus: align exemplars check to latest api change (#32513) (#32515) * "Release: Updated versions in package to 7.5.2" (#32502) * SigV4: Add support EC2 IAM role auth and possibility to toggle auth providers (#32444) (#32488) * Set spanNulls to default (#32471) (#32486) * Graph: Fix setting right y-axis when standard option unit is configured (#32426) (#32442) * API: Return 409 on datasource version conflict (#32425) (#32433) * API: Return 400 on invalid Annotation requests (#32429) (#32431) * Variables: Fixes problem with data source variable when default ds is selected (#32384) (#32424) * Table: Fixes so links work for image cells (#32370) (#32410) * Variables: Fixes error when manually non-matching entering custom value in variable input/picker (#32390) (#32394) * DashboardQueryEditor: Run query after selecting source panel (#32383) (#32395) * API: Datasource endpoint should return 400 bad request if id and orgId is invalid (#32392) (#32397) * "Release: Updated versions in package to 7.5.1" (#32362) * MSSQL: Upgrade go-mssqldb (#32347) (#32361) * GraphNG: Fix tooltip displaying wrong or no data (#32312) (#32348) * "Release: Updated versions in package to 7.5.0" (#32308) * Loki: Fix text search in Label browser (#32293) (#32306) * Explore: Show all dataFrames in data tab in Inspector (#32161) (#32299) * PieChartV2: Add migration from old piechart (#32259) (#32291) * LibraryPanels: Adds Type and Description to DB (#32258) (#32288) * LibraryPanels: Prevents deletion of connected library panels (#32277) (#32284) * Library Panels: Add "Discard" button to panel save modal (#31647) (#32281) * LibraryPanels: Changes to non readonly reducer (#32193) (#32200) * Notifications: InfluxDB - Fix regex to include metrics with hyphen in aliases (#32224) (#32262) * SSE/InfluxDB: Change InfluxQL to work with server side expressions (#31691) (#32102) * DashboardSettings: Fixes issue with tags list not updating when changes are made (#32241) (#32247) * Logs: If log message missing, use empty string (#32080) (#32243) * CloudWatch: Use latest version of aws sdk (#32217) (#32223) * Release: Updated versions in package to 7.5.0-beta.2 (#32158) * HttpServer: Make read timeout configurable but disabled by default (#31575) (#32154) * GraphNG: Ignore string fields when building data for uPlot in GraphNG (#32150) (#32151) * Fix loading timezone info on windows (#32029) (#32149) * SQLStore: Close session in withDbSession (#31775) (#32108) * Remove datalink template suggestions for accessing specific fields when there are multiple dataframes. (#32057) (#32148) * GraphNG: make sure dataset and config are in sync when initializing and re-initializing uPlot (#32106) (#32125) * MixedDataSource: Name is updated when data source variable changes (#32090) (#32144) * Backport 32005 to v7.5.x #32128 (#32130) * Loki: Label browser UI updates (#31737) (#32119) * ValueMappings: Fixes value 0 not being mapped (#31924) (#31929) * GraphNG: Fix tooltip series color for multi data frame scenario (#32098) (#32103) * LibraryPanels: Improves the Get All experience (#32028) (#32093) * Grafana/ui: display all selected levels for selected value when searching (#32030) (#32032) * Exemplars: always query exemplars (#31673) (#32024) * [v7.5.x] TimePicker: Fixes hidden time picker shown in kiosk TV mode (#32055) * Chore: Collect elasticsearch version usage stats (#31787) (#32063) * Chore: Tidy up Go deps (#32053) * GraphNG: Fix PlotLegend field display name being outdated (#32064) (#32066) * Data proxy: Fix encoded characters in URL path should be proxied encoded (#30597) (#32060) * [v7.5.x] Auth: Allow soft token revocation (#32037) * Snapshots: Fix usage of sign in link from the snapshot page (#31986) (#32036) * Make master green (#32011) (#32015) * Query editor: avoid avoiding word wrap on query editor components (#31949) (#31982) * Variables: Fixes filtering in picker with null items (#31979) (#31995) * TooltipContainer - use resize observer instead of getClientBoundingRect (#31937) (#32003) * Loki: Fix autocomplete when re-editing Loki label values (#31828) (#31987) * Loki: Fix type errors in language_provider (#31902) (#31945) * PanelInspect: Interpolates variables in CSV file name (#31936) (#31977) * Cloudwatch: use shared library for aws auth (#29550) (#31946) * Tooltip: partial perf improvement (#31774) (#31837) (#31957) * Backport 31913 to v7.5.x (#31955) * Grafana/ui: fix searchable options for Cascader with options update (#31906) (#31938) * Variables: Do not reset description on variable type change (#31933) (#31939) * [v7.5.x] AnnotationList: Adds spacing to UI (#31888) (#31894) * Elasticseach: Support histogram fields (#29079) (#31914) * Chore: upgrade eslint and fork-ts-checker-webpack-plugin (#31854) (#31896) * Update scripts and Dockerfiles to use Go 1.16.1 (#31881) (#31891) * Templating: use dashboard timerange when variables are set to refresh 'On Dashboard Load' (#31721) (#31801) * [v7.5.x] Tempo: Add test for backend data source (#31835) (#31882) * Run go mod tidy to update go.mod and go.sum (#31859) * Grafana/ui: display all selected levels for Cascader (#31729) (#31862) * CloudWatch: Consume the grafana/aws-sdk (#31807) (#31861) * Cloudwatch: ListMetrics API page limit (#31788) (#31851) * Remove invalid attribute (#31848) (#31850) * CloudWatch: Restrict auth provider and assume role usage according to… (#31845) * CloudWatch: Add support for EC2 IAM role (#31804) (#31841) * Loki, Prometheus: Change the placement for query type explanation (#31784) (#31819) * Variables: Improves inspection performance and unknown filtering (#31811) (#31813) * Change piechart plugin state to beta (#31797) (#31798) * ReduceTransform: Include series with numeric string names (#31763) (#31794) * Annotations: Make the annotation clean up batch size configurable (#31487) (#31769) * Fix escaping in ANSI and dynamic button removal (#31731) (#31767) * DataLinks: Bring back single click links for Stat, Gauge and BarGauge panel (#31692) (#31718) * log skipped, performed and duration for migrations (#31722) (#31754) * Search: Make items more compact (#31734) (#31750) * loki_datasource: add documentation to label_format and line_format (#31710) (#31746) * Tempo: Convert tempo to backend data source2 (#31733) * Elasticsearch: Fix script fields in query editor (#31681) (#31727) * Elasticsearch: revert to isoWeek when resolving weekly indices (#31709) (#31717) * Admin: Keeps expired api keys visible in table after delete (#31636) (#31675) * Tempo: set authentication header properly (#31699) (#31701) * Tempo: convert to backend data source (#31618) (#31695) * Update package.json (#31672) * Release: Bump version to 7.5.0-beta.1 (#31664) * Fix whatsNewUrl version to 7.5 (#31666) * Chore: add alias for what's new 7.5 (#31669) * Docs: Update doc for PostgreSQL authentication (#31434) * Docs: document report template variables (#31637) * AzureMonitor: Add deprecation message for App Insights/Insights Analytics (#30633) * Color: Fixes issue where colors where reset to gray when switch panels (#31611) * Live: Use pure WebSocket transport (#31630) * Docs: Fix broken image link (#31661) * Docs: Add Whats new in 7.5 (#31659) * Docs: Fix links for 7.5 (#31658) * Update enterprise-configuration.md (#31656) * Explore/Logs: Escaping of incorrectly escaped log lines (#31352) * Tracing: Small improvements to trace types (#31646) * Update _index.md (#31645) * AlertingNG: code refactoring (#30787) * Remove pkill gpg-agent (#31169) * Remove format for plugin routes (#31633) * Library Panels: Change unsaved change detection logic (#31477) * CloudWatch: Added AWS Timestream Metrics and Dimensions (#31624) * add new metrics and dimensions (#31595) * fix devenv dashboard content typo (#31583) * DashList: Sort starred and searched dashboard alphabetically (#31605) * Docs: Update whats-new-in-v7-4.md (#31612) * SSE: Add "Classic Condition" on backend (#31511) * InfluxDB: Improve maxDataPoints error-message in Flux-mode, raise limits (#31259) * Alerting: PagerDuty: adding current state to the payload (#29270) * devenv: Fix typo (#31589) * Loki: Label browser (#30351) * LibraryPanels: No save modal when user is on same dashboard (#31606) * Bug: adding resolution for `react-use-measure` to prevent plugin tests from failing. (#31603) * Update node-graph.md (#31571) * test: pass Cypress options objects into selector wrappers (#31567) * Loki: Add support for alerting (#31424) * Tracing: Specify type of the data frame that is expected for TraceView (#31465) * LibraryPanels: Adds version column (#31590) * PieChart: Add color changing options to pie chart (#31588) * Explore: keep enabled/disabled state in angular based QueryEditors correctly (#31558) * Bring back correct legend sizing afer PlotLegend refactor (#31582) * Alerting: Fix bug in Discord for when name for metric value is absent (#31257) * LibraryPanels: Deletes library panels during folder deletion (#31572) * chore: bump lodash to 4.17.21 (#31549) * Elasticsearch: Fix impossibility to perform non-logs queries after importing queries from loki or prometheus in explore (#31518) * TestData: Fixes never ending annotations scenario (#31573) * CloudWatch: Added AWS Network Firewall metrics and dimensions (#31498) * propagate plugin unavailable message to UI (#31560) * ConfirmButton: updates story from knobs to controls (#31476) * Loki: Refactor line limit to use grafana/ui component (#31509) * LibraryPanels: Adds folder checks and permissions (#31473) * Add guide on custom option editors (#31254) * PieChart: Update text color and minor changes (#31546) * Grafana-data: bump markedjs to v2.x to resolve vulnerability (#31036) * Chore(deps): Bump google.golang.org/api from 0.39.0 to 0.40.0 (#31210) * PieChart: Improve piechart legend and options (#31446) * Chore(deps): Bump google.golang.org/grpc from 1.35.0 to 1.36.0 (#31541) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.37.7 to 1.37.20 (#31538) * Chore(deps): Bump github.com/prometheus/common from 0.17.0 to 0.18.0 (#31539) * Add multiselect options ui (#31501) * Profile: Fixes profile preferences being accessible when anonymous access was enabled (#31516) * Variables: Fixes error with: cannot read property length of undefined (#31458) * Explore: Show ANSI colored logs in logs context (#31510) * LogsPanel: Show all received logs (#31505) * AddPanel: Design polish (#31484) * TimeSeriesPanel: Remove unnecessary margin from legend (#31467) * influxdb: flux: handle is-hidden (#31324) * Graph: Fix tooltip not showing when close to the edge of viewport (#31493) * FolderPicker: Remove useNewForms from FolderPicker (#31485) * Add reportVariables feature toggle (#31469) * Grafana datasource: support multiple targets (#31495) * Update license-restrictions.md (#31488) * Docs: Derived fields links in logs detail view (#31482) * Docs: Add new data source links to Enterprise page (#31480) * Convert annotations to dataframes (#31400) * ReleaseNotes: Updated changelog and release notes for v7.4.2 (#31475) * GrafanaUI: Fixes typescript error for missing css prop (#31479) * Login: handle custom token creation error messages (#31283) * Library Panels: Don't list current panel in available panels list (#31472) * DashboardSettings: Migrate Link Settings to React (#31150) * Frontend changes for library panels feature (#30653) * Alerting notifier SensuGo: improvements in default message (#31428) * AppPlugins: Options to disable showing config page in nav (#31354) * add aws config (#31464) * Heatmap: Fix missing/wrong value in heatmap legend (#31430) * Chore: Fixes small typos (#31461) * Graphite/SSE: update graphite to work with server side expressions (#31455) * update the lastest version to 7.4.3 (#31457) * ReleaseNotes: Updated changelog and release notes for 7.4.3 (#31454) * AWS: Add aws plugin configuration (#31312) * Revert ""Release: Updated versions in package to 7.4.3" (#31444)" (#31452) * Remove UserSyncInfo.tsx (#31450) * Elasticsearch: Add word highlighting to search results (#30293) * Chore: Fix eslint react hook warnings in grafana-ui (#31092) * CloudWatch: Make it possible to specify custom api endpoint (#31402) * Chore: fixed incorrect naming for disable settings (#31448) * TraceViewer: Fix show log marker in spanbar (#30742) * LibraryPanels: Adds permissions to getAllHandler (#31416) * NamedColorsPalette: updates story from knobs to controls (#31443) * "Release: Updated versions in package to 7.4.3" (#31444) * ColorPicker: updates story from knobs to controls (#31429) * Streaming: Fixes an issue with time series panel and streaming data source when scrolling back from being out of view (#31431) * ClipboardButton: updates story from knobs to controls (#31422) * we should never log unhashed tokens (#31432) * CI: Upgrade Dockerfiles wrt. Go, Node, Debian (#31407) * Elasticsearch: Fix query initialization logic & query transformation from Promethous/Loki (#31322) * Postgres: allow providing TLS/SSL certificates as text in addition to file paths (#30353) * CloudWatch: Added AWS Ground Station metrics and dimensions (#31362) * TraceViewer: Fix trace to logs icon to show in right pane (#31414) * add hg team as migrations code owners (#31420) * Remove tidy-check script (#31423) * InfluxDB: handle columns named "table" (#30985) * Prometheus: Use configured HTTP method for /series and /labels endpoints (#31401) * Devenv: Add gdev-influxdb2 data source (#31250) * Update grabpl from 0.5.38 to 0.5.42 version (#31419) * Move NOOP_CONTROL to storybook utils and change to a standalone file (#31421) * remove squadcast details from docs (#31413) * Add new Cloudwatch AWS/DDoSProtection metrics and dimensions (#31297) * Logging: add frontend logging helpers to @grafana/runtime package (#30482) * CallToActionCard: updates story from knobs to controls (#31393) * Add eu-south-1 cloudwatch region, closes #31197 (#31198) * Chore: Upgrade eslint packages (#31408) * Cascader: updates story from knobs to controls (#31399) * addressed issues 28763 and 30314. (#31404) * Added section Query a time series database by id (#31337) * Prometheus: Change default httpMethod for new instances to POST (#31292) * Data source list: Use Card component (#31326) * Chore: Remove gotest.tools dependency (#31391) * Revert "StoryBook: Introduces Grafana Controls (#31351)" (#31388) * Chore(deps): Bump github.com/prometheus/common from 0.15.0 to 0.17.0 (#31387) * AdHocVariables: Fixes crash when values are stored as numbers (#31382) * Chore(deps): Bump github.com/golang/mock from 1.4.4 to 1.5.0 (#31379) * Chore: Fix strict errors, down to 416 (#31365) * Chore(deps): Bump github.com/getsentry/sentry-go from 0.9.0 to 0.10.0 (#31378) * StoryBook: Introduces Grafana Controls (#31351) * ReleaseNotes: Updated changelog and release notes for 7.4.2 (#31313) * Theming: Support for runtime theme switching and hooks for custom themes (#31301) * Devenv: Remove old-versioned loki blocks and update prometheus2 block (#31282) * Zipkin: Show success on test data source (#30829) * Update grot template (needs more info) (#31350) * DatasourceSrv: Fix instance retrieval when datasource variable value set to "default" (#31347) * TimeSeriesPanel: Fixes overlapping time axis ticks (#31332) * Grafana/UI: Add basic legend to the PieChart (#31278) * SAML: single logout only enabled in enterprise (#31325) * QueryEditor: handle query.hide changes in angular based query-editors (#31336) * DashboardLinks: Fixes another issue where dashboard links cause full page reload (#31334) * LibraryPanels: Syncs panel title with name (#31311) * Chore: Upgrade golangci-lint (#31330) * Add info to docs about concurrent session limits (#31333) * Table: Fixes issue with fixed min and auto max with bar gauge cell (#31316) * BarGuage: updates story from knobs to controls (#31223) * Docs: Clarifies how to add Key/Value pairs (#31303) * Usagestats: Exclude folders from total dashboard count (#31320) * ButtonCascader: updates story from knobs to controls (#31288) * test: allow check for Table as well as Graph for Explore e2e flow (#31290) * Grafana-UI: Update tooltip type (#31310) * fix 7.4.2 release note (#31299) * Add `--tries 3` arg when triggering e2e-tests upon releasing (#31285) * Chore: reduce strict errors for variables (#31241) * update latest release version (#31296) * ReleaseNotes: Updated changelog and release notes for 7.4.2 (#31291) * Correct name of Discord notifier tests (#31277) * Docs: Clarifies custom date formats for variables (#31271) * BigValue: updates story from knobs to controls (#31240) * Docs: Annotations update (#31194) * Introduce functions for interacting with library panels API (#30993) * Search: display sort metadata (#31167) * Folders: Editors should be able to edit name and delete folders (#31242) * Make Datetime local (No date if today) working (#31274) * UsageStats: Purpose named variables (#31264) * Snapshots: Disallow anonymous user to create snapshots (#31263) * only update usagestats every 30min (#31131) * Chore: grafana-toolkit uses grafana-ui and grafana-data workspaces (#30701) * Grafana-UI: Add id to Select to make it easier to test (#31230) * Prometheus: Fix enabling of disabled queries when editing in dashboard (#31055) * UI/Card: Fix handling of 'onClick' callback (#31225) * Loki: Add line limit for annotations (#31183) * Remove deprecated and breaking loki config field (#31227) * SqlDataSources: Fixes the Show Generated SQL button in query editors (#31236) * LibraryPanels: Disconnect before connect during dashboard save (#31235) * Disable Change Password for OAuth users (#27886) * TagsInput: Design update and component refactor (#31163) * Variables: Adds back default option for data source variable (#31208) * IPv6: Support host address configured with enclosing square brackets (#31226) * Postgres: Fix timeGroup macro converts long intervals to invalid numbers when TimescaleDB is enabled (#31179) * GraphNG: refactor core to class component (#30941) * Remove last synchronisation field from LDAP debug view (#30984) * Chore: Upgrade grafana-plugin-sdk-go to v0.88.0 (#30975) * Graph: Make axes unit option work even when field option unit is set (#31205) * AlertingNG: Test definition (#30886) * Docs: Update Influx config options (#31146) * WIP: Skip this call when we skip migrations (#31216) * use 0.1.0 (#31215) * DataSourceSrv: Filter out non queryable data sources by default (#31144) * QueryEditors: Fixes issue that happens after moving queries then editing would update other queries (#31193) * Chore: report eslint no-explicit-any errors to metrics (#31182) * Chore(deps): Bump cloud.google.com/go/storage from 1.12.0 to 1.13.0 (#31211) * Chore(deps): Bump xorm.io/xorm from 0.8.1 to 0.8.2 (#30773) * Alerting: Fix modal text for deleting obsolete notifier (#31171) * Chore(deps): Bump github.com/linkedin/goavro/v2 from 2.9.7 to 2.10.0 (#31204) * Variables: Fixes missing empty elements from regex filters (#31156) * StatPanels: Fixes to palette color scheme is not cleared when loading panel (#31126) * Fixed the typo. (#31189) * Docs: Rewrite preferences docs (#31154) * Explore/Refactor: Simplify URL handling (#29173) * DashboardLinks: Fixes links always cause full page reload (#31178) * Replace PR with Commit truncated hash when build fails (#31177) * Alert: update story to use controls (#31145) * Permissions: Fix team and role permissions on folders/dashboards not displayed for non Grafana Admin users (#31132) * CloudWatch: Ensure empty query row errors are not passed to the panel (#31172) * Update prometheus.md (#31173) * Variables: Extend option pickers to accept custom onChange callback (#30913) * Prometheus: Multiply exemplars timestamp to follow api change (#31143) * DashboardListPanel: Fixes issue with folder picker always showing All and using old form styles (#31160) * Add author name and pr number in drone pipeline notifications (#31124) * Prometheus: Add documentation for ad-hoc filters (#31122) * DataSourceSettings: Fixes add header button, it should not trigger a save & test action (#31135) * Alerting: Fix so that sending an alert with the Alertmanager notifier doesn't fail when one of multiple configured URL's are down (#31079) * Chore: Update latest.json (#31139) * Docs: add 7.4.1 relese notes link (#31137) * PieChart: Progress on new core pie chart (#28020) * ReleaseNotes: Updated changelog and release notes for 7.4.1 (#31133) * Eslint: no-duplicate-imports rule (bump grafana-eslint-config) (#30989) * Transforms: Fixes Outer join issue with duplicate field names not getting the same unique field names as before (#31121) * MuxWriter: Handle error for already closed file (#31119) * Logging: sourcemap transform asset urls from CDN in logged stacktraces (#31115) * Search: add sort information in dashboard results (#30609) * area/grafana/e2e: ginstall should pull version specified (#31056) * Exemplars: Change CTA style (#30880) * Influx: Make max series limit configurable and show the limiting message if applied (#31025) * Docs: request security (#30937) * update configurePanel for 7.4.0 changes (#31093) * Elasticsearch: fix log row context erroring out (#31088) * Prometheus: Fix issues with ad-hoc filters (#30931) * LogsPanel: Add deduplication option for logs (#31019) * Drone: Make sure CDN upload is ok before pushing docker images (#31075) * PluginManager: Remove some global state (#31081) * test: update addDashboard flow for v7.4.0 changes (#31059) * Transformations: Fixed typo in FilterByValue transformer description. (#31078) * Docs: Group id should be 0 instead of 1 in Docker upgrade notes (#31074) * Usage stats: Adds source/distributor setting (#31039) * CDN: Add CDN upload step to enterprise and release pipelines (#31058) * Chore: Replace native select with grafana ui select (#31030) * Docs: Update json-model.md (#31066) * Docs: Update whats-new-in-v7-4.md (#31069) * Added hyperlinks to Graphite documentation (#31064) * DashboardSettings: Update to new form styles (#31022) * CDN: Fixing drone CI config (#31052) * convert path to posix by default (#31045) * DashboardLinks: Fixes crash when link has no title (#31008) * Alerting: Fixes so notification channels are properly deleted (#31040) * Explore: Remove emotion error when displaying logs (#31026) * Elasticsearch: Fix alias field value not being shown in query editor (#30992) * CDN: Adds uppload to CDN step to drone CI (#30879) * Improved glossary (#31004) * BarGauge: Improvements to value sizing and table inner width calculations (#30990) * Drone: Fix deployment image (#31027) * ColorPicker: migrated styles from sass to emotion (#30909) * Dashboard: Migrate general settings to react (#30914) * Chore(deps): Bump github.com/jung-kurt/gofpdf from 1.10.1 to 1.16.2 (#30586) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.36.31 to 1.37.7 (#31018) * Prometheus: Min step defaults to seconds when no unit is set to prevent errors when running alerts. (#30966) * Chore(deps): Bump github.com/magefile/mage from 1.10.0 to 1.11.0 (#31017) * Chore(deps): Bump github.com/grpc-ecosystem/go-grpc-middleware (#31013) * Graph: Fixes so graph is shown for non numeric time values (#30972) * CloudMonitoring: Prevent resource type variable function from crashing (#30901) * Chore(deps): Bump google.golang.org/api from 0.33.0 to 0.39.0 (#30971) * Build: Releases e2e and e2e-selectors too (#31006) * TextPanel: Fixes so panel title is updated when variables change (#30884) * Docs: Update configuration.md (login_maximum_inactive_lifetime_duration, login_maximum_lifetime_duration) (#31000) * instrumentation: make the first database histogram bucket smaller (#30995) * Grafana/UI: Remove DismissableFeatureInfoBox and replace with LocalSt… (#30988) * StatPanel: Fixes issue formatting date values using unit option (#30979) * Chore(deps): Bump actions/cache from v2 to v2.1.4 (#30973) * Units: Fixes formatting of duration units (#30982) * Elasticsearch: Show Size setting for raw_data metric (#30980) * Alerts: Dedupe alerts so that we do not fill the screen with the same alert messsage (#30935) * make sure service and slo display name is passed to segment comp (#30900) * assign changes in cloud datasources to the new cloud datasources team (#30645) * Table: Updates devenv test dashboard after change to TestData Randrom Table response (#30927) * Theme: Use higher order theme color variables rather then is light/dark logic (#30939) * Docs: Add alias for what's new in 7.4 (#30945) * e2e: extends selector factory to plugins (#30932) * Chore: Upgrade docker build image (#30820) * Docs: updated developer guide (#29978) * Alerts: Update Alert storybook to show more states (#30908) * Variables: Adds queryparam formatting option (#30858) * Chore: pad unknown values with undefined (#30808) * Transformers: add search to transform selection (#30854) * Exemplars: change api to reflect latest changes (#30910) * docs: use selinux relabelling on docker containers (#27685) * Docs: Fix bad image path for alert notification template (#30911) * Make value mappings correctly interpret numeric-like strings (#30893) * Chore: Update latest.json (#30905) * Docs: Update whats-new-in-v7-4.md (#30882) * Dashboard: Ignore changes to dashboard when the user session expires (#30897) * ReleaseNotes: Updated changelog and release notes for 7.4.0 (#30902) * test: add support for timeout to be passed in for addDatasource (#30736) * increase page size and make sure the cache supports query params (#30892) * DataSourceSettings: Adds info box and link to Grafana Cloud (#30891) * OAuth: custom username docs (#28400) * Panels: Remove value mapping of values that have been formatted #26763 (#30868) * Alerting: Fixes alert panel header icon not showing (#30840) * AlertingNG: Edit Alert Definition (#30676) * Logging: sourcemap support for frontend stacktraces (#30590) * Added "Restart Grafana" topic. (#30844) * Docs: Org, Team, and User Admin (#30756) * bump grabpl version to 0.5.36 (#30874) * Plugins: Requests validator (#30445) * Docs: Update whats-new-in-v7-4.md (#30876) * Docs: Add server view folder (#30849) * Fixed image name and path (#30871) * Grafana-ui: fixes closing modals with escape key (#30745) * InfluxDB: Add http configuration when selecting InfluxDB v2 flavor (#30827) * TestData: Fixes issue with for ever loading state when all queries are hidden (#30861) * Chart/Tooltip: refactored style declaration (#30824) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30853) * Grafana-ui: fixes no data message in Table component (#30821) * grafana/ui: Update pagination component for large number of pages (#30151) * Alerting: Customise OK notification priorities for Pushover notifier (#30169) * DashboardLinks: Support variable expression in to tooltip - Issue #30409 (#30569) * Chore: Remove panelTime.html, closes #30097 (#30842) * Docs: Time series panel, bar alignment docs (#30780) * Chore: add more docs annotations (#30847) * Transforms: allow boolean in field calculations (#30802) * Prometheus: Add tooltip to explain possibility to use patterns in text and title fields in annotations (#30825) * Update prometheus.md with image link fix (#30833) * BarChart: inside-align strokes, upgrade uPlot to 1.6.4. (#30806) * Update license-expiration.md (#30839) * Explore rewrite (#30804) * Prometheus: Set type of labels to string (#30831) * GrafanaUI: Add a way to persistently close InfoBox (#30716) * Fix typo in transformer registry (#30712) * Elasticsearch: Display errors with text responses (#30122) * CDN: Fixes cdn path when Grafana is under sub path (#30822) * TraceViewer: Fix lazy loading (#30700) * FormField: migrated sass styling to emotion (#30392) * AlertingNG: change API permissions (#30781) * Variables: Clears drop down state when leaving dashboard (#30810) * Grafana-UI: Add story/docs for ErrorBoundary (#30304) * Add missing callback dependency (#30797) * PanelLibrary: Adds library panel meta information to dashboard json (#30770) * Chore(deps): Bump gonum.org/v1/gonum from 0.6.0 to 0.8.2 (#30343) * Chore(deps): Bump gopkg.in/yaml.v2 from 2.3.0 to 2.4.0 (#30771) * GraphNG: improve behavior when switching between solid/dash/dots (#30796) * Chore(deps): Bump github.com/hashicorp/go-hclog from 0.14.1 to 0.15.0 (#30778) * Add width for Variable Editors (#30791) * Chore: Remove warning when calling resource (#30752) * Auth: Use SigV4 lib from grafana-aws-sdk (#30713) * Panels: Fixes so panels are refreshed when scrolling past them fast (#30784) * GraphNG: add bar alignment option (#30499) * Expressions: Measure total transformation requests and elapsed time (#30514) * Menu: Mark menu components as internal (#30740) * TableInputCSV: migrated styles from sass to emotion (#30554) * CDN: Fix passing correct prefix to GetContentDeliveryURL (#30777) * Chore(deps): Bump gopkg.in/ini.v1 from 1.57.0 to 1.62.0 (#30772) * CDN: Adds support for serving assets over a CDN (#30691) * PanelEdit: Trigger refresh when changing data source (#30744) * Chore: remove __debug_bin (#30725) * BarChart: add alpha bar chart panel (#30323) * Docs: Time series panel (#30690) * Backend Plugins: Convert test data source to use SDK contracts (#29916) * Docs: Update whats-new-in-v7-4.md (#30747) * Add link to Elasticsearch docs. (#30748) * Mobile: Fixes issue scrolling on mobile in chrome (#30746) * TagsInput: Make placeholder configurable (#30718) * Docs: Add config settings for fonts in reporting (#30421) * Add menu.yaml to .gitignore (#30743) * bump cypress to 6.3.0 (#30644) * Datasource: Use json-iterator configuration compatible with standard library (#30732) * AlertingNG: Update UX to use new PageToolbar component (#30680) * Docs: Add usage insights export feature (#30376) * skip symlinks to directories when generating plugin manifest (#30721) * PluginCiE2E: Upgrade base images (#30696) * Variables: Fixes so text format will show All instead of custom all (#30730) * PanelLibrary: better handling of deleted panels (#30709) * Added section "Curated dashboards for Google Cloud Monitoring" for 7.4 What's New (#30724) * Added "curated dashboards" information and broke down, rearranged topics. (#30659) * Transform: improve the "outer join" performance/behavior (#30407) * Add alt text to plugin logos (#30710) * Deleted menu.yaml file (#30717) * Dashboard: Top Share URL icon should share panel URL when on viewPanel page (#30000) * Added entry for web server. (#30715) * DashboardPicker: switch to promise-based debounce, return dashboard UID (#30706) * Use connected GraphNG in Explore (#30707) * Fix documentation for streaming data sources (#30704) * PanelLibrary: changes casing of responses and adds meta property (#30668) * Influx: Show all datapoints for dynamically windowed flux query (#30688) * Trace: trace to logs design update (#30637) * DeployImage: Switch base images to Debian (#30684) * Chore: remove CSP debug logging line (#30689) * Docs: 7.4 documentation for expressions (#30524) * PanelEdit: Get rid of last remaining usage of navbar-button (#30682) * Grafana-UI: Fix setting default value for MultiSelect (#30671) * CustomScrollbar: migrated styles from sass to emotion (#30506) * DashboardSettings & PanelEdit: Use new PageToolbar (#30675) * Explore: Fix jumpy live tailing (#30650) * ci(npm-publish): add missing github package token to env vars (#30665) * PageToolbar: Extracting navbar styles & layout into a modern emotion based component (#30588) * AlertingNG: pause/unpause definitions via the API (#30627) * Docs: Refer to product docs in whats new for alerting templating feature (#30652) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30666) * Variables: Fixes display value when using capture groups in regex (#30636) * Docs: Update _index.md (#30655) * Docs: Auditing updates (#30433) * Docs: add hidden_users configuration field (#30435) * Docs: Define TLS/SSL terminology (#30533) * Docs: Fix expressions enabled description (#30589) * Docs: Update ES screenshots (#30598) * Licensing Docs: Adding license restrictions docs (#30216) * Update documentation-style-guide.md (#30611) * Docs: Update queries.md (#30616) * chore(grafana-ui): bump storybook to 6.1.15 (#30642) * DashboardSettings: fixes vertical scrolling (#30640) * Usage Stats: Remove unused method for getting user stats (#30074) * Grafana/UI: Unit picker should not set a category as unit (#30638) * Graph: Fixes auto decimals issue in legend and tooltip (#30628) * AlertingNG: List saved Alert definitions in Alert Rule list (#30603) * chore: bump redux toolkit to 1.5.0 for immer 8.0.1 vulnerability fix (#30605) * Grafana/UI: Add disable prop to Segment (#30539) * Variables: Fixes so queries work for numbers values too (#30602) * Admin: Fixes so form values are filled in from backend (#30544) * Docs: Add new override info and add whats new 7.4 links (#30615) * TestData: Improve what's new in v7.4 (#30612) * Docs: Update 7.4 What's New to use more correct description of alerting notification template feature (#30502) * NodeGraph: Add docs (#30504) * Loki: Improve live tailing errors and fix Explore's logs container type errors (#30517) * TimeRangePicker: Updates components to use new ToolbarButton & ButtonGroup (#30570) * Update styling.md guide (#30594) * TestData: Adding what's new in v7.4 to the devenv dashboards (#30568) * Chore(deps): Bump github.com/aws/aws-sdk-go from 1.35.5 to 1.36.31 (#30583) * Chore(deps): Bump github.com/prometheus/client_golang (#30585) * Chore(deps): Bump gopkg.in/macaron.v1 from 1.3.9 to 1.4.0 (#30587) * Chore(deps): Bump github.com/google/uuid from 1.1.5 to 1.2.0 (#30584) * Explore: Fix logs hover state so that it is visible and in dark mode & simply hover code (#30572) * RefreshPicker: Fixes so valid intervals in url are visible in RefreshPicker (#30474) * Add documentation for Exemplars (#30317) * OldGraph: Fix height issue in Firefox (#30565) * XY Chart: fix editor error with empty frame (no fields) (#30573) * ButtonSelect & RefreshPicker: Rewrite of components to use new emotion based ToolbarButton & Menu (#30510) * XY Chart: share legend config with timeseries (#30559) * configuration.md: Document Content Security Policy options (#30413) * DataFrame: cache frame/field index in field state (#30529) * List + before -; rm old Git ref; reformat. (#30543) * Expressions: Add option to disable feature (#30541) * Explore: Fix loading visualisation on the top of the new time series panel (#30553) * Prometheus: Fix show query instead of Value if no __name__ and metric (#30511) * Decimals: Big Improvements to auto decimals and fixes to auto decimals bug found in 7.4-beta1 (#30519) * Postgres: Convert tests to stdlib (#30536) * Storybook: Migrate card story to use controls (#30535) * AlertingNG: Enable UI to Save Alert Definitions (#30394) * Postgres: Be consistent about TLS/SSL terminology (#30532) * Loki: Append refId to logs uid (#30418) * Postgres: Fix indentation (#30531) * GraphNG: uPlot 1.6.3 (fix bands not filling below 0). close #30523. (#30527) * updates for e2e docker image (#30465) * GraphNG: uPlot 1.6.2 (#30521) * Docs: Update whats-new-in-v7-4.md (#30520) * Prettier: ignore build and devenv dirs (#30501) * Chore: Upgrade grabpl version (#30486) * Explore: Update styling of buttons (#30493) * Cloud Monitoring: Fix legend naming with display name override (#30440) * GraphNG: Disable Plot logging by default (#30390) * Admin: Fixes so whole org drop down is visible when adding users to org (#30481) * Docs: include Makefile option for local assets (#30455) * Footer: Fixes layout issue in footer (#30443) * TimeSeriesPanel: Fixed default value for gradientMode (#30484) * Docs: fix typo in what's new doc (#30489) * Chore: adds wait to e2e test (#30488) * chore: update packages dependent on dot-prop to fix security vulnerability (#30432) * Dashboard: Remove Icon and change copy -> Copy to clipboard in the share embedded panel modal (#30480) * Chore: fix spelling mistake (#30473) * Chore: Restrict internal imports from other packages (#30453) * Docs: What's new fixes and improvements (#30469) * Timeseries: only migrage point size when configured (#30461) * Alerting: Hides threshold handle for percentual thresholds (#30431) * Graph: Fixes so only users with correct permissions can add annotations (#30419) * Chore: update latest version to 7.4.0-beta1 (#30452) * Docs: Add whats new 7.4 links (#30463) * Update whats-new-in-v7-4.md (#30460) * docs: 7.4 what's new (Add expressions note) (#30446) * Chore: Upgrade build pipeline tool (#30456) * PanelModel: Make sure the angular options are passed to react panel type changed handler (#30441) * Expressions: Fix button icon (#30444) * ReleaseNotes: Updated changelog and release notes for 7.4.0-beta1 (#30449) * Docs: Fix img link for alert notification template (#30436) * grafana/ui: Fix internal import from grafana/data (#30439) * prevent field config from being overwritten (#30437) * PanelOptions: Refactoring applying panel and field options out of PanelModel and add property clean up for properties not in field config registry (#30389) * Dashboard: Remove template variables option from ShareModal (#30395) * Added doc content for variables inspector code change by Hugo (#30408) * Docs: update license expiration behavior for reporting (#30420) * Chore: use old version format in package.json (#30430) * Chore: upgrade NPM security vulnerabilities (#30397) * "Release: Updated versions in package to 7.5.0-pre.0" (#30428) * contribute: Add backend and configuration guidelines for PRs (#30426) * Chore: Update what's new URL (#30424) - Update to version 7.4.5 - CVE-2021-28146, CVE-2021-28147: Fix API permissions issues related to team-sync. (Enterprise) (bsc#1183811, bsc#1183809) - CVE-2021-28148: Usage insights requires signed in users. (Enterprise) (bsc#1183813) - CVE-2021-27962: Do not allow editors to incorrectly bypass permissions on the default data source. (Enterprise) (bsc#1184371) grafana-7.5.7-3.12.1.src.rpm grafana-7.5.7-3.12.1.x86_64.rpm grafana-7.5.7-3.12.1.s390x.rpm grafana-7.5.7-3.12.1.ppc64le.rpm grafana-7.5.7-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2568 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issues: Update to 11.3.0 (bsc#1187567) - Reduce or eliminate Linux dependency on the 'net-tools' package. - The 'ifconfig' and 'netstat' commands are deprecated in more recent releases of Linux. Update the Linux 'vm-support' script to use the 'ip' and 'ss' commands when available. If the new commands are missing a fallback will be used. In Particular, 'ip' has a fallback on 'ifconfig', 'ip route' will fallback on 'route' and 'ss' will fallback on 'netstat'. - Configuring OVT with the '--without-pam' option will implicitly disable 'vgauth'. - When no 'vgauth' option is given alongside '--without-pam', a warning is displayed with a message 'Building without PAM; vgauth will be disabled.'. - When '--disable-vgauth' is supplied alongside '--without-pam', no warning or error message is displayed. - When '--enable-vgauth' is supplied alongside '--without-pam', an error will be shown and the configure stage will be aborted with an error message 'Cannot enable vgauth without PAM. Please configure without --without-pam or without --enable-vgauth.' - Fix issues using GCC 11 with gtk >= 3.20 and glib >=2.66.3 - Fix more GCC 11 failures. (bsc#1185103) - Update the 'FreeBSD' specific sections of 'open-vm-tools' to adjust what necessary for 'ARM64'. - New command line tool 'vmwgfxctrl' introduced in 'open-vm-tools'. - A user can now control various aspects of the 'vmwgfx' Linux kernel module. Currently it can both display and set the current topology of the 'vmwgfx' kernel driver. It is useful when trying to configure custom resolutions on recent Linux distributions, including multi-monitor setups. - New command line tool 'vmware-alias-import' added to 'open-vm-tools' that can be used to import 'vgauth' config data and apply it to the running 'vgauth' service. - Enhancements to support or utilize various vSphere features. - In 'vmtoolsd.service' move the deprecated path '/var/run' to '/run' for it's 'PID' file. (bsc#1185175) - Finalize the 'UsrMerge'. (bsc#1029961) libvmtools-devel-11.3.0-10.1.x86_64.rpm libvmtools0-11.3.0-10.1.x86_64.rpm open-vm-tools-11.3.0-10.1.src.rpm open-vm-tools-11.3.0-10.1.x86_64.rpm open-vm-tools-desktop-11.3.0-10.1.x86_64.rpm open-vm-tools-sdmp-11.3.0-10.1.x86_64.rpm libvmtools-devel-11.3.0-10.1.aarch64.rpm libvmtools0-11.3.0-10.1.aarch64.rpm open-vm-tools-11.3.0-10.1.aarch64.rpm open-vm-tools-desktop-11.3.0-10.1.aarch64.rpm open-vm-tools-sdmp-11.3.0-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-2241 moderate SUSE Updates openSUSE-SLE 15.3 This update for grafana-status-panel fixes the following issues: - Update plugin to version 1.0.10 to fix compatibility issues with Grafana versions higher than v6.7.x. grafana-status-panel-1.0.10-3.5.1.noarch.rpm grafana-status-panel-1.0.10-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2320 important SUSE Updates openSUSE-SLE 15.3 This update for sqlite3 fixes the following issues: - Update to version 3.36.0 - CVE-2020-15358: heap-based buffer overflow in multiSelectOrderBy due to mishandling of query-flattener optimization (bsc#1173641) - CVE-2020-9327: NULL pointer dereference and segmentation fault because of generated column optimizations in isAuxiliaryVtabOperator (bsc#1164719) - CVE-2019-20218: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error (bsc#1160439) - CVE-2019-19959: memory-management error via ext/misc/zipfile.c involving embedded '\0' input (bsc#1160438) - CVE-2019-19923: improper handling of certain uses of SELECT DISTINCT in flattenSubquery may lead to null pointer dereference (bsc#1160309) - CVE-2019-19924: improper error handling in sqlite3WindowRewrite() (bsc#1159850) - CVE-2019-19925: improper handling of NULL pathname during an update of a ZIP archive (bsc#1159847) - CVE-2019-19926: improper handling of certain errors during parsing multiSelect in select.c (bsc#1159715) - CVE-2019-19880: exprListAppendList in window.c allows attackers to trigger an invalid pointer dereference (bsc#1159491) - CVE-2019-19603: during handling of CREATE TABLE and CREATE VIEW statements, does not consider confusion with a shadow table name (bsc#1158960) - CVE-2019-19646: pragma.c mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns (bsc#1158959) - CVE-2019-19645: alter.c allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements (bsc#1158958) - CVE-2019-19317: lookupName in resolve.c omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service (bsc#1158812) - CVE-2019-19244: sqlite3,sqlite2,sqlite: The function sqlite3Select in select.c allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage (bsc#1157818) - CVE-2015-3415: sqlite3VdbeExec comparison operator vulnerability (bsc#928701) - CVE-2015-3414: sqlite3,sqlite2: dequoting of collation-sequence names (bsc#928700) - CVE-2020-13434: integer overflow in sqlite3_str_vappendf (bsc#1172115) - CVE-2020-13630: (bsc#1172234: use-after-free in fts3EvalNextRow - CVE-2020-13631: virtual table allowed to be renamed to one of its shadow tables (bsc#1172236) - CVE-2020-13632: NULL pointer dereference via crafted matchinfo() query (bsc#1172240) - CVE-2020-13435: Malicious SQL statements could have crashed the process that is running SQLite (bsc#1172091) libsqlite3-0-3.36.0-3.12.1.x86_64.rpm libsqlite3-0-32bit-3.36.0-3.12.1.x86_64.rpm sqlite3-3.36.0-3.12.1.src.rpm sqlite3-3.36.0-3.12.1.x86_64.rpm sqlite3-devel-3.36.0-3.12.1.x86_64.rpm sqlite3-doc-3.36.0-3.12.1.noarch.rpm libsqlite3-0-3.36.0-3.12.1.s390x.rpm sqlite3-3.36.0-3.12.1.s390x.rpm sqlite3-devel-3.36.0-3.12.1.s390x.rpm libsqlite3-0-3.36.0-3.12.1.ppc64le.rpm sqlite3-3.36.0-3.12.1.ppc64le.rpm sqlite3-devel-3.36.0-3.12.1.ppc64le.rpm libsqlite3-0-3.36.0-3.12.1.aarch64.rpm sqlite3-3.36.0-3.12.1.aarch64.rpm sqlite3-devel-3.36.0-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2456 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam-config fixes the following issues: - Add "revoke" to the option list for 'pam_keyinit'. - Fixed an issue when pam-config fails to create a new service config file. (bsc#1187091) pam-config-1.1-3.3.1.src.rpm pam-config-1.1-3.3.1.x86_64.rpm pam-config-1.1-3.3.1.s390x.rpm pam-config-1.1-3.3.1.ppc64le.rpm pam-config-1.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2606 moderate SUSE Updates openSUSE-SLE 15.3 This update for libcbor fixes the following issues: - Implement a fix to avoid building shared library twice. (bsc#1102408) libcbor-0.5.0-4.3.1.src.rpm libcbor-devel-0.5.0-4.3.1.x86_64.rpm libcbor0-0.5.0-4.3.1.x86_64.rpm libcbor-devel-0.5.0-4.3.1.s390x.rpm libcbor0-0.5.0-4.3.1.s390x.rpm libcbor-devel-0.5.0-4.3.1.ppc64le.rpm libcbor0-0.5.0-4.3.1.ppc64le.rpm libcbor-devel-0.5.0-4.3.1.aarch64.rpm libcbor0-0.5.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2261 moderate SUSE Updates openSUSE-SLE 15.3 This update rereleases xmlsec1 for SUSE Linux Enterprise 15 SP3 to fix a migration issue. libxmlsec1-1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-nss1-1.2.28-7.9.1.x86_64.rpm libxmlsec1-openssl1-1.2.28-7.9.1.x86_64.rpm xmlsec1-1.2.28-7.9.1.src.rpm xmlsec1-1.2.28-7.9.1.x86_64.rpm xmlsec1-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-nss-devel-1.2.28-7.9.1.x86_64.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.x86_64.rpm libxmlsec1-1-1.2.28-7.9.1.s390x.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.s390x.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.s390x.rpm libxmlsec1-nss1-1.2.28-7.9.1.s390x.rpm libxmlsec1-openssl1-1.2.28-7.9.1.s390x.rpm xmlsec1-1.2.28-7.9.1.s390x.rpm xmlsec1-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-nss-devel-1.2.28-7.9.1.s390x.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.s390x.rpm libxmlsec1-1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-nss1-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-openssl1-1.2.28-7.9.1.ppc64le.rpm xmlsec1-1.2.28-7.9.1.ppc64le.rpm xmlsec1-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-nss-devel-1.2.28-7.9.1.ppc64le.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.ppc64le.rpm libxmlsec1-1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-gcrypt1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-gnutls1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-nss1-1.2.28-7.9.1.aarch64.rpm libxmlsec1-openssl1-1.2.28-7.9.1.aarch64.rpm xmlsec1-1.2.28-7.9.1.aarch64.rpm xmlsec1-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-gcrypt-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-gnutls-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-nss-devel-1.2.28-7.9.1.aarch64.rpm xmlsec1-openssl-devel-1.2.28-7.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2444 low SUSE Updates openSUSE-SLE 15.3 This update for autogen fixes the following issue: This update doesn't solve any visible issue to final users but it makes the builds reproducible. (bsc#1047218) In particular: - it normalize 'tar' - it normalize date in 'man-pages' autogen-5.18.12-3.3.1.src.rpm autogen-5.18.12-3.3.1.x86_64.rpm libopts-devel-5.18.12-3.3.1.x86_64.rpm libopts25-5.18.12-3.3.1.x86_64.rpm autogen-5.18.12-3.3.1.s390x.rpm libopts-devel-5.18.12-3.3.1.s390x.rpm libopts25-5.18.12-3.3.1.s390x.rpm autogen-5.18.12-3.3.1.ppc64le.rpm libopts-devel-5.18.12-3.3.1.ppc64le.rpm libopts25-5.18.12-3.3.1.ppc64le.rpm autogen-5.18.12-3.3.1.aarch64.rpm libopts-devel-5.18.12-3.3.1.aarch64.rpm libopts25-5.18.12-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2587 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-s390 fixes the following issues: - Do not activate 'DASD' devices after formatting. (bsc#1187012) yast2-s390-4.3.4-3.3.1.s390x.rpm yast2-s390-4.3.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2455 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7-pear fixes the following issues: - Fix for an issue when php-pear provides error messages with invalid variables. (bsc#1187372) php7-pear-1.10.19-3.3.1.noarch.rpm php7-pear-1.10.19-3.3.1.src.rpm php7-pecl-1.10.19-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2895 moderate SUSE Updates openSUSE-SLE 15.3 This update for unixODBC fixes the following issues: - ECO: Update unixODBC to 2.3.9 in SLE 15. (jsc#SLE-18004) - Fix incorrect permission for documentation files. - Update requires and baselibs for new libodbc2. - Employ shared library packaging guideline: new subpacakge libodbc2. - Update to 2.3.9: * Remove "#define UNIXODBC_SOURCE" from unixodbc_conf.h - Update to 2.3.8: * Add configure support for editline * SQLDriversW was ignoring user config * SQLDataSources Fix termination character * Fix for pooling seg fault * Make calling SQLSetStmtAttrW call the W function in the driver is its there * Try and fix race condition clearing system odbc.ini file * Remove trailing space from isql/iusql SQL * When setting connection attributes set before connect also check if the W entry poins can be used * Try calling the W error functions first if available in the driver * Add iconvperdriver configure option to allow calling unicode_setup in SQLAllocHandle * iconv handles was being lost when reusing pooled connection * Catch null copy in iniPropertyInsert * Fix a few leaks - Update to 2.3.7: * Fix for pkg-config file update on no linux platforms * Add W entry for GUI work * Various fixes for SQLBrowseConnect/W, SQLGetConnectAttr/W,and SQLSetConnectAttr/W * Fix buffer overflows in SQLConnect/W and refine behaviour of SQLGet/WritePrivateProfileString * SQLBrowseConnect/W allow disconnecting a started browse session after error * Add --with-stats-ftok-name configure option to allow the selection of a file name used to generate the IPC id when collecting stats. Default is the system odbc.ini file * Improve diag record handling with the behavior of Windows DM and export SQLCancelHandle * bug fix when SQLGetPrivateProfileString() is called to get a list of sections or a list of keys * Connection pooling: Fix liveness check for Unicode drivers libltdl7-2.4.6-3.4.1.x86_64.rpm libltdl7-32bit-2.4.6-3.4.1.x86_64.rpm libtool-2.4.6-3.4.1.src.rpm libtool-2.4.6-3.4.1.x86_64.rpm libtool-32bit-2.4.6-3.4.1.x86_64.rpm libltdl7-2.4.6-3.4.1.s390x.rpm libtool-2.4.6-3.4.1.s390x.rpm libltdl7-2.4.6-3.4.1.ppc64le.rpm libtool-2.4.6-3.4.1.ppc64le.rpm libltdl7-2.4.6-3.4.1.aarch64.rpm libtool-2.4.6-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2305 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) The following non-security bugs were fixed: - 0001-x86-sched-Treat-Intel-SNC-topology-as-default-COD-as.patch: (bsc#1187263). - alx: Fix an error handling path in 'alx_probe()' (git-fixes). - asm-generic/hyperv: Add missing function prototypes per -W1 warnings (bsc#1186071). - ASoC: fsl-asoc-card: Set .owner attribute when registering card (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ASoC: rt5659: Fix the lost powers for the HDA header (git-fixes). - ASoC: rt5682: Fix the fast discharge for headset unplugging in soundwire mode (git-fixes). - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: tas2562: Fix TDM_CFG0_SAMPRATE values (git-fixes). - batman-adv: Avoid WARN_ON timing related checks (git-fixes). - be2net: Fix an error handling path in 'be_probe()' (git-fixes). - block: Discard page cache of zone reset target range (bsc#1187402). - Bluetooth: Add a new USB ID for RTL8822CE (git-fixes). - Bluetooth: use correct lock to prevent UAF of hdev object (git-fixes). - bnxt_en: Call bnxt_ethtool_free() in bnxt_init_one() error path (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix TQM fastpath ring backing store computation (jsc#SLE-8371 bsc#1153274). - bnxt_en: Rediscover PHY capabilities after firmware reset (jsc#SLE-8371 bsc#1153274). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1177028). - bpf: Fix libelf endian handling in resolv_btfids (bsc#1177028). - bpfilter: Specify the log level for the kmsg message (bsc#1155518). - can: mcba_usb: fix memory leak in mcba_usb (git-fixes). - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cfg80211: avoid double free of PMSR request (git-fixes). - cfg80211: make certificate generation more robust (git-fixes). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - clocksource/drivers/hyper-v: Handle sched_clock differences inline (bsc#1186071). - clocksource/drivers/hyper-v: Move handling of STIMER0 interrupts (bsc#1186071). - clocksource/drivers/hyper-v: Set clocksource rating based on Hyper-V feature (bsc#1186071). - cxgb4: fix endianness when flashing boot image (jsc#SLE-15131). - cxgb4: fix sleep in atomic when flashing PHY firmware (jsc#SLE-15131). - cxgb4: fix wrong ethtool n-tuple rule lookup (jsc#SLE-15131). - cxgb4: fix wrong shift (git-fixes). - cxgb4: halt chip before flashing PHY firmware image (jsc#SLE-15131). - dax: Add a wakeup mode parameter to put_unlocked_entry() (bsc#1187411). - dax: Add an enum for specifying dax wakup mode (bsc#1187411). - dax: fix ENOMEM handling in grab_mapping_entry() (bsc#1184212). - dax: Wake up all waiters after invalidating dax entry (bsc#1187411). - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM (git-fixes). - dmaengine: fsl-dpaa2-qdma: Fix error return code in two functions (git-fixes). - dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc (git-fixes). - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM (git-fixes). - dmaengine: stedma40: add missing iounmap() on error in d40_probe() (git-fixes). - drivers: hv: Create a consistent pattern for checking Hyper-V hypercall status (bsc#1186071). - drivers: hv: Fix EXPORT_SYMBOL and tab spaces issue (bsc#1186071). - Drivers: hv: Redo Hyper-V synthetic MSR get/set functions (bsc#1186071). - Drivers: hv: vmbus: Check for pending channel interrupts before taking a CPU offline (bsc#1186071). - Drivers: hv: vmbus: Drivers: hv: vmbus: Introduce CHANNELMSG_MODIFYCHANNEL_RESPONSE (bsc#1186071). - Drivers: hv: vmbus: Drop error message when 'No request id available' (bsc#1183682). - Drivers: hv: vmbus: Handle auto EOI quirk inline (bsc#1186071). - Drivers: hv: vmbus: Introduce and negotiate VMBus protocol version 5.3 (bsc#1186071). - Drivers: hv: vmbus: Move handling of VMbus interrupts (bsc#1186071). - Drivers: hv: vmbus: Move hyperv_report_panic_msg to arch neutral code (bsc#1186071). - Drivers: hv: vmbus: remove unused function (bsc#1186071). - Drivers: hv: vmbus: Remove unused linux/version.h header (bsc#1186071). - drm/amd/amdgpu:save psp ring wptr to avoid attack (git-fixes). - drm/amd/display: Allow bandwidth validation for 0 streams (git-fixes). - drm/amd/display: Fix potential memory leak in DMUB hw_init (git-fixes). - drm/amdgpu: refine amdgpu_fru_get_product_info (git-fixes). - drm/sun4i: dw-hdmi: Make HDMI PHY into a platform device (git-fixes). - drm/tegra: sor: Do not leak runtime PM reference (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (git-fixes). - drm/vc4: hdmi: Move the HSM clock enable to runtime_pm (git-fixes). - drm: Fix use-after-free read in drm_getunique() (git-fixes). - drm: Lock pointer access in drm_master_release() (git-fixes). - dt-bindings: reset: meson8b: fix duplicate reset IDs (git-fixes). - ethtool: strset: fix message length calculation (bsc#1176447). - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed (bsc#1187408). - ext4: fix check to prevent false positive report of incorrect used inodes (bsc#1187404). - ext4: fix error code in ext4_commit_super (bsc#1187407). - ext4: fix memory leak in ext4_fill_super (bsc#1187409). - FCOE: fcoe_wwn_from_mac kABI fix (bsc#1187886). - fs: fix reporting supported extra file attributes for statx() (bsc#1187410). - ftrace: Do not blindly read the ip address in ftrace_bug() (git-fixes). - ftrace: Free the trampoline when ftrace_startup() fails (git-fixes). - fuse: BUG_ON correction in fuse_dev_splice_write() (bsc#1187356). - HID: Add BUS_VIRTUAL to hid_connect logging (git-fixes). - HID: gt683r: add missing MODULE_DEVICE_TABLE (git-fixes). - HID: hid-input: add mapping for emoji picker key (git-fixes). - HID: hid-sensor-hub: Return error for hid_set_field() failure (git-fixes). - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for Saitek X65 (git-fixes). - HID: usbhid: fix info leak in hid_submit_ctrl (git-fixes). - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() (git-fixes). - hv: hyperv.h: a few mundane typo fixes (bsc#1186071). - hv_netvsc: Add a comment clarifying batching logic (bsc#1186071). - hv_netvsc: Add error handling while switching data path (bsc#1186071). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (bsc#1186071). - hwmon: (scpi-hwmon) shows the negative temperature properly (git-fixes). - i2c: mpc: Make use of i2c_recover_bus() (git-fixes). - ice: add ndo_bpf callback for safe mode netdev ops (jsc#SLE-7926). - ice: parameterize functions responsible for Tx ring management (jsc#SLE-12878). - isdn: mISDN: netjet: Fix crash in nj_probe: (git-fixes). - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel: kexec_file: fix error return code of kexec_calculate_store_digests() (git-fixes). - kthread: prevent deadlock when kthread_mod_delayed_work() races with kthread_cancel_delayed_work_sync() (bsc#1187867). - kthread_worker: split code for canceling the delayed work timer (bsc#1187867). - kyber: fix out of bounds access when preempted (bsc#1187403). - lib: vdso: Remove CROSS_COMPILE_COMPAT_VDSO (bsc#1164648,jsc#SLE-11493). - media: mtk-mdp: Check return value of of_clk_get (git-fixes). - media: mtk-mdp: Fix a refcounting bug on error in init (git-fixes). - media: s5p-g2d: Fix a memory leak in an error handling path in 'g2d_probe()' (git-fixes). - mlxsw: reg: Spectrum-3: Enforce lowest max-shaper burst size of 11 (bsc#1176774). - mmc: meson-gx: use memcpy_to/fromio for dram-access-quirk (git-fixes). - module: limit enabling module.sig_enforce (git-fixes). - net/mlx5: Consider RoCE cap before init RDMA resources (git-fixes). - net/mlx5: E-Switch, Allow setting GUID for host PF vport (jsc#SLE-15172). - net/mlx5: E-Switch, Read PF mac address (jsc#SLE-15172). - net/mlx5: Fix PBMC register mapping (git-fixes). - net/mlx5: Fix placement of log_max_flow_counter (git-fixes). - net/mlx5: Fix sleep while atomic in mlx5_eswitch_get_vepa (git-fixes). - net/mlx5: Reset mkey index on creation (jsc#SLE-15172). - net/mlx5e: Block offload of outer header csum for UDP tunnels (git-fixes). - net/mlx5e: Fix page reclaim for dead peer hairpin (git-fixes). - net/mlx5e: Remove dependency in IPsec initialization flows (git-fixes). - net/nfc/rawsock.c: fix a permission check bug (git-fixes). - net/sched: act_ct: handle DNAT tuple collision (bsc#1154353). - net/x25: Return the correct errno code (git-fixes). - net: mvpp2: add mvpp2_phylink_to_port() helper (bsc#1187171). - netxen_nic: Fix an error handling path in 'netxen_nic_probe()' (git-fixes). - NFS: Fix a potential NULL dereference in nfs_get_client() (git-fixes). - NFS: Fix deadlock between nfs4_evict_inode() and nfs4_opendata_get_inode() (git-fixes). - NFS: Fix use-after-free in nfs4_init_client() (git-fixes). - nvmem: rmem: fix undefined reference to memremap (git-fixes). - ocfs2: fix data corruption by fallocate (bsc#1187412). - PCI: aardvark: Do not rely on jiffies while holding spinlock (git-fixes). - PCI: aardvark: Fix kernel panic during PIO transfer (git-fixes). - PCI: Add ACS quirk for Broadcom BCM57414 NIC (git-fixes). - PCI: hv: Drop msi_controller structure (bsc#1186071). - PCI: Mark some NVIDIA GPUs to avoid bus reset (git-fixes). - PCI: Mark TI C667X to avoid bus reset (git-fixes). - PCI: Work around Huawei Intelligent NIC VF FLR erratum (git-fixes). - perf/x86/intel/uncore: Fix a kernel WARNING triggered by maxcpus=1 (git-fixes). - perf/x86/intel/uncore: Remove uncore extra PCI dev HSWEP_PCI_PCU_3 (bsc#1184685). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (jsc#SLE-13513 bsc#1176919 ltc#186162 git-fixes). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - qlcnic: Fix an error handling path in 'qlcnic_probe()' (git-fixes). - radeon: use memcpy_to/fromio for UVD fw upload (git-fixes). - regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting (git-fixes). - Removed patch that was incorrectly added to SLE15-SP2 (bsc#1186949) - Revert "ecryptfs: replace BUG_ON with error handling code" (bsc#1187413). - Revert "ibmvnic: simplify reset_long_term_buff function" (bsc#1186206 ltc#191041). - Revert "PCI: PM: Do not read power state in pci_enable_device_flags()" (git-fixes). - Revert "video: hgafb: fix potential NULL pointer dereference" (git-fixes). - Revert "video: imsttfb: fix potential NULL pointer dereferences" (bsc#1152489) - s390/dasd: add missing discipline function (git-fixes). - s390/stack: fix possible register corruption with stack switch helper (bsc#1185677). - sched/debug: Fix cgroup_path[] serialization (git-fixes) - sched/fair: Keep load_avg and load_sum synced (git-fixes) - scsi: core: Fix race between handling STS_RESOURCE and completion (bsc#1187883). - scsi: fcoe: Fix mismatched fcoe_wwn_from_mac declaration (bsc#1187886). - scsi: storvsc: Enable scatterlist entry lengths > 4Kbytes (bsc#1186071). - scsi: storvsc: Parameterize number hardware queues (bsc#1186071). - scsi: ufs: Fix imprecise load calculation in devfreq window (bsc#1187795). - SCSI: ufs: fix ktime_t kabi change (bsc#1187795). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - spi: spi-nxp-fspi: move the register operation after the clock enable (git-fixes). - spi: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32_qspi_wait_cmd() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - tracing: Correct the length check which causes memory corruption (git-fixes). - tracing: Do no increment trace_clock_global() by one (git-fixes). - tracing: Do not stop recording cmdlines when tracing is off (git-fixes). - tracing: Do not stop recording comms if the trace file is being read (git-fixes). - tracing: Restructure trace_clock_global() to never block (git-fixes). - USB: core: hub: Disable autosuspend for Cypress CY7C65632 (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: debugfs: Add and remove endpoint dirs dynamically (git-fixes). - USB: dwc3: ep0: fix NULL pointer exception (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - video: hgafb: correctly handle card detect failure during probe (git-fixes). - video: hgafb: fix potential NULL pointer dereference (git-fixes). - vrf: fix maximum MTU (git-fixes). - x86/elf: Use _BITUL() macro in UAPI headers (bsc#1178134). - x86/fpu: Preserve supervisor states in sanitize_restored_user_xstate() (bsc#1178134). - x86/hyper-v: Move hv_message_type to architecture neutral module - x86/hyperv: Fix unused variable 'hi' warning in hv_apic_read (bsc#1186071). - x86/hyperv: Fix unused variable 'msr_val' warning in hv_qlock_wait (bsc#1186071). - x86/hyperv: Move hv_do_rep_hypercall to asm-generic (bsc#1186071). - x86/hyperv: remove unused linux/version.h header (bsc#1186071). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). - xen-blkback: fix compatibility bug with single page rings (git-fixes). - xen-pciback: reconfigure also from backend watch handler (git-fixes). - xen-pciback: redo VF placement in the virtual topology (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). cluster-md-kmp-azure-5.3.18-38.11.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.11.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.11.1.x86_64.rpm True kernel-azure-5.3.18-38.11.1.nosrc.rpm True kernel-azure-5.3.18-38.11.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.11.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.11.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.11.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.11.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.11.1.noarch.rpm True kernel-source-azure-5.3.18-38.11.1.noarch.rpm True kernel-source-azure-5.3.18-38.11.1.src.rpm True kernel-syms-azure-5.3.18-38.11.1.src.rpm True kernel-syms-azure-5.3.18-38.11.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.11.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.11.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.11.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2640 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client contains the following fix: - Update to version 9.2.0: (bsc#1029162) + Support IPv6 as best-effort, with fallback to IPv4 cloud-regionsrv-client-9.2.0-6.46.1.noarch.rpm cloud-regionsrv-client-9.2.0-6.46.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.1-6.46.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.46.1.noarch.rpm openSUSE-SLE-15.3-2021-2352 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3573: Fixed an UAF vulnerability in function that can allow attackers to corrupt kernel heaps and adopt further exploitations. (bsc#1186666) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) The following non-security bugs were fixed: - 0001-x86-sched-Treat-Intel-SNC-topology-as-default-COD-as.patch: (bsc#1187263). - alx: Fix an error handling path in 'alx_probe()' (git-fixes). - ASoC: fsl-asoc-card: Set .owner attribute when registering card (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Glavey TM800A550L tablet (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the Lenovo Miix 3-830 tablet (git-fixes). - ASoC: max98088: fix ni clock divider calculation (git-fixes). - ASoC: rt5659: Fix the lost powers for the HDA header (git-fixes). - ASoC: rt5682: Fix the fast discharge for headset unplugging in soundwire mode (git-fixes). - ASoC: sti-sas: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: tas2562: Fix TDM_CFG0_SAMPRATE values (git-fixes). - batman-adv: Avoid WARN_ON timing related checks (git-fixes). - be2net: Fix an error handling path in 'be_probe()' (git-fixes). - block: Discard page cache of zone reset target range (bsc#1187402). - Bluetooth: Add a new USB ID for RTL8822CE (git-fixes). - Bluetooth: use correct lock to prevent UAF of hdev object (git-fixes). - bnxt_en: Call bnxt_ethtool_free() in bnxt_init_one() error path (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix TQM fastpath ring backing store computation (jsc#SLE-8371 bsc#1153274). - bnxt_en: Rediscover PHY capabilities after firmware reset (jsc#SLE-8371 bsc#1153274). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1177028). - bpf: Fix libelf endian handling in resolv_btfids (bsc#1177028). - bpfilter: Specify the log level for the kmsg message (bsc#1155518). - can: mcba_usb: fix memory leak in mcba_usb (git-fixes). - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cfg80211: avoid double free of PMSR request (git-fixes). - cfg80211: make certificate generation more robust (git-fixes). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - cxgb4: fix endianness when flashing boot image (jsc#SLE-15131). - cxgb4: fix sleep in atomic when flashing PHY firmware (jsc#SLE-15131). - cxgb4: fix wrong ethtool n-tuple rule lookup (jsc#SLE-15131). - cxgb4: fix wrong shift (git-fixes). - cxgb4: halt chip before flashing PHY firmware image (jsc#SLE-15131). - dax: Add a wakeup mode parameter to put_unlocked_entry() (bsc#1187411). - dax: Add an enum for specifying dax wakup mode (bsc#1187411). - dax: fix ENOMEM handling in grab_mapping_entry() (bsc#1184212). - dax: Wake up all waiters after invalidating dax entry (bsc#1187411). - dmaengine: ALTERA_MSGDMA depends on HAS_IOMEM (git-fixes). - dmaengine: fsl-dpaa2-qdma: Fix error return code in two functions (git-fixes). - dmaengine: pl330: fix wrong usage of spinlock flags in dma_cyclc (git-fixes). - dmaengine: QCOM_HIDMA_MGMT depends on HAS_IOMEM (git-fixes). - dmaengine: stedma40: add missing iounmap() on error in d40_probe() (git-fixes). - drm: Fix use-after-free read in drm_getunique() (git-fixes). - drm: Lock pointer access in drm_master_release() (git-fixes). - drm/amd/amdgpu:save psp ring wptr to avoid attack (git-fixes). - drm/amd/display: Allow bandwidth validation for 0 streams (git-fixes). - drm/amd/display: Fix potential memory leak in DMUB hw_init (git-fixes). - drm/amdgpu: refine amdgpu_fru_get_product_info (git-fixes). - drm/sun4i: dw-hdmi: Make HDMI PHY into a platform device (git-fixes). - drm/tegra: sor: Do not leak runtime PM reference (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (git-fixes). - drm/vc4: hdmi: Move the HSM clock enable to runtime_pm (git-fixes). - dt-bindings: reset: meson8b: fix duplicate reset IDs (git-fixes). - ethtool: strset: fix message length calculation (bsc#1176447). - ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed (bsc#1187408). - ext4: fix check to prevent false positive report of incorrect used inodes (bsc#1187404). - ext4: fix error code in ext4_commit_super (bsc#1187407). - ext4: fix memory leak in ext4_fill_super (bsc#1187409). - FCOE: fcoe_wwn_from_mac kABI fix (bsc#1187886). - fs: fix reporting supported extra file attributes for statx() (bsc#1187410). - ftrace: Do not blindly read the ip address in ftrace_bug() (git-fixes). - ftrace: Free the trampoline when ftrace_startup() fails (git-fixes). - fuse: BUG_ON correction in fuse_dev_splice_write() (bsc#1187356). - HID: Add BUS_VIRTUAL to hid_connect logging (git-fixes). - HID: gt683r: add missing MODULE_DEVICE_TABLE (git-fixes). - HID: hid-input: add mapping for emoji picker key (git-fixes). - HID: hid-sensor-hub: Return error for hid_set_field() failure (git-fixes). - HID: quirks: Set INCREMENT_USAGE_ON_DUPLICATE for Saitek X65 (git-fixes). - HID: usbhid: fix info leak in hid_submit_ctrl (git-fixes). - HID: usbhid: Fix race between usbhid_close() and usbhid_stop() (git-fixes). - hwmon: (scpi-hwmon) shows the negative temperature properly (git-fixes). - i2c: mpc: Make use of i2c_recover_bus() (git-fixes). - ice: add ndo_bpf callback for safe mode netdev ops (jsc#SLE-7926). - ice: parameterize functions responsible for Tx ring management (jsc#SLE-12878). - isdn: mISDN: netjet: Fix crash in nj_probe: (git-fixes). - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel: kexec_file: fix error return code of kexec_calculate_store_digests() (git-fixes). - kthread_worker: split code for canceling the delayed work timer (bsc#1187867). - kthread: prevent deadlock when kthread_mod_delayed_work() races with kthread_cancel_delayed_work_sync() (bsc#1187867). - kyber: fix out of bounds access when preempted (bsc#1187403). - lib: vdso: Remove CROSS_COMPILE_COMPAT_VDSO (bsc#1164648,jsc#SLE-11493). - media: mtk-mdp: Check return value of of_clk_get (git-fixes). - media: mtk-mdp: Fix a refcounting bug on error in init (git-fixes). - media: s5p-g2d: Fix a memory leak in an error handling path in 'g2d_probe()' (git-fixes). - mlxsw: reg: Spectrum-3: Enforce lowest max-shaper burst size of 11 (bsc#1176774). - mmc: meson-gx: use memcpy_to/fromio for dram-access-quirk (git-fixes). - module: limit enabling module.sig_enforce (git-fixes). - net: mvpp2: add mvpp2_phylink_to_port() helper (bsc#1187171). - net/mlx5: Consider RoCE cap before init RDMA resources (git-fixes). - net/mlx5: E-Switch, Allow setting GUID for host PF vport (jsc#SLE-15172). - net/mlx5: E-Switch, Read PF mac address (jsc#SLE-15172). - net/mlx5: Fix PBMC register mapping (git-fixes). - net/mlx5: Fix placement of log_max_flow_counter (git-fixes). - net/mlx5: Fix sleep while atomic in mlx5_eswitch_get_vepa (git-fixes). - net/mlx5: Reset mkey index on creation (jsc#SLE-15172). - net/mlx5e: Block offload of outer header csum for UDP tunnels (git-fixes). - net/mlx5e: Fix page reclaim for dead peer hairpin (git-fixes). - net/mlx5e: Remove dependency in IPsec initialization flows (git-fixes). - net/nfc/rawsock.c: fix a permission check bug (git-fixes). - net/sched: act_ct: handle DNAT tuple collision (bsc#1154353). - net/x25: Return the correct errno code (git-fixes). - netxen_nic: Fix an error handling path in 'netxen_nic_probe()' (git-fixes). - NFS: Fix a potential NULL dereference in nfs_get_client() (git-fixes). - NFS: Fix use-after-free in nfs4_init_client() (git-fixes). - NFS: Fix deadlock between nfs4_evict_inode() and nfs4_opendata_get_inode() (git-fixes). - nvmem: rmem: fix undefined reference to memremap (git-fixes). - ocfs2: fix data corruption by fallocate (bsc#1187412). - PCI: aardvark: Do not rely on jiffies while holding spinlock (git-fixes). - PCI: aardvark: Fix kernel panic during PIO transfer (git-fixes). - PCI: Add ACS quirk for Broadcom BCM57414 NIC (git-fixes). - PCI: Mark some NVIDIA GPUs to avoid bus reset (git-fixes). - PCI: Mark TI C667X to avoid bus reset (git-fixes). - PCI: Work around Huawei Intelligent NIC VF FLR erratum (git-fixes). - perf/x86/intel/uncore: Fix a kernel WARNING triggered by maxcpus=1 (git-fixes). - perf/x86/intel/uncore: Remove uncore extra PCI dev HSWEP_PCI_PCU_3 (bsc#1184685). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (jsc#SLE-13513 bsc#1176919 ltc#186162 git-fixes). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - qlcnic: Fix an error handling path in 'qlcnic_probe()' (git-fixes). - radeon: use memcpy_to/fromio for UVD fw upload (git-fixes). - regulator: bd70528: Fix off-by-one for buck123 .n_voltages setting (git-fixes). - Removed patch that was incorrectly added to SLE15-SP2 (bsc#1186949) - Revert "ecryptfs: replace BUG_ON with error handling code" (bsc#1187413). - Revert "ibmvnic: simplify reset_long_term_buff function" (bsc#1186206 ltc#191041). - Revert "PCI: PM: Do not read power state in pci_enable_device_flags()" (git-fixes). - Revert "video: hgafb: fix potential NULL pointer dereference" (git-fixes). - Revert "video: imsttfb: fix potential NULL pointer dereferences" (bsc#1152489) - s390/dasd: add missing discipline function (git-fixes). - s390/stack: fix possible register corruption with stack switch helper (bsc#1185677). - sched/debug: Fix cgroup_path[] serialization (git-fixes) - sched/fair: Keep load_avg and load_sum synced (git-fixes) - scsi: core: Fix race between handling STS_RESOURCE and completion (bsc#1187883). - scsi: fcoe: Fix mismatched fcoe_wwn_from_mac declaration (bsc#1187886). - scsi: ufs: Fix imprecise load calculation in devfreq window (bsc#1187795). - SCSI: ufs: fix ktime_t kabi change (bsc#1187795). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - spi: spi-nxp-fspi: move the register operation after the clock enable (git-fixes). - spi: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - spi: stm32-qspi: Always wait BUSY bit to be cleared in stm32_qspi_wait_cmd() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - SUNRPC: Handle major timeout in xprt_adjust_timeout() (git-fixes). - tracing: Correct the length check which causes memory corruption (git-fixes). - tracing: Do no increment trace_clock_global() by one (git-fixes). - tracing: Do not stop recording cmdlines when tracing is off (git-fixes). - tracing: Do not stop recording comms if the trace file is being read (git-fixes). - tracing: Restructure trace_clock_global() to never block (git-fixes). - USB: core: hub: Disable autosuspend for Cypress CY7C65632 (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: core: fix kernel panic when do reboot (git-fixes). - USB: dwc3: debugfs: Add and remove endpoint dirs dynamically (git-fixes). - USB: dwc3: ep0: fix NULL pointer exception (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: f_ncm: only first packet of aggregate needs to start timer (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: fix various gadget panics on 10gbps cabling (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: eem: fix wrong eem header operation (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: gadget: f_fs: Ensure io_completion_wq is idle during unbind (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: ftdi_sio: add NovaTech OrionMX product ID (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - USB: serial: omninet: add device id for Zyxel Omni 56K Plus (git-fixes). - video: hgafb: correctly handle card detect failure during probe (git-fixes). - video: hgafb: fix potential NULL pointer dereference (git-fixes). - vrf: fix maximum MTU (git-fixes). - x86/elf: Use _BITUL() macro in UAPI headers (bsc#1178134). - x86/fpu: Preserve supervisor states in sanitize_restored_user_xstate() (bsc#1178134). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). - xen-blkback: fix compatibility bug with single page rings (git-fixes). - xen-pciback: reconfigure also from backend watch handler (git-fixes). - xen-pciback: redo VF placement in the virtual topology (git-fixes). - xen/evtchn: Change irq_info lock to raw_spinlock_t (git-fixes). - xfrm: policy: Read seqcount outside of rcu-read side in xfrm_policy_lookup_bytype (bsc#1185675). cluster-md-kmp-default-5.3.18-59.13.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.13.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.13.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True kernel-debug-5.3.18-59.13.1.nosrc.rpm True kernel-debug-5.3.18-59.13.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.13.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-5.3.18-59.13.1.nosrc.rpm True kernel-default-5.3.18-59.13.1.x86_64.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.src.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.x86_64.rpm True kernel-default-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-extra-5.3.18-59.13.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.13.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-default-optional-5.3.18-59.13.1.x86_64.rpm True kernel-devel-5.3.18-59.13.1.noarch.rpm True kernel-docs-5.3.18-59.13.1.noarch.rpm True kernel-docs-5.3.18-59.13.1.nosrc.rpm True kernel-docs-html-5.3.18-59.13.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.13.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.13.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.13.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-macros-5.3.18-59.13.1.noarch.rpm True kernel-obs-build-5.3.18-59.13.1.src.rpm True kernel-obs-build-5.3.18-59.13.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.13.1.src.rpm True kernel-obs-qa-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-5.3.18-59.13.1.nosrc.rpm True kernel-preempt-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.13.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.13.1.x86_64.rpm True kernel-source-5.3.18-59.13.1.noarch.rpm True kernel-source-5.3.18-59.13.1.src.rpm True kernel-source-vanilla-5.3.18-59.13.1.noarch.rpm True kernel-syms-5.3.18-59.13.1.src.rpm True kernel-syms-5.3.18-59.13.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.13.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.13.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.13.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.13.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.13.1.s390x.rpm True dlm-kmp-default-5.3.18-59.13.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.13.1.s390x.rpm True kernel-default-5.3.18-59.13.1.s390x.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.s390x.rpm True kernel-default-devel-5.3.18-59.13.1.s390x.rpm True kernel-default-extra-5.3.18-59.13.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.13.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.s390x.rpm True kernel-default-optional-5.3.18-59.13.1.s390x.rpm True kernel-obs-build-5.3.18-59.13.1.s390x.rpm True kernel-obs-qa-5.3.18-59.13.1.s390x.rpm True kernel-syms-5.3.18-59.13.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.13.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.13.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.13.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.13.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.13.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.13.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.13.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-5.3.18-59.13.1.ppc64le.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.13.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.13.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.13.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.13.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.13.1.ppc64le.rpm True kernel-syms-5.3.18-59.13.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.13.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.13.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.13.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.13.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.13.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.13.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-5.3.18-59.13.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.13.1.aarch64.rpm True kernel-default-5.3.18-59.13.1.aarch64.rpm True kernel-default-base-5.3.18-59.13.1.18.6.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.13.1.18.6.1.aarch64.rpm True kernel-default-devel-5.3.18-59.13.1.aarch64.rpm True kernel-default-extra-5.3.18-59.13.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.13.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-default-optional-5.3.18-59.13.1.aarch64.rpm True kernel-obs-build-5.3.18-59.13.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.13.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.13.1.aarch64.rpm True kernel-syms-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.13.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.13.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.13.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.13.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2427 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: Fixed an heap out-of-bounds write in net/netfilter/x_tables.c that could allow local provilege escalation. (bsc#1188116) - CVE-2021-33624: Fixed a bug which allows unprivileged BPF program to leak the contents of arbitrary kernel memory (and therefore, of all physical memory) via a side-channel. (bsc#1187554) - CVE-2021-0605: Fixed an out-of-bounds read which could lead to local information disclosure in the kernel with System execution privileges needed. (bsc#1187601) - CVE-2021-0512: Fixed a possible out-of-bounds write which could lead to local escalation of privilege with no additional execution privileges needed. (bsc#1187595) - CVE-2020-26558: Fixed a flaw in the Bluetooth LE and BR/EDR secure pairing that could permit a nearby man-in-the-middle attacker to identify the Passkey used during pairing. (bnc#1179610) - CVE-2021-34693: Fixed a bug in net/can/bcm.c which could allow local users to obtain sensitive information from kernel stack memory because parts of a data structure are uninitialized. (bsc#1187452) - CVE-2021-0129: Fixed an improper access control in BlueZ that may have allowed an authenticated user to potentially enable information disclosure via adjacent access. (bnc#1186463) - CVE-2020-36386: Fixed an out-of-bounds read in hci_extended_inquiry_result_evt. (bsc#1187038) - CVE-2020-24588: Fixed a bug that could allow an adversary to abuse devices that support receiving non-SSP A-MSDU frames to inject arbitrary network packets. (bsc#1185861 bsc#1185863) - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to andobtain full root privileges. (bsc#1188062) - CVE-2021-3609: Fixed a race condition in the CAN BCM networking protocol which allows for local privilege escalation. (bsc#1187215) - CVE-2020-36385: Fixed a use-after-free flaw in ucma.c which allows for local privilege escalation. (bsc#1187050) - CVE-2021-33200: Fix leakage of uninitialized bpf stack under speculation. (bsc#1186484) The following non-security bugs were fixed: - af_packet: fix the tx skb protocol in raw sockets with ETH_P_ALL (bsc#1176081). - kabi: preserve struct header_ops after bsc#1176081 fix (bsc#1176081). - net: Do not set transport offset to invalid value (bsc#1176081). - net: Introduce parse_protocol header_ops callback (bsc#1176081). - net/ethernet: Add parse_protocol header_ops support (bsc#1176081). - net/mlx5e: Remove the wrong assumption about transport offset (bsc#1176081). - net/mlx5e: Trust kernel regarding transport offset (bsc#1176081). - net/packet: Ask driver for protocol if not provided by user (bsc#1176081). - net/packet: Remove redundant skb->protocol set (bsc#1176081). - resource: Fix find_next_iomem_res() iteration issue (bsc#1181193). - scsi: scsi_dh_alua: Retry RTPG on a different path after failure (bsc#1174978 bsc#1185701). - SUNRPC in case of backlog, hand free slots directly to waiting task (bsc#1185428). - SUNRPC: More fixes for backlog congestion (bsc#1185428). - x86/crash: Add e820 reserved ranges to kdump kernel's e820 table (bsc#1181193). - x86/debug: Extend the lower bound of crash kernel low reservations (bsc#1153720). - x86/e820, ioport: Add a new I/O resource descriptor IORES_DESC_RESERVED (bsc#1181193). - x86/mm: Rework ioremap resource mapping determination (bsc#1181193). kernel-debug-4.12.14-197.99.1.nosrc.rpm True kernel-debug-base-4.12.14-197.99.1.x86_64.rpm True kernel-default-4.12.14-197.99.1.nosrc.rpm True kernel-kvmsmall-4.12.14-197.99.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-4.12.14-197.99.1.nosrc.rpm True kernel-vanilla-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-base-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-197.99.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.x86_64.rpm True kernel-default-man-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-base-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-devel-4.12.14-197.99.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.s390x.rpm True kernel-zfcpdump-4.12.14-197.99.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-197.99.1.s390x.rpm True kernel-debug-base-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-base-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-197.99.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.99.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2327 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - update to 12.22.2: - CVE-2021-22918: Out of bounds read (bsc#1187973) - CVE-2021-23362: ssri Regular Expression Denial of Service and hosted-git-info (bsc#1187977) - CVE-2021-27290: Regular Expression Denial of Service (bsc#1187976) - CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851) - CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852) - CVE-2020-7774: npm - Update y18n to fix Prototype-Pollution (bsc#1184450) nodejs12-12.22.2-4.16.1.src.rpm nodejs12-12.22.2-4.16.1.x86_64.rpm nodejs12-devel-12.22.2-4.16.1.x86_64.rpm nodejs12-docs-12.22.2-4.16.1.noarch.rpm npm12-12.22.2-4.16.1.x86_64.rpm nodejs12-12.22.2-4.16.1.s390x.rpm nodejs12-devel-12.22.2-4.16.1.s390x.rpm npm12-12.22.2-4.16.1.s390x.rpm nodejs12-12.22.2-4.16.1.ppc64le.rpm nodejs12-devel-12.22.2-4.16.1.ppc64le.rpm npm12-12.22.2-4.16.1.ppc64le.rpm nodejs12-12.22.2-4.16.1.aarch64.rpm nodejs12-devel-12.22.2-4.16.1.aarch64.rpm npm12-12.22.2-4.16.1.aarch64.rpm openSUSE-SLE-15.3-2021-2463 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pyzmq fixes the following issues: - Update to version 17.1.2 (bsc#1186945) * Fix possible hang when working with asyncio * Remove some outdated workarounds for old Cython versions * Fix some compilation with custom compilers * Remove unneeded link of libstdc++ on PyPy python-pyzmq-17.1.2-3.3.1.src.rpm python2-pyzmq-17.1.2-3.3.1.x86_64.rpm python2-pyzmq-devel-17.1.2-3.3.1.x86_64.rpm python3-pyzmq-17.1.2-3.3.1.x86_64.rpm python3-pyzmq-devel-17.1.2-3.3.1.x86_64.rpm python2-pyzmq-17.1.2-3.3.1.s390x.rpm python2-pyzmq-devel-17.1.2-3.3.1.s390x.rpm python3-pyzmq-17.1.2-3.3.1.s390x.rpm python3-pyzmq-devel-17.1.2-3.3.1.s390x.rpm python2-pyzmq-17.1.2-3.3.1.ppc64le.rpm python2-pyzmq-devel-17.1.2-3.3.1.ppc64le.rpm python3-pyzmq-17.1.2-3.3.1.ppc64le.rpm python3-pyzmq-devel-17.1.2-3.3.1.ppc64le.rpm python2-pyzmq-17.1.2-3.3.1.aarch64.rpm python2-pyzmq-devel-17.1.2-3.3.1.aarch64.rpm python3-pyzmq-17.1.2-3.3.1.aarch64.rpm python3-pyzmq-devel-17.1.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2481 moderate SUSE Updates openSUSE-SLE 15.3 This update for sysconfig fixes the following issues: - Link as Position Independent Executable (bsc#1184124). sysconfig-0.85.6-9.1.src.rpm sysconfig-0.85.6-9.1.x86_64.rpm sysconfig-netconfig-0.85.6-9.1.x86_64.rpm sysconfig-0.85.6-9.1.s390x.rpm sysconfig-netconfig-0.85.6-9.1.s390x.rpm sysconfig-0.85.6-9.1.ppc64le.rpm sysconfig-netconfig-0.85.6-9.1.ppc64le.rpm sysconfig-0.85.6-9.1.aarch64.rpm sysconfig-netconfig-0.85.6-9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2892 moderate SUSE Updates openSUSE-SLE 15.3 This update for dovecot23 fixes the following issues: Update dovecot to version 2.3.15 (jsc#SLE-19970): Security issues fixed: - CVE-2021-29157: Dovecot does not correctly escape kid and azp fields in JWT tokens. This may be used to supply attacker controlled keys to validate tokens, if attacker has local access. (bsc#1187418) Local attacker can login as any user and access their emails - CVE-2021-33515: On-path attacker could have injected plaintext commands before STARTTLS negotiation that would be executed after STARTTLS finished with the client. (bsc#1187419) Attacker can potentially steal user credentials and mails * Disconnection log messages are now more standardized across services. They also always now start with "Disconnected" prefix. * Dovecot now depends on libsystemd for systemd integration. * Removed support for Lua 5.2. Use version 5.1 or 5.3 instead. * config: Some settings are now marked as "hidden". It's discouraged to change these settings. They will no longer be visible in doveconf output, except if they have been changed or if doveconf -s parameter is used. See https://doc.dovecot.org/settings/advanced/ for details. * imap-compress: Compression level is now algorithm specific. See https://doc.dovecot.org/settings/plugin/compress-plugin/ * indexer-worker: Convert "Indexed" info logs to an event named "indexer_worker_indexing_finished". See https://doc.dovecot.org/admin_manual/list_of_events/#indexer-worker-indexing-finished + Add TSLv1.3 support to min_protocols. + Allow configuring ssl_cipher_suites. (for TLSv1.3+) + acl: Add acl_ignore_namespace setting which allows to entirely ignore ACLs for the listed namespaces. + imap: Support official RFC8970 preview/snippet syntax. Old methods of retrieving preview information via IMAP commands ("SNIPPET and PREVIEW with explicit algorithm selection") have been deprecated. + imapc: Support INDEXPVT for imapc storage to enable private message flags for cluster wide shared mailboxes. + lib-storage: Add new events: mail_opened, mail_expunge_requested, mail_expunged, mail_cache_lookup_finished. See https://doc.dovecot.org/admin_manual/list_of_events/#mail + zlib, imap-compression, fs-compress: Support compression levels that the algorithm supports. Before, we would allow hardcoded value between 1 to 9 and would default to 6. Now we allow using per-algorithm value range and default to whatever default the algorithm specifies. - *-login: Commands pipelined together with and just after the authenticate command cause these commands to be executed twice. This applies to all protocols that involve user login, which currently comprises of imap, pop3, submisision and managesieve. - *-login: Processes are supposed to disconnect the oldest non-logged in connection when process_limit was reached. This didn't actually happen with the default "high-security mode" (with service_count=1) where each connection is handled by a separate process. - *-login: When login process reaches client/process limits, oldest client connections are disconnected. If one of these was still doing anvil lookup, this caused a crash. This could happen only if the login process limits were very low or if the server was overloaded. - Fixed building with link time optimizations (-flto). - auth: Userdb iteration with passwd driver does not always return all users with some nss drivers. - dsync: Shared INBOX not synced when "mail_shared_explicit_inbox" was disabled. If a user has a shared mailbox which is another user's INBOX, dsync didn't include the mailbox in syncing unless explicit naming is enabled with "mail_shared_explicit_inbox" set to "yes". - dsync: Shared namespaces were not synced with "-n" flag. - dsync: Syncing shared INBOX failed if mail_attribute_dict was not set. If a user has a shared mailbox that is another user's INBOX, dsync failed to export the mailbox if mail attributes are disabled. - fts-solr, fts-tika: Using both Solr FTS and Tika may have caused HTTP requests to assert-crash: Panic: file http-client-request.c: line 1232 (http_client_request_send_more): assertion failed: (req->payload_input != NULL) - fts-tika: 5xx errors returned by Tika server as indexing failures. However, Tika can return 5xx for some attachments every time. So the 5xx error should be retried once, but treated as success if it happens on the retry as well. v2.3 regression. - fts-tika: v2.3.11 regression: Indexing messages with fts-tika may have resulted in Panic: file message-parser.c: line 802 (message_parser_deinit_from_parts): assertion failed: (ctx->nested_parts_count == 0 || i_stream_have_bytes_left(ctx->input)) - imap: SETMETADATA could not be used to unset metadata values. Instead NIL was handled as a "NIL" string. v2.3.14 regression. - imap: IMAP BINARY FETCH crashes at least on empty base64 body: Panic: file index-mail-binary.c: line 358 (blocks_count_lines): assertion failed: (block_count == 0 || block_idx+1 == block_count) - imap: If IMAP client using the NOTIFY command was disconnected while sending FETCH notifications to the client, imap could crash with Panic: Trying to close mailbox INBOX with open transactions. - imap: Using IMAP COMPRESS extension can cause IMAP connection to hang when IMAP commands are >8 kB long. - imapc: If remote server sent BYE but didn't immediately disconnect, it could cause infinite busy-loop. - lib-index: Corrupted cache record size in dovecot.index.cache file could have caused a crash (segfault) when accessing it. - lib-oauth2: JWT token time validation now works correctly with 32-bit systems. - lib-ssl-iostream: Checking hostnames against an SSL certificate was case-sensitive. - lib-storage: Corrupted mime.parts in dovecot.index.cache may have resulted in Panic: file imap-bodystructure.c: line 206 (part_write_body): assertion failed: (text == ((part->flags & MESSAGE_PART_FLAG_TEXT) != 0)) - lib-storage: Index rebuilding (e.g. via doveadm force-resync) didn't preserve the "hdr-pop3-uidl" header. Because of this, the next pop3 session could have accessed all of the emails' metadata to read their POP3 UIDL (opening dbox files). - listescape: When using the listescape plugin and a shared namespace the plugin didn't work properly anymore resulting in errors like: "Invalid mailbox name: Name must not have '/' character." - lmtp: Connection crashes if connection gets disconnected due to multiple bad commands and the last bad command is BDAT. - lmtp: The Dovecot-specific LMTP parameter XRCPTFORWARD was blindly forwarded by LMTP proxy without checking that the backend has support. This caused a command parameter error from the backend if it was running an older Dovecot release. This could only occur in more complex setups where the message was proxied twice; when the proxy generated the XRCPTFORWARD parameter itself the problem did not occur, so this only happened when it was forwarded. - lmtp: The LMTP proxy crashes with a panic when the remote server replies with an error while the mail is still being forwarded through a DATA/BDAT command. - lmtp: Username may have been missing from lmtp log line prefixes when it was performing autoexpunging. - master: Dovecot would incorrectly fail with haproxy 2.0.14 service checks. - master: Systemd service: Dovecot announces readiness for accepting connections earlier than it should. The following environment variables are now imported automatically and can be omitted from import_environment setting: NOTIFY_SOCKET LISTEN_FDS LISTEN_PID. - master: service { process_min_avail } was launching processes too slowly when master was forking a lot of processes. - util: Make the health-check.sh example script POSIX shell compatible. * Added new aliases for some variables. Usage of the old ones is possible, but discouraged. (These were partially added already to v2.3.13.) See https://doc.dovecot.org/configuration_manual/config_file/config_variables/ for more information. * Optimize imap/pop3/submission/managesieve proxies to use less CPU at the cost of extra memory usage. * Remove autocreate, expire, snarf and mail-filter plugins. * Remove cydir storage driver. * Remove XZ/LZMA write support. Read support will be removed in future release. * doveadm -D: Add timestamps to debug output even when LOG_STDERR_TIMESTAMP environment variable is not set. Timestamp format is taken from log_timestamp setting. * If BROKENCHAR or listescape plugin is used, the escaped folder names may be slightly different from before in some situations. This is unlikely to cause issues, although caching clients may redownload the folders. * imapc: It now enables BROKENCHAR=~ by default to escape remote folder names if necessary. This also means that if there are any '~' characters in the remote folder names, they will be visible as "~7e". * imapc: When using local index files folder names were escaped on filesystem a bit differently. This affects only if there are folder names that actually require escaping, which isn't so common. The old style folders will be automatically deleted from filesystem. * stats: Update exported metrics to be compliant with OpenMetrics standard. + doveadm: Add an optional '-p' parameter to metadata list command. If enabled, "/private", and "/shared" metadata prefixes will be prepended to the keys in the list output. + doveconf: Support environment variables in config files. See https://doc.dovecot.org/configuration_manual/config_file/config_file_syntax/#environment-variables for more details. + indexer-worker: Change indexer to disconnect from indexer-worker after each request. This allows service indexer-worker's service_count & idle_kill settings to work. These can be used to restart indexer-worker processes once in a while to reduce their memory usage. - auth: "nodelay" with various authentication mechanisms such as apop and digest-md5 crashed AUTH process if authentication failed. - auth: Auth lua script generating an error triggered an assertion failure: Panic: file db-lua.c: line 630 (auth_lua_call_password_verify): assertion failed: (lua_gettop(script->L) == 0). - configure: Fix libunwind detection to work on other than x86_64 systems. - doveadm-server: Process could crash if logging was done outside command handling. For example http-client could have done debug logging afterwards, resulting in either segfault or Panic: file http-client.c: line 642 (http_client_context_close): assertion failed: (cctx->clients_list == NULL). - dsync: Folder name escaping with BROKENCHAR didn't work completely correctly. This especially caused problems with dsync-migrations using imapc where some of the remote folder names may not have been accessible. - dsync: doveadm sync + imapc doesn't always sync all mails when doing an incremental sync (-1), which could lead to mail loss when it's used for migration. This happens only when GUIDs aren't used (i.e. imapc without imapc_features=guid-forced). - fts-tika: When tika server returns error, some mails cause Panic: file message-parser.c: line 802 (message_parser_deinit_from_parts): assertion failed: (ctx->nested_parts_count == 0 || i_stream_have_bytes_left(ctx->input)) - lib-imap: imapc parsing illegal BODYSTRUCTUREs with NILs could have resulted in crashes. This exposed that Dovecot was wrongly accepting atoms in "nstring" handling. Changed the IMAP parsing to be more strict about this now. - lib-index: If dovecot.index.cache has corrupted message size, fetching BODY/BODYSTRUCTURE may cause assert-crash: Panic: file index-mail.c: line 1140 (index_mail_parse_body_finish): assertion failed: (mail->data.parts != NULL). - lib-index: Minor error handling and race condition fixes related to rotating dovecot.index.log. These didn't usually cause problems, unless the log files were rotated rapidly. - lib-lua: Lua scripts using coroutines or lua libraries using coroutines (e.g., cqueues) panicked. - Message PREVIEW handled whitespace wrong so first space would get eaten from between words. - FTS and message PREVIEW (snippet) parsed HTML &entities case-sensitively. - lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE was written in a way that may have caused confusion for IMAP clients and also Dovecot itself when parsing it. The truncated part is now written out using application/octet-stream MIME type. - lib-oauth2: HS512 and HS384 JWT token algorithms crash when you try to use them: Panic: file hmac.c: line 26 (hmac_init): assertion failed: (meth->context_size <= MAC_MAX_CONTEXT_SIZE). - event filters: NOT keyword did not have the correct associativity. - Ignore ECONNRESET when closing socket. This avoids logging useless errors on systems like FreeBSD. - event filters: event filter syntax error may lead to Panic: file event-filter.c: line 137 (event_filter_parse): assertion failed: (state.output == NULL) - lib: timeval_cmp_margin() was broken on 32-bit systems. This could potentially have caused HTTP timeouts to be handled incorrectly. - log: instance_name wasn't used as syslog ident by the log process. - master: After a service reached process_limit and client_limit, it could have taken up to 1 second to realize that more client connections became available. During this time client connections could have been unnecessarily rejected and a warning logged: Warning: service(...): process_limit (...) reached, client connections are being dropped - stats: Crash would occur when generating openmetrics data for metrics using aggregating functions. - stats: Event filters comparing against empty strings crash the stats process. * CVE-2020-24386: Specially crafted command can cause IMAP hibernate to allow logged in user to access other people's emails and filesystem information. * Metric filter and global event filter variable syntax changed to a SQL-like format. See https://doc.dovecot.org/configuration_manual/event_filter/ * auth: Added new aliases for %{variables}. Usage of the old ones is possible, but discouraged. * auth: Removed RPA auth mechanism, SKEY auth mechanism, NTLM auth mechanism and related password schemes. * auth: Removed passdb-sia, passdb-vpopmail and userdb-vpopmail. * auth: Removed postfix postmap socket + auth: Added new fields for auth server events. These fields are now also available for all auth events. See https://doc.dovecot.org/admin_manual/list_of_events/#authentication-server for details. + imap-hibernate: Added imap_client_hibernated, imap_client_unhibernated and imap_client_unhibernate_retried events. See https://doc.dovecot.org/admin_manual/list_of_events/ for details. + lib-index: Added new mail_index_recreated event. See https://doc.dovecot.org/admin_manual/list_of_events/#mail-index-recreated + lib-sql: Support TLS options for cassandra driver. This requires cpp-driver v2.15 (or later) to work reliably. + lib-storage: Missing $HasAttachment / $HasNoAttachment flags are now added to existing mails if mail_attachment_detection_option=add-flags and it can be done inexpensively. + login proxy: Added login_proxy_max_reconnects setting (default 3) to control how many reconnections are attempted. + login proxy: imap/pop3/submission/managesieve proxying now supports reconnection retrying on more than just connect() failure. Any error except a non-temporary authentication failure will result in reconnect attempts. - auth: Lua passdb/userdb leaks stack elements per call, eventually causing the stack to become too deep and crashing the auth or auth-worker process. - auth: SASL authentication PLAIN mechanism could be used to trigger read buffer overflow. However, this doesn't seem to be exploitable in any way. - auth: v2.3.11 regression: GSSAPI authentication fails because dovecot disallows NUL bytes for it. - dict: Process used too much CPU when iterating keys, because each key used a separate write() syscall. - doveadm-server: Crash could occur if logging was done outside command handling. For example http-client could have done debug logging afterwards, resulting in either segfault or Panic: file http-client.c: line 642 (http_client_context_close): assertion failed: (cctx->clients_list == NULL). - doveadm-server: v2.3.11 regression: Trying to connect to doveadm server process via starttls assert-crashed if there were no ssl=yes listeners: Panic: file master-service-ssl.c: line 22 (master_service_ssl_init): assertion failed: (service->ssl_ctx_initialized). - fts-solr: HTTP requests may have assert-crashed: Panic: file http-client-request.c: line 1232 (http_client_request_send_more): assertion failed: (req->payload_input != NULL) - imap: IMAP NOTIFY could crash with a segmentation fault due to a bad configuration that causes errors. Sending the error responses to the client can cause the segmentation fault. This can for example happen when several namespaces use the same mail storage location. - imap: IMAP NOTIFY used on a shared namespace that doesn't actually exist (e.g. public namespace for a nonexistent user) can crash with a panic: Panic: Leaked view for index /tmp/home/asdf/mdbox/dovecot.list.index: Opened in (null):0 - imap: IMAP session can crash with QRESYNC extension if many changes are done before asking for expunged mails since last sync. - imap: Process might hang indefinitely if client disconnects after sending some long-running commands pipelined, for example FETCH+LOGOUT. - lib-compress: Mitigate crashes when configuring a not compiled in compression. Errors with compression configuration now distinguish between not supported and unknown. - lib-compression: Using xz/lzma compression in v2.3.11 could have written truncated output in some situations. This would result in "Broken pipe" read errors when trying to read it back. - lib-compression: zstd compression could have crashed in some situations: Panic: file ostream.c: line 287 (o_stream_sendv_int): assertion failed: (!stream->blocking) - lib-dict: dict client could have crashed in some rare situations when iterating keys. - lib-http: Fix several assert-crashes in HTTP client. - lib-index: v2.3.11 regression: When mails were expunged at the same time as lots of new content was being saved to the cache (e.g. cache file was lost and is being re-filled) a deadlock could occur with dovecot.index.cache / dovecot.index.log. - lib-index: v2.3.11 regression: dovecot.index.cache file was being purged (rewritten) too often when it had a field that hadn't been accessed for over 1 month, but less than 2 months. Every cache file change caused a purging in this situation. - lib-mail: MIME parts were not returned correctly by Dovecot MIME parser. Regression caused by fixing CVE-2020-12100. - lib-mail: When max nested MIME parts were reached, IMAP BODYSTRUCTURE was written in a way that may have caused confusion for both IMAP clients and Dovecot itself when parsing it. The truncated part is now written out using application/octet-stream MIME type. - lib-mail: v2.3.11 regression: Mail delivery / parsing crashed when the 10000th MIME part was message/rfc822 (or if parent was multipart/digest): Panic: file message-parser.c: line 167 (message_part_append): assertion failed: (ctx->total_parts_count <= ctx->max_total_mime_parts). - lib-oauth2: Dovecot incorrectly required oauth2 server introspection reply to contain username with invalid token. - lib-ssl-iostream, lib-dcrypt: Fix building with OpenSSL that has deprecated APIs disabled. - lib-storage: When mail's size is different from the cached one (in dovecot.index.cache or Maildir S=size in the filename), this is handled by logging "Cached message size smaller/larger than expected" error. However, in some situations this also ended up crashing with: Panic: file istream.c: line 315 (i_stream_read_memarea): assertion failed: (old_size <= _stream->pos - _stream->skip). - lib-storage: v2.3 regression: Copying/moving mails was taking much more memory than before. This was mainly visible when copying/moving thousands of mails in a single transaction. - lib-storage: v2.3.11 regression: Searching messages assert-crashed (without FTS): Panic: file message-parser.c: line 174 (message_part_finish): assertion failed: (ctx->nested_parts_count > 0). - lib: Dovecot v2.3 moved signal handlers around in ioloops, causing more CPU usage than in v2.2. - lib: Fixed JSON parsing: '\' escape sequence may have wrongly resulted in error if it happened to be at read boundary. Any NUL characters and '\u0000' will now result in parsing error instead of silently truncating the data. - lmtp, submission: Server may hang if SSL client connection disconnects during the delivery. If this happened repeated, it could have ended up reaching process_limit and preventing any further lmtp/submission deliveries. - lmtp: Proxy does not always properly log TLS connection problems as errors; in some cases, only a debug message is logged if enabled. - lmtp: The LMTP service can hang when commands are pipelined. This can particularly occur when one command in the middle of the pipeline fails. One example of this occurs for proxied LMTP transactions in which the final DATA or BDAT command is pipelined after a failing RCPT command. - login-proxy: The login_source_ips setting has no effect, and therefore the proxy source IPs are not cycled through as they should be. - master: Process was using 100% CPU in some situations when a broken service was being throttled. - pop3-login: POP3 login would fail with "Input buffer full" if the initial response for SASL was too long. - stats: Crash would occur when generating openmetrics data for metrics using aggregating functions. Update pigeonhole to version 0.5.15 * CVE-2020-28200: Sieve interpreter is not protected against abusive scripts that claim excessive resource usage. Fixed by limiting the user CPU time per single script execution and cumulatively over several script runs within a configurable timeout period. Sufficiently large CPU time usage is summed in the Sieve script binary and execution is blocked when the sum exceeds the limit within that time. The block is lifted when the script is updated after the resource usage times out. (bsc#1187420) Attacker can DoS the mail delivery system (jsc#PM-2746) ECO: Dovecot 2.3.15 version upgrade * Disconnection log messages are now more standardized across services. They also always now start with "Disconnected" prefix. * managesieve: Commands pipelined together with and just after the authenticate command cause these commands to be executed twice. * duplicate: The test was handled badly in a multiscript (sieve_before, sieve_after) scenario in which an earlier script in the sequence with a duplicate test succeeded, while a later script caused a runtime failure. In that case, the message is recorded for duplicate tracking, while the message may not actually have been delivered in the end. * editheader: Sieve interpreter entered infinite loop at startup when the "editheader" configuration listed an invalid header name. This problem can only be triggered by the administrator. * relational: The Sieve relational extension can cause a segfault at compile time. This is triggered by invalid script syntax. The segfault happens when this match type is the last argument of the test command. This situation is not possible in a valid script; positional arguments are normally present after that, which would prevent the segfault. * sieve: For some Sieve commands the provided mailbox name is not properly checked for UTF-8 validity, which can cause assert crashes at runtime when an invalid mailbox name is encountered. This can be caused by the user by writing a bad Sieve script involving the affected commands ("mailboxexists", "specialuse_exists"). This can be triggered by the remote sender only when the user has written a Sieve script that passes message content to one of the affected commands. * sieve: Large sequences of 8-bit octets passed to certain Sieve commands that create or modify message headers that allow UTF-8 text (vacation, notify and addheader) can cause the delivery or IMAP process (when IMAPSieve is used) to enter a memory-consuming semi-infinite loop that ends when the process exceeds its memory limits. Logged in users can cause these hangs only for their own processes. dovecot23-2.3.15-58.3.src.rpm dovecot23-2.3.15-58.3.x86_64.rpm dovecot23-backend-mysql-2.3.15-58.3.x86_64.rpm dovecot23-backend-pgsql-2.3.15-58.3.x86_64.rpm dovecot23-backend-sqlite-2.3.15-58.3.x86_64.rpm dovecot23-devel-2.3.15-58.3.x86_64.rpm dovecot23-fts-2.3.15-58.3.x86_64.rpm dovecot23-fts-lucene-2.3.15-58.3.x86_64.rpm dovecot23-fts-solr-2.3.15-58.3.x86_64.rpm dovecot23-fts-squat-2.3.15-58.3.x86_64.rpm dovecot23-2.3.15-58.3.s390x.rpm dovecot23-backend-mysql-2.3.15-58.3.s390x.rpm dovecot23-backend-pgsql-2.3.15-58.3.s390x.rpm dovecot23-backend-sqlite-2.3.15-58.3.s390x.rpm dovecot23-devel-2.3.15-58.3.s390x.rpm dovecot23-fts-2.3.15-58.3.s390x.rpm dovecot23-fts-lucene-2.3.15-58.3.s390x.rpm dovecot23-fts-solr-2.3.15-58.3.s390x.rpm dovecot23-fts-squat-2.3.15-58.3.s390x.rpm dovecot23-2.3.15-58.3.ppc64le.rpm dovecot23-backend-mysql-2.3.15-58.3.ppc64le.rpm dovecot23-backend-pgsql-2.3.15-58.3.ppc64le.rpm dovecot23-backend-sqlite-2.3.15-58.3.ppc64le.rpm dovecot23-devel-2.3.15-58.3.ppc64le.rpm dovecot23-fts-2.3.15-58.3.ppc64le.rpm dovecot23-fts-lucene-2.3.15-58.3.ppc64le.rpm dovecot23-fts-solr-2.3.15-58.3.ppc64le.rpm dovecot23-fts-squat-2.3.15-58.3.ppc64le.rpm dovecot23-2.3.15-58.3.aarch64.rpm dovecot23-backend-mysql-2.3.15-58.3.aarch64.rpm dovecot23-backend-pgsql-2.3.15-58.3.aarch64.rpm dovecot23-backend-sqlite-2.3.15-58.3.aarch64.rpm dovecot23-devel-2.3.15-58.3.aarch64.rpm dovecot23-fts-2.3.15-58.3.aarch64.rpm dovecot23-fts-lucene-2.3.15-58.3.aarch64.rpm dovecot23-fts-solr-2.3.15-58.3.aarch64.rpm dovecot23-fts-squat-2.3.15-58.3.aarch64.rpm openSUSE-SLE-15.3-2021-2602 moderate SUSE Updates openSUSE-SLE 15.3 This update for amazon-ecs-init fixes the following issues: - Update to version 1.53.0-1 (bsc#1187662) * Cache Agent version 1.53.0 - from version 1.52.2-2 * Cache Agent version 1.52.2 * ecs-anywhere-install: fix incorrect download url when running in cn region - from version 1.52.2-1 * Cache Agent version 1.52.2 * ecs-anywhere-install: remove dependency on gpg key server * ecs-anywhere-install: allow sandboxed apt installations amazon-ecs-init-1.53.0-4.11.1.src.rpm amazon-ecs-init-1.53.0-4.11.1.x86_64.rpm amazon-ecs-init-1.53.0-4.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3013 moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-base, patterns-server-enterprise, sles15-image fixes the following issues: - Add pattern to install necessary packages for FIPS (bsc#1183154) - Add patterns-base-fips to work also in FIPS environments (bsc#1183154) - Use the same icon in the fips pattern as the previous pattern had (bsc#1189550) patterns-base-20200124-10.5.1.src.rpm patterns-base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-32bit-20200124-10.5.1.x86_64.rpm patterns-base-base-20200124-10.5.1.x86_64.rpm patterns-base-base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-basesystem-20200124-10.5.1.x86_64.rpm patterns-base-basic_desktop-20200124-10.5.1.x86_64.rpm patterns-base-documentation-20200124-10.5.1.x86_64.rpm patterns-base-enhanced_base-20200124-10.5.1.x86_64.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-fips-20200124-10.5.1.x86_64.rpm patterns-base-minimal_base-20200124-10.5.1.x86_64.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.x86_64.rpm patterns-base-sw_management-20200124-10.5.1.x86_64.rpm patterns-base-sw_management-32bit-20200124-10.5.1.x86_64.rpm patterns-base-transactional_base-20200124-10.5.1.x86_64.rpm patterns-base-x11-20200124-10.5.1.x86_64.rpm patterns-base-x11-32bit-20200124-10.5.1.x86_64.rpm patterns-base-x11_enhanced-20200124-10.5.1.x86_64.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.x86_64.rpm patterns-base-apparmor-20200124-10.5.1.s390x.rpm patterns-base-apparmor-32bit-20200124-10.5.1.s390x.rpm patterns-base-base-20200124-10.5.1.s390x.rpm patterns-base-base-32bit-20200124-10.5.1.s390x.rpm patterns-base-basesystem-20200124-10.5.1.s390x.rpm patterns-base-basic_desktop-20200124-10.5.1.s390x.rpm patterns-base-documentation-20200124-10.5.1.s390x.rpm patterns-base-enhanced_base-20200124-10.5.1.s390x.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.s390x.rpm patterns-base-fips-20200124-10.5.1.s390x.rpm patterns-base-minimal_base-20200124-10.5.1.s390x.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.s390x.rpm patterns-base-sw_management-20200124-10.5.1.s390x.rpm patterns-base-sw_management-32bit-20200124-10.5.1.s390x.rpm patterns-base-transactional_base-20200124-10.5.1.s390x.rpm patterns-base-x11-20200124-10.5.1.s390x.rpm patterns-base-x11-32bit-20200124-10.5.1.s390x.rpm patterns-base-x11_enhanced-20200124-10.5.1.s390x.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.s390x.rpm patterns-base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-apparmor-20200124-10.5.1.ppc64le.rpm patterns-base-apparmor-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-base-20200124-10.5.1.ppc64le.rpm patterns-base-base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-basesystem-20200124-10.5.1.ppc64le.rpm patterns-base-basic_desktop-20200124-10.5.1.ppc64le.rpm patterns-base-documentation-20200124-10.5.1.ppc64le.rpm patterns-base-enhanced_base-20200124-10.5.1.ppc64le.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-fips-20200124-10.5.1.ppc64le.rpm patterns-base-minimal_base-20200124-10.5.1.ppc64le.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-sw_management-20200124-10.5.1.ppc64le.rpm patterns-base-sw_management-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-transactional_base-20200124-10.5.1.ppc64le.rpm patterns-base-x11-20200124-10.5.1.ppc64le.rpm patterns-base-x11-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-x11_enhanced-20200124-10.5.1.ppc64le.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.ppc64le.rpm patterns-base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-apparmor-20200124-10.5.1.aarch64.rpm patterns-base-apparmor-32bit-20200124-10.5.1.aarch64.rpm patterns-base-base-20200124-10.5.1.aarch64.rpm patterns-base-base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-basesystem-20200124-10.5.1.aarch64.rpm patterns-base-basic_desktop-20200124-10.5.1.aarch64.rpm patterns-base-documentation-20200124-10.5.1.aarch64.rpm patterns-base-enhanced_base-20200124-10.5.1.aarch64.rpm patterns-base-enhanced_base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-fips-20200124-10.5.1.aarch64.rpm patterns-base-minimal_base-20200124-10.5.1.aarch64.rpm patterns-base-minimal_base-32bit-20200124-10.5.1.aarch64.rpm patterns-base-sw_management-20200124-10.5.1.aarch64.rpm patterns-base-sw_management-32bit-20200124-10.5.1.aarch64.rpm patterns-base-transactional_base-20200124-10.5.1.aarch64.rpm patterns-base-x11-20200124-10.5.1.aarch64.rpm patterns-base-x11-32bit-20200124-10.5.1.aarch64.rpm patterns-base-x11_enhanced-20200124-10.5.1.aarch64.rpm patterns-base-x11_enhanced-32bit-20200124-10.5.1.aarch64.rpm patterns-base-x11_raspberrypi-20200124-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2688 moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-base, patterns-server-enterprise, sles15-image fixes the following issues: - Add pattern to install necessary packages for FIPS (bsc#1183154) - Add patterns-base-fips to work also in FIPS environments (bsc#1183154) patterns-server-enterprise-20171206-12.6.1.src.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.x86_64.rpm patterns-server-enterprise-hwcrypto-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.s390x.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.s390x.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.s390x.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.ppc64le.rpm patterns-server-enterprise-oracle_server-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-oracle_server-32bit-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-sap_server-20171206-12.6.1.aarch64.rpm patterns-server-enterprise-sap_server-32bit-20171206-12.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2575 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21705 [bsc#1188037]: SSRF bypass in FILTER_VALIDATE_URL php7-7.2.5-4.76.5.src.rpm php7-pear-Archive_Tar-7.2.5-4.76.5.noarch.rpm php7-wddx-7.2.5-4.76.5.x86_64.rpm php7-wddx-7.2.5-4.76.5.s390x.rpm php7-wddx-7.2.5-4.76.5.ppc64le.rpm php7-wddx-7.2.5-4.76.5.aarch64.rpm openSUSE-SLE-15.3-2021-2637 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdo_firebase module (bsc#1188035). - CVE-2021-21705: Fixed SSRF bypass in FILTER_VALIDATE_URL (bsc#1188037). apache2-mod_php7-7.4.6-3.22.1.x86_64.rpm php7-7.4.6-3.22.1.src.rpm php7-7.4.6-3.22.1.x86_64.rpm php7-bcmath-7.4.6-3.22.1.x86_64.rpm php7-bz2-7.4.6-3.22.1.x86_64.rpm php7-calendar-7.4.6-3.22.1.x86_64.rpm php7-ctype-7.4.6-3.22.1.x86_64.rpm php7-curl-7.4.6-3.22.1.x86_64.rpm php7-dba-7.4.6-3.22.1.x86_64.rpm php7-devel-7.4.6-3.22.1.x86_64.rpm php7-dom-7.4.6-3.22.1.x86_64.rpm php7-embed-7.4.6-3.22.1.x86_64.rpm php7-enchant-7.4.6-3.22.1.x86_64.rpm php7-exif-7.4.6-3.22.1.x86_64.rpm php7-fastcgi-7.4.6-3.22.1.x86_64.rpm php7-fileinfo-7.4.6-3.22.1.x86_64.rpm php7-firebird-7.4.6-3.22.1.x86_64.rpm php7-fpm-7.4.6-3.22.1.x86_64.rpm php7-ftp-7.4.6-3.22.1.x86_64.rpm php7-gd-7.4.6-3.22.1.x86_64.rpm php7-gettext-7.4.6-3.22.1.x86_64.rpm php7-gmp-7.4.6-3.22.1.x86_64.rpm php7-iconv-7.4.6-3.22.1.x86_64.rpm php7-intl-7.4.6-3.22.1.x86_64.rpm php7-json-7.4.6-3.22.1.x86_64.rpm php7-ldap-7.4.6-3.22.1.x86_64.rpm php7-mbstring-7.4.6-3.22.1.x86_64.rpm php7-mysql-7.4.6-3.22.1.x86_64.rpm php7-odbc-7.4.6-3.22.1.x86_64.rpm php7-opcache-7.4.6-3.22.1.x86_64.rpm php7-openssl-7.4.6-3.22.1.x86_64.rpm php7-pcntl-7.4.6-3.22.1.x86_64.rpm php7-pdo-7.4.6-3.22.1.x86_64.rpm php7-pgsql-7.4.6-3.22.1.x86_64.rpm php7-phar-7.4.6-3.22.1.x86_64.rpm php7-posix-7.4.6-3.22.1.x86_64.rpm php7-readline-7.4.6-3.22.1.x86_64.rpm php7-shmop-7.4.6-3.22.1.x86_64.rpm php7-snmp-7.4.6-3.22.1.x86_64.rpm php7-soap-7.4.6-3.22.1.x86_64.rpm php7-sockets-7.4.6-3.22.1.x86_64.rpm php7-sodium-7.4.6-3.22.1.x86_64.rpm php7-sqlite-7.4.6-3.22.1.x86_64.rpm php7-sysvmsg-7.4.6-3.22.1.x86_64.rpm php7-sysvsem-7.4.6-3.22.1.x86_64.rpm php7-sysvshm-7.4.6-3.22.1.x86_64.rpm php7-tidy-7.4.6-3.22.1.x86_64.rpm php7-tokenizer-7.4.6-3.22.1.x86_64.rpm php7-xmlreader-7.4.6-3.22.1.x86_64.rpm php7-xmlrpc-7.4.6-3.22.1.x86_64.rpm php7-xmlwriter-7.4.6-3.22.1.x86_64.rpm php7-xsl-7.4.6-3.22.1.x86_64.rpm php7-zip-7.4.6-3.22.1.x86_64.rpm php7-zlib-7.4.6-3.22.1.x86_64.rpm apache2-mod_php7-7.4.6-3.22.1.s390x.rpm php7-7.4.6-3.22.1.s390x.rpm php7-bcmath-7.4.6-3.22.1.s390x.rpm php7-bz2-7.4.6-3.22.1.s390x.rpm php7-calendar-7.4.6-3.22.1.s390x.rpm php7-ctype-7.4.6-3.22.1.s390x.rpm php7-curl-7.4.6-3.22.1.s390x.rpm php7-dba-7.4.6-3.22.1.s390x.rpm php7-devel-7.4.6-3.22.1.s390x.rpm php7-dom-7.4.6-3.22.1.s390x.rpm php7-embed-7.4.6-3.22.1.s390x.rpm php7-enchant-7.4.6-3.22.1.s390x.rpm php7-exif-7.4.6-3.22.1.s390x.rpm php7-fastcgi-7.4.6-3.22.1.s390x.rpm php7-fileinfo-7.4.6-3.22.1.s390x.rpm php7-firebird-7.4.6-3.22.1.s390x.rpm php7-fpm-7.4.6-3.22.1.s390x.rpm php7-ftp-7.4.6-3.22.1.s390x.rpm php7-gd-7.4.6-3.22.1.s390x.rpm php7-gettext-7.4.6-3.22.1.s390x.rpm php7-gmp-7.4.6-3.22.1.s390x.rpm php7-iconv-7.4.6-3.22.1.s390x.rpm php7-intl-7.4.6-3.22.1.s390x.rpm php7-json-7.4.6-3.22.1.s390x.rpm php7-ldap-7.4.6-3.22.1.s390x.rpm php7-mbstring-7.4.6-3.22.1.s390x.rpm php7-mysql-7.4.6-3.22.1.s390x.rpm php7-odbc-7.4.6-3.22.1.s390x.rpm php7-opcache-7.4.6-3.22.1.s390x.rpm php7-openssl-7.4.6-3.22.1.s390x.rpm php7-pcntl-7.4.6-3.22.1.s390x.rpm php7-pdo-7.4.6-3.22.1.s390x.rpm php7-pgsql-7.4.6-3.22.1.s390x.rpm php7-phar-7.4.6-3.22.1.s390x.rpm php7-posix-7.4.6-3.22.1.s390x.rpm php7-readline-7.4.6-3.22.1.s390x.rpm php7-shmop-7.4.6-3.22.1.s390x.rpm php7-snmp-7.4.6-3.22.1.s390x.rpm php7-soap-7.4.6-3.22.1.s390x.rpm php7-sockets-7.4.6-3.22.1.s390x.rpm php7-sodium-7.4.6-3.22.1.s390x.rpm php7-sqlite-7.4.6-3.22.1.s390x.rpm php7-sysvmsg-7.4.6-3.22.1.s390x.rpm php7-sysvsem-7.4.6-3.22.1.s390x.rpm php7-sysvshm-7.4.6-3.22.1.s390x.rpm php7-tidy-7.4.6-3.22.1.s390x.rpm php7-tokenizer-7.4.6-3.22.1.s390x.rpm php7-xmlreader-7.4.6-3.22.1.s390x.rpm php7-xmlrpc-7.4.6-3.22.1.s390x.rpm php7-xmlwriter-7.4.6-3.22.1.s390x.rpm php7-xsl-7.4.6-3.22.1.s390x.rpm php7-zip-7.4.6-3.22.1.s390x.rpm php7-zlib-7.4.6-3.22.1.s390x.rpm apache2-mod_php7-7.4.6-3.22.1.ppc64le.rpm php7-7.4.6-3.22.1.ppc64le.rpm php7-bcmath-7.4.6-3.22.1.ppc64le.rpm php7-bz2-7.4.6-3.22.1.ppc64le.rpm php7-calendar-7.4.6-3.22.1.ppc64le.rpm php7-ctype-7.4.6-3.22.1.ppc64le.rpm php7-curl-7.4.6-3.22.1.ppc64le.rpm php7-dba-7.4.6-3.22.1.ppc64le.rpm php7-devel-7.4.6-3.22.1.ppc64le.rpm php7-dom-7.4.6-3.22.1.ppc64le.rpm php7-embed-7.4.6-3.22.1.ppc64le.rpm php7-enchant-7.4.6-3.22.1.ppc64le.rpm php7-exif-7.4.6-3.22.1.ppc64le.rpm php7-fastcgi-7.4.6-3.22.1.ppc64le.rpm php7-fileinfo-7.4.6-3.22.1.ppc64le.rpm php7-firebird-7.4.6-3.22.1.ppc64le.rpm php7-fpm-7.4.6-3.22.1.ppc64le.rpm php7-ftp-7.4.6-3.22.1.ppc64le.rpm php7-gd-7.4.6-3.22.1.ppc64le.rpm php7-gettext-7.4.6-3.22.1.ppc64le.rpm php7-gmp-7.4.6-3.22.1.ppc64le.rpm php7-iconv-7.4.6-3.22.1.ppc64le.rpm php7-intl-7.4.6-3.22.1.ppc64le.rpm php7-json-7.4.6-3.22.1.ppc64le.rpm php7-ldap-7.4.6-3.22.1.ppc64le.rpm php7-mbstring-7.4.6-3.22.1.ppc64le.rpm php7-mysql-7.4.6-3.22.1.ppc64le.rpm php7-odbc-7.4.6-3.22.1.ppc64le.rpm php7-opcache-7.4.6-3.22.1.ppc64le.rpm php7-openssl-7.4.6-3.22.1.ppc64le.rpm php7-pcntl-7.4.6-3.22.1.ppc64le.rpm php7-pdo-7.4.6-3.22.1.ppc64le.rpm php7-pgsql-7.4.6-3.22.1.ppc64le.rpm php7-phar-7.4.6-3.22.1.ppc64le.rpm php7-posix-7.4.6-3.22.1.ppc64le.rpm php7-readline-7.4.6-3.22.1.ppc64le.rpm php7-shmop-7.4.6-3.22.1.ppc64le.rpm php7-snmp-7.4.6-3.22.1.ppc64le.rpm php7-soap-7.4.6-3.22.1.ppc64le.rpm php7-sockets-7.4.6-3.22.1.ppc64le.rpm php7-sodium-7.4.6-3.22.1.ppc64le.rpm php7-sqlite-7.4.6-3.22.1.ppc64le.rpm php7-sysvmsg-7.4.6-3.22.1.ppc64le.rpm php7-sysvsem-7.4.6-3.22.1.ppc64le.rpm php7-sysvshm-7.4.6-3.22.1.ppc64le.rpm php7-tidy-7.4.6-3.22.1.ppc64le.rpm php7-tokenizer-7.4.6-3.22.1.ppc64le.rpm php7-xmlreader-7.4.6-3.22.1.ppc64le.rpm php7-xmlrpc-7.4.6-3.22.1.ppc64le.rpm php7-xmlwriter-7.4.6-3.22.1.ppc64le.rpm php7-xsl-7.4.6-3.22.1.ppc64le.rpm php7-zip-7.4.6-3.22.1.ppc64le.rpm php7-zlib-7.4.6-3.22.1.ppc64le.rpm apache2-mod_php7-7.4.6-3.22.1.aarch64.rpm php7-7.4.6-3.22.1.aarch64.rpm php7-bcmath-7.4.6-3.22.1.aarch64.rpm php7-bz2-7.4.6-3.22.1.aarch64.rpm php7-calendar-7.4.6-3.22.1.aarch64.rpm php7-ctype-7.4.6-3.22.1.aarch64.rpm php7-curl-7.4.6-3.22.1.aarch64.rpm php7-dba-7.4.6-3.22.1.aarch64.rpm php7-devel-7.4.6-3.22.1.aarch64.rpm php7-dom-7.4.6-3.22.1.aarch64.rpm php7-embed-7.4.6-3.22.1.aarch64.rpm php7-enchant-7.4.6-3.22.1.aarch64.rpm php7-exif-7.4.6-3.22.1.aarch64.rpm php7-fastcgi-7.4.6-3.22.1.aarch64.rpm php7-fileinfo-7.4.6-3.22.1.aarch64.rpm php7-firebird-7.4.6-3.22.1.aarch64.rpm php7-fpm-7.4.6-3.22.1.aarch64.rpm php7-ftp-7.4.6-3.22.1.aarch64.rpm php7-gd-7.4.6-3.22.1.aarch64.rpm php7-gettext-7.4.6-3.22.1.aarch64.rpm php7-gmp-7.4.6-3.22.1.aarch64.rpm php7-iconv-7.4.6-3.22.1.aarch64.rpm php7-intl-7.4.6-3.22.1.aarch64.rpm php7-json-7.4.6-3.22.1.aarch64.rpm php7-ldap-7.4.6-3.22.1.aarch64.rpm php7-mbstring-7.4.6-3.22.1.aarch64.rpm php7-mysql-7.4.6-3.22.1.aarch64.rpm php7-odbc-7.4.6-3.22.1.aarch64.rpm php7-opcache-7.4.6-3.22.1.aarch64.rpm php7-openssl-7.4.6-3.22.1.aarch64.rpm php7-pcntl-7.4.6-3.22.1.aarch64.rpm php7-pdo-7.4.6-3.22.1.aarch64.rpm php7-pgsql-7.4.6-3.22.1.aarch64.rpm php7-phar-7.4.6-3.22.1.aarch64.rpm php7-posix-7.4.6-3.22.1.aarch64.rpm php7-readline-7.4.6-3.22.1.aarch64.rpm php7-shmop-7.4.6-3.22.1.aarch64.rpm php7-snmp-7.4.6-3.22.1.aarch64.rpm php7-soap-7.4.6-3.22.1.aarch64.rpm php7-sockets-7.4.6-3.22.1.aarch64.rpm php7-sodium-7.4.6-3.22.1.aarch64.rpm php7-sqlite-7.4.6-3.22.1.aarch64.rpm php7-sysvmsg-7.4.6-3.22.1.aarch64.rpm php7-sysvsem-7.4.6-3.22.1.aarch64.rpm php7-sysvshm-7.4.6-3.22.1.aarch64.rpm php7-tidy-7.4.6-3.22.1.aarch64.rpm php7-tokenizer-7.4.6-3.22.1.aarch64.rpm php7-xmlreader-7.4.6-3.22.1.aarch64.rpm php7-xmlrpc-7.4.6-3.22.1.aarch64.rpm php7-xmlwriter-7.4.6-3.22.1.aarch64.rpm php7-xsl-7.4.6-3.22.1.aarch64.rpm php7-zip-7.4.6-3.22.1.aarch64.rpm php7-zlib-7.4.6-3.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2447 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Version 0.349: Updated pci, usb and vendor ids (bsc#1187948). hwdata-0.349-3.24.1.noarch.rpm hwdata-0.349-3.24.1.src.rpm openSUSE-SLE-15.3-2021-2354 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: Update nodejs14 to 14.17.2. Including fixes for: - CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973) - CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976) - CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2020-7774: y18n Prototype Pollution (bsc#1184450) nodejs14-14.17.2-5.12.1.src.rpm nodejs14-14.17.2-5.12.1.x86_64.rpm nodejs14-devel-14.17.2-5.12.1.x86_64.rpm nodejs14-docs-14.17.2-5.12.1.noarch.rpm npm14-14.17.2-5.12.1.x86_64.rpm nodejs14-14.17.2-5.12.1.s390x.rpm nodejs14-devel-14.17.2-5.12.1.s390x.rpm npm14-14.17.2-5.12.1.s390x.rpm nodejs14-14.17.2-5.12.1.ppc64le.rpm nodejs14-devel-14.17.2-5.12.1.ppc64le.rpm npm14-14.17.2-5.12.1.ppc64le.rpm nodejs14-14.17.2-5.12.1.aarch64.rpm nodejs14-devel-14.17.2-5.12.1.aarch64.rpm npm14-14.17.2-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2353 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: Update nodejs10 to 10.24.1. Including fixes for - CVE-2021-22918: libuv upgrade - Out of bounds read (bsc#1187973) - CVE-2021-27290: ssri Regular Expression Denial of Service (bsc#1187976) - CVE-2021-23362: hosted-git-info Regular Expression Denial of Service (bsc#1187977) - CVE-2020-7774: y18n Prototype Pollution (bsc#1184450) - CVE-2021-3450: OpenSSL - CA certificate check bypass with X509_V_FLAG_X509_STRICT (bsc#1183851) - CVE-2021-3449: OpenSSL - NULL pointer deref in signature_algorithms processing (bsc#1183852) - reduce memory footprint of test-worker-stdio (bsc#1183155) nodejs10-10.24.1-1.36.1.src.rpm nodejs10-10.24.1-1.36.1.x86_64.rpm nodejs10-devel-10.24.1-1.36.1.x86_64.rpm nodejs10-docs-10.24.1-1.36.1.noarch.rpm npm10-10.24.1-1.36.1.x86_64.rpm nodejs10-10.24.1-1.36.1.s390x.rpm nodejs10-devel-10.24.1-1.36.1.s390x.rpm npm10-10.24.1-1.36.1.s390x.rpm nodejs10-10.24.1-1.36.1.ppc64le.rpm nodejs10-devel-10.24.1-1.36.1.ppc64le.rpm npm10-10.24.1-1.36.1.ppc64le.rpm nodejs10-10.24.1-1.36.1.aarch64.rpm nodejs10-devel-10.24.1-1.36.1.aarch64.rpm npm10-10.24.1-1.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2404 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-33910: Fixed a denial of service in systemd via unit_name_path_escape() (bsc#1188063) - Skip udev rules if 'elevator=' is used (bsc#1184994) systemd-234-24.90.1.src.rpm True systemd-bash-completion-234-24.90.1.noarch.rpm True openSUSE-SLE-15.3-2021-2457 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Update wireshark to 3.4.6. Including a fix for: - DVB-S2-BB dissector infinite loop (bsc#1186790). libwireshark14-3.4.6-3.56.1.x86_64.rpm libwiretap11-3.4.6-3.56.1.x86_64.rpm libwsutil12-3.4.6-3.56.1.x86_64.rpm wireshark-3.4.6-3.56.1.src.rpm wireshark-3.4.6-3.56.1.x86_64.rpm wireshark-devel-3.4.6-3.56.1.x86_64.rpm wireshark-ui-qt-3.4.6-3.56.1.x86_64.rpm libwireshark14-3.4.6-3.56.1.s390x.rpm libwiretap11-3.4.6-3.56.1.s390x.rpm libwsutil12-3.4.6-3.56.1.s390x.rpm wireshark-3.4.6-3.56.1.s390x.rpm wireshark-devel-3.4.6-3.56.1.s390x.rpm wireshark-ui-qt-3.4.6-3.56.1.s390x.rpm libwireshark14-3.4.6-3.56.1.ppc64le.rpm libwiretap11-3.4.6-3.56.1.ppc64le.rpm libwsutil12-3.4.6-3.56.1.ppc64le.rpm wireshark-3.4.6-3.56.1.ppc64le.rpm wireshark-devel-3.4.6-3.56.1.ppc64le.rpm wireshark-ui-qt-3.4.6-3.56.1.ppc64le.rpm libwireshark14-3.4.6-3.56.1.aarch64.rpm libwiretap11-3.4.6-3.56.1.aarch64.rpm libwsutil12-3.4.6-3.56.1.aarch64.rpm wireshark-3.4.6-3.56.1.aarch64.rpm wireshark-devel-3.4.6-3.56.1.aarch64.rpm wireshark-ui-qt-3.4.6-3.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-2610 moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - Bring up the members of HNV interface together with the HNV link. (bsc#1187182 ltc#192954) powerpc-utils-1.3.8-9.6.1.ppc64le.rpm powerpc-utils-1.3.8-9.6.1.src.rpm openSUSE-SLE-15.3-2021-2629 moderate SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issues: Update to version 7.1.4.2 (bsc#1178806) - Fix external URL connections issues when WebDav is built using 'libserf'. (bsc#1187173, bsc#1186871) - Fix a regression caused by "Multi column textbox in editengine". - Improve the build time on aarch64 to select only powerful buildhosts. - Fix an issue with PPTX where one column becomes two within one text frame. (bsc#1182969) libreoffice-7.1.4.2-14.22.10.1.src.rpm libreoffice-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-base-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-branding-upstream-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-calc-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-draw-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-gdb-pretty-printers-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-glade-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-icon-themes-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-impress-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-l10n-af-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-am-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ar-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-as-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ast-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-be-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bg-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bn_IN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-br-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-brx-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-bs-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ca-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ca_valencia-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ckb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-cs-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-cy-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-da-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-de-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dgo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dsb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-dz-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-el-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en_GB-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-en_ZA-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-eo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-es-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-et-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-eu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fa-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fur-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-fy-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ga-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gd-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-gug-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-he-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hsb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-hu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-id-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-is-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-it-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ja-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ka-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kab-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-km-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kmr_Latn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ko-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-kok-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ks-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lo-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lt-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-lv-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mai-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ml-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mni-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-mr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-my-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nb-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ne-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-nso-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-oc-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-om-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-or-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pa-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pt_BR-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-pt_PT-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ro-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ru-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-rw-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sa_IN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sat-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sd-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-si-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sid-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sq-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ss-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-st-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sv-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-sw_TZ-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-szl-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ta-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-te-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tg-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-th-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tn-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tr-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ts-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-tt-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ug-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-uk-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-uz-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-ve-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-vec-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-vi-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-xh-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zh_CN-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zh_TW-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-l10n-zu-7.1.4.2-14.22.10.1.noarch.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-math-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-writer-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.x86_64.rpm libreofficekit-7.1.4.2-14.22.10.1.x86_64.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.x86_64.rpm libreoffice-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-base-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-calc-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-draw-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-impress-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-math-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-writer-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.ppc64le.rpm libreofficekit-7.1.4.2-14.22.10.1.ppc64le.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.ppc64le.rpm libreoffice-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-base-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-base-drivers-postgresql-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-calc-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-calc-extensions-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-draw-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-filters-optional-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-gnome-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-gtk3-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-impress-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-librelogo-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-mailmerge-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-math-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-officebean-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-pyuno-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-qt5-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-sdk-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-sdk-doc-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-writer-7.1.4.2-14.22.10.1.aarch64.rpm libreoffice-writer-extensions-7.1.4.2-14.22.10.1.aarch64.rpm libreofficekit-7.1.4.2-14.22.10.1.aarch64.rpm libreofficekit-devel-7.1.4.2-14.22.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3023 moderate SUSE Updates openSUSE-SLE 15.3 This update for pidgin fixes the following issue: - Add support for the 'no_proxy' environment variable. (jsc#SLE-17111) finch-2.13.0-12.3.1.x86_64.rpm finch-devel-2.13.0-12.3.1.x86_64.rpm libpurple-2.13.0-12.3.1.x86_64.rpm libpurple-branding-upstream-2.13.0-12.3.1.noarch.rpm libpurple-devel-2.13.0-12.3.1.x86_64.rpm libpurple-lang-2.13.0-12.3.1.noarch.rpm libpurple-plugin-sametime-2.13.0-12.3.1.x86_64.rpm libpurple-tcl-2.13.0-12.3.1.x86_64.rpm pidgin-2.13.0-12.3.1.src.rpm pidgin-2.13.0-12.3.1.x86_64.rpm pidgin-devel-2.13.0-12.3.1.x86_64.rpm finch-2.13.0-12.3.1.s390x.rpm finch-devel-2.13.0-12.3.1.s390x.rpm libpurple-2.13.0-12.3.1.s390x.rpm libpurple-devel-2.13.0-12.3.1.s390x.rpm libpurple-plugin-sametime-2.13.0-12.3.1.s390x.rpm libpurple-tcl-2.13.0-12.3.1.s390x.rpm pidgin-2.13.0-12.3.1.s390x.rpm pidgin-devel-2.13.0-12.3.1.s390x.rpm finch-2.13.0-12.3.1.ppc64le.rpm finch-devel-2.13.0-12.3.1.ppc64le.rpm libpurple-2.13.0-12.3.1.ppc64le.rpm libpurple-devel-2.13.0-12.3.1.ppc64le.rpm libpurple-plugin-sametime-2.13.0-12.3.1.ppc64le.rpm libpurple-tcl-2.13.0-12.3.1.ppc64le.rpm pidgin-2.13.0-12.3.1.ppc64le.rpm pidgin-devel-2.13.0-12.3.1.ppc64le.rpm finch-2.13.0-12.3.1.aarch64.rpm finch-devel-2.13.0-12.3.1.aarch64.rpm libpurple-2.13.0-12.3.1.aarch64.rpm libpurple-devel-2.13.0-12.3.1.aarch64.rpm libpurple-plugin-sametime-2.13.0-12.3.1.aarch64.rpm libpurple-tcl-2.13.0-12.3.1.aarch64.rpm pidgin-2.13.0-12.3.1.aarch64.rpm pidgin-devel-2.13.0-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2436 important SUSE Updates openSUSE-SLE 15.3 This update for libgweather fixes the following issues: - Fix memory issues backported from "gnome-3-34". - Use new 'metno' 2.0 API. The version 1.9 was deprecated and will be removed soon. (bsc#1185651) gweather-data-3.34.0-4.3.1.noarch.rpm libgweather-3-16-3.34.0-4.3.1.x86_64.rpm libgweather-3-16-32bit-3.34.0-4.3.1.x86_64.rpm libgweather-3.34.0-4.3.1.src.rpm libgweather-devel-3.34.0-4.3.1.x86_64.rpm libgweather-lang-3.34.0-4.3.1.noarch.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.x86_64.rpm libgweather-3-16-3.34.0-4.3.1.s390x.rpm libgweather-devel-3.34.0-4.3.1.s390x.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.s390x.rpm libgweather-3-16-3.34.0-4.3.1.ppc64le.rpm libgweather-devel-3.34.0-4.3.1.ppc64le.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.ppc64le.rpm libgweather-3-16-3.34.0-4.3.1.aarch64.rpm libgweather-devel-3.34.0-4.3.1.aarch64.rpm typelib-1_0-GWeather-3_0-3.34.0-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2772 moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxrc fixes the following issues: - Read 'rules.xml' if autoyast option indicates a rules-based setup. (bsc#1187235) linuxrc-7.0.30.5-3.6.1.src.rpm linuxrc-7.0.30.5-3.6.1.x86_64.rpm linuxrc-7.0.30.5-3.6.1.s390x.rpm linuxrc-7.0.30.5-3.6.1.ppc64le.rpm linuxrc-7.0.30.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2791 moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed a missing variable initialization that can cause read from bad memory locations. (bsc#1188875) - Change PASSWORDLEN from 64 to 256 (bsc#1188034) fetchmail-6.3.26-20.14.1.src.rpm fetchmail-6.3.26-20.14.1.x86_64.rpm fetchmailconf-6.3.26-20.14.1.x86_64.rpm fetchmail-6.3.26-20.14.1.s390x.rpm fetchmailconf-6.3.26-20.14.1.s390x.rpm fetchmail-6.3.26-20.14.1.ppc64le.rpm fetchmailconf-6.3.26-20.14.1.ppc64le.rpm fetchmail-6.3.26-20.14.1.aarch64.rpm fetchmailconf-6.3.26-20.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2623 moderate SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - Add 'msDS-AdditionalDnsHostName' to the keytab. (bsc#1185420) - Add 'net-ads-join dnshostname' option. (bsc#1185420) - Fix adding 'msDS-AdditionalDnsHostName' to keytab with Windows DC. (bsc#1185420) libndr0-32bit-4.11.14+git.260.32282693e40-4.22.2.x86_64.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.x86_64.rpm samba-4.11.14+git.260.32282693e40-4.22.2.src.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.s390x.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.ppc64le.rpm libndr0-4.11.14+git.260.32282693e40-4.22.2.aarch64.rpm openSUSE-SLE-15.3-2021-2392 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: go1.16.6 (released 2021-07-12, bsc#1182345) includes a security fix to the crypto/tls package, as well as bug fixes to the compiler, and the net and net/http packages. Security issue fixed: CVE-2021-34558: Fixed crypto/tls: clients can panic when provided a certificate of the wrong type for the negotiated parameters (bsc#1188229) go1.16 release: * bsc#1188229 go#47143 CVE-2021-34558 * go#47145 security: fix CVE-2021-34558 * go#46999 net: LookupMX behaviour broken * go#46981 net: TestCVE202133195 fails if /etc/resolv.conf specifies ndots larger than 3 * go#46769 syscall: TestGroupCleanupUserNamespace test failure on Fedora * go#46657 runtime: deeply nested struct initialized with non-zero values * go#44984 net/http: server not setting Content-Length in certain cases go1.16-1.16.6-1.20.1.src.rpm go1.16-1.16.6-1.20.1.x86_64.rpm go1.16-doc-1.16.6-1.20.1.x86_64.rpm go1.16-race-1.16.6-1.20.1.x86_64.rpm go1.16-1.16.6-1.20.1.s390x.rpm go1.16-doc-1.16.6-1.20.1.s390x.rpm go1.16-1.16.6-1.20.1.ppc64le.rpm go1.16-doc-1.16.6-1.20.1.ppc64le.rpm go1.16-1.16.6-1.20.1.aarch64.rpm go1.16-doc-1.16.6-1.20.1.aarch64.rpm go1.16-race-1.16.6-1.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-2573 moderate SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issue: - From systemd v249: when enumerating time zones the timedatectl tool will now consult the 'tzdata.zi' file shipped by the IANA time zone database package, in addition to 'zone1970.tab', as before. This makes sure time zone aliases are now correctly supported. This update adds the 'tzdata.zi' file (bsc#1188127). timezone-2021a-3.47.1.src.rpm timezone-2021a-3.47.1.x86_64.rpm timezone-java-2021a-3.47.1.noarch.rpm timezone-java-2021a-3.47.1.src.rpm timezone-2021a-3.47.1.s390x.rpm timezone-2021a-3.47.1.ppc64le.rpm timezone-2021a-3.47.1.aarch64.rpm openSUSE-SLE-15.3-2021-2812 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: Security issues fixed: - CVE-2021-3631: fix SELinux label generation logic (bsc#1187871) - CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath (bsc#1188843) Non-security issues fixed: - virtlockd: Don't report error if lockspace exists (bsc#1184253) - Don't forcibly remove '--listen' arg from /etc/sysconfig/libvirtd. Add '--timeout 120' if '--listen' is not specified. (bsc#1188232) libvirt-7.1.0-6.5.1.src.rpm libvirt-7.1.0-6.5.1.x86_64.rpm libvirt-admin-7.1.0-6.5.1.x86_64.rpm libvirt-bash-completion-7.1.0-6.5.1.noarch.rpm libvirt-client-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-6.5.1.x86_64.rpm libvirt-daemon-xen-7.1.0-6.5.1.x86_64.rpm libvirt-devel-32bit-7.1.0-6.5.1.x86_64.rpm libvirt-devel-7.1.0-6.5.1.x86_64.rpm libvirt-doc-7.1.0-6.5.1.noarch.rpm libvirt-libs-7.1.0-6.5.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-6.5.1.x86_64.rpm libvirt-nss-7.1.0-6.5.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.x86_64.rpm libvirt-7.1.0-6.5.1.s390x.rpm libvirt-admin-7.1.0-6.5.1.s390x.rpm libvirt-client-7.1.0-6.5.1.s390x.rpm libvirt-daemon-7.1.0-6.5.1.s390x.rpm libvirt-daemon-config-network-7.1.0-6.5.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.s390x.rpm libvirt-daemon-hooks-7.1.0-6.5.1.s390x.rpm libvirt-daemon-lxc-7.1.0-6.5.1.s390x.rpm libvirt-daemon-qemu-7.1.0-6.5.1.s390x.rpm libvirt-devel-7.1.0-6.5.1.s390x.rpm libvirt-libs-7.1.0-6.5.1.s390x.rpm libvirt-lock-sanlock-7.1.0-6.5.1.s390x.rpm libvirt-nss-7.1.0-6.5.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.s390x.rpm libvirt-7.1.0-6.5.1.ppc64le.rpm libvirt-admin-7.1.0-6.5.1.ppc64le.rpm libvirt-client-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-6.5.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-6.5.1.ppc64le.rpm libvirt-devel-7.1.0-6.5.1.ppc64le.rpm libvirt-libs-7.1.0-6.5.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-6.5.1.ppc64le.rpm libvirt-nss-7.1.0-6.5.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.ppc64le.rpm libvirt-7.1.0-6.5.1.aarch64.rpm libvirt-admin-7.1.0-6.5.1.aarch64.rpm libvirt-client-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-6.5.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-6.5.1.aarch64.rpm libvirt-devel-7.1.0-6.5.1.aarch64.rpm libvirt-libs-7.1.0-6.5.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-6.5.1.aarch64.rpm libvirt-nss-7.1.0-6.5.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-6.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2398 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: - go1.15.14 (released 2021-07-12) includes a security fix to the crypto/tls package, as well as bug fixes to the linker, and the net package. CVE-2021-34558 Refs bsc#1175132 go1.15 release tracking * bsc#1188229 go#47143 CVE-2021-34558 * go#47144 security: fix CVE-2021-34558 * go#47012 net: LookupMX behaviour broken * go#46994 net: TestCVE202133195 fails if /etc/resolv.conf specifies ndots larger than 3 * go#46768 syscall: TestGroupCleanupUserNamespace test failure on Fedora * go#46684 x/build/cmd/release: linux-armv6l release tests aren't passing * go#46656 runtime: deeply nested struct initialized with non-zero values - Fix extraneous trailing percent character %endif% in spec file. go1.15-1.15.14-1.36.1.src.rpm go1.15-1.15.14-1.36.1.x86_64.rpm go1.15-doc-1.15.14-1.36.1.x86_64.rpm go1.15-race-1.15.14-1.36.1.x86_64.rpm go1.15-1.15.14-1.36.1.s390x.rpm go1.15-doc-1.15.14-1.36.1.s390x.rpm go1.15-1.15.14-1.36.1.ppc64le.rpm go1.15-doc-1.15.14-1.36.1.ppc64le.rpm go1.15-1.15.14-1.36.1.aarch64.rpm go1.15-doc-1.15.14-1.36.1.aarch64.rpm go1.15-race-1.15.14-1.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-4174 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnu-compilers-hpc fixes the following issues: - Add build support for gcc11 to HPC build. (jsc#SLE-18780, jsc#SLE-18781, jsc#SLE-18782, jsc#SLE-18806) gnu-compilers-hpc-1.4-3.14.3.noarch.rpm gnu-compilers-hpc-1.4-3.14.3.src.rpm gnu-compilers-hpc-devel-1.4-3.14.3.noarch.rpm gnu-compilers-hpc-macros-devel-1.4-3.14.3.noarch.rpm gnu10-compilers-hpc-1.4-3.14.3.noarch.rpm gnu10-compilers-hpc-1.4-3.14.3.src.rpm gnu10-compilers-hpc-devel-1.4-3.14.3.noarch.rpm gnu10-compilers-hpc-macros-devel-1.4-3.14.3.noarch.rpm gnu11-compilers-hpc-1.4-3.14.2.noarch.rpm gnu11-compilers-hpc-1.4-3.14.2.src.rpm gnu11-compilers-hpc-devel-1.4-3.14.2.noarch.rpm gnu11-compilers-hpc-macros-devel-1.4-3.14.2.noarch.rpm gnu8-compilers-hpc-1.4-3.14.3.noarch.rpm gnu8-compilers-hpc-1.4-3.14.3.src.rpm gnu8-compilers-hpc-devel-1.4-3.14.3.noarch.rpm gnu8-compilers-hpc-macros-devel-1.4-3.14.3.noarch.rpm gnu9-compilers-hpc-1.4-3.14.3.noarch.rpm gnu9-compilers-hpc-1.4-3.14.3.src.rpm gnu9-compilers-hpc-devel-1.4-3.14.3.noarch.rpm gnu9-compilers-hpc-macros-devel-1.4-3.14.3.noarch.rpm openSUSE-SLE-15.3-2021-2611 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Adapt the makefile to the new 'GCP Load Balancer Resource Agent'. (bsc#1186652) ldirectord-4.8.0+git30.d0077df0-8.8.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.8.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.8.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2442 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) qemu-5.2.0-23.1.src.rpm qemu-5.2.0-23.1.x86_64.rpm qemu-arm-5.2.0-23.1.x86_64.rpm qemu-audio-alsa-5.2.0-23.1.x86_64.rpm qemu-audio-pa-5.2.0-23.1.x86_64.rpm qemu-audio-spice-5.2.0-23.1.x86_64.rpm qemu-block-curl-5.2.0-23.1.x86_64.rpm qemu-block-dmg-5.2.0-23.1.x86_64.rpm qemu-block-gluster-5.2.0-23.1.x86_64.rpm qemu-block-iscsi-5.2.0-23.1.x86_64.rpm qemu-block-nfs-5.2.0-23.1.x86_64.rpm qemu-block-rbd-5.2.0-23.1.x86_64.rpm qemu-block-ssh-5.2.0-23.1.x86_64.rpm qemu-chardev-baum-5.2.0-23.1.x86_64.rpm qemu-chardev-spice-5.2.0-23.1.x86_64.rpm qemu-extra-5.2.0-23.1.x86_64.rpm qemu-guest-agent-5.2.0-23.1.x86_64.rpm qemu-hw-display-qxl-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.x86_64.rpm qemu-hw-usb-redirect-5.2.0-23.1.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-23.1.x86_64.rpm qemu-ipxe-1.0.0+-23.1.noarch.rpm qemu-ivshmem-tools-5.2.0-23.1.x86_64.rpm qemu-ksm-5.2.0-23.1.x86_64.rpm qemu-kvm-5.2.0-23.1.x86_64.rpm qemu-lang-5.2.0-23.1.x86_64.rpm qemu-microvm-5.2.0-23.1.noarch.rpm qemu-ppc-5.2.0-23.1.x86_64.rpm qemu-s390x-5.2.0-23.1.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-23.1.noarch.rpm qemu-sgabios-8-23.1.noarch.rpm qemu-skiboot-5.2.0-23.1.noarch.rpm qemu-tools-5.2.0-23.1.x86_64.rpm qemu-ui-curses-5.2.0-23.1.x86_64.rpm qemu-ui-gtk-5.2.0-23.1.x86_64.rpm qemu-ui-opengl-5.2.0-23.1.x86_64.rpm qemu-ui-spice-app-5.2.0-23.1.x86_64.rpm qemu-ui-spice-core-5.2.0-23.1.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-23.1.noarch.rpm qemu-vhost-user-gpu-5.2.0-23.1.x86_64.rpm qemu-x86-5.2.0-23.1.x86_64.rpm qemu-5.2.0-23.1.s390x.rpm qemu-arm-5.2.0-23.1.s390x.rpm qemu-audio-alsa-5.2.0-23.1.s390x.rpm qemu-audio-pa-5.2.0-23.1.s390x.rpm qemu-audio-spice-5.2.0-23.1.s390x.rpm qemu-block-curl-5.2.0-23.1.s390x.rpm qemu-block-dmg-5.2.0-23.1.s390x.rpm qemu-block-gluster-5.2.0-23.1.s390x.rpm qemu-block-iscsi-5.2.0-23.1.s390x.rpm qemu-block-nfs-5.2.0-23.1.s390x.rpm qemu-block-rbd-5.2.0-23.1.s390x.rpm qemu-block-ssh-5.2.0-23.1.s390x.rpm qemu-chardev-baum-5.2.0-23.1.s390x.rpm qemu-chardev-spice-5.2.0-23.1.s390x.rpm qemu-extra-5.2.0-23.1.s390x.rpm qemu-guest-agent-5.2.0-23.1.s390x.rpm qemu-hw-display-qxl-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.s390x.rpm qemu-hw-usb-redirect-5.2.0-23.1.s390x.rpm qemu-hw-usb-smartcard-5.2.0-23.1.s390x.rpm qemu-ivshmem-tools-5.2.0-23.1.s390x.rpm qemu-ksm-5.2.0-23.1.s390x.rpm qemu-kvm-5.2.0-23.1.s390x.rpm qemu-lang-5.2.0-23.1.s390x.rpm qemu-ppc-5.2.0-23.1.s390x.rpm qemu-s390x-5.2.0-23.1.s390x.rpm qemu-tools-5.2.0-23.1.s390x.rpm qemu-ui-curses-5.2.0-23.1.s390x.rpm qemu-ui-gtk-5.2.0-23.1.s390x.rpm qemu-ui-opengl-5.2.0-23.1.s390x.rpm qemu-ui-spice-app-5.2.0-23.1.s390x.rpm qemu-ui-spice-core-5.2.0-23.1.s390x.rpm qemu-vhost-user-gpu-5.2.0-23.1.s390x.rpm qemu-x86-5.2.0-23.1.s390x.rpm qemu-5.2.0-23.1.ppc64le.rpm qemu-arm-5.2.0-23.1.ppc64le.rpm qemu-audio-alsa-5.2.0-23.1.ppc64le.rpm qemu-audio-pa-5.2.0-23.1.ppc64le.rpm qemu-audio-spice-5.2.0-23.1.ppc64le.rpm qemu-block-curl-5.2.0-23.1.ppc64le.rpm qemu-block-dmg-5.2.0-23.1.ppc64le.rpm qemu-block-gluster-5.2.0-23.1.ppc64le.rpm qemu-block-iscsi-5.2.0-23.1.ppc64le.rpm qemu-block-nfs-5.2.0-23.1.ppc64le.rpm qemu-block-rbd-5.2.0-23.1.ppc64le.rpm qemu-block-ssh-5.2.0-23.1.ppc64le.rpm qemu-chardev-baum-5.2.0-23.1.ppc64le.rpm qemu-chardev-spice-5.2.0-23.1.ppc64le.rpm qemu-extra-5.2.0-23.1.ppc64le.rpm qemu-guest-agent-5.2.0-23.1.ppc64le.rpm qemu-hw-display-qxl-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-23.1.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-23.1.ppc64le.rpm qemu-ivshmem-tools-5.2.0-23.1.ppc64le.rpm qemu-ksm-5.2.0-23.1.ppc64le.rpm qemu-lang-5.2.0-23.1.ppc64le.rpm qemu-ppc-5.2.0-23.1.ppc64le.rpm qemu-s390x-5.2.0-23.1.ppc64le.rpm qemu-tools-5.2.0-23.1.ppc64le.rpm qemu-ui-curses-5.2.0-23.1.ppc64le.rpm qemu-ui-gtk-5.2.0-23.1.ppc64le.rpm qemu-ui-opengl-5.2.0-23.1.ppc64le.rpm qemu-ui-spice-app-5.2.0-23.1.ppc64le.rpm qemu-ui-spice-core-5.2.0-23.1.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-23.1.ppc64le.rpm qemu-x86-5.2.0-23.1.ppc64le.rpm qemu-5.2.0-23.1.aarch64.rpm qemu-arm-5.2.0-23.1.aarch64.rpm qemu-audio-alsa-5.2.0-23.1.aarch64.rpm qemu-audio-pa-5.2.0-23.1.aarch64.rpm qemu-audio-spice-5.2.0-23.1.aarch64.rpm qemu-block-curl-5.2.0-23.1.aarch64.rpm qemu-block-dmg-5.2.0-23.1.aarch64.rpm qemu-block-gluster-5.2.0-23.1.aarch64.rpm qemu-block-iscsi-5.2.0-23.1.aarch64.rpm qemu-block-nfs-5.2.0-23.1.aarch64.rpm qemu-block-rbd-5.2.0-23.1.aarch64.rpm qemu-block-ssh-5.2.0-23.1.aarch64.rpm qemu-chardev-baum-5.2.0-23.1.aarch64.rpm qemu-chardev-spice-5.2.0-23.1.aarch64.rpm qemu-extra-5.2.0-23.1.aarch64.rpm qemu-guest-agent-5.2.0-23.1.aarch64.rpm qemu-hw-display-qxl-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-23.1.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-23.1.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-23.1.aarch64.rpm qemu-hw-usb-redirect-5.2.0-23.1.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-23.1.aarch64.rpm qemu-ivshmem-tools-5.2.0-23.1.aarch64.rpm qemu-ksm-5.2.0-23.1.aarch64.rpm qemu-lang-5.2.0-23.1.aarch64.rpm qemu-ppc-5.2.0-23.1.aarch64.rpm qemu-s390x-5.2.0-23.1.aarch64.rpm qemu-tools-5.2.0-23.1.aarch64.rpm qemu-ui-curses-5.2.0-23.1.aarch64.rpm qemu-ui-gtk-5.2.0-23.1.aarch64.rpm qemu-ui-opengl-5.2.0-23.1.aarch64.rpm qemu-ui-spice-app-5.2.0-23.1.aarch64.rpm qemu-ui-spice-core-5.2.0-23.1.aarch64.rpm qemu-vhost-user-gpu-5.2.0-23.1.aarch64.rpm qemu-x86-5.2.0-23.1.aarch64.rpm openSUSE-SLE-15.3-2021-2474 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3595: Fixed slirp: invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366) - CVE-2021-3592: Fix for slirp: invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364) - CVE-2021-3594: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367) - CVE-2021-3593: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365) - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) qemu-4.2.1-11.25.2.src.rpm qemu-s390-4.2.1-11.25.2.x86_64.rpm qemu-s390-4.2.1-11.25.2.s390x.rpm qemu-s390-4.2.1-11.25.2.ppc64le.rpm qemu-s390-4.2.1-11.25.2.aarch64.rpm openSUSE-SLE-15.3-2021-2591 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3595: Fixed slirp: invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366) - CVE-2021-3592: Fix for slirp: invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364) - CVE-2021-3594: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367) - CVE-2021-3593: Fix for slirp: invalid pointer initialization may lead to information disclosure (udp6) (bsc#1187365) - CVE-2021-3582: Fix possible mremap overflow in the pvrdma (bsc#1187499) - CVE-2021-3607: Ensure correct input on ring init (bsc#1187539) - CVE-2021-3608: Fix the ring init error flow (bsc#1187538) - CVE-2021-3611: Fix intel-hda segmentation fault due to stack overflow (bsc#1187529) - CVE-2020-25085: Fix out-of-bounds access issue while doing multi block SDMA (bsc#1176681) Other issues fixed: - QEMU BIOS fails to read stage2 loader (on s390x)(bsc#1186290) - Fix qemu hang while cancelling migrating hugepage vm (bsc#1185591) qemu-3.1.1.1-9.30.2.src.rpm qemu-audio-oss-3.1.1.1-9.30.2.x86_64.rpm openSUSE-SLE-15.3-2021-2439 moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22925: TELNET stack contents disclosure again. (bsc#1188220) - CVE-2021-22924: Bad connection reuse due to flawed path name checks. (bsc#1188219) - CVE-2021-22923: Insufficiently Protected Credentials. (bsc#1188218) - CVE-2021-22922: Wrong content via metalink not discarded. (bsc#1188217) curl-7.66.0-4.22.1.src.rpm curl-7.66.0-4.22.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.22.1.x86_64.rpm libcurl-devel-7.66.0-4.22.1.x86_64.rpm libcurl4-32bit-7.66.0-4.22.1.x86_64.rpm libcurl4-7.66.0-4.22.1.x86_64.rpm curl-7.66.0-4.22.1.s390x.rpm libcurl-devel-7.66.0-4.22.1.s390x.rpm libcurl4-7.66.0-4.22.1.s390x.rpm curl-7.66.0-4.22.1.ppc64le.rpm libcurl-devel-7.66.0-4.22.1.ppc64le.rpm libcurl4-7.66.0-4.22.1.ppc64le.rpm curl-7.66.0-4.22.1.aarch64.rpm libcurl-devel-7.66.0-4.22.1.aarch64.rpm libcurl4-7.66.0-4.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-2810 moderate SUSE Updates openSUSE-SLE 15.3 This update for dbus-1 fixes the following issues: - CVE-2020-12049: truncated messages lead to resource exhaustion. (bsc#1172505) dbus-1-1.12.2-8.11.2.src.rpm True dbus-1-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-32bit-1.12.2-8.11.2.x86_64.rpm True dbus-1-devel-doc-1.12.2-8.11.2.noarch.rpm True dbus-1-x11-1.12.2-8.11.1.src.rpm True dbus-1-x11-1.12.2-8.11.1.x86_64.rpm True libdbus-1-3-1.12.2-8.11.2.x86_64.rpm True libdbus-1-3-32bit-1.12.2-8.11.2.x86_64.rpm True dbus-1-1.12.2-8.11.2.s390x.rpm True dbus-1-devel-1.12.2-8.11.2.s390x.rpm True dbus-1-x11-1.12.2-8.11.1.s390x.rpm True libdbus-1-3-1.12.2-8.11.2.s390x.rpm True dbus-1-1.12.2-8.11.2.ppc64le.rpm True dbus-1-devel-1.12.2-8.11.2.ppc64le.rpm True dbus-1-x11-1.12.2-8.11.1.ppc64le.rpm True libdbus-1-3-1.12.2-8.11.2.ppc64le.rpm True dbus-1-1.12.2-8.11.2.aarch64.rpm True dbus-1-devel-1.12.2-8.11.2.aarch64.rpm True dbus-1-x11-1.12.2-8.11.1.aarch64.rpm True libdbus-1-3-1.12.2-8.11.2.aarch64.rpm True openSUSE-SLE-15.3-2021-2393 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.12.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2021-29 (bsc#1188275) * CVE-2021-29970 (bmo#1709976): Use-after-free in accessibility features of a document * CVE-2021-30547 (bmo#1715766): Out of bounds write in ANGLE * CVE-2021-29976 (bmo#1700895, bmo#1703334, bmo#1706910, bmo#1711576, bmo#1714391): Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12 MozillaFirefox-78.12.0-8.46.1.src.rpm MozillaFirefox-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-buildsymbols-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-devel-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.x86_64.rpm MozillaFirefox-78.12.0-8.46.1.s390x.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.s390x.rpm MozillaFirefox-devel-78.12.0-8.46.1.s390x.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.s390x.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.s390x.rpm MozillaFirefox-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-devel-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.ppc64le.rpm MozillaFirefox-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-branding-upstream-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-devel-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-translations-common-78.12.0-8.46.1.aarch64.rpm MozillaFirefox-translations-other-78.12.0-8.46.1.aarch64.rpm openSUSE-SLE-15.3-2021-2412 moderate SUSE Updates openSUSE-SLE 15.3 This update for containerd fixes the following issues: - CVE-2021-32760: Fixed a bug which allows untrusted container images to change permissions in the host's filesystem. (bsc#1188282) containerd-1.4.4-5.36.1.src.rpm containerd-1.4.4-5.36.1.x86_64.rpm containerd-ctr-1.4.4-5.36.1.x86_64.rpm containerd-1.4.4-5.36.1.s390x.rpm containerd-ctr-1.4.4-5.36.1.s390x.rpm containerd-1.4.4-5.36.1.ppc64le.rpm containerd-ctr-1.4.4-5.36.1.ppc64le.rpm containerd-1.4.4-5.36.1.aarch64.rpm containerd-ctr-1.4.4-5.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2477 important SUSE Updates openSUSE-SLE 15.3 This update for growpart-rootgrow fixes the following issues: - Change the logic to determine the partition ID of the root filesystem (bsc#1188179) + Previously the algorithm depended on the order of the output from lsblk using an index to keep track of the known partitions. The new implementation is order independent, it depends on the partition ID being numerical in nature and at the end of the device string. - Add coverage config. Omit version module from coverage check. - Fix string formatting for flake8 formatting. - Replace travis testing with GitHub actions. Add ci testing workflow action. - Switch implementation to use Popen for Python 3.4 compatibility (bsc#1165198) - Bump version: 1.0.2 → 1.0.3 - Fixed unit tests and style This clobbers several fixes into one. Sorry about it but I started on already made changes done by other people. This commit includes several pep8 style fixes mostly on the indentation level. In addition it fixes the unit tests to really cover all code and to make the exception tests really effective. - Switch to use Popen instead of run The run() fuction in the subprocess module was implemented after Python 3.4. However, we need to support Python 3.4 for SLES 12 - Bump version: 1.0.1 → 1.0.2 - Package LICENSE file The LICENSE file is part of the source repo but was not packaged with the rpm package growpart-rootgrow-1.0.4-1.6.1.noarch.rpm growpart-rootgrow-1.0.4-1.6.1.src.rpm openSUSE-SLE-15.3-2021-2654 moderate SUSE Updates openSUSE-SLE 15.3 This update for system-config-printer fixes the following issues: - Require python3-requests to avoid printer installation failure due to missing python module. (bsc#1116867) python3-cupshelpers-1.5.7-8.3.1.noarch.rpm system-config-printer-1.5.7-8.3.1.src.rpm system-config-printer-1.5.7-8.3.1.x86_64.rpm system-config-printer-applet-1.5.7-8.3.1.noarch.rpm system-config-printer-common-1.5.7-8.3.1.noarch.rpm system-config-printer-common-lang-1.5.7-8.3.1.noarch.rpm system-config-printer-dbus-service-1.5.7-8.3.1.noarch.rpm udev-configure-printer-1.5.7-8.3.1.x86_64.rpm system-config-printer-1.5.7-8.3.1.s390x.rpm udev-configure-printer-1.5.7-8.3.1.s390x.rpm system-config-printer-1.5.7-8.3.1.ppc64le.rpm udev-configure-printer-1.5.7-8.3.1.ppc64le.rpm system-config-printer-1.5.7-8.3.1.aarch64.rpm udev-configure-printer-1.5.7-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2458 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Mozilla Thunderbird 78.12 * fixed: Sending an email containing HTML links with spaces in the URL sometimes resulted in broken links * fixed: Folder Pane display theme fixes for macOS * fixed: Chat account settings did not always save as expected * fixed: RSS feed subscriptions sometimes lost * fixed: Calendar: A parsing error for alarm triggers of type "DURATION" caused sync problems for some users * fixed: Various security fixes MFSA 2021-30 (bsc#1188275) * CVE-2021-29969: IMAP server responses sent by a MITM prior to STARTTLS could be processed * CVE-2021-29970: Use-after-free in accessibility features of a document * CVE-2021-30547: Out of bounds write in ANGLE * CVE-2021-29976: Memory safety bugs fixed in Thunderbird 78.12 MozillaThunderbird-78.12.0-8.33.1.src.rpm MozillaThunderbird-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.x86_64.rpm MozillaThunderbird-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.s390x.rpm MozillaThunderbird-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.ppc64le.rpm MozillaThunderbird-78.12.0-8.33.1.aarch64.rpm MozillaThunderbird-translations-common-78.12.0-8.33.1.aarch64.rpm MozillaThunderbird-translations-other-78.12.0-8.33.1.aarch64.rpm openSUSE-SLE-15.3-2021-2618 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs8 fixes the following issues: - update to npm 6.14.13 - CVE-2021-27290: Fixed ssri Regular Expression Denial of Service. (bsc#1187976) - CVE-2021-23362: Fixed hosted-git-info Regular Expression Denial of Service. (bsc#1187977) - CVE-2020-7774: fixes y18n Prototype Pollution. (bsc#1184450) nodejs8-8.17.0-10.12.2.src.rpm nodejs8-8.17.0-10.12.2.x86_64.rpm nodejs8-devel-8.17.0-10.12.2.x86_64.rpm nodejs8-docs-8.17.0-10.12.2.noarch.rpm npm8-8.17.0-10.12.2.x86_64.rpm nodejs8-8.17.0-10.12.2.s390x.rpm nodejs8-devel-8.17.0-10.12.2.s390x.rpm npm8-8.17.0-10.12.2.s390x.rpm nodejs8-8.17.0-10.12.2.ppc64le.rpm nodejs8-devel-8.17.0-10.12.2.ppc64le.rpm npm8-8.17.0-10.12.2.ppc64le.rpm nodejs8-8.17.0-10.12.2.aarch64.rpm nodejs8-devel-8.17.0-10.12.2.aarch64.rpm npm8-8.17.0-10.12.2.aarch64.rpm openSUSE-SLE-15.3-2021-2410 important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-33910: Fixed a denial of service (stack exhaustion) in systemd (PID 1) (bsc#1188063) libsystemd0-246.13-7.8.1.x86_64.rpm libsystemd0-32bit-246.13-7.8.1.x86_64.rpm libudev-devel-246.13-7.8.1.x86_64.rpm libudev-devel-32bit-246.13-7.8.1.x86_64.rpm libudev1-246.13-7.8.1.x86_64.rpm libudev1-32bit-246.13-7.8.1.x86_64.rpm nss-myhostname-246.13-7.8.1.x86_64.rpm nss-myhostname-32bit-246.13-7.8.1.x86_64.rpm nss-mymachines-246.13-7.8.1.x86_64.rpm nss-mymachines-32bit-246.13-7.8.1.x86_64.rpm nss-resolve-246.13-7.8.1.x86_64.rpm nss-systemd-246.13-7.8.1.x86_64.rpm systemd-246.13-7.8.1.src.rpm systemd-246.13-7.8.1.x86_64.rpm systemd-32bit-246.13-7.8.1.x86_64.rpm systemd-container-246.13-7.8.1.x86_64.rpm systemd-coredump-246.13-7.8.1.x86_64.rpm systemd-devel-246.13-7.8.1.x86_64.rpm systemd-doc-246.13-7.8.1.x86_64.rpm systemd-journal-remote-246.13-7.8.1.x86_64.rpm systemd-lang-246.13-7.8.1.noarch.rpm systemd-logger-246.13-7.8.1.x86_64.rpm systemd-network-246.13-7.8.1.x86_64.rpm systemd-sysvinit-246.13-7.8.1.x86_64.rpm udev-246.13-7.8.1.x86_64.rpm libsystemd0-246.13-7.8.1.s390x.rpm libudev-devel-246.13-7.8.1.s390x.rpm libudev1-246.13-7.8.1.s390x.rpm nss-myhostname-246.13-7.8.1.s390x.rpm nss-mymachines-246.13-7.8.1.s390x.rpm nss-resolve-246.13-7.8.1.s390x.rpm nss-systemd-246.13-7.8.1.s390x.rpm systemd-246.13-7.8.1.s390x.rpm systemd-container-246.13-7.8.1.s390x.rpm systemd-coredump-246.13-7.8.1.s390x.rpm systemd-devel-246.13-7.8.1.s390x.rpm systemd-doc-246.13-7.8.1.s390x.rpm systemd-journal-remote-246.13-7.8.1.s390x.rpm systemd-logger-246.13-7.8.1.s390x.rpm systemd-network-246.13-7.8.1.s390x.rpm systemd-sysvinit-246.13-7.8.1.s390x.rpm udev-246.13-7.8.1.s390x.rpm libsystemd0-246.13-7.8.1.ppc64le.rpm libudev-devel-246.13-7.8.1.ppc64le.rpm libudev1-246.13-7.8.1.ppc64le.rpm nss-myhostname-246.13-7.8.1.ppc64le.rpm nss-mymachines-246.13-7.8.1.ppc64le.rpm nss-resolve-246.13-7.8.1.ppc64le.rpm nss-systemd-246.13-7.8.1.ppc64le.rpm systemd-246.13-7.8.1.ppc64le.rpm systemd-container-246.13-7.8.1.ppc64le.rpm systemd-coredump-246.13-7.8.1.ppc64le.rpm systemd-devel-246.13-7.8.1.ppc64le.rpm systemd-doc-246.13-7.8.1.ppc64le.rpm systemd-journal-remote-246.13-7.8.1.ppc64le.rpm systemd-logger-246.13-7.8.1.ppc64le.rpm systemd-network-246.13-7.8.1.ppc64le.rpm systemd-sysvinit-246.13-7.8.1.ppc64le.rpm udev-246.13-7.8.1.ppc64le.rpm libsystemd0-246.13-7.8.1.aarch64.rpm libudev-devel-246.13-7.8.1.aarch64.rpm libudev1-246.13-7.8.1.aarch64.rpm nss-myhostname-246.13-7.8.1.aarch64.rpm nss-mymachines-246.13-7.8.1.aarch64.rpm nss-resolve-246.13-7.8.1.aarch64.rpm nss-systemd-246.13-7.8.1.aarch64.rpm systemd-246.13-7.8.1.aarch64.rpm systemd-container-246.13-7.8.1.aarch64.rpm systemd-coredump-246.13-7.8.1.aarch64.rpm systemd-devel-246.13-7.8.1.aarch64.rpm systemd-doc-246.13-7.8.1.aarch64.rpm systemd-journal-remote-246.13-7.8.1.aarch64.rpm systemd-logger-246.13-7.8.1.aarch64.rpm systemd-network-246.13-7.8.1.aarch64.rpm systemd-sysvinit-246.13-7.8.1.aarch64.rpm udev-246.13-7.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2758 moderate SUSE Updates openSUSE-SLE 15.3 This update for jeos-firstboot fixes the following issues: - Update to version 1.0.1: * Always show manual SSID option * Call dialog with --backtitle everywhere * Calculate the height of menus dynamically (bsc#1177188) jeos-firstboot-1.0.1-3.3.1.noarch.rpm jeos-firstboot-1.0.1-3.3.1.src.rpm jeos-firstboot-rpiwifi-1.0.1-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2415 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. Security issues fixed: - CVE-2021-22555: A heap out-of-bounds write was discovered in net/netfilter/x_tables.c (bnc#1188116). - CVE-2021-33909: Extremely large seq buffer allocations in seq_file could lead to buffer underruns and code execution (bsc#1188062). The following non-security bugs were fixed: - usb: dwc3: Fix debugfs creation flow (git-fixes). cluster-md-kmp-default-5.3.18-59.16.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.16.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.16.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True kernel-debug-5.3.18-59.16.1.nosrc.rpm True kernel-debug-5.3.18-59.16.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.16.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-5.3.18-59.16.1.nosrc.rpm True kernel-default-5.3.18-59.16.1.x86_64.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.src.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.x86_64.rpm True kernel-default-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-extra-5.3.18-59.16.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.16.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-default-optional-5.3.18-59.16.1.x86_64.rpm True kernel-devel-5.3.18-59.16.1.noarch.rpm True kernel-docs-5.3.18-59.16.1.noarch.rpm True kernel-docs-5.3.18-59.16.1.nosrc.rpm True kernel-docs-html-5.3.18-59.16.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.16.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.16.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.16.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-macros-5.3.18-59.16.1.noarch.rpm True kernel-obs-build-5.3.18-59.16.1.src.rpm True kernel-obs-build-5.3.18-59.16.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.16.1.src.rpm True kernel-obs-qa-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-5.3.18-59.16.1.nosrc.rpm True kernel-preempt-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.16.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.16.1.x86_64.rpm True kernel-source-5.3.18-59.16.1.noarch.rpm True kernel-source-5.3.18-59.16.1.src.rpm True kernel-source-vanilla-5.3.18-59.16.1.noarch.rpm True kernel-syms-5.3.18-59.16.1.src.rpm True kernel-syms-5.3.18-59.16.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.16.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.16.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.16.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.16.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.16.1.s390x.rpm True dlm-kmp-default-5.3.18-59.16.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.16.1.s390x.rpm True kernel-default-5.3.18-59.16.1.s390x.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.s390x.rpm True kernel-default-devel-5.3.18-59.16.1.s390x.rpm True kernel-default-extra-5.3.18-59.16.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.16.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.s390x.rpm True kernel-default-optional-5.3.18-59.16.1.s390x.rpm True kernel-obs-build-5.3.18-59.16.1.s390x.rpm True kernel-obs-qa-5.3.18-59.16.1.s390x.rpm True kernel-syms-5.3.18-59.16.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.16.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.16.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.16.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.16.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.16.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.16.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.16.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-5.3.18-59.16.1.ppc64le.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.16.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.16.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.16.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.16.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.16.1.ppc64le.rpm True kernel-syms-5.3.18-59.16.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.16.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.16.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.16.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.16.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.16.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.16.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-5.3.18-59.16.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.16.1.aarch64.rpm True kernel-default-5.3.18-59.16.1.aarch64.rpm True kernel-default-base-5.3.18-59.16.1.18.8.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.16.1.18.8.1.aarch64.rpm True kernel-default-devel-5.3.18-59.16.1.aarch64.rpm True kernel-default-extra-5.3.18-59.16.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.16.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-default-optional-5.3.18-59.16.1.aarch64.rpm True kernel-obs-build-5.3.18-59.16.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.16.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.16.1.aarch64.rpm True kernel-syms-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.16.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.16.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.16.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.16.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2409 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-22555: A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c (bnc#1188116 ). - CVE-2021-33909: Fixed an out-of-bounds write in the filesystem layer that allows to obtain full root privileges (bsc#1188062). The following non-security bugs were fixed: - ceph: must hold snap_rwsem when filling inode for async create (bsc#1187927). - cgroup1: do not allow '\n' in renaming (bsc#1187972). - qla2xxx: synchronize rport dev_loss_tmo setting (bsc#1182470 bsc#1185486). - scsi: ufs: ufshcd-pltfrm depends on HAS_IOMEM (bsc#1187980). - usb: dwc3: Fix debugfs creation flow (git-fixes). - x86/pkru: Write hardware init value to PKRU when xstate is init (bsc#1152489). - x86/process: Check PF_KTHREAD and not current->mm for kernel threads (bsc#1152489). cluster-md-kmp-azure-5.3.18-38.14.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.14.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.14.1.x86_64.rpm True kernel-azure-5.3.18-38.14.1.nosrc.rpm True kernel-azure-5.3.18-38.14.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.14.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.14.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.14.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.14.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.14.1.noarch.rpm True kernel-source-azure-5.3.18-38.14.1.noarch.rpm True kernel-source-azure-5.3.18-38.14.1.src.rpm True kernel-syms-azure-5.3.18-38.14.1.src.rpm True kernel-syms-azure-5.3.18-38.14.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.14.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.14.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.14.1.x86_64.rpm True openSUSE-SLE-15.3-2021-2579 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust, rust1.43, rust1.53 fixes the following issues: This will ship multiple rust versions. - rust1.43: for Firefox ESR - rust1.53: The current rust release The "rust" package itself will be a wrapper package. cargo-1.53.0-21.3.1.noarch.rpm cargo1.43-1.43.1-7.3.1.i586.rpm cargo1.53-1.53.0-7.3.1.i586.rpm rls-1.53.0-21.3.1.noarch.rpm rust-1.53.0-21.3.1.noarch.rpm rust-1.53.0-21.3.1.src.rpm rust-gdb-1.53.0-21.3.1.noarch.rpm rust1.43-1.43.1-7.3.1.i586.rpm rust1.43-1.43.1-7.3.1.src.rpm rust1.43-gdb-1.43.1-7.3.1.i586.rpm rust1.43-src-1.43.1-7.3.1.noarch.rpm rust1.53-1.53.0-7.3.1.i586.rpm rust1.53-1.53.0-7.3.1.src.rpm rust1.53-gdb-1.53.0-7.3.1.i586.rpm rust1.53-src-1.53.0-7.3.1.noarch.rpm cargo1.43-1.43.1-7.3.1.x86_64.rpm cargo1.43-doc-1.43.1-7.3.1.noarch.rpm cargo1.53-1.53.0-7.3.1.x86_64.rpm cargo1.53-doc-1.53.0-7.3.1.noarch.rpm rls1.43-1.43.1-7.3.1.x86_64.rpm rls1.53-1.53.0-7.3.1.x86_64.rpm rust1.43-1.43.1-7.3.1.x86_64.rpm rust1.43-analysis-1.43.1-7.3.1.x86_64.rpm rust1.43-doc-1.43.1-7.3.1.x86_64.rpm rust1.43-gdb-1.43.1-7.3.1.x86_64.rpm rust1.53-1.53.0-7.3.1.x86_64.rpm rust1.53-analysis-1.53.0-7.3.1.x86_64.rpm rust1.53-doc-1.53.0-7.3.1.x86_64.rpm rust1.53-gdb-1.53.0-7.3.1.x86_64.rpm cargo1.43-1.43.1-7.3.1.s390x.rpm cargo1.53-1.53.0-7.3.1.s390x.rpm rust1.43-1.43.1-7.3.1.s390x.rpm rust1.43-gdb-1.43.1-7.3.1.s390x.rpm rust1.53-1.53.0-7.3.1.s390x.rpm rust1.53-gdb-1.53.0-7.3.1.s390x.rpm cargo1.43-1.43.1-7.3.1.ppc64le.rpm cargo1.53-1.53.0-7.3.1.ppc64le.rpm rust1.43-1.43.1-7.3.1.ppc64le.rpm rust1.43-gdb-1.43.1-7.3.1.ppc64le.rpm rust1.53-1.53.0-7.3.1.ppc64le.rpm rust1.53-gdb-1.53.0-7.3.1.ppc64le.rpm cargo1.43-1.43.1-7.3.1.aarch64.rpm cargo1.53-1.53.0-7.3.1.aarch64.rpm rls1.43-1.43.1-7.3.1.aarch64.rpm rls1.53-1.53.0-7.3.1.aarch64.rpm rust1.43-1.43.1-7.3.1.aarch64.rpm rust1.43-analysis-1.43.1-7.3.1.aarch64.rpm rust1.43-doc-1.43.1-7.3.1.aarch64.rpm rust1.43-gdb-1.43.1-7.3.1.aarch64.rpm rust1.53-1.53.0-7.3.1.aarch64.rpm rust1.53-analysis-1.53.0-7.3.1.aarch64.rpm rust1.53-doc-1.53.0-7.3.1.aarch64.rpm rust1.53-gdb-1.53.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3531 important SUSE Updates openSUSE-SLE 15.3 This update for busybox fixes the following issues: - CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data (bsc#1184522). - CVE-2018-20679: Fixed out of bounds read in udhcp (bsc#1121426). - CVE-2018-1000517: Fixed buffer overflow in the retrieve_file_data() (bsc#1099260). - CVE-2011-5325: Fixed a directory traversal related to 'tar' command (bsc#951562). - CVE-2018-1000500: Fixed missing SSL certificate validation related to the 'wget' command (bsc#1099263). busybox-1.26.2-4.5.1.src.rpm busybox-1.26.2-4.5.1.x86_64.rpm busybox-static-1.26.2-4.5.1.src.rpm busybox-static-1.26.2-4.5.1.x86_64.rpm busybox-1.26.2-4.5.1.s390x.rpm busybox-static-1.26.2-4.5.1.s390x.rpm busybox-1.26.2-4.5.1.ppc64le.rpm busybox-static-1.26.2-4.5.1.ppc64le.rpm busybox-1.26.2-4.5.1.aarch64.rpm busybox-static-1.26.2-4.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-2919 important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2019-9721: Fix denial of service in the subtitle decoder in handle_open_brace from libavcodec/htmlsubtitles.c (bsc#1129714). - CVE-2020-22046: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the avpriv_float_dsp_allocl function in libavutil/float_dsp.c (bsc#1186849). - CVE-2020-22048: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ff_frame_pool_get function in framepool.c (bsc#1186859). - CVE-2020-22049: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the wtvfile_open_sector function in wtvdec.c (bsc#1186861). - CVE-2020-22054: Fix a denial of service vulnerability exists in FFmpeg 4.2 due to a memory leak in the av_dict_set function in dict.c (bsc#1186863). - CVE-2020-21688: Fixed a heap-use-after-free in the av_freep function in libavutil/mem.c (bsc#1189348). - CVE-2020-21697: Fixed a heap-use-after-free in the mpeg_mux_write_packet function in libavformat/mpegenc.c (bsc#1189350). - CVE-2021-38114: Fixed a not checked return value of the init_vlc function (bsc#1189142). ffmpeg-3.4.2-11.8.2.src.rpm ffmpeg-3.4.2-11.8.2.x86_64.rpm ffmpeg-private-devel-3.4.2-11.8.2.x86_64.rpm libavcodec-devel-3.4.2-11.8.2.x86_64.rpm libavcodec57-3.4.2-11.8.2.x86_64.rpm libavcodec57-32bit-3.4.2-11.8.2.x86_64.rpm libavdevice-devel-3.4.2-11.8.2.x86_64.rpm libavdevice57-3.4.2-11.8.2.x86_64.rpm libavdevice57-32bit-3.4.2-11.8.2.x86_64.rpm libavfilter-devel-3.4.2-11.8.2.x86_64.rpm libavfilter6-3.4.2-11.8.2.x86_64.rpm libavfilter6-32bit-3.4.2-11.8.2.x86_64.rpm libavformat-devel-3.4.2-11.8.2.x86_64.rpm libavformat57-3.4.2-11.8.2.x86_64.rpm libavformat57-32bit-3.4.2-11.8.2.x86_64.rpm libavresample-devel-3.4.2-11.8.2.x86_64.rpm libavresample3-3.4.2-11.8.2.x86_64.rpm libavresample3-32bit-3.4.2-11.8.2.x86_64.rpm libavutil-devel-3.4.2-11.8.2.x86_64.rpm libavutil55-3.4.2-11.8.2.x86_64.rpm libavutil55-32bit-3.4.2-11.8.2.x86_64.rpm libpostproc-devel-3.4.2-11.8.2.x86_64.rpm libpostproc54-3.4.2-11.8.2.x86_64.rpm libpostproc54-32bit-3.4.2-11.8.2.x86_64.rpm libswresample-devel-3.4.2-11.8.2.x86_64.rpm libswresample2-3.4.2-11.8.2.x86_64.rpm libswresample2-32bit-3.4.2-11.8.2.x86_64.rpm libswscale-devel-3.4.2-11.8.2.x86_64.rpm libswscale4-3.4.2-11.8.2.x86_64.rpm libswscale4-32bit-3.4.2-11.8.2.x86_64.rpm ffmpeg-3.4.2-11.8.2.s390x.rpm ffmpeg-private-devel-3.4.2-11.8.2.s390x.rpm libavcodec-devel-3.4.2-11.8.2.s390x.rpm libavcodec57-3.4.2-11.8.2.s390x.rpm libavdevice-devel-3.4.2-11.8.2.s390x.rpm libavdevice57-3.4.2-11.8.2.s390x.rpm libavfilter-devel-3.4.2-11.8.2.s390x.rpm libavfilter6-3.4.2-11.8.2.s390x.rpm libavformat-devel-3.4.2-11.8.2.s390x.rpm libavformat57-3.4.2-11.8.2.s390x.rpm libavresample-devel-3.4.2-11.8.2.s390x.rpm libavresample3-3.4.2-11.8.2.s390x.rpm libavutil-devel-3.4.2-11.8.2.s390x.rpm libavutil55-3.4.2-11.8.2.s390x.rpm libpostproc-devel-3.4.2-11.8.2.s390x.rpm libpostproc54-3.4.2-11.8.2.s390x.rpm libswresample-devel-3.4.2-11.8.2.s390x.rpm libswresample2-3.4.2-11.8.2.s390x.rpm libswscale-devel-3.4.2-11.8.2.s390x.rpm libswscale4-3.4.2-11.8.2.s390x.rpm ffmpeg-3.4.2-11.8.2.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.8.2.ppc64le.rpm libavcodec-devel-3.4.2-11.8.2.ppc64le.rpm libavcodec57-3.4.2-11.8.2.ppc64le.rpm libavdevice-devel-3.4.2-11.8.2.ppc64le.rpm libavdevice57-3.4.2-11.8.2.ppc64le.rpm libavfilter-devel-3.4.2-11.8.2.ppc64le.rpm libavfilter6-3.4.2-11.8.2.ppc64le.rpm libavformat-devel-3.4.2-11.8.2.ppc64le.rpm libavformat57-3.4.2-11.8.2.ppc64le.rpm libavresample-devel-3.4.2-11.8.2.ppc64le.rpm libavresample3-3.4.2-11.8.2.ppc64le.rpm libavutil-devel-3.4.2-11.8.2.ppc64le.rpm libavutil55-3.4.2-11.8.2.ppc64le.rpm libpostproc-devel-3.4.2-11.8.2.ppc64le.rpm libpostproc54-3.4.2-11.8.2.ppc64le.rpm libswresample-devel-3.4.2-11.8.2.ppc64le.rpm libswresample2-3.4.2-11.8.2.ppc64le.rpm libswscale-devel-3.4.2-11.8.2.ppc64le.rpm libswscale4-3.4.2-11.8.2.ppc64le.rpm ffmpeg-3.4.2-11.8.2.aarch64.rpm ffmpeg-private-devel-3.4.2-11.8.2.aarch64.rpm libavcodec-devel-3.4.2-11.8.2.aarch64.rpm libavcodec57-3.4.2-11.8.2.aarch64.rpm libavdevice-devel-3.4.2-11.8.2.aarch64.rpm libavdevice57-3.4.2-11.8.2.aarch64.rpm libavfilter-devel-3.4.2-11.8.2.aarch64.rpm libavfilter6-3.4.2-11.8.2.aarch64.rpm libavformat-devel-3.4.2-11.8.2.aarch64.rpm libavformat57-3.4.2-11.8.2.aarch64.rpm libavresample-devel-3.4.2-11.8.2.aarch64.rpm libavresample3-3.4.2-11.8.2.aarch64.rpm libavutil-devel-3.4.2-11.8.2.aarch64.rpm libavutil55-3.4.2-11.8.2.aarch64.rpm libpostproc-devel-3.4.2-11.8.2.aarch64.rpm libpostproc54-3.4.2-11.8.2.aarch64.rpm libswresample-devel-3.4.2-11.8.2.aarch64.rpm libswresample2-3.4.2-11.8.2.aarch64.rpm libswscale-devel-3.4.2-11.8.2.aarch64.rpm libswscale4-3.4.2-11.8.2.aarch64.rpm openSUSE-SLE-15.3-2021-2459 moderate SUSE Updates openSUSE-SLE 15.3 This update for bluez fixes the following issues: - CVE-2021-3588: Fixed a missing bounds checks inside cli_feat_read_cb() function in src/gatt-database.c (bsc#1187165) bluez-5.55-3.6.1.src.rpm bluez-5.55-3.6.1.x86_64.rpm bluez-auto-enable-devices-5.55-3.6.1.noarch.rpm bluez-cups-5.55-3.6.1.x86_64.rpm bluez-deprecated-5.55-3.6.1.x86_64.rpm bluez-devel-32bit-5.55-3.6.1.x86_64.rpm bluez-devel-5.55-3.6.1.x86_64.rpm bluez-test-5.55-3.6.1.x86_64.rpm libbluetooth3-32bit-5.55-3.6.1.x86_64.rpm libbluetooth3-5.55-3.6.1.x86_64.rpm bluez-5.55-3.6.1.s390x.rpm bluez-cups-5.55-3.6.1.s390x.rpm bluez-deprecated-5.55-3.6.1.s390x.rpm bluez-devel-5.55-3.6.1.s390x.rpm bluez-test-5.55-3.6.1.s390x.rpm libbluetooth3-5.55-3.6.1.s390x.rpm bluez-5.55-3.6.1.ppc64le.rpm bluez-cups-5.55-3.6.1.ppc64le.rpm bluez-deprecated-5.55-3.6.1.ppc64le.rpm bluez-devel-5.55-3.6.1.ppc64le.rpm bluez-test-5.55-3.6.1.ppc64le.rpm libbluetooth3-5.55-3.6.1.ppc64le.rpm bluez-5.55-3.6.1.aarch64.rpm bluez-cups-5.55-3.6.1.aarch64.rpm bluez-deprecated-5.55-3.6.1.aarch64.rpm bluez-devel-5.55-3.6.1.aarch64.rpm bluez-test-5.55-3.6.1.aarch64.rpm libbluetooth3-5.55-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2838 moderate SUSE Updates openSUSE-SLE 15.3 This update for jetty-minimal fixes the following issues: - Update to version 9.4.43.v20210629 - CVE-2021-34429: URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. (bsc#1188438) jetty-annotations-9.4.43-3.12.2.noarch.rpm jetty-client-9.4.43-3.12.2.noarch.rpm jetty-continuation-9.4.43-3.12.2.noarch.rpm jetty-http-9.4.43-3.12.2.noarch.rpm jetty-io-9.4.43-3.12.2.noarch.rpm jetty-jaas-9.4.43-3.12.2.noarch.rpm jetty-javax-websocket-client-impl-9.4.43-3.12.2.noarch.rpm jetty-javax-websocket-server-impl-9.4.43-3.12.2.noarch.rpm jetty-jmx-9.4.43-3.12.2.noarch.rpm jetty-jndi-9.4.43-3.12.2.noarch.rpm jetty-jsp-9.4.43-3.12.2.noarch.rpm jetty-minimal-9.4.43-3.12.2.src.rpm jetty-minimal-javadoc-9.4.43-3.12.2.noarch.rpm jetty-openid-9.4.43-3.12.2.noarch.rpm jetty-plus-9.4.43-3.12.2.noarch.rpm jetty-proxy-9.4.43-3.12.2.noarch.rpm jetty-security-9.4.43-3.12.2.noarch.rpm jetty-server-9.4.43-3.12.2.noarch.rpm jetty-servlet-9.4.43-3.12.2.noarch.rpm jetty-util-9.4.43-3.12.2.noarch.rpm jetty-util-ajax-9.4.43-3.12.2.noarch.rpm jetty-webapp-9.4.43-3.12.2.noarch.rpm jetty-websocket-9.4.43-3.12.2.src.rpm jetty-websocket-api-9.4.43-3.12.2.noarch.rpm jetty-websocket-client-9.4.43-3.12.2.noarch.rpm jetty-websocket-common-9.4.43-3.12.2.noarch.rpm jetty-websocket-javadoc-9.4.43-3.12.2.noarch.rpm jetty-websocket-server-9.4.43-3.12.2.noarch.rpm jetty-websocket-servlet-9.4.43-3.12.2.noarch.rpm jetty-xml-9.4.43-3.12.2.noarch.rpm openSUSE-SLE-15.3-2021-2802 moderate SUSE Updates openSUSE-SLE 15.3 This update for libmspack fixes the following issues: - CVE-2018-14681: Bad KWAJ file header extensions could cause a one or two byte overwrite. (bsc#1103032) - CVE-2018-14682: There is an off-by-one error in the TOLOWER() macro for CHM decompression. (bsc#1103032) - CVE-2018-14679: There is an off-by-one error in the CHM PMGI/PMGL chunk number validity checks, which could lead to denial of service. (bsc#1103032) libmspack-0.6-3.11.1.src.rpm libmspack-devel-0.6-3.11.1.x86_64.rpm libmspack0-0.6-3.11.1.x86_64.rpm libmspack0-32bit-0.6-3.11.1.x86_64.rpm mspack-tools-0.6-3.11.1.x86_64.rpm libmspack-devel-0.6-3.11.1.s390x.rpm libmspack0-0.6-3.11.1.s390x.rpm mspack-tools-0.6-3.11.1.s390x.rpm libmspack-devel-0.6-3.11.1.ppc64le.rpm libmspack0-0.6-3.11.1.ppc64le.rpm mspack-tools-0.6-3.11.1.ppc64le.rpm libmspack-devel-0.6-3.11.1.aarch64.rpm libmspack0-0.6-3.11.1.aarch64.rpm mspack-tools-0.6-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2553 moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - 15.3.20210712 (tracked in bsc#933411) - Added note about about Salt 3002 (jsc#SLE-17233) - Added note about kernel changes (bsc#1187615) - Added link to workaround (bsc#1187636) - Updated PostgreSQL 13 note (jsc#SLE-17030) - Updated more links (bsc#1187664) - Updated links (bsc#1187664) - Removed note upon request (bsc#1187608) release-notes-sles-15.3.20210712-3.6.3.noarch.rpm release-notes-sles-15.3.20210712-3.6.3.src.rpm openSUSE-SLE-15.3-2022-650 moderate SUSE Updates openSUSE-SLE 15.3 This update for compat-libpthread-nonshared fixes the following issues: - Add build for 32-bit version for Oracle client. (bsc#1188004) compat-libpthread-nonshared-0-3.3.1.src.rpm compat-libpthread-nonshared-0-3.3.1.x86_64.rpm openSUSE-SLE-15.3-2021-3244 low SUSE Updates openSUSE-SLE 15.3 This update for shibboleth-sp fixes the following issues: - Template generation allows external parameters to override placeholders (bsc#1184222) libshibsp-lite8-3.1.0-3.3.1.x86_64.rpm libshibsp9-3.1.0-3.3.1.x86_64.rpm shibboleth-sp-3.1.0-3.3.1.src.rpm shibboleth-sp-3.1.0-3.3.1.x86_64.rpm shibboleth-sp-devel-3.1.0-3.3.1.x86_64.rpm libshibsp-lite8-3.1.0-3.3.1.s390x.rpm libshibsp9-3.1.0-3.3.1.s390x.rpm shibboleth-sp-3.1.0-3.3.1.s390x.rpm shibboleth-sp-devel-3.1.0-3.3.1.s390x.rpm libshibsp-lite8-3.1.0-3.3.1.ppc64le.rpm libshibsp9-3.1.0-3.3.1.ppc64le.rpm shibboleth-sp-3.1.0-3.3.1.ppc64le.rpm shibboleth-sp-devel-3.1.0-3.3.1.ppc64le.rpm libshibsp-lite8-3.1.0-3.3.1.aarch64.rpm libshibsp9-3.1.0-3.3.1.aarch64.rpm shibboleth-sp-3.1.0-3.3.1.aarch64.rpm shibboleth-sp-devel-3.1.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2475 important SUSE Updates openSUSE-SLE 15.3 This update for novnc fixes the following issues: - Update to 1.2.0: * Quality and compression hints can now be modified dynamically * Added touch gestures to emulate common mouse actions * Support for full Unicode in clipboard * Support for VeNCrypt Plain authentication * Support for TightVNC Unix authentication * Support for alpha cursors * The session name is now updated whilst connected - Update to 1.1.0: Application: * New translations for Russian, Korean, Czech and Chinese (traditional) languages * Fixed an issue where you didn't get scrollbars in your browser on Windows you had a touch screen. * Added the Super/Windows key to the toolbar. * Added an option to show a dot when there otherwise wouldn't be a visible cursor. * View drag is no longer available when in scaling mode. Library: * A large number of coding style changes has been made to make the code easier to read and better to work with. * Many keyboard issues has been fixed. * Local cursor is now available on all platforms. * Fixed a number of crashes related to clipboard. * Fixed issues that occurred if data from the server was being received slowly. * A problem has been fixed where the display module would incorrectly handle high DPI systems causing scrollbars to show when they shouldn't. novnc-1.2.0-3.3.1.noarch.rpm novnc-1.2.0-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2612 important SUSE Updates openSUSE-SLE 15.3 This update for apache-commons-compress fixes the following issues: - Updated to 1.21 - CVE-2021-35515: Fixed an infinite loop when reading a specially crafted 7Z archive. (bsc#1188463) - CVE-2021-35516: Fixed an excessive memory allocation when reading a specially crafted 7Z archive. (bsc#1188464) - CVE-2021-35517: Fixed an excessive memory allocation when reading a specially crafted TAR archive. (bsc#1188465) - CVE-2021-36090: Fixed an excessive memory allocation when reading a specially crafted ZIP archive. (bsc#1188466) apache-commons-compress-1.21-3.3.1.noarch.rpm apache-commons-compress-1.21-3.3.1.src.rpm apache-commons-compress-javadoc-1.21-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2801 moderate SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - Update to 1.4.4.16 - CVE-2021-3652: Fixed crypt handling of locked accounts. (bsc#1188455) 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.src.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.x86_64.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.s390x.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.ppc64le.rpm 389-ds-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm 389-ds-devel-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm 389-ds-snmp-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm lib389-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm libsvrcore0-1.4.4.16~git16.c1926dfc6-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-2809 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Updated to version 246.15 - CVE-2021-33910: Fixed a denial of service issue in systemd. (bsc#1188063) - CVE-2020-13529: Fixed an issue that allows crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. (bsc#1185972) libsystemd0-246.15-7.11.1.x86_64.rpm libsystemd0-32bit-246.15-7.11.1.x86_64.rpm libudev-devel-246.15-7.11.1.x86_64.rpm libudev-devel-32bit-246.15-7.11.1.x86_64.rpm libudev1-246.15-7.11.1.x86_64.rpm libudev1-32bit-246.15-7.11.1.x86_64.rpm nss-myhostname-246.15-7.11.1.x86_64.rpm nss-myhostname-32bit-246.15-7.11.1.x86_64.rpm nss-mymachines-246.15-7.11.1.x86_64.rpm nss-mymachines-32bit-246.15-7.11.1.x86_64.rpm nss-resolve-246.15-7.11.1.x86_64.rpm nss-systemd-246.15-7.11.1.x86_64.rpm systemd-246.15-7.11.1.src.rpm systemd-246.15-7.11.1.x86_64.rpm systemd-32bit-246.15-7.11.1.x86_64.rpm systemd-container-246.15-7.11.1.x86_64.rpm systemd-coredump-246.15-7.11.1.x86_64.rpm systemd-devel-246.15-7.11.1.x86_64.rpm systemd-doc-246.15-7.11.1.x86_64.rpm systemd-journal-remote-246.15-7.11.1.x86_64.rpm systemd-lang-246.15-7.11.1.noarch.rpm systemd-logger-246.15-7.11.1.x86_64.rpm systemd-network-246.15-7.11.1.x86_64.rpm systemd-sysvinit-246.15-7.11.1.x86_64.rpm udev-246.15-7.11.1.x86_64.rpm libsystemd0-246.15-7.11.1.s390x.rpm libudev-devel-246.15-7.11.1.s390x.rpm libudev1-246.15-7.11.1.s390x.rpm nss-myhostname-246.15-7.11.1.s390x.rpm nss-mymachines-246.15-7.11.1.s390x.rpm nss-resolve-246.15-7.11.1.s390x.rpm nss-systemd-246.15-7.11.1.s390x.rpm systemd-246.15-7.11.1.s390x.rpm systemd-container-246.15-7.11.1.s390x.rpm systemd-coredump-246.15-7.11.1.s390x.rpm systemd-devel-246.15-7.11.1.s390x.rpm systemd-doc-246.15-7.11.1.s390x.rpm systemd-journal-remote-246.15-7.11.1.s390x.rpm systemd-logger-246.15-7.11.1.s390x.rpm systemd-network-246.15-7.11.1.s390x.rpm systemd-sysvinit-246.15-7.11.1.s390x.rpm udev-246.15-7.11.1.s390x.rpm libsystemd0-246.15-7.11.1.ppc64le.rpm libudev-devel-246.15-7.11.1.ppc64le.rpm libudev1-246.15-7.11.1.ppc64le.rpm nss-myhostname-246.15-7.11.1.ppc64le.rpm nss-mymachines-246.15-7.11.1.ppc64le.rpm nss-resolve-246.15-7.11.1.ppc64le.rpm nss-systemd-246.15-7.11.1.ppc64le.rpm systemd-246.15-7.11.1.ppc64le.rpm systemd-container-246.15-7.11.1.ppc64le.rpm systemd-coredump-246.15-7.11.1.ppc64le.rpm systemd-devel-246.15-7.11.1.ppc64le.rpm systemd-doc-246.15-7.11.1.ppc64le.rpm systemd-journal-remote-246.15-7.11.1.ppc64le.rpm systemd-logger-246.15-7.11.1.ppc64le.rpm systemd-network-246.15-7.11.1.ppc64le.rpm systemd-sysvinit-246.15-7.11.1.ppc64le.rpm udev-246.15-7.11.1.ppc64le.rpm libsystemd0-246.15-7.11.1.aarch64.rpm libudev-devel-246.15-7.11.1.aarch64.rpm libudev1-246.15-7.11.1.aarch64.rpm nss-myhostname-246.15-7.11.1.aarch64.rpm nss-mymachines-246.15-7.11.1.aarch64.rpm nss-resolve-246.15-7.11.1.aarch64.rpm nss-systemd-246.15-7.11.1.aarch64.rpm systemd-246.15-7.11.1.aarch64.rpm systemd-container-246.15-7.11.1.aarch64.rpm systemd-coredump-246.15-7.11.1.aarch64.rpm systemd-devel-246.15-7.11.1.aarch64.rpm systemd-doc-246.15-7.11.1.aarch64.rpm systemd-journal-remote-246.15-7.11.1.aarch64.rpm systemd-logger-246.15-7.11.1.aarch64.rpm systemd-network-246.15-7.11.1.aarch64.rpm systemd-sysvinit-246.15-7.11.1.aarch64.rpm udev-246.15-7.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2614 important SUSE Updates openSUSE-SLE 15.3 This update for spice-vdagent fixes the following issues: - Update to version 0.21.0 - CVE-2020-25650: memory DoS via arbitrary entries in `active_xfers` hash table (bsc#1177780) - CVE-2020-25651: possible file transfer DoS and information leak via `active_xfers` hash map (bsc#1177781) - CVE-2020-25652: possibility to exhaust file descriptors in `vdagentd` (bsc#1177782) - CVE-2020-25653: UNIX domain socket peer PID retrieved via `SO_PEERCRED` is subject to race condition (bsc#1177783) spice-vdagent-0.21.0-3.3.1.src.rpm spice-vdagent-0.21.0-3.3.1.x86_64.rpm spice-vdagent-0.21.0-3.3.1.s390x.rpm spice-vdagent-0.21.0-3.3.1.ppc64le.rpm spice-vdagent-0.21.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2839 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Do not escape "$" in URL paths. (bsc#1187581) - Don't crash with UI exception in 'Progress.rb' if a popup is in the way. (bsc#1187676) yast2-4.3.65-3.11.1.src.rpm yast2-4.3.65-3.11.1.x86_64.rpm yast2-logs-4.3.65-3.11.1.x86_64.rpm yast2-4.3.65-3.11.1.s390x.rpm yast2-logs-4.3.65-3.11.1.s390x.rpm yast2-4.3.65-3.11.1.ppc64le.rpm yast2-logs-4.3.65-3.11.1.ppc64le.rpm yast2-4.3.65-3.11.1.aarch64.rpm yast2-logs-4.3.65-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2558 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pytz fixes the following issues: - Add %pyunittest shim for platforms where it is missing. - Remove real directory of %{python_sitelib}/pytz/zoneinfo when upgrading, before it is replaced by a symlink. (bsc#1185748) - Bump tzdata_version - update to 2021.1: * update to IANA 2021a timezone release python-pytz-2021.1-3.3.1.src.rpm python2-pytz-2021.1-3.3.1.noarch.rpm python3-pytz-2021.1-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-2670 moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for libmodulemd fixes the following issues: Provide libmodulemd (jsc#ECO-3458) - Make available libmodulemd to Basesystem Module 15 SP2 - Make available libmodulemd to Basesystem Module 15 SP3 - Make the package 'createrepo_c' installable libmodulemd-2.12.0-3.8.1.src.rpm libmodulemd-devel-2.12.0-3.8.1.x86_64.rpm libmodulemd2-2.12.0-3.8.1.x86_64.rpm modulemd-validator-2.12.0-3.8.1.x86_64.rpm python3-libmodulemd-2.12.0-3.8.1.x86_64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.x86_64.rpm libmodulemd-devel-2.12.0-3.8.1.s390x.rpm libmodulemd2-2.12.0-3.8.1.s390x.rpm modulemd-validator-2.12.0-3.8.1.s390x.rpm python3-libmodulemd-2.12.0-3.8.1.s390x.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.s390x.rpm libmodulemd-devel-2.12.0-3.8.1.ppc64le.rpm libmodulemd2-2.12.0-3.8.1.ppc64le.rpm modulemd-validator-2.12.0-3.8.1.ppc64le.rpm python3-libmodulemd-2.12.0-3.8.1.ppc64le.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.ppc64le.rpm libmodulemd-devel-2.12.0-3.8.1.aarch64.rpm libmodulemd2-2.12.0-3.8.1.aarch64.rpm modulemd-validator-2.12.0-3.8.1.aarch64.rpm python3-libmodulemd-2.12.0-3.8.1.aarch64.rpm typelib-1_0-Modulemd-2_0-2.12.0-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2952 important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.12+7 - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565) - CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. (bsc#1188566) - CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564) java-11-openjdk-11.0.12.0-3.59.1.src.rpm java-11-openjdk-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-javadoc-11.0.12.0-3.59.1.noarch.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-src-11.0.12.0-3.59.1.x86_64.rpm java-11-openjdk-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-src-11.0.12.0-3.59.1.s390x.rpm java-11-openjdk-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-src-11.0.12.0-3.59.1.ppc64le.rpm java-11-openjdk-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-accessibility-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-demo-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-devel-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-headless-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-jmods-11.0.12.0-3.59.1.aarch64.rpm java-11-openjdk-src-11.0.12.0-3.59.1.aarch64.rpm openSUSE-SLE-15.3-2021-2878 moderate SUSE Updates openSUSE-SLE 15.3 This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container contains the following fixes: Changes in kubevirt: - Generate meta info for containers during rpm build. - Add REGISTRY variable. - Use registry.suse.com as the default fallback for sle. - Rename macro registry_path to kubevirt_registry_path. - Do not package OLM manifests. - Install virt-launcher SELinux policy. (bsc#1185714) - Include release number into docker tag. - Add kubevirt_containers_meta build service. - Set default reg_path='registry.opensuse.org/kubevirt'. - Add _constraints file with disk requirements. - Fix virt-launcher VirDomain double free crash. Changes on the containers: - Include the registry in org.opensuse.reference. - Tag the image with <version>-<release>. - run zypper clean after installation. Changes specific to virt-launcher-container: - Create symlinks for OVMF binaries in expected location. - Sort installed packages alphabetically. kubevirt-0.40.0-5.14.3.src.rpm kubevirt-container-disk-0.40.0-5.14.3.x86_64.rpm kubevirt-manifests-0.40.0-5.14.3.x86_64.rpm kubevirt-tests-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-api-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-controller-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-handler-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-launcher-0.40.0-5.14.3.x86_64.rpm kubevirt-virt-operator-0.40.0-5.14.3.x86_64.rpm kubevirt-virtctl-0.40.0-5.14.3.x86_64.rpm openSUSE-SLE-15.3-2021-2664 moderate SUSE Updates openSUSE-SLE 15.3 This update for golang-github-prometheus-prometheus fixes the following issues: - Provide and reload firewalld configuration only for: + openSUSE Leap 15.0, 15.1, 15.2 + SUSE SLE15, SLE15 SP1, SLE15 SP2 - Upgrade to upstream version 2.27.1 (jsc#SLE-18254) + Bugfix: * SECURITY: Fix arbitrary redirects under the /new endpoint (CVE-2021-29622, bsc#1186242) + Features: * Promtool: Retroactive rule evaluation functionality. #7675 * Configuration: Environment variable expansion for external labels. Behind --enable-feature=expand-external-labels flag. #8649 * TSDB: Add a flag(--storage.tsdb.max-block-chunk-segment-size) to control the max chunks file size of the blocks for small Prometheus instances. * UI: Add a dark theme. #8604 * AWS Lightsail Discovery: Add AWS Lightsail Discovery. #8693 * Docker Discovery: Add Docker Service Discovery. #8629 * OAuth: Allow OAuth 2.0 to be used anywhere an HTTP client is used. #8761 * Remote Write: Send exemplars via remote write. Experimental and disabled by default. #8296 + Enhancements: * Digital Ocean Discovery: Add __meta_digitalocean_vpc label. #8642 * Scaleway Discovery: Read Scaleway secret from a file. #8643 * Scrape: Add configurable limits for label size and count. #8777 * UI: Add 16w and 26w time range steps. #8656 * Templating: Enable parsing strings in humanize functions. #8682 + Bugfixes: * UI: Provide errors instead of blank page on TSDB Status Page. #8654 #8659 * TSDB: Do not panic when writing very large records to the WAL. #8790 * TSDB: Avoid panic when mmaped memory is referenced after the file is closed. #8723 * Scaleway Discovery: Fix nil pointer dereference. #8737 * Consul Discovery: Restart no longer required after config update with no targets. #8766 - Add tarball with vendor modules and web assets - Uyuni: Read formula data from exporters map - Uyuni: Add support for TLS targets - Upgrade to upstream version 2.26.0 + Changes * Alerting: Using Alertmanager v2 API by default. #8626 * Prometheus/Promtool: Binaries are now printing help and usage to stdout instead of stderr. #8542 + Features * Remote: Add support for AWS SigV4 auth method for remote_write. #8509 * PromQL: Allow negative offsets. Behind --enable-feature=promql-negative-offset flag. #8487 * UI: Add advanced auto-completion, syntax highlighting and linting to graph page query input. #8634 + Enhancements * PromQL: Add last_over_time, sgn, clamp functions. #8457 * Scrape: Add support for specifying type of Authorization header credentials with Bearer by default. #8512 * Scrape: Add follow_redirects option to scrape configuration. #8546 * Remote: Allow retries on HTTP 429 response code for remote_write. #8237 #8477 * Remote: Allow configuring custom headers for remote_read. #8516 * UI: Hitting Enter now triggers new query. #8581 * UI: Better handling of long rule and names on the /rules and /targets pages. #8608 #8609 * UI: Add collapse/expand all button on the /targets page. #8486 - Upgrade to upstream version 2.25.0 + Features * Include a new `--enable-feature=` flag that enables experimental features. + Enhancements * Add optional name property to testgroup for better test failure output. #8440 * Add warnings into React Panel on the Graph page. #8427 * TSDB: Increase the number of buckets for the compaction duration metric. #8342 * Remote: Allow passing along custom remote_write HTTP headers. #8416 * Mixins: Scope grafana configuration. #8332 * Kubernetes SD: Add endpoint labels metadata. #8273 * UI: Expose total number of label pairs in head in TSDB stats page. #8343 * TSDB: Reload blocks every minute, to detect new blocks and enforce retention more often. #8343 + Bug fixes * API: Fix global URL when external address has no port. #8359 * Deprecate unused flag --alertmanager.timeout. #8407 - Upgrade to upstream version 2.24.1 + Enhancements * Cache basic authentication results to significantly improve performance of HTTP endpoints. - Upgrade to upstream version 2.24.0 + Features * Add TLS and basic authentication to HTTP endpoints. #8316 * promtool: Add check web-config subcommand to check web config files. #8319 * promtool: Add tsdb create-blocks-from openmetrics subcommand to backfill metrics data from an OpenMetrics file. + Enhancements * HTTP API: Fast-fail queries with only empty matchers. #8288 * HTTP API: Support matchers for labels API. #8301 * promtool: Improve checking of URLs passed on the command line. #7956 * SD: Expose IPv6 as a label in EC2 SD. #7086 * SD: Reuse EC2 client, reducing frequency of requesting credentials. #8311 * TSDB: Add logging when compaction takes more than the block time range. #8151 * TSDB: Avoid unnecessary GC runs after compaction. #8276 - Upgrade to upstream version 2.23.0 + Changes * UI: Make the React UI default. #8142 * Remote write: The following metrics were removed/renamed in remote write. #6815 > prometheus_remote_storage_succeeded_samples_total was removed and prometheus_remote_storage_samples_total was introduced for all the samples attempted to send. > prometheus_remote_storage_sent_bytes_total was removed and replaced with prometheus_remote_storage_samples_bytes_total and prometheus_remote_storage_metadata_bytes_total. > prometheus_remote_storage_failed_samples_total -> prometheus_remote_storage_samples_failed_total . > prometheus_remote_storage_retried_samples_total -> prometheus_remote_storage_samples_retried_total. > prometheus_remote_storage_dropped_samples_total -> prometheus_remote_storage_samples_dropped_total. > prometheus_remote_storage_pending_samples -> prometheus_remote_storage_samples_pending. * Remote: Do not collect non-initialized timestamp metrics. #8060 + Enhancements * Remote write: Added a metric prometheus_remote_storage_max_samples_per_send for remote write. #8102 * TSDB: Make the snapshot directory name always the same length. #8138 * TSDB: Create a checkpoint only once at the end of all head compactions. #8067 * TSDB: Avoid Series API from hitting the chunks. #8050 * TSDB: Cache label name and last value when adding series during compactions making compactions faster. #8192 * PromQL: Improved performance of Hash method making queries a bit faster. #8025 * promtool: tsdb list now prints block sizes. #7993 * promtool: Calculate mint and maxt per test avoiding unnecessary calculations. #8096 * SD: Add filtering of services to Docker Swarm SD. #8074 - Uyuni: `hostname` label is now set to FQDN instead of IP - Update to upstream version 2.22.1 - Update packaging * Remove systemd and shadow hard requirements * use systemd-sysusers to configure the user in a dedicated 'system-user-prometheus' subpackage * add 'prometheus' package alias + Add support for Prometheus exporters proxy - Remove prometheus.firewall.xml source file - Remove firewalld files. They are installed in the main firewalld package. golang-github-prometheus-prometheus-2.27.1-3.8.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2675 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: ansible: - The support level for ansible is l2, not l3 dracut-saltboot: - Force installation of libexpat.so.1 (bsc#1188846) - Use kernel parameters from PXE formula also for local boot golang-github-prometheus-prometheus: - Provide and reload firewalld configuration only for: + openSUSE Leap 15.0, 15.1, 15.2 + SUSE Linux Enterprise 15, 15 SP1, 15 SP2 - Upgrade to upstream version 2.27.1 (jsc#SLE-18254) + Bugfix: * SECURITY: Fix arbitrary redirects under the /new endpoint (CVE-2021-29622, bsc#1186242) * UI: Provide errors instead of blank page on TSDB Status Page. #8654 #8659 * TSDB: Do not panic when writing very large records to the WAL. #8790 * TSDB: Avoid panic when mmaped memory is referenced after the file is closed. #8723 * Scaleway Discovery: Fix nil pointer dereference. #8737 * Consul Discovery: Restart no longer required after config update with no targets. #8766 + Features: * Promtool: Retroactive rule evaluation functionality. * Configuration: Environment variable expansion for external labels. Behind '--enable-feature=expand-external-labels' flag. * Add a flag '--storage.tsdb.max-block-chunk-segment-size' to control the max chunks file size of the blocks for small Prometheus instances. * UI: Add a dark theme. * AWS Lightsail Discovery: Add AWS Lightsail Discovery. * Docker Discovery: Add Docker Service Discovery. * OAuth: Allow OAuth 2.0 to be used anywhere an HTTP client is used. * Remote Write: Send exemplars via remote write. Experimental and disabled by default. + Enhancements: * Digital Ocean Discovery: Add '__meta_digitalocean_vpc' label. * Scaleway Discovery: Read Scaleway secret from a file. * Scrape: Add configurable limits for label size and count. * UI: Add 16w and 26w time range steps. * Templating: Enable parsing strings in humanize functions. - Update package with changes from `server:monitoring` (bsc#1175478) Left out removal of 'firewalld' related configuration files as SUSE Linux Enterprise 15-SP1's `firewalld` package does not contain 'prometheus' configuration yet. mgr-cfg: - No visible impact for the user mgr-custom-info: - No visible impact for the user mgr-osad: - No visible impact for the user mgr-push: - No visible impact for the user mgr-virtualization: - No visible impact for the user rhnlib: - No visible impact for the user spacecmd: - Make spacecmd aware of retracted patches/packages - Enhance help for installation types when creating distributions (bsc#1186581) - Parse empty argument when nothing in between the separator spacewalk-client-tools: - Update translation strings spacewalk-koan: - Fix for spacewalk-koan tests after switching to the new Docker images spacewalk-oscap: - No visible impact for the user suseRegisterInfo: - No visible impact for the user uyuni-common-libs: - Handle broken RPM packages to prevent exceptions causing fails on repository synchronization (bsc#1186650) - Maintainer field in debian packages are only recommended (bsc#1186508) ansible-2.9.21-1.5.1.noarch.rpm ansible-2.9.21-1.5.1.src.rpm ansible-doc-2.9.21-1.5.1.noarch.rpm ansible-test-2.9.21-1.5.1.noarch.rpm dracut-saltboot-0.1.1627546504.96a0b3e-1.27.1.noarch.rpm dracut-saltboot-0.1.1627546504.96a0b3e-1.27.1.src.rpm mgr-cfg-4.2.3-1.18.1.noarch.rpm mgr-cfg-4.2.3-1.18.1.src.rpm mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm mgr-cfg-client-4.2.3-1.18.1.noarch.rpm mgr-cfg-management-4.2.3-1.18.1.noarch.rpm mgr-custom-info-4.2.2-1.12.1.noarch.rpm mgr-custom-info-4.2.2-1.12.1.src.rpm mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm mgr-osad-4.2.6-1.30.1.noarch.rpm mgr-osad-4.2.6-1.30.1.src.rpm mgr-push-4.2.3-1.12.1.noarch.rpm mgr-push-4.2.3-1.12.1.src.rpm mgr-virtualization-4.2.2-1.20.1.src.rpm mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python2-mgr-cfg-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-client-4.2.3-1.18.1.noarch.rpm python2-mgr-cfg-management-4.2.3-1.18.1.noarch.rpm python2-mgr-osa-common-4.2.6-1.30.1.noarch.rpm python2-mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm python2-mgr-osad-4.2.6-1.30.1.noarch.rpm python2-mgr-push-4.2.3-1.12.1.noarch.rpm python2-mgr-virtualization-common-4.2.2-1.20.1.noarch.rpm python2-mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python2-rhnlib-4.2.4-3.28.1.noarch.rpm python2-spacewalk-check-4.2.12-3.44.1.noarch.rpm python2-spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm python2-spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm python2-spacewalk-koan-4.2.4-3.21.1.noarch.rpm python2-spacewalk-oscap-4.2.2-3.12.1.noarch.rpm python2-suseRegisterInfo-4.2.4-3.15.1.noarch.rpm python2-uyuni-common-libs-4.2.5-1.15.1.x86_64.rpm python3-mgr-cfg-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-actions-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-client-4.2.3-1.18.1.noarch.rpm python3-mgr-cfg-management-4.2.3-1.18.1.noarch.rpm python3-mgr-osa-common-4.2.6-1.30.1.noarch.rpm python3-mgr-osa-dispatcher-4.2.6-1.30.1.noarch.rpm python3-mgr-osad-4.2.6-1.30.1.noarch.rpm python3-mgr-push-4.2.3-1.12.1.noarch.rpm python3-mgr-virtualization-common-4.2.2-1.20.1.noarch.rpm python3-mgr-virtualization-host-4.2.2-1.20.1.noarch.rpm python3-rhnlib-4.2.4-3.28.1.noarch.rpm python3-spacewalk-check-4.2.12-3.44.1.noarch.rpm python3-spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm python3-spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm python3-spacewalk-koan-4.2.4-3.21.1.noarch.rpm python3-spacewalk-oscap-4.2.2-3.12.1.noarch.rpm python3-suseRegisterInfo-4.2.4-3.15.1.noarch.rpm python3-uyuni-common-libs-4.2.5-1.15.1.x86_64.rpm rhnlib-4.2.4-3.28.1.src.rpm spacecmd-4.2.11-3.62.1.noarch.rpm spacecmd-4.2.11-3.62.1.src.rpm spacewalk-check-4.2.12-3.44.1.noarch.rpm spacewalk-client-setup-4.2.12-3.44.1.noarch.rpm spacewalk-client-tools-4.2.12-3.44.1.noarch.rpm spacewalk-client-tools-4.2.12-3.44.1.src.rpm spacewalk-koan-4.2.4-3.21.1.noarch.rpm spacewalk-koan-4.2.4-3.21.1.src.rpm spacewalk-oscap-4.2.2-3.12.1.noarch.rpm spacewalk-oscap-4.2.2-3.12.1.src.rpm suseRegisterInfo-4.2.4-3.15.1.noarch.rpm suseRegisterInfo-4.2.4-3.15.1.src.rpm uyuni-common-libs-4.2.5-1.15.1.src.rpm python2-uyuni-common-libs-4.2.5-1.15.1.s390x.rpm python3-uyuni-common-libs-4.2.5-1.15.1.s390x.rpm python2-uyuni-common-libs-4.2.5-1.15.1.ppc64le.rpm python3-uyuni-common-libs-4.2.5-1.15.1.ppc64le.rpm python2-uyuni-common-libs-4.2.5-1.15.1.aarch64.rpm python3-uyuni-common-libs-4.2.5-1.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2617 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-2180: InnoDB unspecified vulnerability lead to complete DOS. (bsc#1185868) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) libmysqld-devel-10.2.39-3.40.1.x86_64.rpm libmysqld19-10.2.39-3.40.1.x86_64.rpm mariadb-10.2.39-3.40.1.src.rpm libmysqld-devel-10.2.39-3.40.1.s390x.rpm libmysqld19-10.2.39-3.40.1.s390x.rpm libmysqld-devel-10.2.39-3.40.1.ppc64le.rpm libmysqld19-10.2.39-3.40.1.ppc64le.rpm libmysqld-devel-10.2.39-3.40.1.aarch64.rpm libmysqld19-10.2.39-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-2616 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) mariadb-10.4.20-3.9.1.src.rpm mariadb-galera-10.4.20-3.9.1.x86_64.rpm mariadb-galera-10.4.20-3.9.1.s390x.rpm mariadb-galera-10.4.20-3.9.1.ppc64le.rpm mariadb-galera-10.4.20-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3000 moderate SUSE Updates openSUSE-SLE 15.3 This update for vncmanager-controller fixes the following issues: - Fix extension loading error that disables "Vnc session configuration" option (bsc#1188118) vncmanager-controller-1.0.1-3.3.1.src.rpm vncmanager-controller-1.0.1-3.3.1.x86_64.rpm vncmanager-controller-gnome-1.0.1-3.3.1.x86_64.rpm vncmanager-controller-1.0.1-3.3.1.s390x.rpm vncmanager-controller-gnome-1.0.1-3.3.1.s390x.rpm vncmanager-controller-1.0.1-3.3.1.ppc64le.rpm vncmanager-controller-gnome-1.0.1-3.3.1.ppc64le.rpm vncmanager-controller-1.0.1-3.3.1.aarch64.rpm vncmanager-controller-gnome-1.0.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2565 low SUSE Updates openSUSE-SLE 15.3 This update for fastjar fixes the following issues: - CVE-2010-2322: Fixed a directory traversal vulnerabilities. (bsc#1188517) fastjar-0.98-3.6.2.src.rpm fastjar-0.98-3.6.2.x86_64.rpm fastjar-0.98-3.6.2.s390x.rpm fastjar-0.98-3.6.2.ppc64le.rpm fastjar-0.98-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2605 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.2.39 (bsc#1182739) - CVE-2021-2166: DML unspecified vulnerability lead to complete DOS. (bsc#1185870) - CVE-2021-2154: DML unspecified vulnerability can lead to complete DOS. (bsc#1185872) - CVE-2021-27928: Fixed a remote code execution issue. (bsc#1183770) libmariadbd-devel-10.5.11-3.3.1.x86_64.rpm libmariadbd19-10.5.11-3.3.1.x86_64.rpm mariadb-10.5.11-3.3.1.src.rpm mariadb-10.5.11-3.3.1.x86_64.rpm mariadb-bench-10.5.11-3.3.1.x86_64.rpm mariadb-client-10.5.11-3.3.1.x86_64.rpm mariadb-errormessages-10.5.11-3.3.1.noarch.rpm mariadb-rpm-macros-10.5.11-3.3.1.x86_64.rpm mariadb-test-10.5.11-3.3.1.x86_64.rpm mariadb-tools-10.5.11-3.3.1.x86_64.rpm libmariadbd-devel-10.5.11-3.3.1.s390x.rpm libmariadbd19-10.5.11-3.3.1.s390x.rpm mariadb-10.5.11-3.3.1.s390x.rpm mariadb-bench-10.5.11-3.3.1.s390x.rpm mariadb-client-10.5.11-3.3.1.s390x.rpm mariadb-rpm-macros-10.5.11-3.3.1.s390x.rpm mariadb-test-10.5.11-3.3.1.s390x.rpm mariadb-tools-10.5.11-3.3.1.s390x.rpm libmariadbd-devel-10.5.11-3.3.1.ppc64le.rpm libmariadbd19-10.5.11-3.3.1.ppc64le.rpm mariadb-10.5.11-3.3.1.ppc64le.rpm mariadb-bench-10.5.11-3.3.1.ppc64le.rpm mariadb-client-10.5.11-3.3.1.ppc64le.rpm mariadb-rpm-macros-10.5.11-3.3.1.ppc64le.rpm mariadb-test-10.5.11-3.3.1.ppc64le.rpm mariadb-tools-10.5.11-3.3.1.ppc64le.rpm libmariadbd-devel-10.5.11-3.3.1.aarch64.rpm libmariadbd19-10.5.11-3.3.1.aarch64.rpm mariadb-10.5.11-3.3.1.aarch64.rpm mariadb-bench-10.5.11-3.3.1.aarch64.rpm mariadb-client-10.5.11-3.3.1.aarch64.rpm mariadb-rpm-macros-10.5.11-3.3.1.aarch64.rpm mariadb-test-10.5.11-3.3.1.aarch64.rpm mariadb-tools-10.5.11-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2899 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-rpm-macros fixes the following issues: - Fixed an issue whe zypper ignores the ordering constraints. (bsc#1187332) - Introduce '%sysusers_create_package': '%sysusers_create' and '%sysusers_create_inline' are now deprecated and the new macro should be used instead. - %sysusers_create_inline: use here-docs instead of echo (bsc#1186282) systemd-rpm-macros-8-7.18.1.noarch.rpm systemd-rpm-macros-8-7.18.1.src.rpm openSUSE-SLE-15.3-2021-2987 low SUSE Updates openSUSE-SLE 15.3 This update for pesign fixes the following issues: - Link as Position Independent Executable (bsc#1184124). pesign-0.112-4.9.1.src.rpm pesign-0.112-4.9.1.x86_64.rpm pesign-0.112-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2863 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-dbus-python fixes the following issues: - Update to latest version from tumbleweed. (jsc#ECO-3589, bsc#1183818) - update to 1.2.16: * All tests are run even if the 'tap.py' module is not available, althoug diagnostics for failing tests will be better if it is present. - Support builds with more than one python3 flavor - Clean duplicate python flavor variables for configure - Version update to version 1.2.14: * Ensure that the numeric types from dbus.types get the same str() under Python 3.8 that they did under previous versions. * Disable -Winline. * Add clearer license information using SPDX-License-Identifier. * Include inherited methods and properties when documenting objects, which regressed when migrating from epydoc to sphinx. * Add missing variant_level member to UnixFd type, for parity with the other dbus.types types * Don't reply to method calls if they have the NO_REPLY_EXPECTED flag * Silence '-Wcast-function-type' with gcc 8. * Fix distcheck with python3.7 by deleting '__pycache__' during uninstall. * Consistently save and restore the exception indicator when called from C code. - Add missing dependency for pkg-config files - Version update to version 1.2.8: * Python 2.7 required or 3.4 respectively * Upstream dropped epydoc completely - Add dbus-1-python3 package - Make BusConnection.list_activatable_names actually call struct entries than the signature allows with libdbus 1.4 imports dbus, is finalized, is re-initialized, and re-imports - When removing signal matches, clean up internal state, avoiding a memory leak in long-lived Python processes that connect to - When setting the sender of a message, allow it to be org.freedesktop.DBus so you can implement a D-Bus daemon - New package: dbus-1-python-devel python-dbus-python-1.2.16-6.3.1.src.rpm python-dbus-python-common-devel-1.2.16-6.3.1.x86_64.rpm python2-dbus-python-1.2.16-6.3.1.x86_64.rpm python2-dbus-python-devel-1.2.16-6.3.1.x86_64.rpm python3-dbus-python-1.2.16-6.3.1.x86_64.rpm python3-dbus-python-devel-1.2.16-6.3.1.x86_64.rpm python-dbus-python-common-devel-1.2.16-6.3.1.s390x.rpm python2-dbus-python-1.2.16-6.3.1.s390x.rpm python2-dbus-python-devel-1.2.16-6.3.1.s390x.rpm python3-dbus-python-1.2.16-6.3.1.s390x.rpm python3-dbus-python-devel-1.2.16-6.3.1.s390x.rpm python-dbus-python-common-devel-1.2.16-6.3.1.ppc64le.rpm python2-dbus-python-1.2.16-6.3.1.ppc64le.rpm python2-dbus-python-devel-1.2.16-6.3.1.ppc64le.rpm python3-dbus-python-1.2.16-6.3.1.ppc64le.rpm python3-dbus-python-devel-1.2.16-6.3.1.ppc64le.rpm python-dbus-python-common-devel-1.2.16-6.3.1.aarch64.rpm python2-dbus-python-1.2.16-6.3.1.aarch64.rpm python2-dbus-python-devel-1.2.16-6.3.1.aarch64.rpm python3-dbus-python-1.2.16-6.3.1.aarch64.rpm python3-dbus-python-devel-1.2.16-6.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2781 moderate SUSE Updates openSUSE-SLE 15.3 This update for psqlODBC fixes the following issues: - Update to 13.01.0000: * Fix a bug of CC_send_query_append() when the ignore_roundtrip_time flag is on. * Add a call for SQLDescribeCol() before SQLExecute() to prepare-test. * Add a *update returning* test case to insertreturning regression test. * Let SQLDescribeCol() use parsed result when the current executed result is NULL. * Let SQLExecute() destroy the old result first. * Forget to apply disable_convert_func flag to VARCHAR and LONGVARCHAR. * Prioritize DISABLE_KEEPALIVE checkbox over the disable_keepalive bit of ExtraOptions. * Format check for ExtraOptions of setup dialog. - Update to 13.00.0000: * Add support for CONVERT scalar function. * Cope with the case that openssl libraries link msvc runtimes other than libraries which psqlodbc or libpq links. * Call AC_CHECK_SIZEOF() or AC_CHECK_TYPES() macros at earlier stage where LIBS variable isn't set yet. * Fix a compilation error with GCC 10 due to conflicting variable names. * Remove curr_param_result property of StatementClass and separate parsed result from the exec result. * Add support for development with VC16(Visual Studio 2019). * Hold the first and last result for parametrized SQL statements with array of parameters. * This would improve the performance of bulk inserts/updates etc. * Revise the handling of QResultClass list. * Introduce macros QR_concat(), QR_detach() and QR_next(). * Correct the handling of SQL_ROW_ERROR and SQL_ROW_SUCCESS_WITH_INFO. * Remove the single table restriction in SC_set_SS_columnkey. * Improve error reporting about SC_pos_reload_needed(). - Update to 12.02.0000: * Add a new *Display Optional Error Message* option. * Handle notice messages in libpq_bind_and_exec(). * Ignore PQtransactionStatus PQTRANS_ACTIVE in LIBPQ_update_transaction_status(). PQTRANS_ACTIVE isn't a transaction status. * Improve execution of parameterized SQL statements with arrays * Add a new option IgnoreTimeout. * An improvement for psqlodbc developpers. Make it possible to call some shell scripts from other directories. psqlODBC-13.01.0000-3.9.1.src.rpm psqlODBC-13.01.0000-3.9.1.x86_64.rpm psqlODBC-13.01.0000-3.9.1.s390x.rpm psqlODBC-13.01.0000-3.9.1.ppc64le.rpm psqlODBC-13.01.0000-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3020 moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2-mod_auth_openidc fixes the following issues: - CVE-2021-32785: format string bug via hiredis (bsc#1188638) - CVE-2021-32786: open redirect in logout functionality (bsc#1188639) - CVE-2021-32791: Hardcoded static IV and AAD with a reused key in AES GCM encryption (bsc#1188849) - CVE-2021-32792: XSS when using OIDCPreservePost On (bsc#1188848) apache2-mod_auth_openidc-2.3.8-3.15.1.src.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.x86_64.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.s390x.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.ppc64le.rpm apache2-mod_auth_openidc-2.3.8-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-2800 important SUSE Updates openSUSE-SLE 15.3 This update for krb5 fixes the following issues: - CVE-2021-36222: Fixed KDC null deref on bad encrypted challenge. (bsc#1188571) krb5-1.16.3-3.21.1.src.rpm krb5-1.16.3-3.21.1.x86_64.rpm krb5-32bit-1.16.3-3.21.1.x86_64.rpm krb5-client-1.16.3-3.21.1.x86_64.rpm krb5-devel-1.16.3-3.21.1.x86_64.rpm krb5-devel-32bit-1.16.3-3.21.1.x86_64.rpm krb5-mini-1.16.3-3.21.1.src.rpm krb5-mini-1.16.3-3.21.1.x86_64.rpm krb5-mini-devel-1.16.3-3.21.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.x86_64.rpm krb5-server-1.16.3-3.21.1.x86_64.rpm krb5-1.16.3-3.21.1.s390x.rpm krb5-client-1.16.3-3.21.1.s390x.rpm krb5-devel-1.16.3-3.21.1.s390x.rpm krb5-mini-1.16.3-3.21.1.s390x.rpm krb5-mini-devel-1.16.3-3.21.1.s390x.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.s390x.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.s390x.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.s390x.rpm krb5-server-1.16.3-3.21.1.s390x.rpm krb5-1.16.3-3.21.1.ppc64le.rpm krb5-client-1.16.3-3.21.1.ppc64le.rpm krb5-devel-1.16.3-3.21.1.ppc64le.rpm krb5-mini-1.16.3-3.21.1.ppc64le.rpm krb5-mini-devel-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.ppc64le.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.ppc64le.rpm krb5-server-1.16.3-3.21.1.ppc64le.rpm krb5-1.16.3-3.21.1.aarch64.rpm krb5-client-1.16.3-3.21.1.aarch64.rpm krb5-devel-1.16.3-3.21.1.aarch64.rpm krb5-mini-1.16.3-3.21.1.aarch64.rpm krb5-mini-devel-1.16.3-3.21.1.aarch64.rpm krb5-plugin-kdb-ldap-1.16.3-3.21.1.aarch64.rpm krb5-plugin-preauth-otp-1.16.3-3.21.1.aarch64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.21.1.aarch64.rpm krb5-server-1.16.3-3.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-2849 moderate SUSE Updates openSUSE-SLE 15.3 This update for graphviz fixes the following issues: - Tool 'dot', provided by graphviz, crashes on specific data input (bsc#1151207) graphviz-2.40.1-6.12.1.src.rpm graphviz-2.40.1-6.12.1.x86_64.rpm graphviz-addons-2.40.1-6.12.1.src.rpm graphviz-devel-2.40.1-6.12.1.x86_64.rpm graphviz-doc-2.40.1-6.12.1.x86_64.rpm graphviz-gd-2.40.1-6.12.1.x86_64.rpm graphviz-gnome-2.40.1-6.12.1.x86_64.rpm graphviz-guile-2.40.1-6.12.1.x86_64.rpm graphviz-gvedit-2.40.1-6.12.1.x86_64.rpm graphviz-java-2.40.1-6.12.1.x86_64.rpm graphviz-lua-2.40.1-6.12.1.x86_64.rpm graphviz-perl-2.40.1-6.12.1.x86_64.rpm graphviz-php-2.40.1-6.12.1.x86_64.rpm graphviz-plugins-core-2.40.1-6.12.1.x86_64.rpm graphviz-python-2.40.1-6.12.1.x86_64.rpm graphviz-ruby-2.40.1-6.12.1.x86_64.rpm graphviz-smyrna-2.40.1-6.12.1.x86_64.rpm graphviz-tcl-2.40.1-6.12.1.x86_64.rpm libgraphviz6-2.40.1-6.12.1.x86_64.rpm graphviz-2.40.1-6.12.1.s390x.rpm graphviz-devel-2.40.1-6.12.1.s390x.rpm graphviz-doc-2.40.1-6.12.1.s390x.rpm graphviz-gd-2.40.1-6.12.1.s390x.rpm graphviz-gnome-2.40.1-6.12.1.s390x.rpm graphviz-guile-2.40.1-6.12.1.s390x.rpm graphviz-gvedit-2.40.1-6.12.1.s390x.rpm graphviz-java-2.40.1-6.12.1.s390x.rpm graphviz-lua-2.40.1-6.12.1.s390x.rpm graphviz-perl-2.40.1-6.12.1.s390x.rpm graphviz-php-2.40.1-6.12.1.s390x.rpm graphviz-plugins-core-2.40.1-6.12.1.s390x.rpm graphviz-python-2.40.1-6.12.1.s390x.rpm graphviz-ruby-2.40.1-6.12.1.s390x.rpm graphviz-smyrna-2.40.1-6.12.1.s390x.rpm graphviz-tcl-2.40.1-6.12.1.s390x.rpm libgraphviz6-2.40.1-6.12.1.s390x.rpm graphviz-2.40.1-6.12.1.ppc64le.rpm graphviz-devel-2.40.1-6.12.1.ppc64le.rpm graphviz-doc-2.40.1-6.12.1.ppc64le.rpm graphviz-gd-2.40.1-6.12.1.ppc64le.rpm graphviz-gnome-2.40.1-6.12.1.ppc64le.rpm graphviz-guile-2.40.1-6.12.1.ppc64le.rpm graphviz-gvedit-2.40.1-6.12.1.ppc64le.rpm graphviz-java-2.40.1-6.12.1.ppc64le.rpm graphviz-lua-2.40.1-6.12.1.ppc64le.rpm graphviz-perl-2.40.1-6.12.1.ppc64le.rpm graphviz-php-2.40.1-6.12.1.ppc64le.rpm graphviz-plugins-core-2.40.1-6.12.1.ppc64le.rpm graphviz-python-2.40.1-6.12.1.ppc64le.rpm graphviz-ruby-2.40.1-6.12.1.ppc64le.rpm graphviz-smyrna-2.40.1-6.12.1.ppc64le.rpm graphviz-tcl-2.40.1-6.12.1.ppc64le.rpm libgraphviz6-2.40.1-6.12.1.ppc64le.rpm graphviz-2.40.1-6.12.1.aarch64.rpm graphviz-devel-2.40.1-6.12.1.aarch64.rpm graphviz-doc-2.40.1-6.12.1.aarch64.rpm graphviz-gd-2.40.1-6.12.1.aarch64.rpm graphviz-gnome-2.40.1-6.12.1.aarch64.rpm graphviz-guile-2.40.1-6.12.1.aarch64.rpm graphviz-gvedit-2.40.1-6.12.1.aarch64.rpm graphviz-java-2.40.1-6.12.1.aarch64.rpm graphviz-lua-2.40.1-6.12.1.aarch64.rpm graphviz-perl-2.40.1-6.12.1.aarch64.rpm graphviz-php-2.40.1-6.12.1.aarch64.rpm graphviz-plugins-core-2.40.1-6.12.1.aarch64.rpm graphviz-python-2.40.1-6.12.1.aarch64.rpm graphviz-ruby-2.40.1-6.12.1.aarch64.rpm graphviz-smyrna-2.40.1-6.12.1.aarch64.rpm graphviz-tcl-2.40.1-6.12.1.aarch64.rpm libgraphviz6-2.40.1-6.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-2888 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nfs-client fixes the following issues: - Support systemd mount options in fstab (bsc#1187781) yast2-nfs-client-4.3.4-3.3.1.noarch.rpm yast2-nfs-client-4.3.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2883 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nfs-server fixes the following issues: - Set X-SuSE-YaST-AutoInstClient in the desktop file to properly determine the client name. (bsc#1188618) - Fix the corresponding section name in the package specification. (bsc#1188618) yast2-nfs-common-4.3.4-3.5.1.noarch.rpm yast2-nfs-server-4.3.4-3.5.1.noarch.rpm yast2-nfs-server-4.3.4-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2898 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Fix error not a btrfs filesystem on s390x (bsc#1187645) - Fix error gfxterm isn't found with multiple terminals (bsc#1187565) - Fix boot failure after kdump due to the content of grub.cfg is not completed with pending modificaton in xfs journal (bsc#1186975) grub2-2.04-22.3.1.src.rpm grub2-2.04-22.3.1.x86_64.rpm grub2-arm64-efi-2.04-22.3.1.noarch.rpm grub2-arm64-efi-debug-2.04-22.3.1.noarch.rpm grub2-branding-upstream-2.04-22.3.1.x86_64.rpm grub2-i386-pc-2.04-22.3.1.noarch.rpm grub2-i386-pc-debug-2.04-22.3.1.noarch.rpm grub2-powerpc-ieee1275-2.04-22.3.1.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-22.3.1.noarch.rpm grub2-snapper-plugin-2.04-22.3.1.noarch.rpm grub2-systemd-sleep-plugin-2.04-22.3.1.noarch.rpm grub2-x86_64-efi-2.04-22.3.1.noarch.rpm grub2-x86_64-efi-debug-2.04-22.3.1.noarch.rpm grub2-x86_64-xen-2.04-22.3.1.noarch.rpm grub2-2.04-22.3.1.s390x.rpm grub2-branding-upstream-2.04-22.3.1.s390x.rpm grub2-s390x-emu-2.04-22.3.1.s390x.rpm grub2-s390x-emu-debug-2.04-22.3.1.s390x.rpm grub2-2.04-22.3.1.ppc64le.rpm grub2-branding-upstream-2.04-22.3.1.ppc64le.rpm grub2-2.04-22.3.1.aarch64.rpm grub2-branding-upstream-2.04-22.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2821 moderate SUSE Updates openSUSE-SLE 15.3 This update for ClusterTools2 fixes the following issues: - change version from 3.1.0 to 3.1.1 - As some of the supportconfig plugins of ClusterTools2 take very long time to process, we will disable these plugins by default. (bsc#1186119) - Add file samples to support SLE15. (bsc#1166943) ClusterTools2-3.1.1-8.6.1.noarch.rpm ClusterTools2-3.1.1-8.6.1.src.rpm openSUSE-SLE-15.3-2021-2982 moderate SUSE Updates openSUSE-SLE 15.3 This update for python fixes the following issues: - Fix for python base to contain the same version numbers as are in reality the ones in the bundled wheels. (bsc#1187668) libpython2_7-1_0-2.7.18-7.58.1.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-7.58.1.x86_64.rpm python-2.7.18-7.58.1.src.rpm python-2.7.18-7.58.1.x86_64.rpm python-32bit-2.7.18-7.58.1.x86_64.rpm python-base-2.7.18-7.58.1.src.rpm python-base-2.7.18-7.58.1.x86_64.rpm python-base-32bit-2.7.18-7.58.1.x86_64.rpm python-curses-2.7.18-7.58.1.x86_64.rpm python-demo-2.7.18-7.58.1.x86_64.rpm python-devel-2.7.18-7.58.1.x86_64.rpm python-doc-2.7.18-7.58.1.noarch.rpm python-doc-2.7.18-7.58.1.src.rpm python-doc-pdf-2.7.18-7.58.1.noarch.rpm python-gdbm-2.7.18-7.58.1.x86_64.rpm python-idle-2.7.18-7.58.1.x86_64.rpm python-tk-2.7.18-7.58.1.x86_64.rpm python-xml-2.7.18-7.58.1.x86_64.rpm libpython2_7-1_0-2.7.18-7.58.1.s390x.rpm python-2.7.18-7.58.1.s390x.rpm python-base-2.7.18-7.58.1.s390x.rpm python-curses-2.7.18-7.58.1.s390x.rpm python-demo-2.7.18-7.58.1.s390x.rpm python-devel-2.7.18-7.58.1.s390x.rpm python-gdbm-2.7.18-7.58.1.s390x.rpm python-idle-2.7.18-7.58.1.s390x.rpm python-tk-2.7.18-7.58.1.s390x.rpm python-xml-2.7.18-7.58.1.s390x.rpm libpython2_7-1_0-2.7.18-7.58.1.ppc64le.rpm python-2.7.18-7.58.1.ppc64le.rpm python-base-2.7.18-7.58.1.ppc64le.rpm python-curses-2.7.18-7.58.1.ppc64le.rpm python-demo-2.7.18-7.58.1.ppc64le.rpm python-devel-2.7.18-7.58.1.ppc64le.rpm python-gdbm-2.7.18-7.58.1.ppc64le.rpm python-idle-2.7.18-7.58.1.ppc64le.rpm python-tk-2.7.18-7.58.1.ppc64le.rpm python-xml-2.7.18-7.58.1.ppc64le.rpm libpython2_7-1_0-2.7.18-7.58.1.aarch64.rpm python-2.7.18-7.58.1.aarch64.rpm python-base-2.7.18-7.58.1.aarch64.rpm python-curses-2.7.18-7.58.1.aarch64.rpm python-demo-2.7.18-7.58.1.aarch64.rpm python-devel-2.7.18-7.58.1.aarch64.rpm python-gdbm-2.7.18-7.58.1.aarch64.rpm python-idle-2.7.18-7.58.1.aarch64.rpm python-tk-2.7.18-7.58.1.aarch64.rpm python-xml-2.7.18-7.58.1.aarch64.rpm openSUSE-SLE-15.3-2021-3779 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-iscsi-client fixes the following issues: - Add iscsi support for qedi/qede offload cards (bsc#1188139, bsc#1187958). yast2-iscsi-client-4.3.4-3.3.2.noarch.rpm yast2-iscsi-client-4.3.4-3.3.2.src.rpm openSUSE-SLE-15.3-2021-2869 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-update fixes the following issues: - Avoid to bind-mount /run twice. (bsc#1181066) yast2-update-4.3.3-3.3.1.src.rpm yast2-update-4.3.3-3.3.1.x86_64.rpm yast2-update-FACTORY-4.3.3-3.3.1.x86_64.rpm yast2-update-4.3.3-3.3.1.s390x.rpm yast2-update-FACTORY-4.3.3-3.3.1.s390x.rpm yast2-update-4.3.3-3.3.1.ppc64le.rpm yast2-update-FACTORY-4.3.3-3.3.1.ppc64le.rpm yast2-update-4.3.3-3.3.1.aarch64.rpm yast2-update-FACTORY-4.3.3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2881 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-nis-server fixes the following issues: - Set X-SuSE-YaST-AutoInstClient in the desktop file to properly determine the client name. (bsc#1188644) yast2-nis-server-4.3.2-3.3.1.noarch.rpm yast2-nis-server-4.3.2-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2901 moderate SUSE Updates openSUSE-SLE 15.3 This update for insserv-compat fixes the following issues: - Require sysvinit-tools. (bsc#1187941) insserv-compat-0.1-4.6.1.noarch.rpm insserv-compat-0.1-4.6.1.src.rpm openSUSE-SLE-15.3-2021-2871 moderate SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - Fix an assertion failure in the 'rehash()' function (bsc#1188763) When calculating the new hashtable bitsize, there was an off-by-one error that would allow the new bitsize to be larger than maximum allowed. - tsig-keygen is now used to generate DDNS keys (bsc#1187921) bind-9.16.6-12.54.2.src.rpm bind-devel-32bit-9.16.6-12.54.2.x86_64.rpm libbind9-1600-32bit-9.16.6-12.54.2.x86_64.rpm libdns1605-32bit-9.16.6-12.54.2.x86_64.rpm libirs1601-32bit-9.16.6-12.54.2.x86_64.rpm libisc1606-32bit-9.16.6-12.54.2.x86_64.rpm libisccc1600-32bit-9.16.6-12.54.2.x86_64.rpm libisccfg1600-32bit-9.16.6-12.54.2.x86_64.rpm libns1604-32bit-9.16.6-12.54.2.x86_64.rpm openSUSE-SLE-15.3-2021-2886 moderate SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - tsig-keygen is now used to generate DDNS keys (bsc#1187921) bind-9.16.6-22.10.1.src.rpm bind-9.16.6-22.10.1.x86_64.rpm bind-chrootenv-9.16.6-22.10.1.x86_64.rpm bind-devel-9.16.6-22.10.1.x86_64.rpm bind-doc-9.16.6-22.10.1.noarch.rpm bind-utils-9.16.6-22.10.1.x86_64.rpm libbind9-1600-9.16.6-22.10.1.x86_64.rpm libdns1605-9.16.6-22.10.1.x86_64.rpm libirs-devel-9.16.6-22.10.1.x86_64.rpm libirs1601-9.16.6-22.10.1.x86_64.rpm libisc1606-9.16.6-22.10.1.x86_64.rpm libisccc1600-9.16.6-22.10.1.x86_64.rpm libisccfg1600-9.16.6-22.10.1.x86_64.rpm libns1604-9.16.6-22.10.1.x86_64.rpm python3-bind-9.16.6-22.10.1.noarch.rpm bind-9.16.6-22.10.1.s390x.rpm bind-chrootenv-9.16.6-22.10.1.s390x.rpm bind-devel-9.16.6-22.10.1.s390x.rpm bind-utils-9.16.6-22.10.1.s390x.rpm libbind9-1600-9.16.6-22.10.1.s390x.rpm libdns1605-9.16.6-22.10.1.s390x.rpm libirs-devel-9.16.6-22.10.1.s390x.rpm libirs1601-9.16.6-22.10.1.s390x.rpm libisc1606-9.16.6-22.10.1.s390x.rpm libisccc1600-9.16.6-22.10.1.s390x.rpm libisccfg1600-9.16.6-22.10.1.s390x.rpm libns1604-9.16.6-22.10.1.s390x.rpm bind-9.16.6-22.10.1.ppc64le.rpm bind-chrootenv-9.16.6-22.10.1.ppc64le.rpm bind-devel-9.16.6-22.10.1.ppc64le.rpm bind-utils-9.16.6-22.10.1.ppc64le.rpm libbind9-1600-9.16.6-22.10.1.ppc64le.rpm libdns1605-9.16.6-22.10.1.ppc64le.rpm libirs-devel-9.16.6-22.10.1.ppc64le.rpm libirs1601-9.16.6-22.10.1.ppc64le.rpm libisc1606-9.16.6-22.10.1.ppc64le.rpm libisccc1600-9.16.6-22.10.1.ppc64le.rpm libisccfg1600-9.16.6-22.10.1.ppc64le.rpm libns1604-9.16.6-22.10.1.ppc64le.rpm bind-9.16.6-22.10.1.aarch64.rpm bind-chrootenv-9.16.6-22.10.1.aarch64.rpm bind-devel-9.16.6-22.10.1.aarch64.rpm bind-utils-9.16.6-22.10.1.aarch64.rpm libbind9-1600-9.16.6-22.10.1.aarch64.rpm libdns1605-9.16.6-22.10.1.aarch64.rpm libirs-devel-9.16.6-22.10.1.aarch64.rpm libirs1601-9.16.6-22.10.1.aarch64.rpm libisc1606-9.16.6-22.10.1.aarch64.rpm libisccc1600-9.16.6-22.10.1.aarch64.rpm libisccfg1600-9.16.6-22.10.1.aarch64.rpm libns1604-9.16.6-22.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3028 moderate SUSE Updates openSUSE-SLE 15.3 This update for wxWidgets-3_0 fixes the following issues: Update from version 3.0.3 to 3.0.5.1 (bsc#1180492, jsc#ECO-3376) - Workaround for the problem with overflowing the maximum command line length in MinGW builds not using configure. - Fix for a problem with 'wxSpinCtrl' in 'wxGTK' - Update the 'SOVERSION' - Relax the ABI changes avoiding to check for the exact match of '__GXX_ABI_VERSION'. - Build 'wxWidgets-3_0-nostl' variant with LTO disabled. (bsc#1162418) - Don't crash on trailing '%' in 'wxDateTime::Format()'. - Fix various problems when parsing invalid ZIP files. - Fix generic 'wxTimePickerCtrl' to accept max values from keyboard. - Multiple surrogate-related fixes in UTF-16 support. - Fix reading wide character data in 'wxFile::ReadAll()'. - Make parsing 'WAV' data more robust. - Fix copy 'ctor' in numeric validators classes. - Fix a memory error when 'wxDataViewCtrl' is deleted. - Avoid some GTK+ run-time errors when using 'wx{File,Dir}PickerCtrl'. - Prevent breaking binaries, if C++11 is enabled. libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_net-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_baseu_xml-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_adv-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_aui-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_core-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_gl-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_html-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_media-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_propgrid-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_qa-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_ribbon-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_richtext-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_stc-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.x86_64.rpm libwx_gtk2u_xrc-suse3_0_5-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-3.0.5.1-11.3.2.src.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-devel-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-nostl-3.0.5.1-11.3.2.src.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-32bit-3.0.5.1-11.3.2.x86_64.rpm wxWidgets-lang-3.0.5.1-11.3.2.noarch.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.s390x.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.s390x.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.s390x.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.ppc64le.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.ppc64le.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.ppc64le.rpm libwx_baseu-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_baseu_net-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_net-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_net-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_baseu_xml-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_xml-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_baseu_xml-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_adv-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_adv-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_adv-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_aui-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_aui-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_aui-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_core-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_core-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_core-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_gl-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_gl-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_gl-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_html-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_html-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_html-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_media-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_media-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_media-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_propgrid-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_propgrid-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_propgrid-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_qa-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_qa-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_qa-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_ribbon-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_ribbon-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_ribbon-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_richtext-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_richtext-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_richtext-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_stc-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_stc-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_stc-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm libwx_gtk2u_xrc-suse-nostl3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_xrc-suse3_0_5-3.0.5.1-11.3.2.aarch64.rpm libwx_gtk2u_xrc-suse3_0_5-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm wxWidgets-3_0-devel-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-devel-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm wxWidgets-3_0-nostl-devel-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-3.0.5.1-11.3.2.aarch64.rpm wxWidgets-3_0-plugin-sound_sdlu-3_0-64bit-3.0.5.1-11.3.2.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-3139 moderate SUSE Updates openSUSE-SLE 15.3 This update for openhpi fixes the following issues: - Use /run not /var/run for PID file creation (bsc#1185173) - Remove group rights on config file (bsc#1190042) libopenhpi4-3.8.0-3.6.1.x86_64.rpm openhpi-3.8.0-3.6.1.src.rpm openhpi-3.8.0-3.6.1.x86_64.rpm openhpi-clients-3.8.0-3.6.1.x86_64.rpm openhpi-daemon-3.8.0-3.6.1.x86_64.rpm openhpi-devel-3.8.0-3.6.1.x86_64.rpm libopenhpi4-3.8.0-3.6.1.s390x.rpm openhpi-3.8.0-3.6.1.s390x.rpm openhpi-clients-3.8.0-3.6.1.s390x.rpm openhpi-daemon-3.8.0-3.6.1.s390x.rpm openhpi-devel-3.8.0-3.6.1.s390x.rpm libopenhpi4-3.8.0-3.6.1.ppc64le.rpm openhpi-3.8.0-3.6.1.ppc64le.rpm openhpi-clients-3.8.0-3.6.1.ppc64le.rpm openhpi-daemon-3.8.0-3.6.1.ppc64le.rpm openhpi-devel-3.8.0-3.6.1.ppc64le.rpm libopenhpi4-3.8.0-3.6.1.aarch64.rpm openhpi-3.8.0-3.6.1.aarch64.rpm openhpi-clients-3.8.0-3.6.1.aarch64.rpm openhpi-daemon-3.8.0-3.6.1.aarch64.rpm openhpi-devel-3.8.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2667 moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for system-user-prometheus provides the following fixes: - Provide the user and group 'prometheus' to SUSE Enterprise Storage 6 needed by 'golang-github-prometheus-prometheus' (jsc#SLE-18254) system-user-prometheus-1.0.0-3.8.1.noarch.rpm system-user-prometheus-1.0.0-3.8.1.src.rpm openSUSE-SLE-15.3-2021-2598 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.3: - CVE-2021-21775: Fixed a use-after-free vulnerability in the way certain events are processed for ImageLoader objects. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-21779: Fixed a use-after-free vulnerability in the way that WebKit GraphicsContext handles certain events. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability. (bsc#1188697) - CVE-2021-30663: An integer overflow was addressed with improved input validation. (bsc#1188697) - CVE-2021-30665: A memory corruption issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30689: A logic issue was addressed with improved state management. (bsc#1188697) - CVE-2021-30720: A logic issue was addressed with improved restrictions. (bsc#1188697) - CVE-2021-30734: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30744: A cross-origin issue with iframe elements was addressed with improved tracking of security origins. (bsc#1188697) - CVE-2021-30749: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) - CVE-2021-30758: A type confusion issue was addressed with improved state handling. (bsc#1188697) - CVE-2021-30795: A use after free issue was addressed with improved memory management. (bsc#1188697) - CVE-2021-30797: This issue was addressed with improved checks. (bsc#1188697) - CVE-2021-30799: Multiple memory corruption issues were addressed with improved memory handling. (bsc#1188697) libjavascriptcoregtk-4_0-18-2.32.3-9.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.3-9.1.x86_64.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.3-9.1.x86_64.rpm libwebkit2gtk3-lang-2.32.3-9.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.x86_64.rpm webkit-jsc-4-2.32.3-9.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.x86_64.rpm webkit2gtk3-2.32.3-9.1.src.rpm webkit2gtk3-devel-2.32.3-9.1.x86_64.rpm webkit2gtk3-minibrowser-2.32.3-9.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.s390x.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.s390x.rpm webkit-jsc-4-2.32.3-9.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.s390x.rpm webkit2gtk3-devel-2.32.3-9.1.s390x.rpm webkit2gtk3-minibrowser-2.32.3-9.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.ppc64le.rpm webkit-jsc-4-2.32.3-9.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.ppc64le.rpm webkit2gtk3-devel-2.32.3-9.1.ppc64le.rpm webkit2gtk3-minibrowser-2.32.3-9.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.3-9.1.aarch64.rpm libwebkit2gtk-4_0-37-2.32.3-9.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.3-9.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.3-9.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.3-9.1.aarch64.rpm webkit-jsc-4-2.32.3-9.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.3-9.1.aarch64.rpm webkit2gtk3-devel-2.32.3-9.1.aarch64.rpm webkit2gtk3-minibrowser-2.32.3-9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3045 important SUSE Updates openSUSE-SLE 15.3 This update for golang-github-vpenso-prometheus_slurm_exporter fixes the following issues: - Update to version 0.19 - GPUs accounting has to be activated explicitly via cmd line option. - Export detailed usage info for every node (CPU, Memory). - With the present version of Slurm (20.11), GPU accounting in the prometheus-slurm-exporter will cause the exporter to terminate, thus it must not be enabled for the time being. (bsc#1188619) - Do not ship sources. golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.src.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.x86_64.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.s390x.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.ppc64le.rpm golang-github-vpenso-prometheus_slurm_exporter-0.19-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2622 moderate SUSE Updates openSUSE-SLE 15.3 This update for mysql-connector-java fixes the following issues: - CVE-2020-2875: Unauthenticated attacker with network access via multiple protocols can compromise MySQL Connectors. (bsc#1173600) - CVE-2020-2934: Fixed a vulnerability which could cause a partial denial of service of MySQL Connectors. (bsc#1173600) - CVE-2020-2933: Fixed a vulnerability which could allows high privileged attacker with network access via multiple protocols to compromise MySQL Connectors. (bsc#1173600) mysql-connector-java-5.1.47-3.3.1.noarch.rpm mysql-connector-java-5.1.47-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2798 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - Update to version jdk8u302 (icedtea 3.20.0) - CVE-2021-2341: Improve file transfers. (bsc#1188564) - CVE-2021-2369: Better jar file validation. (bsc#1188565) - CVE-2021-2388: Enhance compiler validation. (bsc#1188566) - CVE-2021-2161: Less ambiguous processing. (bsc#1185056) java-1_8_0-openjdk-1.8.0.302-3.55.2.src.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.302-3.55.2.noarch.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.x86_64.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.s390x.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.ppc64le.rpm java-1_8_0-openjdk-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.302-3.55.2.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.302-3.55.2.aarch64.rpm openSUSE-SLE-15.3-2021-2915 moderate SUSE Updates openSUSE-SLE 15.3 This update for gstreamer-plugins-good fixes the following issues: - CVE-2021-3498: Matroskademux: initialize track context out parameter to NULL before parsing (bsc#1184735). - CVE-2021-3497: Matroskademux: Fix extraction of multichannel WavPack (bsc#1184739). gstreamer-plugins-good-1.16.3-3.6.1.src.rpm gstreamer-plugins-good-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-extra-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-jack-32bit-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-lang-1.16.3-3.6.1.noarch.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.x86_64.rpm gstreamer-plugins-good-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.s390x.rpm gstreamer-plugins-good-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.ppc64le.rpm gstreamer-plugins-good-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-doc-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-extra-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-gtk-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-jack-1.16.3-3.6.1.aarch64.rpm gstreamer-plugins-good-qtqml-1.16.3-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2855 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: This ships the new parallel rust 1.54 version. Version 1.54.0 (2021-07-29) Language: - You can now use macros for values in built-in attribute macros. While a seemingly minor addition on its own, this enables a lot of powerful functionality when combined correctly. Most notably you can now include external documentation in your crate by writing the following. ```rust #![doc = include_str!("README.md")] ``` You can also use this to include auto-generated modules: ```rust #[path = concat!(env!("OUT_DIR"), "/generated.rs")] mod generated; ``` - You can now cast between unsized slice types (and types which contain unsized slices) in `const fn`. - You can now use multiple generic lifetimes with `impl Trait` where the lifetimes don't explicitly outlive another. In code this means that you can now have `impl Trait<'a, 'b>` where as before you could only have `impl Trait<'a, 'b> where 'b: 'a`. Compiler: - Rustc will now search for custom JSON targets in `/lib/rustlib/<target-triple>/target.json` where `/` is the "sysroot" directory. You can find your sysroot directory by running `rustc --print sysroot`. - Added `wasm` as a `target_family` for WebAssembly platforms. - You can now use `#[target_feature]` on safe functions when targeting WebAssembly platforms. - Improved debugger output for enums on Windows MSVC platforms. - Added tier 3\* support for `bpfel-unknown-none` and `bpfeb-unknown-none`. \* Refer to Rust's platform support page for more information on Rust's tiered platform support. Libraries: - `panic::panic_any` will now `#[track_caller]`. - Added `OutOfMemory` as a variant of `io::ErrorKind`. - `proc_macro::Literal` now implements `FromStr`. - The implementations of vendor intrinsics in core::arch have been significantly refactored. The main user-visible changes are a 50% reduction in the size of libcore.rlib and stricter validation of constant operands passed to intrinsics. The latter is technically a breaking change, but allows Rust to more closely match the C vendor intrinsics API. Stabilized APIs: - BTreeMap::into_keys - BTreeMap::into_values - HashMap::into_keys - HashMap::into_values - arch::wasm32 - VecDeque::binary_search - VecDeque::binary_search_by - VecDeque::binary_search_by_key - VecDeque::partition_point Cargo: - Added the `--prune <spec>` option to `cargo-tree` to remove a package from the dependency graph. - Added the `--depth` option to `cargo-tree` to print only to a certain depth in the tree. - Added the `no-proc-macro` value to `cargo-tree --edges` to hide procedural macro dependencies. - A new environment variable named `CARGO_TARGET_TMPDIR` is available. This variable points to a directory that integration tests and benches can use as a "scratchpad" for testing filesystem operations. cargo-1.54.0-21.6.2.i586.rpm rust-1.54.0-21.6.2.i586.rpm rust-1.54.0-21.6.2.src.rpm rust-gdb-1.54.0-21.6.2.i586.rpm cargo-1.54.0-21.6.2.x86_64.rpm cargo1.54-1.54.0-7.3.1.x86_64.rpm cargo1.54-doc-1.54.0-7.3.1.noarch.rpm rls-1.54.0-21.6.2.x86_64.rpm rls1.54-1.54.0-7.3.1.x86_64.rpm rust-1.54.0-21.6.2.x86_64.rpm rust-gdb-1.54.0-21.6.2.x86_64.rpm rust1.54-1.54.0-7.3.1.src.rpm rust1.54-1.54.0-7.3.1.x86_64.rpm rust1.54-analysis-1.54.0-7.3.1.x86_64.rpm rust1.54-doc-1.54.0-7.3.1.x86_64.rpm rust1.54-gdb-1.54.0-7.3.1.x86_64.rpm rust1.54-src-1.54.0-7.3.1.noarch.rpm cargo-1.54.0-21.6.2.s390x.rpm cargo1.54-1.54.0-7.3.1.s390x.rpm rust-1.54.0-21.6.2.s390x.rpm rust-gdb-1.54.0-21.6.2.s390x.rpm rust1.54-1.54.0-7.3.1.s390x.rpm rust1.54-gdb-1.54.0-7.3.1.s390x.rpm cargo-1.54.0-21.6.2.ppc64le.rpm cargo1.54-1.54.0-7.3.1.ppc64le.rpm rust-1.54.0-21.6.2.ppc64le.rpm rust-gdb-1.54.0-21.6.2.ppc64le.rpm rust1.54-1.54.0-7.3.1.ppc64le.rpm rust1.54-gdb-1.54.0-7.3.1.ppc64le.rpm cargo-1.54.0-21.6.2.aarch64.rpm cargo1.54-1.54.0-7.3.1.aarch64.rpm rls-1.54.0-21.6.2.aarch64.rpm rls1.54-1.54.0-7.3.1.aarch64.rpm rust-1.54.0-21.6.2.aarch64.rpm rust-gdb-1.54.0-21.6.2.aarch64.rpm rust1.54-1.54.0-7.3.1.aarch64.rpm rust1.54-analysis-1.54.0-7.3.1.aarch64.rpm rust1.54-doc-1.54.0-7.3.1.aarch64.rpm rust1.54-gdb-1.54.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2947 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: - Added data for 4_12_14-197_92, 5_3_18-24_53_4, 5_3_18-24_67, 5_3_18-57, 5_3_18-59_10, 5_3_18-59_5. (bsc#1020320) lifecycle-data-sle-module-live-patching-15-4.57.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.57.1.src.rpm openSUSE-SLE-15.3-2021-2792 important SUSE Updates openSUSE-SLE 15.3 This update for libass fixes the following issues: - CVE-2020-36430: Fixed heap-based buffer overflow in decode_chars (bsc#1188539). libass-0.14.0-3.9.1.src.rpm libass-devel-0.14.0-3.9.1.x86_64.rpm libass9-0.14.0-3.9.1.x86_64.rpm libass9-32bit-0.14.0-3.9.1.x86_64.rpm libass-devel-0.14.0-3.9.1.s390x.rpm libass9-0.14.0-3.9.1.s390x.rpm libass-devel-0.14.0-3.9.1.ppc64le.rpm libass9-0.14.0-3.9.1.ppc64le.rpm libass-devel-0.14.0-3.9.1.aarch64.rpm libass9-0.14.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2795 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdo_firebase module (bsc#1188035). php7-7.2.5-4.79.1.src.rpm php7-wddx-7.2.5-4.79.1.x86_64.rpm php7-wddx-7.2.5-4.79.1.s390x.rpm php7-wddx-7.2.5-4.79.1.ppc64le.rpm php7-wddx-7.2.5-4.79.1.aarch64.rpm openSUSE-SLE-15.3-2021-2625 moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils fixes the following issues: ethtool was updated to version 3.1.17: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) - Adding ethtool options g l m to network.txt (jsc#SLE-18240) - lsof options to improve performance (bsc#1186687) - Exclude rhn.conf from etc.txt (bsc#1186347) - analyzevmcore supports local directories (bsc#1186397) - getappcore checks for valid compression binary (bsc#1185991) - getappcore does not trigger errors with help message (bsc#1185993) supportutils-3.1.17-7.35.5.1.noarch.rpm supportutils-3.1.17-7.35.5.1.src.rpm openSUSE-SLE-15.3-2021-2626 moderate SUSE Updates openSUSE-SLE 15.3 This update for libeconf fixes the following issue: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) libeconf-0.3.8+git20200710.5126fff-3.2.1.src.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf0-32bit-0.3.8+git20200710.5126fff-3.2.1.x86_64.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.s390x.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.s390x.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.ppc64le.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.ppc64le.rpm libeconf-devel-0.3.8+git20200710.5126fff-3.2.1.aarch64.rpm libeconf0-0.3.8+git20200710.5126fff-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-2627 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-default-settings fixes the following issue: - Solve a downgrade issue between SUSE Linux Enterprise SP3 and lower (bsc#1188348) systemd-default-settings-0.7-3.2.1.noarch.rpm systemd-default-settings-0.7-3.2.1.src.rpm systemd-default-settings-branding-SLE-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-SLE-Micro-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-openSUSE-0.7-3.2.1.noarch.rpm systemd-default-settings-branding-upstream-0.7-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-2794 important SUSE Updates openSUSE-SLE 15.3 This update for aspell fixes the following issues: - CVE-2019-25051: Fixed heap-buffer-overflow in acommon:ObjStack:dup_top (bsc#1188576). aspell-0.60.8-3.3.1.src.rpm aspell-0.60.8-3.3.1.x86_64.rpm aspell-devel-0.60.8-3.3.1.x86_64.rpm aspell-ispell-0.60.8-3.3.1.x86_64.rpm aspell-spell-0.60.8-3.3.1.x86_64.rpm libaspell15-0.60.8-3.3.1.x86_64.rpm libaspell15-32bit-0.60.8-3.3.1.x86_64.rpm libpspell15-0.60.8-3.3.1.x86_64.rpm libpspell15-32bit-0.60.8-3.3.1.x86_64.rpm aspell-0.60.8-3.3.1.s390x.rpm aspell-devel-0.60.8-3.3.1.s390x.rpm aspell-ispell-0.60.8-3.3.1.s390x.rpm aspell-spell-0.60.8-3.3.1.s390x.rpm libaspell15-0.60.8-3.3.1.s390x.rpm libpspell15-0.60.8-3.3.1.s390x.rpm aspell-0.60.8-3.3.1.ppc64le.rpm aspell-devel-0.60.8-3.3.1.ppc64le.rpm aspell-ispell-0.60.8-3.3.1.ppc64le.rpm aspell-spell-0.60.8-3.3.1.ppc64le.rpm libaspell15-0.60.8-3.3.1.ppc64le.rpm libpspell15-0.60.8-3.3.1.ppc64le.rpm aspell-0.60.8-3.3.1.aarch64.rpm aspell-devel-0.60.8-3.3.1.aarch64.rpm aspell-ispell-0.60.8-3.3.1.aarch64.rpm aspell-spell-0.60.8-3.3.1.aarch64.rpm libaspell15-0.60.8-3.3.1.aarch64.rpm libpspell15-0.60.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2681 important SUSE Updates openSUSE-SLE 15.3 This update for growpart-rootgrow fixes the following issues: - Fix root partition ID lookup. Only consider trailing digits to be part of the paritition ID. (bsc#1188868) (bsc#1188904) growpart-rootgrow-1.0.5-1.9.1.noarch.rpm growpart-rootgrow-1.0.5-1.9.1.src.rpm openSUSE-SLE-15.3-2021-2973 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Update pci, usb and vendor ids (bsc#1190091) hwdata-0.351-3.29.1.noarch.rpm hwdata-0.351-3.29.1.src.rpm openSUSE-SLE-15.3-2021-2687 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876). - CVE-2021-21781: Fixed a information disclosure vulnerability in the ARM SIGPAGE (bsc#1188445). - CVE-2021-22543: Fixed improper handling of VM_IO|VM_PFNMAP vmas in KVM, which could bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bsc#1186482). - CVE-2021-37576: Fixed an issue on the powerpc platform, where a KVM guest OS user could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a potential local privilege escalation in the CAN BCM networking protocol (bsc#1187215). - CVE-2021-3612: Fixed an out-of-bounds memory write flaw in the joystick devices subsystem. This flaw allowed a local user to crash the system or possibly escalate their privileges on the system. (bsc#1187585) - CVE-2021-35039: Fixed mishandling of signature verification. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via init_module, did not occur for a module.sig_enforce=1 command-line argument (bsc#1188080). The following non-security bugs were fixed: - ACPI: AMBA: Fix resource name in /proc/iomem (git-fixes). - ACPI: APEI: fix synchronous external aborts in user-mode (git-fixes). - ACPI: DPTF: Fix reading of attributes (git-fixes). - ACPI: EC: Make more Asus laptops use ECDT _GPE (git-fixes). - ACPI: PM / fan: Put fan device IDs into separate header file (git-fixes). - ACPI: bus: Call kobject_put() in acpi_init() error path (git-fixes). - ACPI: processor idle: Fix up C-state latency if not ordered (git-fixes). - ACPI: property: Constify stubs for CONFIG_ACPI=n case (git-fixes). - ACPI: resources: Add checks for ACPI IRQ override (git-fixes). - ACPI: sysfs: Fix a buffer overrun problem with description_show() (git-fixes). - ACPI: video: Add quirk for the Dell Vostro 3350 (git-fixes). - ACPICA: Fix memory leak caused by _CID repair function (git-fixes). - ALSA: ac97: fix PM reference leak in ac97_bus_remove() (git-fixes). - ALSA: bebob: add support for ToneWeal FW66 (git-fixes). - ALSA: firewire-motu: fix detection for S/PDIF source on optical interface in v2 protocol (git-fixes). - ALSA: firewire-motu: fix stream format for MOTU 8pre FireWire (git-fixes). - ALSA: hda/realtek: Add another ALC236 variant support (git-fixes). - ALSA: hda/realtek: Apply LED fixup for HP Dragonfly G1, too (git-fixes). - ALSA: hda/realtek: Fix bass speaker DAC mapping for Asus UM431D (git-fixes). - ALSA: hda/realtek: Fix pop noise and 2 Front Mic issues on a machine (git-fixes). - ALSA: hda/realtek: Improve fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook x360 830 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8 (git-fixes). - ALSA: hda: Add IRQ check for platform_get_irq() (git-fixes). - ALSA: hda: intel-dsp-cfg: add missing ElkhartLake PCI ID (git-fixes). - ALSA: hdmi: Expose all pins on MSI MS-7C94 board (git-fixes). - ALSA: intel8x0: Fix breakage at ac97 clock measurement (git-fixes). - ALSA: isa: Fix error return code in snd_cmi8330_probe() (git-fixes). - ALSA: pcm - fix mmap capability check for the snd-dummy driver (git-fixes). - ALSA: pcm: Call substream ack() method upon compat mmap commit (git-fixes). - ALSA: pcm: Fix mmap capability check (git-fixes). - ALSA: ppc: fix error return code in snd_pmac_probe() (git-fixes). - ALSA: sb: Fix potential ABBA deadlock in CSP driver (git-fixes). - ALSA: sb: Fix potential double-free of CSP mixer elements (git-fixes). - ALSA: usb-audio: Add missing proc text entry for BESPOKEN type (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum headsets (git-fixes). - ALSA: usb-audio: Fix OOB access at proc output (git-fixes). - ALSA: usb-audio: fix rate on Ozone Z90 USB headset (git-fixes). - ALSA: usb-audio: scarlett2: Fix 18i8 Gen 2 PCM Input count (git-fixes). - ALSA: usb-audio: scarlett2: Fix 6i6 Gen 2 line out descriptions (git-fixes). - ALSA: usb-audio: scarlett2: Fix data_mutex lock (git-fixes). - ALSA: usb-audio: scarlett2: Fix scarlett2_*_ctl_put() return values (git-fixes). - ALSA: usb-audio: scarlett2: Fix wrong resume call (git-fixes). - ALSA: usb-audio: scarlett2: Read mixer volumes at init time (git-fixes). - ALSA: usb-audio: scarlett2: Read mux at init time (git-fixes). - ALSA: usx2y: Avoid camelCase (git-fixes). - ALSA: usx2y: Do not call free_pages_exact() with NULL address (git-fixes). - ARM: ensure the signal page contains defined contents (bsc#1188445). - ASoC: Intel: kbl_da7219_max98357a: shrink platform_id below 20 characters (git-fixes). - ASoC: Intel: sof_sdw: add SOF_RT715_DAI_ID_FIX for AlderLake (git-fixes). - ASoC: Intel: sof_sdw: add mutual exclusion between PCH DMIC and RT715 (git-fixes). - ASoC: SOF: loader: Use snd_sof_dsp_block_read() instead sof_block_read() (git-fixes). - ASoC: atmel-i2s: Fix usage of capture and playback at the same time (git-fixes). - ASoC: cs42l42: Correct definition of CS42L42_ADC_PDN_MASK (git-fixes). - ASoC: fsl_spdif: Fix error handler with pm_runtime_enable (git-fixes). - ASoC: fsl_spdif: Fix unexpected interrupt after suspend (git-fixes). - ASoC: hisilicon: fix missing clk_disable_unprepare() on error in hi6210_i2s_startup() (git-fixes). - ASoC: img: Fix PM reference leak in img_i2s_in_probe() (git-fixes). - ASoC: intel/boards: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: max98373-sdw: add missing memory allocation check (git-fixes). - ASoC: max98373-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: mediatek: mtk-btcvsd: Fix an error handling path in 'mtk_btcvsd_snd_probe()' (git-fixes). - ASoC: rk3328: fix missing clk_disable_unprepare() on error in rk3328_platform_probe() (git-fixes). - ASoC: rsnd: tidyup loop on rsnd_adg_clk_query() (git-fixes). - ASoC: rt1308-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5631: Fix regcache sync errors on resume (git-fixes). - ASoC: rt5682-sdw: set regcache_cache_only false before reading RT5682_DEVICE_ID (git-fixes). - ASoC: rt5682-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5682: Disable irq on shutdown (git-fixes). - ASoC: rt5682: Fix a problem with error handling in the io init function of the soundwire (git-fixes). - ASoC: rt5682: fix getting the wrong device id when the suspend_stress_test (git-fixes). - ASoC: rt700-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt711-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt715-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: soc-core: Fix the error return code in snd_soc_of_parse_audio_routing() (git-fixes). - ASoC: soc-pcm: fix the return value in dpcm_apply_symmetry() (git-fixes). - ASoC: tegra: Set driver_name=tegra for all machine drivers (git-fixes). - ASoC: wm_adsp: Correct wm_coeff_tlv_get handling (git-fixes). - Bluetooth: Fix alt settings for incoming SCO with transparent coding format (git-fixes). - Bluetooth: Fix handling of HCI_LE_Advertising_Set_Terminated event (git-fixes). - Bluetooth: Fix the HCI to MGMT status conversion table (git-fixes). - Bluetooth: L2CAP: Fix invalid access if ECRED Reconfigure fails (git-fixes). - Bluetooth: L2CAP: Fix invalid access on ECRED Connection response (git-fixes). - Bluetooth: Remove spurious error message (git-fixes). - Bluetooth: Shutdown controller after workqueues are flushed or cancelled (git-fixes). - Bluetooth: btintel: Add infrastructure to read controller information (bsc#1188893). - Bluetooth: btintel: Check firmware version before download (bsc#1188893). - Bluetooth: btintel: Collect tlv based active firmware build info in FW mode (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version parsing (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Fix endianness issue for TLV version information (bsc#1188893). - Bluetooth: btintel: Fix offset calculation boot address parameter (bsc#1188893). - Bluetooth: btintel: Functions to send firmware header / payload (bsc#1188893). - Bluetooth: btintel: Move operational checks after version check (bsc#1188893). - Bluetooth: btintel: Refactor firmware download function (bsc#1188893). - Bluetooth: btintel: Reorganized bootloader mode tlv checks in intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Replace zero-length array with flexible-array member (bsc#1188893). - Bluetooth: btintel: Skip reading firmware file version while in bootloader mode (bsc#1188893). - Bluetooth: btqca: Do not modify firmware contents in-place (git-fixes). - Bluetooth: btusb: Add *setup* function for new generation Intel controllers (bsc#1188893). - Bluetooth: btusb: Add support USB ALT 3 for WBS (git-fixes). - Bluetooth: btusb: Add support for GarfieldPeak controller (bsc#1188893). - Bluetooth: btusb: Consolidate code for waiting firmware download (bsc#1188893). - Bluetooth: btusb: Define a function to construct firmware filename (bsc#1188893). - Bluetooth: btusb: Enable MSFT extension for Intel controllers (bsc#1188893). - Bluetooth: btusb: Fix failing to init controllers with operation firmware (bsc#1188893). - Bluetooth: btusb: Fixed too many in-token issue for Mediatek Chip (git-fixes). - Bluetooth: btusb: Helper function to download firmware to Intel adapters (bsc#1188893). - Bluetooth: btusb: Map Typhoon peak controller to BTUSB_INTEL_NEWGEN (bsc#1188893). - Bluetooth: btusb: Update boot parameter specific to SKU (bsc#1188893). - Bluetooth: btusb: fix bt fiwmare downloading failure issue for qca btsoc (git-fixes). - Bluetooth: btusb: print firmware file name on error loading firmware (bsc#1188893). - Bluetooth: hci_intel: drop strange le16_to_cpu() against u8 values (bsc#1188893). - Bluetooth: hci_intel: enable on new platform (bsc#1188893). - Bluetooth: hci_intel: switch to list_for_each_entry() (bsc#1188893). - Bluetooth: hci_qca: fix potential GPF (git-fixes). - Bluetooth: mgmt: Fix slab-out-of-bounds in tlv_data_is_valid (git-fixes). - Bluetooth: mgmt: Fix the command returns garbage parameter value (git-fixes). - HID: do not use down_interruptible() when unbinding devices (git-fixes). - HID: wacom: Correct base usage for capacitive ExpressKey status bits (git-fixes). - Input: hideep - fix the uninitialized use in hideep_nvm_unlock() (git-fixes). - Input: hil_kbd - fix error return code in hil_dev_connect() (git-fixes). - Input: ili210x - add missing negation for touch indication on ili210x (git-fixes). - Input: usbtouchscreen - fix control-request directions (git-fixes). - KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled (bsc#1188771). - KVM: SVM: document KVM_MEM_ENCRYPT_OP, let userspace detect if SEV is available (bsc#1188703). - KVM: nVMX: Consult only the "basic" exit reason when routing nested exit (bsc#1188773). - KVM: nVMX: Ensure 64-bit shift when checking VMFUNC bitmap (bsc#1188774). - KVM: nVMX: Preserve exception priority irrespective of exiting behavior (bsc#1188777). - PCI/sysfs: Fix dsm_label_utf16s_to_utf8s() buffer overrun (git-fixes). - PCI: Add AMD RS690 quirk to enable 64-bit DMA (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: aardvark: Fix checking for PIO Non-posted Request (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Support multi-MSI only on uniprocessor kernel (git-fixes). - PCI: quirks: fix false kABI positive (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra: Add missing MODULE_DEVICE_TABLE (git-fixes). - RDMA/cma: Fix incorrect Packet Lifetime calculation (jsc#SLE-8449). - RDMA/cma: Protect RMW with qp_mutex (git-fixes). - RDMA/hns: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx4: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx5: Remove unused parameter udata (jsc#SLE-15176). - RDMA/rtrs-clt: Check if the queue_depth has changed during a reconnection (jsc#SLE-15176). - RDMA/rtrs-clt: Check state of the rtrs_clt_sess before reading its stats (jsc#SLE-15176). - RDMA/rtrs-clt: Fix memory leak of not-freed sess->stats and stats->pcpu_stats (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak of unfreed rtrs_srv_stats object (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak when having multiple sessions (jsc#SLE-15176). - RDMA/rtrs-srv: Replace atomic_t with percpu_ref for ids_inflight (jsc#SLE-15176). - RDMA/rtrs-srv: Set minimal max_send_wr and max_recv_wr (jsc#SLE-15176). - RDMA/rtrs: Do not reset hb_missed_max after re-connection (jsc#SLE-15176). - RDMA/srp: Fix a recently introduced memory leak (jsc#SLE-15176). - Revert "ACPI: resources: Add checks for ACPI IRQ override" (git-fixes). - Revert "ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro" (git-fixes). - Revert "Bluetooth: btintel: Fix endianness issue for TLV version information" (bsc#1188893). - Revert "USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem" (git-fixes). - Revert "be2net: disable bh with spin_lock in be_process_mcc" (git-fixes). - Revert "drm/i915: Propagate errors on awaiting already signaled fences" (git-fixes). - Revert "drm: add a locked version of drm_is_current_master" (git-fixes). - Revert "ibmvnic: remove duplicate napi_schedule call in open function" (bsc#1065729). - Revert "iwlwifi: remove wide_cmd_header field" (bsc#1187495). - USB: cdc-acm: blacklist Heimann USB Appset device (git-fixes). - USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick (git-fixes). - USB: serial: cp210x: fix comments for GE CS1000 (git-fixes). - USB: serial: option: add support for u-blox LARA-R6 family (git-fixes). - USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS (git-fixes). - amdgpu: fix GEM obj leak in amdgpu_display_user_framebuffer_create (bsc#1152472) - ata: ahci_sunxi: Disable DIPM (git-fixes). - ath10k: Fix an error code in ath10k_add_interface() (git-fixes). - ath10k: add missing error return code in ath10k_pci_probe() (git-fixes). - ath10k: go to path err_unsupported when chip id is not supported (git-fixes). - ath10k: remove unused more_frags variable (git-fixes). - ath9k: Fix kernel NULL pointer dereference during ath_reset_internal() (git-fixes). - backlight: lm3630a: Fix return code of .update_status() callback (git-fixes). - backlight: lm3630a_bl: Put fwnode in error case during ->probe() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1184631). - bcache: remove bcache device self-defined readahead (bsc#1184631). - blk-mq: Add blk_mq_delay_run_hw_queues() API call (bsc#1180092). - blk-mq: In blk_mq_dispatch_rq_list() "no budget" is a reason to kick (bsc#1180092). - blk-mq: Put driver tag in blk_mq_dispatch_rq_list() when no budget (bsc#1180092). - blk-mq: Rerun dispatching in the case of budget contention (bsc#1180092). - blk-mq: insert flush request to the front of dispatch queue (bsc#1180092). - blk-mq: insert passthrough request into hctx->dispatch directly (bsc#1180092). - bnxt_en: Add missing check for BNXT_STATE_ABORT_ERR in bnxt_fw_rset_task() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Check abort error state in bnxt_half_open_nic() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Refresh RoCE capabilities in bnxt_ulp_probe() (jsc#SLE-8371 bsc#1153274). - bnxt_en: do not disable an already disabled PCI device (git-fixes). - bonding: Add struct bond_ipesc to manage SA (bsc#1176447). - bonding: disallow setting nested bonding + ipsec offload (bsc#1176447). - bonding: fix build issue (git-fixes). - bonding: fix incorrect return value of bond_ipsec_offload_ok() (bsc#1176447). - bonding: fix null dereference in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_del_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_offload_ok() (bsc#1176447). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1154353). - bpftool: Properly close va_list 'ap' by va_end() on error (bsc#1155518). - brcmfmac: Fix a double-free in brcmf_sdio_bus_reset (git-fixes). - brcmfmac: correctly report average RSSI in station info (git-fixes). - brcmfmac: fix setting of station info chains bitmask (git-fixes). - brcmsmac: mac80211_if: Fix a resource leak in an error handling path (git-fixes). - cadence: force nonlinear buffers to be cloned (git-fixes). - can: ems_usb: fix memory leak (git-fixes). - can: esd_usb2: fix memory leak (git-fixes). - can: gw: synchronize rcu operations before removing gw job entry (git-fixes). - can: hi311x: fix a signedness bug in hi3110_cmd() (git-fixes). - can: hi311x: hi3110_can_probe(): silence clang warning (git-fixes). - can: mcba_usb_start(): add missing urb->transfer_dma initialization (git-fixes). - can: peak_pciefd: pucan_handle_status(): fix a potential starvation issue in TX path (git-fixes). - can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF (git-fixes). - can: usb_8dev: fix memory leak (git-fixes). - ceph: do not WARN if we're still opening a session to an MDS (bsc#1188748). - cfg80211: call cfg80211_leave_ocb when switching away from OCB (git-fixes). - char: pcmcia: error out if 'num_bytes_read' is greater than 4 in set_protocol() (git-fixes). - cifs: Fix preauth hash corruption (git-fixes). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: fix interrupted close commands (git-fixes). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - clk: actions: Fix SD clocks factor table on Owl S500 SoC (git-fixes). - clk: actions: Fix UART clock dividers on Owl S500 SoC (git-fixes). - clk: actions: Fix bisp_factor_table based clocks on Owl S500 SoC (git-fixes). - clk: imx8mq: remove SYS PLL 1/2 clock gates (git-fixes). - clk: meson: g12a: fix gp0 and hifi ranges (git-fixes). - clk: renesas: r8a77995: Add ZA2 clock (git-fixes). - clk: renesas: rcar-gen3: Update Z clock rate formula in comments (git-fixes). - clk: si5341: Avoid divide errors due to bogus register contents (git-fixes). - clk: si5341: Update initialization magic (git-fixes). - clk: tegra: Ensure that PLLU configuration is applied properly (git-fixes). - clk: zynqmp: pll: Remove some dead code (git-fixes). - clocksource/arm_arch_timer: Improve Allwinner A64 timer workaround (git-fixes). - clocksource: Retry clock read if long delays detected (git-fixes). - coresight: Propagate symlink failure (git-fixes). - coresight: core: Fix use of uninitialized pointer (git-fixes). - cpu/hotplug: Cure the cpusets trainwreck (git fixes (sched/hotplug)). - cpufreq: sc520_freq: add 'fallthrough' to one case (git-fixes). - crypto: ccp - Fix a resource leak in an error handling path (git-fixes). - crypto: ixp4xx - dma_unmap the correct address (git-fixes). - crypto: nitrox - fix unchecked variable in nitrox_register_interrupts (git-fixes). - crypto: nx - add missing MODULE_DEVICE_TABLE (git-fixes). - crypto: omap-sham - Fix PM reference leak in omap sham ops (git-fixes). - crypto: qat - check return code of qat_hal_rd_rel_reg() (git-fixes). - crypto: qat - remove unused macro in FW loader (git-fixes). - crypto: sun4i-ss - IV register does not work on A10 and A13 (git-fixes). - crypto: sun4i-ss - checking sg length is not sufficient (git-fixes). - crypto: sun4i-ss - initialize need_fallback (git-fixes). - crypto: ux500 - Fix error return code in hash_hw_final() (git-fixes). - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - cw1200: add missing MODULE_DEVICE_TABLE (git-fixes). - cxgb4: fix IRQ free race during driver unload (git-fixes). - dma-buf/sync_file: Do not leak fences on merge failure (git-fixes). - dmaengine: fsl-qdma: check dma_set_mask return value (git-fixes). - dmaengine: mediatek: do not issue a new desc if one is still current (git-fixes). - dmaengine: mediatek: free the proper desc in desc_free handler (git-fixes). - dmaengine: mediatek: use GFP_NOWAIT instead of GFP_ATOMIC in prep_dma (git-fixes). - dmaengine: rcar-dmac: Fix PM reference leak in rcar_dmac_probe() (git-fixes). - dmaengine: zynqmp_dma: Fix PM reference leak in zynqmp_dma_alloc_chan_resourc() (git-fixes). - docs: admin-guide: update description for kernel.hotplug sysctl (git-fixes). - docs: virt/kvm: close inline string literal (bsc#1188703). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - drm/amd/amdgpu/sriov disable all ip hw status by default (git-fixes). - drm/amd/dc: Fix a missing check bug in dm_dp_mst_detect() (git-fixes). - drm/amd/display: Avoid HDCP over-read and corruption (git-fixes). - drm/amd/display: Fix DCN 3.01 DSCCLK validation (git-fixes). - drm/amd/display: Fix build warnings (git-fixes). - drm/amd/display: Fix off-by-one error in DML (git-fixes). - drm/amd/display: Release MST resources on switch from MST to SST (git-fixes). - drm/amd/display: Set DISPCLK_MAX_ERRDET_CYCLES to 7 (git-fixes). - drm/amd/display: Update scaling settings on modeset (git-fixes). - drm/amd/display: Verify Gamma & Degamma LUT sizes in amdgpu_dm_atomic_check (git-fixes). - drm/amd/display: fix HDCP reset sequence on reinitialize (git-fixes). - drm/amd/display: fix incorrrect valid irq check (git-fixes). - drm/amd/display: fix use_max_lb flag for 420 pixel formats (git-fixes). - drm/amdgpu: Do not query CE and UE errors (bsc#1152472) - drm/amdgpu: Update NV SIMD-per-CU to 2 (git-fixes). - drm/amdgpu: enable sdma0 tmz for Raven/Renoir(V2) (git-fixes). - drm/amdgpu: remove unsafe optimization to drop preamble ib (git-fixes). - drm/amdgpu: update golden setting for sienna_cichlid (git-fixes). - drm/amdgpu: wait for moving fence after pinning (git-fixes). - drm/amdkfd: Fix circular lock in nocpsch path (git-fixes). - drm/amdkfd: Walk through list with dqm lock hold (git-fixes). - drm/amdkfd: fix circular locking on get_wave_state (git-fixes). - drm/amdkfd: use allowed domain for vmbo validation (git-fixes). - drm/arm/malidp: Always list modifiers (git-fixes). - drm/bridge/sii8620: fix dependency on extcon (git-fixes). - drm/bridge: Fix the stop condition of drm_bridge_chain_pre_enable() (git-fixes). - drm/bridge: cdns: Fix PM reference leak in cdns_dsi_transfer() (git-fixes). - drm/bridge: nwl-dsi: Force a full modeset when crtc_state->active is changed to be true (git-fixes). - drm/dp_mst: Do not set proposed vcpi directly (git-fixes). - drm/gma500: Add the missed drm_gem_object_put() in psb_user_framebuffer_create() (git-fixes). - drm/i915/display: Do not zero past infoframes.vsc (git-fixes). - drm/i915/gvt: Clear d3_entered on elsp cmd submission (git-fixes). - drm/i915/selftests: use vma_lookup() in __igt_mmap() (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (bsc#1152472) - drm/mediatek: Fix PM reference leak in mtk_crtc_ddp_hw_init() (git-fixes). - drm/msm/dpu: Fix error return code in dpu_mdss_init() (git-fixes). - drm/msm/dpu: Fix sm8250_mdp register length (git-fixes). - drm/msm/mdp4: Fix modifier support enabling (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/msm: Small msm_gem_purge() fix (bsc#1152489) - drm/mxsfb: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm/nouveau: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/nouveau: fix dma_address check for CPU/GPU sync (git-fixes). - drm/nouveau: wait for moving fence after pinning v2 (git-fixes). - drm/panel: nt35510: Do not fail if DSI read fails (git-fixes). - drm/panel: raspberrypi-touchscreen: Prevent double-free (git-fixes). - drm/radeon: Add the missed drm_gem_object_put() in radeon_user_framebuffer_create() (git-fixes). - drm/radeon: Call radeon_suspend_kms() in radeon_pci_shutdown() for Loongson64 (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (bsc#1152489) - drm/radeon: wait for moving fence after pinning (git-fixes). - drm/rockchip: cdn-dp-core: add missing clk_disable_unprepare() on error in cdn_dp_grf_write() (git-fixes). - drm/rockchip: cdn-dp: fix sign extension on an int multiply for a u64 result (git-fixes). - drm/rockchip: dsi: move all lane config except LCDC mux to bind() (git-fixes). - drm/rockchip: dsi: remove extra component_del() call (git-fixes). - drm/rockchip: lvds: Fix an error handling path (git-fixes). - drm/sched: Avoid data corruptions (git-fixes). - drm/scheduler: Fix hang when sched_entity released (git-fixes). - drm/stm: Fix bus_flags handling (bsc#1152472) - drm/tegra: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/vc4: Fix clock source for VEC PixelValve on BCM2711 (git-fixes). - drm/vc4: crtc: Skip the TXP (git-fixes). - drm/vc4: fix argument ordering in vc4_crtc_get_margins() (git-fixes). - drm/vc4: hdmi: Fix PM reference leak in vc4_hdmi_encoder_pre_crtc_co() (git-fixes). - drm/vc4: hdmi: Fix error path of hpd-gpios (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (bsc#1152489) - drm/vc4: hdmi: Prevent clock unbalance (git-fixes). - drm/vc4: txp: Properly set the possible_crtcs mask (git-fixes). - drm/virtio: Fix double free on probe failure (git-fixes). - drm/vmwgfx: Fix cpu updates of coherent multisample surfaces (git-fixes). - drm/vmwgfx: Mark a surface gpu-dirty after the SVGA3dCmdDXGenMips command (git-fixes). - drm/zte: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm: Return -ENOTTY for non-drm ioctls (git-fixes). - drm: add a locked version of drm_is_current_master (git-fixes). - drm: bridge/panel: Cleanup connector on bridge detach (bsc#1152489) - drm: bridge: add missing word in Analogix help text (git-fixes). - drm: qxl: ensure surf.data is ininitialized (git-fixes). - drm: rockchip: add missing registers for RK3066 (git-fixes). - drm: rockchip: add missing registers for RK3188 (git-fixes). - drm: rockchip: set alpha_en to 0 if it is not used (git-fixes). - e1000e: Check the PCIm state (git-fixes). - e1000e: Fix an error handling path in 'e1000_probe()' (git-fixes). - efi/tpm: Differentiate missing and invalid final event log table (bsc#1188036). - extcon: extcon-max8997: Fix IRQ freeing at error path (git-fixes). - extcon: intel-mrfld: Sync hardware and software state on init (git-fixes). - extcon: max8997: Add missing modalias string (git-fixes). - extcon: sm5502: Drop invalid register write in sm5502_reg_data (git-fixes). - fbmem: Do not delete the mode that is still in use (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Tell memblock about EFI iomem reservations (git-fixes). - firmware: arm_scmi: Fix possible scmi_linux_errmap buffer overflow (git-fixes). - firmware: arm_scmi: Fix range check for the maximum number of pending messages (git-fixes). - firmware: tegra: Fix error return code in tegra210_bpmp_init() (git-fixes). - fm10k: Fix an error handling path in 'fm10k_probe()' (git-fixes). - fpga: machxo2-spi: Address warning about unused variable (git-fixes). - fpga: stratix10-soc: Add missing fpga_mgr_free() call (git-fixes). - fuse: check connected before queueing on fpq->io (bsc#1188267). - fuse: ignore PG_workingset after stealing (bsc#1188268). - fuse: reject internal errno (bsc#1188269). - gpio: AMD8111 and TQMX86 require HAS_IOPORT_MAP (git-fixes). - gpio: pca953x: Add support for the On Semi pca9655 (git-fixes). - gpio: zynq: Check return value of pm_runtime_get_sync (git-fixes). - gtp: fix an use-before-init in gtp_newlink() (git-fixes). - gve: Add DQO fields for core data structures (bsc#1176940). - gve: Add Gvnic stats AQ command and ethtool show/set-priv-flags (bsc#1176940). - gve: Add dqo descriptors (bsc#1176940). - gve: Add stats for gve (bsc#1176940). - gve: Add support for DQO RX PTYPE map (bsc#1176940). - gve: Add support for raw addressing device option (bsc#1176940). - gve: Add support for raw addressing in the tx path (bsc#1176940). - gve: Add support for raw addressing to the rx path (bsc#1176940). - gve: Batch AQ commands for creating and destroying queues (bsc#1176940). - gve: Check TX QPL was actually assigned (bsc#1176940). - gve: DQO: Add RX path (bsc#1176940). - gve: DQO: Add TX path (bsc#1176940). - gve: DQO: Add core netdev features (bsc#1176940). - gve: DQO: Add ring allocation and initialization (bsc#1176940). - gve: DQO: Configure interrupts on device up (bsc#1176940). - gve: DQO: Fix off by one in gve_rx_dqo() (bsc#1176940). - gve: DQO: Remove incorrect prefetch (bsc#1176940). - gve: Enable Link Speed Reporting in the driver (bsc#1176940). - gve: Fix an error handling path in 'gve_probe()' (git-fixes). - gve: Fix swapped vars when fetching max queues (git-fixes). - gve: Fix warnings reported for DQO patchset (bsc#1176940). - gve: Get and set Rx copybreak via ethtool (bsc#1176940). - gve: Introduce a new model for device options (bsc#1176940). - gve: Introduce per netdev `enum gve_queue_format` (bsc#1176940). - gve: Make gve_rx_slot_page_info.page_offset an absolute offset (bsc#1176940). - gve: Move some static functions to a common file (bsc#1176940). - gve: NIC stats for report-stats and for ethtool (bsc#1176940). - gve: Propagate error codes to caller (bsc#1176940). - gve: Replace zero-length array with flexible-array member (bsc#1176940). - gve: Rx Buffer Recycling (bsc#1176940). - gve: Simplify code and axe the use of a deprecated API (bsc#1176940). - gve: Update adminq commands to support DQO queues (bsc#1176940). - gve: Use dev_info/err instead of netif_info/err (bsc#1176940). - gve: Use link status register to report link status (bsc#1176940). - gve: adminq: DQO specific device descriptor logic (bsc#1176940). - gve: gve_rx_copy: Move padding to an argument (bsc#1176940). - hwmon: (max31722) Remove non-standard ACPI device IDs (git-fixes). - hwmon: (max31790) Fix fan speed reporting for fan7..12 (git-fixes). - hwmon: (max31790) Fix pwmX_enable attributes (git-fixes). - hwmon: (max31790) Report correct current pwm duty cycles (git-fixes). - hwrng: exynos - Fix runtime PM imbalance on error (git-fixes). - i2c: core: Disable client irq on reboot/shutdown (git-fixes). - i2c: designware: Adjust bus_freq_hz when refuse high speed mode set (git-fixes). - i2c: dev: Add __user annotation (git-fixes). - i2c: robotfuzz-osif: fix control-request directions (git-fixes). - i40e: Fix autoneg disabling for non-10GBaseT links (git-fixes). - i40e: Fix error handling in i40e_vsi_open (git-fixes). - i40e: Fix missing rtnl locking when setting up pf switch (jsc#SLE-13701). - i40e: fix PTP on 5Gb links (jsc#SLE-13701). - iavf: Fix an error handling path in 'iavf_probe()' (git-fixes). - ibmvnic: Allow device probe if the device is not ready at boot (bsc#1184114 ltc#192237). - ibmvnic: Remove the proper scrq flush (bsc#1188504 ltc#192075). - ibmvnic: Use 'skb_frag_address()' instead of hand coding it (bsc#1184114 ltc#192237). - ibmvnic: Use list_for_each_entry() to simplify code in ibmvnic.c (bsc#1184114 ltc#192237). - ibmvnic: Use strscpy() instead of strncpy() (bsc#1184114 ltc#192237). - ibmvnic: account for bufs already saved in indir_buf (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: clean pending indirect buffs during reset (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: fix kernel build warning (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warning in strncpy (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warnings in build_hdr_descs_arr (bsc#1184114 ltc#192237). - ibmvnic: fix send_request_map incompatible argument (bsc#1184114 ltc#192237). - ibmvnic: free tx_pool if tso_pool alloc fails (bsc#1085224 ltc#164363). - ibmvnic: parenthesize a check (bsc#1184114 ltc#192237 bsc#1183871 ltc#192139 git-fixes). - ibmvnic: retry reset if there are no other resets (bsc#1184350 ltc#191533). - ibmvnic: set ltb->buff to NULL after freeing (bsc#1094840 ltc#167098). - ice: Re-organizes reqstd/avail {R, T}XQ check/code for efficiency (jsc#SLE-7926). - igb: Check if num of q_vectors is smaller than max before array access (git-fixes). - igb: Fix an error handling path in 'igb_probe()' (git-fixes). - igb: Fix position of assignment to *ring (git-fixes). - igb: Fix use-after-free error during reset (git-fixes). - igc: Fix an error handling path in 'igc_probe()' (git-fixes). - igc: Fix use-after-free error during reset (git-fixes). - igc: change default return of igc_read_phy_reg() (git-fixes). - iio: accel: bma180: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: bma180: Use explicit member assignment (git-fixes). - iio: accel: bma220: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: hid: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: kxcjk-1013: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: mxc4005: Fix overread of data and alignment issue (git-fixes). - iio: accel: stk8312: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: stk8ba50: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: at91-sama5d2: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: hx711: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: mxs-lradc: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads1015: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads8688: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: vf610: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adis16400: do not return ints in irq handlers (git-fixes). - iio: adis_buffer: do not return ints in irq handlers (git-fixes). - iio: at91-sama5d2_adc: remove usage of iio_priv_to_dev() helper (git-fixes). - iio: gyro: bmg160: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: gyro: fxa21002c: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: humidity: am2315: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: isl29125: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3414: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: do not free unallocated IRQ (git-fixes). - iio: light: vcnl4035: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: ltr501: ltr501_read_ps(): add missing endianness conversion (git-fixes). - iio: ltr501: ltr559: fix initialization of LTR501_ALS_CONTR (git-fixes). - iio: ltr501: mark register holding upper 8 bits of ALS_DATA{0,1} and PS_DATA as volatile, too (git-fixes). - iio: magn: bmc150: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: magn: bmc150: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: hmc5843: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: rm3100: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: potentiostat: lmp91000: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: as3935: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: isl29501: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: pulsed-light: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: srf08: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: si1133: fix format string warnings (git-fixes). - iio:accel:mxc4005: Drop unnecessary explicit casts in regmap_bulk_read calls (git-fixes). - integrity: use arch_ima_get_secureboot instead of checking EFI_SECURE_BOOT when loading MokListRT (bsc#1188366). - intel_th: Wait until port is in reset before programming it (git-fixes). - iwl-trans: move dev_cmd_offs, page_offs to a common trans header (bsc#1187495). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd() (git-fixes). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd() (git-fixes). - iwlwifi: acpi: evaluate dsm to disable 5.8GHz channels (bsc#1187495). - iwlwifi: acpi: in non acpi compilations remove iwl_sar_geo_init (bsc#1187495). - iwlwifi: acpi: prepare SAR profile selection code for multiple sizes (bsc#1187495). - iwlwifi: acpi: remove dummy definition of iwl_sar_set_profile() (bsc#1187495). - iwlwifi: acpi: rename geo structs to contain versioning (bsc#1187495). - iwlwifi: acpi: support ppag table command v2 (bsc#1187495). - iwlwifi: add a common struct for all iwl_tx_power_cmd versions (bsc#1187495). - iwlwifi: add trans op to set PNVM (bsc#1187495). - iwlwifi: align RX status flags with firmware (bsc#1187495). - iwlwifi: api: fix u32 -> __le32 (bsc#1187495). - iwlwifi: bump FW API to 57 for AX devices (bsc#1187495). - iwlwifi: bump FW API to 59 for AX devices (bsc#1187495). - iwlwifi: calib: Demote seemingly unintentional kerneldoc header (bsc#1187495). - iwlwifi: dbg: Do not touch the tlv data (bsc#1187495). - iwlwifi: dbg: add debug host notification (DHN) time point (bsc#1187495). - iwlwifi: dbg: add dumping special device memory (bsc#1187495). - iwlwifi: dbg: remove IWL_FW_INI_TIME_POINT_WDG_TIMEOUT (bsc#1187495). - iwlwifi: do not export acpi functions unnecessarily (bsc#1187495). - iwlwifi: dvm: Demote a couple of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: devices: Fix function documentation formatting issues (bsc#1187495). - iwlwifi: dvm: lib: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: rxon: Demote non-conformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: scan: Demote a few nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: sta: Demote a bunch of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: tx: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: enable twt by default (bsc#1187495). - iwlwifi: fix 11ax disabled bit in the regulatory capability flags (bsc#1187495). - iwlwifi: fix sar geo table initialization (bsc#1187495). - iwlwifi: fw: add default value for iwl_fw_lookup_cmd_ver (bsc#1187495). - iwlwifi: fw: move assert descriptor parser to common code (bsc#1187495). - iwlwifi: increase PNVM load timeout (bsc#1187495). - iwlwifi: iwl-drv: Provide descriptions debugfs dentries (bsc#1187495). - iwlwifi: iwl-trans: move tfd to trans layer (bsc#1187495). - iwlwifi: move PNVM implementation to common code (bsc#1187495). - iwlwifi: move all bus-independent TX functions to common code (bsc#1187495). - iwlwifi: move bc_pool to a common trans header (bsc#1187495). - iwlwifi: move bc_table_dword to a common trans header (bsc#1187495). - iwlwifi: msix: limit max RX queues for 9000 family (bsc#1187495). - iwlwifi: mvm: Add FTM initiator RTT smoothing logic (bsc#1187495). - iwlwifi: mvm: Do not install CMAC/GMAC key in AP mode (bsc#1187495). - iwlwifi: mvm: add PROTECTED_TWT firmware API (bsc#1187495). - iwlwifi: mvm: add a get lmac id function (bsc#1187495). - iwlwifi: mvm: add an option to add PASN station (bsc#1187495). - iwlwifi: mvm: add d3 prints (bsc#1187495). - iwlwifi: mvm: add support for new WOWLAN_TSC_RSC_PARAM version (bsc#1187495). - iwlwifi: mvm: add support for new version of WOWLAN_TKIP_SETTING_API_S (bsc#1187495). - iwlwifi: mvm: add support for range request command ver 11 (bsc#1187495). - iwlwifi: mvm: add support for responder dynamic config command version 3 (bsc#1187495). - iwlwifi: mvm: assign SAR table revision to the command later (bsc#1187495). - iwlwifi: mvm: avoid possible NULL pointer dereference (bsc#1187495). - iwlwifi: mvm: clear all scan UIDs (bsc#1187495). - iwlwifi: mvm: d3: parse wowlan status version 11 (bsc#1187495). - iwlwifi: mvm: d3: support GCMP ciphers (bsc#1187495). - iwlwifi: mvm: do not change band on bound PHY contexts (git-fixes). - iwlwifi: mvm: do not check if CSA event is running before removing (bsc#1187495). - iwlwifi: mvm: do not send a CSA command the firmware does not know (bsc#1187495). - iwlwifi: mvm: fix error print when session protection ends (git-fixes). - iwlwifi: mvm: fix suspicious rcu usage warnings (bsc#1187495). - iwlwifi: mvm: fix the type we use in the PPAG table validity checks (bsc#1187495). - iwlwifi: mvm: get number of stations from TLV (bsc#1187495). - iwlwifi: mvm: ignore the scan duration parameter (bsc#1187495). - iwlwifi: mvm: initiator: add option for adding a PASN responder (bsc#1187495). - iwlwifi: mvm: location: set the HLTK when PASN station is added (bsc#1187495). - iwlwifi: mvm: ops: Remove unused static struct 'iwl_mvm_debug_names' (bsc#1187495). - iwlwifi: mvm: prepare roc_done_wk to work sync (bsc#1187495). - iwlwifi: mvm: process ba-notifications also when sta rcu is invalid (bsc#1187495). - iwlwifi: mvm: re-enable TX after channel switch (bsc#1187495). - iwlwifi: mvm: read and parse SKU ID if available (bsc#1187495). - iwlwifi: mvm: remove memset of kek_kck command (bsc#1187495). - iwlwifi: mvm: remove redundant log in iwl_mvm_tvqm_enable_txq() (bsc#1187495). - iwlwifi: mvm: remove redundant support_umac_log field (bsc#1187495). - iwlwifi: mvm: responder: allow to set only the HLTK for an associated station (bsc#1187495). - iwlwifi: mvm: ring the doorbell and wait for PNVM load completion (bsc#1187495). - iwlwifi: mvm: rs-fw: handle VHT extended NSS capability (bsc#1187495). - iwlwifi: mvm: send stored PPAG command instead of local (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT feature if supported by firmware (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT in MAC data policy (bsc#1187495). - iwlwifi: mvm: set enabled in the PPAG command properly (bsc#1187495). - iwlwifi: mvm: stop claiming NL80211_EXT_FEATURE_SET_SCAN_DWELL (bsc#1187495). - iwlwifi: mvm: store PPAG enabled/disabled flag properly (bsc#1187495). - iwlwifi: mvm: support ADD_STA_CMD_API_S ver 12 (bsc#1187495). - iwlwifi: mvm: support more GTK rekeying algorithms (bsc#1187495). - iwlwifi: mvm: support new KEK KCK api (bsc#1187495). - iwlwifi: mvm: tx: Demote misuse of kernel-doc headers (bsc#1187495). - iwlwifi: mvm: use CHECKSUM_COMPLETE (bsc#1187495). - iwlwifi: mvm: utils: Fix some doc-rot (bsc#1187495). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1187495). - iwlwifi: pcie: do not disable interrupts for reg_lock (bsc#1187495). - iwlwifi: pcie: fix context info freeing (git-fixes). - iwlwifi: pcie: fix the xtal latency value for a few qu devices (bsc#1187495). - iwlwifi: pcie: free IML DMA memory allocation (git-fixes). - iwlwifi: pcie: implement set_pnvm op (bsc#1187495). - iwlwifi: pcie: make iwl_pcie_txq_update_byte_cnt_tbl bus independent (bsc#1187495). - iwlwifi: pcie: properly set LTR workarounds on 22000 devices (bsc#1187495). - iwlwifi: phy-ctxt: add new API VER 3 for phy context cmd (bsc#1187495). - iwlwifi: pnvm: do not skip everything when not reloading (bsc#1187495). - iwlwifi: pnvm: do not try to load after failures (bsc#1187495). - iwlwifi: pnvm: increment the pointer before checking the TLV (bsc#1187495). - iwlwifi: pnvm: set the PNVM again if it was already loaded (bsc#1187495). - iwlwifi: provide gso_type to GSO packets (bsc#1187495). - iwlwifi: queue: bail out on invalid freeing (bsc#1187495). - iwlwifi: read and parse PNVM file (bsc#1187495). - iwlwifi: regulatory: regulatory capabilities api change (bsc#1187495). - iwlwifi: remove iwl_validate_sar_geo_profile() export (bsc#1187495). - iwlwifi: remove wide_cmd_header field (bsc#1187495). - iwlwifi: rs: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: rs: align to new TLC config command API (bsc#1187495). - iwlwifi: rs: set RTS protection for all non legacy rates (bsc#1187495). - iwlwifi: sta: defer ADDBA transmit in case reclaimed SN != next SN (bsc#1187495). - iwlwifi: stats: add new api fields for statistics cmd/ntfy (bsc#1187495). - iwlwifi: support REDUCE_TX_POWER_CMD version 6 (bsc#1187495). - iwlwifi: support version 3 of GEO_TX_POWER_LIMIT (bsc#1187495). - iwlwifi: support version 5 of the alive notification (bsc#1187495). - iwlwifi: thermal: support new temperature measurement API (bsc#1187495). - iwlwifi: update prph scratch structure to include PNVM data (bsc#1187495). - iwlwifi: use correct group for alive notification (bsc#1187495). - iwlwifi: wowlan: adapt to wowlan status API version 10 (bsc#1187495). - iwlwifi: yoyo: add support for internal buffer allocation in D3 (bsc#1187495). - ixgbe: Fix an error handling path in 'ixgbe_probe()' (git-fixes). - ixgbe: Fix packet corruption due to missing DMA sync (git-fixes). - ixgbevf: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - kABI compatibility fix for max98373_priv struct (git-fixes). - kABI workaround for btintel symbol changes (bsc#1188893). - kABI workaround for intel_th_driver (git-fixes). - kABI workaround for pci/quirks.c (git-fixes). - kABI: restore struct tcpc_config definition (git-fixes). - kabi/severities: ignore kABI of iwlwifi symbols (bsc#1187495) iwlwifi driver consists of several modules and all exported symbols are internal uses. Let's ignore kABI checks of those. - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042). - kernel-binary.spec: Fix up usrmerge for non-modular kernels. - kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel - kprobes: Do not expose probe addresses to non-CAP_SYSLOG (git-fixes). - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler (git-fixes). - kprobes: Fix compiler warning for !CONFIG_KPROBES_ON_FTRACE (git-fixes). - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() (git-fixes). - kprobes: fix kill kprobe which has been marked as gone (git-fixes). - kvm: LAPIC: Restore guard to prevent illegal APIC register access (bsc#1188772). - kvm: i8254: remove redundant assignment to pointer s (bsc#1188770). - leds: as3645a: Fix error return code in as3645a_parse_node() (git-fixes). - leds: class: The -ENOTSUPP should never be seen by user space (git-fixes). - leds: ktd2692: Fix an error handling path (git-fixes). - leds: lm3532: select regmap I2C API (git-fixes). - lib/decompress_unlz4.c: correctly handle zero-padding around initrds (git-fixes). - lib/decompressors: remove set but not used variabled 'level' (git-fixes). - lib: vsprintf: Fix handling of number field widths in vsscanf (git-fixes). - libbpf: Fixes incorrect rx_ring_setup_done (bsc#1155518). - liquidio: Fix unintentional sign extension issue on left shift of u16 (git-fixes). - mISDN: fix possible use-after-free in HFC_cleanup() (git-fixes). - mac80211: consider per-CPU statistics if present (git-fixes). - mac80211: remove iwlwifi specific workaround NDPs of null_response (git-fixes). - mac80211: remove iwlwifi specific workaround that broke sta NDP tx (git-fixes). - mac80211: remove warning in ieee80211_get_sband() (git-fixes). - mac80211: reset profile_periodicity/ema_ap (git-fixes). - mac80211_hwsim: add concurrent channels scanning support over virtio (git-fixes). - mac80211_hwsim: drop pending frames on stop (git-fixes). - math: Export mul_u64_u64_div_u64 (git-fixes). - media, bpf: Do not copy more entries than user space requested (git-fixes). - media: Fix Media Controller API config checks (git-fixes). - media: I2C: change 'RST' to "RSET" to fix multiple build errors (git-fixes). - media: au0828: fix a NULL vs IS_ERR() check (git-fixes). - media: bt8xx: Fix a missing check bug in bt878_probe (git-fixes). - media: cobalt: fix race condition in setting HPD (git-fixes). - media: cpia2: fix memory leak in cpia2_usb_probe (git-fixes). - media: dtv5100: fix control-request directions (git-fixes). - media: dvb-usb: fix wrong definition (git-fixes). - media: dvb_net: avoid speculation from net slot (git-fixes). - media: dvd_usb: memory leak in cinergyt2_fe_attach (git-fixes). - media: em28xx: Fix possible memory leak of em28xx struct (git-fixes). - media: exynos-gsc: fix pm_runtime_get_sync() usage count (git-fixes). - media: exynos4-is: Fix a use after free in isp_video_release (git-fixes). - media: gspca/gl860: fix zero-length control requests (git-fixes). - media: gspca/sq905: fix control-request direction (git-fixes). - media: gspca/sunplus: fix zero-length control requests (git-fixes). - media: imx-csi: Skip first few frames from a BT.656 source (git-fixes). - media: imx: imx7_mipi_csis: Fix logging of only error event counters (git-fixes). - media: mdk-mdp: fix pm_runtime_get_sync() usage count (git-fixes). - media: mtk-vcodec: fix PM runtime get logic (git-fixes). - media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() (git-fixes). - media: pvrusb2: fix warning in pvr2_i2c_core_done (git-fixes). - media: rc: i2c: Fix an error message (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: s5p-g2d: Fix a memory leak on ctx->fh.m2m_ctx (git-fixes). - media: s5p-jpeg: fix pm_runtime_get_sync() usage count (git-fixes). - media: sh_vou: fix pm_runtime_get_sync() usage count (git-fixes). - media: siano: Fix out-of-bounds warnings in smscore_load_firmware_family2() (git-fixes). - media: siano: fix device register error path (git-fixes). - media: st-hva: Fix potential NULL pointer dereferences (git-fixes). - media: sti/bdisp: fix pm_runtime_get_sync() usage count (git-fixes). - media: sti: fix obj-$(config) targets (git-fixes). - media: tc358743: Fix error return code in tc358743_probe_of() (git-fixes). - media: uvcvideo: Fix pixel format change for Elgato Cam Link 4K (git-fixes). - media: v4l2-async: Fix trivial documentation typo (git-fixes). - media: v4l2-core: Avoid the dangling pointer in v4l2_fh_release (git-fixes). - media: zr364xx: fix memory leak in zr364xx_start_readpipe (git-fixes). - memory: atmel-ebi: add missing of_node_put for loop iteration (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: pl353: Fix error return code in pl353_smc_probe() (git-fixes). - memstick: rtsx_usb_ms: fix UAF (git-fixes). - mfd: cpcap: Fix cpcap dmamask not set warnings (git-fixes). - mfd: da9052/stmpe: Add and modify MODULE_DEVICE_TABLE (git-fixes). - misc/libmasm/module: Fix two use after free in ibmasm_init_one (git-fixes). - misc: alcor_pci: fix inverted branch condition (git-fixes). - misc: alcor_pci: fix null-ptr-deref when there is no PCI bridge (git-fixes). - mm, futex: fix shared futex pgoff on shmem huge page (git fixes (kernel/futex)). - mmc: block: Disable CMDQ on the ioctl path (git-fixes). - mmc: core: Allow UHS-I voltage switch for SDSC cards if supported (git-fixes). - mmc: core: clear flags before allowing to retune (git-fixes). - mmc: sdhci-esdhc-imx: remove unused is_imx6q_usdhc (git-fixes). - mmc: sdhci-sprd: use sdhci_sprd_writew (git-fixes). - mmc: sdhci: Fix warning message when accessing RPMB in HS400 mode (git-fixes). - mmc: usdhi6rol0: fix error return code in usdhi6_probe() (git-fixes). - mmc: via-sdmmc: add a check against NULL pointer dereference (git-fixes). - mmc: vub3000: fix control-request direction (git-fixes). - mt76: fix possible NULL pointer dereference in mt76_tx (git-fixes). - mt76: mt7603: set 0 as min coverage_class value (git-fixes). - mt76: mt7615: fix endianness in mt7615_mcu_set_eeprom (git-fixes). - mt76: mt7615: fix fixed-rate tx status reporting (git-fixes). - mt76: mt7615: increase MCU command timeout (git-fixes). - mt76: mt7915: fix IEEE80211_HE_PHY_CAP7_MAX_NC for station mode (git-fixes). - mt76: set dma-done flag for flushed descriptors (git-fixes). - mtd: partitions: redboot: seek fis-index-block in the right node (git-fixes). - mtd: rawnand: marvell: add missing clk_disable_unprepare() on error in marvell_nfc_resume() (git-fixes). - mvpp2: suppress warning (git-fixes). - mwifiex: re-fix for unaligned accesses (git-fixes). - net/mlx5: Do not fail driver on failure to create debugfs (git-fixes). - net/mlx5e: Block offload of outer header csum for GRE tunnel (git-fixes). - net/sched: act_ct: remove and free nf_table callbacks (jsc#SLE-15172). - net: Make PTP-specific drivers depend on PTP_1588_CLOCK (git-fixes). - net: atlantic: fix ip dst and ipv6 address filters (git-fixes). - net: dp83867: Fix OF_MDIO config check (git-fixes). - net: ethernet: ti: Remove TI_CPTS_MOD workaround (git-fixes). - net: fec_ptp: fix issue caused by refactor the fec_devtype (git-fixes). - net: gve: convert strlcpy to strscpy (bsc#1176940). - net: gve: remove duplicated allowed (bsc#1176940). - net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes). - net: ipw2x00,iwlegacy,iwlwifi: Remove in_interrupt() from debug macros (bsc#1187495). - net: iwlwifi: Remove in_interrupt() from tracing macro (bsc#1187495). - net: marvell: Fix OF_MDIO config check (git-fixes). - net: mvpp2: Put fwnode in error case during ->probe() (git-fixes). - net: netdevsim: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - net: phy: fix save wrong speed and duplex problem if autoneg is on (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: realtek: add delay to fix RXC generation issue (git-fixes). - net: usb: fix possible use-after-free in smsc75xx_bind (git-fixes). - net: wilc1000: clean up resource in error path of init mon interface (git-fixes). - netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo (bsc#1176447). - nfc: nfcsim: fix use after free during module unload (git-fixes). - nvme-rdma: fix in-casule data send for chained sgls (git-fixes). - nvme-rdma: introduce nvme_rdma_sgl structure (git-fixes). - nvme-tcp: rerun io_work if req_list is not empty (git-fixes). - nvme: verify MNAN value if ANA is enabled (bsc#1185791). - pinctrl/amd: Add device HID for new AMD GPIO controller (git-fixes). - pinctrl: mcp23s08: Fix missing unlock on error in mcp23s08_irq() (git-fixes). - pinctrl: mcp23s08: fix race condition in irq handler (git-fixes). - pinctrl: stm32: fix the reported number of GPIO lines per bank (git-fixes). - platform/chrome: cros_ec_lightbar: Reduce ligthbar get version command (git-fixes). - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_int0002_vgpio: Pass irqchip when adding gpiochip (git-fixes). - platform/x86: intel_int0002_vgpio: Remove dev_err() usage after platform_get_irq() (git-fixes). - platform/x86: intel_int0002_vgpio: Use device_init_wakeup (git-fixes). - platform/x86: toshiba_acpi: Fix missing error code in toshiba_acpi_setup_keyboard() (git-fixes). - power: reset: gpio-poweroff: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: ab8500: Avoid NULL pointers (git-fixes). - power: supply: ab8500: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: charger-manager: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: max17042: Do not enforce (incorrect) interrupt trigger type (git-fixes). - power: supply: sc2731_charger: Add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: sc27xx: Add missing MODULE_DEVICE_TABLE (git-fixes). - powerpc/64s: Move branch cache flushing bcctr variant to ppc-ops.h (bsc#1188885 ltc#193722). - powerpc/64s: rename pnv|pseries_setup_rfi_flush to _setup_security_mitigations (bsc#1188885 ltc#193722). - powerpc/mm: Fix lockup on kernel exec fault (bsc#1156395). - powerpc/papr_scm: Properly handle UUID types and API (bsc#1113295, git-fixes). - powerpc/pesries: Get STF barrier requirement from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: Get entry and uaccess flush required bits from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: add new branch prediction security bits for link stack (bsc#1188885 ltc#193722). - powerpc/pseries: export LPAR security flavor in lparcfg (bsc#1188885 ltc#193722). - powerpc/security: Add a security feature for STF barrier (bsc#1188885 ltc#193722). - powerpc/security: Allow for processors that flush the link stack using the special bcctr (bsc#1188885 ltc#193722). - powerpc/security: Fix link stack flush instruction (bsc#1188885 ltc#193722). - powerpc/security: change link stack flush state to the flush type enum (bsc#1188885 ltc#193722). - powerpc/security: make display of branch cache flush more consistent (bsc#1188885 ltc#193722). - powerpc/security: re-name count cache flush to branch cache flush (bsc#1188885 ltc#193722). - powerpc/security: split branch cache flush toggle from code patching (bsc#1188885 ltc#193722). - powerpc/stacktrace: Fix spurious "stale" traces in raise_backtrace_ipi() (bsc#1156395). - powerpc/stacktrace: Include linux/delay.h (bsc#1156395). - powerpc: Offline CPU in stop_this_cpu() (bsc#1156395). - prctl: PR_{G,S}ET_IO_FLUSHER to support controlling memory reclaim (bsc#1188752). - ptp_qoriq: fix overflow in ptp_qoriq_adjfine() u64 calcalation (git-fixes). - pwm: img: Fix PM reference leak in img_pwm_enable() (git-fixes). - pwm: imx1: Do not disable clocks at device remove time (git-fixes). - pwm: spear: Do not modify HW state in .remove callback (git-fixes). - qemu_fw_cfg: Make fw_cfg_rev_attr a proper kobj_attribute (git-fixes). - r8152: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8152: Fix a deadlock by doubly PM resume (bsc#1186194). - r8152: Fix potential PM refcount imbalance (bsc#1186194). - r8169: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8169: avoid link-up interrupt issue on RTL8106e if user enables ASPM (git-fixes). - random32: Fix implicit truncation warning in prandom_seed_state() (git-fixes). - ravb: Fix bit fields checking in ravb_hwtstamp_get() (git-fixes). - rbd: always kick acquire on "acquired" and "released" notifications (bsc#1188746). - rbd: do not hold lock_rwsem while running_list is being drained (bsc#1188747). - regulator: da9052: Ensure enough delay time for .set_voltage_time_sel (git-fixes). - regulator: hi6421: Fix getting wrong drvdata (git-fixes). - regulator: hi6421: Use correct variable type for regmap api val argument (git-fixes). - regulator: hi655x: Fix pass wrong pointer to config.driver_data (git-fixes). - regulator: uniphier: Add missing MODULE_DEVICE_TABLE (git-fixes). - replaced with upstream security mitigation cleanup - reset: a10sr: add missing of_match_table reference (git-fixes). - reset: bail if try_module_get() fails (git-fixes). - reset: brcmstb: Add missing MODULE_DEVICE_TABLE (git-fixes). - reset: ti-syscon: fix to_ti_syscon_reset_data macro (git-fixes). - rpm/kernel-binary.spec.in: Do not install usrmerged kernel on Leap (boo#1184804). - rpm/kernel-binary.spec.in: Remove zdebug define used only once. - rsi: Assign beacon rate settings to the correct rate_info descriptor field (git-fixes). - rtc: fix snprintf() checking in is_rtc_hctosys() (git-fixes). - rtc: max77686: Do not enforce (incorrect) interrupt trigger type (git-fixes). - rtc: mxc_v2: add missing MODULE_DEVICE_TABLE (git-fixes). - rtc: stm32: Fix unbalanced clk_disable_unprepare() on probe error path (git-fixes). - rtl8xxxu: Fix device info for RTL8192EU devices (git-fixes). - rtw88: 8822c: fix lc calibration timing (git-fixes). - scsi: fc: Add 256GBit speed setting to SCSI FC transport (bsc#1188101). - scsi: ibmvfc: Fix command state accounting and stale response detection (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: qedf: Do not put host in qedf_vport_create() unconditionally (bsc#1170511). - serial: 8250: Actually allow UPF_MAGIC_MULTIPLIER baud rates (git-fixes). - serial: 8250_pci: Add support for new HPE serial device (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: mvebu-uart: correctly calculate minimal possible baudrate (git-fixes). - serial: mvebu-uart: do not allow changing baudrate when uartclk is not available (git-fixes). - serial: mvebu-uart: fix calculation of clock divisor (git-fixes). - serial: tegra-tcu: Reorder channel initialization (git-fixes). - serial_cs: Add Option International GSM-Ready 56K/ISDN modem (git-fixes). - serial_cs: remove wrong GLOBETROTTER.cis entry (git-fixes). - sfp: Fix error handing in sfp_probe() (git-fixes). - skbuff: Fix build with SKB extensions disabled (jsc#SLE-15172). - skbuff: Release nfct refcount on napi stolen or re-used skbs (jsc#SLE-15172). - soc/tegra: fuse: Fix Tegra234-only builds (git-fixes). - soc: fsl: qbman: Delete useless kfree code (bsc#1188176). - soc: fsl: qbman: Ensure device cleanup is run for kexec (bsc#1188176). - soundwire: stream: Fix test for DP prepare complete (git-fixes). - spi: Make of_register_spi_device also set the fwnode (git-fixes). - spi: cadence: Correct initialisation of runtime PM again (git-fixes). - spi: fspi: dynamically alloc AHB memory (bsc#1188121). - spi: imx: add a check for speed_hz before calculating the clock (git-fixes). - spi: mediatek: fix fifo rx mode (git-fixes). - spi: nxp-fspi: Use devm API to fix missed unregistration of controller (bsc#1188121). - spi: omap-100k: Fix the length judgment problem (git-fixes). - spi: spi-loopback-test: Fix 'tx_buf' might be 'rx_buf' (git-fixes). - spi: spi-nxp-fspi: Add ACPI support (bsc#1188121). - spi: spi-nxp-fspi: Add support for IP read only (bsc#1188121). - spi: spi-nxp-fspi: Enable the Octal Mode in MCR0 (bsc#1188121). - spi: spi-nxp-fspi: Fix a NULL vs IS_ERR() check in probe (bsc#1188121). - spi: spi-nxp-fspi: Implement errata workaround for LS1028A (bsc#1188121). - spi: spi-sun6i: Fix chipselect/clock bug (git-fixes). - spi: spi-topcliff-pch: Fix potential double free in pch_spi_process_messages() (git-fixes). - spi: stm32-qspi: Remove unused qspi field of struct stm32_qspi_flash (git-fixes). - spi: tegra114: Fix an error message (git-fixes). - ssb: Fix error return code in ssb_bus_scan() (git-fixes). - ssb: sdio: Do not overwrite const buffer if block_write fails (git-fixes). - staging: gdm724x: check for buffer overflow in gdm_lte_multi_sdu_pkt() (git-fixes). - staging: gdm724x: check for overflow in gdm_lte_netif_rx() (git-fixes). - staging: rtl8712: fix memory leak in rtl871x_load_fw_cb (git-fixes). - staging: rtl8712: remove redundant check in r871xu_drv_init (git-fixes). - staging: rtl8723bs: fix macro value for 2.4Ghz only device (git-fixes). - thermal/core: Correct function name thermal_zone_device_unregister() (git-fixes). - thermal/drivers/int340x/processor_thermal: Fix tcc setting (git-fixes). - thermal/drivers/rcar_gen3_thermal: Fix coefficient calculations (git-fixes). - thunderbolt: Bond lanes only when dual_link_port != NULL in alloc_dev_default() (git-fixes). - timers: Fix get_next_timer_interrupt() with no timers pending (git-fixes) - tpm, tpm_tis: Decorate tpm_get_timeouts() with request_locality() (bsc#1188036). - tpm, tpm_tis: Decorate tpm_tis_gen_interrupt() with request_locality() (bsc#1188036). - tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt() (bsc#1188036). - tpm, tpm_tis: Reserve locality in tpm_tis_resume() (bsc#1188036). - tpm: efi: Use local variable for calculating final log size (git-fixes). - tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing (git-fixes). - tracing/histograms: Fix parsing of "sym-offset" modifier (git-fixes). - tracing: Do not reference char * as a string in histograms (git-fixes). - tracing: Resize tgid_map to pid_max, not PID_MAX_DEFAULT (git-fixes). - tracing: Simplify & fix saved_tgids logic (git-fixes). - tty: nozomi: Fix a resource leak in an error handling function (git-fixes). - tty: nozomi: Fix the error handling path of 'nozomi_card_init()' (git-fixes). - tty: serial: 8250: serial_cs: Fix a memory leak in error handling path (git-fixes). - tty: serial: fsl_lpuart: fix the potential risk of division or modulo by zero (git-fixes). - usb: dwc2: Do not reset the core after setting turnaround time (git-fixes). - usb: dwc2: gadget: Fix sending zero length packet in DDMA mode (git-fixes). - usb: dwc3: Fix debugfs creation flow (git-fixes). - usb: gadget: eem: fix echo command packet response issue (git-fixes). - usb: gadget: f_fs: Fix setting of device and driver data cross-references (git-fixes). - usb: gadget: f_hid: fix endianness issue with descriptors (git-fixes). - usb: gadget: hid: fix error return code in hid_bind() (git-fixes). - usb: hub: Disable USB 3 device initiated lpm if exit latency is too high (git-fixes). - usb: hub: Fix link power management max exit latency (MEL) calculations (git-fixes). - usb: max-3421: Prevent corruption of freed memory (git-fixes). - usb: renesas_usbhs: Fix superfluous irqs happen after usb_pkt_pop() (git-fixes). - usb: typec: Add the missed altmode_id_remove() in typec_register_altmode() (git-fixes). - usb: typec: fusb302: Always provide fwnode for the port (git-fixes). - usb: typec: fusb302: fix "op-sink-microwatt" default that was in mW (git-fixes). - usb: typec: tcpm: Error handling for tcpm_register_partner_altmodes (git-fixes). - usb: typec: tcpm: Move mod_delayed_work(&port->vdm_state_machine) call into tcpm_queue_vdm() (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request payload handling (git-fixes). - usb: typec: tcpm: Remove tcpc_config configuration mechanism (git-fixes). - usb: typec: tcpm: Switch to use fwnode_property_count_uXX() (git-fixes). - usb: typec: tcpm: move to SNK_UNATTACHED if sink removed for DRP (git-fixes). - usb: typec: tcpm: set correct data role for non-DRD (git-fixes). - usb: typec: tcpm: update power supply once partner accepts (git-fixes). - usb: typec: ucsi: Hold con->lock for the entire duration of ucsi_register_port() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: typec: wcove: Fx wrong kernel doc format (git-fixes). - uuid: Add inline helpers to import / export UUIDs (bsc#1113295, git-fixes). - vfio/pci: Handle concurrent vma faults (git-fixes). - vfs: Convert functionfs to use the new mount API (git -fixes). - video: fbdev: imxfb: Fix an error message (git-fixes). - virtio_console: Assure used length from device is limited (git-fixes). - virtio_net: move tx vq operation under tx queue lock (git-fixes). - visorbus: fix error return code in visorchipset_init() (git-fixes). - vmxnet3: fix cksum offload issues for tunnels with non-default udp ports (git-fixes). - vxlan: add missing rcu_read_lock() in neigh_reduce() (git-fixes). - w1: ds2438: fixing bug that would always get page0 (git-fixes). - watchdog: Fix possible use-after-free by calling del_timer_sync() (git-fixes). - watchdog: Fix possible use-after-free in wdt_startup() (git-fixes). - watchdog: aspeed: fix hardware timeout calculation (git-fixes). - watchdog: iTCO_wdt: Account for rebooting on second timeout (git-fixes). - watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() (git-fixes). - watchdog: sp805: Fix kernel doc description (git-fixes). - wcn36xx: Move hal_buf allocation to devm_kmalloc in probe (git-fixes). - wilc1000: write value to WILC_INTR2_ENABLE register (git-fixes). - wireless: carl9170: fix LEDS build errors & warnings (git-fixes). - wireless: wext-spy: Fix out-of-bounds warning (git-fixes). - wl1251: Fix possible buffer overflow in wl1251_cmd_scan (git-fixes). - wlcore/wl12xx: Fix wl12xx get_mac error if device is in ELP (git-fixes). - workqueue: fix UAF in pwq_unbound_release_workfn() (bsc#1188973). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - xen/events: reset active flag for lateeoi events later (git-fixes). - xfrm: Fix xfrm offload fallback fail case (bsc#1176447). - xfrm: delete xfrm4_output_finish xfrm6_output_finish declarations (bsc#1176447). - xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377). - xhci: Fix lost USB 2 remote wake (git-fixes). - xhci: solve a double free problem while doing s4 (git-fixes). - xsk: Fix missing validation for skb and unaligned mode (jsc#SLE-13706). kernel-devel-5.3.18-59.19.1.noarch.rpm True kernel-docs-5.3.18-59.19.1.noarch.rpm True kernel-docs-5.3.18-59.19.1.nosrc.rpm True kernel-docs-html-5.3.18-59.19.1.noarch.rpm True kernel-macros-5.3.18-59.19.1.noarch.rpm True kernel-obs-build-5.3.18-59.19.1.x86_64.rpm True kernel-source-5.3.18-59.19.1.noarch.rpm True kernel-source-5.3.18-59.19.1.src.rpm True kernel-source-vanilla-5.3.18-59.19.1.noarch.rpm True cluster-md-kmp-default-5.3.18-59.19.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.19.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.19.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True kernel-debug-5.3.18-59.19.1.nosrc.rpm True kernel-debug-5.3.18-59.19.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.19.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-5.3.18-59.19.1.nosrc.rpm True kernel-default-5.3.18-59.19.1.x86_64.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.src.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.x86_64.rpm True kernel-default-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-extra-5.3.18-59.19.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.19.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-default-optional-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-5.3.18-59.19.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.19.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-obs-build-5.3.18-59.19.1.src.rpm True kernel-obs-qa-5.3.18-59.19.1.src.rpm True kernel-obs-qa-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-5.3.18-59.19.1.nosrc.rpm True kernel-preempt-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.19.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.19.1.x86_64.rpm True kernel-syms-5.3.18-59.19.1.src.rpm True kernel-syms-5.3.18-59.19.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.19.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.19.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.19.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.19.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.19.1.s390x.rpm True dlm-kmp-default-5.3.18-59.19.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.19.1.s390x.rpm True kernel-default-5.3.18-59.19.1.s390x.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.s390x.rpm True kernel-default-devel-5.3.18-59.19.1.s390x.rpm True kernel-default-extra-5.3.18-59.19.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.19.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.s390x.rpm True kernel-default-optional-5.3.18-59.19.1.s390x.rpm True kernel-obs-build-5.3.18-59.19.1.s390x.rpm True kernel-obs-qa-5.3.18-59.19.1.s390x.rpm True kernel-syms-5.3.18-59.19.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.19.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.19.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.19.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.19.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.19.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.19.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.19.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-5.3.18-59.19.1.ppc64le.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.19.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.19.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.19.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.19.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.19.1.ppc64le.rpm True kernel-syms-5.3.18-59.19.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.19.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.19.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.19.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.19.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.19.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True dtb-aarch64-5.3.18-59.19.1.src.rpm True dtb-al-5.3.18-59.19.1.aarch64.rpm True dtb-allwinner-5.3.18-59.19.1.aarch64.rpm True dtb-altera-5.3.18-59.19.1.aarch64.rpm True dtb-amd-5.3.18-59.19.1.aarch64.rpm True dtb-amlogic-5.3.18-59.19.1.aarch64.rpm True dtb-apm-5.3.18-59.19.1.aarch64.rpm True dtb-arm-5.3.18-59.19.1.aarch64.rpm True dtb-broadcom-5.3.18-59.19.1.aarch64.rpm True dtb-cavium-5.3.18-59.19.1.aarch64.rpm True dtb-exynos-5.3.18-59.19.1.aarch64.rpm True dtb-freescale-5.3.18-59.19.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.19.1.aarch64.rpm True dtb-lg-5.3.18-59.19.1.aarch64.rpm True dtb-marvell-5.3.18-59.19.1.aarch64.rpm True dtb-mediatek-5.3.18-59.19.1.aarch64.rpm True dtb-nvidia-5.3.18-59.19.1.aarch64.rpm True dtb-qcom-5.3.18-59.19.1.aarch64.rpm True dtb-renesas-5.3.18-59.19.1.aarch64.rpm True dtb-rockchip-5.3.18-59.19.1.aarch64.rpm True dtb-socionext-5.3.18-59.19.1.aarch64.rpm True dtb-sprd-5.3.18-59.19.1.aarch64.rpm True dtb-xilinx-5.3.18-59.19.1.aarch64.rpm True dtb-zte-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.19.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-5.3.18-59.19.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.19.1.aarch64.rpm True kernel-default-5.3.18-59.19.1.aarch64.rpm True kernel-default-base-5.3.18-59.19.1.18.10.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.19.1.18.10.1.aarch64.rpm True kernel-default-devel-5.3.18-59.19.1.aarch64.rpm True kernel-default-extra-5.3.18-59.19.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.19.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-default-optional-5.3.18-59.19.1.aarch64.rpm True kernel-obs-build-5.3.18-59.19.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.19.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.19.1.aarch64.rpm True kernel-syms-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.19.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.19.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.19.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.19.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2793 important SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - CVE-2021-20298 [bsc#1188460]: Fixed Out-of-memory in B44Compressor - CVE-2021-20299 [bsc#1188459]: Fixed Null-dereference READ in Imf_2_5:Header:operator - CVE-2021-20300 [bsc#1188458]: Fixed Integer-overflow in Imf_2_5:hufUncompress - CVE-2021-20302 [bsc#1188462]: Fixed Floating-point-exception in Imf_2_5:precalculateTileInfot - CVE-2021-20303 [bsc#1188457]: Fixed Heap-buffer-overflow in Imf_2_5::copyIntoFrameBuffer - CVE-2021-20304 [bsc#1188461]: Fixed Undefined-shift in Imf_2_5:hufDecode libIlmImf-2_2-23-2.2.1-3.35.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.35.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.35.1.x86_64.rpm openexr-2.2.1-3.35.1.src.rpm openexr-2.2.1-3.35.1.x86_64.rpm openexr-devel-2.2.1-3.35.1.x86_64.rpm openexr-doc-2.2.1-3.35.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.35.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.s390x.rpm openexr-2.2.1-3.35.1.s390x.rpm openexr-devel-2.2.1-3.35.1.s390x.rpm openexr-doc-2.2.1-3.35.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.35.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.ppc64le.rpm openexr-2.2.1-3.35.1.ppc64le.rpm openexr-devel-2.2.1-3.35.1.ppc64le.rpm openexr-doc-2.2.1-3.35.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.35.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.35.1.aarch64.rpm openexr-2.2.1-3.35.1.aarch64.rpm openexr-devel-2.2.1-3.35.1.aarch64.rpm openexr-doc-2.2.1-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2021-2782 important SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Activate devices before probing to fix an issue when volume groups are incomplete due to inactive multipathing after upgrade. (bsc#1187220) yast2-installation-4.3.41-3.7.2.noarch.rpm yast2-installation-4.3.41-3.7.2.src.rpm yast2-proxy-4.3.3-3.5.1.noarch.rpm yast2-proxy-4.3.3-3.5.1.src.rpm openSUSE-SLE-15.3-2021-2950 moderate SUSE Updates openSUSE-SLE 15.3 This update for pcre2 fixes the following issue: - Equalizes the result of a function that may have different output on s390x if compared to older (bsc#1187937) PHP versions. libpcre2-16-0-10.31-3.3.1.x86_64.rpm libpcre2-16-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-32-0-10.31-3.3.1.x86_64.rpm libpcre2-32-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-8-0-10.31-3.3.1.x86_64.rpm libpcre2-8-0-32bit-10.31-3.3.1.x86_64.rpm libpcre2-posix2-10.31-3.3.1.x86_64.rpm libpcre2-posix2-32bit-10.31-3.3.1.x86_64.rpm pcre2-10.31-3.3.1.src.rpm pcre2-devel-10.31-3.3.1.x86_64.rpm pcre2-devel-static-10.31-3.3.1.x86_64.rpm pcre2-doc-10.31-3.3.1.noarch.rpm pcre2-tools-10.31-3.3.1.x86_64.rpm libpcre2-16-0-10.31-3.3.1.s390x.rpm libpcre2-32-0-10.31-3.3.1.s390x.rpm libpcre2-8-0-10.31-3.3.1.s390x.rpm libpcre2-posix2-10.31-3.3.1.s390x.rpm pcre2-devel-10.31-3.3.1.s390x.rpm pcre2-devel-static-10.31-3.3.1.s390x.rpm pcre2-tools-10.31-3.3.1.s390x.rpm libpcre2-16-0-10.31-3.3.1.ppc64le.rpm libpcre2-32-0-10.31-3.3.1.ppc64le.rpm libpcre2-8-0-10.31-3.3.1.ppc64le.rpm libpcre2-posix2-10.31-3.3.1.ppc64le.rpm pcre2-devel-10.31-3.3.1.ppc64le.rpm pcre2-devel-static-10.31-3.3.1.ppc64le.rpm pcre2-tools-10.31-3.3.1.ppc64le.rpm libpcre2-16-0-10.31-3.3.1.aarch64.rpm libpcre2-32-0-10.31-3.3.1.aarch64.rpm libpcre2-8-0-10.31-3.3.1.aarch64.rpm libpcre2-posix2-10.31-3.3.1.aarch64.rpm pcre2-devel-10.31-3.3.1.aarch64.rpm pcre2-devel-static-10.31-3.3.1.aarch64.rpm pcre2-tools-10.31-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2641 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-reportlab fixes the following issues: - CVE-2020-28463: Fixed Server-side Request Forgery via img tags (bsc#1182503). python-reportlab-3.4.0-3.6.1.src.rpm python2-reportlab-3.4.0-3.6.1.x86_64.rpm python3-reportlab-3.4.0-3.6.1.x86_64.rpm python2-reportlab-3.4.0-3.6.1.s390x.rpm python3-reportlab-3.4.0-3.6.1.s390x.rpm python2-reportlab-3.4.0-3.6.1.ppc64le.rpm python3-reportlab-3.4.0-3.6.1.ppc64le.rpm python2-reportlab-3.4.0-3.6.1.aarch64.rpm python3-reportlab-3.4.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2645 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876). - CVE-2021-21781: Fixed a information disclosure vulnerability in the ARM SIGPAGE (bsc#1188445). - CVE-2021-22543: Fixed improper handling of VM_IO|VM_PFNMAP vmas in KVM, which could bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bsc#1186482). - CVE-2021-37576: Fixed an issue on the powerpc platform, where a KVM guest OS user could cause host OS memory corruption via rtas_args.nargs (bsc#1188838). - CVE-2021-3609: Fixed a potential local privilege escalation in the CAN BCM networking protocol (bsc#1187215). - CVE-2021-3612: Fixed an out-of-bounds memory write flaw in the joystick devices subsystem. This flaw allowed a local user to crash the system or possibly escalate their privileges on the system. (bsc#1187585) - CVE-2021-35039: Fixed mishandling of signature verification. Without CONFIG_MODULE_SIG, verification that a kernel module is signed, for loading via init_module, did not occur for a module.sig_enforce=1 command-line argument (bsc#1188080). The following non-security bugs were fixed: - ACPI: AMBA: Fix resource name in /proc/iomem (git-fixes). - ACPI: APEI: fix synchronous external aborts in user-mode (git-fixes). - ACPI: DPTF: Fix reading of attributes (git-fixes). - ACPI: EC: Make more Asus laptops use ECDT _GPE (git-fixes). - ACPI: PM / fan: Put fan device IDs into separate header file (git-fixes). - ACPI: bus: Call kobject_put() in acpi_init() error path (git-fixes). - ACPI: processor idle: Fix up C-state latency if not ordered (git-fixes). - ACPI: property: Constify stubs for CONFIG_ACPI=n case (git-fixes). - ACPI: resources: Add checks for ACPI IRQ override (git-fixes). - ACPI: sysfs: Fix a buffer overrun problem with description_show() (git-fixes). - ACPI: video: Add quirk for the Dell Vostro 3350 (git-fixes). - ACPICA: Fix memory leak caused by _CID repair function (git-fixes). - ALSA: ac97: fix PM reference leak in ac97_bus_remove() (git-fixes). - ALSA: bebob: add support for ToneWeal FW66 (git-fixes). - ALSA: firewire-motu: fix detection for S/PDIF source on optical interface in v2 protocol (git-fixes). - ALSA: firewire-motu: fix stream format for MOTU 8pre FireWire (git-fixes). - ALSA: hda/realtek: Add another ALC236 variant support (git-fixes). - ALSA: hda/realtek: Apply LED fixup for HP Dragonfly G1, too (git-fixes). - ALSA: hda/realtek: Fix bass speaker DAC mapping for Asus UM431D (git-fixes). - ALSA: hda/realtek: Fix pop noise and 2 Front Mic issues on a machine (git-fixes). - ALSA: hda/realtek: Improve fixup for HP Spectre x360 15-df0xxx (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook 830 G8 Notebook PC (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP EliteBook x360 830 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 450 G8 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 630 G8 (git-fixes). - ALSA: hda: Add IRQ check for platform_get_irq() (git-fixes). - ALSA: hda: intel-dsp-cfg: add missing ElkhartLake PCI ID (git-fixes). - ALSA: hdmi: Expose all pins on MSI MS-7C94 board (git-fixes). - ALSA: intel8x0: Fix breakage at ac97 clock measurement (git-fixes). - ALSA: isa: Fix error return code in snd_cmi8330_probe() (git-fixes). - ALSA: pcm - fix mmap capability check for the snd-dummy driver (git-fixes). - ALSA: pcm: Call substream ack() method upon compat mmap commit (git-fixes). - ALSA: pcm: Fix mmap capability check (git-fixes). - ALSA: ppc: fix error return code in snd_pmac_probe() (git-fixes). - ALSA: sb: Fix potential ABBA deadlock in CSP driver (git-fixes). - ALSA: sb: Fix potential double-free of CSP mixer elements (git-fixes). - ALSA: usb-audio: Add missing proc text entry for BESPOKEN type (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum headsets (git-fixes). - ALSA: usb-audio: Fix OOB access at proc output (git-fixes). - ALSA: usb-audio: fix rate on Ozone Z90 USB headset (git-fixes). - ALSA: usb-audio: scarlett2: Fix 18i8 Gen 2 PCM Input count (git-fixes). - ALSA: usb-audio: scarlett2: Fix 6i6 Gen 2 line out descriptions (git-fixes). - ALSA: usb-audio: scarlett2: Fix data_mutex lock (git-fixes). - ALSA: usb-audio: scarlett2: Fix scarlett2_*_ctl_put() return values (git-fixes). - ALSA: usb-audio: scarlett2: Fix wrong resume call (git-fixes). - ALSA: usb-audio: scarlett2: Read mixer volumes at init time (git-fixes). - ALSA: usb-audio: scarlett2: Read mux at init time (git-fixes). - ALSA: usx2y: Avoid camelCase (git-fixes). - ALSA: usx2y: Do not call free_pages_exact() with NULL address (git-fixes). - ARM: ensure the signal page contains defined contents (bsc#1188445). - ASoC: Intel: kbl_da7219_max98357a: shrink platform_id below 20 characters (git-fixes). - ASoC: Intel: sof_sdw: add SOF_RT715_DAI_ID_FIX for AlderLake (git-fixes). - ASoC: Intel: sof_sdw: add mutual exclusion between PCH DMIC and RT715 (git-fixes). - ASoC: SOF: loader: Use snd_sof_dsp_block_read() instead sof_block_read() (git-fixes). - ASoC: atmel-i2s: Fix usage of capture and playback at the same time (git-fixes). - ASoC: cs42l42: Correct definition of CS42L42_ADC_PDN_MASK (git-fixes). - ASoC: fsl_spdif: Fix error handler with pm_runtime_enable (git-fixes). - ASoC: fsl_spdif: Fix unexpected interrupt after suspend (git-fixes). - ASoC: hisilicon: fix missing clk_disable_unprepare() on error in hi6210_i2s_startup() (git-fixes). - ASoC: img: Fix PM reference leak in img_i2s_in_probe() (git-fixes). - ASoC: intel/boards: add missing MODULE_DEVICE_TABLE (git-fixes). - ASoC: max98373-sdw: add missing memory allocation check (git-fixes). - ASoC: max98373-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: mediatek: mtk-btcvsd: Fix an error handling path in 'mtk_btcvsd_snd_probe()' (git-fixes). - ASoC: rk3328: fix missing clk_disable_unprepare() on error in rk3328_platform_probe() (git-fixes). - ASoC: rsnd: tidyup loop on rsnd_adg_clk_query() (git-fixes). - ASoC: rt1308-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5631: Fix regcache sync errors on resume (git-fixes). - ASoC: rt5682-sdw: set regcache_cache_only false before reading RT5682_DEVICE_ID (git-fixes). - ASoC: rt5682-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt5682: Disable irq on shutdown (git-fixes). - ASoC: rt5682: Fix a problem with error handling in the io init function of the soundwire (git-fixes). - ASoC: rt5682: fix getting the wrong device id when the suspend_stress_test (git-fixes). - ASoC: rt700-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt711-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: rt715-sdw: use first_hw_init flag on resume (git-fixes). - ASoC: soc-core: Fix the error return code in snd_soc_of_parse_audio_routing() (git-fixes). - ASoC: soc-pcm: fix the return value in dpcm_apply_symmetry() (git-fixes). - ASoC: tegra: Set driver_name=tegra for all machine drivers (git-fixes). - ASoC: wm_adsp: Correct wm_coeff_tlv_get handling (git-fixes). - Bluetooth: Fix alt settings for incoming SCO with transparent coding format (git-fixes). - Bluetooth: Fix handling of HCI_LE_Advertising_Set_Terminated event (git-fixes). - Bluetooth: Fix the HCI to MGMT status conversion table (git-fixes). - Bluetooth: L2CAP: Fix invalid access if ECRED Reconfigure fails (git-fixes). - Bluetooth: L2CAP: Fix invalid access on ECRED Connection response (git-fixes). - Bluetooth: Remove spurious error message (git-fixes). - Bluetooth: Shutdown controller after workqueues are flushed or cancelled (git-fixes). - Bluetooth: btintel: Add infrastructure to read controller information (bsc#1188893). - Bluetooth: btintel: Check firmware version before download (bsc#1188893). - Bluetooth: btintel: Collect tlv based active firmware build info in FW mode (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version parsing (bsc#1188893). - Bluetooth: btintel: Consolidate intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Fix endianness issue for TLV version information (bsc#1188893). - Bluetooth: btintel: Fix offset calculation boot address parameter (bsc#1188893). - Bluetooth: btintel: Functions to send firmware header / payload (bsc#1188893). - Bluetooth: btintel: Move operational checks after version check (bsc#1188893). - Bluetooth: btintel: Refactor firmware download function (bsc#1188893). - Bluetooth: btintel: Reorganized bootloader mode tlv checks in intel_version_tlv parsing (bsc#1188893). - Bluetooth: btintel: Replace zero-length array with flexible-array member (bsc#1188893). - Bluetooth: btintel: Skip reading firmware file version while in bootloader mode (bsc#1188893). - Bluetooth: btqca: Do not modify firmware contents in-place (git-fixes). - Bluetooth: btusb: Add *setup* function for new generation Intel controllers (bsc#1188893). - Bluetooth: btusb: Add support USB ALT 3 for WBS (git-fixes). - Bluetooth: btusb: Add support for GarfieldPeak controller (bsc#1188893). - Bluetooth: btusb: Consolidate code for waiting firmware download (bsc#1188893). - Bluetooth: btusb: Define a function to construct firmware filename (bsc#1188893). - Bluetooth: btusb: Enable MSFT extension for Intel controllers (bsc#1188893). - Bluetooth: btusb: Fix failing to init controllers with operation firmware (bsc#1188893). - Bluetooth: btusb: Fixed too many in-token issue for Mediatek Chip (git-fixes). - Bluetooth: btusb: Helper function to download firmware to Intel adapters (bsc#1188893). - Bluetooth: btusb: Map Typhoon peak controller to BTUSB_INTEL_NEWGEN (bsc#1188893). - Bluetooth: btusb: Update boot parameter specific to SKU (bsc#1188893). - Bluetooth: btusb: fix bt fiwmare downloading failure issue for qca btsoc (git-fixes). - Bluetooth: btusb: print firmware file name on error loading firmware (bsc#1188893). - Bluetooth: hci_intel: drop strange le16_to_cpu() against u8 values (bsc#1188893). - Bluetooth: hci_intel: enable on new platform (bsc#1188893). - Bluetooth: hci_intel: switch to list_for_each_entry() (bsc#1188893). - Bluetooth: hci_qca: fix potential GPF (git-fixes). - Bluetooth: mgmt: Fix slab-out-of-bounds in tlv_data_is_valid (git-fixes). - Bluetooth: mgmt: Fix the command returns garbage parameter value (git-fixes). - HID: do not use down_interruptible() when unbinding devices (git-fixes). - HID: wacom: Correct base usage for capacitive ExpressKey status bits (git-fixes). - Input: hideep - fix the uninitialized use in hideep_nvm_unlock() (git-fixes). - Input: hil_kbd - fix error return code in hil_dev_connect() (git-fixes). - Input: ili210x - add missing negation for touch indication on ili210x (git-fixes). - Input: usbtouchscreen - fix control-request directions (git-fixes). - KVM: LAPIC: Prevent setting the tscdeadline timer if the lapic is hw disabled (bsc#1188771). - KVM: SVM: document KVM_MEM_ENCRYPT_OP, let userspace detect if SEV is available (bsc#1188703). - KVM: nVMX: Consult only the "basic" exit reason when routing nested exit (bsc#1188773). - KVM: nVMX: Ensure 64-bit shift when checking VMFUNC bitmap (bsc#1188774). - KVM: nVMX: Preserve exception priority irrespective of exiting behavior (bsc#1188777). - PCI/sysfs: Fix dsm_label_utf16s_to_utf8s() buffer overrun (git-fixes). - PCI: Add AMD RS690 quirk to enable 64-bit DMA (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: Leave Apple Thunderbolt controllers on for s2idle or standby (git-fixes). - PCI: aardvark: Fix checking for PIO Non-posted Request (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: aardvark: Implement workaround for the readback value of VEND_ID (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: intel-gw: Fix INTx enable (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Fix multi-MSI base vector number allocation (git-fixes). - PCI: iproc: Support multi-MSI only on uniprocessor kernel (git-fixes). - PCI: quirks: fix false kABI positive (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra194: Fix tegra_pcie_ep_raise_msi_irq() ill-defined shift (git-fixes). - PCI: tegra: Add missing MODULE_DEVICE_TABLE (git-fixes). - RDMA/cma: Fix incorrect Packet Lifetime calculation (jsc#SLE-8449). - RDMA/cma: Protect RMW with qp_mutex (git-fixes). - RDMA/hns: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx4: Remove unused parameter udata (jsc#SLE-15176). - RDMA/mlx5: Remove unused parameter udata (jsc#SLE-15176). - RDMA/rtrs-clt: Check if the queue_depth has changed during a reconnection (jsc#SLE-15176). - RDMA/rtrs-clt: Check state of the rtrs_clt_sess before reading its stats (jsc#SLE-15176). - RDMA/rtrs-clt: Fix memory leak of not-freed sess->stats and stats->pcpu_stats (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak of unfreed rtrs_srv_stats object (jsc#SLE-15176). - RDMA/rtrs-srv: Fix memory leak when having multiple sessions (jsc#SLE-15176). - RDMA/rtrs-srv: Replace atomic_t with percpu_ref for ids_inflight (jsc#SLE-15176). - RDMA/rtrs-srv: Set minimal max_send_wr and max_recv_wr (jsc#SLE-15176). - RDMA/rtrs: Do not reset hb_missed_max after re-connection (jsc#SLE-15176). - RDMA/srp: Fix a recently introduced memory leak (jsc#SLE-15176). - Revert "ACPI: resources: Add checks for ACPI IRQ override" (git-fixes). - Revert "ALSA: bebob/oxfw: fix Kconfig entry for Mackie d.2 Pro" (git-fixes). - Revert "Bluetooth: btintel: Fix endianness issue for TLV version information" (bsc#1188893). - Revert "USB: quirks: ignore remote wake-up on Fibocom L850-GL LTE modem" (git-fixes). - Revert "be2net: disable bh with spin_lock in be_process_mcc" (git-fixes). - Revert "drm/i915: Propagate errors on awaiting already signaled fences" (git-fixes). - Revert "drm: add a locked version of drm_is_current_master" (git-fixes). - Revert "ibmvnic: remove duplicate napi_schedule call in open function" (bsc#1065729). - Revert "iwlwifi: remove wide_cmd_header field" (bsc#1187495). - USB: cdc-acm: blacklist Heimann USB Appset device (git-fixes). - USB: serial: cp210x: add ID for CEL EM3588 USB ZigBee stick (git-fixes). - USB: serial: cp210x: fix comments for GE CS1000 (git-fixes). - USB: serial: option: add support for u-blox LARA-R6 family (git-fixes). - USB: usb-storage: Add LaCie Rugged USB3-FW to IGNORE_UAS (git-fixes). - [xarray] iov_iter_fault_in_readable() should do nothing in xarray case (git-fixes). - amdgpu: fix GEM obj leak in amdgpu_display_user_framebuffer_create (bsc#1152472). - ata: ahci_sunxi: Disable DIPM (git-fixes). - ath10k: Fix an error code in ath10k_add_interface() (git-fixes). - ath10k: add missing error return code in ath10k_pci_probe() (git-fixes). - ath10k: go to path err_unsupported when chip id is not supported (git-fixes). - ath10k: remove unused more_frags variable (git-fixes). - ath9k: Fix kernel NULL pointer dereference during ath_reset_internal() (git-fixes). - backlight: lm3630a: Fix return code of .update_status() callback (git-fixes). - backlight: lm3630a_bl: Put fwnode in error case during ->probe() (git-fixes). - bcache: avoid oversized read request in cache missing code path (bsc#1184631). - bcache: remove bcache device self-defined readahead (bsc#1184631). - blk-mq: Add blk_mq_delay_run_hw_queues() API call (bsc#1180092). - blk-mq: In blk_mq_dispatch_rq_list() "no budget" is a reason to kick (bsc#1180092). - blk-mq: Put driver tag in blk_mq_dispatch_rq_list() when no budget (bsc#1180092). - blk-mq: Rerun dispatching in the case of budget contention (bsc#1180092). - blk-mq: insert flush request to the front of dispatch queue (bsc#1180092). - blk-mq: insert passthrough request into hctx->dispatch directly (bsc#1180092). - bnxt_en: Add missing check for BNXT_STATE_ABORT_ERR in bnxt_fw_rset_task() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Check abort error state in bnxt_half_open_nic() (jsc#SLE-8371 bsc#1153274). - bnxt_en: Refresh RoCE capabilities in bnxt_ulp_probe() (jsc#SLE-8371 bsc#1153274). - bnxt_en: do not disable an already disabled PCI device (git-fixes). - bonding: Add struct bond_ipesc to manage SA (bsc#1176447). - bonding: disallow setting nested bonding + ipsec offload (bsc#1176447). - bonding: fix build issue (git-fixes). - bonding: fix incorrect return value of bond_ipsec_offload_ok() (bsc#1176447). - bonding: fix null dereference in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_add_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_del_sa() (bsc#1176447). - bonding: fix suspicious RCU usage in bond_ipsec_offload_ok() (bsc#1176447). - bpf: Fix integer overflow in argument calculation for bpf_map_area_alloc (bsc#1154353). - bpftool: Properly close va_list 'ap' by va_end() on error (bsc#1155518). - brcmfmac: Fix a double-free in brcmf_sdio_bus_reset (git-fixes). - brcmfmac: correctly report average RSSI in station info (git-fixes). - brcmfmac: fix setting of station info chains bitmask (git-fixes). - brcmsmac: mac80211_if: Fix a resource leak in an error handling path (git-fixes). - cadence: force nonlinear buffers to be cloned (git-fixes). - can: ems_usb: fix memory leak (git-fixes). - can: esd_usb2: fix memory leak (git-fixes). - can: gw: synchronize rcu operations before removing gw job entry (git-fixes). - can: hi311x: fix a signedness bug in hi3110_cmd() (git-fixes). - can: hi311x: hi3110_can_probe(): silence clang warning (git-fixes). - can: mcba_usb_start(): add missing urb->transfer_dma initialization (git-fixes). - can: peak_pciefd: pucan_handle_status(): fix a potential starvation issue in TX path (git-fixes). - can: raw: raw_setsockopt(): fix raw_rcv panic for sock UAF (git-fixes). - can: usb_8dev: fix memory leak (git-fixes). - ceph: do not WARN if we're still opening a session to an MDS (bsc#1188748). - cfg80211: call cfg80211_leave_ocb when switching away from OCB (git-fixes). - char: pcmcia: error out if 'num_bytes_read' is greater than 4 in set_protocol() (git-fixes). - cifs: Fix preauth hash corruption (git-fixes). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: fix interrupted close commands (git-fixes). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - clk: actions: Fix SD clocks factor table on Owl S500 SoC (git-fixes). - clk: actions: Fix UART clock dividers on Owl S500 SoC (git-fixes). - clk: actions: Fix bisp_factor_table based clocks on Owl S500 SoC (git-fixes). - clk: imx8mq: remove SYS PLL 1/2 clock gates (git-fixes). - clk: meson: g12a: fix gp0 and hifi ranges (git-fixes). - clk: renesas: r8a77995: Add ZA2 clock (git-fixes). - clk: renesas: rcar-gen3: Update Z clock rate formula in comments (git-fixes). - clk: si5341: Avoid divide errors due to bogus register contents (git-fixes). - clk: si5341: Update initialization magic (git-fixes). - clk: tegra: Ensure that PLLU configuration is applied properly (git-fixes). - clk: zynqmp: pll: Remove some dead code (git-fixes). - clocksource/arm_arch_timer: Improve Allwinner A64 timer workaround (git-fixes). - clocksource: Retry clock read if long delays detected (git-fixes). - coresight: Propagate symlink failure (git-fixes). - coresight: core: Fix use of uninitialized pointer (git-fixes). - cpu/hotplug: Cure the cpusets trainwreck (git fixes (sched/hotplug)). - cpufreq: sc520_freq: add 'fallthrough' to one case (git-fixes). - crypto: ccp - Fix a resource leak in an error handling path (git-fixes). - crypto: ixp4xx - dma_unmap the correct address (git-fixes). - crypto: nitrox - fix unchecked variable in nitrox_register_interrupts (git-fixes). - crypto: nx - add missing MODULE_DEVICE_TABLE (git-fixes). - crypto: omap-sham - Fix PM reference leak in omap sham ops (git-fixes). - crypto: qat - check return code of qat_hal_rd_rel_reg() (git-fixes). - crypto: qat - remove unused macro in FW loader (git-fixes). - crypto: sun4i-ss - IV register does not work on A10 and A13 (git-fixes). - crypto: sun4i-ss - checking sg length is not sufficient (git-fixes). - crypto: sun4i-ss - initialize need_fallback (git-fixes). - crypto: ux500 - Fix error return code in hash_hw_final() (git-fixes). - crypto: virtio: Fix dest length calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - crypto: virtio: Fix src/dst scatterlist calculation in __virtio_crypto_skcipher_do_req() (git-fixes). - cw1200: Revert unnecessary patches that fix unreal use-after-free bugs (git-fixes). - cw1200: add missing MODULE_DEVICE_TABLE (git-fixes). - cxgb4: fix IRQ free race during driver unload (git-fixes). - dma-buf/sync_file: Do not leak fences on merge failure (git-fixes). - dmaengine: fsl-qdma: check dma_set_mask return value (git-fixes). - dmaengine: mediatek: do not issue a new desc if one is still current (git-fixes). - dmaengine: mediatek: free the proper desc in desc_free handler (git-fixes). - dmaengine: mediatek: use GFP_NOWAIT instead of GFP_ATOMIC in prep_dma (git-fixes). - dmaengine: rcar-dmac: Fix PM reference leak in rcar_dmac_probe() (git-fixes). - dmaengine: zynqmp_dma: Fix PM reference leak in zynqmp_dma_alloc_chan_resourc() (git-fixes). - docs: admin-guide: update description for kernel.hotplug sysctl (git-fixes). - docs: virt/kvm: close inline string literal (bsc#1188703). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - dpaa2-eth: fix memory leak in XDP_REDIRECT (git-fixes). - drm/amd/amdgpu/sriov disable all ip hw status by default (git-fixes). - drm/amd/dc: Fix a missing check bug in dm_dp_mst_detect() (git-fixes). - drm/amd/display: Avoid HDCP over-read and corruption (git-fixes). - drm/amd/display: Fix DCN 3.01 DSCCLK validation (git-fixes). - drm/amd/display: Fix build warnings (git-fixes). - drm/amd/display: Fix off-by-one error in DML (git-fixes). - drm/amd/display: Release MST resources on switch from MST to SST (git-fixes). - drm/amd/display: Set DISPCLK_MAX_ERRDET_CYCLES to 7 (git-fixes). - drm/amd/display: Verify Gamma & Degamma LUT sizes in amdgpu_dm_atomic_check (git-fixes). - drm/amd/display: fix HDCP reset sequence on reinitialize (git-fixes). - drm/amd/display: fix incorrrect valid irq check (git-fixes). - drm/amd/display: fix use_max_lb flag for 420 pixel formats (git-fixes). - drm/amdgpu: Do not query CE and UE errors (bsc#1152472) - drm/amdgpu: Update NV SIMD-per-CU to 2 (git-fixes). - drm/amdgpu: enable sdma0 tmz for Raven/Renoir(V2) (git-fixes). - drm/amdgpu: remove unsafe optimization to drop preamble ib (git-fixes). - drm/amdgpu: update golden setting for sienna_cichlid (git-fixes). - drm/amdgpu: wait for moving fence after pinning (git-fixes). - drm/amdkfd: Fix circular lock in nocpsch path (git-fixes). - drm/amdkfd: Walk through list with dqm lock hold (git-fixes). - drm/amdkfd: fix circular locking on get_wave_state (git-fixes). - drm/amdkfd: use allowed domain for vmbo validation (git-fixes). - drm/arm/malidp: Always list modifiers (git-fixes). - drm/bridge/sii8620: fix dependency on extcon (git-fixes). - drm/bridge: Fix the stop condition of drm_bridge_chain_pre_enable() (git-fixes). - drm/bridge: cdns: Fix PM reference leak in cdns_dsi_transfer() (git-fixes). - drm/bridge: nwl-dsi: Force a full modeset when crtc_state->active is changed to be true (git-fixes). - drm/dp_mst: Do not set proposed vcpi directly (git-fixes). - drm/gma500: Add the missed drm_gem_object_put() in psb_user_framebuffer_create() (git-fixes). - drm/i915/display: Do not zero past infoframes.vsc (git-fixes). - drm/i915/gvt: Clear d3_entered on elsp cmd submission (git-fixes). - drm/i915/selftests: use vma_lookup() in __igt_mmap() (git-fixes). - drm/mcde/panel: Inverse misunderstood flag (bsc#1152472) - drm/mediatek: Fix PM reference leak in mtk_crtc_ddp_hw_init() (git-fixes). - drm/msm/dpu: Fix error return code in dpu_mdss_init() (git-fixes). - drm/msm/dpu: Fix sm8250_mdp register length (git-fixes). - drm/msm/mdp4: Fix modifier support enabling (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/msm: Small msm_gem_purge() fix (bsc#1152489) - drm/mxsfb: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm/nouveau: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/nouveau: fix dma_address check for CPU/GPU sync (git-fixes). - drm/nouveau: wait for moving fence after pinning v2 (git-fixes). - drm/panel: nt35510: Do not fail if DSI read fails (git-fixes). - drm/panel: raspberrypi-touchscreen: Prevent double-free (git-fixes). - drm/radeon: Add the missed drm_gem_object_put() in radeon_user_framebuffer_create() (git-fixes). - drm/radeon: Call radeon_suspend_kms() in radeon_pci_shutdown() for Loongson64 (git-fixes). - drm/radeon: Fix a missing check bug in radeon_dp_mst_detect() (bsc#1152489) - drm/radeon: wait for moving fence after pinning (git-fixes). - drm/rockchip: cdn-dp-core: add missing clk_disable_unprepare() on error in cdn_dp_grf_write() (git-fixes). - drm/rockchip: cdn-dp: fix sign extension on an int multiply for a u64 result (git-fixes). - drm/rockchip: dsi: move all lane config except LCDC mux to bind() (git-fixes). - drm/rockchip: dsi: remove extra component_del() call (git-fixes). - drm/rockchip: lvds: Fix an error handling path (git-fixes). - drm/sched: Avoid data corruptions (git-fixes). - drm/scheduler: Fix hang when sched_entity released (git-fixes). - drm/stm: Fix bus_flags handling (bsc#1152472) - drm/tegra: Do not set allow_fb_modifiers explicitly (git-fixes). - drm/vc4: Fix clock source for VEC PixelValve on BCM2711 (git-fixes). - drm/vc4: crtc: Skip the TXP (git-fixes). - drm/vc4: fix argument ordering in vc4_crtc_get_margins() (git-fixes). - drm/vc4: hdmi: Fix PM reference leak in vc4_hdmi_encoder_pre_crtc_co() (git-fixes). - drm/vc4: hdmi: Fix error path of hpd-gpios (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered in detect (bsc#1152489) - drm/vc4: hdmi: Prevent clock unbalance (git-fixes). - drm/vc4: txp: Properly set the possible_crtcs mask (git-fixes). - drm/virtio: Fix double free on probe failure (git-fixes). - drm/vmwgfx: Fix cpu updates of coherent multisample surfaces (git-fixes). - drm/vmwgfx: Mark a surface gpu-dirty after the SVGA3dCmdDXGenMips command (git-fixes). - drm/zte: Do not select DRM_KMS_FB_HELPER (git-fixes). - drm: Return -ENOTTY for non-drm ioctls (git-fixes). - drm: add a locked version of drm_is_current_master (git-fixes). - drm: bridge/panel: Cleanup connector on bridge detach (bsc#1152489) - drm: bridge: add missing word in Analogix help text (git-fixes). - drm: qxl: ensure surf.data is ininitialized (git-fixes). - drm: rockchip: add missing registers for RK3066 (git-fixes). - drm: rockchip: add missing registers for RK3188 (git-fixes). - drm: rockchip: set alpha_en to 0 if it is not used (git-fixes). - e1000e: Check the PCIm state (git-fixes). - e1000e: Fix an error handling path in 'e1000_probe()' (git-fixes). - efi/tpm: Differentiate missing and invalid final event log table (bsc#1188036). - extcon: extcon-max8997: Fix IRQ freeing at error path (git-fixes). - extcon: intel-mrfld: Sync hardware and software state on init (git-fixes). - extcon: max8997: Add missing modalias string (git-fixes). - extcon: sm5502: Drop invalid register write in sm5502_reg_data (git-fixes). - fbmem: Do not delete the mode that is still in use (git-fixes). - fbmem: add margin check to fb_check_caps() (git-fixes). - firmware/efi: Tell memblock about EFI iomem reservations (git-fixes). - firmware: arm_scmi: Fix possible scmi_linux_errmap buffer overflow (git-fixes). - firmware: arm_scmi: Fix range check for the maximum number of pending messages (git-fixes). - firmware: tegra: Fix error return code in tegra210_bpmp_init() (git-fixes). - fm10k: Fix an error handling path in 'fm10k_probe()' (git-fixes). - fpga: machxo2-spi: Address warning about unused variable (git-fixes). - fpga: stratix10-soc: Add missing fpga_mgr_free() call (git-fixes). - fuse: check connected before queueing on fpq->io (bsc#1188267). - fuse: ignore PG_workingset after stealing (bsc#1188268). - fuse: reject internal errno (bsc#1188269). - gpio: AMD8111 and TQMX86 require HAS_IOPORT_MAP (git-fixes). - gpio: pca953x: Add support for the On Semi pca9655 (git-fixes). - gpio: zynq: Check return value of pm_runtime_get_sync (git-fixes). - gtp: fix an use-before-init in gtp_newlink() (git-fixes). - gve: Add DQO fields for core data structures (bsc#1176940). - gve: Add Gvnic stats AQ command and ethtool show/set-priv-flags (bsc#1176940). - gve: Add dqo descriptors (bsc#1176940). - gve: Add stats for gve (bsc#1176940). - gve: Add support for DQO RX PTYPE map (bsc#1176940). - gve: Add support for raw addressing device option (bsc#1176940). - gve: Add support for raw addressing in the tx path (bsc#1176940). - gve: Add support for raw addressing to the rx path (bsc#1176940). - gve: Batch AQ commands for creating and destroying queues (bsc#1176940). - gve: Check TX QPL was actually assigned (bsc#1176940). - gve: DQO: Add RX path (bsc#1176940). - gve: DQO: Add TX path (bsc#1176940). - gve: DQO: Add core netdev features (bsc#1176940). - gve: DQO: Add ring allocation and initialization (bsc#1176940). - gve: DQO: Configure interrupts on device up (bsc#1176940). - gve: DQO: Fix off by one in gve_rx_dqo() (bsc#1176940). - gve: DQO: Remove incorrect prefetch (bsc#1176940). - gve: Enable Link Speed Reporting in the driver (bsc#1176940). - gve: Fix an error handling path in 'gve_probe()' (git-fixes). - gve: Fix swapped vars when fetching max queues (git-fixes). - gve: Fix warnings reported for DQO patchset (bsc#1176940). - gve: Get and set Rx copybreak via ethtool (bsc#1176940). - gve: Introduce a new model for device options (bsc#1176940). - gve: Introduce per netdev `enum gve_queue_format` (bsc#1176940). - gve: Make gve_rx_slot_page_info.page_offset an absolute offset (bsc#1176940). - gve: Move some static functions to a common file (bsc#1176940). - gve: NIC stats for report-stats and for ethtool (bsc#1176940). - gve: Propagate error codes to caller (bsc#1176940). - gve: Replace zero-length array with flexible-array member (bsc#1176940). - gve: Rx Buffer Recycling (bsc#1176940). - gve: Simplify code and axe the use of a deprecated API (bsc#1176940). - gve: Update adminq commands to support DQO queues (bsc#1176940). - gve: Use dev_info/err instead of netif_info/err (bsc#1176940). - gve: Use link status register to report link status (bsc#1176940). - gve: adminq: DQO specific device descriptor logic (bsc#1176940). - gve: gve_rx_copy: Move padding to an argument (bsc#1176940). - hwmon: (max31722) Remove non-standard ACPI device IDs (git-fixes). - hwmon: (max31790) Fix fan speed reporting for fan7..12 (git-fixes). - hwmon: (max31790) Fix pwmX_enable attributes (git-fixes). - hwmon: (max31790) Report correct current pwm duty cycles (git-fixes). - hwrng: exynos - Fix runtime PM imbalance on error (git-fixes). - i2c: core: Disable client irq on reboot/shutdown (git-fixes). - i2c: designware: Adjust bus_freq_hz when refuse high speed mode set (git-fixes). - i2c: dev: Add __user annotation (git-fixes). - i2c: robotfuzz-osif: fix control-request directions (git-fixes). - i40e: Fix autoneg disabling for non-10GBaseT links (git-fixes). - i40e: Fix error handling in i40e_vsi_open (git-fixes). - i40e: Fix missing rtnl locking when setting up pf switch (jsc#SLE-13701). - i40e: fix PTP on 5Gb links (jsc#SLE-13701). - iavf: Fix an error handling path in 'iavf_probe()' (git-fixes). - ibmvnic: Allow device probe if the device is not ready at boot (bsc#1184114 ltc#192237). - ibmvnic: Remove the proper scrq flush (bsc#1188504 ltc#192075). - ibmvnic: Use 'skb_frag_address()' instead of hand coding it (bsc#1184114 ltc#192237). - ibmvnic: Use list_for_each_entry() to simplify code in ibmvnic.c (bsc#1184114 ltc#192237). - ibmvnic: Use strscpy() instead of strncpy() (bsc#1184114 ltc#192237). - ibmvnic: account for bufs already saved in indir_buf (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: clean pending indirect buffs during reset (jsc#SLE-17268 jsc#SLE-17043 bsc#1179243 ltc#189290). - ibmvnic: fix kernel build warning (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warning in strncpy (bsc#1184114 ltc#192237). - ibmvnic: fix kernel build warnings in build_hdr_descs_arr (bsc#1184114 ltc#192237). - ibmvnic: fix send_request_map incompatible argument (bsc#1184114 ltc#192237). - ibmvnic: free tx_pool if tso_pool alloc fails (bsc#1085224 ltc#164363). - ibmvnic: parenthesize a check (bsc#1184114 ltc#192237 bsc#1183871 ltc#192139 git-fixes). - ibmvnic: retry reset if there are no other resets (bsc#1184350 ltc#191533). - ibmvnic: set ltb->buff to NULL after freeing (bsc#1094840 ltc#167098). - ice: Re-organizes reqstd/avail {R, T}XQ check/code for efficiency (jsc#SLE-7926). - igb: Check if num of q_vectors is smaller than max before array access (git-fixes). - igb: Fix an error handling path in 'igb_probe()' (git-fixes). - igb: Fix position of assignment to *ring (git-fixes). - igb: Fix use-after-free error during reset (git-fixes). - igc: Fix an error handling path in 'igc_probe()' (git-fixes). - igc: Fix use-after-free error during reset (git-fixes). - igc: change default return of igc_read_phy_reg() (git-fixes). - iio: accel: bma180: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: bma180: Use explicit member assignment (git-fixes). - iio: accel: bma220: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: hid: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: kxcjk-1013: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: mxc4005: Fix overread of data and alignment issue (git-fixes). - iio: accel: stk8312: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: accel: stk8ba50: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: at91-sama5d2: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: hx711: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: mxs-lradc: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads1015: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: ti-ads8688: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adc: vf610: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: adis16400: do not return ints in irq handlers (git-fixes). - iio: adis_buffer: do not return ints in irq handlers (git-fixes). - iio: at91-sama5d2_adc: remove usage of iio_priv_to_dev() helper (git-fixes). - iio: gyro: bmg160: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: gyro: fxa21002c: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: humidity: am2315: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: isl29125: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3414: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: light: tcs3472: do not free unallocated IRQ (git-fixes). - iio: light: vcnl4035: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: ltr501: ltr501_read_ps(): add missing endianness conversion (git-fixes). - iio: ltr501: ltr559: fix initialization of LTR501_ALS_CONTR (git-fixes). - iio: ltr501: mark register holding upper 8 bits of ALS_DATA{0,1} and PS_DATA as volatile, too (git-fixes). - iio: magn: bmc150: Balance runtime pm + use pm_runtime_resume_and_get() (git-fixes). - iio: magn: bmc150: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: hmc5843: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: magn: rm3100: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: potentiostat: lmp91000: Fix alignment of buffer in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: as3935: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: isl29501: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: pulsed-light: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: prox: srf08: Fix buffer alignment in iio_push_to_buffers_with_timestamp() (git-fixes). - iio: si1133: fix format string warnings (git-fixes). - iio:accel:mxc4005: Drop unnecessary explicit casts in regmap_bulk_read calls (git-fixes). - integrity: use arch_ima_get_secureboot instead of checking EFI_SECURE_BOOT when loading MokListRT (bsc#1188366). - intel_th: Wait until port is in reset before programming it (git-fixes). - iwl-trans: move dev_cmd_offs, page_offs to a common trans header (bsc#1187495). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_enqueue_hcmd() (git-fixes). - iwlwifi: Fix softirq/hardirq disabling in iwl_pcie_gen2_enqueue_hcmd() (git-fixes). - iwlwifi: acpi: evaluate dsm to disable 5.8GHz channels (bsc#1187495). - iwlwifi: acpi: in non acpi compilations remove iwl_sar_geo_init (bsc#1187495). - iwlwifi: acpi: prepare SAR profile selection code for multiple sizes (bsc#1187495). - iwlwifi: acpi: remove dummy definition of iwl_sar_set_profile() (bsc#1187495). - iwlwifi: acpi: rename geo structs to contain versioning (bsc#1187495). - iwlwifi: acpi: support ppag table command v2 (bsc#1187495). - iwlwifi: add a common struct for all iwl_tx_power_cmd versions (bsc#1187495). - iwlwifi: add trans op to set PNVM (bsc#1187495). - iwlwifi: align RX status flags with firmware (bsc#1187495). - iwlwifi: api: fix u32 -> __le32 (bsc#1187495). - iwlwifi: bump FW API to 57 for AX devices (bsc#1187495). - iwlwifi: bump FW API to 59 for AX devices (bsc#1187495). - iwlwifi: calib: Demote seemingly unintentional kerneldoc header (bsc#1187495). - iwlwifi: dbg: Do not touch the tlv data (bsc#1187495). - iwlwifi: dbg: add debug host notification (DHN) time point (bsc#1187495). - iwlwifi: dbg: add dumping special device memory (bsc#1187495). - iwlwifi: dbg: remove IWL_FW_INI_TIME_POINT_WDG_TIMEOUT (bsc#1187495). - iwlwifi: do not export acpi functions unnecessarily (bsc#1187495). - iwlwifi: dvm: Demote a couple of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: devices: Fix function documentation formatting issues (bsc#1187495). - iwlwifi: dvm: lib: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: rxon: Demote non-conformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: scan: Demote a few nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: sta: Demote a bunch of nonconformant kernel-doc headers (bsc#1187495). - iwlwifi: dvm: tx: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: enable twt by default (bsc#1187495). - iwlwifi: fix 11ax disabled bit in the regulatory capability flags (bsc#1187495). - iwlwifi: fix sar geo table initialization (bsc#1187495). - iwlwifi: fw: add default value for iwl_fw_lookup_cmd_ver (bsc#1187495). - iwlwifi: fw: move assert descriptor parser to common code (bsc#1187495). - iwlwifi: increase PNVM load timeout (bsc#1187495). - iwlwifi: iwl-drv: Provide descriptions debugfs dentries (bsc#1187495). - iwlwifi: iwl-trans: move tfd to trans layer (bsc#1187495). - iwlwifi: move PNVM implementation to common code (bsc#1187495). - iwlwifi: move all bus-independent TX functions to common code (bsc#1187495). - iwlwifi: move bc_pool to a common trans header (bsc#1187495). - iwlwifi: move bc_table_dword to a common trans header (bsc#1187495). - iwlwifi: msix: limit max RX queues for 9000 family (bsc#1187495). - iwlwifi: mvm: Add FTM initiator RTT smoothing logic (bsc#1187495). - iwlwifi: mvm: Do not install CMAC/GMAC key in AP mode (bsc#1187495). - iwlwifi: mvm: add PROTECTED_TWT firmware API (bsc#1187495). - iwlwifi: mvm: add a get lmac id function (bsc#1187495). - iwlwifi: mvm: add an option to add PASN station (bsc#1187495). - iwlwifi: mvm: add d3 prints (bsc#1187495). - iwlwifi: mvm: add support for new WOWLAN_TSC_RSC_PARAM version (bsc#1187495). - iwlwifi: mvm: add support for new version of WOWLAN_TKIP_SETTING_API_S (bsc#1187495). - iwlwifi: mvm: add support for range request command ver 11 (bsc#1187495). - iwlwifi: mvm: add support for responder dynamic config command version 3 (bsc#1187495). - iwlwifi: mvm: assign SAR table revision to the command later (bsc#1187495). - iwlwifi: mvm: avoid possible NULL pointer dereference (bsc#1187495). - iwlwifi: mvm: clear all scan UIDs (bsc#1187495). - iwlwifi: mvm: d3: parse wowlan status version 11 (bsc#1187495). - iwlwifi: mvm: d3: support GCMP ciphers (bsc#1187495). - iwlwifi: mvm: do not change band on bound PHY contexts (git-fixes). - iwlwifi: mvm: do not check if CSA event is running before removing (bsc#1187495). - iwlwifi: mvm: do not send a CSA command the firmware does not know (bsc#1187495). - iwlwifi: mvm: fix error print when session protection ends (git-fixes). - iwlwifi: mvm: fix suspicious rcu usage warnings (bsc#1187495). - iwlwifi: mvm: fix the type we use in the PPAG table validity checks (bsc#1187495). - iwlwifi: mvm: get number of stations from TLV (bsc#1187495). - iwlwifi: mvm: ignore the scan duration parameter (bsc#1187495). - iwlwifi: mvm: initiator: add option for adding a PASN responder (bsc#1187495). - iwlwifi: mvm: location: set the HLTK when PASN station is added (bsc#1187495). - iwlwifi: mvm: ops: Remove unused static struct 'iwl_mvm_debug_names' (bsc#1187495). - iwlwifi: mvm: prepare roc_done_wk to work sync (bsc#1187495). - iwlwifi: mvm: process ba-notifications also when sta rcu is invalid (bsc#1187495). - iwlwifi: mvm: re-enable TX after channel switch (bsc#1187495). - iwlwifi: mvm: read and parse SKU ID if available (bsc#1187495). - iwlwifi: mvm: remove memset of kek_kck command (bsc#1187495). - iwlwifi: mvm: remove redundant log in iwl_mvm_tvqm_enable_txq() (bsc#1187495). - iwlwifi: mvm: remove redundant support_umac_log field (bsc#1187495). - iwlwifi: mvm: responder: allow to set only the HLTK for an associated station (bsc#1187495). - iwlwifi: mvm: ring the doorbell and wait for PNVM load completion (bsc#1187495). - iwlwifi: mvm: rs-fw: handle VHT extended NSS capability (bsc#1187495). - iwlwifi: mvm: send stored PPAG command instead of local (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT feature if supported by firmware (bsc#1187495). - iwlwifi: mvm: set PROTECTED_TWT in MAC data policy (bsc#1187495). - iwlwifi: mvm: set enabled in the PPAG command properly (bsc#1187495). - iwlwifi: mvm: stop claiming NL80211_EXT_FEATURE_SET_SCAN_DWELL (bsc#1187495). - iwlwifi: mvm: store PPAG enabled/disabled flag properly (bsc#1187495). - iwlwifi: mvm: support ADD_STA_CMD_API_S ver 12 (bsc#1187495). - iwlwifi: mvm: support more GTK rekeying algorithms (bsc#1187495). - iwlwifi: mvm: support new KEK KCK api (bsc#1187495). - iwlwifi: mvm: tx: Demote misuse of kernel-doc headers (bsc#1187495). - iwlwifi: mvm: use CHECKSUM_COMPLETE (bsc#1187495). - iwlwifi: mvm: utils: Fix some doc-rot (bsc#1187495). - iwlwifi: pcie: avoid potential PNVM leaks (bsc#1187495). - iwlwifi: pcie: do not disable interrupts for reg_lock (bsc#1187495). - iwlwifi: pcie: fix context info freeing (git-fixes). - iwlwifi: pcie: fix the xtal latency value for a few qu devices (bsc#1187495). - iwlwifi: pcie: free IML DMA memory allocation (git-fixes). - iwlwifi: pcie: implement set_pnvm op (bsc#1187495). - iwlwifi: pcie: make iwl_pcie_txq_update_byte_cnt_tbl bus independent (bsc#1187495). - iwlwifi: pcie: properly set LTR workarounds on 22000 devices (bsc#1187495). - iwlwifi: phy-ctxt: add new API VER 3 for phy context cmd (bsc#1187495). - iwlwifi: pnvm: do not skip everything when not reloading (bsc#1187495). - iwlwifi: pnvm: do not try to load after failures (bsc#1187495). - iwlwifi: pnvm: increment the pointer before checking the TLV (bsc#1187495). - iwlwifi: pnvm: set the PNVM again if it was already loaded (bsc#1187495). - iwlwifi: provide gso_type to GSO packets (bsc#1187495). - iwlwifi: queue: bail out on invalid freeing (bsc#1187495). - iwlwifi: read and parse PNVM file (bsc#1187495). - iwlwifi: regulatory: regulatory capabilities api change (bsc#1187495). - iwlwifi: remove iwl_validate_sar_geo_profile() export (bsc#1187495). - iwlwifi: remove wide_cmd_header field (bsc#1187495). - iwlwifi: rs: Demote non-compliant kernel-doc headers (bsc#1187495). - iwlwifi: rs: align to new TLC config command API (bsc#1187495). - iwlwifi: rs: set RTS protection for all non legacy rates (bsc#1187495). - iwlwifi: sta: defer ADDBA transmit in case reclaimed SN != next SN (bsc#1187495). - iwlwifi: stats: add new api fields for statistics cmd/ntfy (bsc#1187495). - iwlwifi: support REDUCE_TX_POWER_CMD version 6 (bsc#1187495). - iwlwifi: support version 3 of GEO_TX_POWER_LIMIT (bsc#1187495). - iwlwifi: support version 5 of the alive notification (bsc#1187495). - iwlwifi: thermal: support new temperature measurement API (bsc#1187495). - iwlwifi: update prph scratch structure to include PNVM data (bsc#1187495). - iwlwifi: use correct group for alive notification (bsc#1187495). - iwlwifi: wowlan: adapt to wowlan status API version 10 (bsc#1187495). - iwlwifi: yoyo: add support for internal buffer allocation in D3 (bsc#1187495). - ixgbe: Fix an error handling path in 'ixgbe_probe()' (git-fixes). - ixgbe: Fix packet corruption due to missing DMA sync (git-fixes). - ixgbevf: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - kABI compatibility fix for max98373_priv struct (git-fixes). - kABI workaround for btintel symbol changes (bsc#1188893). - kABI workaround for intel_th_driver (git-fixes). - kABI workaround for pci/quirks.c (git-fixes). - kABI: restore struct tcpc_config definition (git-fixes). - kabi/severities: ignore kABI of iwlwifi symbols (bsc#1187495) iwlwifi driver consists of several modules and all exported symbols are internal uses. Let's ignore kABI checks of those. - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042). - kernel-binary.spec: Fix up usrmerge for non-modular kernels. - kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel - kprobes: Do not expose probe addresses to non-CAP_SYSLOG (git-fixes). - kprobes: Fix NULL pointer dereference at kprobe_ftrace_handler (git-fixes). - kprobes: Fix compiler warning for !CONFIG_KPROBES_ON_FTRACE (git-fixes). - kprobes: Fix to check probe enabled before disarm_kprobe_ftrace() (git-fixes). - kprobes: fix kill kprobe which has been marked as gone (git-fixes). - kvm: LAPIC: Restore guard to prevent illegal APIC register access (bsc#1188772). - kvm: i8254: remove redundant assignment to pointer s (bsc#1188770). - leds: as3645a: Fix error return code in as3645a_parse_node() (git-fixes). - leds: class: The -ENOTSUPP should never be seen by user space (git-fixes). - leds: ktd2692: Fix an error handling path (git-fixes). - leds: lm3532: select regmap I2C API (git-fixes). - lib/decompress_unlz4.c: correctly handle zero-padding around initrds (git-fixes). - lib/decompressors: remove set but not used variabled 'level' (git-fixes). - lib: vsprintf: Fix handling of number field widths in vsscanf (git-fixes). - libbpf: Fixes incorrect rx_ring_setup_done (bsc#1155518). - liquidio: Fix unintentional sign extension issue on left shift of u16 (git-fixes). - mISDN: fix possible use-after-free in HFC_cleanup() (git-fixes). - mac80211: consider per-CPU statistics if present (git-fixes). - mac80211: remove iwlwifi specific workaround NDPs of null_response (git-fixes). - mac80211: remove iwlwifi specific workaround that broke sta NDP tx (git-fixes). - mac80211: remove warning in ieee80211_get_sband() (git-fixes). - mac80211: reset profile_periodicity/ema_ap (git-fixes). - mac80211_hwsim: add concurrent channels scanning support over virtio (git-fixes). - mac80211_hwsim: drop pending frames on stop (git-fixes). - math: Export mul_u64_u64_div_u64 (git-fixes). - media, bpf: Do not copy more entries than user space requested (git-fixes). - media: Fix Media Controller API config checks (git-fixes). - media: I2C: change 'RST' to "RSET" to fix multiple build errors (git-fixes). - media: au0828: fix a NULL vs IS_ERR() check (git-fixes). - media: bt8xx: Fix a missing check bug in bt878_probe (git-fixes). - media: cobalt: fix race condition in setting HPD (git-fixes). - media: cpia2: fix memory leak in cpia2_usb_probe (git-fixes). - media: dtv5100: fix control-request directions (git-fixes). - media: dvb-usb: fix wrong definition (git-fixes). - media: dvb_net: avoid speculation from net slot (git-fixes). - media: dvd_usb: memory leak in cinergyt2_fe_attach (git-fixes). - media: em28xx: Fix possible memory leak of em28xx struct (git-fixes). - media: exynos-gsc: fix pm_runtime_get_sync() usage count (git-fixes). - media: exynos4-is: Fix a use after free in isp_video_release (git-fixes). - media: gspca/gl860: fix zero-length control requests (git-fixes). - media: gspca/sq905: fix control-request direction (git-fixes). - media: gspca/sunplus: fix zero-length control requests (git-fixes). - media: imx-csi: Skip first few frames from a BT.656 source (git-fixes). - media: imx: imx7_mipi_csis: Fix logging of only error event counters (git-fixes). - media: mdk-mdp: fix pm_runtime_get_sync() usage count (git-fixes). - media: mtk-vcodec: fix PM runtime get logic (git-fixes). - media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() (git-fixes). - media: pvrusb2: fix warning in pvr2_i2c_core_done (git-fixes). - media: rc: i2c: Fix an error message (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: s5p-g2d: Fix a memory leak on ctx->fh.m2m_ctx (git-fixes). - media: s5p-jpeg: fix pm_runtime_get_sync() usage count (git-fixes). - media: sh_vou: fix pm_runtime_get_sync() usage count (git-fixes). - media: siano: Fix out-of-bounds warnings in smscore_load_firmware_family2() (git-fixes). - media: siano: fix device register error path (git-fixes). - media: st-hva: Fix potential NULL pointer dereferences (git-fixes). - media: sti/bdisp: fix pm_runtime_get_sync() usage count (git-fixes). - media: sti: fix obj-$(config) targets (git-fixes). - media: tc358743: Fix error return code in tc358743_probe_of() (git-fixes). - media: uvcvideo: Fix pixel format change for Elgato Cam Link 4K (git-fixes). - media: v4l2-async: Fix trivial documentation typo (git-fixes). - media: v4l2-core: Avoid the dangling pointer in v4l2_fh_release (git-fixes). - media: zr364xx: fix memory leak in zr364xx_start_readpipe (git-fixes). - memory: atmel-ebi: add missing of_node_put for loop iteration (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of IO mapping on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: fsl_ifc: fix leak of private memory on probe failure (git-fixes). - memory: pl353: Fix error return code in pl353_smc_probe() (git-fixes). - memstick: rtsx_usb_ms: fix UAF (git-fixes). - mfd: cpcap: Fix cpcap dmamask not set warnings (git-fixes). - mfd: da9052/stmpe: Add and modify MODULE_DEVICE_TABLE (git-fixes). - misc/libmasm/module: Fix two use after free in ibmasm_init_one (git-fixes). - misc: alcor_pci: fix inverted branch condition (git-fixes). - misc: alcor_pci: fix null-ptr-deref when there is no PCI bridge (git-fixes). - mm, futex: fix shared futex pgoff on shmem huge page (git fixes (kernel/futex)). - mmc: block: Disable CMDQ on the ioctl path (git-fixes). - mmc: core: Allow UHS-I voltage switch for SDSC cards if supported (git-fixes). - mmc: core: clear flags before allowing to retune (git-fixes). - mmc: sdhci-esdhc-imx: remove unused is_imx6q_usdhc (git-fixes). - mmc: sdhci-sprd: use sdhci_sprd_writew (git-fixes). - mmc: sdhci: Fix warning message when accessing RPMB in HS400 mode (git-fixes). - mmc: usdhi6rol0: fix error return code in usdhi6_probe() (git-fixes). - mmc: via-sdmmc: add a check against NULL pointer dereference (git-fixes). - mmc: vub3000: fix control-request direction (git-fixes). - mt76: fix possible NULL pointer dereference in mt76_tx (git-fixes). - mt76: mt7603: set 0 as min coverage_class value (git-fixes). - mt76: mt7615: fix endianness in mt7615_mcu_set_eeprom (git-fixes). - mt76: mt7615: fix fixed-rate tx status reporting (git-fixes). - mt76: mt7615: increase MCU command timeout (git-fixes). - mt76: mt7915: fix IEEE80211_HE_PHY_CAP7_MAX_NC for station mode (git-fixes). - mt76: set dma-done flag for flushed descriptors (git-fixes). - mtd: partitions: redboot: seek fis-index-block in the right node (git-fixes). - mtd: rawnand: marvell: add missing clk_disable_unprepare() on error in marvell_nfc_resume() (git-fixes). - mvpp2: suppress warning (git-fixes). - mwifiex: re-fix for unaligned accesses (git-fixes). - net/mlx5: Do not fail driver on failure to create debugfs (git-fixes). - net/mlx5e: Block offload of outer header csum for GRE tunnel (git-fixes). - net/sched: act_ct: remove and free nf_table callbacks (jsc#SLE-15172). - net: Make PTP-specific drivers depend on PTP_1588_CLOCK (git-fixes). - net: atlantic: fix ip dst and ipv6 address filters (git-fixes). - net: dp83867: Fix OF_MDIO config check (git-fixes). - net: ethernet: ti: Remove TI_CPTS_MOD workaround (git-fixes). - net: fec_ptp: fix issue caused by refactor the fec_devtype (git-fixes). - net: gve: convert strlcpy to strscpy (bsc#1176940). - net: gve: remove duplicated allowed (bsc#1176940). - net: hns3: Clear the CMDQ registers before unmapping BAR region (git-fixes). - net: ipw2x00,iwlegacy,iwlwifi: Remove in_interrupt() from debug macros (bsc#1187495). - net: iwlwifi: Remove in_interrupt() from tracing macro (bsc#1187495). - net: marvell: Fix OF_MDIO config check (git-fixes). - net: mvpp2: Put fwnode in error case during ->probe() (git-fixes). - net: netdevsim: use xso.real_dev instead of xso.dev in callback functions of struct xfrmdev_ops (bsc#1176447). - net: phy: fix save wrong speed and duplex problem if autoneg is on (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: microchip_t1: add lan87xx_phy_init to initialize the lan87xx phy (git-fixes). - net: phy: realtek: add delay to fix RXC generation issue (git-fixes). - net: usb: fix possible use-after-free in smsc75xx_bind (git-fixes). - net: wilc1000: clean up resource in error path of init mon interface (git-fixes). - netfilter: ctnetlink: suspicious RCU usage in ctnetlink_dump_helpinfo (bsc#1176447). - nfc: nfcsim: fix use after free during module unload (git-fixes). - nvme-rdma: fix in-casule data send for chained sgls (git-fixes). - nvme-rdma: introduce nvme_rdma_sgl structure (git-fixes). - nvme-tcp: rerun io_work if req_list is not empty (git-fixes). - nvme: verify MNAN value if ANA is enabled (bsc#1185791). - pinctrl/amd: Add device HID for new AMD GPIO controller (git-fixes). - pinctrl: mcp23s08: Fix missing unlock on error in mcp23s08_irq() (git-fixes). - pinctrl: mcp23s08: fix race condition in irq handler (git-fixes). - pinctrl: stm32: fix the reported number of GPIO lines per bank (git-fixes). - platform/chrome: cros_ec_lightbar: Reduce ligthbar get version command (git-fixes). - platform/x86: dell-smbios-wmi: Fix oops on rmmod dell_smbios (git-fixes). - platform/x86: intel_int0002_vgpio: Only call enable_irq_wake() when using s2idle (git-fixes). - platform/x86: intel_int0002_vgpio: Pass irqchip when adding gpiochip (git-fixes). - platform/x86: intel_int0002_vgpio: Remove dev_err() usage after platform_get_irq() (git-fixes). - platform/x86: intel_int0002_vgpio: Use device_init_wakeup (git-fixes). - platform/x86: toshiba_acpi: Fix missing error code in toshiba_acpi_setup_keyboard() (git-fixes). - power: reset: gpio-poweroff: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: ab8500: Avoid NULL pointers (git-fixes). - power: supply: ab8500: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: charger-manager: add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: max17042: Do not enforce (incorrect) interrupt trigger type (git-fixes). - power: supply: sc2731_charger: Add missing MODULE_DEVICE_TABLE (git-fixes). - power: supply: sc27xx: Add missing MODULE_DEVICE_TABLE (git-fixes). - powerpc/64s: Move branch cache flushing bcctr variant to ppc-ops.h (bsc#1188885 ltc#193722). - powerpc/64s: rename pnv|pseries_setup_rfi_flush to _setup_security_mitigations (bsc#1188885 ltc#193722). - powerpc/mm: Fix lockup on kernel exec fault (bsc#1156395). - powerpc/papr_scm: Properly handle UUID types and API (bsc#1113295, git-fixes). - powerpc/pesries: Get STF barrier requirement from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: Get entry and uaccess flush required bits from H_GET_CPU_CHARACTERISTICS (bsc#1188885 ltc#193722). - powerpc/pseries: add new branch prediction security bits for link stack (bsc#1188885 ltc#193722). - powerpc/pseries: export LPAR security flavor in lparcfg (bsc#1188885 ltc#193722). - powerpc/security: Add a security feature for STF barrier (bsc#1188885 ltc#193722). - powerpc/security: Allow for processors that flush the link stack using the special bcctr (bsc#1188885 ltc#193722). - powerpc/security: Fix link stack flush instruction (bsc#1188885 ltc#193722). - powerpc/security: change link stack flush state to the flush type enum (bsc#1188885 ltc#193722). - powerpc/security: make display of branch cache flush more consistent (bsc#1188885 ltc#193722). - powerpc/security: re-name count cache flush to branch cache flush (bsc#1188885 ltc#193722). - powerpc/security: split branch cache flush toggle from code patching (bsc#1188885 ltc#193722). - powerpc/stacktrace: Fix spurious "stale" traces in raise_backtrace_ipi() (bsc#1156395). - powerpc/stacktrace: Include linux/delay.h (bsc#1156395). - powerpc: Offline CPU in stop_this_cpu() (bsc#1156395). - prctl: PR_{G,S}ET_IO_FLUSHER to support controlling memory reclaim (bsc#1188752). - ptp_qoriq: fix overflow in ptp_qoriq_adjfine() u64 calcalation (git-fixes). - pwm: img: Fix PM reference leak in img_pwm_enable() (git-fixes). - pwm: imx1: Do not disable clocks at device remove time (git-fixes). - pwm: spear: Do not modify HW state in .remove callback (git-fixes). - qemu_fw_cfg: Make fw_cfg_rev_attr a proper kobj_attribute (git-fixes). - r8152: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8152: Fix a deadlock by doubly PM resume (bsc#1186194). - r8152: Fix potential PM refcount imbalance (bsc#1186194). - r8169: Avoid memcpy() over-reading of ETH_SS_STATS (git-fixes). - r8169: avoid link-up interrupt issue on RTL8106e if user enables ASPM (git-fixes). - random32: Fix implicit truncation warning in prandom_seed_state() (git-fixes). - ravb: Fix bit fields checking in ravb_hwtstamp_get() (git-fixes). - rbd: always kick acquire on "acquired" and "released" notifications (bsc#1188746). - rbd: do not hold lock_rwsem while running_list is being drained (bsc#1188747). - regulator: da9052: Ensure enough delay time for .set_voltage_time_sel (git-fixes). - regulator: hi6421: Fix getting wrong drvdata (git-fixes). - regulator: hi6421: Use correct variable type for regmap api val argument (git-fixes). - regulator: hi655x: Fix pass wrong pointer to config.driver_data (git-fixes). - regulator: uniphier: Add missing MODULE_DEVICE_TABLE (git-fixes). - replaced with upstream security mitigation cleanup - reset: a10sr: add missing of_match_table reference (git-fixes). - reset: bail if try_module_get() fails (git-fixes). - reset: brcmstb: Add missing MODULE_DEVICE_TABLE (git-fixes). - reset: ti-syscon: fix to_ti_syscon_reset_data macro (git-fixes). - rpm/kernel-binary.spec.in: Do not install usrmerged kernel on Leap (boo#1184804). - rpm/kernel-binary.spec.in: Remove zdebug define used only once. - rsi: Assign beacon rate settings to the correct rate_info descriptor field (git-fixes). - rtc: fix snprintf() checking in is_rtc_hctosys() (git-fixes). - rtc: max77686: Do not enforce (incorrect) interrupt trigger type (git-fixes). - rtc: mxc_v2: add missing MODULE_DEVICE_TABLE (git-fixes). - rtc: stm32: Fix unbalanced clk_disable_unprepare() on probe error path (git-fixes). - rtl8xxxu: Fix device info for RTL8192EU devices (git-fixes). - rtw88: 8822c: fix lc calibration timing (git-fixes). - scsi: fc: Add 256GBit speed setting to SCSI FC transport (bsc#1188101). - scsi: ibmvfc: Fix command state accounting and stale response detection (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: qedf: Do not put host in qedf_vport_create() unconditionally (bsc#1170511). - serial: 8250: Actually allow UPF_MAGIC_MULTIPLIER baud rates (git-fixes). - serial: 8250_pci: Add support for new HPE serial device (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: fsl_lpuart: remove RTSCTS handling from get_mctrl() (git-fixes). - serial: mvebu-uart: correctly calculate minimal possible baudrate (git-fixes). - serial: mvebu-uart: do not allow changing baudrate when uartclk is not available (git-fixes). - serial: mvebu-uart: fix calculation of clock divisor (git-fixes). - serial: tegra-tcu: Reorder channel initialization (git-fixes). - serial_cs: Add Option International GSM-Ready 56K/ISDN modem (git-fixes). - serial_cs: remove wrong GLOBETROTTER.cis entry (git-fixes). - sfp: Fix error handing in sfp_probe() (git-fixes). - skbuff: Fix build with SKB extensions disabled (jsc#SLE-15172). - skbuff: Release nfct refcount on napi stolen or re-used skbs (jsc#SLE-15172). - soc/tegra: fuse: Fix Tegra234-only builds (git-fixes). - soc: fsl: qbman: Delete useless kfree code (bsc#1188176). - soc: fsl: qbman: Ensure device cleanup is run for kexec (bsc#1188176). - soundwire: stream: Fix test for DP prepare complete (git-fixes). - spi: Make of_register_spi_device also set the fwnode (git-fixes). - spi: cadence: Correct initialisation of runtime PM again (git-fixes). - spi: fspi: dynamically alloc AHB memory (bsc#1188121). - spi: imx: add a check for speed_hz before calculating the clock (git-fixes). - spi: mediatek: fix fifo rx mode (git-fixes). - spi: nxp-fspi: Use devm API to fix missed unregistration of controller (bsc#1188121). - spi: omap-100k: Fix the length judgment problem (git-fixes). - spi: spi-loopback-test: Fix 'tx_buf' might be 'rx_buf' (git-fixes). - spi: spi-nxp-fspi: Add ACPI support (bsc#1188121). - spi: spi-nxp-fspi: Add support for IP read only (bsc#1188121). - spi: spi-nxp-fspi: Enable the Octal Mode in MCR0 (bsc#1188121). - spi: spi-nxp-fspi: Fix a NULL vs IS_ERR() check in probe (bsc#1188121). - spi: spi-nxp-fspi: Implement errata workaround for LS1028A (bsc#1188121). - spi: spi-sun6i: Fix chipselect/clock bug (git-fixes). - spi: spi-topcliff-pch: Fix potential double free in pch_spi_process_messages() (git-fixes). - spi: stm32-qspi: Remove unused qspi field of struct stm32_qspi_flash (git-fixes). - spi: tegra114: Fix an error message (git-fixes). - ssb: Fix error return code in ssb_bus_scan() (git-fixes). - ssb: sdio: Do not overwrite const buffer if block_write fails (git-fixes). - staging: gdm724x: check for buffer overflow in gdm_lte_multi_sdu_pkt() (git-fixes). - staging: gdm724x: check for overflow in gdm_lte_netif_rx() (git-fixes). - staging: rtl8712: fix memory leak in rtl871x_load_fw_cb (git-fixes). - staging: rtl8712: remove redundant check in r871xu_drv_init (git-fixes). - staging: rtl8723bs: fix macro value for 2.4Ghz only device (git-fixes). - thermal/core: Correct function name thermal_zone_device_unregister() (git-fixes). - thermal/drivers/int340x/processor_thermal: Fix tcc setting (git-fixes). - thermal/drivers/rcar_gen3_thermal: Fix coefficient calculations (git-fixes). - thunderbolt: Bond lanes only when dual_link_port != NULL in alloc_dev_default() (git-fixes). - timers: Fix get_next_timer_interrupt() with no timers pending (git-fixes) - tpm, tpm_tis: Decorate tpm_get_timeouts() with request_locality() (bsc#1188036). - tpm, tpm_tis: Decorate tpm_tis_gen_interrupt() with request_locality() (bsc#1188036). - tpm, tpm_tis: Extend locality handling to TPM2 in tpm_tis_gen_interrupt() (bsc#1188036). - tpm, tpm_tis: Reserve locality in tpm_tis_resume() (bsc#1188036). - tpm: efi: Use local variable for calculating final log size (git-fixes). - tracepoint: Add tracepoint_probe_register_may_exist() for BPF tracing (git-fixes). - tracing/histograms: Fix parsing of "sym-offset" modifier (git-fixes). - tracing: Do not reference char * as a string in histograms (git-fixes). - tracing: Resize tgid_map to pid_max, not PID_MAX_DEFAULT (git-fixes). - tracing: Simplify & fix saved_tgids logic (git-fixes). - tty: nozomi: Fix a resource leak in an error handling function (git-fixes). - tty: nozomi: Fix the error handling path of 'nozomi_card_init()' (git-fixes). - tty: serial: 8250: serial_cs: Fix a memory leak in error handling path (git-fixes). - tty: serial: fsl_lpuart: fix the potential risk of division or modulo by zero (git-fixes). - usb: dwc2: Do not reset the core after setting turnaround time (git-fixes). - usb: dwc2: gadget: Fix sending zero length packet in DDMA mode (git-fixes). - usb: dwc3: Fix debugfs creation flow (git-fixes). - usb: gadget: eem: fix echo command packet response issue (git-fixes). - usb: gadget: f_fs: Fix setting of device and driver data cross-references (git-fixes). - usb: gadget: f_hid: fix endianness issue with descriptors (git-fixes). - usb: gadget: hid: fix error return code in hid_bind() (git-fixes). - usb: hub: Disable USB 3 device initiated lpm if exit latency is too high (git-fixes). - usb: hub: Fix link power management max exit latency (MEL) calculations (git-fixes). - usb: max-3421: Prevent corruption of freed memory (git-fixes). - usb: renesas_usbhs: Fix superfluous irqs happen after usb_pkt_pop() (git-fixes). - usb: typec: Add the missed altmode_id_remove() in typec_register_altmode() (git-fixes). - usb: typec: fusb302: Always provide fwnode for the port (git-fixes). - usb: typec: fusb302: fix "op-sink-microwatt" default that was in mW (git-fixes). - usb: typec: tcpm: Error handling for tcpm_register_partner_altmodes (git-fixes). - usb: typec: tcpm: Move mod_delayed_work(&port->vdm_state_machine) call into tcpm_queue_vdm() (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request (git-fixes). - usb: typec: tcpm: Refactor tcpm_handle_vdm_request payload handling (git-fixes). - usb: typec: tcpm: Remove tcpc_config configuration mechanism (git-fixes). - usb: typec: tcpm: Switch to use fwnode_property_count_uXX() (git-fixes). - usb: typec: tcpm: move to SNK_UNATTACHED if sink removed for DRP (git-fixes). - usb: typec: tcpm: set correct data role for non-DRD (git-fixes). - usb: typec: tcpm: update power supply once partner accepts (git-fixes). - usb: typec: ucsi: Hold con->lock for the entire duration of ucsi_register_port() (git-fixes). - usb: typec: ucsi: Put fwnode in any case during ->probe() (git-fixes). - usb: typec: wcove: Fx wrong kernel doc format (git-fixes). - uuid: Add inline helpers to import / export UUIDs (bsc#1113295, git-fixes). - vfio/pci: Handle concurrent vma faults (git-fixes). - vfs: Convert functionfs to use the new mount API (git -fixes). - video: fbdev: imxfb: Fix an error message (git-fixes). - virtio_console: Assure used length from device is limited (git-fixes). - virtio_net: move tx vq operation under tx queue lock (git-fixes). - visorbus: fix error return code in visorchipset_init() (git-fixes). - vmxnet3: fix cksum offload issues for tunnels with non-default udp ports (git-fixes). - vxlan: add missing rcu_read_lock() in neigh_reduce() (git-fixes). - w1: ds2438: fixing bug that would always get page0 (git-fixes). - watchdog: Fix possible use-after-free by calling del_timer_sync() (git-fixes). - watchdog: Fix possible use-after-free in wdt_startup() (git-fixes). - watchdog: aspeed: fix hardware timeout calculation (git-fixes). - watchdog: iTCO_wdt: Account for rebooting on second timeout (git-fixes). - watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() (git-fixes). - watchdog: sp805: Fix kernel doc description (git-fixes). - wcn36xx: Move hal_buf allocation to devm_kmalloc in probe (git-fixes). - wilc1000: write value to WILC_INTR2_ENABLE register (git-fixes). - wireless: carl9170: fix LEDS build errors & warnings (git-fixes). - wireless: wext-spy: Fix out-of-bounds warning (git-fixes). - wl1251: Fix possible buffer overflow in wl1251_cmd_scan (git-fixes). - wlcore/wl12xx: Fix wl12xx get_mac error if device is in ELP (git-fixes). - workqueue: fix UAF in pwq_unbound_release_workfn() (bsc#1188973). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable all PV features on crash (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Disable kvmclock on all CPUs on shutdown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Fix pr_info() for async PF setup/teardown (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Teardown PV features on boot CPU as well (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - x86/kvm: Unify kvm_pv_guest_cpu_reboot() with kvm_guest_cpu_offline() (bsc#1185308). - xen/events: reset active flag for lateeoi events later (git-fixes). - xfrm: Fix xfrm offload fallback fail case (bsc#1176447). - xfrm: delete xfrm4_output_finish xfrm6_output_finish declarations (bsc#1176447). - xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377). - xhci: Fix lost USB 2 remote wake (git-fixes). - xhci: solve a double free problem while doing s4 (git-fixes). - xsk: Fix missing validation for skb and unaligned mode (jsc#SLE-13706). cluster-md-kmp-azure-5.3.18-38.17.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.17.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.17.1.x86_64.rpm True kernel-azure-5.3.18-38.17.1.nosrc.rpm True kernel-azure-5.3.18-38.17.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.17.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.17.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.17.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.17.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.17.1.noarch.rpm True kernel-source-azure-5.3.18-38.17.1.noarch.rpm True kernel-source-azure-5.3.18-38.17.1.src.rpm True kernel-syms-azure-5.3.18-38.17.1.src.rpm True kernel-syms-azure-5.3.18-38.17.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.17.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.17.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.17.1.x86_64.rpm True openSUSE-SLE-15.3-2021-3829 moderate SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: - Fix for Rails 6.1 zeitwerk autoloading errors (bsc#1186798) - Fix: Don't create symlinks at install stage, instead only link them at the post stage if they don't exist. (bsc#1188043) - Update translations. - Additional debug output for mirroring subcommand with '--debug' flag. rmt-server-2.6.11-3.9.3.src.rpm rmt-server-2.6.11-3.9.3.x86_64.rpm rmt-server-config-2.6.11-3.9.3.x86_64.rpm rmt-server-pubcloud-2.6.11-3.9.3.x86_64.rpm rmt-server-2.6.11-3.9.3.s390x.rpm rmt-server-config-2.6.11-3.9.3.s390x.rpm rmt-server-pubcloud-2.6.11-3.9.3.s390x.rpm rmt-server-2.6.11-3.9.3.ppc64le.rpm rmt-server-config-2.6.11-3.9.3.ppc64le.rpm rmt-server-pubcloud-2.6.11-3.9.3.ppc64le.rpm rmt-server-2.6.11-3.9.3.aarch64.rpm rmt-server-config-2.6.11-3.9.3.aarch64.rpm rmt-server-pubcloud-2.6.11-3.9.3.aarch64.rpm openSUSE-SLE-15.3-2021-2783 important SUSE Updates openSUSE-SLE 15.3 This update for yast2-country fixes the following issues: - AutoYaST: allow empty /profile/timezone/timezone setting, meaning to keep the UTC default (bsc#1188406). - Fix the Comment entry in the desktop file so the tooltip in the control center is properly translated (bsc#1187270). yast2-country-4.3.16-3.6.1.src.rpm yast2-country-4.3.16-3.6.1.x86_64.rpm yast2-country-data-4.3.16-3.6.1.x86_64.rpm yast2-country-4.3.16-3.6.1.s390x.rpm yast2-country-data-4.3.16-3.6.1.s390x.rpm yast2-country-4.3.16-3.6.1.ppc64le.rpm yast2-country-data-4.3.16-3.6.1.ppc64le.rpm yast2-country-4.3.16-3.6.1.aarch64.rpm yast2-country-data-4.3.16-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2997 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - Fixed an issue when the missing 'stropts.h' causing build errors for different python modules. (bsc#1187338) libpython3_6m1_0-3.6.13-10.3.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.13-10.3.1.x86_64.rpm python3-3.6.13-10.3.1.src.rpm python3-3.6.13-10.3.1.x86_64.rpm python3-32bit-3.6.13-10.3.1.x86_64.rpm python3-base-3.6.13-10.3.1.x86_64.rpm python3-base-32bit-3.6.13-10.3.1.x86_64.rpm python3-core-3.6.13-10.3.1.src.rpm python3-curses-3.6.13-10.3.1.x86_64.rpm python3-dbm-3.6.13-10.3.1.x86_64.rpm python3-devel-3.6.13-10.3.1.x86_64.rpm python3-doc-devhelp-3.6.13-10.3.1.x86_64.rpm python3-documentation-3.6.13-10.3.1.src.rpm python3-idle-3.6.13-10.3.1.x86_64.rpm python3-testsuite-3.6.13-10.3.1.x86_64.rpm python3-tk-3.6.13-10.3.1.x86_64.rpm python3-tools-3.6.13-10.3.1.x86_64.rpm libpython3_6m1_0-3.6.13-10.3.1.s390x.rpm python3-3.6.13-10.3.1.s390x.rpm python3-base-3.6.13-10.3.1.s390x.rpm python3-curses-3.6.13-10.3.1.s390x.rpm python3-dbm-3.6.13-10.3.1.s390x.rpm python3-devel-3.6.13-10.3.1.s390x.rpm python3-doc-devhelp-3.6.13-10.3.1.s390x.rpm python3-idle-3.6.13-10.3.1.s390x.rpm python3-testsuite-3.6.13-10.3.1.s390x.rpm python3-tk-3.6.13-10.3.1.s390x.rpm python3-tools-3.6.13-10.3.1.s390x.rpm libpython3_6m1_0-3.6.13-10.3.1.ppc64le.rpm python3-3.6.13-10.3.1.ppc64le.rpm python3-base-3.6.13-10.3.1.ppc64le.rpm python3-curses-3.6.13-10.3.1.ppc64le.rpm python3-dbm-3.6.13-10.3.1.ppc64le.rpm python3-devel-3.6.13-10.3.1.ppc64le.rpm python3-doc-devhelp-3.6.13-10.3.1.ppc64le.rpm python3-idle-3.6.13-10.3.1.ppc64le.rpm python3-testsuite-3.6.13-10.3.1.ppc64le.rpm python3-tk-3.6.13-10.3.1.ppc64le.rpm python3-tools-3.6.13-10.3.1.ppc64le.rpm libpython3_6m1_0-3.6.13-10.3.1.aarch64.rpm python3-3.6.13-10.3.1.aarch64.rpm python3-base-3.6.13-10.3.1.aarch64.rpm python3-curses-3.6.13-10.3.1.aarch64.rpm python3-dbm-3.6.13-10.3.1.aarch64.rpm python3-devel-3.6.13-10.3.1.aarch64.rpm python3-doc-devhelp-3.6.13-10.3.1.aarch64.rpm python3-idle-3.6.13-10.3.1.aarch64.rpm python3-testsuite-3.6.13-10.3.1.aarch64.rpm python3-tk-3.6.13-10.3.1.aarch64.rpm python3-tools-3.6.13-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3294 important SUSE Updates openSUSE-SLE 15.3 nodejs8 was updated to fix the following security issues: - CVE-2021-22930: http2: fixes use after free on close in stream canceling (bsc#1188917) nodejs8-8.17.0-10.15.11.src.rpm nodejs8-8.17.0-10.15.11.x86_64.rpm nodejs8-devel-8.17.0-10.15.11.x86_64.rpm nodejs8-docs-8.17.0-10.15.11.noarch.rpm npm8-8.17.0-10.15.11.x86_64.rpm nodejs8-8.17.0-10.15.11.s390x.rpm nodejs8-devel-8.17.0-10.15.11.s390x.rpm npm8-8.17.0-10.15.11.s390x.rpm nodejs8-8.17.0-10.15.11.ppc64le.rpm nodejs8-devel-8.17.0-10.15.11.ppc64le.rpm npm8-8.17.0-10.15.11.ppc64le.rpm nodejs8-8.17.0-10.15.11.aarch64.rpm nodejs8-devel-8.17.0-10.15.11.aarch64.rpm npm8-8.17.0-10.15.11.aarch64.rpm openSUSE-SLE-15.3-2021-3043 moderate SUSE Updates openSUSE-SLE 15.3 nvme-cli was updated to fix the following issues: - Do not print error message when opening controller (bsc#1186719) - Fix failures during 'nvme list' (bsc#1186719) - Only connect to matching controllers (bsc#1186719) - Skip connect if transport type doesn't match (bsc#1187287 bsc#1187860) - Ignore non live controllers when scanning subsystems (bsc#1186719 bsc#1187287) - Remove UUID validation heuristic (bsc#1187890) - Do not segfault when controller is not available (bsc#1189046) - Use correct default port for discovery (bsc#1189195 bsc#1187858) nvme-cli-1.13-3.7.1.src.rpm nvme-cli-1.13-3.7.1.x86_64.rpm nvme-cli-regress-script-1.13-3.7.1.x86_64.rpm nvme-cli-1.13-3.7.1.s390x.rpm nvme-cli-regress-script-1.13-3.7.1.s390x.rpm nvme-cli-1.13-3.7.1.ppc64le.rpm nvme-cli-regress-script-1.13-3.7.1.ppc64le.rpm nvme-cli-1.13-3.7.1.aarch64.rpm nvme-cli-regress-script-1.13-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3033 low SUSE Updates openSUSE-SLE 15.3 This update for yast2-theme fixes the following issues: - Fix the icons' style and minify them. yast2-theme-4.3.9-3.3.1.noarch.rpm yast2-theme-4.3.9-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2909 moderate SUSE Updates openSUSE-SLE 15.3 This update for ndctl fixes the following issues: - Enable aarch64 build. (bsc#1188502) libndctl-devel-71.1-3.3.1.x86_64.rpm libndctl6-71.1-3.3.1.x86_64.rpm ndctl-71.1-3.3.1.src.rpm ndctl-71.1-3.3.1.x86_64.rpm libndctl-devel-71.1-3.3.1.ppc64le.rpm libndctl6-71.1-3.3.1.ppc64le.rpm ndctl-71.1-3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2021-2951 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: Updated to 0.1.57 release (jsc#ECO-3319) - Small bugfixes for SUSE Linux Enterprise STIG profiles. - CIS profile for RHEL 7 is updated. - Initial CIS profiles for Ubuntu 20.04. - Major improvement of RHEL 9 content. scap-security-guide-0.1.57-1.16.1.noarch.rpm scap-security-guide-0.1.57-1.16.1.src.rpm scap-security-guide-debian-0.1.57-1.16.1.noarch.rpm scap-security-guide-redhat-0.1.57-1.16.1.noarch.rpm scap-security-guide-ubuntu-0.1.57-1.16.1.noarch.rpm openSUSE-SLE-15.3-2021-2786 important SUSE Updates openSUSE-SLE 15.3 This update for bash fixes the following issues: - Allow process group assignment even for modern kernels (bsc#1057452, bsc#1188287) bash-4.4-19.6.1.src.rpm bash-4.4-19.6.1.x86_64.rpm bash-devel-4.4-19.6.1.x86_64.rpm bash-doc-4.4-19.6.1.noarch.rpm bash-lang-4.4-19.6.1.noarch.rpm bash-loadables-4.4-19.6.1.x86_64.rpm libreadline7-32bit-7.0-19.6.1.x86_64.rpm libreadline7-7.0-19.6.1.x86_64.rpm readline-devel-32bit-7.0-19.6.1.x86_64.rpm readline-devel-7.0-19.6.1.x86_64.rpm readline-devel-static-7.0-19.6.1.x86_64.rpm readline-doc-7.0-19.6.1.noarch.rpm bash-4.4-19.6.1.s390x.rpm bash-devel-4.4-19.6.1.s390x.rpm bash-loadables-4.4-19.6.1.s390x.rpm libreadline7-7.0-19.6.1.s390x.rpm readline-devel-7.0-19.6.1.s390x.rpm readline-devel-static-7.0-19.6.1.s390x.rpm bash-4.4-19.6.1.ppc64le.rpm bash-devel-4.4-19.6.1.ppc64le.rpm bash-loadables-4.4-19.6.1.ppc64le.rpm libreadline7-7.0-19.6.1.ppc64le.rpm readline-devel-7.0-19.6.1.ppc64le.rpm readline-devel-static-7.0-19.6.1.ppc64le.rpm bash-4.4-19.6.1.aarch64.rpm bash-devel-4.4-19.6.1.aarch64.rpm bash-loadables-4.4-19.6.1.aarch64.rpm libreadline7-7.0-19.6.1.aarch64.rpm readline-devel-7.0-19.6.1.aarch64.rpm readline-devel-static-7.0-19.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2760 important SUSE Updates openSUSE-SLE 15.3 This update for c-ares fixes the following issues: Version update to git snapshot 1.17.1+20200724: - CVE-2021-3672: fixed missing input validation on hostnames returned by DNS servers (bsc#1188881) - If ares_getaddrinfo() was terminated by an ares_destroy(), it would cause crash - Crash in sortaddrinfo() if the list size equals 0 due to an unexpected DNS response - Expand number of escaped characters in DNS replies as per RFC1035 5.1 to prevent spoofing - Use unbuffered /dev/urandom for random data to prevent early startup performance issues c-ares-1.17.1+20200724-3.14.1.src.rpm c-ares-devel-1.17.1+20200724-3.14.1.x86_64.rpm c-ares-utils-1.17.1+20200724-3.14.1.x86_64.rpm libcares2-1.17.1+20200724-3.14.1.x86_64.rpm libcares2-32bit-1.17.1+20200724-3.14.1.x86_64.rpm c-ares-devel-1.17.1+20200724-3.14.1.s390x.rpm c-ares-utils-1.17.1+20200724-3.14.1.s390x.rpm libcares2-1.17.1+20200724-3.14.1.s390x.rpm c-ares-devel-1.17.1+20200724-3.14.1.ppc64le.rpm c-ares-utils-1.17.1+20200724-3.14.1.ppc64le.rpm libcares2-1.17.1+20200724-3.14.1.ppc64le.rpm c-ares-devel-1.17.1+20200724-3.14.1.aarch64.rpm c-ares-utils-1.17.1+20200724-3.14.1.aarch64.rpm libcares2-1.17.1+20200724-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2937 important SUSE Updates openSUSE-SLE 15.3 This update for libesmtp fixes the following issues: - CVE-2019-19977: Fixed stack-based buffer over-read in ntlm/ntlmstruct.c (bsc#1160462). libesmtp-1.0.6-150.4.1.src.rpm libesmtp-1.0.6-150.4.1.x86_64.rpm libesmtp-devel-1.0.6-150.4.1.x86_64.rpm libesmtp-1.0.6-150.4.1.s390x.rpm libesmtp-devel-1.0.6-150.4.1.s390x.rpm libesmtp-1.0.6-150.4.1.ppc64le.rpm libesmtp-devel-1.0.6-150.4.1.ppc64le.rpm libesmtp-1.0.6-150.4.1.aarch64.rpm libesmtp-devel-1.0.6-150.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3002 moderate SUSE Updates openSUSE-SLE 15.3 This update for cronie fixes the following issue: - Increase the limit of allowed entries in 'crontab' files. (bsc#1187508) cron-4.2-70.14.4.1.x86_64.rpm cronie-1.5.1-70.14.4.1.src.rpm cronie-1.5.1-70.14.4.1.x86_64.rpm cronie-anacron-1.5.1-70.14.4.1.x86_64.rpm cron-4.2-70.14.4.1.s390x.rpm cronie-1.5.1-70.14.4.1.s390x.rpm cronie-anacron-1.5.1-70.14.4.1.s390x.rpm cron-4.2-70.14.4.1.ppc64le.rpm cronie-1.5.1-70.14.4.1.ppc64le.rpm cronie-anacron-1.5.1-70.14.4.1.ppc64le.rpm cron-4.2-70.14.4.1.aarch64.rpm cronie-1.5.1-70.14.4.1.aarch64.rpm cronie-anacron-1.5.1-70.14.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3010 moderate SUSE Updates openSUSE-SLE 15.3 This update for pesign-obs-integration fixes the following issues: - Fixed slowness when MALLOC_PERTURB_ is set (bsc#1188636) pesign-obs-integration-10.1-13.3.1.src.rpm pesign-obs-integration-10.1-13.3.1.x86_64.rpm pesign-obs-integration-10.1-13.3.1.s390x.rpm pesign-obs-integration-10.1-13.3.1.ppc64le.rpm pesign-obs-integration-10.1-13.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2858 moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) Non-security issues fixed: - Use max host physical address if -cpu max is used (bsc#1188299) qemu-5.2.0-103.2.src.rpm qemu-5.2.0-103.2.x86_64.rpm qemu-arm-5.2.0-103.2.x86_64.rpm qemu-audio-alsa-5.2.0-103.2.x86_64.rpm qemu-audio-pa-5.2.0-103.2.x86_64.rpm qemu-audio-spice-5.2.0-103.2.x86_64.rpm qemu-block-curl-5.2.0-103.2.x86_64.rpm qemu-block-dmg-5.2.0-103.2.x86_64.rpm qemu-block-gluster-5.2.0-103.2.x86_64.rpm qemu-block-iscsi-5.2.0-103.2.x86_64.rpm qemu-block-nfs-5.2.0-103.2.x86_64.rpm qemu-block-rbd-5.2.0-103.2.x86_64.rpm qemu-block-ssh-5.2.0-103.2.x86_64.rpm qemu-chardev-baum-5.2.0-103.2.x86_64.rpm qemu-chardev-spice-5.2.0-103.2.x86_64.rpm qemu-extra-5.2.0-103.2.x86_64.rpm qemu-guest-agent-5.2.0-103.2.x86_64.rpm qemu-hw-display-qxl-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.x86_64.rpm qemu-hw-usb-redirect-5.2.0-103.2.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-103.2.x86_64.rpm qemu-ipxe-1.0.0+-103.2.noarch.rpm qemu-ivshmem-tools-5.2.0-103.2.x86_64.rpm qemu-ksm-5.2.0-103.2.x86_64.rpm qemu-kvm-5.2.0-103.2.x86_64.rpm qemu-lang-5.2.0-103.2.x86_64.rpm qemu-microvm-5.2.0-103.2.noarch.rpm qemu-ppc-5.2.0-103.2.x86_64.rpm qemu-s390x-5.2.0-103.2.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-103.2.noarch.rpm qemu-sgabios-8-103.2.noarch.rpm qemu-skiboot-5.2.0-103.2.noarch.rpm qemu-tools-5.2.0-103.2.x86_64.rpm qemu-ui-curses-5.2.0-103.2.x86_64.rpm qemu-ui-gtk-5.2.0-103.2.x86_64.rpm qemu-ui-opengl-5.2.0-103.2.x86_64.rpm qemu-ui-spice-app-5.2.0-103.2.x86_64.rpm qemu-ui-spice-core-5.2.0-103.2.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-103.2.noarch.rpm qemu-vhost-user-gpu-5.2.0-103.2.x86_64.rpm qemu-x86-5.2.0-103.2.x86_64.rpm qemu-5.2.0-103.2.s390x.rpm qemu-arm-5.2.0-103.2.s390x.rpm qemu-audio-alsa-5.2.0-103.2.s390x.rpm qemu-audio-pa-5.2.0-103.2.s390x.rpm qemu-audio-spice-5.2.0-103.2.s390x.rpm qemu-block-curl-5.2.0-103.2.s390x.rpm qemu-block-dmg-5.2.0-103.2.s390x.rpm qemu-block-gluster-5.2.0-103.2.s390x.rpm qemu-block-iscsi-5.2.0-103.2.s390x.rpm qemu-block-nfs-5.2.0-103.2.s390x.rpm qemu-block-rbd-5.2.0-103.2.s390x.rpm qemu-block-ssh-5.2.0-103.2.s390x.rpm qemu-chardev-baum-5.2.0-103.2.s390x.rpm qemu-chardev-spice-5.2.0-103.2.s390x.rpm qemu-extra-5.2.0-103.2.s390x.rpm qemu-guest-agent-5.2.0-103.2.s390x.rpm qemu-hw-display-qxl-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.s390x.rpm qemu-hw-usb-redirect-5.2.0-103.2.s390x.rpm qemu-hw-usb-smartcard-5.2.0-103.2.s390x.rpm qemu-ivshmem-tools-5.2.0-103.2.s390x.rpm qemu-ksm-5.2.0-103.2.s390x.rpm qemu-kvm-5.2.0-103.2.s390x.rpm qemu-lang-5.2.0-103.2.s390x.rpm qemu-ppc-5.2.0-103.2.s390x.rpm qemu-s390x-5.2.0-103.2.s390x.rpm qemu-tools-5.2.0-103.2.s390x.rpm qemu-ui-curses-5.2.0-103.2.s390x.rpm qemu-ui-gtk-5.2.0-103.2.s390x.rpm qemu-ui-opengl-5.2.0-103.2.s390x.rpm qemu-ui-spice-app-5.2.0-103.2.s390x.rpm qemu-ui-spice-core-5.2.0-103.2.s390x.rpm qemu-vhost-user-gpu-5.2.0-103.2.s390x.rpm qemu-x86-5.2.0-103.2.s390x.rpm qemu-5.2.0-103.2.ppc64le.rpm qemu-arm-5.2.0-103.2.ppc64le.rpm qemu-audio-alsa-5.2.0-103.2.ppc64le.rpm qemu-audio-pa-5.2.0-103.2.ppc64le.rpm qemu-audio-spice-5.2.0-103.2.ppc64le.rpm qemu-block-curl-5.2.0-103.2.ppc64le.rpm qemu-block-dmg-5.2.0-103.2.ppc64le.rpm qemu-block-gluster-5.2.0-103.2.ppc64le.rpm qemu-block-iscsi-5.2.0-103.2.ppc64le.rpm qemu-block-nfs-5.2.0-103.2.ppc64le.rpm qemu-block-rbd-5.2.0-103.2.ppc64le.rpm qemu-block-ssh-5.2.0-103.2.ppc64le.rpm qemu-chardev-baum-5.2.0-103.2.ppc64le.rpm qemu-chardev-spice-5.2.0-103.2.ppc64le.rpm qemu-extra-5.2.0-103.2.ppc64le.rpm qemu-guest-agent-5.2.0-103.2.ppc64le.rpm qemu-hw-display-qxl-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-103.2.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-103.2.ppc64le.rpm qemu-ivshmem-tools-5.2.0-103.2.ppc64le.rpm qemu-ksm-5.2.0-103.2.ppc64le.rpm qemu-lang-5.2.0-103.2.ppc64le.rpm qemu-ppc-5.2.0-103.2.ppc64le.rpm qemu-s390x-5.2.0-103.2.ppc64le.rpm qemu-tools-5.2.0-103.2.ppc64le.rpm qemu-ui-curses-5.2.0-103.2.ppc64le.rpm qemu-ui-gtk-5.2.0-103.2.ppc64le.rpm qemu-ui-opengl-5.2.0-103.2.ppc64le.rpm qemu-ui-spice-app-5.2.0-103.2.ppc64le.rpm qemu-ui-spice-core-5.2.0-103.2.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-103.2.ppc64le.rpm qemu-x86-5.2.0-103.2.ppc64le.rpm qemu-5.2.0-103.2.aarch64.rpm qemu-arm-5.2.0-103.2.aarch64.rpm qemu-audio-alsa-5.2.0-103.2.aarch64.rpm qemu-audio-pa-5.2.0-103.2.aarch64.rpm qemu-audio-spice-5.2.0-103.2.aarch64.rpm qemu-block-curl-5.2.0-103.2.aarch64.rpm qemu-block-dmg-5.2.0-103.2.aarch64.rpm qemu-block-gluster-5.2.0-103.2.aarch64.rpm qemu-block-iscsi-5.2.0-103.2.aarch64.rpm qemu-block-nfs-5.2.0-103.2.aarch64.rpm qemu-block-rbd-5.2.0-103.2.aarch64.rpm qemu-block-ssh-5.2.0-103.2.aarch64.rpm qemu-chardev-baum-5.2.0-103.2.aarch64.rpm qemu-chardev-spice-5.2.0-103.2.aarch64.rpm qemu-extra-5.2.0-103.2.aarch64.rpm qemu-guest-agent-5.2.0-103.2.aarch64.rpm qemu-hw-display-qxl-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-103.2.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-103.2.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-103.2.aarch64.rpm qemu-hw-usb-redirect-5.2.0-103.2.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-103.2.aarch64.rpm qemu-ivshmem-tools-5.2.0-103.2.aarch64.rpm qemu-ksm-5.2.0-103.2.aarch64.rpm qemu-lang-5.2.0-103.2.aarch64.rpm qemu-ppc-5.2.0-103.2.aarch64.rpm qemu-s390x-5.2.0-103.2.aarch64.rpm qemu-tools-5.2.0-103.2.aarch64.rpm qemu-ui-curses-5.2.0-103.2.aarch64.rpm qemu-ui-gtk-5.2.0-103.2.aarch64.rpm qemu-ui-opengl-5.2.0-103.2.aarch64.rpm qemu-ui-spice-app-5.2.0-103.2.aarch64.rpm qemu-ui-spice-core-5.2.0-103.2.aarch64.rpm qemu-vhost-user-gpu-5.2.0-103.2.aarch64.rpm qemu-x86-5.2.0-103.2.aarch64.rpm openSUSE-SLE-15.3-2021-3614 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702, CVE-2021-3713) - Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938, CVE-2021-3748) - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) Non-security issues fixed: - Use max host physical address if -cpu max is used (bsc#1188299) qemu-3.1.1.1-80.40.1.src.rpm openSUSE-SLE-15.3-2021-2956 moderate SUSE Updates openSUSE-SLE 15.3 This update for openCryptoki fixes the following issues: - Opencryptoki slot daemon not able to start after migration. (bsc#1188879) openCryptoki-3.15.1-5.6.1.src.rpm openCryptoki-3.15.1-5.6.1.x86_64.rpm openCryptoki-64bit-3.15.1-5.6.1.x86_64.rpm openCryptoki-devel-3.15.1-5.6.1.x86_64.rpm openCryptoki-3.15.1-5.6.1.s390x.rpm openCryptoki-64bit-3.15.1-5.6.1.s390x.rpm openCryptoki-devel-3.15.1-5.6.1.s390x.rpm openCryptoki-3.15.1-5.6.1.ppc64le.rpm openCryptoki-64bit-3.15.1-5.6.1.ppc64le.rpm openCryptoki-devel-3.15.1-5.6.1.ppc64le.rpm openCryptoki-3.15.1-5.6.1.aarch64.rpm openCryptoki-64bit-3.15.1-5.6.1.aarch64.rpm openCryptoki-devel-3.15.1-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2837 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to version 10.2.40 (bsc#1189320): - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 In additon the follwing was changed: - Increase NOFILE limit on service configuration (bsc#1180014) The default 'NOFILE' setting on mariadb service configuration is to low and may cause instability on higher loads. mariadb-10.4.21-3.14.1.src.rpm mariadb-galera-10.4.21-3.14.1.x86_64.rpm mariadb-galera-10.4.21-3.14.1.s390x.rpm mariadb-galera-10.4.21-3.14.1.ppc64le.rpm mariadb-galera-10.4.21-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-2789 moderate SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - usbredir: free call on invalid pointer in bufp_alloc (bsc#1189145, CVE-2021-3682) - NULL pointer dereference in ESP (bsc#1180433, CVE-2020-35504) (bsc#1180434, CVE-2020-35505) (bsc#1180435, CVE-2020-35506) - NULL pointer dereference issue in megasas-gen2 host bus adapter (bsc#1180432, CVE-2020-35503) - eepro100: stack overflow via infinite recursion (bsc#1182651, CVE-2021-20255) - usb: unbounded stack allocation in usbredir (bsc#1186012, CVE-2021-3527) qemu-4.2.1-11.28.1.src.rpm qemu-s390-4.2.1-11.28.1.x86_64.rpm qemu-s390-4.2.1-11.28.1.s390x.rpm qemu-s390-4.2.1-11.28.1.ppc64le.rpm qemu-s390-4.2.1-11.28.1.aarch64.rpm openSUSE-SLE-15.3-2021-2677 moderate SUSE Updates openSUSE-SLE 15.3 This update for shim-susesigned fixes the following issues: - Sync with Microsoft signed shim to Thu Jul 15 08:13:26 UTC 2021. - avoid deleting the mirrored RT variables (bsc#1187696) - relax the check for import_mok_state() when Secure Boot is off. (bsc#1185261) - ignore the odd LoadOptions length (bsc#1185232) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - fix the size of rela sections for AArch64 - disable exporting vendor-dbx to MokListXRT since writing a large RT variable could crash some machines (bsc#1185261) - Avoid the potential crash when calling QueryVariableInfo in EFI 1.10 machines (bsc#1187260) - avoid buffer overflow when copying data to the MOK config table (bsc#1185232) - shim-install: instead of assuming "removable" for Azure, remove fallback.efi from \EFI\Boot and copy grub.efi/cfg to \EFI\Boot to make \EFI\Boot bootable and keep the boot option created by efibootmgr (bsc#1185464, bsc#1185961) - shim-install: always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) shim-susesigned-15.4-3.3.1.aarch64.rpm shim-susesigned-15.4-3.3.1.src.rpm openSUSE-SLE-15.3-2021-2787 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.15 fixes the following issues: Update to go1.15.15: - go#47473 net/http: panic due to racy read of persistConn after handler panic (CVE-2021-36221 bsc#1189162) - go#47347 cmd/go: "go list -f '{{.Stale}}'" stack overflow with cyclic imports - go#47014 cmd/go: go mod vendor: open C:\Users\LICENSE: Access is denied. - go#46927 cmd/compile: register conflict between external linker and duffzero on arm64 - go#46857 runtime: ppc64x binaries randomly segfault on linux 5.13rc6 go1.15-1.15.15-1.39.1.src.rpm go1.15-1.15.15-1.39.1.x86_64.rpm go1.15-doc-1.15.15-1.39.1.x86_64.rpm go1.15-race-1.15.15-1.39.1.x86_64.rpm go1.15-1.15.15-1.39.1.s390x.rpm go1.15-doc-1.15.15-1.39.1.s390x.rpm go1.15-1.15.15-1.39.1.ppc64le.rpm go1.15-doc-1.15.15-1.39.1.ppc64le.rpm go1.15-1.15.15-1.39.1.aarch64.rpm go1.15-doc-1.15.15-1.39.1.aarch64.rpm go1.15-race-1.15.15-1.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-2885 low SUSE Updates openSUSE-SLE 15.3 This update for publicsuffix fixes the following issues: - Updates the list of known/accepted domains with recent data (bsc#1189124). publicsuffix-20210804-3.6.1.noarch.rpm publicsuffix-20210804-3.6.1.src.rpm openSUSE-SLE-15.3-2021-2788 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to go1.16.7: - go#47473 net/http: panic due to racy read of persistConn after handler panic (CVE-2021-36221 bsc#1189162) - go#47348 cmd/go: "go list -f '{{.Stale}}'" stack overflow with cyclic imports - go#47332 time: Timer reset broken under heavy use since go1.16 timer optimizations added - go#47289 cmd/link: build error with cgo in Windows, redefinition of go.map.zero - go#47015 cmd/go: go mod vendor: open C:\Users\LICENSE: Access is denied. - go#46928 cmd/compile: register conflict between external linker and duffzero on arm64 - go#46858 runtime: ppc64x binaries randomly segfault on linux 5.13rc6 - go#46551 cmd/go: unhelpful error message when running "go install" on a replaced-but-not-required package go1.16-1.16.7-1.23.1.src.rpm go1.16-1.16.7-1.23.1.x86_64.rpm go1.16-doc-1.16.7-1.23.1.x86_64.rpm go1.16-race-1.16.7-1.23.1.x86_64.rpm go1.16-1.16.7-1.23.1.s390x.rpm go1.16-doc-1.16.7-1.23.1.s390x.rpm go1.16-1.16.7-1.23.1.ppc64le.rpm go1.16-doc-1.16.7-1.23.1.ppc64le.rpm go1.16-1.16.7-1.23.1.aarch64.rpm go1.16-doc-1.16.7-1.23.1.aarch64.rpm go1.16-race-1.16.7-1.23.1.aarch64.rpm openSUSE-SLE-15.3-2021-2689 important SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: It was possible to trigger Remote code execution due to a integer overflow (CVE-2021-38185, bsc#1189206) UPDATE: This update was buggy and could lead to hangs, so it has been retracted. There will be a follow up update. cpio-2.12-3.6.1.src.rpm cpio-2.12-3.6.1.x86_64.rpm cpio-lang-2.12-3.6.1.noarch.rpm cpio-mt-2.12-3.6.1.x86_64.rpm cpio-2.12-3.6.1.s390x.rpm cpio-mt-2.12-3.6.1.s390x.rpm cpio-2.12-3.6.1.ppc64le.rpm cpio-mt-2.12-3.6.1.ppc64le.rpm cpio-2.12-3.6.1.aarch64.rpm cpio-mt-2.12-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2774 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 78.13.0 ESR (MFSA 2021-34, bsc#1188891): - CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption - CVE-2021-29988: Memory corruption as a result of incorrect style treatment - CVE-2021-29984: Incorrect instruction reordering during JIT optimization - CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption - CVE-2021-29985: Use-after-free media channels - CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 MozillaFirefox-78.13.0-8.49.1.src.rpm MozillaFirefox-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-buildsymbols-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-devel-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.x86_64.rpm MozillaFirefox-78.13.0-8.49.1.s390x.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.s390x.rpm MozillaFirefox-devel-78.13.0-8.49.1.s390x.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.s390x.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.s390x.rpm MozillaFirefox-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-devel-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.ppc64le.rpm MozillaFirefox-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-branding-upstream-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-devel-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-translations-common-78.13.0-8.49.1.aarch64.rpm MozillaFirefox-translations-other-78.13.0-8.49.1.aarch64.rpm openSUSE-SLE-15.3-2021-2773 important SUSE Updates openSUSE-SLE 15.3 This update for haproxy fixes the following issues: - Fixes HAProxy vulnerabilities on H2 (bsc#1189366). haproxy-2.0.14-11.7.1.src.rpm haproxy-2.0.14-11.7.1.x86_64.rpm haproxy-2.0.14-11.7.1.s390x.rpm haproxy-2.0.14-11.7.1.ppc64le.rpm haproxy-2.0.14-11.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-2835 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to version 10.2.40 [bsc#1189320]: - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 libmysqld-devel-10.2.40-3.43.1.x86_64.rpm libmysqld19-10.2.40-3.43.1.x86_64.rpm mariadb-10.2.40-3.43.1.src.rpm libmysqld-devel-10.2.40-3.43.1.s390x.rpm libmysqld19-10.2.40-3.43.1.s390x.rpm libmysqld-devel-10.2.40-3.43.1.ppc64le.rpm libmysqld19-10.2.40-3.43.1.ppc64le.rpm libmysqld-devel-10.2.40-3.43.1.aarch64.rpm libmysqld19-10.2.40-3.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-3026 moderate SUSE Updates openSUSE-SLE 15.3 This update for oracleasm fixes the following issues: - Added 4 upstream commits/patches, as requested by support (bsc#1189119): - Fix incorrectly set flag - Fix memory leak - Add 'ENXIO' handling - Tracing update oracleasm-2.0.8-19.3.2.src.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.x86_64.rpm oracleasm-kmp-preempt-2.0.8_k5.3.18_59.19-19.3.2.x86_64.rpm oracleasm-kmp-rt-2.0.8_k5.3.18_8.13-19.3.2.x86_64.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.s390x.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.ppc64le.rpm oracleasm-kmp-64kb-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm oracleasm-kmp-default-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm oracleasm-kmp-preempt-2.0.8_k5.3.18_59.19-19.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-2938 moderate SUSE Updates openSUSE-SLE 15.3 This update for openldap2 fixes the following issue: - openldap2-contrib is shipped to the Legacy Module. (bsc#1184614) libldap-2_4-2-2.4.46-9.58.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-9.58.1.x86_64.rpm libldap-data-2.4.46-9.58.1.noarch.rpm openldap2-2.4.46-9.58.1.src.rpm openldap2-2.4.46-9.58.1.x86_64.rpm openldap2-back-meta-2.4.46-9.58.1.x86_64.rpm openldap2-back-perl-2.4.46-9.58.1.x86_64.rpm openldap2-back-sock-2.4.46-9.58.1.x86_64.rpm openldap2-back-sql-2.4.46-9.58.1.x86_64.rpm openldap2-client-2.4.46-9.58.1.x86_64.rpm openldap2-contrib-2.4.46-9.58.1.x86_64.rpm openldap2-devel-2.4.46-9.58.1.x86_64.rpm openldap2-devel-32bit-2.4.46-9.58.1.x86_64.rpm openldap2-devel-static-2.4.46-9.58.1.x86_64.rpm openldap2-doc-2.4.46-9.58.1.noarch.rpm openldap2-ppolicy-check-password-1.2-9.58.1.x86_64.rpm libldap-2_4-2-2.4.46-9.58.1.s390x.rpm openldap2-2.4.46-9.58.1.s390x.rpm openldap2-back-meta-2.4.46-9.58.1.s390x.rpm openldap2-back-perl-2.4.46-9.58.1.s390x.rpm openldap2-back-sock-2.4.46-9.58.1.s390x.rpm openldap2-back-sql-2.4.46-9.58.1.s390x.rpm openldap2-client-2.4.46-9.58.1.s390x.rpm openldap2-contrib-2.4.46-9.58.1.s390x.rpm openldap2-devel-2.4.46-9.58.1.s390x.rpm openldap2-devel-static-2.4.46-9.58.1.s390x.rpm openldap2-ppolicy-check-password-1.2-9.58.1.s390x.rpm libldap-2_4-2-2.4.46-9.58.1.ppc64le.rpm openldap2-2.4.46-9.58.1.ppc64le.rpm openldap2-back-meta-2.4.46-9.58.1.ppc64le.rpm openldap2-back-perl-2.4.46-9.58.1.ppc64le.rpm openldap2-back-sock-2.4.46-9.58.1.ppc64le.rpm openldap2-back-sql-2.4.46-9.58.1.ppc64le.rpm openldap2-client-2.4.46-9.58.1.ppc64le.rpm openldap2-contrib-2.4.46-9.58.1.ppc64le.rpm openldap2-devel-2.4.46-9.58.1.ppc64le.rpm openldap2-devel-static-2.4.46-9.58.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-9.58.1.ppc64le.rpm libldap-2_4-2-2.4.46-9.58.1.aarch64.rpm openldap2-2.4.46-9.58.1.aarch64.rpm openldap2-back-meta-2.4.46-9.58.1.aarch64.rpm openldap2-back-perl-2.4.46-9.58.1.aarch64.rpm openldap2-back-sock-2.4.46-9.58.1.aarch64.rpm openldap2-back-sql-2.4.46-9.58.1.aarch64.rpm openldap2-client-2.4.46-9.58.1.aarch64.rpm openldap2-contrib-2.4.46-9.58.1.aarch64.rpm openldap2-devel-2.4.46-9.58.1.aarch64.rpm openldap2-devel-static-2.4.46-9.58.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-9.58.1.aarch64.rpm openSUSE-SLE-15.3-2021-2874 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: Update to version 78.13 (MFSA 2021-35, bsc#1188891) - CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption - CVE-2021-29988: Memory corruption as a result of incorrect style treatment - CVE-2021-29984: Incorrect instruction reordering during JIT optimization - CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption - CVE-2021-29985: Use-after-free media channels - CVE-2021-29989: Memory safety bugs fixed in Thunderbird 78.13 MozillaThunderbird-78.13.0-8.36.1.src.rpm MozillaThunderbird-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.x86_64.rpm MozillaThunderbird-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.s390x.rpm MozillaThunderbird-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.ppc64le.rpm MozillaThunderbird-78.13.0-8.36.1.aarch64.rpm MozillaThunderbird-translations-common-78.13.0-8.36.1.aarch64.rpm MozillaThunderbird-translations-other-78.13.0-8.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-2939 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: Update to 10.5.12 [bsc#1189320]: - fixes for the following security vulnerabilities: CVE-2021-2372 and CVE-2021-2389 libmariadbd-devel-10.5.12-3.6.1.x86_64.rpm libmariadbd19-10.5.12-3.6.1.x86_64.rpm mariadb-10.5.12-3.6.1.src.rpm mariadb-10.5.12-3.6.1.x86_64.rpm mariadb-bench-10.5.12-3.6.1.x86_64.rpm mariadb-client-10.5.12-3.6.1.x86_64.rpm mariadb-errormessages-10.5.12-3.6.1.noarch.rpm mariadb-rpm-macros-10.5.12-3.6.1.x86_64.rpm mariadb-test-10.5.12-3.6.1.x86_64.rpm mariadb-tools-10.5.12-3.6.1.x86_64.rpm libmariadbd-devel-10.5.12-3.6.1.s390x.rpm libmariadbd19-10.5.12-3.6.1.s390x.rpm mariadb-10.5.12-3.6.1.s390x.rpm mariadb-bench-10.5.12-3.6.1.s390x.rpm mariadb-client-10.5.12-3.6.1.s390x.rpm mariadb-rpm-macros-10.5.12-3.6.1.s390x.rpm mariadb-test-10.5.12-3.6.1.s390x.rpm mariadb-tools-10.5.12-3.6.1.s390x.rpm libmariadbd-devel-10.5.12-3.6.1.ppc64le.rpm libmariadbd19-10.5.12-3.6.1.ppc64le.rpm mariadb-10.5.12-3.6.1.ppc64le.rpm mariadb-bench-10.5.12-3.6.1.ppc64le.rpm mariadb-client-10.5.12-3.6.1.ppc64le.rpm mariadb-rpm-macros-10.5.12-3.6.1.ppc64le.rpm mariadb-test-10.5.12-3.6.1.ppc64le.rpm mariadb-tools-10.5.12-3.6.1.ppc64le.rpm libmariadbd-devel-10.5.12-3.6.1.aarch64.rpm libmariadbd19-10.5.12-3.6.1.aarch64.rpm mariadb-10.5.12-3.6.1.aarch64.rpm mariadb-bench-10.5.12-3.6.1.aarch64.rpm mariadb-client-10.5.12-3.6.1.aarch64.rpm mariadb-rpm-macros-10.5.12-3.6.1.aarch64.rpm mariadb-test-10.5.12-3.6.1.aarch64.rpm mariadb-tools-10.5.12-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2875 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: Update to 12.22.5: - CVE-2021-3672/CVE-2021-22931: Improper handling of untypical characters in domain names (bsc#1189370, bsc#1188881) - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: http2: fixes use after free on close http2 on stream canceling (bsc#1188917) nodejs12-12.22.5-4.19.1.src.rpm nodejs12-12.22.5-4.19.1.x86_64.rpm nodejs12-devel-12.22.5-4.19.1.x86_64.rpm nodejs12-docs-12.22.5-4.19.1.noarch.rpm npm12-12.22.5-4.19.1.x86_64.rpm nodejs12-12.22.5-4.19.1.s390x.rpm nodejs12-devel-12.22.5-4.19.1.s390x.rpm npm12-12.22.5-4.19.1.s390x.rpm nodejs12-12.22.5-4.19.1.ppc64le.rpm nodejs12-devel-12.22.5-4.19.1.ppc64le.rpm npm12-12.22.5-4.19.1.ppc64le.rpm nodejs12-12.22.5-4.19.1.aarch64.rpm nodejs12-devel-12.22.5-4.19.1.aarch64.rpm npm12-12.22.5-4.19.1.aarch64.rpm openSUSE-SLE-15.3-2021-2954 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - CVE-2021-33193: Fixed request splitting via HTTP/2 method injection and mod_proxy (bsc#1189387). apache2-2.4.43-3.25.1.src.rpm apache2-2.4.43-3.25.1.x86_64.rpm apache2-devel-2.4.43-3.25.1.x86_64.rpm apache2-doc-2.4.43-3.25.1.noarch.rpm apache2-event-2.4.43-3.25.1.x86_64.rpm apache2-example-pages-2.4.43-3.25.1.x86_64.rpm apache2-prefork-2.4.43-3.25.1.x86_64.rpm apache2-utils-2.4.43-3.25.1.x86_64.rpm apache2-worker-2.4.43-3.25.1.x86_64.rpm apache2-2.4.43-3.25.1.s390x.rpm apache2-devel-2.4.43-3.25.1.s390x.rpm apache2-event-2.4.43-3.25.1.s390x.rpm apache2-example-pages-2.4.43-3.25.1.s390x.rpm apache2-prefork-2.4.43-3.25.1.s390x.rpm apache2-utils-2.4.43-3.25.1.s390x.rpm apache2-worker-2.4.43-3.25.1.s390x.rpm apache2-2.4.43-3.25.1.ppc64le.rpm apache2-devel-2.4.43-3.25.1.ppc64le.rpm apache2-event-2.4.43-3.25.1.ppc64le.rpm apache2-example-pages-2.4.43-3.25.1.ppc64le.rpm apache2-prefork-2.4.43-3.25.1.ppc64le.rpm apache2-utils-2.4.43-3.25.1.ppc64le.rpm apache2-worker-2.4.43-3.25.1.ppc64le.rpm apache2-2.4.43-3.25.1.aarch64.rpm apache2-devel-2.4.43-3.25.1.aarch64.rpm apache2-event-2.4.43-3.25.1.aarch64.rpm apache2-example-pages-2.4.43-3.25.1.aarch64.rpm apache2-prefork-2.4.43-3.25.1.aarch64.rpm apache2-utils-2.4.43-3.25.1.aarch64.rpm apache2-worker-2.4.43-3.25.1.aarch64.rpm openSUSE-SLE-15.3-2021-3133 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2, efibootmgr provides the following fixes: - Ship package grub2-arm64-efi and the required efibootmgr also to ppc64le, s390x and x86_64 (bsc#1186565) - Fix error gfxterm isn't found with multiple terminals (bsc#1187565) - Fix ocasional boot failure after kdump procedure when using XFS (bsc#1186975) efibootmgr-14-4.3.2.src.rpm efibootmgr-14-4.3.2.x86_64.rpm efibootmgr-14-4.3.2.s390x.rpm efibootmgr-14-4.3.2.ppc64le.rpm efibootmgr-14-4.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-2763 critical SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: - A regression in last update would cause builds to hang on various architectures(bsc#1189465) cpio-2.12-3.6.2.src.rpm cpio-2.12-3.6.2.x86_64.rpm cpio-lang-2.12-3.6.2.noarch.rpm cpio-mt-2.12-3.6.2.x86_64.rpm cpio-2.12-3.6.2.s390x.rpm cpio-mt-2.12-3.6.2.s390x.rpm cpio-2.12-3.6.2.ppc64le.rpm cpio-mt-2.12-3.6.2.ppc64le.rpm cpio-2.12-3.6.2.aarch64.rpm cpio-mt-2.12-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2953 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs10 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames (bsc#1188881). - CVE-2021-22930: Fixed use after free on close http2 on stream canceling (bsc#1188917). - CVE-2021-22939: Fixed incomplete validation of rejectUnauthorized parameter (bsc#1189369). - CVE-2021-22931: Fixed improper handling of untypical characters in domain names (bsc#1189370). nodejs10-10.24.1-1.39.2.src.rpm nodejs10-10.24.1-1.39.2.x86_64.rpm nodejs10-devel-10.24.1-1.39.2.x86_64.rpm nodejs10-docs-10.24.1-1.39.2.noarch.rpm npm10-10.24.1-1.39.2.x86_64.rpm nodejs10-10.24.1-1.39.2.s390x.rpm nodejs10-devel-10.24.1-1.39.2.s390x.rpm npm10-10.24.1-1.39.2.s390x.rpm nodejs10-10.24.1-1.39.2.ppc64le.rpm nodejs10-devel-10.24.1-1.39.2.ppc64le.rpm npm10-10.24.1-1.39.2.ppc64le.rpm nodejs10-10.24.1-1.39.2.aarch64.rpm nodejs10-devel-10.24.1-1.39.2.aarch64.rpm npm10-10.24.1-1.39.2.aarch64.rpm openSUSE-SLE-15.3-2021-3224 moderate SUSE Updates openSUSE-SLE 15.3 This update for shim-susesigned fixes the following issues: Sync with Microsoft signed shim to Thu Jul 15 08:13:26 UTC 2021. This update addresses the "susesigned" shim component. shim was updated to 15.4 (bsc#1182057) - console: Move the countdown function to console.c - fallback: show a countdown menu before reset - MOK: Fix the missing vendor cert in MokListRT - mok: fix the mirroring of RT variables - Add the license change statement for errlog.c and mok.c - Remove a couple of incorrect license claims. - MokManager: Use CompareMem on MokListNode.Type instead of CompareGuid - Make EFI variable copying fatal only on secureboot enabled systems - Remove call to TPM2 get_event_log - tpm: Fix off-by-one error when calculating event size - tpm: Define EFI_VARIABLE_DATA_TREE as packed - tpm: Don't log duplicate identical events - VLogError(): Avoid NULL pointer dereferences in (V)Sprint calls - OpenSSL: always provide OBJ_create() with name strings. - translate_slashes(): don't write to string literals - Fix a use of strlen() instead of Strlen() - shim: Update EFI_LOADED_IMAGE with the second stage loader file path - tpm: Include information about PE/COFF images in the TPM Event Log - Fix a broken tpm type - All newly released openSUSE kernels enable kernel lockdown and signature verification, so there is no need to add the prompt anymore. - Fix the NULL pointer dereference in AuthenticodeVerify() - Remove the build ID to make the binary reproducible when building with AArch64 container - Prevent the build id being added to the binary. That can cause issues with the signature - Allocate MOK config table as BootServicesData to avoid the error message from linux kernel - Handle ignore_db and user_insecure_mode correctly (bsc#1185441) - Relax the maximum variable size check for u-boot - Relax the check for import_mok_state() when Secure Boot is off - Relax the check for the LoadOptions length - Fix the size of rela* sections for AArch64 - Disable exporting vendor-dbx to MokListXRT - Don't call QueryVariableInfo() on EFI 1.10 machines - Avoid buffer overflow when copying the MOK config table - Avoid deleting the mirrored RT variables - Update to 15.3 for SBAT support (bsc#1182057) - Generate vender-specific SBAT metadata - Rename the SBAT variable and fix the self-check of SBAT - Split the keys in vendor-dbx.bin to vendor-dbx-sles and vendor-dbx-opensuse for shim-sles and shim-opensuse to reduce the size of MokListXRT (bsc#1185261) - shim-install: reset def_shim_efi to "shim.efi" if the given file doesn't exist - shim-install: instead of assuming "removable" for Azure, remove fallback.efi from \EFI\Boot and copy grub.efi/cfg to \EFI\Boot to make \EFI\Boot bootable and keep the boot option created by efibootmgr (bsc#1185464, bsc#1185961) - shim-install: always assume "removable" for Azure to avoid the endless reset loop (bsc#1185464) - shim-install: Support changing default shim efi binary in /usr/etc/default/shim and /etc/default/shim (bsc#1177315) - Update dbx-cert.tar.xz and vendor-dbx.bin to block the following sign keys: + SLES-UEFI-SIGN-Certificate-2020-07.crt + openSUSE-UEFI-SIGN-Certificate-2020-07.crt shim-susesigned-15.4-3.10.1.src.rpm shim-susesigned-15.4-3.10.1.x86_64.rpm openSUSE-SLE-15.3-2021-2819 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Update to 14.2.22-404-gf74e15c2e55: - Fix for an issue when scrub is not rescheduling. (bsc#1187584) - Update to 14.2.22-403-g54cdaf6e510: - Fixed and isshe when dashboard shows partially deleted RBDs. (bsc#1175086) - Look for plain entries in non-ascii plain namespace too. (bsc#1184517) - Fix monitoring menu item in downstream branding ceph-14.2.22.404+gf74e15c2e55-3.69.2.src.rpm ceph-dashboard-e2e-14.2.22.404+gf74e15c2e55-3.69.2.noarch.rpm ceph-mgr-ssh-14.2.22.404+gf74e15c2e55-3.69.2.noarch.rpm openSUSE-SLE-15.3-2021-3516 important SUSE Updates openSUSE-SLE 15.3 This update for azure-cli, azure-cli-core, python-azure-mgmt, python-azure-mgmt-billing, python-azure-mgmt-cdn, python-azure-mgmt-hdinsight, python-azure-mgmt-netapp, python-azure-mgmt-resource, python-azure-mgmt-synapse contains the following fixes: Changes in python-azure-mgmt: - Remove all version constraints in Requires. (bsc#1187880, bsc#1188178) Changes in azure-cli-core: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 2.16.0 + For detailed information about changes see the HISTORY.rst file provided with this package - Refresh patches for new version - Update Requires from setup.py + Temporarily use a vendored copy of azure-mgmt-resource - New upstream release + Version 2.15.0 + For detailed information about changes see the HISTORY.rst file provided with this package - Update Requires from setup.py Changes in azure-cli: - Update in SLE-15 (bsc#1187880, bsc#1188178) - Add missing python3-azure-mgmt-resource dependency to Requires - New upstream release + Version 2.16.0 + For detailed information about changes see the HISTORY.rst file provided with this package - Update Requires from setup.py - New upstream release + Version 2.15.0 + For detailed information about changes see the HISTORY.rst file provided with this package - Update Requires from setup.py Changes in python-azure-mgmt-billing: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 1.0.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Update Requires from setup.py Changes in python-azure-mgmt-cdn: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 5.2.0 + For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-mgmt-hdinsight: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 2.0.0 + For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-mgmt-netapp: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 0.14.0 + For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-mgmt-resource: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 15.0.0 + For detailed information about changes see the CHANGELOG.md file provided with this package - Update Requires from setup.py Changes in python-azure-mgmt-synapse: - Update in SLE-15 (bsc#1187880, bsc#1188178) - New upstream release + Version 0.5.0 + For detailed information about changes see the CHANGELOG.md file provided with this package azure-cli-2.16.0-6.7.1.noarch.rpm azure-cli-2.16.0-6.7.1.src.rpm azure-cli-core-2.16.0-6.10.1.noarch.rpm azure-cli-core-2.16.0-6.10.1.src.rpm azure-cli-test-2.16.0-6.7.1.src.rpm azure-cli-test-2.16.0-6.7.1.x86_64.rpm python-azure-mgmt-4.0.0-6.7.1.src.rpm python-azure-mgmt-billing-1.0.0-6.7.1.src.rpm python-azure-mgmt-cdn-5.2.0-6.7.1.src.rpm python-azure-mgmt-hdinsight-2.0.0-3.7.1.src.rpm python-azure-mgmt-netapp-0.14.0-3.6.1.src.rpm python-azure-mgmt-resource-15.0.0-6.7.1.src.rpm python-azure-mgmt-synapse-0.5.0-3.6.1.src.rpm python2-azure-mgmt-4.0.0-6.7.1.noarch.rpm python2-azure-mgmt-billing-1.0.0-6.7.1.noarch.rpm python2-azure-mgmt-cdn-5.2.0-6.7.1.noarch.rpm python2-azure-mgmt-hdinsight-2.0.0-3.7.1.noarch.rpm python2-azure-mgmt-netapp-0.14.0-3.6.1.noarch.rpm python2-azure-mgmt-resource-15.0.0-6.7.1.noarch.rpm python2-azure-mgmt-synapse-0.5.0-3.6.1.noarch.rpm python3-azure-mgmt-4.0.0-6.7.1.noarch.rpm python3-azure-mgmt-billing-1.0.0-6.7.1.noarch.rpm python3-azure-mgmt-cdn-5.2.0-6.7.1.noarch.rpm python3-azure-mgmt-hdinsight-2.0.0-3.7.1.noarch.rpm python3-azure-mgmt-netapp-0.14.0-3.6.1.noarch.rpm python3-azure-mgmt-resource-15.0.0-6.7.1.noarch.rpm python3-azure-mgmt-synapse-0.5.0-3.6.1.noarch.rpm azure-cli-test-2.16.0-6.7.1.s390x.rpm azure-cli-test-2.16.0-6.7.1.ppc64le.rpm azure-cli-test-2.16.0-6.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-38 important SUSE Updates openSUSE-SLE 15.3 This update for python39 fixes the following issues: - CVE-2021-29921: Fixed improper input validation of octal string IP addresses (bsc#1185706). - Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858). - Stop providing "python" symbol (bsc#1185588), which means python2 currently. libpython3_9-1_0-3.9.6-4.3.3.x86_64.rpm libpython3_9-1_0-32bit-3.9.6-4.3.3.x86_64.rpm python39-3.9.6-4.3.4.src.rpm python39-3.9.6-4.3.4.x86_64.rpm python39-32bit-3.9.6-4.3.4.x86_64.rpm python39-base-3.9.6-4.3.3.x86_64.rpm python39-base-32bit-3.9.6-4.3.3.x86_64.rpm python39-core-3.9.6-4.3.3.src.rpm python39-curses-3.9.6-4.3.4.x86_64.rpm python39-dbm-3.9.6-4.3.4.x86_64.rpm python39-devel-3.9.6-4.3.3.x86_64.rpm python39-doc-3.9.6-4.3.1.x86_64.rpm python39-doc-devhelp-3.9.6-4.3.1.x86_64.rpm python39-documentation-3.9.6-4.3.1.src.rpm python39-idle-3.9.6-4.3.4.x86_64.rpm python39-testsuite-3.9.6-4.3.3.x86_64.rpm python39-tk-3.9.6-4.3.4.x86_64.rpm python39-tools-3.9.6-4.3.3.x86_64.rpm libpython3_9-1_0-3.9.6-4.3.3.s390x.rpm python39-3.9.6-4.3.4.s390x.rpm python39-base-3.9.6-4.3.3.s390x.rpm python39-curses-3.9.6-4.3.4.s390x.rpm python39-dbm-3.9.6-4.3.4.s390x.rpm python39-devel-3.9.6-4.3.3.s390x.rpm python39-doc-3.9.6-4.3.1.s390x.rpm python39-doc-devhelp-3.9.6-4.3.1.s390x.rpm python39-idle-3.9.6-4.3.4.s390x.rpm python39-testsuite-3.9.6-4.3.3.s390x.rpm python39-tk-3.9.6-4.3.4.s390x.rpm python39-tools-3.9.6-4.3.3.s390x.rpm libpython3_9-1_0-3.9.6-4.3.3.ppc64le.rpm python39-3.9.6-4.3.4.ppc64le.rpm python39-base-3.9.6-4.3.3.ppc64le.rpm python39-curses-3.9.6-4.3.4.ppc64le.rpm python39-dbm-3.9.6-4.3.4.ppc64le.rpm python39-devel-3.9.6-4.3.3.ppc64le.rpm python39-doc-3.9.6-4.3.1.ppc64le.rpm python39-doc-devhelp-3.9.6-4.3.1.ppc64le.rpm python39-idle-3.9.6-4.3.4.ppc64le.rpm python39-testsuite-3.9.6-4.3.3.ppc64le.rpm python39-tk-3.9.6-4.3.4.ppc64le.rpm python39-tools-3.9.6-4.3.3.ppc64le.rpm libpython3_9-1_0-3.9.6-4.3.3.aarch64.rpm python39-3.9.6-4.3.4.aarch64.rpm python39-base-3.9.6-4.3.3.aarch64.rpm python39-curses-3.9.6-4.3.4.aarch64.rpm python39-dbm-3.9.6-4.3.4.aarch64.rpm python39-devel-3.9.6-4.3.3.aarch64.rpm python39-doc-3.9.6-4.3.1.aarch64.rpm python39-doc-devhelp-3.9.6-4.3.1.aarch64.rpm python39-idle-3.9.6-4.3.4.aarch64.rpm python39-testsuite-3.9.6-4.3.3.aarch64.rpm python39-tk-3.9.6-4.3.4.aarch64.rpm python39-tools-3.9.6-4.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-2861 moderate SUSE Updates openSUSE-SLE 15.3 This update for spectre-meltdown-checker fixes the following issues: spectre-meltdown-checker was updated to version 0.44 (bsc#1189477) - feat: add support for SRBDS related vulnerabilities - feat: add zstd kernel decompression (#370) - enh: arm: add experimental support for binary arm images - enh: rsb filling: no longer need the 'strings' tool to check for kernel support in live mode - fix: fwdb: remove Intel extract tempdir on exit - fix: has_vmm: ignore kernel threads when looking for a hypervisor (fixes #278) - fix: fwdb: use the commit date as the intel fwdb version - fix: fwdb: update Intel's repository URL - fix: arm64: CVE-2017-5753: kernels 4.19+ use a different nospec macro - fix: on CPU parse info under FreeBSD - chore: github: add check run on pull requests - chore: fwdb: update to v165.20201021+i20200616 spectre-meltdown-checker-0.44-3.6.1.src.rpm spectre-meltdown-checker-0.44-3.6.1.x86_64.rpm openSUSE-SLE-15.3-2021-2984 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix for the documentation: Note that resource tracing is only supported by OCF resource agents. (bsc#1188966) - Development for 'ui_context': Add info when spell-corrections happen. - Fix for 'parse': Should still be able to show the empty property if it already exists. (bsc#1188290) crmsh-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm crmsh-4.3.1+20210811.2a30e37e-5.62.1.src.rpm crmsh-scripts-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm crmsh-test-4.3.1+20210811.2a30e37e-5.62.1.noarch.rpm openSUSE-SLE-15.3-2021-2780 critical SUSE Updates openSUSE-SLE 15.3 This update for cpio fixes the following issues: - A regression in the previous update could lead to crashes (bsc#1189465) cpio-2.12-3.9.1.src.rpm cpio-2.12-3.9.1.x86_64.rpm cpio-lang-2.12-3.9.1.noarch.rpm cpio-mt-2.12-3.9.1.x86_64.rpm cpio-2.12-3.9.1.s390x.rpm cpio-mt-2.12-3.9.1.s390x.rpm cpio-2.12-3.9.1.ppc64le.rpm cpio-mt-2.12-3.9.1.ppc64le.rpm cpio-2.12-3.9.1.aarch64.rpm cpio-mt-2.12-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2827 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - CVE-2021-3712: a bug in the code for printing certificate details could lead to a buffer overrun that a malicious actor could exploit to crash the application, causing a denial-of-service attack. [bsc#1189521] libopenssl-1_0_0-devel-1.0.2p-3.40.2.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl10-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-1.0.2p-3.40.2.src.rpm openssl-1_0_0-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.40.2.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.s390x.rpm libopenssl10-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.s390x.rpm openssl-1_0_0-1.0.2p-3.40.2.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.ppc64le.rpm libopenssl10-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.ppc64le.rpm openssl-1_0_0-1.0.2p-3.40.2.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.40.2.aarch64.rpm libopenssl10-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.40.2.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.40.2.aarch64.rpm openssl-1_0_0-1.0.2p-3.40.2.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.40.2.aarch64.rpm openSUSE-SLE-15.3-2021-2830 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following security issues: - CVE-2021-3711: A bug in the implementation of the SM2 decryption code could lead to buffer overflows. [bsc#1189520] - CVE-2021-3712: a bug in the code for printing certificate details could lead to a buffer overrun that a malicious actor could exploit to crash the application, causing a denial-of-service attack. [bsc#1189521] libopenssl-1_1-devel-1.1.1d-11.27.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.27.1.x86_64.rpm openssl-1_1-1.1.1d-11.27.1.src.rpm openssl-1_1-1.1.1d-11.27.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.27.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.s390x.rpm libopenssl1_1-1.1.1d-11.27.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.s390x.rpm openssl-1_1-1.1.1d-11.27.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.27.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.ppc64le.rpm openssl-1_1-1.1.1d-11.27.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.27.1.aarch64.rpm libopenssl1_1-1.1.1d-11.27.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.27.1.aarch64.rpm openssl-1_1-1.1.1d-11.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-2941 important SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommands (bsc#1189492). - Add LDAPS support for the AD provider (bsc#1183735). - Improve logs to record the reason why internal watchdog terminates a process (bsc#1187120). - Fix watchdog not terminating tasks (bsc#1187120). libipa_hbac-devel-1.16.1-23.11.1.x86_64.rpm libipa_hbac0-1.16.1-23.11.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.11.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_certmap0-1.16.1-23.11.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_idmap0-1.16.1-23.11.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.11.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.11.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.11.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.11.1.x86_64.rpm python3-sss-murmur-1.16.1-23.11.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.11.1.x86_64.rpm python3-sssd-config-1.16.1-23.11.1.x86_64.rpm sssd-1.16.1-23.11.1.src.rpm sssd-1.16.1-23.11.1.x86_64.rpm sssd-ad-1.16.1-23.11.1.x86_64.rpm sssd-common-1.16.1-23.11.1.x86_64.rpm sssd-dbus-1.16.1-23.11.1.x86_64.rpm sssd-ipa-1.16.1-23.11.1.x86_64.rpm sssd-krb5-1.16.1-23.11.1.x86_64.rpm sssd-krb5-common-1.16.1-23.11.1.x86_64.rpm sssd-ldap-1.16.1-23.11.1.x86_64.rpm sssd-proxy-1.16.1-23.11.1.x86_64.rpm sssd-tools-1.16.1-23.11.1.x86_64.rpm sssd-wbclient-1.16.1-23.11.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.11.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.11.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.11.1.s390x.rpm libipa_hbac0-1.16.1-23.11.1.s390x.rpm libnfsidmap-sss-1.16.1-23.11.1.s390x.rpm libsss_certmap-devel-1.16.1-23.11.1.s390x.rpm libsss_certmap0-1.16.1-23.11.1.s390x.rpm libsss_idmap-devel-1.16.1-23.11.1.s390x.rpm libsss_idmap0-1.16.1-23.11.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.11.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.11.1.s390x.rpm libsss_simpleifp0-1.16.1-23.11.1.s390x.rpm python3-ipa_hbac-1.16.1-23.11.1.s390x.rpm python3-sss-murmur-1.16.1-23.11.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.11.1.s390x.rpm python3-sssd-config-1.16.1-23.11.1.s390x.rpm sssd-1.16.1-23.11.1.s390x.rpm sssd-ad-1.16.1-23.11.1.s390x.rpm sssd-common-1.16.1-23.11.1.s390x.rpm sssd-dbus-1.16.1-23.11.1.s390x.rpm sssd-ipa-1.16.1-23.11.1.s390x.rpm sssd-krb5-1.16.1-23.11.1.s390x.rpm sssd-krb5-common-1.16.1-23.11.1.s390x.rpm sssd-ldap-1.16.1-23.11.1.s390x.rpm sssd-proxy-1.16.1-23.11.1.s390x.rpm sssd-tools-1.16.1-23.11.1.s390x.rpm sssd-wbclient-1.16.1-23.11.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.11.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.11.1.s390x.rpm libipa_hbac-devel-1.16.1-23.11.1.ppc64le.rpm libipa_hbac0-1.16.1-23.11.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.11.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_certmap0-1.16.1-23.11.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_idmap0-1.16.1-23.11.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.11.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.11.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.11.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.11.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.11.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.11.1.ppc64le.rpm python3-sssd-config-1.16.1-23.11.1.ppc64le.rpm sssd-1.16.1-23.11.1.ppc64le.rpm sssd-ad-1.16.1-23.11.1.ppc64le.rpm sssd-common-1.16.1-23.11.1.ppc64le.rpm sssd-dbus-1.16.1-23.11.1.ppc64le.rpm sssd-ipa-1.16.1-23.11.1.ppc64le.rpm sssd-krb5-1.16.1-23.11.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.11.1.ppc64le.rpm sssd-ldap-1.16.1-23.11.1.ppc64le.rpm sssd-proxy-1.16.1-23.11.1.ppc64le.rpm sssd-tools-1.16.1-23.11.1.ppc64le.rpm sssd-wbclient-1.16.1-23.11.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.11.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.11.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.11.1.aarch64.rpm libipa_hbac0-1.16.1-23.11.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.11.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_certmap0-1.16.1-23.11.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_idmap0-1.16.1-23.11.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.11.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.11.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.11.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.11.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.11.1.aarch64.rpm python3-sss-murmur-1.16.1-23.11.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.11.1.aarch64.rpm python3-sssd-config-1.16.1-23.11.1.aarch64.rpm sssd-1.16.1-23.11.1.aarch64.rpm sssd-ad-1.16.1-23.11.1.aarch64.rpm sssd-common-1.16.1-23.11.1.aarch64.rpm sssd-dbus-1.16.1-23.11.1.aarch64.rpm sssd-ipa-1.16.1-23.11.1.aarch64.rpm sssd-krb5-1.16.1-23.11.1.aarch64.rpm sssd-krb5-common-1.16.1-23.11.1.aarch64.rpm sssd-ldap-1.16.1-23.11.1.aarch64.rpm sssd-proxy-1.16.1-23.11.1.aarch64.rpm sssd-tools-1.16.1-23.11.1.aarch64.rpm sssd-wbclient-1.16.1-23.11.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.11.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2934 important SUSE Updates openSUSE-SLE 15.3 This update for SAPHanaSR-ScaleOut fixes the following issues: - change version to 0.180.1 - Extent the SAP HANA ressource agents from single replication automation to multi replication automation (jsc#SLE-17452, jsc#SLE-20081) - The resource start and stop timeout is now configurable by increasing the timeout for the action 'start' and/or 'stop' in the cluster. (bsc#1182545) - Improve handling of return codes in 'saphana_stopSystem' and 'saphana_stop' function. (bsc#1182115) - Integrate man pages back to the base package SAPHanaSR-ScaleOut. - Fixed an issue when HANA failover returns and empty site name. (bsc#1173581) - Add SAPHanaSR-call-monitor - Fixed an issue when HANA is configured to have only one master name server, but no additional master name server candidates, there may be the situation, where the master name server died and so the landscape has no active name server anymore. - Manual page updates: SAPHanaSR-ScaleOut.7 (bsc#1144442) SAPHanaSR-showAttr.8 (bsc#1144312) and others SAPHanaSR-ScaleOut-0.180.1-3.19.1.noarch.rpm SAPHanaSR-ScaleOut-0.180.1-3.19.1.src.rpm SAPHanaSR-ScaleOut-doc-0.180.1-3.19.1.noarch.rpm openSUSE-SLE-15.3-2021-3131 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-fonts fixes the following issues: - Convert the 'helv*.otb' and 'cour*.otb' files in a different way, generating all available font sizes. (bsc#1174895) - As part of the above fix, don't remove the "Regular" suffix from the full name of fonts in 'convertfont.py' This update for fonttosfnt fixes the following issues: - Fix more metric calculations (bsc#1174895): fonttosfnt-1.1.0-3.3.1.src.rpm fonttosfnt-1.1.0-3.3.1.x86_64.rpm xorg-x11-fonts-7.6-13.6.1.noarch.rpm xorg-x11-fonts-7.6-13.6.1.src.rpm xorg-x11-fonts-converted-7.6-13.6.5.noarch.rpm xorg-x11-fonts-converted-7.6-13.6.5.src.rpm xorg-x11-fonts-core-7.6-13.6.1.noarch.rpm xorg-x11-fonts-legacy-7.6-13.6.1.noarch.rpm fonttosfnt-1.1.0-3.3.1.s390x.rpm fonttosfnt-1.1.0-3.3.1.ppc64le.rpm fonttosfnt-1.1.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3029 moderate SUSE Updates openSUSE-SLE 15.3 This update for sapconf fixes the following issues: - Adapt the activity detection of saptune to the upcoming saptune version 3. (bsc#1189496) sapconf-5.0.3-7.18.1.noarch.rpm sapconf-5.0.3-7.18.1.src.rpm openSUSE-SLE-15.3-2021-3017 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: - Update to Wireshark 3.4.7 - CVE-2021-22235: Fixed DNP dissector crash (bsc#1188375). libwireshark14-3.4.7-3.59.1.x86_64.rpm libwiretap11-3.4.7-3.59.1.x86_64.rpm libwsutil12-3.4.7-3.59.1.x86_64.rpm wireshark-3.4.7-3.59.1.src.rpm wireshark-3.4.7-3.59.1.x86_64.rpm wireshark-devel-3.4.7-3.59.1.x86_64.rpm wireshark-ui-qt-3.4.7-3.59.1.x86_64.rpm libwireshark14-3.4.7-3.59.1.s390x.rpm libwiretap11-3.4.7-3.59.1.s390x.rpm libwsutil12-3.4.7-3.59.1.s390x.rpm wireshark-3.4.7-3.59.1.s390x.rpm wireshark-devel-3.4.7-3.59.1.s390x.rpm wireshark-ui-qt-3.4.7-3.59.1.s390x.rpm libwireshark14-3.4.7-3.59.1.ppc64le.rpm libwiretap11-3.4.7-3.59.1.ppc64le.rpm libwsutil12-3.4.7-3.59.1.ppc64le.rpm wireshark-3.4.7-3.59.1.ppc64le.rpm wireshark-devel-3.4.7-3.59.1.ppc64le.rpm wireshark-ui-qt-3.4.7-3.59.1.ppc64le.rpm libwireshark14-3.4.7-3.59.1.aarch64.rpm libwiretap11-3.4.7-3.59.1.aarch64.rpm libwsutil12-3.4.7-3.59.1.aarch64.rpm wireshark-3.4.7-3.59.1.aarch64.rpm wireshark-devel-3.4.7-3.59.1.aarch64.rpm wireshark-ui-qt-3.4.7-3.59.1.aarch64.rpm openSUSE-SLE-15.3-2021-3132 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-guest-oslogin contains the following fixes: - Update to version 20210728.00 (bsc#1188992, bsc#1189041) * JSON object cleanup (#65) - Update to version 20210707.00 * throw exceptions in cache_refresh (#64) - from version 20210702.00 * Use IP address for calling the metadata server. (#63) - Update to version 20210618.00 * flush each group member write (#62) google-guest-oslogin-20210728.00-1.21.1.src.rpm google-guest-oslogin-20210728.00-1.21.1.x86_64.rpm google-guest-oslogin-20210728.00-1.21.1.s390x.rpm google-guest-oslogin-20210728.00-1.21.1.ppc64le.rpm google-guest-oslogin-20210728.00-1.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-2993 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc fixes the following issues: - With gcc-PIE add -pie even when -fPIC is specified but we are not linking a shared library. [bsc#1185348] - Fix postun of gcc-go alternative. cpp-7-3.9.1.x86_64.rpm gcc-32bit-7-3.9.1.x86_64.rpm gcc-7-3.9.1.src.rpm gcc-7-3.9.1.x86_64.rpm gcc-PIE-7-3.9.1.x86_64.rpm gcc-ada-32bit-7-3.9.1.x86_64.rpm gcc-ada-7-3.9.1.x86_64.rpm gcc-c++-32bit-7-3.9.1.x86_64.rpm gcc-c++-7-3.9.1.x86_64.rpm gcc-fortran-32bit-7-3.9.1.x86_64.rpm gcc-fortran-7-3.9.1.x86_64.rpm gcc-go-32bit-7-3.9.1.x86_64.rpm gcc-go-7-3.9.1.x86_64.rpm gcc-info-7-3.9.1.x86_64.rpm gcc-locale-7-3.9.1.x86_64.rpm gcc-obj-c++-7-3.9.1.x86_64.rpm gcc-objc-32bit-7-3.9.1.x86_64.rpm gcc-objc-7-3.9.1.x86_64.rpm libstdc++-devel-32bit-7-3.9.1.x86_64.rpm libstdc++-devel-7-3.9.1.x86_64.rpm cpp-7-3.9.1.s390x.rpm gcc-32bit-7-3.9.1.s390x.rpm gcc-7-3.9.1.s390x.rpm gcc-PIE-7-3.9.1.s390x.rpm gcc-ada-32bit-7-3.9.1.s390x.rpm gcc-ada-7-3.9.1.s390x.rpm gcc-c++-32bit-7-3.9.1.s390x.rpm gcc-c++-7-3.9.1.s390x.rpm gcc-fortran-32bit-7-3.9.1.s390x.rpm gcc-fortran-7-3.9.1.s390x.rpm gcc-go-32bit-7-3.9.1.s390x.rpm gcc-go-7-3.9.1.s390x.rpm gcc-info-7-3.9.1.s390x.rpm gcc-locale-7-3.9.1.s390x.rpm gcc-obj-c++-7-3.9.1.s390x.rpm gcc-objc-32bit-7-3.9.1.s390x.rpm gcc-objc-7-3.9.1.s390x.rpm libstdc++-devel-32bit-7-3.9.1.s390x.rpm libstdc++-devel-7-3.9.1.s390x.rpm cpp-7-3.9.1.ppc64le.rpm gcc-7-3.9.1.ppc64le.rpm gcc-PIE-7-3.9.1.ppc64le.rpm gcc-ada-7-3.9.1.ppc64le.rpm gcc-c++-7-3.9.1.ppc64le.rpm gcc-fortran-7-3.9.1.ppc64le.rpm gcc-go-7-3.9.1.ppc64le.rpm gcc-info-7-3.9.1.ppc64le.rpm gcc-locale-7-3.9.1.ppc64le.rpm gcc-obj-c++-7-3.9.1.ppc64le.rpm gcc-objc-7-3.9.1.ppc64le.rpm libstdc++-devel-7-3.9.1.ppc64le.rpm cpp-7-3.9.1.aarch64.rpm gcc-7-3.9.1.aarch64.rpm gcc-PIE-7-3.9.1.aarch64.rpm gcc-ada-7-3.9.1.aarch64.rpm gcc-c++-7-3.9.1.aarch64.rpm gcc-fortran-7-3.9.1.aarch64.rpm gcc-go-7-3.9.1.aarch64.rpm gcc-info-7-3.9.1.aarch64.rpm gcc-locale-7-3.9.1.aarch64.rpm gcc-obj-c++-7-3.9.1.aarch64.rpm gcc-objc-7-3.9.1.aarch64.rpm libstdc++-devel-7-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3123 moderate SUSE Updates openSUSE-SLE 15.3 This update for libcroco fixes the following issues: - CVE-2020-12825: Fixed recursion issue in block and any productions (bsc#1171685). libcroco-0.6.13-3.3.1.src.rpm libcroco-0.6.13-3.3.1.x86_64.rpm libcroco-0_6-3-0.6.13-3.3.1.x86_64.rpm libcroco-0_6-3-32bit-0.6.13-3.3.1.x86_64.rpm libcroco-devel-0.6.13-3.3.1.x86_64.rpm libcroco-0.6.13-3.3.1.s390x.rpm libcroco-0_6-3-0.6.13-3.3.1.s390x.rpm libcroco-devel-0.6.13-3.3.1.s390x.rpm libcroco-0.6.13-3.3.1.ppc64le.rpm libcroco-0_6-3-0.6.13-3.3.1.ppc64le.rpm libcroco-devel-0.6.13-3.3.1.ppc64le.rpm libcroco-0.6.13-3.3.1.aarch64.rpm libcroco-0_6-3-0.6.13-3.3.1.aarch64.rpm libcroco-devel-0.6.13-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2958 important SUSE Updates openSUSE-SLE 15.3 This update for xerces-c fixes the following issues: - CVE-2018-1311: Fixed use-after-free inside XML parser during the scanning of external DTDs (bsc#1159552). libxerces-c-3_1-3.1.4-10.3.1.x86_64.rpm libxerces-c-3_1-32bit-3.1.4-10.3.1.x86_64.rpm xerces-c-3.1.4-10.3.1.src.rpm libxerces-c-3_1-3.1.4-10.3.1.s390x.rpm libxerces-c-3_1-3.1.4-10.3.1.ppc64le.rpm libxerces-c-3_1-3.1.4-10.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4154 important SUSE Updates openSUSE-SLE 15.3 This update for p11-kit fixes the following issues: - CVE-2020-29361: Fixed multiple integer overflows in rpc code (bsc#1180064) - Add support for CKA_NSS_{SERVER,EMAIL}_DISTRUST_AFTER (bsc#1187993). libp11-kit0-0.23.2-4.13.1.x86_64.rpm libp11-kit0-32bit-0.23.2-4.13.1.x86_64.rpm p11-kit-0.23.2-4.13.1.src.rpm p11-kit-0.23.2-4.13.1.x86_64.rpm p11-kit-32bit-0.23.2-4.13.1.x86_64.rpm p11-kit-devel-0.23.2-4.13.1.x86_64.rpm p11-kit-nss-trust-0.23.2-4.13.1.x86_64.rpm p11-kit-nss-trust-32bit-0.23.2-4.13.1.x86_64.rpm p11-kit-tools-0.23.2-4.13.1.x86_64.rpm libp11-kit0-0.23.2-4.13.1.s390x.rpm p11-kit-0.23.2-4.13.1.s390x.rpm p11-kit-devel-0.23.2-4.13.1.s390x.rpm p11-kit-nss-trust-0.23.2-4.13.1.s390x.rpm p11-kit-tools-0.23.2-4.13.1.s390x.rpm libp11-kit0-0.23.2-4.13.1.ppc64le.rpm p11-kit-0.23.2-4.13.1.ppc64le.rpm p11-kit-devel-0.23.2-4.13.1.ppc64le.rpm p11-kit-nss-trust-0.23.2-4.13.1.ppc64le.rpm p11-kit-tools-0.23.2-4.13.1.ppc64le.rpm libp11-kit0-0.23.2-4.13.1.aarch64.rpm p11-kit-0.23.2-4.13.1.aarch64.rpm p11-kit-devel-0.23.2-4.13.1.aarch64.rpm p11-kit-nss-trust-0.23.2-4.13.1.aarch64.rpm p11-kit-tools-0.23.2-4.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-3035 moderate SUSE Updates openSUSE-SLE 15.3 This update for ibus fixes the following issues: - Fixed an issue when 'Qt5 IBus IM' module cannot connect to 'IBus' daemon under 'GNOME Wayland' session. (bsc#1187202) ibus-1.5.23-3.3.1.src.rpm ibus-1.5.23-3.3.1.x86_64.rpm ibus-devel-1.5.23-3.3.1.x86_64.rpm ibus-dict-emoji-1.5.23-3.3.1.noarch.rpm ibus-gtk-1.5.23-3.3.1.x86_64.rpm ibus-gtk-32bit-1.5.23-3.3.1.x86_64.rpm ibus-gtk3-1.5.23-3.3.1.x86_64.rpm ibus-gtk3-32bit-1.5.23-3.3.1.x86_64.rpm ibus-lang-1.5.23-3.3.1.noarch.rpm libibus-1_0-5-1.5.23-3.3.1.x86_64.rpm libibus-1_0-5-32bit-1.5.23-3.3.1.x86_64.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.x86_64.rpm ibus-1.5.23-3.3.1.s390x.rpm ibus-devel-1.5.23-3.3.1.s390x.rpm ibus-gtk-1.5.23-3.3.1.s390x.rpm ibus-gtk3-1.5.23-3.3.1.s390x.rpm libibus-1_0-5-1.5.23-3.3.1.s390x.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.s390x.rpm ibus-1.5.23-3.3.1.ppc64le.rpm ibus-devel-1.5.23-3.3.1.ppc64le.rpm ibus-gtk-1.5.23-3.3.1.ppc64le.rpm ibus-gtk3-1.5.23-3.3.1.ppc64le.rpm libibus-1_0-5-1.5.23-3.3.1.ppc64le.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.ppc64le.rpm ibus-1.5.23-3.3.1.aarch64.rpm ibus-devel-1.5.23-3.3.1.aarch64.rpm ibus-gtk-1.5.23-3.3.1.aarch64.rpm ibus-gtk3-1.5.23-3.3.1.aarch64.rpm libibus-1_0-5-1.5.23-3.3.1.aarch64.rpm typelib-1_0-IBus-1_0-1.5.23-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3203 moderate SUSE Updates openSUSE-SLE 15.3 This update for kmod fixes the following issues: - Use docbook 4 rather than docbook 5 for building man pages (bsc#1190190). - Enable support for ZSTD compressed modules - Display module information even for modules built into the running kernel (bsc#1189537) - '/usr/lib' should override '/lib' where both are available. Support '/usr/lib' for depmod.d as well. - Remove test patches included in release 29 - Update to release 29 * Fix `modinfo -F` not working for built-in modules and certain fields. * Fix a memory leak, overflow and double free on error path. kmod-29-4.9.1.src.rpm kmod-29-4.9.1.x86_64.rpm kmod-bash-completion-29-4.9.1.noarch.rpm libkmod-devel-29-4.9.1.x86_64.rpm libkmod2-29-4.9.1.x86_64.rpm kmod-29-4.9.1.s390x.rpm libkmod-devel-29-4.9.1.s390x.rpm libkmod2-29-4.9.1.s390x.rpm kmod-29-4.9.1.ppc64le.rpm libkmod-devel-29-4.9.1.ppc64le.rpm libkmod2-29-4.9.1.ppc64le.rpm kmod-29-4.9.1.aarch64.rpm libkmod-devel-29-4.9.1.aarch64.rpm libkmod2-29-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2935 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-saptune fixes the following issues: - Exchange the tuned daemon handling with the new saptune service. (bsc#1188321) - Add information, if the service is enabled or disabled. yast2-saptune-1.4-3.6.1.noarch.rpm yast2-saptune-1.4-3.6.1.src.rpm openSUSE-SLE-15.3-2021-3128 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - Backport whitelisting of oddjob (bsc#1189106, bsc#1169494). rpmlint-1.10-7.25.1.noarch.rpm rpmlint-1.10-7.25.1.src.rpm openSUSE-SLE-15.3-2021-3129 moderate SUSE Updates openSUSE-SLE 15.3 This update for polkit-default-privs fixes the following issues: - malcontent: loosen restrictive ReadOwn actions to prevent spurious auth requests - whitelisting of GNOME malcontent parental controls (bsc#1177974) polkit-default-privs-13.2+20210813.1c5fb05-3.3.1.noarch.rpm polkit-default-privs-13.2+20210813.1c5fb05-3.3.1.src.rpm polkit-whitelisting-13.2+20210813.1c5fb05-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3036 moderate SUSE Updates openSUSE-SLE 15.3 This update for ocl-icd fixes the following issue: - provide a libOpenCL1-32bit for use by Wine. libOpenCL1-2.2.11-8.3.1.x86_64.rpm libOpenCL1-32bit-2.2.11-8.3.1.x86_64.rpm ocl-icd-2.2.11-8.3.1.src.rpm ocl-icd-devel-2.2.11-8.3.1.x86_64.rpm ocl-icd-devel-32bit-2.2.11-8.3.1.x86_64.rpm libOpenCL1-2.2.11-8.3.1.s390x.rpm ocl-icd-devel-2.2.11-8.3.1.s390x.rpm libOpenCL1-2.2.11-8.3.1.ppc64le.rpm ocl-icd-devel-2.2.11-8.3.1.ppc64le.rpm libOpenCL1-2.2.11-8.3.1.aarch64.rpm ocl-icd-devel-2.2.11-8.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2906 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - Remove no-cd option from zypper-migration command - Make zypper ignore CD/DVDs repositories - Add a more informative message if problematic repos are found - Remote repos message in pre checks, potentially, will produce long lines. Add line breaks for better readability - doc/DC: Update to suse2021 stylesheets - Use download-in-advance mode for zypper dup. If the DMS was configured to use 'zypper dup' we should download packages in advance for more stability. - Fixed package build must not contain the pre-checks which are only relevant in the activation package - Setup package conflicts properly migration services and migration activation conflicts. The activation is installed on the host to migrate, the services are installed in the live migration image. There is no situation in which migration services and activation is installed on the same host. As both packages are build from the same python sources they have to conflict - Fixed migration services package build * Moving the sed original file over the changed one prior calling sdist invalidates the actual change * Fixed spec template for the activation - Add pre check to extend the activation package - Check no remote repositories - Check filesystem has LUKS encryption The checks are kept in their own files and run on the host, before rebooting. - Update option settings in 'zypper dup' mode. - Respect host kernel boot options for migration. (bsc#1182520) suse-migration-services-2.0.30-1.37.1.noarch.rpm suse-migration-services-2.0.30-1.37.1.src.rpm openSUSE-SLE-15.3-2021-2992 moderate SUSE Updates openSUSE-SLE 15.3 This update for drbd fixes the following issues: - bsc#1188472, update to 9.0.29 * fix data corruption when DRBD's backing disk is a degraded Linux software raid (MD) * add correct thawing of IO requests after IO was frozen due to loss of quorum * fix timeout detection after idle periods and for configs with ko-count when a disk on an a secondary stops delivering IO-completion events * fixed an issue where UUIDs where not shifted in the history slots; that caused false "unrelated data" events * fix switching resync sources by letting resync requests drain before issuing resync requests to the new source; before the fix, it could happen that the resync does not terminate since a late reply from the previous caused a out-of-sync bit set after the "scan point" * fix a temporal deadlock you could trigger when you exercise promotion races and mix some read-only openers into the test case * fix for bitmap-copy operation in a very specific and unlikely case where two nodes do a bitmap-based resync due to disk-states * fix size negotiation when combining nodes of different CPU architectures that have different page sizes * fix a very rare race where DRBD reported wrong magic in a header packet right after reconnecting * fix a case where DRBD ends up reporting unrelated data; it affected thinly allocated resources with a diskless node in a recreate from day0 event * speedup open() of drbd devices if promote has not chance to go through * new option "--reset-bitmap=no" for the invalidate and invalidate-remote commands; this allows to do a resync after online verify found differences * changes to socket buffer sizes get applied to established connections immediately; before it was applied after a re-connect * add exists events for path objects * forbid keyed hash algorithms for online verify, csyms and HMAC base alg * fix a regression introduces with 9.0.25; it failed to determine the right device size and the connection hangs in 'WFBitmapS/WFBitmapT' repl state; to trigger this you need to do a partial resync to a new node with different backing device size * fix an issue with netlink packets processed in parallel on multiple CPUs; the bug caused drbdadm adjust failing in very rare cases * fix a very rare occurrence of a reconciliation resync getting stuck * fix a race condition that causes a detach operation to hang; it is very hard to trigger * fix a kernel OOPS (via a BUG()) upon adding a timer twice under very rare timing * fix a counter imbalance that could lead to assertion messages when a protocol A peer disconnects with a certain timing * fix a rare race with receiving bitmap and a state change while establishing a connection * fix UUID handling to avoid false split-brain detections; this bug got triggered an isolated primary that gets demoted, and temporal network interruptions among the remaining nodes * fix resync decision to obey disk states when the generation UUIDs are equal; the effect of this bug was that you could end up with two Outdated nodes after resync * fix concurrent disk-attach operations * Fix possible kernel warning regarding an inbalance of backing device link/unlink * move some amount of kernel backward compatibility code moved from the old method (drbd_wrappers.h) to new cocci semantic patches * add support renaming resources while its devices might be in use and process IO requests * Allow setting c_max_rate to 0 with the meaning that the resync controller has no upper limit for the resync speed * Fix regression: allow live migration between two diskful peers again drbd-9.0.29~0+git.9a7bc817-3.3.1.src.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.x86_64.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.x86_64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.x86_64.rpm drbd-kmp-rt-9.0.29~0+git.9a7bc817_k5.3.18_8.13-3.3.1.x86_64.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.s390x.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.s390x.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.ppc64le.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.ppc64le.rpm drbd-9.0.29~0+git.9a7bc817-3.3.1.aarch64.rpm drbd-kmp-64kb-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm drbd-kmp-default-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_59.19-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3037 moderate SUSE Updates openSUSE-SLE 15.3 This update for PackageKit fixes the following issues: - Fix crash when search string is NULL (bsc#1179287). - Fix hang in packagekit-glib2 client if daemon crashes. PackageKit-1.1.13-4.23.1.src.rpm PackageKit-1.1.13-4.23.1.x86_64.rpm PackageKit-backend-dnf-1.1.13-4.23.1.x86_64.rpm PackageKit-backend-zypp-1.1.13-4.23.1.x86_64.rpm PackageKit-branding-upstream-1.1.13-4.23.1.noarch.rpm PackageKit-devel-1.1.13-4.23.1.x86_64.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.x86_64.rpm PackageKit-gtk3-module-1.1.13-4.23.1.x86_64.rpm PackageKit-lang-1.1.13-4.23.1.noarch.rpm libpackagekit-glib2-18-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-18-32bit-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.x86_64.rpm libpackagekit-glib2-devel-32bit-1.1.13-4.23.1.x86_64.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.x86_64.rpm PackageKit-1.1.13-4.23.1.s390x.rpm PackageKit-backend-dnf-1.1.13-4.23.1.s390x.rpm PackageKit-backend-zypp-1.1.13-4.23.1.s390x.rpm PackageKit-devel-1.1.13-4.23.1.s390x.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.s390x.rpm PackageKit-gtk3-module-1.1.13-4.23.1.s390x.rpm libpackagekit-glib2-18-1.1.13-4.23.1.s390x.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.s390x.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.s390x.rpm PackageKit-1.1.13-4.23.1.ppc64le.rpm PackageKit-backend-dnf-1.1.13-4.23.1.ppc64le.rpm PackageKit-backend-zypp-1.1.13-4.23.1.ppc64le.rpm PackageKit-devel-1.1.13-4.23.1.ppc64le.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.ppc64le.rpm PackageKit-gtk3-module-1.1.13-4.23.1.ppc64le.rpm libpackagekit-glib2-18-1.1.13-4.23.1.ppc64le.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.ppc64le.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.ppc64le.rpm PackageKit-1.1.13-4.23.1.aarch64.rpm PackageKit-backend-dnf-1.1.13-4.23.1.aarch64.rpm PackageKit-backend-zypp-1.1.13-4.23.1.aarch64.rpm PackageKit-devel-1.1.13-4.23.1.aarch64.rpm PackageKit-gstreamer-plugin-1.1.13-4.23.1.aarch64.rpm PackageKit-gtk3-module-1.1.13-4.23.1.aarch64.rpm libpackagekit-glib2-18-1.1.13-4.23.1.aarch64.rpm libpackagekit-glib2-devel-1.1.13-4.23.1.aarch64.rpm typelib-1_0-PackageKitGlib-1_0-1.1.13-4.23.1.aarch64.rpm openSUSE-SLE-15.3-2021-3001 moderate SUSE Updates openSUSE-SLE 15.3 This update for netcfg fixes the following issues: - add submissions port/protocol to services file for message submission over TLS protocol [bsc#1189683] netcfg-11.6-3.3.1.noarch.rpm netcfg-11.6-3.3.1.src.rpm openSUSE-SLE-15.3-2021-3048 moderate SUSE Updates openSUSE-SLE 15.3 This update for libyui fixes the following issues: - Fixed sometimes patch category could be missing in the Online Update screen (bsc#1174390) - Obsolete older documentation packages in favour of updated ones (bsc#1184363) libyui-4.1.4-3.3.1.src.rpm libyui-bindings-4.1.4-3.3.1.src.rpm libyui-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-4.1.4-3.3.1.src.rpm libyui-ncurses-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-pkg-4.1.4-3.3.1.src.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-rest-api-4.1.4-3.3.1.src.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui-ncurses-tools-4.1.4-3.3.1.x86_64.rpm libyui-ncurses15-4.1.4-3.3.1.x86_64.rpm libyui-qt-4.1.4-3.3.1.src.rpm libyui-qt-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-graph-4.1.4-3.3.1.src.rpm libyui-qt-graph-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-graph15-4.1.4-3.3.1.x86_64.rpm libyui-qt-pkg-4.1.4-3.3.1.src.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-pkg15-4.1.4-3.3.1.x86_64.rpm libyui-qt-rest-api-4.1.4-3.3.1.src.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-qt-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui-qt15-4.1.4-3.3.1.x86_64.rpm libyui-rest-api-4.1.4-3.3.1.src.rpm libyui-rest-api-devel-4.1.4-3.3.1.x86_64.rpm libyui-rest-api15-4.1.4-3.3.1.x86_64.rpm libyui15-4.1.4-3.3.1.x86_64.rpm perl-yui-4.1.4-3.3.1.x86_64.rpm python3-yui-4.1.4-3.3.1.x86_64.rpm ruby-yui-4.1.4-3.3.1.x86_64.rpm libyui-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.s390x.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.s390x.rpm libyui-ncurses-tools-4.1.4-3.3.1.s390x.rpm libyui-ncurses15-4.1.4-3.3.1.s390x.rpm libyui-qt-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-graph-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-graph15-4.1.4-3.3.1.s390x.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-pkg15-4.1.4-3.3.1.s390x.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-qt-rest-api15-4.1.4-3.3.1.s390x.rpm libyui-qt15-4.1.4-3.3.1.s390x.rpm libyui-rest-api-devel-4.1.4-3.3.1.s390x.rpm libyui-rest-api15-4.1.4-3.3.1.s390x.rpm libyui15-4.1.4-3.3.1.s390x.rpm perl-yui-4.1.4-3.3.1.s390x.rpm python3-yui-4.1.4-3.3.1.s390x.rpm ruby-yui-4.1.4-3.3.1.s390x.rpm libyui-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses-tools-4.1.4-3.3.1.ppc64le.rpm libyui-ncurses15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-graph-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-graph15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-pkg15-4.1.4-3.3.1.ppc64le.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-qt-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui-qt15-4.1.4-3.3.1.ppc64le.rpm libyui-rest-api-devel-4.1.4-3.3.1.ppc64le.rpm libyui-rest-api15-4.1.4-3.3.1.ppc64le.rpm libyui15-4.1.4-3.3.1.ppc64le.rpm perl-yui-4.1.4-3.3.1.ppc64le.rpm python3-yui-4.1.4-3.3.1.ppc64le.rpm ruby-yui-4.1.4-3.3.1.ppc64le.rpm libyui-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-pkg-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-pkg15-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui-ncurses-tools-4.1.4-3.3.1.aarch64.rpm libyui-ncurses15-4.1.4-3.3.1.aarch64.rpm libyui-qt-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-graph-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-graph15-4.1.4-3.3.1.aarch64.rpm libyui-qt-pkg-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-pkg15-4.1.4-3.3.1.aarch64.rpm libyui-qt-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-qt-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui-qt15-4.1.4-3.3.1.aarch64.rpm libyui-rest-api-devel-4.1.4-3.3.1.aarch64.rpm libyui-rest-api15-4.1.4-3.3.1.aarch64.rpm libyui15-4.1.4-3.3.1.aarch64.rpm perl-yui-4.1.4-3.3.1.aarch64.rpm python3-yui-4.1.4-3.3.1.aarch64.rpm ruby-yui-4.1.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3221 moderate SUSE Updates openSUSE-SLE 15.3 This update for apache2-mod_wsgi fixes the following issue: - Enable installation of Python 'sitelib' wrapper. (bsc#1189467) - This update will solve a 'DistributionNotFound' error providing the Python metadata and wrapper for 'mod_wsgi'. apache2-mod_wsgi-4.5.18-4.3.1.src.rpm apache2-mod_wsgi-4.5.18-4.3.1.x86_64.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.src.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.x86_64.rpm apache2-mod_wsgi-4.5.18-4.3.1.s390x.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.s390x.rpm apache2-mod_wsgi-4.5.18-4.3.1.ppc64le.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.ppc64le.rpm apache2-mod_wsgi-4.5.18-4.3.1.aarch64.rpm apache2-mod_wsgi-python3-4.5.18-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3115 moderate SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nspr fixes the following issues: mozilla-nspr was updated to version 4.32: * implement new socket option PR_SockOpt_DontFrag * support larger DNS records by increasing the default buffer size for DNS queries * Lock access to PRCallOnceType members in PR_CallOnce* for thread safety bmo#1686138 * PR_GetSystemInfo supports a new flag PR_SI_RELEASE_BUILD to get information about the operating system build version. Mozilla NSS was updated to version 3.68: * bmo#1713562 - Fix test leak. * bmo#1717452 - NSS 3.68 should depend on NSPR 4.32. * bmo#1693206 - Implement PKCS8 export of ECDSA keys. * bmo#1712883 - DTLS 1.3 draft-43. * bmo#1655493 - Support SHA2 HW acceleration using Intel SHA Extension. * bmo#1713562 - Validate ECH public names. * bmo#1717610 - Add function to get seconds from epoch from pkix::Time. update to NSS 3.67 * bmo#1683710 - Add a means to disable ALPN. * bmo#1715720 - Fix nssckbi version number in NSS 3.67 (was supposed to be incremented in 3.66). * bmo#1714719 - Set NSS_USE_64 on riscv64 target when using GYP/Ninja. * bmo#1566124 - Fix counter increase in ppc-gcm-wrap.c. * bmo#1566124 - Fix AES_GCM mode on ppc64le for messages of length more than 255-byte. update to NSS 3.66 * bmo#1710716 - Remove Expired Sonera Class2 CA from NSS. * bmo#1710716 - Remove Expired Root Certificates from NSS - QuoVadis Root Certification Authority. * bmo#1708307 - Remove Trustis FPS Root CA from NSS. * bmo#1707097 - Add Certum Trusted Root CA to NSS. * bmo#1707097 - Add Certum EC-384 CA to NSS. * bmo#1703942 - Add ANF Secure Server Root CA to NSS. * bmo#1697071 - Add GLOBALTRUST 2020 root cert to NSS. * bmo#1712184 - NSS tools manpages need to be updated to reflect that sqlite is the default database. * bmo#1712230 - Don't build ppc-gcm.s with clang integrated assembler. * bmo#1712211 - Strict prototype error when trying to compile nss code that includes blapi.h. * bmo#1710773 - NSS needs FIPS 180-3 FIPS indicators. * bmo#1709291 - Add VerifyCodeSigningCertificateChain. update to NSS 3.65 * bmo#1709654 - Update for NetBSD configuration. * bmo#1709750 - Disable HPKE test when fuzzing. * bmo#1566124 - Optimize AES-GCM for ppc64le. * bmo#1699021 - Add AES-256-GCM to HPKE. * bmo#1698419 - ECH -10 updates. * bmo#1692930 - Update HPKE to final version. * bmo#1707130 - NSS should use modern algorithms in PKCS#12 files by default. * bmo#1703936 - New coverity/cpp scanner errors. * bmo#1697303 - NSS needs to update it's csp clearing to FIPS 180-3 standards. * bmo#1702663 - Need to support RSA PSS with Hashing PKCS #11 Mechanisms. * bmo#1705119 - Deadlock when using GCM and non-thread safe tokens. update to NSS 3.64 * bmo#1705286 - Properly detect mips64. * bmo#1687164 - Introduce NSS_DISABLE_CRYPTO_VSX and disable_crypto_vsx. * bmo#1698320 - replace __builtin_cpu_supports("vsx") with ppc_crypto_support() for clang. * bmo#1613235 - Add POWER ChaCha20 stream cipher vector acceleration. Fixed in 3.63 * bmo#1697380 - Make a clang-format run on top of helpful contributions. * bmo#1683520 - ECCKiila P384, change syntax of nested structs initialization to prevent build isses with GCC 4.8. * bmo#1683520 - [lib/freebl/ecl] P-384: allow zero scalars in dual scalar multiplication. * bmo#1683520 - ECCKiila P521, change syntax of nested structs initialization to prevent build isses with GCC 4.8. * bmo#1683520 - [lib/freebl/ecl] P-521: allow zero scalars in dual scalar multiplication. * bmo#1696800 - HACL* update March 2021 - c95ab70fcb2bc21025d8845281bc4bc8987ca683. * bmo#1694214 - tstclnt can't enable middlebox compat mode. * bmo#1694392 - NSS does not work with PKCS #11 modules not supporting profiles. * bmo#1685880 - Minor fix to prevent unused variable on early return. * bmo#1685880 - Fix for the gcc compiler version 7 to support setenv with nss build. * bmo#1693217 - Increase nssckbi.h version number for March 2021 batch of root CA changes, CA list version 2.48. * bmo#1692094 - Set email distrust after to 21-03-01 for Camerfirma's 'Chambers of Commerce' and 'Global Chambersign' roots. * bmo#1618407 - Symantec root certs - Set CKA_NSS_EMAIL_DISTRUST_AFTER. * bmo#1693173 - Add GlobalSign R45, E45, R46, and E46 root certs to NSS. * bmo#1683738 - Add AC RAIZ FNMT-RCM SERVIDORES SEGUROS root cert to NSS. * bmo#1686854 - Remove GeoTrust PCA-G2 and VeriSign Universal root certs from NSS. * bmo#1687822 - Turn off Websites trust bit for the “Staat der Nederlanden Root CA - G3” root cert in NSS. * bmo#1692094 - Turn off Websites Trust Bit for 'Chambers of Commerce Root - 2008' and 'Global Chambersign Root - 2008’. * bmo#1694291 - Tracing fixes for ECH. update to NSS 3.62 * bmo#1688374 - Fix parallel build NSS-3.61 with make * bmo#1682044 - pkix_Build_GatherCerts() + pkix_CacheCert_Add() can corrupt "cachedCertTable" * bmo#1690583 - Fix CH padding extension size calculation * bmo#1690421 - Adjust 3.62 ABI report formatting for new libabigail * bmo#1690421 - Install packaged libabigail in docker-builds image * bmo#1689228 - Minor ECH -09 fixes for interop testing, fuzzing * bmo#1674819 - Fixup a51fae403328, enum type may be signed * bmo#1681585 - Add ECH support to selfserv * bmo#1681585 - Update ECH to Draft-09 * bmo#1678398 - Add Export/Import functions for HPKE context * bmo#1678398 - Update HPKE to draft-07 update to NSS 3.61 * bmo#1682071 - Fix issue with IKE Quick mode deriving incorrect key values under certain conditions. * bmo#1684300 - Fix default PBE iteration count when NSS is compiled with NSS_DISABLE_DBM. * bmo#1651411 - Improve constant-timeness in RSA operations. * bmo#1677207 - Upgrade Google Test version to latest release. * bmo#1654332 - Add aarch64-make target to nss-try. Update to NSS 3.60.1: Notable changes in NSS 3.60: * TLS 1.3 Encrypted Client Hello (draft-ietf-tls-esni-08) support has been added, replacing the previous ESNI (draft-ietf-tls-esni-01) implementation. See bmo#1654332 for more information. * December 2020 batch of Root CA changes, builtins library updated to version 2.46. See bmo#1678189, bmo#1678166, and bmo#1670769 for more information. Update to NSS 3.59.1: * bmo#1679290 - Fix potential deadlock with certain third-party PKCS11 modules Update to NSS 3.59: Notable changes: * Exported two existing functions from libnss: CERT_AddCertToListHeadWithData and CERT_AddCertToListTailWithData Bugfixes * bmo#1607449 - Lock cert->nssCertificate to prevent a potential data race * bmo#1672823 - Add Wycheproof test cases for HMAC, HKDF, and DSA * bmo#1663661 - Guard against NULL token in nssSlot_IsTokenPresent * bmo#1670835 - Support enabling and disabling signatures via Crypto Policy * bmo#1672291 - Resolve libpkix OCSP failures on SHA1 self-signed root certs when SHA1 signatures are disabled. * bmo#1644209 - Fix broken SelectedCipherSuiteReplacer filter to solve some test intermittents * bmo#1672703 - Tolerate the first CCS in TLS 1.3 to fix a regression in our CVE-2020-25648 fix that broke purple-discord (boo#1179382) * bmo#1666891 - Support key wrap/unwrap with RSA-OAEP * bmo#1667989 - Fix gyp linking on Solaris * bmo#1668123 - Export CERT_AddCertToListHeadWithData and CERT_AddCertToListTailWithData from libnss * bmo#1634584 - Set CKA_NSS_SERVER_DISTRUST_AFTER for Trustis FPS Root CA * bmo#1663091 - Remove unnecessary assertions in the streaming ASN.1 decoder that affected decoding certain PKCS8 private keys when using NSS debug builds * bmo#670839 - Use ARM crypto extension for AES, SHA1 and SHA2 on MacOS. update to NSS 3.58 Bugs fixed: * bmo#1641480 (CVE-2020-25648) Tighten CCS handling for middlebox compatibility mode. * bmo#1631890 - Add support for Hybrid Public Key Encryption (draft-irtf-cfrg-hpke) support for TLS Encrypted Client Hello (draft-ietf-tls-esni). * bmo#1657255 - Add CI tests that disable SHA1/SHA2 ARM crypto extensions. * bmo#1668328 - Handle spaces in the Python path name when using gyp on Windows. * bmo#1667153 - Add PK11_ImportDataKey for data object import. * bmo#1665715 - Pass the embedded SCT list extension (if present) to TrustDomain::CheckRevocation instead of the notBefore value. update to NSS 3.57 * The following CA certificates were Added: bmo#1663049 - CN=Trustwave Global Certification Authority SHA-256 Fingerprint: 97552015F5DDFC3C8788C006944555408894450084F100867086BC1A2BB58DC8 bmo#1663049 - CN=Trustwave Global ECC P256 Certification Authority SHA-256 Fingerprint: 945BBC825EA554F489D1FD51A73DDF2EA624AC7019A05205225C22A78CCFA8B4 bmo#1663049 - CN=Trustwave Global ECC P384 Certification Authority SHA-256 Fingerprint: 55903859C8C0C3EBB8759ECE4E2557225FF5758BBD38EBD48276601E1BD58097 * The following CA certificates were Removed: bmo#1651211 - CN=EE Certification Centre Root CA SHA-256 Fingerprint: 3E84BA4342908516E77573C0992F0979CA084E4685681FF195CCBA8A229B8A76 bmo#1656077 - O=Government Root Certification Authority; C=TW SHA-256 Fingerprint: 7600295EEFE85B9E1FD624DB76062AAAAE59818A54D2774CD4C0B2C01131E1B3 * Trust settings for the following CA certificates were Modified: bmo#1653092 - CN=OISTE WISeKey Global Root GA CA Websites (server authentication) trust bit removed. * https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.57_release_notes update to NSS 3.56 Notable changes * bmo#1650702 - Support SHA-1 HW acceleration on ARMv8 * bmo#1656981 - Use MPI comba and mulq optimizations on x86-64 MacOS. * bmo#1654142 - Add CPU feature detection for Intel SHA extension. * bmo#1648822 - Add stricter validation of DH keys in FIPS mode. * bmo#1656986 - Properly detect arm64 during GYP build architecture detection. * bmo#1652729 - Add build flag to disable RC2 and relocate to lib/freebl/deprecated. * bmo#1656429 - Correct RTT estimate used in 0-RTT anti-replay. * bmo#1588941 - Send empty certificate message when scheme selection fails. * bmo#1652032 - Fix failure to build in Windows arm64 makefile cross-compilation. * bmo#1625791 - Fix deadlock issue in nssSlot_IsTokenPresent. * bmo#1653975 - Fix 3.53 regression by setting "all" as the default makefile target. * bmo#1659792 - Fix broken libpkix tests with unexpired PayPal cert. * bmo#1659814 - Fix interop.sh failures with newer tls-interop commit and dependencies. * bmo#1656519 - NSPR dependency updated to 4.28 update to NSS 3.55 Notable changes * P384 and P521 elliptic curve implementations are replaced with verifiable implementations from Fiat-Crypto [0] and ECCKiila [1]. * PK11_FindCertInSlot is added. With this function, a given slot can be queried with a DER-Encoded certificate, providing performance and usability improvements over other mechanisms. (bmo#1649633) * DTLS 1.3 implementation is updated to draft-38. (bmo#1647752) Relevant Bugfixes * bmo#1631583 (CVE-2020-6829, CVE-2020-12400) - Replace P384 and P521 with new, verifiable implementations from Fiat-Crypto and ECCKiila. * bmo#1649487 - Move overzealous assertion in VFY_EndWithSignature. * bmo#1631573 (CVE-2020-12401) - Remove unnecessary scalar padding. * bmo#1636771 (CVE-2020-12403) - Explicitly disable multi-part ChaCha20 (which was not functioning correctly) and more strictly enforce tag length. * bmo#1649648 - Don't memcpy zero bytes (sanitizer fix). * bmo#1649316 - Don't memcpy zero bytes (sanitizer fix). * bmo#1649322 - Don't memcpy zero bytes (sanitizer fix). * bmo#1653202 - Fix initialization bug in blapitest when compiled with NSS_DISABLE_DEPRECATED_SEED. * bmo#1646594 - Fix AVX2 detection in makefile builds. * bmo#1649633 - Add PK11_FindCertInSlot to search a given slot for a DER-encoded certificate. * bmo#1651520 - Fix slotLock race in NSC_GetTokenInfo. * bmo#1647752 - Update DTLS 1.3 implementation to draft-38. * bmo#1649190 - Run cipher, sdr, and ocsp tests under standard test cycle in CI. * bmo#1649226 - Add Wycheproof ECDSA tests. * bmo#1637222 - Consistently enforce IV requirements for DES and 3DES. * bmo#1067214 - Enforce minimum PKCS#1 v1.5 padding length in RSA_CheckSignRecover. * bmo#1646324 - Advertise PKCS#1 schemes for certificates in the signature_algorithms extension. update to NSS 3.54 Notable changes * Support for TLS 1.3 external pre-shared keys (bmo#1603042). * Use ARM Cryptography Extension for SHA256, when available (bmo#1528113) * The following CA certificates were Added: bmo#1645186 - certSIGN Root CA G2. bmo#1645174 - e-Szigno Root CA 2017. bmo#1641716 - Microsoft ECC Root Certificate Authority 2017. bmo#1641716 - Microsoft RSA Root Certificate Authority 2017. * The following CA certificates were Removed: bmo#1645199 - AddTrust Class 1 CA Root. bmo#1645199 - AddTrust External CA Root. bmo#1641718 - LuxTrust Global Root 2. bmo#1639987 - Staat der Nederlanden Root CA - G2. bmo#1618402 - Symantec Class 2 Public Primary Certification Authority - G4. bmo#1618402 - Symantec Class 1 Public Primary Certification Authority - G4. bmo#1618402 - VeriSign Class 3 Public Primary Certification Authority - G3. * A number of certificates had their Email trust bit disabled. See bmo#1618402 for a complete list. Bugs fixed * bmo#1528113 - Use ARM Cryptography Extension for SHA256. * bmo#1603042 - Add TLS 1.3 external PSK support. * bmo#1642802 - Add uint128 support for HACL* curve25519 on Windows. * bmo#1645186 - Add "certSIGN Root CA G2" root certificate. * bmo#1645174 - Add Microsec's "e-Szigno Root CA 2017" root certificate. * bmo#1641716 - Add Microsoft's non-EV root certificates. * bmo1621151 - Disable email trust bit for "O=Government Root Certification Authority; C=TW" root. * bmo#1645199 - Remove AddTrust root certificates. * bmo#1641718 - Remove "LuxTrust Global Root 2" root certificate. * bmo#1639987 - Remove "Staat der Nederlanden Root CA - G2" root certificate. * bmo#1618402 - Remove Symantec root certificates and disable email trust bit. * bmo#1640516 - NSS 3.54 should depend on NSPR 4.26. * bmo#1642146 - Fix undefined reference to `PORT_ZAlloc_stub' in seed.c. * bmo#1642153 - Fix infinite recursion building NSS. * bmo#1642638 - Fix fuzzing assertion crash. * bmo#1642871 - Enable SSL_SendSessionTicket after resumption. * bmo#1643123 - Support SSL_ExportEarlyKeyingMaterial with External PSKs. * bmo#1643557 - Fix numerous compile warnings in NSS. * bmo#1644774 - SSL gtests to use ClearServerCache when resetting self-encrypt keys. * bmo#1645479 - Don't use SECITEM_MakeItem in secutil.c. * bmo#1646520 - Stricter enforcement of ASN.1 INTEGER encoding. libfreebl3-3.68-3.56.1.x86_64.rpm libfreebl3-32bit-3.68-3.56.1.x86_64.rpm libfreebl3-hmac-3.68-3.56.1.x86_64.rpm libfreebl3-hmac-32bit-3.68-3.56.1.x86_64.rpm libsoftokn3-3.68-3.56.1.x86_64.rpm libsoftokn3-32bit-3.68-3.56.1.x86_64.rpm libsoftokn3-hmac-3.68-3.56.1.x86_64.rpm libsoftokn3-hmac-32bit-3.68-3.56.1.x86_64.rpm mozilla-nspr-32bit-4.32-3.20.1.x86_64.rpm mozilla-nspr-4.32-3.20.1.src.rpm mozilla-nspr-4.32-3.20.1.x86_64.rpm mozilla-nspr-devel-4.32-3.20.1.x86_64.rpm mozilla-nss-3.68-3.56.1.src.rpm mozilla-nss-3.68-3.56.1.x86_64.rpm mozilla-nss-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-certs-3.68-3.56.1.x86_64.rpm mozilla-nss-certs-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-devel-3.68-3.56.1.x86_64.rpm mozilla-nss-sysinit-3.68-3.56.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.68-3.56.1.x86_64.rpm mozilla-nss-tools-3.68-3.56.1.x86_64.rpm libfreebl3-3.68-3.56.1.s390x.rpm libfreebl3-hmac-3.68-3.56.1.s390x.rpm libsoftokn3-3.68-3.56.1.s390x.rpm libsoftokn3-hmac-3.68-3.56.1.s390x.rpm mozilla-nspr-4.32-3.20.1.s390x.rpm mozilla-nspr-devel-4.32-3.20.1.s390x.rpm mozilla-nss-3.68-3.56.1.s390x.rpm mozilla-nss-certs-3.68-3.56.1.s390x.rpm mozilla-nss-devel-3.68-3.56.1.s390x.rpm mozilla-nss-sysinit-3.68-3.56.1.s390x.rpm mozilla-nss-tools-3.68-3.56.1.s390x.rpm libfreebl3-3.68-3.56.1.ppc64le.rpm libfreebl3-hmac-3.68-3.56.1.ppc64le.rpm libsoftokn3-3.68-3.56.1.ppc64le.rpm libsoftokn3-hmac-3.68-3.56.1.ppc64le.rpm mozilla-nspr-4.32-3.20.1.ppc64le.rpm mozilla-nspr-devel-4.32-3.20.1.ppc64le.rpm mozilla-nss-3.68-3.56.1.ppc64le.rpm mozilla-nss-certs-3.68-3.56.1.ppc64le.rpm mozilla-nss-devel-3.68-3.56.1.ppc64le.rpm mozilla-nss-sysinit-3.68-3.56.1.ppc64le.rpm mozilla-nss-tools-3.68-3.56.1.ppc64le.rpm libfreebl3-3.68-3.56.1.aarch64.rpm libfreebl3-hmac-3.68-3.56.1.aarch64.rpm libsoftokn3-3.68-3.56.1.aarch64.rpm libsoftokn3-hmac-3.68-3.56.1.aarch64.rpm mozilla-nspr-4.32-3.20.1.aarch64.rpm mozilla-nspr-devel-4.32-3.20.1.aarch64.rpm mozilla-nss-3.68-3.56.1.aarch64.rpm mozilla-nss-certs-3.68-3.56.1.aarch64.rpm mozilla-nss-devel-3.68-3.56.1.aarch64.rpm mozilla-nss-sysinit-3.68-3.56.1.aarch64.rpm mozilla-nss-tools-3.68-3.56.1.aarch64.rpm openSUSE-SLE-15.3-2021-3494 moderate SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issues: - Added pam_faillock to the set of available PAM modules. (jsc#SLE-20638) - Added new file macros.pam on request of systemd. (bsc#1190052) pam-1.3.0-6.47.1.src.rpm pam-1.3.0-6.47.1.x86_64.rpm pam-32bit-1.3.0-6.47.1.x86_64.rpm pam-devel-1.3.0-6.47.1.x86_64.rpm pam-devel-32bit-1.3.0-6.47.1.x86_64.rpm pam-doc-1.3.0-6.47.1.noarch.rpm pam-extra-1.3.0-6.47.1.x86_64.rpm pam-extra-32bit-1.3.0-6.47.1.x86_64.rpm pam-1.3.0-6.47.1.s390x.rpm pam-devel-1.3.0-6.47.1.s390x.rpm pam-extra-1.3.0-6.47.1.s390x.rpm pam-1.3.0-6.47.1.ppc64le.rpm pam-devel-1.3.0-6.47.1.ppc64le.rpm pam-extra-1.3.0-6.47.1.ppc64le.rpm pam-1.3.0-6.47.1.aarch64.rpm pam-devel-1.3.0-6.47.1.aarch64.rpm pam-extra-1.3.0-6.47.1.aarch64.rpm openSUSE-SLE-15.3-2021-2905 important SUSE Updates openSUSE-SLE 15.3 This update for corosync fixes the following issue: - Add 'cancel_hold_on_retransmit' config option on corosync totem (bsc#1189680) - This option allows Corosync to hold the token by representative when there are too many retransmit messages. This allows the network to process increased load without overloading it. The used mechanism is same as described for the hold directive. Some deployments may prefer to never hold token when there is retransmit messages. If so, the option should be set to yes. The default value is no. corosync-2.4.5-12.3.1.src.rpm corosync-2.4.5-12.3.1.x86_64.rpm corosync-qdevice-2.4.5-12.3.1.x86_64.rpm corosync-qnetd-2.4.5-12.3.1.x86_64.rpm corosync-testagents-2.4.5-12.3.1.x86_64.rpm libcfg6-2.4.5-12.3.1.x86_64.rpm libcfg6-32bit-2.4.5-12.3.1.x86_64.rpm libcmap4-2.4.5-12.3.1.x86_64.rpm libcmap4-32bit-2.4.5-12.3.1.x86_64.rpm libcorosync-devel-2.4.5-12.3.1.x86_64.rpm libcorosync_common4-2.4.5-12.3.1.x86_64.rpm libcorosync_common4-32bit-2.4.5-12.3.1.x86_64.rpm libcpg4-2.4.5-12.3.1.x86_64.rpm libcpg4-32bit-2.4.5-12.3.1.x86_64.rpm libquorum5-2.4.5-12.3.1.x86_64.rpm libquorum5-32bit-2.4.5-12.3.1.x86_64.rpm libsam4-2.4.5-12.3.1.x86_64.rpm libsam4-32bit-2.4.5-12.3.1.x86_64.rpm libtotem_pg5-2.4.5-12.3.1.x86_64.rpm libtotem_pg5-32bit-2.4.5-12.3.1.x86_64.rpm libvotequorum8-2.4.5-12.3.1.x86_64.rpm libvotequorum8-32bit-2.4.5-12.3.1.x86_64.rpm corosync-2.4.5-12.3.1.s390x.rpm corosync-qdevice-2.4.5-12.3.1.s390x.rpm corosync-qnetd-2.4.5-12.3.1.s390x.rpm corosync-testagents-2.4.5-12.3.1.s390x.rpm libcfg6-2.4.5-12.3.1.s390x.rpm libcmap4-2.4.5-12.3.1.s390x.rpm libcorosync-devel-2.4.5-12.3.1.s390x.rpm libcorosync_common4-2.4.5-12.3.1.s390x.rpm libcpg4-2.4.5-12.3.1.s390x.rpm libquorum5-2.4.5-12.3.1.s390x.rpm libsam4-2.4.5-12.3.1.s390x.rpm libtotem_pg5-2.4.5-12.3.1.s390x.rpm libvotequorum8-2.4.5-12.3.1.s390x.rpm corosync-2.4.5-12.3.1.ppc64le.rpm corosync-qdevice-2.4.5-12.3.1.ppc64le.rpm corosync-qnetd-2.4.5-12.3.1.ppc64le.rpm corosync-testagents-2.4.5-12.3.1.ppc64le.rpm libcfg6-2.4.5-12.3.1.ppc64le.rpm libcmap4-2.4.5-12.3.1.ppc64le.rpm libcorosync-devel-2.4.5-12.3.1.ppc64le.rpm libcorosync_common4-2.4.5-12.3.1.ppc64le.rpm libcpg4-2.4.5-12.3.1.ppc64le.rpm libquorum5-2.4.5-12.3.1.ppc64le.rpm libsam4-2.4.5-12.3.1.ppc64le.rpm libtotem_pg5-2.4.5-12.3.1.ppc64le.rpm libvotequorum8-2.4.5-12.3.1.ppc64le.rpm corosync-2.4.5-12.3.1.aarch64.rpm corosync-qdevice-2.4.5-12.3.1.aarch64.rpm corosync-qnetd-2.4.5-12.3.1.aarch64.rpm corosync-testagents-2.4.5-12.3.1.aarch64.rpm libcfg6-2.4.5-12.3.1.aarch64.rpm libcmap4-2.4.5-12.3.1.aarch64.rpm libcorosync-devel-2.4.5-12.3.1.aarch64.rpm libcorosync_common4-2.4.5-12.3.1.aarch64.rpm libcpg4-2.4.5-12.3.1.aarch64.rpm libquorum5-2.4.5-12.3.1.aarch64.rpm libsam4-2.4.5-12.3.1.aarch64.rpm libtotem_pg5-2.4.5-12.3.1.aarch64.rpm libvotequorum8-2.4.5-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3183 low SUSE Updates openSUSE-SLE 15.3 This update for lsvpd fixes the following issues: - Drop upstreamed patches that are already fixed in the sources itself. lsvpd-1.7.12-3.12.1.ppc64le.rpm lsvpd-1.7.12-3.12.1.src.rpm openSUSE-SLE-15.3-2021-3331 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: This update contains the Firefox Extended Support Release 91.2.0 ESR. Firefox Extended Support Release 91.2.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2021-45 (bsc#1191332) * CVE-2021-38496: Use-after-free in MessageTask * CVE-2021-38497: Validation message could have been overlaid on another origin * CVE-2021-38498: Use-after-free of nsLanguageAtomService object * CVE-2021-32810: Data race in crossbeam-deque https://github.com/crossbeam-rs/crossbeam/security/advisories/GHSA-pqqp-xmhj-wgcw) * CVE-2021-38500 (bmo#1725854, bmo#1728321) Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 * CVE-2021-38501 (bmo#1685354, bmo#1715755, bmo#1723176) Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 - Fixed crash in FIPS mode (bsc#1190710) * Fixed: Various stability, functionality, and security fixes MFSA 2021-40 (bsc#1190269, bsc#1190274): * CVE-2021-38492: Navigating to `mk:` URL scheme could load Internet Explorer * CVE-2021-38495: Memory safety bugs fixed in Firefox 92 and Firefox ESR 91.1 Firefox Extended Support Release 91.0.1 ESR * Fixed: Fixed an issue causing buttons on the tab bar to be resized when loading certain websites (bug 1704404) * Fixed: Fixed an issue which caused tabs from private windows to be visible in non-private windows when viewing switch-to- tab results in the address bar panel (bug 1720369) * Fixed: Various stability fixes * Fixed: Security fix MFSA 2021-37 (bsc#1189547) * CVE-2021-29991 (bmo#1724896) Header Splitting possible with HTTP/3 Responses Firefox Extended Support Release 91.0 ESR * New: Some of the highlights of the new Extended Support Release are: - A number of user interface changes. For more information, see the Firefox 89 release notes. - Firefox now supports logging into Microsoft, work, and school accounts using Windows single sign-on. Learn more - On Windows, updates can now be applied in the background while Firefox is not running. - Firefox for Windows now offers a new page about:third-party to help identify compatibility issues caused by third-party applications - Version 2 of Firefox's SmartBlock feature further improves private browsing. Third party Facebook scripts are blocked to prevent you from being tracked, but are now automatically loaded "just in time" if you decide to "Log in with Facebook" on any website. - Enhanced the privacy of the Firefox Browser's Private Browsing mode with Total Cookie Protection, which confines cookies to the site where they were created, preventing companis from using cookies to track your browsing across sites. This feature was originally launched in Firefox's ETP Strict mode. - PDF forms now support JavaScript embedded in PDF files. Some PDF forms use JavaScript for validation and other interactive features. - You'll encounter less website breakage in Private Browsing and Strict Enhanced Tracking Protection with SmartBlock, which provides stand-in scripts so that websites load properly. - Improved Print functionality with a cleaner design and better integration with your computer's printer settings. - Firefox now protects you from supercookies, a type of tracker that can stay hidden in your browser and track you online, even after you clear cookies. By isolating supercookies, Firefox prevents them from tracking your web browsing from one site to the next. - Firefox now remembers your preferred location for saved bookmarks, displays the bookmarks toolbar by default on new tabs, and gives you easy access to all of your bookmarks via a toolbar folder. - Native support for macOS devices built with Apple Silicon CPUs brings dramatic performance improvements over the non- native build that was shipped in Firefox 83: Firefox launches over 2.5 times faster and web apps are now twice as responsive (per the SpeedoMeter 2.0 test). If you are on a new Apple device, follow these steps to upgrade to the latest Firefox. - Pinch zooming will now be supported for our users with Windows touchscreen devices and touchpads on Mac devices. Firefox users may now use pinch to zoom on touch-capable devices to zoom in and out of webpages. - We’ve improved functionality and design for a number of Firefox search features: * Selecting a search engine at the bottom of the search panel now enters search mode for that engine, allowing you to see suggestions (if available) for your search terms. The old behavior (immediately performing a search) is available with a shift-click. * When Firefox autocompletes the URL of one of your search engines, you can now search with that engine directly in the address bar by selecting the shortcut in the address bar results. * We’ve added buttons at the bottom of the search panel to allow you to search your bookmarks, open tabs, and history. - Firefox supports AcroForm, which will allow you to fill in, print, and save supported PDF forms and the PDF viewer also has a new fresh look. - For our users in the US and Canada, Firefox can now save, manage, and auto-fill credit card information for you, making shopping on Firefox ever more convenient. - In addition to our default, dark and light themes, with this release, Firefox introduces the Alpenglow theme: a colorful appearance for buttons, menus, and windows. You can update your Firefox themes under settings or preferences. * Changed: Firefox no longer supports Adobe Flash. There is no setting available to re-enable Flash support. * Enterprise: Various bug fixes and new policies have been implemented in the latest version of Firefox. See more details in the Firefox for Enterprise 91 Release Notes. MFSA 2021-33 (bsc#1188891): * CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption * CVE-2021-29981: Live range splitting could have led to conflicting assignments in the JIT * CVE-2021-29988: Memory corruption as a result of incorrect style treatment * CVE-2021-29983: Firefox for Android could get stuck in fullscreen mode * CVE-2021-29984: Incorrect instruction reordering during JIT optimization * CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption * CVE-2021-29987: Users could have been tricked into accepting unwanted permissions on Linux * CVE-2021-29985: Use-after-free media channels * CVE-2021-29982: Single bit data leak due to incorrect JIT optimization and type confusion * CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 * CVE-2021-29990: Memory safety bugs fixed in Firefox 91 rust-cbindgen-0.19.0-1.9.1.src.rpm rust-cbindgen-0.19.0-1.9.1.x86_64.rpm rust-cbindgen-0.19.0-1.9.1.s390x.rpm rust-cbindgen-0.19.0-1.9.1.ppc64le.rpm rust-cbindgen-0.19.0-1.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-2907 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Fixed an issue when SAP Instance fails to detect SAP unit files for 'systemd'. (bsc#1189535) ldirectord-4.8.0+git30.d0077df0-8.11.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.11.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.11.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-2872 important SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2020-36193: Fixed Archive_Tar directory traversal due to inadequate checking of symbolic links (bsc#1189591). php7-7.2.5-4.82.1.src.rpm php7-wddx-7.2.5-4.82.1.x86_64.rpm php7-wddx-7.2.5-4.82.1.s390x.rpm php7-wddx-7.2.5-4.82.1.ppc64le.rpm php7-wddx-7.2.5-4.82.1.aarch64.rpm openSUSE-SLE-15.3-2021-3018 important SUSE Updates openSUSE-SLE 15.3 This update for php7-pear fixes the following issues: - CVE-2020-36193: Fixed Archive_Tar directory traversal due to inadequate checking of symbolic links (bsc#1189591). php7-pear-1.10.21-3.6.1.noarch.rpm php7-pear-1.10.21-3.6.1.src.rpm php7-pecl-1.10.21-3.6.1.noarch.rpm openSUSE-SLE-15.3-2021-3127 moderate SUSE Updates openSUSE-SLE 15.3 This update for gimp fixes the following issues: - Recurse directories when looking for python plugins (bsc#1180362) gimp-2.10.12-3.6.2.src.rpm gimp-plugins-python-2.10.12-3.6.2.x86_64.rpm gimp-plugins-python-2.10.12-3.6.2.s390x.rpm gimp-plugins-python-2.10.12-3.6.2.ppc64le.rpm gimp-plugins-python-2.10.12-3.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-2974 important SUSE Updates openSUSE-SLE 15.3 This update for librdkafka fixes the following issue: - Fixed thread creation on SUSE Linux Enterprise Server 15 SP3. (bsc#1189792) librdkafka-0.11.6-1.6.1.src.rpm librdkafka-devel-0.11.6-1.6.1.x86_64.rpm librdkafka1-0.11.6-1.6.1.x86_64.rpm librdkafka-devel-0.11.6-1.6.1.s390x.rpm librdkafka1-0.11.6-1.6.1.s390x.rpm librdkafka-devel-0.11.6-1.6.1.ppc64le.rpm librdkafka1-0.11.6-1.6.1.ppc64le.rpm librdkafka-devel-0.11.6-1.6.1.aarch64.rpm librdkafka1-0.11.6-1.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-2897 moderate SUSE Updates openSUSE-SLE 15.3 This update for postfix fixes the following issues: - Include "submissions" service in master configuration (bsc#1189684) postfix-3.5.9-5.6.1.src.rpm postfix-3.5.9-5.6.1.x86_64.rpm postfix-bdb-3.5.9-5.6.1.src.rpm postfix-bdb-3.5.9-5.6.1.x86_64.rpm postfix-bdb-lmdb-3.5.9-5.6.1.x86_64.rpm postfix-devel-3.5.9-5.6.1.x86_64.rpm postfix-doc-3.5.9-5.6.1.noarch.rpm postfix-ldap-3.5.9-5.6.1.x86_64.rpm postfix-mysql-3.5.9-5.6.1.x86_64.rpm postfix-postgresql-3.5.9-5.6.1.x86_64.rpm postfix-3.5.9-5.6.1.s390x.rpm postfix-bdb-3.5.9-5.6.1.s390x.rpm postfix-bdb-lmdb-3.5.9-5.6.1.s390x.rpm postfix-devel-3.5.9-5.6.1.s390x.rpm postfix-ldap-3.5.9-5.6.1.s390x.rpm postfix-mysql-3.5.9-5.6.1.s390x.rpm postfix-postgresql-3.5.9-5.6.1.s390x.rpm postfix-3.5.9-5.6.1.ppc64le.rpm postfix-bdb-3.5.9-5.6.1.ppc64le.rpm postfix-bdb-lmdb-3.5.9-5.6.1.ppc64le.rpm postfix-devel-3.5.9-5.6.1.ppc64le.rpm postfix-ldap-3.5.9-5.6.1.ppc64le.rpm postfix-mysql-3.5.9-5.6.1.ppc64le.rpm postfix-postgresql-3.5.9-5.6.1.ppc64le.rpm postfix-3.5.9-5.6.1.aarch64.rpm postfix-bdb-3.5.9-5.6.1.aarch64.rpm postfix-bdb-lmdb-3.5.9-5.6.1.aarch64.rpm postfix-devel-3.5.9-5.6.1.aarch64.rpm postfix-ldap-3.5.9-5.6.1.aarch64.rpm postfix-mysql-3.5.9-5.6.1.aarch64.rpm postfix-postgresql-3.5.9-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3454 moderate SUSE Updates openSUSE-SLE 15.3 This update for krb5 fixes the following issues: - CVE-2021-37750: Fixed KDC null pointer dereference via a FAST inner body that lacks a server field (bsc#1189929). krb5-1.16.3-3.24.1.src.rpm krb5-1.16.3-3.24.1.x86_64.rpm krb5-32bit-1.16.3-3.24.1.x86_64.rpm krb5-client-1.16.3-3.24.1.x86_64.rpm krb5-devel-1.16.3-3.24.1.x86_64.rpm krb5-devel-32bit-1.16.3-3.24.1.x86_64.rpm krb5-plugin-kdb-ldap-1.16.3-3.24.1.x86_64.rpm krb5-plugin-preauth-otp-1.16.3-3.24.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.24.1.x86_64.rpm krb5-server-1.16.3-3.24.1.x86_64.rpm krb5-1.16.3-3.24.1.s390x.rpm krb5-client-1.16.3-3.24.1.s390x.rpm krb5-devel-1.16.3-3.24.1.s390x.rpm krb5-plugin-kdb-ldap-1.16.3-3.24.1.s390x.rpm krb5-plugin-preauth-otp-1.16.3-3.24.1.s390x.rpm krb5-plugin-preauth-pkinit-1.16.3-3.24.1.s390x.rpm krb5-server-1.16.3-3.24.1.s390x.rpm krb5-1.16.3-3.24.1.ppc64le.rpm krb5-client-1.16.3-3.24.1.ppc64le.rpm krb5-devel-1.16.3-3.24.1.ppc64le.rpm krb5-plugin-kdb-ldap-1.16.3-3.24.1.ppc64le.rpm krb5-plugin-preauth-otp-1.16.3-3.24.1.ppc64le.rpm krb5-plugin-preauth-pkinit-1.16.3-3.24.1.ppc64le.rpm krb5-server-1.16.3-3.24.1.ppc64le.rpm krb5-1.16.3-3.24.1.aarch64.rpm krb5-client-1.16.3-3.24.1.aarch64.rpm krb5-devel-1.16.3-3.24.1.aarch64.rpm krb5-plugin-kdb-ldap-1.16.3-3.24.1.aarch64.rpm krb5-plugin-preauth-otp-1.16.3-3.24.1.aarch64.rpm krb5-plugin-preauth-pkinit-1.16.3-3.24.1.aarch64.rpm krb5-server-1.16.3-3.24.1.aarch64.rpm openSUSE-SLE-15.3-2021-3325 moderate SUSE Updates openSUSE-SLE 15.3 This update for rabbitmq-server fixes the following issues: - CVE-2021-32718: Fixed improper neutralization of script-related HTML tags in a web page (basic XSS) in management UI (bsc#1187818). - CVE-2021-32719: Fixed improper neutralization of script-related HTML tags in a web page (basic XSS) in federation management plugin (bsc#1187819). - CVE-2021-22116: Fixed improper input validation may lead to DoS (bsc#1186203). - Use /run instead of /var/run in tmpfiles.d configuration (bsc#1185075). erlang-rabbitmq-client-3.8.11-3.3.3.x86_64.rpm rabbitmq-server-3.8.11-3.3.3.src.rpm rabbitmq-server-3.8.11-3.3.3.x86_64.rpm rabbitmq-server-plugins-3.8.11-3.3.3.x86_64.rpm erlang-rabbitmq-client-3.8.11-3.3.3.s390x.rpm rabbitmq-server-3.8.11-3.3.3.s390x.rpm rabbitmq-server-plugins-3.8.11-3.3.3.s390x.rpm erlang-rabbitmq-client-3.8.11-3.3.3.ppc64le.rpm rabbitmq-server-3.8.11-3.3.3.ppc64le.rpm rabbitmq-server-plugins-3.8.11-3.3.3.ppc64le.rpm erlang-rabbitmq-client-3.8.11-3.3.3.aarch64.rpm rabbitmq-server-3.8.11-3.3.3.aarch64.rpm rabbitmq-server-plugins-3.8.11-3.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-3052 moderate SUSE Updates openSUSE-SLE 15.3 This update for lshw fixes the following issues: - Update to version B.02.19.2+git.20210619 (jsc#SLE-19399) lshw-B.02.19.2+git.20210619-3.9.1.src.rpm lshw-B.02.19.2+git.20210619-3.9.1.x86_64.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.x86_64.rpm lshw-lang-B.02.19.2+git.20210619-3.9.1.noarch.rpm lshw-B.02.19.2+git.20210619-3.9.1.s390x.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.s390x.rpm lshw-B.02.19.2+git.20210619-3.9.1.ppc64le.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.ppc64le.rpm lshw-B.02.19.2+git.20210619-3.9.1.aarch64.rpm lshw-gui-B.02.19.2+git.20210619-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3161 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Fix wrong relative paths resolution with Jinja renderer when importing subdirectories - Don't pass 'shell="/sbin/nologin"' to 'onlyif/unless' checks (bsc#1188259) - Add missing 'aarch64' to rpm package architectures - Fix failing tests for 'CMDRunRedirect' - Fix failing unit test for systemd - Fix error handling in openscap module (bsc#1188647) - Better handling of bad public keys from minions (bsc#1189040) - Add standalone formulas configuration for salt minion and remove salt-master requirement (bsc#1168327) python3-salt-3002.2-50.1.12.1.x86_64.rpm True salt-3002.2-50.1.12.1.src.rpm True salt-3002.2-50.1.12.1.x86_64.rpm True salt-api-3002.2-50.1.12.1.x86_64.rpm True salt-bash-completion-3002.2-50.1.12.1.noarch.rpm True salt-cloud-3002.2-50.1.12.1.x86_64.rpm True salt-doc-3002.2-50.1.12.1.x86_64.rpm True salt-fish-completion-3002.2-50.1.12.1.noarch.rpm True salt-master-3002.2-50.1.12.1.x86_64.rpm True salt-minion-3002.2-50.1.12.1.x86_64.rpm True salt-proxy-3002.2-50.1.12.1.x86_64.rpm True salt-ssh-3002.2-50.1.12.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.x86_64.rpm True salt-syndic-3002.2-50.1.12.1.x86_64.rpm True salt-transactional-update-3002.2-50.1.12.1.x86_64.rpm True salt-zsh-completion-3002.2-50.1.12.1.noarch.rpm True python3-salt-3002.2-50.1.12.1.s390x.rpm True salt-3002.2-50.1.12.1.s390x.rpm True salt-api-3002.2-50.1.12.1.s390x.rpm True salt-cloud-3002.2-50.1.12.1.s390x.rpm True salt-doc-3002.2-50.1.12.1.s390x.rpm True salt-master-3002.2-50.1.12.1.s390x.rpm True salt-minion-3002.2-50.1.12.1.s390x.rpm True salt-proxy-3002.2-50.1.12.1.s390x.rpm True salt-ssh-3002.2-50.1.12.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.s390x.rpm True salt-syndic-3002.2-50.1.12.1.s390x.rpm True salt-transactional-update-3002.2-50.1.12.1.s390x.rpm True python3-salt-3002.2-50.1.12.1.ppc64le.rpm True salt-3002.2-50.1.12.1.ppc64le.rpm True salt-api-3002.2-50.1.12.1.ppc64le.rpm True salt-cloud-3002.2-50.1.12.1.ppc64le.rpm True salt-doc-3002.2-50.1.12.1.ppc64le.rpm True salt-master-3002.2-50.1.12.1.ppc64le.rpm True salt-minion-3002.2-50.1.12.1.ppc64le.rpm True salt-proxy-3002.2-50.1.12.1.ppc64le.rpm True salt-ssh-3002.2-50.1.12.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.ppc64le.rpm True salt-syndic-3002.2-50.1.12.1.ppc64le.rpm True salt-transactional-update-3002.2-50.1.12.1.ppc64le.rpm True python3-salt-3002.2-50.1.12.1.aarch64.rpm True salt-3002.2-50.1.12.1.aarch64.rpm True salt-api-3002.2-50.1.12.1.aarch64.rpm True salt-cloud-3002.2-50.1.12.1.aarch64.rpm True salt-doc-3002.2-50.1.12.1.aarch64.rpm True salt-master-3002.2-50.1.12.1.aarch64.rpm True salt-minion-3002.2-50.1.12.1.aarch64.rpm True salt-proxy-3002.2-50.1.12.1.aarch64.rpm True salt-ssh-3002.2-50.1.12.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.12.1.aarch64.rpm True salt-syndic-3002.2-50.1.12.1.aarch64.rpm True salt-transactional-update-3002.2-50.1.12.1.aarch64.rpm True openSUSE-SLE-15.3-2021-2932 critical SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - Bump version: 2.0.30 → 2.0.31 - Remove SMT references (#223) SMT is no longer supported by SUSE and users are encouraged to migrate to RMT. We want users to use RMT servers, or SCC as targets for receiving system updates. Also improve requirements description and make the requirements for the repository server more explicit w.r.t. availability of the proper channels. - Add comment for lower case and reflect that on test - Update env and log it - In case of preserving the proxy file add those settings to the environment before starting the migration - Log environment variables, this information is helpful if a proxy is set (see bsc#1188594) suse-migration-services-2.0.31-1.40.1.noarch.rpm suse-migration-services-2.0.31-1.40.1.src.rpm openSUSE-SLE-15.3-2021-3229 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Fixed handling of the "final_reboot" and "final_halt" options, add the custom scripts only once and avoid displaying a warning popup during installation. (bsc#1188356) - Copy the init-scripts to the right location during 1st stage. (bsc#1188360) - Ensure closing notification pop-ups even if a user script was not executed to prevent "No widget with ID ..." error pop-up. (bsc#1188930, bsc#1188716) autoyast2-4.3.89-3.22.1.noarch.rpm autoyast2-4.3.89-3.22.1.src.rpm autoyast2-installation-4.3.89-3.22.1.noarch.rpm openSUSE-SLE-15.3-2021-3015 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - cls/rgw: look for plane entries in non-ascii plain namespace too (bsc#1184517) - rgw: check object locks in multi-object delete (bsc#1185246) - mgr/zabbix: adapt zabbix_sender default path (bsc#1186348) - mgr/cephadm: pass --container-init to "cephadm deploy" if specified (bsc#1188979) - mgr/dashboard: Downstream branding: Adapt latest upstream changes to branded navigation component (bsc#1189173) - qa/tasks/salt_manager: allow gatherlogs for files in subdir - qa/tasks/ceph_salt: gather /var/log/ceph/cephadm.out - mgr/zabbix: adapt zabbix_sender default path (bsc#1186348) - Revert "cephadm: default container_init to False" (bsc#1188979) - mgr/cephadm: alias rgw-nfs -> nfs (bsc#1181291) - mgr/cephadm: on ssh connection error, advice chmod 0600 (bsc#1183561) - Update _constraints: only honor physical memory, not 'any memory' (e.g. swap). ceph-15.2.14.84+gb6e5642e260-3.31.1.src.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-grafana-dashboards-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-mgr-cephadm-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-dashboard-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-k8sevents-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-modules-core-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mgr-rook-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-prometheus-alerts-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-test-15.2.14.84+gb6e5642e260-3.31.1.src.rpm ceph-test-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm cephadm-15.2.14.84+gb6e5642e260-3.31.1.noarch.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.x86_64.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.s390x.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.ppc64le.rpm ceph-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-base-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-common-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-fuse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-immutable-object-cache-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mds-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mgr-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-mon-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-osd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm ceph-radosgw-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm cephfs-shell-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libcephfs-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libcephfs2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librados-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librados2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm libradospp-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librbd-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librbd1-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librgw-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm librgw2-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-ceph-argparse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-ceph-common-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-cephfs-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rados-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rbd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm python3-rgw-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rados-objclass-devel-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-fuse-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-mirror-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm rbd-nbd-15.2.14.84+gb6e5642e260-3.31.1.aarch64.rpm openSUSE-SLE-15.3-2021-2966 low SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - CVE-2021-3712: This is an update for the incomplete fix for CVE-2021-3712. Read buffer overruns processing ASN.1 strings (bsc#1189521). libopenssl-1_1-devel-1.1.1d-11.30.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.30.1.x86_64.rpm openssl-1_1-1.1.1d-11.30.1.src.rpm openssl-1_1-1.1.1d-11.30.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.30.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.s390x.rpm libopenssl1_1-1.1.1d-11.30.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.s390x.rpm openssl-1_1-1.1.1d-11.30.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.30.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.ppc64le.rpm openssl-1_1-1.1.1d-11.30.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.30.1.aarch64.rpm libopenssl1_1-1.1.1d-11.30.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.30.1.aarch64.rpm openssl-1_1-1.1.1d-11.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-2994 low SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - CVE-2021-3712: This is an update for the incomplete fix for CVE-2021-3712. Read buffer overruns processing ASN.1 strings (bsc#1189521). libopenssl-1_0_0-devel-1.0.2p-3.43.1.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl10-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-1.0.2p-3.43.1.src.rpm openssl-1_0_0-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.43.1.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.s390x.rpm libopenssl10-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.s390x.rpm openssl-1_0_0-1.0.2p-3.43.1.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.ppc64le.rpm libopenssl10-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.ppc64le.rpm openssl-1_0_0-1.0.2p-3.43.1.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.43.1.aarch64.rpm libopenssl10-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.43.1.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.43.1.aarch64.rpm openssl-1_0_0-1.0.2p-3.43.1.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.43.1.aarch64.rpm openSUSE-SLE-15.3-2021-2962 critical SUSE Updates openSUSE-SLE 15.3 This update for runc fixes the following issues: - Fixed an issue when toolbox container fails to start. (bsc#1189743) runc-1.0.0~rc93-1.17.1.src.rpm runc-1.0.0~rc93-1.17.1.x86_64.rpm runc-1.0.0~rc93-1.17.1.s390x.rpm runc-1.0.0~rc93-1.17.1.ppc64le.rpm runc-1.0.0~rc93-1.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3186 moderate SUSE Updates openSUSE-SLE 15.3 This update for gtk3 fixes the following issue: - Ensure printer entries from Avahi are usable (bsc#1094486, bsc#1189238). gettext-its-gtk3-3.24.20-3.6.1.x86_64.rpm gtk3-3.24.20-3.6.1.src.rpm gtk3-branding-upstream-3.24.20-3.6.1.noarch.rpm gtk3-data-3.24.20-3.6.1.noarch.rpm gtk3-devel-3.24.20-3.6.1.x86_64.rpm gtk3-devel-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-devel-doc-3.24.20-3.6.1.x86_64.rpm gtk3-doc-3.24.20-3.6.1.src.rpm gtk3-immodule-amharic-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-amharic-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-broadway-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-inuktitut-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-multipress-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-multipress-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-thai-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-thai-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-tigrigna-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-vietnamese-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-wayland-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-wayland-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-xim-3.24.20-3.6.1.x86_64.rpm gtk3-immodule-xim-32bit-3.24.20-3.6.1.x86_64.rpm gtk3-lang-3.24.20-3.6.1.noarch.rpm gtk3-schema-3.24.20-3.6.1.noarch.rpm gtk3-tools-3.24.20-3.6.1.x86_64.rpm gtk3-tools-32bit-3.24.20-3.6.1.x86_64.rpm libgtk-3-0-3.24.20-3.6.1.x86_64.rpm libgtk-3-0-32bit-3.24.20-3.6.1.x86_64.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.x86_64.rpm gettext-its-gtk3-3.24.20-3.6.1.s390x.rpm gtk3-devel-3.24.20-3.6.1.s390x.rpm gtk3-devel-doc-3.24.20-3.6.1.s390x.rpm gtk3-immodule-amharic-3.24.20-3.6.1.s390x.rpm gtk3-immodule-broadway-3.24.20-3.6.1.s390x.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.s390x.rpm gtk3-immodule-multipress-3.24.20-3.6.1.s390x.rpm gtk3-immodule-thai-3.24.20-3.6.1.s390x.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.s390x.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.s390x.rpm gtk3-immodule-wayland-3.24.20-3.6.1.s390x.rpm gtk3-immodule-xim-3.24.20-3.6.1.s390x.rpm gtk3-tools-3.24.20-3.6.1.s390x.rpm libgtk-3-0-3.24.20-3.6.1.s390x.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.s390x.rpm gettext-its-gtk3-3.24.20-3.6.1.ppc64le.rpm gtk3-devel-3.24.20-3.6.1.ppc64le.rpm gtk3-devel-doc-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-amharic-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-broadway-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-multipress-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-thai-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-wayland-3.24.20-3.6.1.ppc64le.rpm gtk3-immodule-xim-3.24.20-3.6.1.ppc64le.rpm gtk3-tools-3.24.20-3.6.1.ppc64le.rpm libgtk-3-0-3.24.20-3.6.1.ppc64le.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.ppc64le.rpm gettext-its-gtk3-3.24.20-3.6.1.aarch64.rpm gtk3-devel-3.24.20-3.6.1.aarch64.rpm gtk3-devel-doc-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-amharic-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-broadway-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-inuktitut-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-multipress-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-thai-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-tigrigna-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-vietnamese-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-wayland-3.24.20-3.6.1.aarch64.rpm gtk3-immodule-xim-3.24.20-3.6.1.aarch64.rpm gtk3-tools-3.24.20-3.6.1.aarch64.rpm libgtk-3-0-3.24.20-3.6.1.aarch64.rpm typelib-1_0-Gtk-3_0-3.24.20-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3005 important SUSE Updates openSUSE-SLE 15.3 This update for libaom fixes the following issues: - CVE-2021-30475: Fixed buffer overflow in aom_dsp/noise_model.c (bsc#1189497). aom-tools-1.0.0-3.3.1.x86_64.rpm libaom-1.0.0-3.3.1.src.rpm libaom-devel-1.0.0-3.3.1.x86_64.rpm libaom-devel-doc-1.0.0-3.3.1.noarch.rpm libaom0-1.0.0-3.3.1.x86_64.rpm libaom0-32bit-1.0.0-3.3.1.x86_64.rpm aom-tools-1.0.0-3.3.1.s390x.rpm libaom-devel-1.0.0-3.3.1.s390x.rpm libaom0-1.0.0-3.3.1.s390x.rpm aom-tools-1.0.0-3.3.1.ppc64le.rpm libaom-devel-1.0.0-3.3.1.ppc64le.rpm libaom0-1.0.0-3.3.1.ppc64le.rpm aom-tools-1.0.0-3.3.1.aarch64.rpm libaom-devel-1.0.0-3.3.1.aarch64.rpm libaom0-1.0.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3202 moderate SUSE Updates openSUSE-SLE 15.3 This update for linuxptp fixes the following issues: - CVE-2021-3570: Fixed messageLength validation field of incoming messages (bsc#1187646). linuxptp-3.1.1-3.3.1.src.rpm linuxptp-3.1.1-3.3.1.x86_64.rpm linuxptp-3.1.1-3.3.1.s390x.rpm linuxptp-3.1.1-3.3.1.ppc64le.rpm linuxptp-3.1.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-2975 moderate SUSE Updates openSUSE-SLE 15.3 This update for haproxy fixes the following issues: - CVE-2021-40346: Fixed request smuggling vulnerability in HTX (bsc#1189877). haproxy-2.0.14-11.11.1.src.rpm haproxy-2.0.14-11.11.1.x86_64.rpm haproxy-2.0.14-11.11.1.s390x.rpm haproxy-2.0.14-11.11.1.ppc64le.rpm haproxy-2.0.14-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3004 important SUSE Updates openSUSE-SLE 15.3 This update for libtpms fixes the following issues: - CVE-2021-3746: Fixed out-of-bounds access via specially crafted TPM 2 command packets (bsc#1189935). libtpms-0.8.2-3.3.1.src.rpm libtpms-devel-0.8.2-3.3.1.x86_64.rpm libtpms0-0.8.2-3.3.1.x86_64.rpm libtpms-devel-0.8.2-3.3.1.s390x.rpm libtpms0-0.8.2-3.3.1.s390x.rpm libtpms-devel-0.8.2-3.3.1.ppc64le.rpm libtpms0-0.8.2-3.3.1.ppc64le.rpm libtpms-devel-0.8.2-3.3.1.aarch64.rpm libtpms0-0.8.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3201 moderate SUSE Updates openSUSE-SLE 15.3 This update for hivex fixes the following issues: - CVE-2021-3622: Fixed stack overflow due to recursive call of _get_children() (bsc#1189060). hivex-1.3.14-5.6.1.src.rpm hivex-1.3.14-5.6.1.x86_64.rpm hivex-devel-1.3.14-5.6.1.x86_64.rpm hivex-lang-1.3.14-5.6.1.noarch.rpm libhivex0-1.3.14-5.6.1.x86_64.rpm ocaml-hivex-1.3.14-5.6.1.x86_64.rpm ocaml-hivex-devel-1.3.14-5.6.1.x86_64.rpm perl-Win-Hivex-1.3.14-5.6.1.x86_64.rpm python-hivex-1.3.14-5.6.1.x86_64.rpm hivex-1.3.14-5.6.1.s390x.rpm hivex-devel-1.3.14-5.6.1.s390x.rpm libhivex0-1.3.14-5.6.1.s390x.rpm ocaml-hivex-1.3.14-5.6.1.s390x.rpm ocaml-hivex-devel-1.3.14-5.6.1.s390x.rpm perl-Win-Hivex-1.3.14-5.6.1.s390x.rpm python-hivex-1.3.14-5.6.1.s390x.rpm hivex-1.3.14-5.6.1.ppc64le.rpm hivex-devel-1.3.14-5.6.1.ppc64le.rpm libhivex0-1.3.14-5.6.1.ppc64le.rpm ocaml-hivex-1.3.14-5.6.1.ppc64le.rpm ocaml-hivex-devel-1.3.14-5.6.1.ppc64le.rpm perl-Win-Hivex-1.3.14-5.6.1.ppc64le.rpm python-hivex-1.3.14-5.6.1.ppc64le.rpm hivex-1.3.14-5.6.1.aarch64.rpm hivex-devel-1.3.14-5.6.1.aarch64.rpm libhivex0-1.3.14-5.6.1.aarch64.rpm ocaml-hivex-1.3.14-5.6.1.aarch64.rpm ocaml-hivex-devel-1.3.14-5.6.1.aarch64.rpm perl-Win-Hivex-1.3.14-5.6.1.aarch64.rpm python-hivex-1.3.14-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3194 important SUSE Updates openSUSE-SLE 15.3 This update for grilo fixes the following issues: - CVE-2021-39365: Fixed missing TLS certificate verification (bsc#1189839). grilo-0.3.12-3.3.1.src.rpm grilo-devel-0.3.12-3.3.1.x86_64.rpm grilo-lang-0.3.12-3.3.1.noarch.rpm grilo-tools-0.3.12-3.3.1.x86_64.rpm libgrilo-0_3-0-0.3.12-3.3.1.x86_64.rpm libgrlnet-0_3-0-0.3.12-3.3.1.x86_64.rpm libgrlpls-0_3-0-0.3.12-3.3.1.x86_64.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.x86_64.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.x86_64.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.x86_64.rpm grilo-devel-0.3.12-3.3.1.s390x.rpm grilo-tools-0.3.12-3.3.1.s390x.rpm libgrilo-0_3-0-0.3.12-3.3.1.s390x.rpm libgrlnet-0_3-0-0.3.12-3.3.1.s390x.rpm libgrlpls-0_3-0-0.3.12-3.3.1.s390x.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.s390x.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.s390x.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.s390x.rpm grilo-devel-0.3.12-3.3.1.ppc64le.rpm grilo-tools-0.3.12-3.3.1.ppc64le.rpm libgrilo-0_3-0-0.3.12-3.3.1.ppc64le.rpm libgrlnet-0_3-0-0.3.12-3.3.1.ppc64le.rpm libgrlpls-0_3-0-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.ppc64le.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.ppc64le.rpm grilo-devel-0.3.12-3.3.1.aarch64.rpm grilo-tools-0.3.12-3.3.1.aarch64.rpm libgrilo-0_3-0-0.3.12-3.3.1.aarch64.rpm libgrlnet-0_3-0-0.3.12-3.3.1.aarch64.rpm libgrlpls-0_3-0-0.3.12-3.3.1.aarch64.rpm typelib-1_0-Grl-0_3-0.3.12-3.3.1.aarch64.rpm typelib-1_0-GrlNet-0_3-0.3.12-3.3.1.aarch64.rpm typelib-1_0-GrlPls-0_3-0.3.12-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3169 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.2.2 Proxy and Server: ansible: - ansible and ansible-doc are added to SUSE Manager Proxy as L2 supported golang-github-prometheus-alertmanager: - golang-github-prometheus-alertmanager is added to SUSE Manager Proxy as L3 supported python-python-memcached: - python-python-memcached is added to SUSE Manager Proxy as L3 supported python-redis: - python-redis is added to SUSE Manager Proxy as L3 supported system-user-prometheus: - system-user-prometheus is added to SUSE Manager Proxy as L3 supported ansible-2.9.21-1.7.1.noarch.rpm ansible-2.9.21-1.7.1.src.rpm ansible-doc-2.9.21-1.7.1.noarch.rpm ansible-test-2.9.21-1.7.1.noarch.rpm python-python-memcached-1.59-3.7.1.src.rpm python-redis-3.4.1-3.5.1.src.rpm python2-python-memcached-1.59-3.7.1.noarch.rpm python2-redis-3.4.1-3.5.1.noarch.rpm python3-python-memcached-1.59-3.7.1.noarch.rpm python3-redis-3.4.1-3.5.1.noarch.rpm system-user-prometheus-1.0.0-3.10.1.noarch.rpm system-user-prometheus-1.0.0-3.10.1.src.rpm openSUSE-SLE-15.3-2021-3168 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following package to SUSE Manager 4.2.2 Proxy python-pyvmomi: - python-pyvmomi is added to SUSE Manager Proxy as L3 supported. python-pyvmomi-6.7.3-3.2.1.src.rpm python2-pyvmomi-6.7.3-3.2.1.noarch.rpm python3-pyvmomi-6.7.3-3.2.1.noarch.rpm openSUSE-SLE-15.3-2021-3166 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following package to SUSE Manager 4.2.2 Proxy golang-github-prometheus-prometheus: - golang-github-prometheus-prometheus is added to SUSE Manager Proxy as L3 supported. golang-github-prometheus-prometheus-2.27.1-3.10.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3211 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2021-3672: Fixed missing input validation on hostnames (bsc#1188881). - CVE-2021-22931: Fixed improper handling of untypical characters in domain names (bsc#1189370). - CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) - CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) - CVE-2021-22930: Fixed use after free on close http2 on stream canceling (bsc#1188917). nodejs14-14.17.5-5.15.5.src.rpm nodejs14-14.17.5-5.15.5.x86_64.rpm nodejs14-devel-14.17.5-5.15.5.x86_64.rpm nodejs14-docs-14.17.5-5.15.5.noarch.rpm npm14-14.17.5-5.15.5.x86_64.rpm nodejs14-14.17.5-5.15.5.s390x.rpm nodejs14-devel-14.17.5-5.15.5.s390x.rpm npm14-14.17.5-5.15.5.s390x.rpm nodejs14-14.17.5-5.15.5.ppc64le.rpm nodejs14-devel-14.17.5-5.15.5.ppc64le.rpm npm14-14.17.5-5.15.5.ppc64le.rpm nodejs14-14.17.5-5.15.5.aarch64.rpm nodejs14-devel-14.17.5-5.15.5.aarch64.rpm npm14-14.17.5-5.15.5.aarch64.rpm openSUSE-SLE-15.3-2021-3255 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - CVE-2021-3677: Fixed memory disclosure in certain queries (bsc#1189748). - Fixed build with llvm12 on s390x (bsc#1185952). - Re-enabled icu for PostgreSQL 10 (bsc#1179945). - Made the dependency of postgresqlXX-server-devel on llvm and clang optional (bsc#1187751). - llvm12 breaks PostgreSQL 11 and 12 on s390x. Use llvm11 as a workaround (bsc#1185952). libecpg6-13.4-5.16.2.x86_64.rpm libecpg6-32bit-13.4-5.16.2.x86_64.rpm libpq5-13.4-5.16.2.x86_64.rpm libpq5-32bit-13.4-5.16.2.x86_64.rpm postgresql13-13.4-5.16.1.src.rpm postgresql13-13.4-5.16.2.src.rpm postgresql13-13.4-5.16.2.x86_64.rpm postgresql13-contrib-13.4-5.16.2.x86_64.rpm postgresql13-devel-13.4-5.16.2.x86_64.rpm postgresql13-docs-13.4-5.16.2.noarch.rpm postgresql13-llvmjit-13.4-5.16.2.x86_64.rpm postgresql13-plperl-13.4-5.16.2.x86_64.rpm postgresql13-plpython-13.4-5.16.2.x86_64.rpm postgresql13-pltcl-13.4-5.16.2.x86_64.rpm postgresql13-server-13.4-5.16.2.x86_64.rpm postgresql13-server-devel-13.4-5.16.2.x86_64.rpm postgresql13-test-13.4-5.16.2.x86_64.rpm libecpg6-13.4-5.16.2.s390x.rpm libpq5-13.4-5.16.2.s390x.rpm postgresql13-13.4-5.16.2.s390x.rpm postgresql13-contrib-13.4-5.16.2.s390x.rpm postgresql13-devel-13.4-5.16.2.s390x.rpm postgresql13-llvmjit-13.4-5.16.2.s390x.rpm postgresql13-plperl-13.4-5.16.2.s390x.rpm postgresql13-plpython-13.4-5.16.2.s390x.rpm postgresql13-pltcl-13.4-5.16.2.s390x.rpm postgresql13-server-13.4-5.16.2.s390x.rpm postgresql13-server-devel-13.4-5.16.2.s390x.rpm postgresql13-test-13.4-5.16.2.s390x.rpm libecpg6-13.4-5.16.2.ppc64le.rpm libpq5-13.4-5.16.2.ppc64le.rpm postgresql13-13.4-5.16.2.ppc64le.rpm postgresql13-contrib-13.4-5.16.2.ppc64le.rpm postgresql13-devel-13.4-5.16.2.ppc64le.rpm postgresql13-llvmjit-13.4-5.16.2.ppc64le.rpm postgresql13-plperl-13.4-5.16.2.ppc64le.rpm postgresql13-plpython-13.4-5.16.2.ppc64le.rpm postgresql13-pltcl-13.4-5.16.2.ppc64le.rpm postgresql13-server-13.4-5.16.2.ppc64le.rpm postgresql13-server-devel-13.4-5.16.2.ppc64le.rpm postgresql13-test-13.4-5.16.2.ppc64le.rpm libecpg6-13.4-5.16.2.aarch64.rpm libpq5-13.4-5.16.2.aarch64.rpm postgresql13-13.4-5.16.2.aarch64.rpm postgresql13-contrib-13.4-5.16.2.aarch64.rpm postgresql13-devel-13.4-5.16.2.aarch64.rpm postgresql13-llvmjit-13.4-5.16.2.aarch64.rpm postgresql13-plperl-13.4-5.16.2.aarch64.rpm postgresql13-plpython-13.4-5.16.2.aarch64.rpm postgresql13-pltcl-13.4-5.16.2.aarch64.rpm postgresql13-server-13.4-5.16.2.aarch64.rpm postgresql13-server-devel-13.4-5.16.2.aarch64.rpm postgresql13-test-13.4-5.16.2.aarch64.rpm openSUSE-SLE-15.3-2021-3256 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: - CVE-2021-3677: Fixed memory disclosure in certain queries (bsc#1189748). - Fixed build with llvm12 on s390x (bsc#1185952). - Re-enabled icu for PostgreSQL 10 (bsc#1179945). - Made the dependency of postgresqlXX-server-devel on llvm and clang optional (bsc#1187751). - llvm12 breaks PostgreSQL 11 and 12 on s390x. Use llvm11 as a workaround (bsc#1185952). postgresql12-12.8-8.23.2.src.rpm postgresql12-12.8-8.23.2.x86_64.rpm postgresql12-contrib-12.8-8.23.2.x86_64.rpm postgresql12-devel-12.8-8.23.2.x86_64.rpm postgresql12-docs-12.8-8.23.2.noarch.rpm postgresql12-llvmjit-12.8-8.23.2.x86_64.rpm postgresql12-plperl-12.8-8.23.2.x86_64.rpm postgresql12-plpython-12.8-8.23.2.x86_64.rpm postgresql12-pltcl-12.8-8.23.2.x86_64.rpm postgresql12-server-12.8-8.23.2.x86_64.rpm postgresql12-server-devel-12.8-8.23.2.x86_64.rpm postgresql12-test-12.8-8.23.2.x86_64.rpm postgresql12-12.8-8.23.2.s390x.rpm postgresql12-contrib-12.8-8.23.2.s390x.rpm postgresql12-devel-12.8-8.23.2.s390x.rpm postgresql12-llvmjit-12.8-8.23.2.s390x.rpm postgresql12-plperl-12.8-8.23.2.s390x.rpm postgresql12-plpython-12.8-8.23.2.s390x.rpm postgresql12-pltcl-12.8-8.23.2.s390x.rpm postgresql12-server-12.8-8.23.2.s390x.rpm postgresql12-server-devel-12.8-8.23.2.s390x.rpm postgresql12-test-12.8-8.23.2.s390x.rpm postgresql12-12.8-8.23.2.ppc64le.rpm postgresql12-contrib-12.8-8.23.2.ppc64le.rpm postgresql12-devel-12.8-8.23.2.ppc64le.rpm postgresql12-llvmjit-12.8-8.23.2.ppc64le.rpm postgresql12-plperl-12.8-8.23.2.ppc64le.rpm postgresql12-plpython-12.8-8.23.2.ppc64le.rpm postgresql12-pltcl-12.8-8.23.2.ppc64le.rpm postgresql12-server-12.8-8.23.2.ppc64le.rpm postgresql12-server-devel-12.8-8.23.2.ppc64le.rpm postgresql12-test-12.8-8.23.2.ppc64le.rpm postgresql12-12.8-8.23.2.aarch64.rpm postgresql12-contrib-12.8-8.23.2.aarch64.rpm postgresql12-devel-12.8-8.23.2.aarch64.rpm postgresql12-llvmjit-12.8-8.23.2.aarch64.rpm postgresql12-plperl-12.8-8.23.2.aarch64.rpm postgresql12-plpython-12.8-8.23.2.aarch64.rpm postgresql12-pltcl-12.8-8.23.2.aarch64.rpm postgresql12-server-12.8-8.23.2.aarch64.rpm postgresql12-server-devel-12.8-8.23.2.aarch64.rpm postgresql12-test-12.8-8.23.2.aarch64.rpm openSUSE-SLE-15.3-2021-2971 important SUSE Updates openSUSE-SLE 15.3 This update for ntfs-3g_ntfsprogs fixes the following issues: Update to version 2021.8.22 (bsc#1189720): * Fixed compile error when building with libfuse < 2.8.0 * Fixed obsolete macros in configure.ac * Signalled support of UTIME_OMIT to external libfuse2 * Fixed an improper macro usage in ntfscp.c * Updated the repository change in the README * Fixed vulnerability threats caused by maliciously tampered NTFS partitions * Security fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE_2021-39254, CVE-2021-39255, CVE-2021-39256, CVE-2021-39257, CVE-2021-39258, CVE-2021-39259, CVE-2021-39260, CVE-2021-39261, CVE-2021-39262, CVE-2021-39263. - Library soversion is now 89 * Changes in version 2017.3.23 * Delegated processing of special reparse points to external plugins * Allowed kernel cacheing by lowntfs-3g when not using Posix ACLs * Enabled fallback to read-only mount when the volume is hibernated * Made a full check for whether an extended attribute is allowed * Moved secaudit and usermap to ntfsprogs (now ntfssecaudit and ntfsusermap) * Enabled encoding broken UTF-16 into broken UTF-8 * Autoconfigured selecting <sys/sysmacros.h> vs <sys/mkdev> * Allowed using the full library API on systems without extended attributes support * Fixed DISABLE_PLUGINS as the condition for not using plugins * Corrected validation of multi sector transfer protected records * Denied creating/removing files from $Extend * Returned the size of locale encoded target as the size of symlinks libntfs-3g-devel-2021.8.22-3.8.1.x86_64.rpm libntfs-3g87-2021.8.22-3.8.1.x86_64.rpm ntfs-3g-2021.8.22-3.8.1.x86_64.rpm ntfs-3g_ntfsprogs-2021.8.22-3.8.1.src.rpm ntfsprogs-2021.8.22-3.8.1.x86_64.rpm ntfsprogs-extra-2021.8.22-3.8.1.x86_64.rpm libntfs-3g-devel-2021.8.22-3.8.1.s390x.rpm libntfs-3g87-2021.8.22-3.8.1.s390x.rpm ntfs-3g-2021.8.22-3.8.1.s390x.rpm ntfsprogs-2021.8.22-3.8.1.s390x.rpm ntfsprogs-extra-2021.8.22-3.8.1.s390x.rpm libntfs-3g-devel-2021.8.22-3.8.1.ppc64le.rpm libntfs-3g87-2021.8.22-3.8.1.ppc64le.rpm ntfs-3g-2021.8.22-3.8.1.ppc64le.rpm ntfsprogs-2021.8.22-3.8.1.ppc64le.rpm ntfsprogs-extra-2021.8.22-3.8.1.ppc64le.rpm libntfs-3g-devel-2021.8.22-3.8.1.aarch64.rpm libntfs-3g87-2021.8.22-3.8.1.aarch64.rpm ntfs-3g-2021.8.22-3.8.1.aarch64.rpm ntfsprogs-2021.8.22-3.8.1.aarch64.rpm ntfsprogs-extra-2021.8.22-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-2977 moderate SUSE Updates openSUSE-SLE 15.3 This update for usbutils fixes the following issue: - Update to version 0.14 (jira#SLE-19451) usbutils-014-3.3.1.src.rpm usbutils-014-3.3.1.x86_64.rpm usbutils-014-3.3.1.s390x.rpm usbutils-014-3.3.1.ppc64le.rpm usbutils-014-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3167 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: dracut-saltboot: - Fix dependencies of python libs (bsc#1188846) koan: - Only recommend 'virt-install' to unbreak scenarios where it is not available in the enabled modules of the system - The xend functionality is not expected to work since this the underlying tool was removed - Python 2 compatibility was fully removed - Add support for EFI reinstallation of a client (bsc#1170823) mgr-daemon: - Update translation strings spacecmd: - Update translation strings - Make schedule_deletearchived to get all actions without display limit - Allow passing a date limit for 'schedule_deletearchived' on 'spacecmd' (bsc#1181223) - Use correct API endpoint in 'list_proxies' (bsc#1188042) - Add schedule_deletearchived to bulk delete archived actions (bsc#1181223) spacewalk-client-tools: - Update translation strings dracut-saltboot-0.1.1628156312.dbd0dec-1.30.1.noarch.rpm dracut-saltboot-0.1.1628156312.dbd0dec-1.30.1.src.rpm koan-3.0.1-4.20.1.noarch.rpm koan-3.0.1-4.20.1.src.rpm mgr-daemon-4.2.8-1.29.1.noarch.rpm mgr-daemon-4.2.8-1.29.1.src.rpm python2-spacewalk-check-4.2.13-3.47.2.noarch.rpm python2-spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm python2-spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm python3-spacewalk-check-4.2.13-3.47.2.noarch.rpm python3-spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm python3-spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm spacecmd-4.2.12-3.65.1.noarch.rpm spacecmd-4.2.12-3.65.1.src.rpm spacewalk-check-4.2.13-3.47.2.noarch.rpm spacewalk-client-setup-4.2.13-3.47.2.noarch.rpm spacewalk-client-tools-4.2.13-3.47.2.noarch.rpm spacewalk-client-tools-4.2.13-3.47.2.src.rpm openSUSE-SLE-15.3-2021-3193 important SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2021-38171: Fixed adts_decode_extradata in libavformat/adtsenc.c to check the init_get_bits return value (bsc#1189724). ffmpeg-3.4.2-11.11.1.src.rpm ffmpeg-3.4.2-11.11.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.11.1.x86_64.rpm libavcodec-devel-3.4.2-11.11.1.x86_64.rpm libavcodec57-3.4.2-11.11.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.11.1.x86_64.rpm libavdevice-devel-3.4.2-11.11.1.x86_64.rpm libavdevice57-3.4.2-11.11.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.11.1.x86_64.rpm libavfilter-devel-3.4.2-11.11.1.x86_64.rpm libavfilter6-3.4.2-11.11.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.11.1.x86_64.rpm libavformat-devel-3.4.2-11.11.1.x86_64.rpm libavformat57-3.4.2-11.11.1.x86_64.rpm libavformat57-32bit-3.4.2-11.11.1.x86_64.rpm libavresample-devel-3.4.2-11.11.1.x86_64.rpm libavresample3-3.4.2-11.11.1.x86_64.rpm libavresample3-32bit-3.4.2-11.11.1.x86_64.rpm libavutil-devel-3.4.2-11.11.1.x86_64.rpm libavutil55-3.4.2-11.11.1.x86_64.rpm libavutil55-32bit-3.4.2-11.11.1.x86_64.rpm libpostproc-devel-3.4.2-11.11.1.x86_64.rpm libpostproc54-3.4.2-11.11.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.11.1.x86_64.rpm libswresample-devel-3.4.2-11.11.1.x86_64.rpm libswresample2-3.4.2-11.11.1.x86_64.rpm libswresample2-32bit-3.4.2-11.11.1.x86_64.rpm libswscale-devel-3.4.2-11.11.1.x86_64.rpm libswscale4-3.4.2-11.11.1.x86_64.rpm libswscale4-32bit-3.4.2-11.11.1.x86_64.rpm ffmpeg-3.4.2-11.11.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.11.1.s390x.rpm libavcodec-devel-3.4.2-11.11.1.s390x.rpm libavcodec57-3.4.2-11.11.1.s390x.rpm libavdevice-devel-3.4.2-11.11.1.s390x.rpm libavdevice57-3.4.2-11.11.1.s390x.rpm libavfilter-devel-3.4.2-11.11.1.s390x.rpm libavfilter6-3.4.2-11.11.1.s390x.rpm libavformat-devel-3.4.2-11.11.1.s390x.rpm libavformat57-3.4.2-11.11.1.s390x.rpm libavresample-devel-3.4.2-11.11.1.s390x.rpm libavresample3-3.4.2-11.11.1.s390x.rpm libavutil-devel-3.4.2-11.11.1.s390x.rpm libavutil55-3.4.2-11.11.1.s390x.rpm libpostproc-devel-3.4.2-11.11.1.s390x.rpm libpostproc54-3.4.2-11.11.1.s390x.rpm libswresample-devel-3.4.2-11.11.1.s390x.rpm libswresample2-3.4.2-11.11.1.s390x.rpm libswscale-devel-3.4.2-11.11.1.s390x.rpm libswscale4-3.4.2-11.11.1.s390x.rpm ffmpeg-3.4.2-11.11.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.11.1.ppc64le.rpm libavcodec-devel-3.4.2-11.11.1.ppc64le.rpm libavcodec57-3.4.2-11.11.1.ppc64le.rpm libavdevice-devel-3.4.2-11.11.1.ppc64le.rpm libavdevice57-3.4.2-11.11.1.ppc64le.rpm libavfilter-devel-3.4.2-11.11.1.ppc64le.rpm libavfilter6-3.4.2-11.11.1.ppc64le.rpm libavformat-devel-3.4.2-11.11.1.ppc64le.rpm libavformat57-3.4.2-11.11.1.ppc64le.rpm libavresample-devel-3.4.2-11.11.1.ppc64le.rpm libavresample3-3.4.2-11.11.1.ppc64le.rpm libavutil-devel-3.4.2-11.11.1.ppc64le.rpm libavutil55-3.4.2-11.11.1.ppc64le.rpm libpostproc-devel-3.4.2-11.11.1.ppc64le.rpm libpostproc54-3.4.2-11.11.1.ppc64le.rpm libswresample-devel-3.4.2-11.11.1.ppc64le.rpm libswresample2-3.4.2-11.11.1.ppc64le.rpm libswscale-devel-3.4.2-11.11.1.ppc64le.rpm libswscale4-3.4.2-11.11.1.ppc64le.rpm ffmpeg-3.4.2-11.11.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.11.1.aarch64.rpm libavcodec-devel-3.4.2-11.11.1.aarch64.rpm libavcodec57-3.4.2-11.11.1.aarch64.rpm libavdevice-devel-3.4.2-11.11.1.aarch64.rpm libavdevice57-3.4.2-11.11.1.aarch64.rpm libavfilter-devel-3.4.2-11.11.1.aarch64.rpm libavfilter6-3.4.2-11.11.1.aarch64.rpm libavformat-devel-3.4.2-11.11.1.aarch64.rpm libavformat57-3.4.2-11.11.1.aarch64.rpm libavresample-devel-3.4.2-11.11.1.aarch64.rpm libavresample3-3.4.2-11.11.1.aarch64.rpm libavutil-devel-3.4.2-11.11.1.aarch64.rpm libavutil55-3.4.2-11.11.1.aarch64.rpm libpostproc-devel-3.4.2-11.11.1.aarch64.rpm libpostproc54-3.4.2-11.11.1.aarch64.rpm libswresample-devel-3.4.2-11.11.1.aarch64.rpm libswresample2-3.4.2-11.11.1.aarch64.rpm libswscale-devel-3.4.2-11.11.1.aarch64.rpm libswscale4-3.4.2-11.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3799 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc11 fixes the following issues: The additional GNU compiler collection GCC 11 is provided: To select these compilers install the packages: - gcc11 - gcc-c++11 - and others with 11 prefix. to select them for building: - CC="gcc-11" - CXX="g++-11" The compiler baselibraries (libgcc_s1, libstdc++6 and others) are being replaced by the GCC 11 variants. cpp11-11.2.1+git610-1.3.9.x86_64.rpm cross-aarch64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-aarch64-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.src.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.src.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.src.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.src.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.src.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-nvptx-gcc11-11.2.1+git610-1.3.1.src.rpm cross-nvptx-gcc11-11.2.1+git610-1.3.1.x86_64.rpm cross-nvptx-newlib11-devel-11.2.1+git610-1.3.1.x86_64.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-ppc64le-gcc11-11.2.1+git610-1.3.2.src.rpm cross-ppc64le-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.src.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.x86_64.rpm cross-s390x-gcc11-11.2.1+git610-1.3.2.src.rpm cross-s390x-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.src.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.x86_64.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-1.3.2.x86_64.rpm gcc11-11.2.1+git610-1.3.9.src.rpm gcc11-11.2.1+git610-1.3.9.x86_64.rpm gcc11-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-ada-11.2.1+git610-1.3.9.x86_64.rpm gcc11-ada-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-c++-11.2.1+git610-1.3.9.x86_64.rpm gcc11-c++-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-d-11.2.1+git610-1.3.9.x86_64.rpm gcc11-d-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-fortran-11.2.1+git610-1.3.9.x86_64.rpm gcc11-fortran-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-go-11.2.1+git610-1.3.9.x86_64.rpm gcc11-go-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-info-11.2.1+git610-1.3.9.noarch.rpm gcc11-locale-11.2.1+git610-1.3.9.x86_64.rpm gcc11-obj-c++-11.2.1+git610-1.3.9.x86_64.rpm gcc11-obj-c++-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-objc-11.2.1+git610-1.3.9.x86_64.rpm gcc11-objc-32bit-11.2.1+git610-1.3.9.x86_64.rpm gcc11-testresults-11.2.1+git610-1.3.9.src.rpm gcc11-testresults-11.2.1+git610-1.3.9.x86_64.rpm libada11-11.2.1+git610-1.3.9.x86_64.rpm libada11-32bit-11.2.1+git610-1.3.9.x86_64.rpm libasan6-11.2.1+git610-1.3.9.x86_64.rpm libasan6-32bit-11.2.1+git610-1.3.9.x86_64.rpm libatomic1-11.2.1+git610-1.3.9.x86_64.rpm libatomic1-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgcc_s1-11.2.1+git610-1.3.9.x86_64.rpm libgcc_s1-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgdruntime2-11.2.1+git610-1.3.9.x86_64.rpm libgdruntime2-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgfortran5-11.2.1+git610-1.3.9.x86_64.rpm libgfortran5-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgo19-11.2.1+git610-1.3.9.x86_64.rpm libgo19-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgomp1-11.2.1+git610-1.3.9.x86_64.rpm libgomp1-32bit-11.2.1+git610-1.3.9.x86_64.rpm libgphobos2-11.2.1+git610-1.3.9.x86_64.rpm libgphobos2-32bit-11.2.1+git610-1.3.9.x86_64.rpm libitm1-11.2.1+git610-1.3.9.x86_64.rpm libitm1-32bit-11.2.1+git610-1.3.9.x86_64.rpm liblsan0-11.2.1+git610-1.3.9.x86_64.rpm libobjc4-11.2.1+git610-1.3.9.x86_64.rpm libobjc4-32bit-11.2.1+git610-1.3.9.x86_64.rpm libquadmath0-11.2.1+git610-1.3.9.x86_64.rpm libquadmath0-32bit-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-32bit-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-devel-gcc11-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-devel-gcc11-32bit-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-locale-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-pp-gcc11-11.2.1+git610-1.3.9.x86_64.rpm libstdc++6-pp-gcc11-32bit-11.2.1+git610-1.3.9.x86_64.rpm libtsan0-11.2.1+git610-1.3.9.x86_64.rpm libubsan1-11.2.1+git610-1.3.9.x86_64.rpm libubsan1-32bit-11.2.1+git610-1.3.9.x86_64.rpm cpp11-11.2.1+git610-1.3.9.s390x.rpm cross-aarch64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-ppc64le-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.s390x.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm cross-x86_64-gcc11-11.2.1+git610-1.3.2.s390x.rpm cross-x86_64-gcc11-11.2.1+git610-1.3.2.src.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-1.3.2.s390x.rpm gcc11-11.2.1+git610-1.3.9.s390x.rpm gcc11-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-ada-11.2.1+git610-1.3.9.s390x.rpm gcc11-ada-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-c++-11.2.1+git610-1.3.9.s390x.rpm gcc11-c++-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-d-11.2.1+git610-1.3.9.s390x.rpm gcc11-d-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-fortran-11.2.1+git610-1.3.9.s390x.rpm gcc11-fortran-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-go-11.2.1+git610-1.3.9.s390x.rpm gcc11-go-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-locale-11.2.1+git610-1.3.9.s390x.rpm gcc11-obj-c++-11.2.1+git610-1.3.9.s390x.rpm gcc11-obj-c++-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-objc-11.2.1+git610-1.3.9.s390x.rpm gcc11-objc-32bit-11.2.1+git610-1.3.9.s390x.rpm gcc11-testresults-11.2.1+git610-1.3.9.s390x.rpm libada11-11.2.1+git610-1.3.9.s390x.rpm libada11-32bit-11.2.1+git610-1.3.9.s390x.rpm libasan6-11.2.1+git610-1.3.9.s390x.rpm libasan6-32bit-11.2.1+git610-1.3.9.s390x.rpm libatomic1-11.2.1+git610-1.3.9.s390x.rpm libatomic1-32bit-11.2.1+git610-1.3.9.s390x.rpm libgcc_s1-11.2.1+git610-1.3.9.s390x.rpm libgcc_s1-32bit-11.2.1+git610-1.3.9.s390x.rpm libgdruntime2-11.2.1+git610-1.3.9.s390x.rpm libgdruntime2-32bit-11.2.1+git610-1.3.9.s390x.rpm libgfortran5-11.2.1+git610-1.3.9.s390x.rpm libgfortran5-32bit-11.2.1+git610-1.3.9.s390x.rpm libgo19-11.2.1+git610-1.3.9.s390x.rpm libgo19-32bit-11.2.1+git610-1.3.9.s390x.rpm libgomp1-11.2.1+git610-1.3.9.s390x.rpm libgomp1-32bit-11.2.1+git610-1.3.9.s390x.rpm libgphobos2-11.2.1+git610-1.3.9.s390x.rpm libgphobos2-32bit-11.2.1+git610-1.3.9.s390x.rpm libitm1-11.2.1+git610-1.3.9.s390x.rpm libitm1-32bit-11.2.1+git610-1.3.9.s390x.rpm libobjc4-11.2.1+git610-1.3.9.s390x.rpm libobjc4-32bit-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-32bit-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-devel-gcc11-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-devel-gcc11-32bit-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-locale-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-pp-gcc11-11.2.1+git610-1.3.9.s390x.rpm libstdc++6-pp-gcc11-32bit-11.2.1+git610-1.3.9.s390x.rpm libubsan1-11.2.1+git610-1.3.9.s390x.rpm libubsan1-32bit-11.2.1+git610-1.3.9.s390x.rpm cpp11-11.2.1+git610-1.3.9.ppc64le.rpm cross-aarch64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-aarch64-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-aarch64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.ppc64le.rpm cross-s390x-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm cross-x86_64-gcc11-11.2.1+git610-1.3.2.ppc64le.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-1.3.2.ppc64le.rpm gcc11-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-ada-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-c++-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-fortran-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-go-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-locale-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-obj-c++-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-objc-11.2.1+git610-1.3.9.ppc64le.rpm gcc11-testresults-11.2.1+git610-1.3.9.ppc64le.rpm libada11-11.2.1+git610-1.3.9.ppc64le.rpm libasan6-11.2.1+git610-1.3.9.ppc64le.rpm libatomic1-11.2.1+git610-1.3.9.ppc64le.rpm libgcc_s1-11.2.1+git610-1.3.9.ppc64le.rpm libgfortran5-11.2.1+git610-1.3.9.ppc64le.rpm libgo19-11.2.1+git610-1.3.9.ppc64le.rpm libgomp1-11.2.1+git610-1.3.9.ppc64le.rpm libitm1-11.2.1+git610-1.3.9.ppc64le.rpm liblsan0-11.2.1+git610-1.3.9.ppc64le.rpm libobjc4-11.2.1+git610-1.3.9.ppc64le.rpm libquadmath0-11.2.1+git610-1.3.9.ppc64le.rpm libstdc++6-11.2.1+git610-1.3.9.ppc64le.rpm libstdc++6-devel-gcc11-11.2.1+git610-1.3.9.ppc64le.rpm libstdc++6-locale-11.2.1+git610-1.3.9.ppc64le.rpm libstdc++6-pp-gcc11-11.2.1+git610-1.3.9.ppc64le.rpm libtsan0-11.2.1+git610-1.3.9.ppc64le.rpm libubsan1-11.2.1+git610-1.3.9.ppc64le.rpm cpp11-11.2.1+git610-1.3.9.aarch64.rpm cross-arm-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-arm-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-arm-none-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-avr-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-epiphany-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-hppa-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-hppa-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-i386-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-i386-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-m68k-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-m68k-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-mips-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-mips-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-ppc64-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-ppc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-ppc64le-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-ppc64le-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-riscv64-elf-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-riscv64-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-riscv64-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-riscv64-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-rx-gcc11-bootstrap-11.2.1+git610-1.3.1.aarch64.rpm cross-s390x-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-s390x-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-sparc-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-sparc64-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-sparc64-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-sparcv9-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm cross-x86_64-gcc11-11.2.1+git610-1.3.2.aarch64.rpm cross-x86_64-gcc11-icecream-backend-11.2.1+git610-1.3.2.aarch64.rpm gcc11-11.2.1+git610-1.3.9.aarch64.rpm gcc11-ada-11.2.1+git610-1.3.9.aarch64.rpm gcc11-c++-11.2.1+git610-1.3.9.aarch64.rpm gcc11-d-11.2.1+git610-1.3.9.aarch64.rpm gcc11-fortran-11.2.1+git610-1.3.9.aarch64.rpm gcc11-go-11.2.1+git610-1.3.9.aarch64.rpm gcc11-locale-11.2.1+git610-1.3.9.aarch64.rpm gcc11-obj-c++-11.2.1+git610-1.3.9.aarch64.rpm gcc11-objc-11.2.1+git610-1.3.9.aarch64.rpm gcc11-testresults-11.2.1+git610-1.3.9.aarch64.rpm libada11-11.2.1+git610-1.3.9.aarch64.rpm libasan6-11.2.1+git610-1.3.9.aarch64.rpm libatomic1-11.2.1+git610-1.3.9.aarch64.rpm libgcc_s1-11.2.1+git610-1.3.9.aarch64.rpm libgdruntime2-11.2.1+git610-1.3.9.aarch64.rpm libgfortran5-11.2.1+git610-1.3.9.aarch64.rpm libgo19-11.2.1+git610-1.3.9.aarch64.rpm libgomp1-11.2.1+git610-1.3.9.aarch64.rpm libgphobos2-11.2.1+git610-1.3.9.aarch64.rpm libhwasan0-11.2.1+git610-1.3.9.aarch64.rpm libitm1-11.2.1+git610-1.3.9.aarch64.rpm liblsan0-11.2.1+git610-1.3.9.aarch64.rpm libobjc4-11.2.1+git610-1.3.9.aarch64.rpm libstdc++6-11.2.1+git610-1.3.9.aarch64.rpm libstdc++6-devel-gcc11-11.2.1+git610-1.3.9.aarch64.rpm libstdc++6-locale-11.2.1+git610-1.3.9.aarch64.rpm libstdc++6-pp-gcc11-11.2.1+git610-1.3.9.aarch64.rpm libtsan0-11.2.1+git610-1.3.9.aarch64.rpm libubsan1-11.2.1+git610-1.3.9.aarch64.rpm openSUSE-SLE-15.3-2021-3136 moderate SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect fixes the following issues: - Disallow registering via SUSEConnect if the system is managed by SUSE Manager. - Add subscription name to output of 'SUSEConnect --status'. - Send payload of GET requests as part of the url, not in the body. (bsc#1185611) SUSEConnect-0.3.31-13.1.src.rpm SUSEConnect-0.3.31-13.1.x86_64.rpm SUSEConnect-0.3.31-13.1.s390x.rpm SUSEConnect-0.3.31-13.1.ppc64le.rpm SUSEConnect-0.3.31-13.1.aarch64.rpm openSUSE-SLE-15.3-2021-2990 important SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - Update from version 1.3.8 to version 1.3.9 (bsc#1189015) - Raise the log rotation threshold to 1MB so that more history is preserved. - Fix checking HCNID array size at boot time - Set autoconnect-slaves on HNV connections. - When trying to detect HNV bond list all connections, not only active ones. - Use hexdump from util-linux rather than xxd from vim. - hcn-init.service: Start together with NetworkManager. - ofpathname: Fix OF to logical FC lookup for multipath and partitions - bootlist: Fix for multipath devices with > 5 paths - Add the missing substring extraction of the partition number from the logical device path so that the partition number is appended to OFPATH when the logical device is a partition. - Introducing 'lparnumascore' that is is computing the LPAR NUMA score for CPU and memory. - This new command detects CPU and memory resources the kernel keep binded to the NUMA node topology of the departure node. It computes a ratio, and print it to the standard output. The ratio is between 0 (worst) and 100 (best). The command is **not** locking '/var/lock/dr_config_lock' so user should ensure that there is not ongoing command impacting the computed scores. This allows the command to be run without special privileges. - Introduce 'of_associativity_to_node' - This device tree related function reads the ibm associativity property of a node and, using the specified 'min_common_deth', returns the NUMA node id - Rename 'is_lsslot_cmd' into 'read_dynamic_memory_v2' - Add manpage for the drmgr utility - Add a check against 'usr_drc_index' which is set when a remove by index operation is done to ensure the NUMA removal code is not triggered in that case. - Add support for the plug ID of a SCSI/SATA host - 'lpartstat': add '-x' option for the security flavor. - The output number means: - 0 = Speculative execution fully enabled - 1 = Speculative execution controls to mitigate user-to-kernel side-channel attacks - 2 = Speculative execution controls to mitigate user-to-kernel and user-to-user side-channel attacks - \- = The running kernel is not exposing the security flavor in '/proc/powerpc/lparcfg' - Introduce NUMA based LMB removal - When the NUMA topology can be read, all the LMBs found in the Device Tree are linked the corresponding node. LMB not associated to node are considered as not used. LMB associated to CPU less node are accounted separately because they will be targeted first to be remove. The LMB are removed from the CPU less nodes to reach an average number LMBs per CPU less node. The removal is done through the remove by DRC index API, allowing to remove a LMB at a time. When the requested amount of LMB could not be removed a partial status is reported. If the NUMA topology can't be read, we fallback using the legacy remove way. - Fix ofpathname race with udev rename - ofpathname: Use NVMe controller physical nsid - Use a loop to check for all related bonding connections and remove them explicitly one by one instead of using xargs - Avoid using 'ifcfg' file for checking bonding interface status - Wait for sysfs device ready when looking up device name - Avoid cleanup of bond interface at boot time when no HNV exists - Adds the option 'ppc64_cpu --version in 'ppc64_cpu --help' in the usage information of ppc64-cpu command. - Clean up dead network config interface after inactive migration - Disable 'vnic' as backup vdevice for migratable 'SR_IOV' - Fix qrydev checking for active interface error - Skip collecting lsdevinfo right before migration. When the LPARs has large number of devices, this can take quite a long time and flood the log message. - Wait for OS ready to lookup device name for configure HNV device. - The hybrid network virtualization is only supported on PowerVM LPAR. Exit the 'hcnmgr' gracefully on other power platform instead of return error. - Optimize 'lsdevinfo' filtering to prevent LPM timeouts (bsc#1189571) powerpc-utils-1.3.9-9.9.1.ppc64le.rpm powerpc-utils-1.3.9-9.9.1.src.rpm openSUSE-SLE-15.3-2021-3146 low SUSE Updates openSUSE-SLE 15.3 Initial release of Kubevirt for SUSE Linux Enterprise 15 SP3. kubevirt-0.45.0-8.4.3.src.rpm kubevirt-container-disk-0.45.0-8.4.3.x86_64.rpm kubevirt-manifests-0.45.0-8.4.3.x86_64.rpm kubevirt-tests-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-api-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-controller-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-handler-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-launcher-0.45.0-8.4.3.x86_64.rpm kubevirt-virt-operator-0.45.0-8.4.3.x86_64.rpm kubevirt-virtctl-0.45.0-8.4.3.x86_64.rpm openSUSE-SLE-15.3-2021-3173 low SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - Added note about NVIDIA vGPU support (jsc#SLE-17881) - Added note about Intel technologies (bsc#1189786) - Added note about ODBC drivers (jsc#SLE-17703) - Added note about NVIDIA BlueField-2 tech preview (jsc#SLE-13565) - Added note about kubevirt-virt-* (bsc#1187693) - Fixed typo in note about compat-libpthread-nonshared (bsc#1188511) - Removed mention of SES (bsc#1188305) release-notes-sles-15.3.20210903-3.9.1.noarch.rpm release-notes-sles-15.3.20210903-3.9.1.src.rpm openSUSE-SLE-15.3-2021-3138 moderate SUSE Updates openSUSE-SLE 15.3 This update for mdadm fixes the following issues: - Remove Spare drives line from details for external metadata. (bsc#1180661, bsc#1182642) - Arrays with external metadata do not have spare disks directly assigned to volumes; spare disks belong to containers and are moved to arrays when the array is degraded/reshaping. Thus, the display of zero spare disks in volume details is incorrect and can be confusing. - Don't associate spares with other arrays during RAID Examine. (bsc#1180661, bsc#1182642) - Spares in imsm belong to containers, not volumes, and must go into a separate container when assembling the RAID. Remove association spares with other arrays and make Examine print separate containers for spares. Auto assemble without config file already works like this. So make creating a config file and assembling from it consistent with auto assemble. With this change, 'mdadm -Es' will add this line to output if spares are found: 'ARRAY metadata=imsm UUID=00000000:00000000:00000000:00000000' mdadm-4.1-24.6.1.src.rpm mdadm-4.1-24.6.1.x86_64.rpm mdadm-4.1-24.6.1.s390x.rpm mdadm-4.1-24.6.1.ppc64le.rpm mdadm-4.1-24.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3182 moderate SUSE Updates openSUSE-SLE 15.3 This update for file fixes the following issues: - Fixes exception thrown by memory allocation problem (bsc#1189996) file-5.32-7.14.1.src.rpm file-5.32-7.14.1.x86_64.rpm file-devel-32bit-5.32-7.14.1.x86_64.rpm file-devel-5.32-7.14.1.x86_64.rpm file-magic-5.32-7.14.1.noarch.rpm libmagic1-32bit-5.32-7.14.1.x86_64.rpm libmagic1-5.32-7.14.1.x86_64.rpm python-magic-5.32-7.14.1.src.rpm python2-magic-5.32-7.14.1.x86_64.rpm python3-magic-5.32-7.14.1.x86_64.rpm file-5.32-7.14.1.s390x.rpm file-devel-5.32-7.14.1.s390x.rpm libmagic1-5.32-7.14.1.s390x.rpm python2-magic-5.32-7.14.1.s390x.rpm python3-magic-5.32-7.14.1.s390x.rpm file-5.32-7.14.1.ppc64le.rpm file-devel-5.32-7.14.1.ppc64le.rpm libmagic1-5.32-7.14.1.ppc64le.rpm python2-magic-5.32-7.14.1.ppc64le.rpm python3-magic-5.32-7.14.1.ppc64le.rpm file-5.32-7.14.1.aarch64.rpm file-devel-5.32-7.14.1.aarch64.rpm libmagic1-5.32-7.14.1.aarch64.rpm python2-magic-5.32-7.14.1.aarch64.rpm python3-magic-5.32-7.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3223 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-shell-extensions fixes the following issues: - Add gnome-shell-extensions-common as dependency (bsc#1190016 jsc#SLE-20311). gnome-shell-classic-3.34.2-5.12.1.noarch.rpm gnome-shell-classic-session-3.34.2-5.12.1.x86_64.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.x86_64.rpm gnome-shell-extensions-3.34.2-5.12.1.src.rpm gnome-shell-extensions-common-3.34.2-5.12.1.noarch.rpm gnome-shell-extensions-common-lang-3.34.2-5.12.1.noarch.rpm gnome-shell-classic-session-3.34.2-5.12.1.s390x.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.s390x.rpm gnome-shell-classic-session-3.34.2-5.12.1.ppc64le.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.ppc64le.rpm gnome-shell-classic-session-3.34.2-5.12.1.aarch64.rpm gnome-shell-extension-user-theme-3.34.2-5.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3040 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issue: Lifecycle data updates. (bsc#1020320) - Updates for 4_12_14-150_75, 4_12_14-197_99, 5_3_18-24_70, 5_3_18-24_75, 5_3_18-24_78, 5_3_18-59_13, 5_3_18-59_16, 5_3_18-59_19. lifecycle-data-sle-module-live-patching-15-4.60.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.60.1.src.rpm openSUSE-SLE-15.3-2021-3022 important SUSE Updates openSUSE-SLE 15.3 This update for c-ares fixes the following issue: - Allow '_' as part of DNS response. (bsc#1190225) - 'c-ares' 1.17.2 introduced response validation to prevent a security issue, however it was not listing '_' as a valid character for domain name responses which caused issues when a 'CNAME' referenced a 'SRV' record which contained underscores. c-ares-1.17.1+20200724-3.17.1.src.rpm c-ares-devel-1.17.1+20200724-3.17.1.x86_64.rpm c-ares-utils-1.17.1+20200724-3.17.1.x86_64.rpm libcares2-1.17.1+20200724-3.17.1.x86_64.rpm libcares2-32bit-1.17.1+20200724-3.17.1.x86_64.rpm c-ares-devel-1.17.1+20200724-3.17.1.s390x.rpm c-ares-utils-1.17.1+20200724-3.17.1.s390x.rpm libcares2-1.17.1+20200724-3.17.1.s390x.rpm c-ares-devel-1.17.1+20200724-3.17.1.ppc64le.rpm c-ares-utils-1.17.1+20200724-3.17.1.ppc64le.rpm libcares2-1.17.1+20200724-3.17.1.ppc64le.rpm c-ares-devel-1.17.1+20200724-3.17.1.aarch64.rpm c-ares-utils-1.17.1+20200724-3.17.1.aarch64.rpm libcares2-1.17.1+20200724-3.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3579 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Avoid race confition with ca-certificates. (bsc#1189362) + Make the service run after ca-sertificates is done + Attempt multiple times to update the trust chain - New package to enable/disable access due to AHB. (bsc#1182026, jsc#SLE-21246, jsc#SLE-21247, jsc#SLE-21248, jsc#SLE-21249) cloud-regionsrv-client-9.2.1-6.51.1.noarch.rpm cloud-regionsrv-client-9.2.1-6.51.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.51.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.51.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.1-6.51.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.51.1.noarch.rpm openSUSE-SLE-15.3-2021-3205 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172). - CVE-2021-3653: Missing validation of the `int_ctl` VMCB field and allows a malicious L1 guest to enable AVIC support for the L2 guest. (bsc#1189399). - CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400). - CVE-2021-3679: A lack of CPU resource in tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057). - CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706). - CVE-2021-3739: Fixed a NULL pointer dereference when deleting device by invalid id (bsc#1189832 ). - CVE-2021-3743: Fixed OOB Read in qrtr_endpoint_post (bsc#1189883). - CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025). - CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117) - CVE-2021-38198: arch/x86/kvm/mmu/paging_tmpl.h incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault (bnc#1189262). - CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291). - CVE-2021-38205: drivers/net/ethernet/xilinx/xilinx_emaclite.c made it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer) (bnc#1189292). - CVE-2021-38207: drivers/net/ethernet/xilinx/ll_temac_main.c allowed remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes (bnc#1189298). - CVE-2021-38166: Fixed an integer overflow and out-of-bounds write when many elements are placed in a single bucket in kernel/bpf/hashtab.c (bnc#1189233 ). - CVE-2021-38209: Fixed allowed observation of changes in any net namespace via net/netfilter/nf_conntrack_standalone.c (bnc#1189393). - CVE-2021-38206: Fixed NULL pointer dereference in the radiotap parser inside the mac80211 subsystem (bnc#1189296). - CVE-2021-34556: Fixed side-channel attack via a Speculative Store Bypass via unprivileged BPF program that could have obtain sensitive information from kernel memory (bsc#1188983). - CVE-2021-35477: Fixed BPF stack frame pointer which could have been abused to disclose content of arbitrary kernel memory (bsc#1188985). - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks (bsc#1190115). - CVE-2020-12770: Fixed sg_remove_request call in a certain failure cases (bsc#1171420). The following non-security bugs were fixed: - ACPI: NFIT: Fix support for virtual SPA ranges (git-fixes). - ACPI: processor: Clean up acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export function to claim _CST control (bsc#1175543) - ACPI: processor: Introduce acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Make ACPI_PROCESSOR_CSTATE depend on ACPI_PROCESSOR (bsc#1175543) - ALSA: hda - fix the 'Capture Switch' value change notifications (git-fixes). - ALSA: hda/hdmi: Add quirk to force pin connectivity on NUC10 (git-fixes). - ALSA: hda/hdmi: fix max DP-MST dev_num for Intel TGL+ platforms (git-fixes). - ALSA: hda/hdmi: let new platforms assign the pcm slot dynamically (git-fixes). - ALSA: hda/realtek - Add ALC285 HP init procedure (git-fixes). - ALSA: hda/realtek - Add type for ALC287 (git-fixes). - ALSA: hda/realtek: Change device names for quirks to barebone names (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9510 laptop (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SWIFT SF314-56 (ALC256) (git-fixes). - ALSA: hda/realtek: Limit mic boost on HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: add mic quirk for Acer SF314-42 (git-fixes). - ALSA: hda/realtek: fix mute led of the HP Pavilion 15-eh1xxx series (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 650 G8 Notebook PC (git-fixes). - ALSA: hda/via: Apply runtime PM workaround for ASUS B23E (git-fixes). - ALSA: hda: Add quirk for ASUS Flow x13 (git-fixes). - ALSA: hda: Fix hang during shutdown due to link reset (git-fixes). - ALSA: hda: Release controller display power during shutdown/reboot (git-fixes). - ALSA: pcm: Fix mmap breakage without explicit buffer setup (git-fixes). - ALSA: pcm: fix divide error in snd_pcm_lib_ioctl (git-fixes). - ALSA: seq: Fix racy deletion of subscriber (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 600 (git-fixes). - ALSA: usb-audio: Avoid unnecessary or invalid connector selection at resume (git-fixes). - ALSA: usb-audio: Fix regression on Sony WALKMAN NW-A45 DAC (git-fixes). - ALSA: usb-audio: Fix superfluous autosuspend recovery (git-fixes). - ALSA: usb-audio: fix incorrect clock source setting (git-fixes). - ASoC: Intel: Skylake: Fix module resource and format selection (git-fixes). - ASoC: Intel: Skylake: Leave data as is when invoking TLV IPCs (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix format selection for max98373 (git-fixes). - ASoC: SOF: Intel: hda-ipc: fix reply size checking (git-fixes). - ASoC: amd: Fix reference to PCM buffer address (git-fixes). - ASoC: component: Remove misplaced prefix handling in pin control functions (git-fixes). - ASoC: cs42l42: Correct definition of ADC Volume control (git-fixes). - ASoC: cs42l42: Do not allow SND_SOC_DAIFMT_LEFT_J (git-fixes). - ASoC: cs42l42: Fix LRCLK frame start edge (git-fixes). - ASoC: cs42l42: Fix inversion of ADC Notch Switch control (git-fixes). - ASoC: cs42l42: Remove duplicate control for WNF filter frequency (git-fixes). - ASoC: intel: atom: Fix breakage for PCM buffer address setup (git-fixes). - ASoC: intel: atom: Fix reference to PCM buffer address (git-fixes). - ASoC: mediatek: mt8183: Fix Unbalanced pm_runtime_enable in mt8183_afe_pcm_dev_probe (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold again (git-fixes). - ASoC: rt5682: Fix the issue of garbled recording after powerd_dbus_suspend (git-fixes). - ASoC: ti: j721e-evm: Check for not initialized parent_clk_id (git-fixes). - ASoC: ti: j721e-evm: Fix unbalanced domain activity tracking during startup (git-fixes). - ASoC: tlv320aic31xx: Fix jack detection after suspend (git-fixes). - ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits (git-fixes). - ASoC: uniphier: Fix reference to PCM buffer address (git-fixes). - ASoC: wcd9335: Disable irq on slave ports in the remove function (git-fixes). - ASoC: wcd9335: Fix a double irq free in the remove function (git-fixes). - ASoC: wcd9335: Fix a memory leak in the error handling path of the probe function (git-fixes). - ASoC: xilinx: Fix reference to PCM buffer address (git-fixes). - Avoid double printing SUSE specific flags in mod->taint (bsc#1190413). - Bluetooth: add timeout sanity check to hci_inquiry (git-fixes). - Bluetooth: btusb: Fix a unspported condition to set available debug features (git-fixes). - Bluetooth: btusb: check conditions before enabling USB ALT 3 for WBS (git-fixes). - Bluetooth: defer cleanup of resources in hci_unregister_dev() (git-fixes). - Bluetooth: fix repeated calls to sco_sock_kill (git-fixes). - Bluetooth: hidp: use correct wait queue when removing ctrl_wait (git-fixes). - Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow (git-fixes). - Bluetooth: mgmt: Fix wrong opcode in the response for add_adv cmd (git-fixes). - Bluetooth: sco: prevent information leak in sco_conn_defer_accept() (git-fixes). - Drop two intel_int0002_vgpio patches that cause Oops (bsc#1190412) - KVM: VMX: Drop guest CPUID check for VMXE in vmx_set_cr4() (bsc#1188786). - KVM: VMX: Enable machine check support for 32bit targets (bsc#1188787). - KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path (bsc#1188788). - KVM: VMX: Extend VMXs #AC interceptor to handle split lock #AC in guest (bsc#1187959). - KVM: nVMX: Handle split-lock #AC exceptions that happen in L2 (bsc#1187959). - KVM: nVMX: Really make emulated nested preemption timer pinned (bsc#1188780). - KVM: nVMX: Reset the segment cache when stuffing guest segs (bsc#1188781). - KVM: nVMX: Skip IBPB when switching between vmcs01 and vmcs02 (bsc#1188782). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1188783). - KVM: nVMX: Truncate bits 63:32 of VMCS field on nested check in !64-bit (bsc#1188784). - KVM: x86: Emulate split-lock access as a write in emulator (bsc#1187959). - KVM: x86: bit 8 of non-leaf PDPEs is not reserved (bsc#1188790). - NFS: Correct size calculation for create reply length (bsc#1189870). - NFSv4.1: Do not rebind to the same source port when (bnc#1186264 bnc#1189021) - NFSv4/pNFS: Do not call _nfs4_pnfs_v3_ds_connect multiple times (git-fixes). - NFSv4: Initialise connection to the server in nfs4_alloc_client() (bsc#1040364). - PCI/MSI: Correct misleading comments (git-fixes). - PCI/MSI: Do not set invalid bits in MSI mask (git-fixes). - PCI/MSI: Enable and mask MSI-X early (git-fixes). - PCI/MSI: Enforce MSI[X] entry updates to be visible (git-fixes). - PCI/MSI: Enforce that MSI-X table entry is masked for update (git-fixes). - PCI/MSI: Mask all unused MSI-X entries (git-fixes). - PCI/MSI: Skip masking MSI-X on Xen PV (git-fixes). - PCI/MSI: Use msi_mask_irq() in pci_msi_shutdown() (git-fixes). - PCI: Increase D3 delay for AMD Renoir/Cezanne XHCI (git-fixes). - PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently (git-fixes). - PCI: PM: Enable PME if it can be signaled from D3cold (git-fixes). - RDMA/bnxt_re: Fix stats counters (bsc#1188231). - SUNRPC: 'Directory with parent 'rpc_clnt' already present!' (bsc#1168202 bsc#1188924). - SUNRPC: Fix the batch tasks count wraparound (git-fixes). - SUNRPC: Should wake up the privileged task firstly (git-fixes). - SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - SUNRPC: fix use-after-free in rpc_free_client_work() (bsc#1168202 bsc#1188924). - SUNRPC: improve error response to over-size gss credential (bsc#1190022). - SUNRPC: prevent port reuse on transports which do not request it (bnc#1186264 bnc#1189021). - USB: core: Avoid WARNings for 0-length descriptor requests (git-fixes). - USB: serial: ch341: fix character loss at high transfer rates (git-fixes). - USB: serial: ftdi_sio: add device ID for Auto-M3 OP-COM v2 (git-fixes). - USB: serial: option: add Telit FD980 composition 0x1056 (git-fixes). - USB: usbtmc: Fix RCU stall warning (git-fixes). - USB:ehci:fix Kunpeng920 ehci hardware problem (git-fixes). - VMCI: fix NULL pointer dereference when unmapping queue pair (git-fixes). - ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point() (git-fixes). - ath9k: Clear key cache explicitly on disabling hardware (git-fixes). - ath: Use safer key clearing with key cache entries (git-fixes). - bcma: Fix memory leak for internally-handled cores (git-fixes). - bdi: Do not use freezable workqueue (bsc#1189573). - blk-iolatency: error out if blk_get_queue() failed in iolatency_set_limit() (bsc#1189507). - blk-mq-sched: Fix blk_mq_sched_alloc_tags() error handling (bsc#1189506). - blk-wbt: introduce a new disable state to prevent false positive by rwb_enabled() (bsc#1189503). - blk-wbt: make sure throttle is enabled properly (bsc#1189504). - block: fix trace completion for chained bio (bsc#1189505). - bnxt_en: Validate vlan protocol ID on RX packets (jsc#SLE-15075). - brcmfmac: pcie: fix oops on failure to resume and reprobe (git-fixes). - btrfs: Rename __btrfs_alloc_chunk to btrfs_alloc_chunk (bsc#1189077). - btrfs: add a trace class for dumping the current ENOSPC state (bsc#1135481). - btrfs: add a trace point for reserve tickets (bsc#1135481). - btrfs: adjust the flush trace point to include the source (bsc#1135481). - btrfs: check reclaim_size in need_preemptive_reclaim (bsc#1135481). - btrfs: factor out create_chunk() (bsc#1189077). - btrfs: factor out decide_stripe_size() (bsc#1189077). - btrfs: factor out gather_device_info() (bsc#1189077). - btrfs: factor out init_alloc_chunk_ctl (bsc#1189077). - btrfs: fix btrfs_calc_reclaim_metadata_size calculation (bsc#1135481). - btrfs: fix deadlock with concurrent chunk allocations involving system chunks (bsc#1189077). - btrfs: handle invalid profile in chunk allocation (bsc#1189077). - btrfs: implement space clamping for preemptive flushing (bsc#1135481). - btrfs: improve preemptive background space flushing (bsc#1135481). - btrfs: introduce a FORCE_COMMIT_TRANS flush operation (bsc#1135481). - btrfs: introduce alloc_chunk_ctl (bsc#1189077). - btrfs: introduce chunk allocation policy (bsc#1189077). - btrfs: make flush_space take a enum btrfs_flush_state instead of int (bsc#1135481). - btrfs: move the chunk_mutex in btrfs_read_chunk_tree (bsc#1189077). - btrfs: parameterize dev_extent_min for chunk allocation (bsc#1189077). - btrfs: refactor find_free_dev_extent_start() (bsc#1189077). - btrfs: remove FLUSH_DELAYED_REFS from data ENOSPC flushing (bsc#1135481). - btrfs: rename need_do_async_reclaim (bsc#1135481). - btrfs: rework btrfs_calc_reclaim_metadata_size (bsc#1135481). - btrfs: rework chunk allocation to avoid exhaustion of the system chunk array (bsc#1189077). - btrfs: rip out btrfs_space_info::total_bytes_pinned (bsc#1135481). - btrfs: rip the first_ticket_bytes logic from fail_all_tickets (bsc#1135481). - btrfs: simplify the logic in need_preemptive_flushing (bsc#1135481). - btrfs: tracepoints: convert flush states to using EM macros (bsc#1135481). - btrfs: tracepoints: fix btrfs_trigger_flush symbolic string for flags (bsc#1135481). - can: ti_hecc: Fix memleak in ti_hecc_probe (git-fixes). - can: usb: esd_usb2: esd_usb2_rx_event(): fix the interchange of the CAN RX and TX error counters (git-fixes). - ceph: clean up and optimize ceph_check_delayed_caps() (bsc#1187468). - ceph: reduce contention in ceph_check_delayed_caps() (bsc#1187468). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1189427). - cfg80211: Fix possible memory leak in function cfg80211_bss_update (git-fixes). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - clk: fix leak on devm_clk_bulk_get_all() unwind (git-fixes). - clk: stm32f4: fix post divisor setup for I2S/SAI PLLs (git-fixes). - cpuidle: Allow idle states to be disabled by default (bsc#1175543) - cpuidle: Consolidate disabled state checks (bsc#1175543) - cpuidle: Drop disabled field from struct cpuidle_state (bsc#1175543) - cpuidle: Fix cpuidle_driver_state_disabled() (bsc#1175543) - cpuidle: Introduce cpuidle_driver_state_disabled() for driver quirks (bsc#1175543) - crypto: ccp - Annotate SEV Firmware file names (bsc#1189212). - crypto: qat - use proper type for vf_mask (git-fixes). - crypto: x86/curve25519 - fix cpu feature checking logic in mod_exit (git-fixes). - device-dax: Fix default return code of range_parse() (git-fixes). - dm integrity: fix missing goto in bitmap_flush_interval error handling (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (git-fixes). - dm verity: fix DM_VERITY_OPTS_MAX value (git-fixes). - dmaengine: idxd: fix setup sequence for MSIXPERM table (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-sdma: remove duplicated sdma_load_context (git-fixes). - dmaengine: of-dma: router_xlate to return -EPROBE_DEFER if controller is not yet available (git-fixes). - dmaengine: usb-dmac: Fix PM reference leak in usb_dmac_probe() (git-fixes). - dmaengine: xilinx_dma: Fix read-after-free bug when terminating transfers (git-fixes). - drivers/block/null_blk/main: Fix a double free in null_init (git-fixes). - drm/amd/display: Fix Dynamic bpp issue with 8K30 with Navi 1X (git-fixes). - drm/amd/display: Fix comparison error in dcn21 DML (git-fixes). - drm/amd/display: Fix max vstartup calculation for modes with borders (git-fixes). - drm/amd/display: Remove invalid assert for ODM + MPC case (git-fixes). - drm/amd/display: use GFP_ATOMIC in amdgpu_dm_irq_schedule_work (git-fixes). - drm/amd/display: workaround for hard hang on HPD on native DP (git-fixes). - drm/amdgpu/acp: Make PM domain really work (git-fixes). - drm/amdgpu/display: fix DMUB firmware version info (git-fixes). - drm/amdgpu/display: only enable aux backlight control for OLED panels (git-fixes). - drm/amdgpu: do not enable baco on boco platforms in runpm (git-fixes). - drm/amdgpu: fix the doorbell missing when in CGPG issue for renoir (git-fixes). - drm/dp_mst: Fix return code on sideband message failure (git-fixes). - drm/i915/dg1: gmbus pin mapping (bsc#1188700). - drm/i915/dg1: provide port/phy mapping for vbt (bsc#1188700). - drm/i915/gen9_bc: Add W/A for missing STRAP config on TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce HPD pin mappings for TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce TGP PCH DDC pin mappings (bsc#1188700). - drm/i915/gen9_bc: Recognize TGP PCH + CML combos (bsc#1188700). - drm/i915/rkl: new rkl ddc map for different PCH (bsc#1188700). - drm/i915: Add VBT AUX CH H and I (bsc#1188700). - drm/i915: Add VBT DVO ports H and I (bsc#1188700). - drm/i915: Add more AUX CHs to the enum (bsc#1188700). - drm/i915: Configure GEN11_{TBT,TC}_HOTPLUG_CTL for ports TC5/6 (bsc#1188700). - drm/i915: Correct SFC_DONE register offset (git-fixes). - drm/i915: Introduce HPD_PORT_TC&lt;n> (bsc#1188700). - drm/i915: Move hpd_pin setup to encoder init (bsc#1188700). - drm/i915: Nuke the redundant TC/TBT HPD bit defines (bsc#1188700). - drm/i915: Only access SFC_DONE when media domain is not fused off (git-fixes). - drm/meson: fix colour distortion from HDR set during vendor u-boot (git-fixes). - drm/msi/mdp4: populate priv->kms in mdp4_kms_init (git-fixes). - drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs (git-fixes). - drm/msm/dsi: Fix some reference counted resource leaks (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/nouveau/kms/nv50: workaround EFI GOP window channel format differences (git-fixes). - drm/of: free the iterator object on failure (git-fixes). - drm/of: free the right object (git-fixes). - drm/panfrost: Fix missing clk_disable_unprepare() on error in panfrost_clk_init() (git-fixes). - drm/prime: fix comment on PRIME Helpers (git-fixes). - ext4: cleanup in-core orphan list if ext4_truncate() failed to get a transaction handle (bsc#1189568). - ext4: correct the cache_nr in tracepoint ext4_es_shrink_exit (bsc#1189564). - ext4: fix avefreec in find_group_orlov (bsc#1189566). - ext4: fix kernel infoleak via ext4_extent_header (bsc#1189562). - ext4: fix potential htree corruption when growing large_dir directories (bsc#1189576). - ext4: remove check for zero nr_to_scan in ext4_es_scan() (bsc#1189565). - ext4: return error code when ext4_fill_flex_info() fails (bsc#1189563). - ext4: use ext4_grp_locked_error in mb_find_extent (bsc#1189567). - fanotify: fix copy_event_to_user() fid error clean up (bsc#1189574). - firmware_loader: fix use-after-free in firmware_fallback_sysfs (git-fixes). - firmware_loader: use -ETIMEDOUT instead of -EAGAIN in fw_load_sysfs_fallback (git-fixes). - fixup "rpm: support gz and zst compression methods" (bsc#1190358, bsc#1190428). - fpga: altera-freeze-bridge: Address warning about unused variable (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: xiilnx-spi: Address warning about unused variable (git-fixes). - fpga: zynqmp-fpga: Address warning about unused variable (git-fixes). - gpio: eic-sprd: break loop when getting NULL device resource (git-fixes). - gpio: tqmx86: really make IRQ optional (git-fixes). - i2c: dev: zero out array used for i2c reads from userspace (git-fixes). - i2c: highlander: add IRQ check (git-fixes). - i2c: iop3xx: fix deferred probing (git-fixes). - i2c: mt65xx: fix IRQ check (git-fixes). - i2c: s3c2410: fix IRQ check (git-fixes). - iio: adc: Fix incorrect exit of for-loop (git-fixes). - iio: adc: ti-ads7950: Ensure CS is deasserted after reading channels (git-fixes). - iio: humidity: hdc100x: Add margin to the conversion time (git-fixes). - intel_idle: Add module parameter to prevent ACPI _CST from being used (bsc#1175543) - intel_idle: Allow ACPI _CST to be used for selected known processors (bsc#1175543) - intel_idle: Annotate init time data structures (bsc#1175543) - intel_idle: Customize IceLake server support (bsc#1175543) - intel_idle: Disable ACPI _CST on Haswell (bsc#1175543, bsc#1177399, bsc#1180347, bsc#1180141) - intel_idle: Fix max_cstate for processor models without C-state tables (bsc#1175543) - intel_idle: Ignore _CST if control cannot be taken from the platform (bsc#1175543) - intel_idle: Refactor intel_idle_cpuidle_driver_init() (bsc#1175543) - intel_idle: Use ACPI _CST for processor models without C-state tables (bsc#1175543) - iommu/amd: Fix extended features logging (bsc#1189213). - iommu/amd: Move Stoney Ridge check to detect_ivrs() (bsc#1189762). - iommu/arm-smmu-v3: Decrease the queue size of evtq and priq (bsc#1189210). - iommu/arm-smmu-v3: add bit field SFM into GERROR_ERR_MASK (bsc#1189209). - iommu/dma: Fix IOVA reserve dma ranges (bsc#1189214). - iommu/dma: Fix compile warning in 32-bit builds (bsc#1189229). - iommu/vt-d: Check for allocation failure in aux_detach_device() (bsc#1189215). - iommu/vt-d: Define counter explicitly as unsigned int (bsc#1189216). - iommu/vt-d: Do not set then clear private data in prq_event_thread() (bsc#1189217). - iommu/vt-d: Fix sysfs leak in alloc_iommu() (bsc#1189218). - iommu/vt-d: Force to flush iotlb before creating superpage (bsc#1189219). - iommu/vt-d: Global devTLB flush when present context entry changed (bsc#1189220). - iommu/vt-d: Invalidate PASID cache when root/context entry changed (bsc#1189221). - iommu/vt-d: Reject unsupported page request modes (bsc#1189222). - ionic: add handling of larger descriptors (jsc#SLE-16649). - ionic: add new queue features to interface (jsc#SLE-16649). - ionic: aggregate Tx byte counting calls (jsc#SLE-16649). - ionic: block actions during fw reset (jsc#SLE-16649). - ionic: change mtu after queues are stopped (jsc#SLE-16649). - ionic: check for link after netdev registration (jsc#SLE-16649). - ionic: code cleanup details (jsc#SLE-16649). - ionic: fix sizeof usage (jsc#SLE-16649). - ionic: fix unchecked reference (jsc#SLE-16649). - ionic: fix up dim accounting for tx and rx (jsc#SLE-16649). - ionic: generic tx skb mapping (jsc#SLE-16649). - ionic: implement Rx page reuse (jsc#SLE-16649). - ionic: make all rx_mode work threadsafe (jsc#SLE-16649). - ionic: move rx_page_alloc and free (jsc#SLE-16649). - ionic: optimize fastpath struct usage (jsc#SLE-16649). - ionic: protect adminq from early destroy (jsc#SLE-16649). - ionic: rebuild debugfs on qcq swap (jsc#SLE-16649). - ionic: remove intr coalesce update from napi (jsc#SLE-16649). - ionic: remove some unnecessary oom messages (jsc#SLE-16649). - ionic: simplify TSO descriptor mapping (jsc#SLE-16649). - ionic: simplify rx skb alloc (jsc#SLE-16649). - ionic: simplify the intr_index use in txq_init (jsc#SLE-16649). - ionic: simplify tx clean (jsc#SLE-16649). - ionic: simplify use of completion types (jsc#SLE-16649). - ionic: start queues before announcing link up (jsc#SLE-16649). - ionic: stop watchdog when in broken state (jsc#SLE-16649). - ionic: useful names for booleans (jsc#SLE-16649). - iwlwifi: pnvm: accept multiple HW-type TLVs (git-fixes). - iwlwifi: rs-fw: do not support stbc for HE 160 (git-fixes). - iwlwifi: skip first element in the WTAS ACPI table (git-fixes). - kABI fix of usb_dcd_config_params (git-fixes). - kABI: Fix kABI after fixing vcpu-id indexed arrays (git-fixes). - kabi fix for NFSv4.1: Do not rebind to the same source port when reconnecting to the server (bnc#1186264 bnc#1189021) - kabi fix for SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data() (bsc#1189153). - kernel-cert-subpackage: Fix certificate location in scriptlets (bsc#1189841). - leds: trigger: audio: Add an activate callback to ensure the initial brightness is set (git-fixes). - lib/mpi: use kcalloc in mpi_resize (git-fixes). - lib: Add zstd support to decompress (bsc#1187483, jsc#SLE-18766). - libata: fix ata_pio_sector for CONFIG_HIGHMEM (git-fixes). - mac80211: Fix insufficient headroom issue for AMSDU (git-fixes). - md/raid10: properly indicate failure when ending a failed write request (git-fixes). - md: revert io stats accounting (git-fixes). - media: TDA1997x: enable EDID support (git-fixes). - media: cxd2880-spi: Fix an error handling path (git-fixes). - media: drivers/media/usb: fix memory leak in zr364xx_probe (git-fixes). - media: dvb-usb: Fix error handling in dvb_usb_i2c_init (git-fixes). - media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init (git-fixes). - media: dvb-usb: fix uninit-value in vp702x_read_mac_addr (git-fixes). - media: em28xx-input: fix refcount bug in em28xx_usb_disconnect (git-fixes). - media: go7007: fix memory leak in go7007_usb_probe (git-fixes). - media: go7007: remove redundant initialization (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: stkwebcam: fix memory leak in stk_camera_probe (git-fixes). - media: venus: venc: Fix potential null pointer dereference on pointer fmt (git-fixes). - media: videobuf2-core: dequeue if start_streaming fails (git-fixes). - media: zr364xx: fix memory leaks in probe() (git-fixes). - media: zr364xx: propagate errors from zr364xx_start_readpipe() (git-fixes). - misc: atmel-ssc: lock with mutex instead of spinlock (git-fixes). - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp() (git-fixes). - mm/thp: unmap_mapping_page() to fix THP truncate_cleanup_page() (bsc#1189569). - mm/vmscan: fix infinite loop in drop_slab_node (VM Functionality, bsc#1189301). - mm: fix memory_failure() handling of dax-namespace metadata (bsc#1189872). - mm: swap: properly update readahead statistics in unuse_pte_range() (bsc#1187619). - mmc: dw_mmc: Fix hang on data CRC error (git-fixes). - mmc: dw_mmc: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: moxart: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (git-fixes). - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (git-fixes). - mtd: cfi_cmdset_0002: fix crash when erasing/writing AMD cards (git-fixes). - nbd: Aovid double completion of a request (git-fixes). - nbd: Fix NULL pointer in flush_workqueue (git-fixes). - net/mlx5: Add ts_cqe_to_dest_cqn related bits (bsc#1188412) - net/mlx5: Properly convey driver version to firmware (git-fixes). - net/mlx5e: Add missing capability check for uplink follow (bsc#1188412) - net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 (git-fixes). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (git-fixes). - net: stmmac: free tx skb buffer in stmmac_resume() (git-fixes). - net: usb: lan78xx: do not modify phy_device state concurrently (bsc#1188270) - nfs: fix acl memory leak of posix_acl_create() (git-fixes). - nvme-multipath: revalidate paths during rescan (bsc#1187211) - nvme-pci: Use u32 for nvme_dev.q_depth and nvme_queue.q_depth (bsc#1181972). - nvme-pci: fix NULL req in completion handler (bsc#1181972). - nvme-pci: limit maximum queue depth to 4095 (bsc#1181972). - nvme-pci: use unsigned for io queue depth (bsc#1181972). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme-tcp: do not check blk_mq_tag_to_rq when receiving pdu data (bsc#1181972). - nvme: avoid possible double fetch in handling CQE (bsc#1181972). - nvme: code command_id with a genctr for use-after-free validation (bsc#1181972). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - nvmet: use NVMET_MAX_NAMESPACES to set nn value (bsc#1189384). - ocfs2: fix snprintf() checking (bsc#1189581). - ocfs2: fix zero out valid data (bsc#1189579). - ocfs2: initialize ip_next_orphan (bsc#1186731). - ocfs2: issue zeroout to EOF blocks (bsc#1189582). - ovl: allow upperdir inside lowerdir (bsc#1189323). - ovl: expand warning in ovl_d_real() (bsc#1189323). - ovl: fix missing revert_creds() on error path (bsc#1189323). - ovl: perform vfs_getxattr() with mounter creds (bsc#1189323). - ovl: skip getxattr of security labels (bsc#1189323). - params: lift param_set_uint_minmax to common code (bsc#1181972). - pcmcia: i82092: fix a null pointer dereference bug (git-fixes). - perf/x86/amd: Do not touch the AMD64_EVENTSEL_HOSTONLY bit inside the guest (bsc#1189225). - pinctrl: tigerlake: Fix GPIO mapping for newer version of software (git-fixes). - platform/x86: pcengines-apuv2: Add missing terminating entries to gpio-lookup tables (git-fixes). - post.sh: detect /usr mountpoint too - power: supply: max17042: handle fails of reading status register (git-fixes). - powerpc/cacheinfo: Improve diagnostics about malformed cache lists (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Lookup cache by dt node and thread-group id (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Remove the redundant get_shared_cpu_map() (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Use name@unit instead of full DT path in debug messages (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/papr_scm: Make 'perf_stats' invisible if perf-stats unavailable (bsc#1175052 jsc#SLE-13823 bsc#1174969 jsc#SLE-12769 git-fixes). - powerpc/papr_scm: Reduce error severity if nvdimm stats inaccessible (bsc#1189197 ltc#193906). - powerpc/pseries: Fix regression while building external modules (bsc#1160010 ltc#183046 git-fixes). This changes a GPL symbol to general symbol which is kABI change but not kABI break. - powerpc/pseries: Fix update of LPAR security flavor after LPM (bsc#1188885 ltc#193722 git-fixes). - powerpc/smp: Make some symbols static (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Use existing L2 cache_map cpumask to find L3 cache siblings (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc: Fix is_kvm_guest() / kvm_para_available() (bsc#1181148 ltc#190702 git-fixes). - regulator: rt5033: Fix n_voltages settings for BUCK and LDO (git-fixes). - regulator: vctrl: Avoid lockdep warning in enable/disable ops (git-fixes). - regulator: vctrl: Use locked regulator_get_voltage in probe path (git-fixes). - rpm/kernel-binary.spec.in: Use kmod-zstd provide. This makes it possible to use kmod with ZSTD support on non-Tumbleweed. - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305) - rpm/kernel-source.rpmlintrc: ignore new include/config files In 5.13, since 0e0345b77ac4, config files have no longer .h suffix. Adapt the zero-length check. Based on Martin Liska's change. - rq-qos: fix missed wake-ups in rq_qos_throttle try two (bsc#1189575). - rsi: fix an error code in rsi_probe() (git-fixes). - rsi: fix error code in rsi_load_9116_firmware() (git-fixes). - s390/ap: Fix hanging ioctl caused by wrong msg counter (bsc#1188982 LTC#193817). - s390/boot: fix use of expolines in the DMA code (bsc#1188878 ltc#193771). - scsi: blkcg: Add app identifier support for blkcg (bsc#1189385 jsc#SLE-18970). - scsi: blkcg: Fix application ID config options (bsc#1189385 jsc#SLE-18970). - scsi: cgroup: Add cgroup_get_from_id() (bsc#1189385 jsc#SLE-18970). - scsi: core: Add scsi_prot_ref_tag() helper (bsc#1189392). - scsi: ibmvfc: Do not wait for initial device scan (bsc#1127650). - scsi: libfc: Fix array index out of bound exception (bsc#1188616). - scsi: lpfc: Add 256 Gb link speed support (bsc#1189385). - scsi: lpfc: Add PCI ID support for LPe37000/LPe38000 series adapters (bsc#1189385). - scsi: lpfc: Call discovery state machine when handling PLOGI/ADISC completions (bsc#1189385). - scsi: lpfc: Clear outstanding active mailbox during PCI function reset (bsc#1189385). - scsi: lpfc: Copyright updates for 12.8.0.11 patches (bsc#1189385). - scsi: lpfc: Copyright updates for 14.0.0.0 patches (bsc#1189385). - scsi: lpfc: Delay unregistering from transport until GIDFT or ADISC completes (bsc#1189385). - scsi: lpfc: Discovery state machine fixes for LOGO handling (bsc#1189385). - scsi: lpfc: Enable adisc discovery after RSCN by default (bsc#1189385). - scsi: lpfc: Fix KASAN slab-out-of-bounds in lpfc_unreg_rpi() routine (bsc#1189385). - scsi: lpfc: Fix NULL ptr dereference with NPIV ports for RDF handling (bsc#1189385). - scsi: lpfc: Fix NVMe support reporting in log message (bsc#1189385). - scsi: lpfc: Fix build error in lpfc_scsi.c (bsc#1189385). - scsi: lpfc: Fix cq_id truncation in rq create (bsc#1189385). - scsi: lpfc: Fix function description comments for vmid routines (bsc#1189385). - scsi: lpfc: Fix memory leaks in error paths while issuing ELS RDF/SCR request (bsc#1189385). - scsi: lpfc: Fix possible ABBA deadlock in nvmet_xri_aborted() (bsc#1189385). - scsi: lpfc: Fix target reset handler from falsely returning FAILURE (bsc#1189385). - scsi: lpfc: Improve firmware download logging (bsc#1189385). - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1189385). - scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (git-fixes). - scsi: lpfc: Remove REG_LOGIN check requirement to issue an ELS RDF (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer pcmd (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer temp_hdr (bsc#1189385). - scsi: lpfc: Remove use of kmalloc() in trace event logging (bsc#1189385). - scsi: lpfc: Revise Topology and RAS support checks for new adapters (bsc#1189385). - scsi: lpfc: Skip issuing ADISC when node is in NPR state (bsc#1189385). - scsi: lpfc: Skip reg_vpi when link is down for SLI3 in ADISC cmpl path (bsc#1189385). - scsi: lpfc: Update lpfc version to 12.8.0.11 (bsc#1189385). - scsi: lpfc: Update lpfc version to 14.0.0.0 (bsc#1189385). - scsi: lpfc: Use PBDE feature enabled bit to determine PBDE support (bsc#1189385). - scsi: lpfc: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189385). - scsi: lpfc: vmid: Add QFPA and VMID timeout check in worker thread (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add datastructure for supporting VMID in lpfc (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add support for VMID in mailbox command (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Append the VMID to the wqe before sending (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Functions to manage VMIDs (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement CT commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement ELS commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Introduce VMID in I/O path (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Timeout implementation for VMID (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: VMID parameter initialization (bsc#1189385 jsc#SLE-18970). - scsi: mpt3sas: Fix ReplyPostFree pool allocation (bsc#1181006). - scsi: qla2xxx: Add heartbeat check (bsc#1189392). - scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword() (bsc#1189392). - scsi: qla2xxx: Fix spelling mistakes "allloc" -> "alloc" (bsc#1189392). - scsi: qla2xxx: Fix use after free in debug code (bsc#1189392). - scsi: qla2xxx: Log PCI address in qla_nvme_unregister_remote_port() (bsc#1189392). - scsi: qla2xxx: Remove duplicate declarations (bsc#1189392). - scsi: qla2xxx: Remove redundant assignment to rval (bsc#1189392). - scsi: qla2xxx: Remove redundant continue statement in a for-loop (bsc#1189392). - scsi: qla2xxx: Remove redundant initialization of variable num_cnt (bsc#1189392). - scsi: qla2xxx: Remove unused variable 'status' (bsc#1189392). - scsi: qla2xxx: Update version to 10.02.00.107-k (bsc#1189392). - scsi: qla2xxx: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189392). - scsi: qla2xxx: Use the proper SCSI midlayer interfaces for PI (bsc#1189392). - scsi: qla2xxx: edif: Add authentication pass + fail bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add detection of secure device (bsc#1189392). - scsi: qla2xxx: edif: Add doorbell notification for app (bsc#1189392). - scsi: qla2xxx: edif: Add encryption to I/O path (bsc#1189392). - scsi: qla2xxx: edif: Add extraction of auth_els from the wire (bsc#1189392). - scsi: qla2xxx: edif: Add getfcinfo and statistic bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add key update (bsc#1189392). - scsi: qla2xxx: edif: Add send, receive, and accept for auth_els (bsc#1189392). - scsi: qla2xxx: edif: Add start + stop bsgs (bsc#1189392). - scsi: qla2xxx: edif: Increment command and completion counts (bsc#1189392). - scsi: scsi_transport_srp: Do not block target in SRP_PORT_LOST state (bsc#1184180). - scsi: target: qla2xxx: Wait for stop_phase1 at WWN removal (bsc#1189392). - scsi: zfcp: Report port fc_security as unknown early during remote cable pull (git-fixes). - serial: 8250: Mask out floating 16/32-bit bus bits (git-fixes). - serial: 8250_mtk: fix uart corruption issue when rx power off (git-fixes). - serial: 8250_pci: Avoid irq sharing for MSI(-X) interrupts (git-fixes). - serial: 8250_pci: Enumerate Elkhart Lake UARTs via dedicated driver (git-fixes). - serial: tegra: Only print FIFO error message when an error occurs (git-fixes). - slimbus: messaging: check for valid transaction id (git-fixes). - slimbus: messaging: start transaction ids from 1 instead of zero (git-fixes). - slimbus: ngd: reset dma setup during runtime pm (git-fixes). - soc: aspeed: lpc-ctrl: Fix boundary check for mmap (git-fixes). - soc: aspeed: p2a-ctrl: Fix boundary check for mmap (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: qcom: rpmhpd: Use corner in power_off (git-fixes). - soc: qcom: smsm: Fix missed interrupts if state changes while masked (git-fixes). - spi: imx: mx51-ecspi: Fix CONFIGREG delay comment (git-fixes). - spi: imx: mx51-ecspi: Fix low-speed CONFIGREG delay calculation (git-fixes). - spi: imx: mx51-ecspi: Reinstate low-speed CONFIGREG delay (git-fixes). - spi: mediatek: Fix fifo transfer (git-fixes). - spi: meson-spicc: fix memory leak in meson_spicc_remove (git-fixes). - spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: spi-pic32: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: sprd: Fix the wrong WDG_LOAD_VAL (git-fixes). - spi: stm32h7: fix full duplex irq handler handling (git-fixes). - staging: rtl8192u: Fix bitwise vs logical operator in TranslateRxSignalStuff819xUsb() (git-fixes). - staging: rtl8712: get rid of flush_scheduled_work (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - tracing / histogram: Fix NULL pointer dereference on strcmp() on NULL event name (git-fixes). - tracing / histogram: Give calculation hist_fields a size (git-fixes). - tracing: Reject string operand in the histogram expression (git-fixes). - tty: serial: fsl_lpuart: fix the wrong mapbase value (git-fixes). - ubifs: Fix error return code in alloc_wbufs() (bsc#1189585). - ubifs: Fix memleak in ubifs_init_authentication (bsc#1189583). - ubifs: Only check replay with inode type to judge if inode linked (bsc#1187455). - ubifs: Set/Clear I_LINKABLE under i_lock for whiteout inode (bsc#1189587). - ubifs: journal: Fix error return code in ubifs_jnl_write_inode() (bsc#1189586). - usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA config is available (git-fixes). - usb: dwc3: Disable phy suspend after power-on reset (git-fixes). - usb: dwc3: Separate field holding multiple properties (git-fixes). - usb: dwc3: Stop active transfers before halting the controller (git-fixes). - usb: dwc3: Use clk_bulk_prepare_enable() (git-fixes). - usb: dwc3: Use devres to get clocks (git-fixes). - usb: dwc3: core: do not do suspend for device mode if already suspended (git-fixes). - usb: dwc3: debug: Remove newline printout (git-fixes). - usb: dwc3: gadget: Check MPS of the request length (git-fixes). - usb: dwc3: gadget: Clear DCTL.ULSTCHNGREQ before set (git-fixes). - usb: dwc3: gadget: Clear DEP flags after stop transfers in ep disable (git-fixes). - usb: dwc3: gadget: Disable gadget IRQ during pullup disable (git-fixes). - usb: dwc3: gadget: Do not send unintended link state change (git-fixes). - usb: dwc3: gadget: Do not setup more than requested (git-fixes). - usb: dwc3: gadget: Fix dwc3_calc_trbs_left() (git-fixes). - usb: dwc3: gadget: Fix handling ZLP (git-fixes). - usb: dwc3: gadget: Give back staled requests (git-fixes). - usb: dwc3: gadget: Handle ZLP for sg requests (git-fixes). - usb: dwc3: gadget: Prevent EP queuing while stopping transfers (git-fixes). - usb: dwc3: gadget: Properly track pending and queued SG (git-fixes). - usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup (git-fixes). - usb: dwc3: gadget: Set BESL config parameter (git-fixes). - usb: dwc3: gadget: Set link state to RX_Detect on disconnect (git-fixes). - usb: dwc3: gadget: Stop EP0 transfers during pullup disable (git-fixes). - usb: dwc3: gadget: Workaround Mirosoft's BESL check (git-fixes). - usb: dwc3: meson-g12a: add IRQ check (git-fixes). - usb: dwc3: meson-g12a: check return of dwc3_meson_g12a_usb_init (git-fixes). - usb: dwc3: of-simple: add a shutdown (git-fixes). - usb: dwc3: st: Add of_dev_put() in probe function (git-fixes). - usb: dwc3: st: Add of_node_put() before return in probe function (git-fixes). - usb: dwc3: support continuous runtime PM with dual role (git-fixes). - usb: ehci-orion: Handle errors of clk_prepare_enable() in probe (git-fixes). - usb: gadget: Export recommended BESL values (git-fixes). - usb: gadget: f_hid: added GET_IDLE and SET_IDLE handlers (git-fixes). - usb: gadget: f_hid: fixed NULL pointer dereference (git-fixes). - usb: gadget: f_hid: idle uses the highest byte for duration (git-fixes). - usb: gadget: mv_u3d: request_irq() after initializing UDC (git-fixes). - usb: gadget: udc: at91: add IRQ check (git-fixes). - usb: gadget: udc: renesas_usb3: Fix soc_device_match() abuse (git-fixes). - usb: host: ohci-tmio: add IRQ check (git-fixes). - usb: host: xhci-rcar: Do not reload firmware after the completion (git-fixes). - usb: mtu3: fix the wrong HS mult value (git-fixes). - usb: mtu3: use @mult for HS isoc or intr (git-fixes). - usb: phy: fsl-usb: add IRQ check (git-fixes). - usb: phy: tahvo: add IRQ check (git-fixes). - usb: phy: twl6030: add IRQ checks (git-fixes). - usr: Add support for zstd compressed initramfs (bsc#1187483, jsc#SLE-18766). - virt_wifi: fix error on connect (git-fixes). - wireguard: allowedips: allocate nodes in kmem_cache (git-fixes). - wireguard: allowedips: free empty intermediate nodes when removing single node (git-fixes). - wireguard: allowedips: remove nodes in O(1) (git-fixes). - writeback: fix obtain a reference to a freeing memcg css (bsc#1189577). - x86/fpu: Limit xstate copy size in xstateregs_set() (bsc#1152489). - x86/fpu: Make init_fpstate correct with optimized XSAVE (bsc#1152489). - x86/fpu: Reset state for all signal restore failures (bsc#1152489). - x86/kvm: fix vcpu-id indexed array sizes (git-fixes). - x86/sev: Make sure IRQs are disabled while GHCB is active (jsc#SLE-14337). - x86/sev: Split up runtime #VC handler for correct state tracking (jsc#SLE-14337). - x86/sev: Use "SEV: " prefix for messages from sev.c (jsc#SLE-14337). - x86/signal: Detect and prevent an alternate signal stack overflow (bsc#1152489). - x86/split_lock: Provide handle_guest_split_lock() (bsc#1187959). - xen/events: Fix race in set_evtchn_to_irq (git-fixes). - xprtrdma: Pad optimization, revisited (bsc#1189760). cluster-md-kmp-default-5.3.18-59.24.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.24.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.24.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True kernel-debug-5.3.18-59.24.1.nosrc.rpm True kernel-debug-5.3.18-59.24.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.24.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-5.3.18-59.24.1.nosrc.rpm True kernel-default-5.3.18-59.24.1.x86_64.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.src.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.x86_64.rpm True kernel-default-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-extra-5.3.18-59.24.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.24.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-default-optional-5.3.18-59.24.1.x86_64.rpm True kernel-devel-5.3.18-59.24.1.noarch.rpm True kernel-docs-5.3.18-59.24.1.noarch.rpm True kernel-docs-5.3.18-59.24.1.nosrc.rpm True kernel-docs-html-5.3.18-59.24.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.24.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.24.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.24.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-macros-5.3.18-59.24.1.noarch.rpm True kernel-obs-build-5.3.18-59.24.1.src.rpm True kernel-obs-build-5.3.18-59.24.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.24.1.src.rpm True kernel-obs-qa-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-5.3.18-59.24.1.nosrc.rpm True kernel-preempt-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.24.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.24.1.x86_64.rpm True kernel-source-5.3.18-59.24.1.noarch.rpm True kernel-source-5.3.18-59.24.1.src.rpm True kernel-source-vanilla-5.3.18-59.24.1.noarch.rpm True kernel-syms-5.3.18-59.24.1.src.rpm True kernel-syms-5.3.18-59.24.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.24.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.24.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.24.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.24.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.24.1.s390x.rpm True dlm-kmp-default-5.3.18-59.24.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.24.1.s390x.rpm True kernel-default-5.3.18-59.24.1.s390x.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.s390x.rpm True kernel-default-devel-5.3.18-59.24.1.s390x.rpm True kernel-default-extra-5.3.18-59.24.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.24.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.s390x.rpm True kernel-default-optional-5.3.18-59.24.1.s390x.rpm True kernel-obs-build-5.3.18-59.24.1.s390x.rpm True kernel-obs-qa-5.3.18-59.24.1.s390x.rpm True kernel-syms-5.3.18-59.24.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.24.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.24.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.24.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.24.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.24.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.24.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.24.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-5.3.18-59.24.1.ppc64le.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.24.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.24.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.24.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.24.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.24.1.ppc64le.rpm True kernel-syms-5.3.18-59.24.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.24.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.24.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.24.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.24.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.24.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True dtb-aarch64-5.3.18-59.24.1.src.rpm True dtb-al-5.3.18-59.24.1.aarch64.rpm True dtb-allwinner-5.3.18-59.24.1.aarch64.rpm True dtb-altera-5.3.18-59.24.1.aarch64.rpm True dtb-amd-5.3.18-59.24.1.aarch64.rpm True dtb-amlogic-5.3.18-59.24.1.aarch64.rpm True dtb-apm-5.3.18-59.24.1.aarch64.rpm True dtb-arm-5.3.18-59.24.1.aarch64.rpm True dtb-broadcom-5.3.18-59.24.1.aarch64.rpm True dtb-cavium-5.3.18-59.24.1.aarch64.rpm True dtb-exynos-5.3.18-59.24.1.aarch64.rpm True dtb-freescale-5.3.18-59.24.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.24.1.aarch64.rpm True dtb-lg-5.3.18-59.24.1.aarch64.rpm True dtb-marvell-5.3.18-59.24.1.aarch64.rpm True dtb-mediatek-5.3.18-59.24.1.aarch64.rpm True dtb-nvidia-5.3.18-59.24.1.aarch64.rpm True dtb-qcom-5.3.18-59.24.1.aarch64.rpm True dtb-renesas-5.3.18-59.24.1.aarch64.rpm True dtb-rockchip-5.3.18-59.24.1.aarch64.rpm True dtb-socionext-5.3.18-59.24.1.aarch64.rpm True dtb-sprd-5.3.18-59.24.1.aarch64.rpm True dtb-xilinx-5.3.18-59.24.1.aarch64.rpm True dtb-zte-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.24.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-5.3.18-59.24.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.24.1.aarch64.rpm True kernel-default-5.3.18-59.24.1.aarch64.rpm True kernel-default-base-5.3.18-59.24.1.18.12.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.24.1.18.12.1.aarch64.rpm True kernel-default-devel-5.3.18-59.24.1.aarch64.rpm True kernel-default-extra-5.3.18-59.24.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.24.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-default-optional-5.3.18-59.24.1.aarch64.rpm True kernel-obs-build-5.3.18-59.24.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.24.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.24.1.aarch64.rpm True kernel-syms-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.24.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.24.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.24.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.24.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3179 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172). - CVE-2021-3653: Missing validation of the `int_ctl` VMCB field and allows a malicious L1 guest to enable AVIC support for the L2 guest. (bsc#1189399). - CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400). - CVE-2021-3679: A lack of CPU resource in tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057). - CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706). - CVE-2021-3739: Fixed a NULL pointer dereference when deleting device by invalid id (bsc#1189832 ). - CVE-2021-3743: Fixed OOB Read in qrtr_endpoint_post (bsc#1189883). - CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025). - CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117) - CVE-2021-38198: arch/x86/kvm/mmu/paging_tmpl.h incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault (bnc#1189262). - CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291). - CVE-2021-38205: drivers/net/ethernet/xilinx/xilinx_emaclite.c made it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer) (bnc#1189292). - CVE-2021-38207: drivers/net/ethernet/xilinx/ll_temac_main.c allowed remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes (bnc#1189298). - CVE-2021-38166: Fixed an integer overflow and out-of-bounds write when many elements are placed in a single bucket in kernel/bpf/hashtab.c (bnc#1189233 ). - CVE-2021-38209: Fixed allowed observation of changes in any net namespace via net/netfilter/nf_conntrack_standalone.c (bnc#1189393). - CVE-2021-38206: Fixed NULL pointer dereference in the radiotap parser inside the mac80211 subsystem (bnc#1189296). - CVE-2021-34556: Fixed side-channel attack via a Speculative Store Bypass via unprivileged BPF program that could have obtain sensitive information from kernel memory (bsc#1188983). - CVE-2021-35477: Fixed BPF stack frame pointer which could have been abused to disclose content of arbitrary kernel memory (bsc#1188985). - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks (bsc#1190115). - CVE-2020-12770: Fixed sg_remove_request call in a certain failure cases (bsc#1171420). The following non-security bugs were fixed: - ACPI: NFIT: Fix support for virtual SPA ranges (git-fixes). - ACPI: processor: Clean up acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Export function to claim _CST control (bsc#1175543) - ACPI: processor: Introduce acpi_processor_evaluate_cst() (bsc#1175543) - ACPI: processor: Make ACPI_PROCESSOR_CSTATE depend on ACPI_PROCESSOR (bsc#1175543) - ALSA: hda - fix the 'Capture Switch' value change notifications (git-fixes). - ALSA: hda/hdmi: Add quirk to force pin connectivity on NUC10 (git-fixes). - ALSA: hda/hdmi: fix max DP-MST dev_num for Intel TGL+ platforms (git-fixes). - ALSA: hda/hdmi: let new platforms assign the pcm slot dynamically (git-fixes). - ALSA: hda/realtek - Add ALC285 HP init procedure (git-fixes). - ALSA: hda/realtek - Add type for ALC287 (git-fixes). - ALSA: hda/realtek: Change device names for quirks to barebone names (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9510 laptop (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SWIFT SF314-56 (ALC256) (git-fixes). - ALSA: hda/realtek: Limit mic boost on HP ProBook 445 G8 (git-fixes). - ALSA: hda/realtek: add mic quirk for Acer SF314-42 (git-fixes). - ALSA: hda/realtek: fix mute led of the HP Pavilion 15-eh1xxx series (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP ProBook 650 G8 Notebook PC (git-fixes). - ALSA: hda/via: Apply runtime PM workaround for ASUS B23E (git-fixes). - ALSA: hda: Add quirk for ASUS Flow x13 (git-fixes). - ALSA: hda: Fix hang during shutdown due to link reset (git-fixes). - ALSA: hda: Release controller display power during shutdown/reboot (git-fixes). - ALSA: pcm: Fix mmap breakage without explicit buffer setup (git-fixes). - ALSA: pcm: fix divide error in snd_pcm_lib_ioctl (git-fixes). - ALSA: seq: Fix racy deletion of subscriber (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 600 (git-fixes). - ALSA: usb-audio: Avoid unnecessary or invalid connector selection at resume (git-fixes). - ALSA: usb-audio: Fix regression on Sony WALKMAN NW-A45 DAC (git-fixes). - ALSA: usb-audio: Fix superfluous autosuspend recovery (git-fixes). - ALSA: usb-audio: fix incorrect clock source setting (git-fixes). - ASoC: Intel: Skylake: Fix module resource and format selection (git-fixes). - ASoC: Intel: Skylake: Leave data as is when invoking TLV IPCs (git-fixes). - ASoC: Intel: kbl_da7219_max98927: Fix format selection for max98373 (git-fixes). - ASoC: SOF: Intel: hda-ipc: fix reply size checking (git-fixes). - ASoC: amd: Fix reference to PCM buffer address (git-fixes). - ASoC: component: Remove misplaced prefix handling in pin control functions (git-fixes). - ASoC: cs42l42: Correct definition of ADC Volume control (git-fixes). - ASoC: cs42l42: Do not allow SND_SOC_DAIFMT_LEFT_J (git-fixes). - ASoC: cs42l42: Fix LRCLK frame start edge (git-fixes). - ASoC: cs42l42: Fix inversion of ADC Notch Switch control (git-fixes). - ASoC: cs42l42: Remove duplicate control for WNF filter frequency (git-fixes). - ASoC: intel: atom: Fix breakage for PCM buffer address setup (git-fixes). - ASoC: intel: atom: Fix reference to PCM buffer address (git-fixes). - ASoC: mediatek: mt8183: Fix Unbalanced pm_runtime_enable in mt8183_afe_pcm_dev_probe (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold (git-fixes). - ASoC: rt5682: Adjust headset volume button threshold again (git-fixes). - ASoC: rt5682: Fix the issue of garbled recording after powerd_dbus_suspend (git-fixes). - ASoC: ti: j721e-evm: Check for not initialized parent_clk_id (git-fixes). - ASoC: ti: j721e-evm: Fix unbalanced domain activity tracking during startup (git-fixes). - ASoC: tlv320aic31xx: Fix jack detection after suspend (git-fixes). - ASoC: tlv320aic31xx: fix reversed bclk/wclk master bits (git-fixes). - ASoC: uniphier: Fix reference to PCM buffer address (git-fixes). - ASoC: wcd9335: Disable irq on slave ports in the remove function (git-fixes). - ASoC: wcd9335: Fix a double irq free in the remove function (git-fixes). - ASoC: wcd9335: Fix a memory leak in the error handling path of the probe function (git-fixes). - ASoC: xilinx: Fix reference to PCM buffer address (git-fixes). - Avoid double printing SUSE specific flags in mod->taint (bsc#1190413). - Bluetooth: add timeout sanity check to hci_inquiry (git-fixes). - Bluetooth: btusb: Fix a unspported condition to set available debug features (git-fixes). - Bluetooth: btusb: check conditions before enabling USB ALT 3 for WBS (git-fixes). - Bluetooth: defer cleanup of resources in hci_unregister_dev() (git-fixes). - Bluetooth: fix repeated calls to sco_sock_kill (git-fixes). - Bluetooth: hidp: use correct wait queue when removing ctrl_wait (git-fixes). - Bluetooth: increase BTNAMSIZ to 21 chars to fix potential buffer overflow (git-fixes). - Bluetooth: mgmt: Fix wrong opcode in the response for add_adv cmd (git-fixes). - Bluetooth: sco: prevent information leak in sco_conn_defer_accept() (git-fixes). - Documentation: admin-guide: PM: Add intel_idle document (bsc#1175543) - KVM: VMX: Drop guest CPUID check for VMXE in vmx_set_cr4() (bsc#1188786). - KVM: VMX: Enable machine check support for 32bit targets (bsc#1188787). - KVM: VMX: Explicitly clear RFLAGS.CF and RFLAGS.ZF in VM-Exit RSB path (bsc#1188788). - KVM: VMX: Extend VMXs #AC interceptor to handle split lock #AC in guest (bsc#1187959). - KVM: nVMX: Handle split-lock #AC exceptions that happen in L2 (bsc#1187959). - KVM: nVMX: Really make emulated nested preemption timer pinned (bsc#1188780). - KVM: nVMX: Reset the segment cache when stuffing guest segs (bsc#1188781). - KVM: nVMX: Skip IBPB when switching between vmcs01 and vmcs02 (bsc#1188782). - KVM: nVMX: Sync unsync'd vmcs02 state to vmcs12 on migration (bsc#1188783). - KVM: nVMX: Truncate bits 63:32 of VMCS field on nested check in !64-bit (bsc#1188784). - KVM: x86: Emulate split-lock access as a write in emulator (bsc#1187959). - KVM: x86: bit 8 of non-leaf PDPEs is not reserved (bsc#1188790). - NFS: Correct size calculation for create reply length (bsc#1189870). - NFSv4.1: Do not rebind to the same source port when (bnc#1186264 bnc#1189021) - NFSv4/pNFS: Do not call _nfs4_pnfs_v3_ds_connect multiple times (git-fixes). - NFSv4: Initialise connection to the server in nfs4_alloc_client() (bsc#1040364). - PCI/MSI: Correct misleading comments (git-fixes). - PCI/MSI: Do not set invalid bits in MSI mask (git-fixes). - PCI/MSI: Enable and mask MSI-X early (git-fixes). - PCI/MSI: Mask all unused MSI-X entries (git-fixes). - PCI/MSI: Skip masking MSI-X on Xen PV (git-fixes). - PCI/MSI: Use msi_mask_irq() in pci_msi_shutdown() (git-fixes). - PCI: Increase D3 delay for AMD Renoir/Cezanne XHCI (git-fixes). - PCI: PM: Avoid forcing PCI_D0 for wakeup reasons inconsistently (git-fixes). - PCI: PM: Enable PME if it can be signaled from D3cold (git-fixes). - RDMA/bnxt_re: Fix stats counters (bsc#1188231). - SUNRPC: 'Directory with parent 'rpc_clnt' already present!' (bsc#1168202 bsc#1188924). - SUNRPC: Fix the batch tasks count wraparound (git-fixes). - SUNRPC: Should wake up the privileged task firstly (git-fixes). - SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - SUNRPC: fix use-after-free in rpc_free_client_work() (bsc#1168202 bsc#1188924). - SUNRPC: improve error response to over-size gss credential (bsc#1190022). - SUNRPC: prevent port reuse on transports which do not request it (bnc#1186264 bnc#1189021). - USB: core: Avoid WARNings for 0-length descriptor requests (git-fixes). - USB: serial: ch341: fix character loss at high transfer rates (git-fixes). - USB: serial: ftdi_sio: add device ID for Auto-M3 OP-COM v2 (git-fixes). - USB: serial: option: add Telit FD980 composition 0x1056 (git-fixes). - USB: usbtmc: Fix RCU stall warning (git-fixes). - USB:ehci:fix Kunpeng920 ehci hardware problem (git-fixes). - VMCI: fix NULL pointer dereference when unmapping queue pair (git-fixes). - ath6kl: wmi: fix an error code in ath6kl_wmi_sync_point() (git-fixes). - ath9k: Clear key cache explicitly on disabling hardware (git-fixes). - ath: Use safer key clearing with key cache entries (git-fixes). - bcma: Fix memory leak for internally-handled cores (git-fixes). - bdi: Do not use freezable workqueue (bsc#1189573). - blk-iolatency: error out if blk_get_queue() failed in iolatency_set_limit() (bsc#1189507). - blk-mq-sched: Fix blk_mq_sched_alloc_tags() error handling (bsc#1189506). - blk-wbt: introduce a new disable state to prevent false positive by rwb_enabled() (bsc#1189503). - blk-wbt: make sure throttle is enabled properly (bsc#1189504). - block: fix trace completion for chained bio (bsc#1189505). - bnxt_en: Validate vlan protocol ID on RX packets (jsc#SLE-15075). - brcmfmac: pcie: fix oops on failure to resume and reprobe (git-fixes). - btrfs: Rename __btrfs_alloc_chunk to btrfs_alloc_chunk (bsc#1189079). - btrfs: add a trace class for dumping the current ENOSPC state (bsc#1135481). - btrfs: add a trace point for reserve tickets (bsc#1135481). - btrfs: adjust the flush trace point to include the source (bsc#1135481). - btrfs: check reclaim_size in need_preemptive_reclaim (bsc#1135481). - btrfs: factor out create_chunk() (bsc#1189077). - btrfs: factor out decide_stripe_size() (bsc#1189077). - btrfs: factor out gather_device_info() (bsc#1189077). - btrfs: factor out init_alloc_chunk_ctl (bsc#1189077). - btrfs: fix btrfs_calc_reclaim_metadata_size calculation (bsc#1135481). - btrfs: fix deadlock with concurrent chunk allocations involving system chunks (bsc#1189077). - btrfs: handle invalid profile in chunk allocation (bsc#1189077). - btrfs: implement space clamping for preemptive flushing (bsc#1135481). - btrfs: improve preemptive background space flushing (bsc#1135481). - btrfs: introduce a FORCE_COMMIT_TRANS flush operation (bsc#1135481). - btrfs: introduce alloc_chunk_ctl (bsc#1189077). - btrfs: introduce chunk allocation policy (bsc#1189077). - btrfs: make flush_space take a enum btrfs_flush_state instead of int (bsc#1135481). - btrfs: move the chunk_mutex in btrfs_read_chunk_tree (bsc#1189077). - btrfs: parameterize dev_extent_min for chunk allocation (bsc#1189077). - btrfs: refactor find_free_dev_extent_start() (bsc#1189077). - btrfs: remove FLUSH_DELAYED_REFS from data ENOSPC flushing (bsc#1135481). - btrfs: rename need_do_async_reclaim (bsc#1135481). - btrfs: rework btrfs_calc_reclaim_metadata_size (bsc#1135481). - btrfs: rework chunk allocation to avoid exhaustion of the system chunk array (bsc#1189077). - btrfs: rip out btrfs_space_info::total_bytes_pinned (bsc#1135481). - btrfs: rip the first_ticket_bytes logic from fail_all_tickets (bsc#1135481). - btrfs: simplify the logic in need_preemptive_flushing (bsc#1135481). - btrfs: tracepoints: convert flush states to using EM macros (bsc#1135481). - btrfs: tracepoints: fix btrfs_trigger_flush symbolic string for flags (bsc#1135481). - can: ti_hecc: Fix memleak in ti_hecc_probe (git-fixes). - can: usb: esd_usb2: esd_usb2_rx_event(): fix the interchange of the CAN RX and TX error counters (git-fixes). - ceph: clean up and optimize ceph_check_delayed_caps() (bsc#1187468). - ceph: reduce contention in ceph_check_delayed_caps() (bsc#1187468). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1189427). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - clk: fix leak on devm_clk_bulk_get_all() unwind (git-fixes). - clk: stm32f4: fix post divisor setup for I2S/SAI PLLs (git-fixes). - cpuidle: Allow idle states to be disabled by default (bsc#1175543) - cpuidle: Consolidate disabled state checks (bsc#1175543) - cpuidle: Drop disabled field from struct cpuidle_state (bsc#1175543) - cpuidle: Fix cpuidle_driver_state_disabled() (bsc#1175543) - cpuidle: Introduce cpuidle_driver_state_disabled() for driver quirks (bsc#1175543) - crypto: ccp - Annotate SEV Firmware file names (bsc#1189212). - crypto: qat - use proper type for vf_mask (git-fixes). - crypto: x86/curve25519 - fix cpu feature checking logic in mod_exit (git-fixes). - device-dax: Fix default return code of range_parse() (git-fixes). - dm integrity: fix missing goto in bitmap_flush_interval error handling (git-fixes). - dm rq: fix double free of blk_mq_tag_set in dev remove after table load fails (git-fixes). - dm verity: fix DM_VERITY_OPTS_MAX value (git-fixes). - dmaengine: idxd: fix setup sequence for MSIXPERM table (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-dma: configure the generic DMA type to make it work (git-fixes). - dmaengine: imx-sdma: remove duplicated sdma_load_context (git-fixes). - dmaengine: of-dma: router_xlate to return -EPROBE_DEFER if controller is not yet available (git-fixes). - dmaengine: usb-dmac: Fix PM reference leak in usb_dmac_probe() (git-fixes). - dmaengine: xilinx_dma: Fix read-after-free bug when terminating transfers (git-fixes). - drivers/block/null_blk/main: Fix a double free in null_init (git-fixes). - drm/amd/display: Fix Dynamic bpp issue with 8K30 with Navi 1X (git-fixes). - drm/amd/display: Fix comparison error in dcn21 DML (git-fixes). - drm/amd/display: Fix max vstartup calculation for modes with borders (git-fixes). - drm/amd/display: Remove invalid assert for ODM + MPC case (git-fixes). - drm/amd/display: use GFP_ATOMIC in amdgpu_dm_irq_schedule_work (git-fixes). - drm/amd/display: workaround for hard hang on HPD on native DP (git-fixes). - drm/amdgpu/acp: Make PM domain really work (git-fixes). - drm/amdgpu/display: fix DMUB firmware version info (git-fixes). - drm/amdgpu/display: only enable aux backlight control for OLED panels (git-fixes). - drm/amdgpu: do not enable baco on boco platforms in runpm (git-fixes). - drm/amdgpu: fix the doorbell missing when in CGPG issue for renoir (git-fixes). - drm/dp_mst: Fix return code on sideband message failure (git-fixes). - drm/i915/dg1: gmbus pin mapping (bsc#1188700). - drm/i915/dg1: provide port/phy mapping for vbt (bsc#1188700). - drm/i915/gen9_bc: Add W/A for missing STRAP config on TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce HPD pin mappings for TGP PCH + CML combos (bsc#1188700). - drm/i915/gen9_bc: Introduce TGP PCH DDC pin mappings (bsc#1188700). - drm/i915/gen9_bc: Recognize TGP PCH + CML combos (bsc#1188700). - drm/i915/rkl: new rkl ddc map for different PCH (bsc#1188700). - drm/i915: Add VBT AUX CH H and I (bsc#1188700). - drm/i915: Add VBT DVO ports H and I (bsc#1188700). - drm/i915: Add more AUX CHs to the enum (bsc#1188700). - drm/i915: Configure GEN11_{TBT,TC}_HOTPLUG_CTL for ports TC5/6 (bsc#1188700). - drm/i915: Correct SFC_DONE register offset (git-fixes). - drm/i915: Introduce HPD_PORT_TC&lt;n> (bsc#1188700). - drm/i915: Move hpd_pin setup to encoder init (bsc#1188700). - drm/i915: Nuke the redundant TC/TBT HPD bit defines (bsc#1188700). - drm/i915: Only access SFC_DONE when media domain is not fused off (git-fixes). - drm/meson: fix colour distortion from HDR set during vendor u-boot (git-fixes). - drm/msi/mdp4: populate priv->kms in mdp4_kms_init (git-fixes). - drm/msm/dpu: make dpu_hw_ctl_clear_all_blendstages clear necessary LMs (git-fixes). - drm/msm/dsi: Fix some reference counted resource leaks (git-fixes). - drm/msm: Fix error return code in msm_drm_init() (git-fixes). - drm/nouveau/kms/nv50: workaround EFI GOP window channel format differences (git-fixes). - drm/of: free the iterator object on failure (git-fixes). - drm/of: free the right object (git-fixes). - drm/panfrost: Fix missing clk_disable_unprepare() on error in panfrost_clk_init() (git-fixes). - drm/prime: fix comment on PRIME Helpers (git-fixes). - ext4: cleanup in-core orphan list if ext4_truncate() failed to get a transaction handle (bsc#1189568). - ext4: correct the cache_nr in tracepoint ext4_es_shrink_exit (bsc#1189564). - ext4: fix avefreec in find_group_orlov (bsc#1189566). - ext4: fix kernel infoleak via ext4_extent_header (bsc#1189562). - ext4: fix potential htree corruption when growing large_dir directories (bsc#1189576). - ext4: remove check for zero nr_to_scan in ext4_es_scan() (bsc#1189565). - ext4: return error code when ext4_fill_flex_info() fails (bsc#1189563). - ext4: use ext4_grp_locked_error in mb_find_extent (bsc#1189567). - fanotify: fix copy_event_to_user() fid error clean up (bsc#1189574). - firmware_loader: fix use-after-free in firmware_fallback_sysfs (git-fixes). - firmware_loader: use -ETIMEDOUT instead of -EAGAIN in fw_load_sysfs_fallback (git-fixes). - fixup "rpm: support gz and zst compression methods" (bsc#1190358, bsc#1190428). - fpga: altera-freeze-bridge: Address warning about unused variable (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: dfl: fme: Fix cpu hotplug issue in performance reporting (git-fixes). - fpga: xiilnx-spi: Address warning about unused variable (git-fixes). - fpga: zynqmp-fpga: Address warning about unused variable (git-fixes). - gpio: eic-sprd: break loop when getting NULL device resource (git-fixes). - gpio: tqmx86: really make IRQ optional (git-fixes). - i2c: dev: zero out array used for i2c reads from userspace (git-fixes). - i2c: highlander: add IRQ check (git-fixes). - i2c: iop3xx: fix deferred probing (git-fixes). - i2c: mt65xx: fix IRQ check (git-fixes). - i2c: s3c2410: fix IRQ check (git-fixes). - iio: adc: Fix incorrect exit of for-loop (git-fixes). - iio: adc: ti-ads7950: Ensure CS is deasserted after reading channels (git-fixes). - iio: humidity: hdc100x: Add margin to the conversion time (git-fixes). - intel_idle: Add module parameter to prevent ACPI _CST from being used (bsc#1175543) - intel_idle: Allow ACPI _CST to be used for selected known processors (bsc#1175543) - intel_idle: Annotate init time data structures (bsc#1175543) - intel_idle: Customize IceLake server support (bsc#1175543) - intel_idle: Disable ACPI _CST on Haswell (bsc#1175543, bsc#1177399, bsc#1180347, bsc#1180141) - intel_idle: Fix max_cstate for processor models without C-state tables (bsc#1175543) - intel_idle: Ignore _CST if control cannot be taken from the platform (bsc#1175543) - intel_idle: Refactor intel_idle_cpuidle_driver_init() (bsc#1175543) - intel_idle: Use ACPI _CST for processor models without C-state tables (bsc#1175543) - iommu/amd: Fix extended features logging (bsc#1189213). - iommu/amd: Move Stoney Ridge check to detect_ivrs() (bsc#1189762). - iommu/arm-smmu-v3: Decrease the queue size of evtq and priq (bsc#1189210). - iommu/arm-smmu-v3: add bit field SFM into GERROR_ERR_MASK (bsc#1189209). - iommu/dma: Fix IOVA reserve dma ranges (bsc#1189214). - iommu/dma: Fix compile warning in 32-bit builds (bsc#1189229). - iommu/vt-d: Check for allocation failure in aux_detach_device() (bsc#1189215). - iommu/vt-d: Define counter explicitly as unsigned int (bsc#1189216). - iommu/vt-d: Do not set then clear private data in prq_event_thread() (bsc#1189217). - iommu/vt-d: Fix sysfs leak in alloc_iommu() (bsc#1189218). - iommu/vt-d: Force to flush iotlb before creating superpage (bsc#1189219). - iommu/vt-d: Global devTLB flush when present context entry changed (bsc#1189220). - iommu/vt-d: Invalidate PASID cache when root/context entry changed (bsc#1189221). - iommu/vt-d: Reject unsupported page request modes (bsc#1189222). - ionic: add handling of larger descriptors (jsc#SLE-16649). - ionic: add new queue features to interface (jsc#SLE-16649). - ionic: aggregate Tx byte counting calls (jsc#SLE-16649). - ionic: block actions during fw reset (jsc#SLE-16649). - ionic: change mtu after queues are stopped (jsc#SLE-16649). - ionic: check for link after netdev registration (jsc#SLE-16649). - ionic: code cleanup details (jsc#SLE-16649). - ionic: fix sizeof usage (jsc#SLE-16649). - ionic: fix unchecked reference (jsc#SLE-16649). - ionic: fix up dim accounting for tx and rx (jsc#SLE-16649). - ionic: generic tx skb mapping (jsc#SLE-16649). - ionic: implement Rx page reuse (jsc#SLE-16649). - ionic: make all rx_mode work threadsafe (jsc#SLE-16649). - ionic: move rx_page_alloc and free (jsc#SLE-16649). - ionic: optimize fastpath struct usage (jsc#SLE-16649). - ionic: protect adminq from early destroy (jsc#SLE-16649). - ionic: rebuild debugfs on qcq swap (jsc#SLE-16649). - ionic: remove intr coalesce update from napi (jsc#SLE-16649). - ionic: remove some unnecessary oom messages (jsc#SLE-16649). - ionic: simplify TSO descriptor mapping (jsc#SLE-16649). - ionic: simplify rx skb alloc (jsc#SLE-16649). - ionic: simplify the intr_index use in txq_init (jsc#SLE-16649). - ionic: simplify tx clean (jsc#SLE-16649). - ionic: simplify use of completion types (jsc#SLE-16649). - ionic: start queues before announcing link up (jsc#SLE-16649). - ionic: stop watchdog when in broken state (jsc#SLE-16649). - ionic: useful names for booleans (jsc#SLE-16649). - iwlwifi: pnvm: accept multiple HW-type TLVs (git-fixes). - iwlwifi: rs-fw: do not support stbc for HE 160 (git-fixes). - iwlwifi: skip first element in the WTAS ACPI table (git-fixes). - kABI fix of usb_dcd_config_params (git-fixes). - kABI: Fix kABI after fixing vcpu-id indexed arrays (git-fixes). - kabi fix for NFSv4.1: Do not rebind to the same source port when reconnecting to the server (bnc#1186264 bnc#1189021) - kabi fix for SUNRPC: defer slow parts of rpc_free_client() to a workqueue (bsc#1168202 bsc#1188924). - kernel, fs: Introduce and use set_restart_fn() and arch_set_restart_data() (bsc#1189153). - kernel-cert-subpackage: Fix certificate location in scriptlets (bsc#1189841). - leds: trigger: audio: Add an activate callback to ensure the initial brightness is set (git-fixes). - lib/mpi: use kcalloc in mpi_resize (git-fixes). - lib: Add zstd support to decompress (bsc#1187483, jsc#SLE-18766). - libata: fix ata_pio_sector for CONFIG_HIGHMEM (git-fixes). - mac80211: Fix insufficient headroom issue for AMSDU (git-fixes). - md/raid10: properly indicate failure when ending a failed write request (git-fixes). - md: revert io stats accounting (git-fixes). - media: TDA1997x: enable EDID support (git-fixes). - media: cxd2880-spi: Fix an error handling path (git-fixes). - media: drivers/media/usb: fix memory leak in zr364xx_probe (git-fixes). - media: dvb-usb: Fix error handling in dvb_usb_i2c_init (git-fixes). - media: dvb-usb: fix uninit-value in dvb_usb_adapter_dvb_init (git-fixes). - media: dvb-usb: fix uninit-value in vp702x_read_mac_addr (git-fixes). - media: em28xx-input: fix refcount bug in em28xx_usb_disconnect (git-fixes). - media: go7007: fix memory leak in go7007_usb_probe (git-fixes). - media: go7007: remove redundant initialization (git-fixes). - media: rtl28xxu: fix zero-length control request (git-fixes). - media: stkwebcam: fix memory leak in stk_camera_probe (git-fixes). - media: venus: venc: Fix potential null pointer dereference on pointer fmt (git-fixes). - media: videobuf2-core: dequeue if start_streaming fails (git-fixes). - media: zr364xx: fix memory leaks in probe() (git-fixes). - media: zr364xx: propagate errors from zr364xx_start_readpipe() (git-fixes). - misc: atmel-ssc: lock with mutex instead of spinlock (git-fixes). - misc: rtsx: do not setting OC_POWER_DOWN reg in rtsx_pci_init_ocp() (git-fixes). - mm/thp: unmap_mapping_page() to fix THP truncate_cleanup_page() (bsc#1189569). - mm/vmscan: fix infinite loop in drop_slab_node (VM Functionality, bsc#1189301). - mm: fix memory_failure() handling of dax-namespace metadata (bsc#1189872). - mm: swap: properly update readahead statistics in unuse_pte_range() (bsc#1187619). - mmc: dw_mmc: Fix hang on data CRC error (git-fixes). - mmc: dw_mmc: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: moxart: Fix issue with uninitialized dma_slave_config (git-fixes). - mmc: sdhci-iproc: Cap min clock frequency on BCM2711 (git-fixes). - mmc: sdhci-iproc: Set SDHCI_QUIRK_CAP_CLOCK_BASE_BROKEN on BCM2711 (git-fixes). - mtd: cfi_cmdset_0002: fix crash when erasing/writing AMD cards (git-fixes). - nbd: Aovid double completion of a request (git-fixes). - nbd: Fix NULL pointer in flush_workqueue (git-fixes). - net/mlx5: Add ts_cqe_to_dest_cqn related bits (bsc#1188412) - net/mlx5: Properly convey driver version to firmware (git-fixes). - net/mlx5e: Add missing capability check for uplink follow (bsc#1188412) - net: dsa: mv88e6xxx: Avoid VTU corruption on 6097 (git-fixes). - net: dsa: mv88e6xxx: also read STU state in mv88e6250_g1_vtu_getnext (git-fixes). - net: stmmac: free tx skb buffer in stmmac_resume() (git-fixes). - net: usb: lan78xx: do not modify phy_device state concurrently (bsc#1188270) - nfs: fix acl memory leak of posix_acl_create() (git-fixes). - nvme-multipath: revalidate paths during rescan (bsc#1187211) - nvme-pci: Use u32 for nvme_dev.q_depth and nvme_queue.q_depth (bsc#1181972). - nvme-pci: fix NULL req in completion handler (bsc#1181972). - nvme-pci: limit maximum queue depth to 4095 (bsc#1181972). - nvme-pci: use unsigned for io queue depth (bsc#1181972). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme-tcp: do not check blk_mq_tag_to_rq when receiving pdu data (bsc#1181972). - nvme: avoid possible double fetch in handling CQE (bsc#1181972). - nvme: code command_id with a genctr for use-after-free validation (bsc#1181972). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - nvmet: use NVMET_MAX_NAMESPACES to set nn value (bsc#1189384). - ocfs2: fix snprintf() checking (bsc#1189581). - ocfs2: fix zero out valid data (bsc#1189579). - ocfs2: initialize ip_next_orphan (bsc#1186731). - ocfs2: issue zeroout to EOF blocks (bsc#1189582). - ovl: allow upperdir inside lowerdir (bsc#1189323). - ovl: expand warning in ovl_d_real() (bsc#1189323). - ovl: fix missing revert_creds() on error path (bsc#1189323). - ovl: perform vfs_getxattr() with mounter creds (bsc#1189323). - ovl: skip getxattr of security labels (bsc#1189323). - params: lift param_set_uint_minmax to common code (bsc#1181972). - pcmcia: i82092: fix a null pointer dereference bug (git-fixes). - perf/x86/amd: Do not touch the AMD64_EVENTSEL_HOSTONLY bit inside the guest (bsc#1189225). - pinctrl: tigerlake: Fix GPIO mapping for newer version of software (git-fixes). - platform/x86: pcengines-apuv2: Add missing terminating entries to gpio-lookup tables (git-fixes). - post.sh: detect /usr mountpoint too - power: supply: max17042: handle fails of reading status register (git-fixes). - powerpc/cacheinfo: Improve diagnostics about malformed cache lists (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Lookup cache by dt node and thread-group id (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Remove the redundant get_shared_cpu_map() (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/cacheinfo: Use name@unit instead of full DT path in debug messages (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/papr_scm: Make 'perf_stats' invisible if perf-stats unavailable (bsc#1175052 jsc#SLE-13823 bsc#1174969 jsc#SLE-12769 git-fixes). - powerpc/papr_scm: Reduce error severity if nvdimm stats inaccessible (bsc#1189197 ltc#193906). - powerpc/pseries: Fix regression while building external modules (bsc#1160010 ltc#183046 git-fixes). - powerpc/pseries: Fix update of LPAR security flavor after LPM (bsc#1188885 ltc#193722 git-fixes). - powerpc/smp: Make some symbols static (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Use existing L2 cache_map cpumask to find L3 cache siblings (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc: Fix is_kvm_guest() / kvm_para_available() (bsc#1181148 ltc#190702 git-fixes). - regulator: rt5033: Fix n_voltages settings for BUCK and LDO (git-fixes). - regulator: vctrl: Avoid lockdep warning in enable/disable ops (git-fixes). - regulator: vctrl: Use locked regulator_get_voltage in probe path (git-fixes). - rpm/kernel-binary.spec.in: Use kmod-zstd provide. This makes it possible to use kmod with ZSTD support on non-Tumbleweed. - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305) - rpm/kernel-source.rpmlintrc: ignore new include/config files In 5.13, since 0e0345b77ac4, config files have no longer .h suffix. Adapt the zero-length check. Based on Martin Liska's change. - rq-qos: fix missed wake-ups in rq_qos_throttle try two (bsc#1189575). - rsi: fix an error code in rsi_probe() (git-fixes). - rsi: fix error code in rsi_load_9116_firmware() (git-fixes). - s390/ap: Fix hanging ioctl caused by wrong msg counter (bsc#1188982 LTC#193817). - s390/boot: fix use of expolines in the DMA code (bsc#1188878 ltc#193771). - scsi: blkcg: Add app identifier support for blkcg (bsc#1189385 jsc#SLE-18970). - scsi: blkcg: Fix application ID config options (bsc#1189385 jsc#SLE-18970). - scsi: cgroup: Add cgroup_get_from_id() (bsc#1189385 jsc#SLE-18970). - scsi: core: Add scsi_prot_ref_tag() helper (bsc#1189392). - scsi: ibmvfc: Do not wait for initial device scan (bsc#1127650). - scsi: libfc: Fix array index out of bound exception (bsc#1188616). - scsi: lpfc: Add 256 Gb link speed support (bsc#1189385). - scsi: lpfc: Add PCI ID support for LPe37000/LPe38000 series adapters (bsc#1189385). - scsi: lpfc: Call discovery state machine when handling PLOGI/ADISC completions (bsc#1189385). - scsi: lpfc: Clear outstanding active mailbox during PCI function reset (bsc#1189385). - scsi: lpfc: Copyright updates for 12.8.0.11 patches (bsc#1189385). - scsi: lpfc: Copyright updates for 14.0.0.0 patches (bsc#1189385). - scsi: lpfc: Delay unregistering from transport until GIDFT or ADISC completes (bsc#1189385). - scsi: lpfc: Discovery state machine fixes for LOGO handling (bsc#1189385). - scsi: lpfc: Enable adisc discovery after RSCN by default (bsc#1189385). - scsi: lpfc: Fix KASAN slab-out-of-bounds in lpfc_unreg_rpi() routine (bsc#1189385). - scsi: lpfc: Fix NULL ptr dereference with NPIV ports for RDF handling (bsc#1189385). - scsi: lpfc: Fix NVMe support reporting in log message (bsc#1189385). - scsi: lpfc: Fix build error in lpfc_scsi.c (bsc#1189385). - scsi: lpfc: Fix cq_id truncation in rq create (bsc#1189385). - scsi: lpfc: Fix function description comments for vmid routines (bsc#1189385). - scsi: lpfc: Fix memory leaks in error paths while issuing ELS RDF/SCR request (bsc#1189385). - scsi: lpfc: Fix possible ABBA deadlock in nvmet_xri_aborted() (bsc#1189385). - scsi: lpfc: Fix target reset handler from falsely returning FAILURE (bsc#1189385). - scsi: lpfc: Improve firmware download logging (bsc#1189385). - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1189385). - scsi: lpfc: Move initialization of phba->poll_list earlier to avoid crash (git-fixes). - scsi: lpfc: Remove REG_LOGIN check requirement to issue an ELS RDF (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer pcmd (bsc#1189385). - scsi: lpfc: Remove redundant assignment to pointer temp_hdr (bsc#1189385). - scsi: lpfc: Remove use of kmalloc() in trace event logging (bsc#1189385). - scsi: lpfc: Revise Topology and RAS support checks for new adapters (bsc#1189385). - scsi: lpfc: Skip issuing ADISC when node is in NPR state (bsc#1189385). - scsi: lpfc: Skip reg_vpi when link is down for SLI3 in ADISC cmpl path (bsc#1189385). - scsi: lpfc: Update lpfc version to 12.8.0.11 (bsc#1189385). - scsi: lpfc: Update lpfc version to 14.0.0.0 (bsc#1189385). - scsi: lpfc: Use PBDE feature enabled bit to determine PBDE support (bsc#1189385). - scsi: lpfc: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189385). - scsi: lpfc: vmid: Add QFPA and VMID timeout check in worker thread (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add datastructure for supporting VMID in lpfc (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Add support for VMID in mailbox command (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Append the VMID to the wqe before sending (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Functions to manage VMIDs (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement CT commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Implement ELS commands for appid (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Introduce VMID in I/O path (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: Timeout implementation for VMID (bsc#1189385 jsc#SLE-18970). - scsi: lpfc: vmid: VMID parameter initialization (bsc#1189385 jsc#SLE-18970). - scsi: mpt3sas: Fix ReplyPostFree pool allocation (bsc#1181006). - scsi: qla2xxx: Add heartbeat check (bsc#1189392). - scsi: qla2xxx: Fix error return code in qla82xx_write_flash_dword() (bsc#1189392). - scsi: qla2xxx: Fix spelling mistakes "allloc" -> "alloc" (bsc#1189392). - scsi: qla2xxx: Fix use after free in debug code (bsc#1189392). - scsi: qla2xxx: Log PCI address in qla_nvme_unregister_remote_port() (bsc#1189392). - scsi: qla2xxx: Remove duplicate declarations (bsc#1189392). - scsi: qla2xxx: Remove redundant assignment to rval (bsc#1189392). - scsi: qla2xxx: Remove redundant continue statement in a for-loop (bsc#1189392). - scsi: qla2xxx: Remove redundant initialization of variable num_cnt (bsc#1189392). - scsi: qla2xxx: Remove unused variable 'status' (bsc#1189392). - scsi: qla2xxx: Update version to 10.02.00.107-k (bsc#1189392). - scsi: qla2xxx: Use list_move_tail() instead of list_del()/list_add_tail() (bsc#1189392). - scsi: qla2xxx: Use the proper SCSI midlayer interfaces for PI (bsc#1189392). - scsi: qla2xxx: edif: Add authentication pass + fail bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add detection of secure device (bsc#1189392). - scsi: qla2xxx: edif: Add doorbell notification for app (bsc#1189392). - scsi: qla2xxx: edif: Add encryption to I/O path (bsc#1189392). - scsi: qla2xxx: edif: Add extraction of auth_els from the wire (bsc#1189392). - scsi: qla2xxx: edif: Add getfcinfo and statistic bsgs (bsc#1189392). - scsi: qla2xxx: edif: Add key update (bsc#1189392). - scsi: qla2xxx: edif: Add send, receive, and accept for auth_els (bsc#1189392). - scsi: qla2xxx: edif: Add start + stop bsgs (bsc#1189392). - scsi: qla2xxx: edif: Increment command and completion counts (bsc#1189392). - scsi: scsi_transport_srp: Do not block target in SRP_PORT_LOST state (bsc#1184180). - scsi: target: qla2xxx: Wait for stop_phase1 at WWN removal (bsc#1189392). - scsi: zfcp: Report port fc_security as unknown early during remote cable pull (git-fixes). - serial: 8250: Mask out floating 16/32-bit bus bits (git-fixes). - serial: 8250_mtk: fix uart corruption issue when rx power off (git-fixes). - serial: 8250_pci: Avoid irq sharing for MSI(-X) interrupts (git-fixes). - serial: 8250_pci: Enumerate Elkhart Lake UARTs via dedicated driver (git-fixes). - serial: tegra: Only print FIFO error message when an error occurs (git-fixes). - slimbus: messaging: check for valid transaction id (git-fixes). - slimbus: messaging: start transaction ids from 1 instead of zero (git-fixes). - slimbus: ngd: reset dma setup during runtime pm (git-fixes). - soc: aspeed: lpc-ctrl: Fix boundary check for mmap (git-fixes). - soc: aspeed: p2a-ctrl: Fix boundary check for mmap (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx/qmgr: fix invalid __iomem access (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: ixp4xx: fix printing resources (git-fixes). - soc: qcom: rpmhpd: Use corner in power_off (git-fixes). - soc: qcom: smsm: Fix missed interrupts if state changes while masked (git-fixes). - spi: imx: mx51-ecspi: Fix CONFIGREG delay comment (git-fixes). - spi: imx: mx51-ecspi: Fix low-speed CONFIGREG delay calculation (git-fixes). - spi: imx: mx51-ecspi: Reinstate low-speed CONFIGREG delay (git-fixes). - spi: mediatek: Fix fifo transfer (git-fixes). - spi: meson-spicc: fix memory leak in meson_spicc_remove (git-fixes). - spi: spi-fsl-dspi: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: spi-pic32: Fix issue with uninitialized dma_slave_config (git-fixes). - spi: sprd: Fix the wrong WDG_LOAD_VAL (git-fixes). - spi: stm32h7: fix full duplex irq handler handling (git-fixes). - staging: rtl8192u: Fix bitwise vs logical operator in TranslateRxSignalStuff819xUsb() (git-fixes). - staging: rtl8712: get rid of flush_scheduled_work (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - staging: rtl8723bs: Fix a resource leak in sd_int_dpc (git-fixes). - tracing / histogram: Fix NULL pointer dereference on strcmp() on NULL event name (git-fixes). - tracing / histogram: Give calculation hist_fields a size (git-fixes). - tracing: Reject string operand in the histogram expression (git-fixes). - tty: serial: fsl_lpuart: fix the wrong mapbase value (git-fixes). - ubifs: Fix error return code in alloc_wbufs() (bsc#1189585). - ubifs: Fix memleak in ubifs_init_authentication (bsc#1189583). - ubifs: Only check replay with inode type to judge if inode linked (bsc#1187455). - ubifs: Set/Clear I_LINKABLE under i_lock for whiteout inode (bsc#1189587). - ubifs: journal: Fix error return code in ubifs_jnl_write_inode() (bsc#1189586). - usb: bdc: Fix an error handling path in 'bdc_probe()' when no suitable DMA config is available (git-fixes). - usb: dwc3: Disable phy suspend after power-on reset (git-fixes). - usb: dwc3: Separate field holding multiple properties (git-fixes). - usb: dwc3: Stop active transfers before halting the controller (git-fixes). - usb: dwc3: Use clk_bulk_prepare_enable() (git-fixes). - usb: dwc3: Use devres to get clocks (git-fixes). - usb: dwc3: core: do not do suspend for device mode if already suspended (git-fixes). - usb: dwc3: debug: Remove newline printout (git-fixes). - usb: dwc3: gadget: Check MPS of the request length (git-fixes). - usb: dwc3: gadget: Clear DCTL.ULSTCHNGREQ before set (git-fixes). - usb: dwc3: gadget: Clear DEP flags after stop transfers in ep disable (git-fixes). - usb: dwc3: gadget: Disable gadget IRQ during pullup disable (git-fixes). - usb: dwc3: gadget: Do not send unintended link state change (git-fixes). - usb: dwc3: gadget: Do not setup more than requested (git-fixes). - usb: dwc3: gadget: Fix dwc3_calc_trbs_left() (git-fixes). - usb: dwc3: gadget: Fix handling ZLP (git-fixes). - usb: dwc3: gadget: Give back staled requests (git-fixes). - usb: dwc3: gadget: Handle ZLP for sg requests (git-fixes). - usb: dwc3: gadget: Prevent EP queuing while stopping transfers (git-fixes). - usb: dwc3: gadget: Properly track pending and queued SG (git-fixes). - usb: dwc3: gadget: Restart DWC3 gadget when enabling pullup (git-fixes). - usb: dwc3: gadget: Set BESL config parameter (git-fixes). - usb: dwc3: gadget: Set link state to RX_Detect on disconnect (git-fixes). - usb: dwc3: gadget: Stop EP0 transfers during pullup disable (git-fixes). - usb: dwc3: gadget: Workaround Mirosoft's BESL check (git-fixes). - usb: dwc3: meson-g12a: add IRQ check (git-fixes). - usb: dwc3: meson-g12a: check return of dwc3_meson_g12a_usb_init (git-fixes). - usb: dwc3: of-simple: add a shutdown (git-fixes). - usb: dwc3: st: Add of_dev_put() in probe function (git-fixes). - usb: dwc3: st: Add of_node_put() before return in probe function (git-fixes). - usb: dwc3: support continuous runtime PM with dual role (git-fixes). - usb: ehci-orion: Handle errors of clk_prepare_enable() in probe (git-fixes). - usb: gadget: Export recommended BESL values (git-fixes). - usb: gadget: f_hid: added GET_IDLE and SET_IDLE handlers (git-fixes). - usb: gadget: f_hid: fixed NULL pointer dereference (git-fixes). - usb: gadget: f_hid: idle uses the highest byte for duration (git-fixes). - usb: gadget: mv_u3d: request_irq() after initializing UDC (git-fixes). - usb: gadget: udc: at91: add IRQ check (git-fixes). - usb: gadget: udc: renesas_usb3: Fix soc_device_match() abuse (git-fixes). - usb: host: ohci-tmio: add IRQ check (git-fixes). - usb: host: xhci-rcar: Do not reload firmware after the completion (git-fixes). - usb: mtu3: fix the wrong HS mult value (git-fixes). - usb: mtu3: use @mult for HS isoc or intr (git-fixes). - usb: phy: fsl-usb: add IRQ check (git-fixes). - usb: phy: tahvo: add IRQ check (git-fixes). - usb: phy: twl6030: add IRQ checks (git-fixes). - usr: Add support for zstd compressed initramfs (bsc#1187483, jsc#SLE-18766). - virt_wifi: fix error on connect (git-fixes). - wireguard: allowedips: allocate nodes in kmem_cache (git-fixes). - wireguard: allowedips: free empty intermediate nodes when removing single node (git-fixes). - wireguard: allowedips: remove nodes in O(1) (git-fixes). - writeback: fix obtain a reference to a freeing memcg css (bsc#1189577). - x86/fpu: Limit xstate copy size in xstateregs_set() (bsc#1152489). - x86/fpu: Make init_fpstate correct with optimized XSAVE (bsc#1152489). - x86/fpu: Reset state for all signal restore failures (bsc#1152489). - x86/kvm: fix vcpu-id indexed array sizes (git-fixes). - x86/sev: Make sure IRQs are disabled while GHCB is active (jsc#SLE-14337). - x86/sev: Split up runtime #VC handler for correct state tracking (jsc#SLE-14337). - x86/sev: Use "SEV: " prefix for messages from sev.c (jsc#SLE-14337). - x86/signal: Detect and prevent an alternate signal stack overflow (bsc#1152489). - x86/split_lock: Provide handle_guest_split_lock() (bsc#1187959). - xen/events: Fix race in set_evtchn_to_irq (git-fixes). - xprtrdma: Pad optimization, revisited (bsc#1189760). cluster-md-kmp-azure-5.3.18-38.22.2.x86_64.rpm True dlm-kmp-azure-5.3.18-38.22.2.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.22.2.x86_64.rpm True kernel-azure-5.3.18-38.22.2.nosrc.rpm True kernel-azure-5.3.18-38.22.2.x86_64.rpm True kernel-azure-devel-5.3.18-38.22.2.x86_64.rpm True kernel-azure-extra-5.3.18-38.22.2.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.22.2.x86_64.rpm True kernel-azure-optional-5.3.18-38.22.2.x86_64.rpm True kernel-devel-azure-5.3.18-38.22.1.noarch.rpm True kernel-source-azure-5.3.18-38.22.1.noarch.rpm True kernel-source-azure-5.3.18-38.22.1.src.rpm True kernel-syms-azure-5.3.18-38.22.1.src.rpm True kernel-syms-azure-5.3.18-38.22.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.22.2.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.22.2.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.22.2.x86_64.rpm True openSUSE-SLE-15.3-2021-3300 low SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - CVE-2021-40330: Fixed unexpected cross-protocol requests via newline character in git_connect_git repository path (bsc#1189992). git-2.26.2-33.1.src.rpm openSUSE-SLE-15.3-2021-3140 moderate SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2021-28701: Fixed race condition in XENMAPSPACE_grant_table handling (XSA-384) (bsc#1189632). - Upstream bug fixes (bsc#1027519) xen-4.14.2_06-3.12.1.src.rpm xen-4.14.2_06-3.12.1.x86_64.rpm xen-devel-4.14.2_06-3.12.1.x86_64.rpm xen-doc-html-4.14.2_06-3.12.1.x86_64.rpm xen-libs-32bit-4.14.2_06-3.12.1.x86_64.rpm xen-libs-4.14.2_06-3.12.1.x86_64.rpm xen-tools-4.14.2_06-3.12.1.x86_64.rpm xen-tools-domU-4.14.2_06-3.12.1.x86_64.rpm xen-tools-xendomains-wait-disk-4.14.2_06-3.12.1.noarch.rpm xen-4.14.2_06-3.12.1.aarch64.rpm xen-devel-4.14.2_06-3.12.1.aarch64.rpm xen-doc-html-4.14.2_06-3.12.1.aarch64.rpm xen-libs-4.14.2_06-3.12.1.aarch64.rpm xen-tools-4.14.2_06-3.12.1.aarch64.rpm xen-tools-domU-4.14.2_06-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3298 moderate SUSE Updates openSUSE-SLE 15.3 This update for curl fixes the following issues: - CVE-2021-22947: Fixed STARTTLS protocol injection via MITM (bsc#1190374). - CVE-2021-22946: Fixed protocol downgrade required TLS bypassed (bsc#1190373). curl-7.66.0-4.27.1.src.rpm curl-7.66.0-4.27.1.x86_64.rpm libcurl-devel-32bit-7.66.0-4.27.1.x86_64.rpm libcurl-devel-7.66.0-4.27.1.x86_64.rpm libcurl4-32bit-7.66.0-4.27.1.x86_64.rpm libcurl4-7.66.0-4.27.1.x86_64.rpm curl-7.66.0-4.27.1.s390x.rpm libcurl-devel-7.66.0-4.27.1.s390x.rpm libcurl4-7.66.0-4.27.1.s390x.rpm curl-7.66.0-4.27.1.ppc64le.rpm libcurl-devel-7.66.0-4.27.1.ppc64le.rpm libcurl4-7.66.0-4.27.1.ppc64le.rpm curl-7.66.0-4.27.1.aarch64.rpm libcurl-devel-7.66.0-4.27.1.aarch64.rpm libcurl4-7.66.0-4.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-3130 moderate SUSE Updates openSUSE-SLE 15.3 This update for sssd fixes the following issues: - Fixes a segfault with newer libcares2 versions when the library fails to parse a dns name. (bsc#1190021) libipa_hbac-devel-1.16.1-23.14.1.x86_64.rpm libipa_hbac0-1.16.1-23.14.1.x86_64.rpm libnfsidmap-sss-1.16.1-23.14.1.x86_64.rpm libsss_certmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_certmap0-1.16.1-23.14.1.x86_64.rpm libsss_idmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_idmap0-1.16.1-23.14.1.x86_64.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.x86_64.rpm libsss_nss_idmap0-1.16.1-23.14.1.x86_64.rpm libsss_simpleifp-devel-1.16.1-23.14.1.x86_64.rpm libsss_simpleifp0-1.16.1-23.14.1.x86_64.rpm python3-ipa_hbac-1.16.1-23.14.1.x86_64.rpm python3-sss-murmur-1.16.1-23.14.1.x86_64.rpm python3-sss_nss_idmap-1.16.1-23.14.1.x86_64.rpm python3-sssd-config-1.16.1-23.14.1.x86_64.rpm sssd-1.16.1-23.14.1.src.rpm sssd-1.16.1-23.14.1.x86_64.rpm sssd-ad-1.16.1-23.14.1.x86_64.rpm sssd-common-1.16.1-23.14.1.x86_64.rpm sssd-dbus-1.16.1-23.14.1.x86_64.rpm sssd-ipa-1.16.1-23.14.1.x86_64.rpm sssd-krb5-1.16.1-23.14.1.x86_64.rpm sssd-krb5-common-1.16.1-23.14.1.x86_64.rpm sssd-ldap-1.16.1-23.14.1.x86_64.rpm sssd-proxy-1.16.1-23.14.1.x86_64.rpm sssd-tools-1.16.1-23.14.1.x86_64.rpm sssd-wbclient-1.16.1-23.14.1.x86_64.rpm sssd-wbclient-devel-1.16.1-23.14.1.x86_64.rpm sssd-winbind-idmap-1.16.1-23.14.1.x86_64.rpm libipa_hbac-devel-1.16.1-23.14.1.s390x.rpm libipa_hbac0-1.16.1-23.14.1.s390x.rpm libnfsidmap-sss-1.16.1-23.14.1.s390x.rpm libsss_certmap-devel-1.16.1-23.14.1.s390x.rpm libsss_certmap0-1.16.1-23.14.1.s390x.rpm libsss_idmap-devel-1.16.1-23.14.1.s390x.rpm libsss_idmap0-1.16.1-23.14.1.s390x.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.s390x.rpm libsss_nss_idmap0-1.16.1-23.14.1.s390x.rpm libsss_simpleifp-devel-1.16.1-23.14.1.s390x.rpm libsss_simpleifp0-1.16.1-23.14.1.s390x.rpm python3-ipa_hbac-1.16.1-23.14.1.s390x.rpm python3-sss-murmur-1.16.1-23.14.1.s390x.rpm python3-sss_nss_idmap-1.16.1-23.14.1.s390x.rpm python3-sssd-config-1.16.1-23.14.1.s390x.rpm sssd-1.16.1-23.14.1.s390x.rpm sssd-ad-1.16.1-23.14.1.s390x.rpm sssd-common-1.16.1-23.14.1.s390x.rpm sssd-dbus-1.16.1-23.14.1.s390x.rpm sssd-ipa-1.16.1-23.14.1.s390x.rpm sssd-krb5-1.16.1-23.14.1.s390x.rpm sssd-krb5-common-1.16.1-23.14.1.s390x.rpm sssd-ldap-1.16.1-23.14.1.s390x.rpm sssd-proxy-1.16.1-23.14.1.s390x.rpm sssd-tools-1.16.1-23.14.1.s390x.rpm sssd-wbclient-1.16.1-23.14.1.s390x.rpm sssd-wbclient-devel-1.16.1-23.14.1.s390x.rpm sssd-winbind-idmap-1.16.1-23.14.1.s390x.rpm libipa_hbac-devel-1.16.1-23.14.1.ppc64le.rpm libipa_hbac0-1.16.1-23.14.1.ppc64le.rpm libnfsidmap-sss-1.16.1-23.14.1.ppc64le.rpm libsss_certmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_certmap0-1.16.1-23.14.1.ppc64le.rpm libsss_idmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_idmap0-1.16.1-23.14.1.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.ppc64le.rpm libsss_nss_idmap0-1.16.1-23.14.1.ppc64le.rpm libsss_simpleifp-devel-1.16.1-23.14.1.ppc64le.rpm libsss_simpleifp0-1.16.1-23.14.1.ppc64le.rpm python3-ipa_hbac-1.16.1-23.14.1.ppc64le.rpm python3-sss-murmur-1.16.1-23.14.1.ppc64le.rpm python3-sss_nss_idmap-1.16.1-23.14.1.ppc64le.rpm python3-sssd-config-1.16.1-23.14.1.ppc64le.rpm sssd-1.16.1-23.14.1.ppc64le.rpm sssd-ad-1.16.1-23.14.1.ppc64le.rpm sssd-common-1.16.1-23.14.1.ppc64le.rpm sssd-dbus-1.16.1-23.14.1.ppc64le.rpm sssd-ipa-1.16.1-23.14.1.ppc64le.rpm sssd-krb5-1.16.1-23.14.1.ppc64le.rpm sssd-krb5-common-1.16.1-23.14.1.ppc64le.rpm sssd-ldap-1.16.1-23.14.1.ppc64le.rpm sssd-proxy-1.16.1-23.14.1.ppc64le.rpm sssd-tools-1.16.1-23.14.1.ppc64le.rpm sssd-wbclient-1.16.1-23.14.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-23.14.1.ppc64le.rpm sssd-winbind-idmap-1.16.1-23.14.1.ppc64le.rpm libipa_hbac-devel-1.16.1-23.14.1.aarch64.rpm libipa_hbac0-1.16.1-23.14.1.aarch64.rpm libnfsidmap-sss-1.16.1-23.14.1.aarch64.rpm libsss_certmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_certmap0-1.16.1-23.14.1.aarch64.rpm libsss_idmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_idmap0-1.16.1-23.14.1.aarch64.rpm libsss_nss_idmap-devel-1.16.1-23.14.1.aarch64.rpm libsss_nss_idmap0-1.16.1-23.14.1.aarch64.rpm libsss_simpleifp-devel-1.16.1-23.14.1.aarch64.rpm libsss_simpleifp0-1.16.1-23.14.1.aarch64.rpm python3-ipa_hbac-1.16.1-23.14.1.aarch64.rpm python3-sss-murmur-1.16.1-23.14.1.aarch64.rpm python3-sss_nss_idmap-1.16.1-23.14.1.aarch64.rpm python3-sssd-config-1.16.1-23.14.1.aarch64.rpm sssd-1.16.1-23.14.1.aarch64.rpm sssd-ad-1.16.1-23.14.1.aarch64.rpm sssd-common-1.16.1-23.14.1.aarch64.rpm sssd-dbus-1.16.1-23.14.1.aarch64.rpm sssd-ipa-1.16.1-23.14.1.aarch64.rpm sssd-krb5-1.16.1-23.14.1.aarch64.rpm sssd-krb5-common-1.16.1-23.14.1.aarch64.rpm sssd-ldap-1.16.1-23.14.1.aarch64.rpm sssd-proxy-1.16.1-23.14.1.aarch64.rpm sssd-tools-1.16.1-23.14.1.aarch64.rpm sssd-wbclient-1.16.1-23.14.1.aarch64.rpm sssd-wbclient-devel-1.16.1-23.14.1.aarch64.rpm sssd-winbind-idmap-1.16.1-23.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3400 moderate SUSE Updates openSUSE-SLE 15.3 This update for emacs fixes the following issues: - Fixed an issue when emacs hangs in isearch. (bsc#1178942) - Fix for a possible segmentation fault in case of stack overflow of etags. (bsc#1180353) emacs-25.3-3.9.2.src.rpm emacs-25.3-3.9.2.x86_64.rpm emacs-el-25.3-3.9.2.noarch.rpm emacs-info-25.3-3.9.2.noarch.rpm emacs-nox-25.3-3.9.2.x86_64.rpm emacs-x11-25.3-3.9.2.x86_64.rpm etags-25.3-3.9.2.x86_64.rpm emacs-25.3-3.9.2.s390x.rpm emacs-nox-25.3-3.9.2.s390x.rpm emacs-x11-25.3-3.9.2.s390x.rpm etags-25.3-3.9.2.s390x.rpm emacs-25.3-3.9.2.ppc64le.rpm emacs-nox-25.3-3.9.2.ppc64le.rpm emacs-x11-25.3-3.9.2.ppc64le.rpm etags-25.3-3.9.2.ppc64le.rpm emacs-25.3-3.9.2.aarch64.rpm emacs-nox-25.3-3.9.2.aarch64.rpm emacs-x11-25.3-3.9.2.aarch64.rpm etags-25.3-3.9.2.aarch64.rpm openSUSE-SLE-15.3-2021-3226 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix for 'hb_report': Using python way to collect ra trace files. (bsc#1189641) - Fix for 'bootstrap': Adjust host list for parallax to get and copy 'known_hosts' file. (bsc#1188971) crmsh-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm crmsh-4.3.1+20210827.4fb174c4-5.65.1.src.rpm crmsh-scripts-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm crmsh-test-4.3.1+20210827.4fb174c4-5.65.1.noarch.rpm openSUSE-SLE-15.3-2021-3312 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Display release notes during upgrade. (bsc#1186044) yast2-installation-4.3.42-3.10.1.noarch.rpm yast2-installation-4.3.42-3.10.1.src.rpm openSUSE-SLE-15.3-2021-3309 low SUSE Updates openSUSE-SLE 15.3 This update for google-roboto-mono-fonts fixes the following issue: - Add google-roboto-mono-fonts. (jsc#SLE-21182, jsc#SLE-17946, jsc#SLE-17947) google-roboto-mono-fonts-20160111-1.3.2.noarch.rpm google-roboto-mono-fonts-20160111-1.3.2.src.rpm openSUSE-SLE-15.3-2021-3451 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: This update contains the Firefox Extended Support Release 91.2.0 ESR. Release 91.2.0 ESR: * Fixed: Various stability, functionality, and security fixes MFSA 2021-45 (bsc#1191332): * CVE-2021-38496: Use-after-free in MessageTask * CVE-2021-38497: Validation message could have been overlaid on another origin * CVE-2021-38498: Use-after-free of nsLanguageAtomService object * CVE-2021-32810: Fixed Data race in crossbeam-deque * CVE-2021-38500: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2 * CVE-2021-38501: Memory safety bugs fixed in Firefox 93 and Firefox ESR 91.2 - Fixed crash in FIPS mode (bsc#1190710) Release 91.1.0 ESR: * Fixed: Various stability, functionality, and security fixes MFSA 2021-40 (bsc#1190269, bsc#1190274): * CVE-2021-38492: Navigating to `mk:` URL scheme could load Internet Explorer * CVE-2021-38495: Memory safety bugs fixed in Firefox 92 and Firefox ESR 91.1 Release 91.0.1esr ESR: * Fixed: Fixed an issue causing buttons on the tab bar to be resized when loading certain websites (bug 1704404) * Fixed: Fixed an issue which caused tabs from private windows to be visible in non-private windows when viewing switch-to- tab results in the address bar panel (bug 1720369) * Fixed: Various stability fixes * Fixed: Security fix MFSA 2021-37 (bsc#1189547) * CVE-2021-29991 (bmo#1724896) Header Splitting possible with HTTP/3 Responses Firefox Extended Support Release 91.0 ESR * New: Some of the highlights of the new Extended Support Release are: - A number of user interface changes. For more information, see the Firefox 89 release notes. - Firefox now supports logging into Microsoft, work, and school accounts using Windows single sign-on. Learn more - On Windows, updates can now be applied in the background while Firefox is not running. - Firefox for Windows now offers a new page about:third-party to help identify compatibility issues caused by third-party applications - Version 2 of Firefox's SmartBlock feature further improves private browsing. Third party Facebook scripts are blocked to prevent you from being tracked, but are now automatically loaded "just in time" if you decide to "Log in with Facebook" on any website. - Enhanced the privacy of the Firefox Browser's Private Browsing mode with Total Cookie Protection, which confines cookies to the site where they were created, preventing companis from using cookies to track your browsing across sites. This feature was originally launched in Firefox's ETP Strict mode. - PDF forms now support JavaScript embedded in PDF files. Some PDF forms use JavaScript for validation and other interactive features. - You'll encounter less website breakage in Private Browsing and Strict Enhanced Tracking Protection with SmartBlock, which provides stand-in scripts so that websites load properly. - Improved Print functionality with a cleaner design and better integration with your computer's printer settings. - Firefox now protects you from supercookies, a type of tracker that can stay hidden in your browser and track you online, even after you clear cookies. By isolating supercookies, Firefox prevents them from tracking your web browsing from one site to the next. - Firefox now remembers your preferred location for saved bookmarks, displays the bookmarks toolbar by default on new tabs, and gives you easy access to all of your bookmarks via a toolbar folder. - Native support for macOS devices built with Apple Silicon CPUs brings dramatic performance improvements over the non- native build that was shipped in Firefox 83: Firefox launches over 2.5 times faster and web apps are now twice as responsive (per the SpeedoMeter 2.0 test). If you are on a new Apple device, follow these steps to upgrade to the latest Firefox. - Pinch zooming will now be supported for our users with Windows touchscreen devices and touchpads on Mac devices. Firefox users may now use pinch to zoom on touch-capable devices to zoom in and out of webpages. - We’ve improved functionality and design for a number of Firefox search features: * Selecting a search engine at the bottom of the search panel now enters search mode for that engine, allowing you to see suggestions (if available) for your search terms. The old behavior (immediately performing a search) is available with a shift-click. * When Firefox autocompletes the URL of one of your search engines, you can now search with that engine directly in the address bar by selecting the shortcut in the address bar results. * We’ve added buttons at the bottom of the search panel to allow you to search your bookmarks, open tabs, and history. - Firefox supports AcroForm, which will allow you to fill in, print, and save supported PDF forms and the PDF viewer also has a new fresh look. - For our users in the US and Canada, Firefox can now save, manage, and auto-fill credit card information for you, making shopping on Firefox ever more convenient. - In addition to our default, dark and light themes, with this release, Firefox introduces the Alpenglow theme: a colorful appearance for buttons, menus, and windows. You can update your Firefox themes under settings or preferences. * Changed: Firefox no longer supports Adobe Flash. There is no setting available to re-enable Flash support. * Enterprise: Various bug fixes and new policies have been implemented in the latest version of Firefox. See more details in the Firefox for Enterprise 91 Release Notes. MFSA 2021-33 (bsc#1188891): * CVE-2021-29986: Race condition when resolving DNS names could have led to memory corruption * CVE-2021-29981: Live range splitting could have led to conflicting assignments in the JIT * CVE-2021-29988: Memory corruption as a result of incorrect style treatment * CVE-2021-29983: Firefox for Android could get stuck in fullscreen mode * CVE-2021-29984: Incorrect instruction reordering during JIT optimization * CVE-2021-29980: Uninitialized memory in a canvas object could have led to memory corruption * CVE-2021-29987: Users could have been tricked into accepting unwanted permissions on Linux * CVE-2021-29985: Use-after-free media channels * CVE-2021-29982: Single bit data leak due to incorrect JIT optimization and type confusion * CVE-2021-29989: Memory safety bugs fixed in Firefox 91 and Firefox ESR 78.13 * CVE-2021-29990: Memory safety bugs fixed in Firefox 91 MozillaFirefox-91.2.0-8.54.1.src.rpm MozillaFirefox-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-branding-SLE-91-9.5.1.src.rpm MozillaFirefox-branding-SLE-91-9.5.1.x86_64.rpm MozillaFirefox-branding-upstream-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-devel-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-translations-common-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-translations-other-91.2.0-8.54.1.x86_64.rpm MozillaFirefox-91.2.0-8.54.1.s390x.rpm MozillaFirefox-branding-SLE-91-9.5.1.s390x.rpm MozillaFirefox-branding-upstream-91.2.0-8.54.1.s390x.rpm MozillaFirefox-devel-91.2.0-8.54.1.s390x.rpm MozillaFirefox-translations-common-91.2.0-8.54.1.s390x.rpm MozillaFirefox-translations-other-91.2.0-8.54.1.s390x.rpm MozillaFirefox-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-branding-SLE-91-9.5.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-devel-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-translations-common-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-translations-other-91.2.0-8.54.1.ppc64le.rpm MozillaFirefox-91.2.0-8.54.1.aarch64.rpm MozillaFirefox-branding-SLE-91-9.5.1.aarch64.rpm MozillaFirefox-branding-upstream-91.2.0-8.54.1.aarch64.rpm MozillaFirefox-devel-91.2.0-8.54.1.aarch64.rpm MozillaFirefox-translations-common-91.2.0-8.54.1.aarch64.rpm MozillaFirefox-translations-other-91.2.0-8.54.1.aarch64.rpm openSUSE-SLE-15.3-2021-3301 moderate SUSE Updates openSUSE-SLE 15.3 This update for libcryptopp fixes the following issues: - CVE-2016-9939: Fixed potential DoS in Crypto++ (libcryptopp) ASN.1 parser (bsc#1015243). libcryptopp-5.6.5-1.6.1.src.rpm libcryptopp-devel-5.6.5-1.6.1.x86_64.rpm libcryptopp5_6_5-32bit-5.6.5-1.6.1.x86_64.rpm libcryptopp5_6_5-5.6.5-1.6.1.x86_64.rpm libcryptopp-devel-5.6.5-1.6.1.s390x.rpm libcryptopp5_6_5-5.6.5-1.6.1.s390x.rpm libcryptopp-devel-5.6.5-1.6.1.ppc64le.rpm libcryptopp5_6_5-5.6.5-1.6.1.ppc64le.rpm libcryptopp-devel-5.6.5-1.6.1.aarch64.rpm libcryptopp5_6_5-5.6.5-1.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3350 low SUSE Updates openSUSE-SLE 15.3 This update for libaom fixes the following issues: - CVE-2021-30474: Fixed use-after-free in aom_dsp/grain_table.c (bsc#1186799). aom-tools-1.0.0-3.6.1.x86_64.rpm libaom-1.0.0-3.6.1.src.rpm libaom-devel-1.0.0-3.6.1.x86_64.rpm libaom-devel-doc-1.0.0-3.6.1.noarch.rpm libaom0-1.0.0-3.6.1.x86_64.rpm libaom0-32bit-1.0.0-3.6.1.x86_64.rpm aom-tools-1.0.0-3.6.1.s390x.rpm libaom-devel-1.0.0-3.6.1.s390x.rpm libaom0-1.0.0-3.6.1.s390x.rpm aom-tools-1.0.0-3.6.1.ppc64le.rpm libaom-devel-1.0.0-3.6.1.ppc64le.rpm libaom0-1.0.0-3.6.1.ppc64le.rpm aom-tools-1.0.0-3.6.1.aarch64.rpm libaom-devel-1.0.0-3.6.1.aarch64.rpm libaom0-1.0.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3175 moderate SUSE Updates openSUSE-SLE 15.3 This update for grafana-piechart-panel fixes the following issues: - CVE-2020-13429: Fixed XSS via the Values Header option in the piechart-panel (bsc#1172125). grafana-piechart-panel-1.6.1-3.6.1.noarch.rpm grafana-piechart-panel-1.6.1-3.6.1.src.rpm openSUSE-SLE-15.3-2021-3236 moderate SUSE Updates openSUSE-SLE 15.3 This update for gd fixes the following issues: - CVE-2021-40812: Fixed out-of-bounds read caused by the lack of certain gdGetBuf and gdPutBuf return value checks (bsc#1190400). gd-2.2.5-11.3.1.src.rpm gd-2.2.5-11.3.1.x86_64.rpm gd-devel-2.2.5-11.3.1.x86_64.rpm libgd3-2.2.5-11.3.1.x86_64.rpm libgd3-32bit-2.2.5-11.3.1.x86_64.rpm gd-2.2.5-11.3.1.s390x.rpm gd-devel-2.2.5-11.3.1.s390x.rpm libgd3-2.2.5-11.3.1.s390x.rpm gd-2.2.5-11.3.1.ppc64le.rpm gd-devel-2.2.5-11.3.1.ppc64le.rpm libgd3-2.2.5-11.3.1.ppc64le.rpm gd-2.2.5-11.3.1.aarch64.rpm gd-devel-2.2.5-11.3.1.aarch64.rpm libgd3-2.2.5-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3617 moderate SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - Fix wrong 'kvno' exported to keytab after 'net ads changetrustpw' due to replication delay. (bsc#1188727) libndr0-32bit-4.11.14+git.263.a1d04a0b95e-4.25.8.x86_64.rpm libndr0-4.11.14+git.263.a1d04a0b95e-4.25.8.x86_64.rpm samba-4.11.14+git.263.a1d04a0b95e-4.25.8.src.rpm libndr0-4.11.14+git.263.a1d04a0b95e-4.25.8.s390x.rpm libndr0-4.11.14+git.263.a1d04a0b95e-4.25.8.ppc64le.rpm libndr0-4.11.14+git.263.a1d04a0b95e-4.25.8.aarch64.rpm openSUSE-SLE-15.3-2021-3171 important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Implement FIPS support in OpenJDK - Fix build with 'glibc-2.34' (bsc#1189201) - Add support for 'riscv64' (zero VM) - Make NSS the default security provider. (bsc#1190252) java-11-openjdk-11.0.12.0-3.62.1.src.rpm java-11-openjdk-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-javadoc-11.0.12.0-3.62.1.noarch.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-src-11.0.12.0-3.62.1.x86_64.rpm java-11-openjdk-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-src-11.0.12.0-3.62.1.s390x.rpm java-11-openjdk-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-src-11.0.12.0-3.62.1.ppc64le.rpm java-11-openjdk-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-accessibility-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-demo-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-devel-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-headless-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-jmods-11.0.12.0-3.62.1.aarch64.rpm java-11-openjdk-src-11.0.12.0-3.62.1.aarch64.rpm openSUSE-SLE-15.3-2021-3634 moderate SUSE Updates openSUSE-SLE 15.3 This update for rubygem-activerecord-5_1 fixes the following issues: - CVE-2021-22880: Fixed possible DoS vector in PostgreSQL money type (bsc#1182169). ruby2.5-rubygem-activerecord-5_1-5.1.4-5.3.3.x86_64.rpm rubygem-activerecord-5_1-5.1.4-5.3.3.src.rpm ruby2.5-rubygem-activerecord-5_1-5.1.4-5.3.3.s390x.rpm ruby2.5-rubygem-activerecord-5_1-5.1.4-5.3.3.ppc64le.rpm ruby2.5-rubygem-activerecord-5_1-5.1.4-5.3.3.aarch64.rpm openSUSE-SLE-15.3-2021-3348 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-33910: Fixed use of strdupa() on a path (bsc#1188063). - logind: terminate cleanly on SIGTERM/SIGINT (bsc#1188018). - Adopting BFQ to control I/O (jsc#SLE-21032, bsc#1134353). - Rules weren't applied to dm devices (multipath) (bsc#1188713). - Ignore obsolete "elevator" kernel parameter (bsc#1184994, bsc#1190234). - Make sure the versions of both udev and systemd packages are always the same (bsc#1189480). - Avoid error message when udev is updated due to udev being already active when the sockets are started again (bsc#1188291). - Allow the systemd sysusers config files to be overriden during system installation (bsc#1171962). systemd-234-24.93.1.src.rpm True systemd-bash-completion-234-24.93.1.noarch.rpm True openSUSE-SLE-15.3-2021-3291 moderate SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - CVE-2021-33574: Fixed use __pthread_attr_copy in mq_notify (bsc#1186489). - CVE-2021-35942: Fixed wordexp handle overflow in positional parameter number (bsc#1187911). glibc-2.31-9.3.2.src.rpm glibc-2.31-9.3.2.x86_64.rpm glibc-32bit-2.31-9.3.2.x86_64.rpm glibc-devel-2.31-9.3.2.x86_64.rpm glibc-devel-32bit-2.31-9.3.2.x86_64.rpm glibc-devel-static-2.31-9.3.2.x86_64.rpm glibc-devel-static-32bit-2.31-9.3.2.x86_64.rpm glibc-extra-2.31-9.3.2.x86_64.rpm glibc-html-2.31-9.3.2.noarch.rpm glibc-i18ndata-2.31-9.3.2.noarch.rpm glibc-info-2.31-9.3.2.noarch.rpm glibc-lang-2.31-9.3.2.noarch.rpm glibc-locale-2.31-9.3.2.x86_64.rpm glibc-locale-base-2.31-9.3.2.x86_64.rpm glibc-locale-base-32bit-2.31-9.3.2.x86_64.rpm glibc-profile-2.31-9.3.2.x86_64.rpm glibc-profile-32bit-2.31-9.3.2.x86_64.rpm glibc-utils-2.31-9.3.2.x86_64.rpm glibc-utils-32bit-2.31-9.3.2.x86_64.rpm glibc-utils-src-2.31-9.3.2.src.rpm nscd-2.31-9.3.2.x86_64.rpm glibc-2.31-9.3.2.s390x.rpm glibc-devel-2.31-9.3.2.s390x.rpm glibc-devel-static-2.31-9.3.2.s390x.rpm glibc-extra-2.31-9.3.2.s390x.rpm glibc-locale-2.31-9.3.2.s390x.rpm glibc-locale-base-2.31-9.3.2.s390x.rpm glibc-profile-2.31-9.3.2.s390x.rpm glibc-utils-2.31-9.3.2.s390x.rpm nscd-2.31-9.3.2.s390x.rpm glibc-2.31-9.3.2.ppc64le.rpm glibc-devel-2.31-9.3.2.ppc64le.rpm glibc-devel-static-2.31-9.3.2.ppc64le.rpm glibc-extra-2.31-9.3.2.ppc64le.rpm glibc-locale-2.31-9.3.2.ppc64le.rpm glibc-locale-base-2.31-9.3.2.ppc64le.rpm glibc-profile-2.31-9.3.2.ppc64le.rpm glibc-utils-2.31-9.3.2.ppc64le.rpm nscd-2.31-9.3.2.ppc64le.rpm glibc-2.31-9.3.2.aarch64.rpm glibc-devel-2.31-9.3.2.aarch64.rpm glibc-devel-static-2.31-9.3.2.aarch64.rpm glibc-extra-2.31-9.3.2.aarch64.rpm glibc-locale-2.31-9.3.2.aarch64.rpm glibc-locale-base-2.31-9.3.2.aarch64.rpm glibc-profile-2.31-9.3.2.aarch64.rpm glibc-utils-2.31-9.3.2.aarch64.rpm nscd-2.31-9.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-3545 low SUSE Updates openSUSE-SLE 15.3 This update for less fixes the following issues: - Add missing runtime dependency on package "which", that is used by lessopen.sh (bsc#1190552) less-530-3.3.2.src.rpm less-530-3.3.2.x86_64.rpm less-530-3.3.2.s390x.rpm less-530-3.3.2.ppc64le.rpm less-530-3.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-3638 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: Features added: - Add Certificate Auto Enrollment Policy. (jsc#SLE-18456) Bugs fixed: - Fix wrong kvno exported to keytab after net ads changetrustpw due to replication delay. (bsc#1188727) - Fix 'net rpc' authentication when using the machine account. (bsc#1189017) Samba was updated to 4.13.10 * s3: smbd: Ensure POSIX default ACL is mapped into returned Windows ACL for directory handles; (bso#14708); * Take a copy to make sure we don't reference free'd memory; (bso#14721); * s3: lib: Fix talloc heirarcy error in parent_smb_fname(); (bso#14722); * s3: smbd: Remove erroneous TALLOC_FREE(smb_fname_parent) in change_file_owner_to_parent() error path; (bso#14736); * samba-tool: Give better error information when the 'domain backup restore' fails with a duplicate SID; (bso#14575); * smbd: Correctly initialize close timestamp fields; (bso#14714); * Spotlight RPC service doesn't work with vfs_glusterfs; (bso#14740); * ctdb: Fix a crash in run_proc_signal_handler(); (bso#14475); * gensec_krb5: Restore ipv6 support for kpasswd; (bso#14750); * smbXsrv_{open,session,tcon}: Protect smbXsrv_{open,session,tcon}_global_traverse_fn against invalid records; (bso#14752); * samba-tool domain backup offline doesn't work against bind DLZ backend; (bso#14027); * netcmd: Use next_free_rid() function to calculate a SID for restoring a backup; (bso#14669); Samba was updated to 4.13.9: * s3: smbd: SMB1 SMBsplwr doesn't send a reply packet on success; (bso#14696); * Add documentation for dsdb_group_audit and dsdb_group_json_audit to "log level", synchronise "log level" in smb.conf with the code; (bso#14689); * Fix smbd panic when two clients open same file; (bso#14672); * Fix memory leak in the RPC server; (bso#14675); * s3: smbd: Fix deferred renames; (bso#14679); * s3-iremotewinspool: Set the per-request memory context; (bso#14675); * rpc_server3: Fix a memleak for internal pipes; (bso#14675); * third_party: Update socket_wrapper to version 1.3.2; (bso#11899); * third_party: Update socket_wrapper to version 1.3.3; (bso#14639); * idmap_rfc2307 and idmap_nss return wrong mapping for uid/gid conflict; (bso#14663); * Fix the build on OmniOS; (bso#14288); Update to 4.13.7 * Release with dependency on ldb version 2.2.1. - Fix wrong kvno exported to keytab after net ads changetrustpw due to replication delay (bsc#1188727) cepces-0.3.4-7.3.1.noarch.rpm cepces-0.3.4-7.3.1.src.rpm cepces-certmonger-0.3.4-7.3.1.noarch.rpm certmonger-0.79.13-7.3.1.src.rpm certmonger-0.79.13-7.3.1.x86_64.rpm ctdb-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm ctdb-pcp-pmda-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm ctdb-tests-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-binding0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-binding0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-samr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-samr0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc-samr0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libdcerpc0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-krb5pac-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-krb5pac0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-krb5pac0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-nbt-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-nbt0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-nbt0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-standard-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-standard0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr-standard0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr1-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libndr1-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libnetapi-devel-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libnetapi-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libnetapi0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libnetapi0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-credentials-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-credentials0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-credentials0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-errors-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-errors0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-errors0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-hostconfig-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-hostconfig0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-hostconfig0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-passdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-passdb0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-passdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-policy-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-policy-python3-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-policy0-python3-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-policy0-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-util0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamba-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamdb0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsamdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbclient0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbconf-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbconf0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbconf0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbldap-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbldap2-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libsmbldap2-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libtevent-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libtevent-util0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libtevent-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libwbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libwbclient0-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libwbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm libxmlrpc++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_abyss++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_abyss3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_client++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_client3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_cpp8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_packetsocket8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_abyss++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_abyss3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_cgi++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_cgi3-1.51.07-7.3.1.x86_64.rpm libxmlrpc_server_pstream++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_util++8-1.51.07-7.3.1.x86_64.rpm libxmlrpc_util4-1.51.07-7.3.1.x86_64.rpm python-pykerberos-1.2.1-3.5.1.src.rpm python-requests-kerberos-0.12.0-3.3.1.src.rpm python2-pykerberos-1.2.1-3.5.1.x86_64.rpm python2-requests-kerberos-0.12.0-3.3.1.noarch.rpm python3-cepces-0.3.4-7.3.1.noarch.rpm python3-pykerberos-1.2.1-3.5.1.x86_64.rpm python3-requests-kerberos-0.12.0-3.3.1.noarch.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.src.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-ad-dc-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-ad-dc-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-ceph-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-client-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-client-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-core-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-doc-4.13.10+git.236.0517d0e6bdf-3.7.12.noarch.rpm samba-dsdb-modules-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-gpupdate-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-ldb-ldap-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-libs-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-libs-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-libs-python3-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-libs-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-test-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-winbind-32bit-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm samba-winbind-4.13.10+git.236.0517d0e6bdf-3.7.12.x86_64.rpm sscep-0.7.0-7.3.1.src.rpm sscep-0.7.0-7.3.1.x86_64.rpm xmlrpc-c-1.51.07-7.3.1.src.rpm xmlrpc-c-devel-1.51.07-7.3.1.x86_64.rpm certmonger-0.79.13-7.3.1.s390x.rpm ctdb-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm ctdb-pcp-pmda-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm ctdb-tests-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc-binding0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc-samr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc-samr0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libdcerpc0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-krb5pac-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-krb5pac0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-nbt-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-nbt0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-standard-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr-standard0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libndr1-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libnetapi-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libnetapi0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-credentials-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-credentials0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-errors-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-errors0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-hostconfig-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-hostconfig0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-passdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-passdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-policy-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-policy-python3-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-policy0-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamba-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsamdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbconf-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbconf0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbldap-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libsmbldap2-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libtevent-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libtevent-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libwbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libwbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm libxmlrpc++8-1.51.07-7.3.1.s390x.rpm libxmlrpc3-1.51.07-7.3.1.s390x.rpm libxmlrpc_abyss++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_abyss3-1.51.07-7.3.1.s390x.rpm libxmlrpc_client++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_client3-1.51.07-7.3.1.s390x.rpm libxmlrpc_cpp8-1.51.07-7.3.1.s390x.rpm libxmlrpc_packetsocket8-1.51.07-7.3.1.s390x.rpm libxmlrpc_server++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_server3-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_abyss++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_abyss3-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_cgi++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_cgi3-1.51.07-7.3.1.s390x.rpm libxmlrpc_server_pstream++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_util++8-1.51.07-7.3.1.s390x.rpm libxmlrpc_util4-1.51.07-7.3.1.s390x.rpm python2-pykerberos-1.2.1-3.5.1.s390x.rpm python3-pykerberos-1.2.1-3.5.1.s390x.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-ad-dc-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-client-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-core-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-dsdb-modules-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-gpupdate-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-ldb-ldap-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-libs-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-libs-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-test-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm samba-winbind-4.13.10+git.236.0517d0e6bdf-3.7.12.s390x.rpm sscep-0.7.0-7.3.1.s390x.rpm xmlrpc-c-devel-1.51.07-7.3.1.s390x.rpm certmonger-0.79.13-7.3.1.ppc64le.rpm ctdb-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm ctdb-pcp-pmda-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm ctdb-tests-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc-binding0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc-samr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc-samr0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libdcerpc0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-krb5pac-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-krb5pac0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-nbt-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-nbt0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-standard-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr-standard0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libndr1-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libnetapi-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libnetapi0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-credentials-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-credentials0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-errors-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-errors0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-hostconfig-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-hostconfig0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-passdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-passdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-policy-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-policy-python3-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-policy0-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamba-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsamdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbconf-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbconf0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbldap-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libsmbldap2-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libtevent-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libtevent-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libwbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libwbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm libxmlrpc++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_abyss++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_abyss3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_client++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_client3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_cpp8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_packetsocket8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_abyss++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_abyss3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_cgi++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_cgi3-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_server_pstream++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_util++8-1.51.07-7.3.1.ppc64le.rpm libxmlrpc_util4-1.51.07-7.3.1.ppc64le.rpm python2-pykerberos-1.2.1-3.5.1.ppc64le.rpm python3-pykerberos-1.2.1-3.5.1.ppc64le.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-ad-dc-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-client-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-core-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-dsdb-modules-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-gpupdate-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-ldb-ldap-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-libs-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-libs-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-test-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm samba-winbind-4.13.10+git.236.0517d0e6bdf-3.7.12.ppc64le.rpm sscep-0.7.0-7.3.1.ppc64le.rpm xmlrpc-c-devel-1.51.07-7.3.1.ppc64le.rpm certmonger-0.79.13-7.3.1.aarch64.rpm ctdb-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm ctdb-pcp-pmda-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm ctdb-tests-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-binding0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-binding0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libdcerpc-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-samr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-samr0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc-samr0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libdcerpc0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libdcerpc0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libndr-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-krb5pac-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-krb5pac0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-krb5pac0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libndr-nbt-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-nbt0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-nbt0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libndr-standard-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-standard0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr-standard0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libndr1-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libndr1-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libnetapi-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libnetapi-devel-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libnetapi0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libnetapi0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-credentials-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-credentials0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-credentials0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-errors-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-errors0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-errors0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-hostconfig-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-hostconfig0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-hostconfig0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-passdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-passdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-passdb0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-policy-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-policy-python3-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-policy0-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-policy0-python3-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamba-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamba-util0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsamdb-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamdb0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsamdb0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsmbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbclient0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsmbconf-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbconf0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbconf0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libsmbldap-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbldap2-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libsmbldap2-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libtevent-util-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libtevent-util0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libtevent-util0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libwbclient-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libwbclient0-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm libwbclient0-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm libxmlrpc++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_abyss++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_abyss3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_client++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_client3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_cpp8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_packetsocket8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_abyss++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_abyss3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_cgi++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_cgi3-1.51.07-7.3.1.aarch64.rpm libxmlrpc_server_pstream++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_util++8-1.51.07-7.3.1.aarch64.rpm libxmlrpc_util4-1.51.07-7.3.1.aarch64.rpm python2-pykerberos-1.2.1-3.5.1.aarch64.rpm python3-pykerberos-1.2.1-3.5.1.aarch64.rpm samba-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-ad-dc-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-ad-dc-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm samba-ceph-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-client-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-client-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm samba-core-devel-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-dsdb-modules-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-gpupdate-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-ldb-ldap-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-libs-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-libs-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm samba-libs-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-libs-python3-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm samba-python3-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-test-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-winbind-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64.rpm samba-winbind-64bit-4.13.10+git.236.0517d0e6bdf-3.7.12.aarch64_ilp32.rpm sscep-0.7.0-7.3.1.aarch64.rpm xmlrpc-c-devel-1.51.07-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3317 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - Upgrade to version 10.18. (bsc#1190177) - A dump/restore is not required for those running 10.X. - if you are upgrading from a version older than 10.16 a reindexing of indexes after the upgrade may be advisable. - Allow PostgreSQL version 10 to build with ICU 69 and newer - Clarify error messages referring to 'non-negative' values - Fix incorrect log message when 'point-in-time' recovery stops at a 'ROLLBACK PREPARED' record - In 'contrib/postgres_fdw', avoid attempting catalog lookups after an error - Messages about data conversion errors will now mention the query's table and column aliases (if used) rather than the true underlying name of a foreign table or column. - Avoid problems when 'switching pg_receivewal' between compressed and non-compressed 'WAL' storage - Extend 'pg_upgrade' to detect and warn about extensions that should be upgraded. - Make 'pg_upgrade' carry forward the old installation's 'oldestXID' value. - This solves unwanted forced shutdowns happening soon after an upgrade in particular on installations using large values of 'autovacuum_freeze_max_age'. - Avoid 'invalid creation date in header' warnings observed when running 'pg_restore' on an archive file created in a different time zone. - In psql and other client programs, avoid overrunning the ends of strings when dealing with invalidly-encoded data. - Don't abort the process for an out-of-memory failure in libpq's printing functions - Fix uninitialized-variable bug that could cause 'PL/pgSQL' to act as though an 'INTO' clause specified 'STRICT', even though it didn't. - Fix latent crash in sorting code - Fix possible race condition when releasing BackgroundWorkerSlots - Solve a build issue fix build with 'llvm12' on s390x. (bsc#1185952) - Re-enable 'icu' for 'PostgreSQL 10'. (bsc#1179945) - Relax the dependency of 'postgresqlXX-server-devel' on 'llvm' and 'clang'. (bsc#1187751) postgresql10-10.18-8.38.1.src.rpm postgresql10-10.18-8.38.1.x86_64.rpm postgresql10-contrib-10.18-8.38.1.x86_64.rpm postgresql10-docs-10.18-8.38.1.noarch.rpm postgresql10-plperl-10.18-8.38.1.x86_64.rpm postgresql10-plpython-10.18-8.38.1.x86_64.rpm postgresql10-pltcl-10.18-8.38.1.x86_64.rpm postgresql10-server-10.18-8.38.1.x86_64.rpm postgresql10-test-10.18-8.38.1.x86_64.rpm postgresql10-10.18-8.38.1.s390x.rpm postgresql10-contrib-10.18-8.38.1.s390x.rpm postgresql10-plperl-10.18-8.38.1.s390x.rpm postgresql10-plpython-10.18-8.38.1.s390x.rpm postgresql10-pltcl-10.18-8.38.1.s390x.rpm postgresql10-server-10.18-8.38.1.s390x.rpm postgresql10-test-10.18-8.38.1.s390x.rpm postgresql10-10.18-8.38.1.ppc64le.rpm postgresql10-contrib-10.18-8.38.1.ppc64le.rpm postgresql10-plperl-10.18-8.38.1.ppc64le.rpm postgresql10-plpython-10.18-8.38.1.ppc64le.rpm postgresql10-pltcl-10.18-8.38.1.ppc64le.rpm postgresql10-server-10.18-8.38.1.ppc64le.rpm postgresql10-test-10.18-8.38.1.ppc64le.rpm postgresql10-10.18-8.38.1.aarch64.rpm postgresql10-contrib-10.18-8.38.1.aarch64.rpm postgresql10-plperl-10.18-8.38.1.aarch64.rpm postgresql10-plpython-10.18-8.38.1.aarch64.rpm postgresql10-pltcl-10.18-8.38.1.aarch64.rpm postgresql10-server-10.18-8.38.1.aarch64.rpm postgresql10-test-10.18-8.38.1.aarch64.rpm openSUSE-SLE-15.3-2021-3314 moderate SUSE Updates openSUSE-SLE 15.3 This update for xerces-c fixes the following issues: - release libxerces-c-3_1 for SLE-15.3 (bsc#1190105) libxerces-c-3_1-3.1.4-10.5.1.x86_64.rpm libxerces-c-3_1-32bit-3.1.4-10.5.1.x86_64.rpm xerces-c-3.1.4-10.5.1.src.rpm libxerces-c-3_1-3.1.4-10.5.1.s390x.rpm libxerces-c-3_1-3.1.4-10.5.1.ppc64le.rpm libxerces-c-3_1-3.1.4-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3241 important SUSE Updates openSUSE-SLE 15.3 This update for multipath-tools provides the following fixes: - Update to version 0.8.5+82+suse.746b76e: * libmultipath: avoid buffer size warning with systemd 240+. (bsc#1189176) - Add a versioned dependency of multipath-tools on libmpath0. (bsc#1190622) kpartx-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.src.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.x86_64.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.s390x.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.ppc64le.rpm kpartx-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libdmmp-devel-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libdmmp0_2_0-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm libmpath0-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm multipath-tools-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm multipath-tools-devel-0.8.5+82+suse.746b76e-2.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3245 important SUSE Updates openSUSE-SLE 15.3 This update for docker fixes the following issues: - Return ENOSYS for clone3 in the seccomp profile to avoid breaking containers using glibc 2.34. - Add shell requires for the *-completion subpackages. Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? docker-20.10.6_ce-153.1.src.rpm docker-20.10.6_ce-153.1.x86_64.rpm docker-bash-completion-20.10.6_ce-153.1.noarch.rpm docker-fish-completion-20.10.6_ce-153.1.noarch.rpm docker-kubic-20.10.6_ce-6.52.1.src.rpm docker-kubic-20.10.6_ce-6.52.1.x86_64.rpm docker-kubic-bash-completion-20.10.6_ce-6.52.1.noarch.rpm docker-kubic-fish-completion-20.10.6_ce-6.52.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.x86_64.rpm docker-kubic-zsh-completion-20.10.6_ce-6.52.1.noarch.rpm docker-zsh-completion-20.10.6_ce-153.1.noarch.rpm docker-20.10.6_ce-153.1.s390x.rpm docker-kubic-20.10.6_ce-6.52.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.s390x.rpm docker-20.10.6_ce-153.1.ppc64le.rpm docker-kubic-20.10.6_ce-6.52.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.ppc64le.rpm docker-20.10.6_ce-153.1.aarch64.rpm docker-kubic-20.10.6_ce-6.52.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.6_ce-6.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-3353 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.32.4 - CVE-2021-30858: Fixed a security bug that could allow maliciously crafted web content to achieve arbitrary code execution. (bsc#1190701) - CVE-2021-21806: Fixed an exploitable use-after-free vulnerability via specially crafted HTML web page. (bsc#1188697) libjavascriptcoregtk-4_0-18-2.32.4-12.3.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.4-12.3.x86_64.rpm libwebkit2gtk-4_0-37-2.32.4-12.3.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.4-12.3.x86_64.rpm libwebkit2gtk3-lang-2.32.4-12.3.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.4-12.3.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3.x86_64.rpm webkit-jsc-4-2.32.4-12.3.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.4-12.3.x86_64.rpm webkit2gtk3-2.32.4-12.3.src.rpm webkit2gtk3-devel-2.32.4-12.3.x86_64.rpm webkit2gtk3-minibrowser-2.32.4-12.3.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.4-12.3.s390x.rpm libwebkit2gtk-4_0-37-2.32.4-12.3.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.4-12.3.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3.s390x.rpm webkit-jsc-4-2.32.4-12.3.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.4-12.3.s390x.rpm webkit2gtk3-devel-2.32.4-12.3.s390x.rpm webkit2gtk3-minibrowser-2.32.4-12.3.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.4-12.3.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.4-12.3.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.4-12.3.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3.ppc64le.rpm webkit-jsc-4-2.32.4-12.3.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.4-12.3.ppc64le.rpm webkit2gtk3-devel-2.32.4-12.3.ppc64le.rpm webkit2gtk3-minibrowser-2.32.4-12.3.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.4-12.3.aarch64.rpm libwebkit2gtk-4_0-37-2.32.4-12.3.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-12.3.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.4-12.3.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-12.3.aarch64.rpm webkit-jsc-4-2.32.4-12.3.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.4-12.3.aarch64.rpm webkit2gtk3-devel-2.32.4-12.3.aarch64.rpm webkit2gtk3-minibrowser-2.32.4-12.3.aarch64.rpm openSUSE-SLE-15.3-2021-3263 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.1.11 Proxy golang-github-prometheus-alertmanager: - golang-github-prometheus-alertmanager is added to SUSE Manager Proxy as L3 supported system-user-prometheus: - system-user-prometheus is added to SUSE Manager Proxy as L3 supported system-user-prometheus-1.0.0-6.1.noarch.rpm system-user-prometheus-1.0.0-6.1.src.rpm openSUSE-SLE-15.3-2021-3310 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Switch I/O scheduler from 'mq-deadline' to 'bfq' for rotating disks(HD's) (jsc#SLE-21032, bsc#1134353). - Multipath: Rules weren't applied to dm devices (bsc#1188713). - Ignore obsolete "elevator" kernel parameter (bsc#1184994). - Remove kernel unsupported single-queue block I/O. - Make sure the versions of both udev and systemd packages are always the same (bsc#1189480). - Avoid error message when updating active udev on sockets restart (bsc#1188291). - Merge of v246.16, for a complete list of changes, visit: https://github.com/openSUSE/systemd/compare/8d8f5fc31eece95644b299b784bbfb8f836d0108...f5c33d9f82d3d782d28938df9ff09484360c540d - Drop 1007-tmpfiles-follow-SUSE-policies.patch: Since most of the tmpfiles config files shipped by upstream are ignored (see previous commit "Drop most of the tmpfiles that deal with generic paths"), this patch is no more relevant. Additional fixes: - core: make sure cgroup_oom_queue is flushed on manager exit. - cgroup: do 'catchup' for unit cgroup inotify watch files. - journalctl: never fail at flushing when the flushed flag is set (bsc#1188588). - manager: reexecute on SIGRTMIN+25, user instances only. - manager: fix HW watchdog when systemd starts before driver loaded (bsc#1189446). - pid1: watchdog modernizations. libsystemd0-246.16-7.14.1.x86_64.rpm libsystemd0-32bit-246.16-7.14.1.x86_64.rpm libudev-devel-246.16-7.14.1.x86_64.rpm libudev-devel-32bit-246.16-7.14.1.x86_64.rpm libudev1-246.16-7.14.1.x86_64.rpm libudev1-32bit-246.16-7.14.1.x86_64.rpm nss-myhostname-246.16-7.14.1.x86_64.rpm nss-myhostname-32bit-246.16-7.14.1.x86_64.rpm nss-mymachines-246.16-7.14.1.x86_64.rpm nss-mymachines-32bit-246.16-7.14.1.x86_64.rpm nss-resolve-246.16-7.14.1.x86_64.rpm nss-systemd-246.16-7.14.1.x86_64.rpm systemd-246.16-7.14.1.src.rpm systemd-246.16-7.14.1.x86_64.rpm systemd-32bit-246.16-7.14.1.x86_64.rpm systemd-container-246.16-7.14.1.x86_64.rpm systemd-coredump-246.16-7.14.1.x86_64.rpm systemd-devel-246.16-7.14.1.x86_64.rpm systemd-doc-246.16-7.14.1.x86_64.rpm systemd-journal-remote-246.16-7.14.1.x86_64.rpm systemd-lang-246.16-7.14.1.noarch.rpm systemd-logger-246.16-7.14.1.x86_64.rpm systemd-network-246.16-7.14.1.x86_64.rpm systemd-sysvinit-246.16-7.14.1.x86_64.rpm udev-246.16-7.14.1.x86_64.rpm libsystemd0-246.16-7.14.1.s390x.rpm libudev-devel-246.16-7.14.1.s390x.rpm libudev1-246.16-7.14.1.s390x.rpm nss-myhostname-246.16-7.14.1.s390x.rpm nss-mymachines-246.16-7.14.1.s390x.rpm nss-resolve-246.16-7.14.1.s390x.rpm nss-systemd-246.16-7.14.1.s390x.rpm systemd-246.16-7.14.1.s390x.rpm systemd-container-246.16-7.14.1.s390x.rpm systemd-coredump-246.16-7.14.1.s390x.rpm systemd-devel-246.16-7.14.1.s390x.rpm systemd-doc-246.16-7.14.1.s390x.rpm systemd-journal-remote-246.16-7.14.1.s390x.rpm systemd-logger-246.16-7.14.1.s390x.rpm systemd-network-246.16-7.14.1.s390x.rpm systemd-sysvinit-246.16-7.14.1.s390x.rpm udev-246.16-7.14.1.s390x.rpm libsystemd0-246.16-7.14.1.ppc64le.rpm libudev-devel-246.16-7.14.1.ppc64le.rpm libudev1-246.16-7.14.1.ppc64le.rpm nss-myhostname-246.16-7.14.1.ppc64le.rpm nss-mymachines-246.16-7.14.1.ppc64le.rpm nss-resolve-246.16-7.14.1.ppc64le.rpm nss-systemd-246.16-7.14.1.ppc64le.rpm systemd-246.16-7.14.1.ppc64le.rpm systemd-container-246.16-7.14.1.ppc64le.rpm systemd-coredump-246.16-7.14.1.ppc64le.rpm systemd-devel-246.16-7.14.1.ppc64le.rpm systemd-doc-246.16-7.14.1.ppc64le.rpm systemd-journal-remote-246.16-7.14.1.ppc64le.rpm systemd-logger-246.16-7.14.1.ppc64le.rpm systemd-network-246.16-7.14.1.ppc64le.rpm systemd-sysvinit-246.16-7.14.1.ppc64le.rpm udev-246.16-7.14.1.ppc64le.rpm libsystemd0-246.16-7.14.1.aarch64.rpm libudev-devel-246.16-7.14.1.aarch64.rpm libudev1-246.16-7.14.1.aarch64.rpm nss-myhostname-246.16-7.14.1.aarch64.rpm nss-mymachines-246.16-7.14.1.aarch64.rpm nss-resolve-246.16-7.14.1.aarch64.rpm nss-systemd-246.16-7.14.1.aarch64.rpm systemd-246.16-7.14.1.aarch64.rpm systemd-container-246.16-7.14.1.aarch64.rpm systemd-coredump-246.16-7.14.1.aarch64.rpm systemd-devel-246.16-7.14.1.aarch64.rpm systemd-doc-246.16-7.14.1.aarch64.rpm systemd-journal-remote-246.16-7.14.1.aarch64.rpm systemd-logger-246.16-7.14.1.aarch64.rpm systemd-network-246.16-7.14.1.aarch64.rpm systemd-sysvinit-246.16-7.14.1.aarch64.rpm udev-246.16-7.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3262 moderate SUSE Updates openSUSE-SLE 15.3 This update provides the following packages to SUSE Manager 4.1.11 Proxy golang-github-prometheus-prometheus: - golang-github-prometheus-prometheus is added to SUSE Manager Proxy as L3 supported golang-github-prometheus-prometheus-2.27.1-3.12.1.src.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.x86_64.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.s390x.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.ppc64le.rpm golang-github-prometheus-prometheus-2.27.1-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3311 moderate SUSE Updates openSUSE-SLE 15.3 This update for perl-Bootloader fixes the following issues: - Report error if config file could not be updated (bsc#1188768). - Fix typo in update-bootloader. perl-Bootloader-0.936-3.3.1.src.rpm perl-Bootloader-0.936-3.3.1.x86_64.rpm perl-Bootloader-YAML-0.936-3.3.1.x86_64.rpm perl-Bootloader-0.936-3.3.1.s390x.rpm perl-Bootloader-YAML-0.936-3.3.1.s390x.rpm perl-Bootloader-0.936-3.3.1.ppc64le.rpm perl-Bootloader-YAML-0.936-3.3.1.ppc64le.rpm perl-Bootloader-0.936-3.3.1.aarch64.rpm perl-Bootloader-YAML-0.936-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3306 moderate SUSE Updates openSUSE-SLE 15.3 This update for numactl fixes the following issues: - Fix System call numbers on s390x. - Debug verify for --preferred option. - Description for the usage of numactl. - Varios memleacks on source files: sysfs.c, shm.c and numactl.c - Description for numa_node_size64 and definition for numa_node_size in manpage. - link with -latomic when needed. - Clear race conditions on numa_police_memory(). - numademo: Use first two nodes instead of node 0 and 1 - Enhance _service settings - Enable automake libnuma-devel-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma1-32bit-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm numactl-2.0.14.20.g4ee5e0c-10.1.src.rpm numactl-2.0.14.20.g4ee5e0c-10.1.x86_64.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.s390x.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.s390x.rpm numactl-2.0.14.20.g4ee5e0c-10.1.s390x.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm numactl-2.0.14.20.g4ee5e0c-10.1.ppc64le.rpm libnuma-devel-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm libnuma1-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm numactl-2.0.14.20.g4ee5e0c-10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3522 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: - CVE-2021-40438: Fixed a SRF via a crafted request uri-path. (bsc#1190703) - CVE-2021-36160: Fixed an out-of-bounds read via a crafted request uri-path. (bsc#1190702) - CVE-2021-39275: Fixed an out-of-bounds write in ap_escape_quotes() via malicious input. (bsc#1190666) - CVE-2021-34798: Fixed a NULL pointer dereference via malformed requests. (bsc#1190669) apache2-2.4.43-3.32.1.src.rpm apache2-2.4.43-3.32.1.x86_64.rpm apache2-devel-2.4.43-3.32.1.x86_64.rpm apache2-doc-2.4.43-3.32.1.noarch.rpm apache2-event-2.4.43-3.32.1.x86_64.rpm apache2-example-pages-2.4.43-3.32.1.x86_64.rpm apache2-prefork-2.4.43-3.32.1.x86_64.rpm apache2-utils-2.4.43-3.32.1.x86_64.rpm apache2-worker-2.4.43-3.32.1.x86_64.rpm apache2-2.4.43-3.32.1.s390x.rpm apache2-devel-2.4.43-3.32.1.s390x.rpm apache2-event-2.4.43-3.32.1.s390x.rpm apache2-example-pages-2.4.43-3.32.1.s390x.rpm apache2-prefork-2.4.43-3.32.1.s390x.rpm apache2-utils-2.4.43-3.32.1.s390x.rpm apache2-worker-2.4.43-3.32.1.s390x.rpm apache2-2.4.43-3.32.1.ppc64le.rpm apache2-devel-2.4.43-3.32.1.ppc64le.rpm apache2-event-2.4.43-3.32.1.ppc64le.rpm apache2-example-pages-2.4.43-3.32.1.ppc64le.rpm apache2-prefork-2.4.43-3.32.1.ppc64le.rpm apache2-utils-2.4.43-3.32.1.ppc64le.rpm apache2-worker-2.4.43-3.32.1.ppc64le.rpm apache2-2.4.43-3.32.1.aarch64.rpm apache2-devel-2.4.43-3.32.1.aarch64.rpm apache2-event-2.4.43-3.32.1.aarch64.rpm apache2-example-pages-2.4.43-3.32.1.aarch64.rpm apache2-prefork-2.4.43-3.32.1.aarch64.rpm apache2-utils-2.4.43-3.32.1.aarch64.rpm apache2-worker-2.4.43-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-3220 moderate SUSE Updates openSUSE-SLE 15.3 This update for kglobalaccel fixes the following issues: - Refuse app. to start with wrong uid (bsc#1178488). kglobalaccel-5.76.0-3.6.1.src.rpm kglobalaccel-devel-32bit-5.76.0-3.6.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.6.1.x86_64.rpm kglobalaccel5-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-32bit-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-5.76.0-3.6.1.x86_64.rpm libKF5GlobalAccel5-lang-5.76.0-3.6.1.noarch.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.x86_64.rpm kglobalaccel-devel-5.76.0-3.6.1.s390x.rpm kglobalaccel5-5.76.0-3.6.1.s390x.rpm libKF5GlobalAccel5-5.76.0-3.6.1.s390x.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.s390x.rpm kglobalaccel-devel-5.76.0-3.6.1.ppc64le.rpm kglobalaccel5-5.76.0-3.6.1.ppc64le.rpm libKF5GlobalAccel5-5.76.0-3.6.1.ppc64le.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.ppc64le.rpm kglobalaccel-devel-5.76.0-3.6.1.aarch64.rpm kglobalaccel5-5.76.0-3.6.1.aarch64.rpm libKF5GlobalAccel5-5.76.0-3.6.1.aarch64.rpm libKF5GlobalAccelPrivate5-5.76.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3307 moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-what fixes the following issues: - Nutanix Acropolis Hypervisor detection - podman detection - Add "which" to requires virt-what-1.21-3.3.1.src.rpm virt-what-1.21-3.3.1.x86_64.rpm virt-what-1.21-3.3.1.s390x.rpm virt-what-1.21-3.3.1.ppc64le.rpm virt-what-1.21-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3530 moderate SUSE Updates openSUSE-SLE 15.3 This update for dnsmasq fixes the following issues: Update to version 2.86 - CVE-2021-3448: fixed outgoing port used when --server is used with an interface name. (bsc#1183709) - CVE-2020-14312: Set --local-service by default (bsc#1173646). - Open inotify socket only when used (bsc#1180914). dnsmasq-2.86-7.14.1.src.rpm dnsmasq-2.86-7.14.1.x86_64.rpm dnsmasq-utils-2.86-7.14.1.x86_64.rpm dnsmasq-2.86-7.14.1.s390x.rpm dnsmasq-utils-2.86-7.14.1.s390x.rpm dnsmasq-2.86-7.14.1.ppc64le.rpm dnsmasq-utils-2.86-7.14.1.ppc64le.rpm dnsmasq-2.86-7.14.1.aarch64.rpm dnsmasq-utils-2.86-7.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-167 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-netconfig fixes the following issues: - Update to version 1.6: + Ignore proxy when accessing metadata (bsc#1187939) + Print warning in case metadata is not accessible + Documentation update cloud-netconfig-azure-1.6-25.5.1.noarch.rpm cloud-netconfig-azure-1.6-25.5.1.src.rpm cloud-netconfig-ec2-1.6-25.5.1.noarch.rpm cloud-netconfig-ec2-1.6-25.5.1.src.rpm cloud-netconfig-gce-1.6-25.5.1.noarch.rpm cloud-netconfig-gce-1.6-25.5.1.src.rpm openSUSE-SLE-15.3-2021-3327 low SUSE Updates openSUSE-SLE 15.3 This optional update for coreutils fixes the following issue: - Provide coreutils documentation, 'coreutils-doc', with 'L2' support level. (bsc#1189454) coreutils-8.32-3.2.1.src.rpm coreutils-8.32-3.2.1.x86_64.rpm coreutils-doc-8.32-3.2.1.noarch.rpm coreutils-lang-8.32-3.2.1.noarch.rpm coreutils-single-8.32-3.2.1.src.rpm coreutils-single-8.32-3.2.1.x86_64.rpm coreutils-testsuite-8.32-3.2.1.src.rpm coreutils-testsuite-8.32-3.2.1.x86_64.rpm coreutils-8.32-3.2.1.s390x.rpm coreutils-single-8.32-3.2.1.s390x.rpm coreutils-testsuite-8.32-3.2.1.s390x.rpm coreutils-8.32-3.2.1.ppc64le.rpm coreutils-single-8.32-3.2.1.ppc64le.rpm coreutils-testsuite-8.32-3.2.1.ppc64le.rpm coreutils-8.32-3.2.1.aarch64.rpm coreutils-single-8.32-3.2.1.aarch64.rpm coreutils-testsuite-8.32-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-3402 moderate SUSE Updates openSUSE-SLE 15.3 This update for 389-ds fixes the following issues: - rebase lib389 and cockpit in 1.4.4 - Updated several dsconf --help entries (typos, wrong descriptions, etc.) - Account Policy plugin does not set the config entry DN - Add support for nsslapd-state to CLI and UI - IPA failure in ipa user-del --preserve - backport lib389 cert list fix - dsidm command crashing when account policy plugin is enabled - db reindex corrupts RUV tombstone nsuiqueid index - Fix retro cl trimming misuse of monotonic/realtime clocks 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.src.rpm 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm 389-ds-devel-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm 389-ds-snmp-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm lib389-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm libsvrcore0-1.4.4.17~git0.5e1e392ae-3.7.1.x86_64.rpm 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm 389-ds-devel-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm 389-ds-snmp-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm lib389-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm libsvrcore0-1.4.4.17~git0.5e1e392ae-3.7.1.s390x.rpm 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm 389-ds-devel-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm 389-ds-snmp-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm lib389-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm libsvrcore0-1.4.4.17~git0.5e1e392ae-3.7.1.ppc64le.rpm 389-ds-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm 389-ds-devel-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm 389-ds-snmp-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm lib389-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm libsvrcore0-1.4.4.17~git0.5e1e392ae-3.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3349 moderate SUSE Updates openSUSE-SLE 15.3 This update for libgphoto2 fixes the following issues: libgphoto2 was updated to the 2.5.27 release (jsc#SLE-21615) - Lots of new camera models added. - Camera support enhanced for Sony Alpha, Fuji XT, Nikon Z, Canon EOS R, Panasonic Lumix, Leica SL, ... - Better support for files over 4GB - Lumix Wifi, Docupen support added. - Lots of bugfixes libgphoto2-2.5.27-3.4.1.src.rpm libgphoto2-6-2.5.27-3.4.1.x86_64.rpm libgphoto2-6-32bit-2.5.27-3.4.1.x86_64.rpm libgphoto2-6-lang-2.5.27-3.4.1.noarch.rpm libgphoto2-devel-2.5.27-3.4.1.x86_64.rpm libgphoto2-devel-32bit-2.5.27-3.4.1.x86_64.rpm libgphoto2-devel-doc-2.5.27-3.4.1.x86_64.rpm libgphoto2-doc-2.5.27-3.4.1.x86_64.rpm libgphoto2-6-2.5.27-3.4.1.s390x.rpm libgphoto2-devel-2.5.27-3.4.1.s390x.rpm libgphoto2-devel-doc-2.5.27-3.4.1.s390x.rpm libgphoto2-doc-2.5.27-3.4.1.s390x.rpm libgphoto2-6-2.5.27-3.4.1.ppc64le.rpm libgphoto2-devel-2.5.27-3.4.1.ppc64le.rpm libgphoto2-devel-doc-2.5.27-3.4.1.ppc64le.rpm libgphoto2-doc-2.5.27-3.4.1.ppc64le.rpm libgphoto2-6-2.5.27-3.4.1.aarch64.rpm libgphoto2-devel-2.5.27-3.4.1.aarch64.rpm libgphoto2-devel-doc-2.5.27-3.4.1.aarch64.rpm libgphoto2-doc-2.5.27-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3293 moderate SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2020-22042: Fixed a denial of service vulnerability led by a memory leak in the link_filter_inouts function in libavfilter/graphparser.c. (bsc#1186761) ffmpeg-3.4.2-11.14.1.src.rpm ffmpeg-3.4.2-11.14.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.14.1.x86_64.rpm libavcodec-devel-3.4.2-11.14.1.x86_64.rpm libavcodec57-3.4.2-11.14.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.14.1.x86_64.rpm libavdevice-devel-3.4.2-11.14.1.x86_64.rpm libavdevice57-3.4.2-11.14.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.14.1.x86_64.rpm libavfilter-devel-3.4.2-11.14.1.x86_64.rpm libavfilter6-3.4.2-11.14.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.14.1.x86_64.rpm libavformat-devel-3.4.2-11.14.1.x86_64.rpm libavformat57-3.4.2-11.14.1.x86_64.rpm libavformat57-32bit-3.4.2-11.14.1.x86_64.rpm libavresample-devel-3.4.2-11.14.1.x86_64.rpm libavresample3-3.4.2-11.14.1.x86_64.rpm libavresample3-32bit-3.4.2-11.14.1.x86_64.rpm libavutil-devel-3.4.2-11.14.1.x86_64.rpm libavutil55-3.4.2-11.14.1.x86_64.rpm libavutil55-32bit-3.4.2-11.14.1.x86_64.rpm libpostproc-devel-3.4.2-11.14.1.x86_64.rpm libpostproc54-3.4.2-11.14.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.14.1.x86_64.rpm libswresample-devel-3.4.2-11.14.1.x86_64.rpm libswresample2-3.4.2-11.14.1.x86_64.rpm libswresample2-32bit-3.4.2-11.14.1.x86_64.rpm libswscale-devel-3.4.2-11.14.1.x86_64.rpm libswscale4-3.4.2-11.14.1.x86_64.rpm libswscale4-32bit-3.4.2-11.14.1.x86_64.rpm ffmpeg-3.4.2-11.14.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.14.1.s390x.rpm libavcodec-devel-3.4.2-11.14.1.s390x.rpm libavcodec57-3.4.2-11.14.1.s390x.rpm libavdevice-devel-3.4.2-11.14.1.s390x.rpm libavdevice57-3.4.2-11.14.1.s390x.rpm libavfilter-devel-3.4.2-11.14.1.s390x.rpm libavfilter6-3.4.2-11.14.1.s390x.rpm libavformat-devel-3.4.2-11.14.1.s390x.rpm libavformat57-3.4.2-11.14.1.s390x.rpm libavresample-devel-3.4.2-11.14.1.s390x.rpm libavresample3-3.4.2-11.14.1.s390x.rpm libavutil-devel-3.4.2-11.14.1.s390x.rpm libavutil55-3.4.2-11.14.1.s390x.rpm libpostproc-devel-3.4.2-11.14.1.s390x.rpm libpostproc54-3.4.2-11.14.1.s390x.rpm libswresample-devel-3.4.2-11.14.1.s390x.rpm libswresample2-3.4.2-11.14.1.s390x.rpm libswscale-devel-3.4.2-11.14.1.s390x.rpm libswscale4-3.4.2-11.14.1.s390x.rpm ffmpeg-3.4.2-11.14.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.14.1.ppc64le.rpm libavcodec-devel-3.4.2-11.14.1.ppc64le.rpm libavcodec57-3.4.2-11.14.1.ppc64le.rpm libavdevice-devel-3.4.2-11.14.1.ppc64le.rpm libavdevice57-3.4.2-11.14.1.ppc64le.rpm libavfilter-devel-3.4.2-11.14.1.ppc64le.rpm libavfilter6-3.4.2-11.14.1.ppc64le.rpm libavformat-devel-3.4.2-11.14.1.ppc64le.rpm libavformat57-3.4.2-11.14.1.ppc64le.rpm libavresample-devel-3.4.2-11.14.1.ppc64le.rpm libavresample3-3.4.2-11.14.1.ppc64le.rpm libavutil-devel-3.4.2-11.14.1.ppc64le.rpm libavutil55-3.4.2-11.14.1.ppc64le.rpm libpostproc-devel-3.4.2-11.14.1.ppc64le.rpm libpostproc54-3.4.2-11.14.1.ppc64le.rpm libswresample-devel-3.4.2-11.14.1.ppc64le.rpm libswresample2-3.4.2-11.14.1.ppc64le.rpm libswscale-devel-3.4.2-11.14.1.ppc64le.rpm libswscale4-3.4.2-11.14.1.ppc64le.rpm ffmpeg-3.4.2-11.14.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.14.1.aarch64.rpm libavcodec-devel-3.4.2-11.14.1.aarch64.rpm libavcodec57-3.4.2-11.14.1.aarch64.rpm libavdevice-devel-3.4.2-11.14.1.aarch64.rpm libavdevice57-3.4.2-11.14.1.aarch64.rpm libavfilter-devel-3.4.2-11.14.1.aarch64.rpm libavfilter6-3.4.2-11.14.1.aarch64.rpm libavformat-devel-3.4.2-11.14.1.aarch64.rpm libavformat57-3.4.2-11.14.1.aarch64.rpm libavresample-devel-3.4.2-11.14.1.aarch64.rpm libavresample3-3.4.2-11.14.1.aarch64.rpm libavutil-devel-3.4.2-11.14.1.aarch64.rpm libavutil55-3.4.2-11.14.1.aarch64.rpm libpostproc-devel-3.4.2-11.14.1.aarch64.rpm libpostproc54-3.4.2-11.14.1.aarch64.rpm libswresample-devel-3.4.2-11.14.1.aarch64.rpm libswresample2-3.4.2-11.14.1.aarch64.rpm libswscale-devel-3.4.2-11.14.1.aarch64.rpm libswscale4-3.4.2-11.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3343 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - controller: ensure newly joining node learns the node names of non-DCs. (bsc#1180618) - libcrmcommon: Correctly handle case-sensitive ids of xml objects when changing a value. (bsc#1187414) - libpe_status: handle pending migrations correctly. (bsc#1177212) - scheduler: add test for probe of unmanaged resource on pending node (bsc#1188653): scheduler: update existing tests for probe scheduling change. scheduler: don't schedule probes of unmanaged resources on pending nodes. - controld-fencing: add notice-log for successful fencer-connect (bsc#1181744): controld-fencing: remove-notifications upon connection-destroy. fenced: Remove relayed stonith operation. fence-history: resync fence-history after fenced crash. fence-history: add notification upon history-synced. fence-history: fail leftover pending-actions after fenced-restart. st_client: make safe to remove notifications from notifications. libpacemaker-devel-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.9.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.9.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.9.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.9.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3274 important SUSE Updates openSUSE-SLE 15.3 This update for ca-certificates-mozilla fixes the following issues: - remove one of the Letsencrypt CAs DST_Root_CA_X3.pem, as it expires September 30th 2021 and openssl certificate chain handling does not handle this correctly in openssl 1.0.2 and older. (bsc#1190858) ca-certificates-mozilla-2.44-18.1.noarch.rpm ca-certificates-mozilla-2.44-18.1.src.rpm openSUSE-SLE-15.3-2021-3315 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: This is the initial go 1.17 shipment. go1.17.1 (released 2021-09-09) includes a security fix to the archive/zip package, as well as bug fixes to the compiler, linker, the go command, and to the crypto/rand, embed, go/types, html/template, and net/http packages. (bsc#1190649) CVE-2021-39293: Fixed an overflow in preallocation check that can cause OOM panic in archive/zip (bsc#1190589) go1.17 (released 2021-08-16) is a major release of Go. go1.17.x minor releases will be provided through August 2022. See https://github.com/golang/go/wiki/Go-Release-Cycle Most changes are in the implementation of the toolchain, runtime, and libraries. As always, the release maintains the Go 1 promise of compatibility. We expect almost all Go programs to continue to compile and run as before. (bsc#1190649) * See release notes https://golang.org/doc/go1.17. Excerpts relevant to OBS environment and for SUSE/openSUSE follow: * The compiler now implements a new way of passing function arguments and results using registers instead of the stack. Benchmarks for a representative set of Go packages and programs show performance improvements of about 5%, and a typical reduction in binary size of about 2%. This is currently enabled for Linux, macOS, and Windows on the 64-bit x86 architecture (the linux/amd64, darwin/amd64, and windows/amd64 ports). This change does not affect the functionality of any safe Go code and is designed to have no impact on most assembly code. * When the linker uses external linking mode, which is the default when linking a program that uses cgo, and the linker is invoked with a -I option, the option will now be passed to the external linker as a -Wl,--dynamic-linker option. * The runtime/cgo package now provides a new facility that allows to turn any Go values to a safe representation that can be used to pass values between C and Go safely. See runtime/cgo.Handle for more information. * ARM64 Go programs now maintain stack frame pointers on the 64-bit ARM architecture on all operating systems. Previously, stack frame pointers were only enabled on Linux, macOS, and iOS. * Pruned module graphs in go 1.17 modules: If a module specifies go 1.17 or higher, the module graph includes only the immediate dependencies of other go 1.17 modules, not their full transitive dependencies. To convert the go.mod file for an existing module to Go 1.17 without changing the selected versions of its dependencies, run: go mod tidy -go=1.17 By default, go mod tidy verifies that the selected versions of dependencies relevant to the main module are the same versions that would be used by the prior Go release (Go 1.16 for a module that specifies go 1.17), and preserves the go.sum entries needed by that release even for dependencies that are not normally needed by other commands. The -compat flag allows that version to be overridden to support older (or only newer) versions, up to the version specified by the go directive in the go.mod file. To tidy a go 1.17 module for Go 1.17 only, without saving checksums for (or checking for consistency with) Go 1.16: go mod tidy -compat=1.17 Note that even if the main module is tidied with -compat=1.17, users who require the module from a go 1.16 or earlier module will still be able to use it, provided that the packages use only compatible language and library features. The go mod graph subcommand also supports the -go flag, which causes it to report the graph as seen by the indicated Go version, showing dependencies that may otherwise be pruned out. * Module deprecation comments: Module authors may deprecate a module by adding a // Deprecated: comment to go.mod, then tagging a new version. go get now prints a warning if a module needed to build packages named on the command line is deprecated. go list -m -u prints deprecations for all dependencies (use -f or -json to show the full message). The go command considers different major versions to be distinct modules, so this mechanism may be used, for example, to provide users with migration instructions for a new major version. * go get -insecure flag is deprecated and has been removed. To permit the use of insecure schemes when fetching dependencies, please use the GOINSECURE environment variable. The -insecure flag also bypassed module sum validation, use GOPRIVATE or GONOSUMDB if you need that functionality. See go help environment for details. * go get prints a deprecation warning when installing commands outside the main module (without the -d flag). go install cmd@version should be used instead to install a command at a specific version, using a suffix like @latest or @v1.2.3. In Go 1.18, the -d flag will always be enabled, and go get will only be used to change dependencies in go.mod. * go.mod files missing go directives: If the main module's go.mod file does not contain a go directive and the go command cannot update the go.mod file, the go command now assumes go 1.11 instead of the current release. (go mod init has added go directives automatically since Go 1.12.) If a module dependency lacks an explicit go.mod file, or its go.mod file does not contain a go directive, the go command now assumes go 1.16 for that dependency instead of the current release. (Dependencies developed in GOPATH mode may lack a go.mod file, and the vendor/modules.txt has to date never recorded the go versions indicated by dependencies' go.mod files.) * vendor contents: If the main module specifies go 1.17 or higher, go mod vendor now annotates vendor/modules.txt with the go version indicated by each vendored module in its own go.mod file. The annotated version is used when building the module's packages from vendored source code. If the main module specifies go 1.17 or higher, go mod vendor now omits go.mod and go.sum files for vendored dependencies, which can otherwise interfere with the ability of the go command to identify the correct module root when invoked within the vendor tree. * Password prompts: The go command by default now suppresses SSH password prompts and Git Credential Manager prompts when fetching Git repositories using SSH, as it already did previously for other Git password prompts. Users authenticating to private Git repos with password-protected SSH may configure an ssh-agent to enable the go command to use password-protected SSH keys. * go mod download: When go mod download is invoked without arguments, it will no longer save sums for downloaded module content to go.sum. It may still make changes to go.mod and go.sum needed to load the build list. This is the same as the behavior in Go 1.15. To save sums for all modules, use: go mod download all * The go command now understands //go:build lines and prefers them over // +build lines. The new syntax uses boolean expressions, just like Go, and should be less error-prone. As of this release, the new syntax is fully supported, and all Go files should be updated to have both forms with the same meaning. To aid in migration, gofmt now automatically synchronizes the two forms. For more details on the syntax and migration plan, see https://golang.org/design/draft-gobuild. * go run now accepts arguments with version suffixes (for example, go run example.com/cmd@v1.0.0). This causes go run to build and run packages in module-aware mode, ignoring the go.mod file in the current directory or any parent directory, if there is one. This is useful for running executables without installing them or without changing dependencies of the current module. * The format of stack traces from the runtime (printed when an uncaught panic occurs, or when runtime.Stack is called) is improved. * TLS strict ALPN: When Config.NextProtos is set, servers now enforce that there is an overlap between the configured protocols and the ALPN protocols advertised by the client, if any. If there is no mutually supported protocol, the connection is closed with the no_application_protocol alert, as required by RFC 7301. This helps mitigate the ALPACA cross-protocol attack. As an exception, when the value "h2" is included in the server's Config.NextProtos, HTTP/1.1 clients will be allowed to connect as if they didn't support ALPN. See issue go#46310 for more information. * crypto/ed25519: The crypto/ed25519 package has been rewritten, and all operations are now approximately twice as fast on amd64 and arm64. The observable behavior has not otherwise changed. * crypto/elliptic: CurveParams methods now automatically invoke faster and safer dedicated implementations for known curves (P-224, P-256, and P-521) when available. Note that this is a best-effort approach and applications should avoid using the generic, not constant-time CurveParams methods and instead use dedicated Curve implementations such as P256. The P521 curve implementation has been rewritten using code generated by the fiat-crypto project, which is based on a formally-verified model of the arithmetic operations. It is now constant-time and three times faster on amd64 and arm64. The observable behavior has not otherwise changed. * crypto/tls: The new Conn.HandshakeContext method allows the user to control cancellation of an in-progress TLS handshake. The provided context is accessible from various callbacks through the new ClientHelloInfo.Context and CertificateRequestInfo.Context methods. Canceling the context after the handshake has finished has no effect. Cipher suite ordering is now handled entirely by the crypto/tls package. Currently, cipher suites are sorted based on their security, performance, and hardware support taking into account both the local and peer's hardware. The order of the Config.CipherSuites field is now ignored, as well as the Config.PreferServerCipherSuites field. Note that Config.CipherSuites still allows applications to choose what TLS 1.0–1.2 cipher suites to enable. The 3DES cipher suites have been moved to InsecureCipherSuites due to fundamental block size-related weakness. They are still enabled by default but only as a last resort, thanks to the cipher suite ordering change above. Beginning in the next release, Go 1.18, the Config.MinVersion for crypto/tls clients will default to TLS 1.2, disabling TLS 1.0 and TLS 1.1 by default. Applications will be able to override the change by explicitly setting Config.MinVersion. This will not affect crypto/tls servers. * crypto/x509: CreateCertificate now returns an error if the provided private key doesn't match the parent's public key, if any. The resulting certificate would have failed to verify. * crypto/x509: The temporary GODEBUG=x509ignoreCN=0 flag has been removed. * crypto/x509: ParseCertificate has been rewritten, and now consumes ~70% fewer resources. The observable behavior has not otherwise changed, except for error messages. * crypto/x509: Beginning in the next release, Go 1.18, crypto/x509 will reject certificates signed with the SHA-1 hash function. This doesn't apply to self-signed root certificates. Practical attacks against SHA-1 have been demonstrated in 2017 and publicly trusted Certificate Authorities have not issued SHA-1 certificates since 2015. * go/build: The new Context.ToolTags field holds the build tags appropriate to the current Go toolchain configuration. * net/http package now uses the new (*tls.Conn).HandshakeContext with the Request context when performing TLS handshakes in the client or server. * syscall: On Unix-like systems, the process group of a child process is now set with signals blocked. This avoids sending a SIGTTOU to the child when the parent is in a background process group. * time: The new Time.IsDST method can be used to check whether the time is in Daylight Savings Time in its configured location. * time: The new Time.UnixMilli and Time.UnixMicro methods return the number of milliseconds and microseconds elapsed since January 1, 1970 UTC respectively. * time: The new UnixMilli and UnixMicro functions return the local Time corresponding to the given Unix time. - Add bash scripts used by go tool commands to provide a more complete cross-compiling go toolchain install. go1.17-1.17.1-1.3.1.i586.rpm go1.17-1.17.1-1.3.1.src.rpm go1.17-doc-1.17.1-1.3.1.i586.rpm go1.17-1.17.1-1.3.1.x86_64.rpm go1.17-doc-1.17.1-1.3.1.x86_64.rpm go1.17-race-1.17.1-1.3.1.x86_64.rpm go1.17-1.17.1-1.3.1.s390x.rpm go1.17-doc-1.17.1-1.3.1.s390x.rpm go1.17-1.17.1-1.3.1.ppc64le.rpm go1.17-doc-1.17.1-1.3.1.ppc64le.rpm go1.17-1.17.1-1.3.1.aarch64.rpm go1.17-doc-1.17.1-1.3.1.aarch64.rpm go1.17-race-1.17.1-1.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3292 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: - Update to go 1.16.8 - CVE-2021-39293: Fixed a buffer overflow issue in preallocation check that can cause OOM panic. (bas#) go1.16-1.16.8-1.26.1.src.rpm go1.16-1.16.8-1.26.1.x86_64.rpm go1.16-doc-1.16.8-1.26.1.x86_64.rpm go1.16-race-1.16.8-1.26.1.x86_64.rpm go1.16-1.16.8-1.26.1.s390x.rpm go1.16-doc-1.16.8-1.26.1.s390x.rpm go1.16-1.16.8-1.26.1.ppc64le.rpm go1.16-doc-1.16.8-1.26.1.ppc64le.rpm go1.16-1.16.8-1.26.1.aarch64.rpm go1.16-doc-1.16.8-1.26.1.aarch64.rpm go1.16-race-1.16.8-1.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-3471 moderate SUSE Updates openSUSE-SLE 15.3 This update for habootstrap-formula fixes the following issues: Update to version 0.4.4 - Wait for cluster startup after a 'corosync' restart. (bsc#1190940) - Add support for The Oracle Cluster File System v2 (OCFS2) - Enable native fencing for 'microsoft-azure' - Add documentation on how to enable native fencing habootstrap-formula-0.4.4+git.1632747498.2caa677-3.20.1.noarch.rpm habootstrap-formula-0.4.4+git.1632747498.2caa677-3.20.1.src.rpm openSUSE-SLE-15.3-2021-3395 important SUSE Updates openSUSE-SLE 15.3 This update for sbd fixes the following issues: Update to version 1.5.0+20210720.f4ca41f - 'sbd-inquisitor': - Implement default delay start for diskless 'sbd'. (bsc#1189398) - Sanitize numeric arguments. - Tolerate and strip any leading spaces of command line option values. (bsc#1187547) - Tell the actual watchdog device specified with '-w'. (bsc#1187547) Important notes on 'sync_resource_startup_default': - This configuration has to be in sync with the configuration in 'pacemaker' where it is called 'sbd_sync'. The syncing enabled per default will lead to syncing enabled on upgrade without adaption of the config. The setting can still be overruled via 'sysconfig'. The setting in the 'config-template' packaged will follow the default if it is left empty. It is possible to have the setting in the 'config-template' deviate from the default by setting it to an explicit 'yes' or 'no'. sbd-1.5.0+20210720.f4ca41f-3.6.1.src.rpm sbd-1.5.0+20210720.f4ca41f-3.6.1.x86_64.rpm sbd-devel-1.5.0+20210720.f4ca41f-3.6.1.x86_64.rpm sbd-1.5.0+20210720.f4ca41f-3.6.1.s390x.rpm sbd-devel-1.5.0+20210720.f4ca41f-3.6.1.s390x.rpm sbd-1.5.0+20210720.f4ca41f-3.6.1.ppc64le.rpm sbd-devel-1.5.0+20210720.f4ca41f-3.6.1.ppc64le.rpm sbd-1.5.0+20210720.f4ca41f-3.6.1.aarch64.rpm sbd-devel-1.5.0+20210720.f4ca41f-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3321 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Update elements on rules.xml schema: Add the "hostname" (bsc#1190696). Add Installed_product and installed_product_version (boo#1176089). Add Dialog section (bsc#1188153). autoyast2-4.3.90-3.25.1.noarch.rpm autoyast2-4.3.90-3.25.1.src.rpm autoyast2-installation-4.3.90-3.25.1.noarch.rpm yast2-schema-4.3.25-3.6.1.src.rpm yast2-schema-4.3.25-3.6.1.x86_64.rpm yast2-schema-4.3.25-3.6.1.s390x.rpm yast2-schema-4.3.25-3.6.1.ppc64le.rpm yast2-schema-4.3.25-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3397 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issue: - Remove ownership of '%{_rpmconfigdir}/macros.d' that belongs to RPM. (bsc#1182218) libmariadbd-devel-10.5.12-3.9.1.x86_64.rpm libmariadbd19-10.5.12-3.9.1.x86_64.rpm mariadb-10.5.12-3.9.1.src.rpm mariadb-10.5.12-3.9.1.x86_64.rpm mariadb-bench-10.5.12-3.9.1.x86_64.rpm mariadb-client-10.5.12-3.9.1.x86_64.rpm mariadb-errormessages-10.5.12-3.9.1.noarch.rpm mariadb-rpm-macros-10.5.12-3.9.1.x86_64.rpm mariadb-test-10.5.12-3.9.1.x86_64.rpm mariadb-tools-10.5.12-3.9.1.x86_64.rpm libmariadbd-devel-10.5.12-3.9.1.s390x.rpm libmariadbd19-10.5.12-3.9.1.s390x.rpm mariadb-10.5.12-3.9.1.s390x.rpm mariadb-bench-10.5.12-3.9.1.s390x.rpm mariadb-client-10.5.12-3.9.1.s390x.rpm mariadb-rpm-macros-10.5.12-3.9.1.s390x.rpm mariadb-test-10.5.12-3.9.1.s390x.rpm mariadb-tools-10.5.12-3.9.1.s390x.rpm libmariadbd-devel-10.5.12-3.9.1.ppc64le.rpm libmariadbd19-10.5.12-3.9.1.ppc64le.rpm mariadb-10.5.12-3.9.1.ppc64le.rpm mariadb-bench-10.5.12-3.9.1.ppc64le.rpm mariadb-client-10.5.12-3.9.1.ppc64le.rpm mariadb-rpm-macros-10.5.12-3.9.1.ppc64le.rpm mariadb-test-10.5.12-3.9.1.ppc64le.rpm mariadb-tools-10.5.12-3.9.1.ppc64le.rpm libmariadbd-devel-10.5.12-3.9.1.aarch64.rpm libmariadbd19-10.5.12-3.9.1.aarch64.rpm mariadb-10.5.12-3.9.1.aarch64.rpm mariadb-bench-10.5.12-3.9.1.aarch64.rpm mariadb-client-10.5.12-3.9.1.aarch64.rpm mariadb-rpm-macros-10.5.12-3.9.1.aarch64.rpm mariadb-test-10.5.12-3.9.1.aarch64.rpm mariadb-tools-10.5.12-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3476 important SUSE Updates openSUSE-SLE 15.3 This update for xstream fixes the following issues: - Upgrade to 1.4.18 - CVE-2021-39139: Fixed an issue that allowed an attacker to execute arbitrary code execution by manipulating the processed input stream with type information. (bsc#1189798) - CVE-2021-39140: Fixed an issue that allowed an attacker to execute a DoS attack by manipulating the processed input stream. (bsc#1189798) - CVE-2021-39141: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39144: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39145: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39146: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39147: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39148: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39149: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39150: Fixed an issue that allowed an attacker to access protected resources hosted within the intranet or in the host itself. (bsc#1189798) - CVE-2021-39151: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39152: Fixed an issue that allowed an attacker to access protected resources hosted within the intranet or in the host itself. (bsc#1189798) - CVE-2021-39153: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) - CVE-2021-39154: Fixed an issue that allowed an attacker to achieve arbitrary code execution. (bsc#1189798) xstream-1.4.18-3.14.1.noarch.rpm xstream-1.4.18-3.14.1.src.rpm xstream-benchmark-1.4.18-3.14.1.noarch.rpm xstream-javadoc-1.4.18-3.14.1.noarch.rpm xstream-parent-1.4.18-3.14.1.noarch.rpm openSUSE-SLE-15.3-2021-3398 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnome-packagekit fixes the following issue: - List all the available updates when getting system updates. (bsc#1190330) gnome-packagekit-3.32.0-7.1.src.rpm gnome-packagekit-3.32.0-7.1.x86_64.rpm gnome-packagekit-extras-3.32.0-7.1.x86_64.rpm gnome-packagekit-lang-3.32.0-7.1.noarch.rpm gnome-packagekit-3.32.0-7.1.s390x.rpm gnome-packagekit-extras-3.32.0-7.1.s390x.rpm gnome-packagekit-3.32.0-7.1.ppc64le.rpm gnome-packagekit-extras-3.32.0-7.1.ppc64le.rpm gnome-packagekit-3.32.0-7.1.aarch64.rpm gnome-packagekit-extras-3.32.0-7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3392 important SUSE Updates openSUSE-SLE 15.3 This update for rsync fixes the following issues: - Fix a memory protection issue in 'iconv' (bsc#1188258) rsync-3.1.3-4.7.1.src.rpm rsync-3.1.3-4.7.1.x86_64.rpm rsync-3.1.3-4.7.1.s390x.rpm rsync-3.1.3-4.7.1.ppc64le.rpm rsync-3.1.3-4.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3399 moderate SUSE Updates openSUSE-SLE 15.3 This update for NetworkManager fixes the following issues: - Exclude 'systemd.automount' from NFS processing and avoid failures after a suspend/resume cycle. (bsc#1116625) NetworkManager-1.22.10-3.10.1.src.rpm NetworkManager-1.22.10-3.10.1.x86_64.rpm NetworkManager-branding-upstream-1.22.10-3.10.1.noarch.rpm NetworkManager-devel-1.22.10-3.10.1.x86_64.rpm NetworkManager-devel-32bit-1.22.10-3.10.1.x86_64.rpm NetworkManager-lang-1.22.10-3.10.1.noarch.rpm libnm0-1.22.10-3.10.1.x86_64.rpm typelib-1_0-NM-1_0-1.22.10-3.10.1.x86_64.rpm NetworkManager-1.22.10-3.10.1.s390x.rpm NetworkManager-devel-1.22.10-3.10.1.s390x.rpm libnm0-1.22.10-3.10.1.s390x.rpm typelib-1_0-NM-1_0-1.22.10-3.10.1.s390x.rpm NetworkManager-1.22.10-3.10.1.ppc64le.rpm NetworkManager-devel-1.22.10-3.10.1.ppc64le.rpm libnm0-1.22.10-3.10.1.ppc64le.rpm typelib-1_0-NM-1_0-1.22.10-3.10.1.ppc64le.rpm NetworkManager-1.22.10-3.10.1.aarch64.rpm NetworkManager-devel-1.22.10-3.10.1.aarch64.rpm libnm0-1.22.10-3.10.1.aarch64.rpm typelib-1_0-NM-1_0-1.22.10-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3354 moderate SUSE Updates openSUSE-SLE 15.3 This update for libqt5-qtsvg fixes the following issues: - CVE-2021-3481: Fixed an out of bounds read in function QRadialFetchSimd from crafted svg file. (bsc#1184783) libQt5Svg5-32bit-5.12.7-3.3.1.x86_64.rpm libQt5Svg5-5.12.7-3.3.1.x86_64.rpm libqt5-qtsvg-5.12.7-3.3.1.src.rpm libqt5-qtsvg-devel-32bit-5.12.7-3.3.1.x86_64.rpm libqt5-qtsvg-devel-5.12.7-3.3.1.x86_64.rpm libqt5-qtsvg-examples-5.12.7-3.3.1.x86_64.rpm libqt5-qtsvg-private-headers-devel-5.12.7-3.3.1.noarch.rpm libQt5Svg5-5.12.7-3.3.1.s390x.rpm libqt5-qtsvg-devel-5.12.7-3.3.1.s390x.rpm libqt5-qtsvg-examples-5.12.7-3.3.1.s390x.rpm libQt5Svg5-5.12.7-3.3.1.ppc64le.rpm libqt5-qtsvg-devel-5.12.7-3.3.1.ppc64le.rpm libqt5-qtsvg-examples-5.12.7-3.3.1.ppc64le.rpm libQt5Svg5-5.12.7-3.3.1.aarch64.rpm libqt5-qtsvg-devel-5.12.7-3.3.1.aarch64.rpm libqt5-qtsvg-examples-5.12.7-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3304 moderate SUSE Updates openSUSE-SLE 15.3 This update for kdump fixes the following issues: - Do not iterate past end of string (bsc#1186037). - Fix incorrect exit code checking after "local" with assignment (bsc#1184616). - Avoid an endless loop when resolving a hostname fails with EAI_AGAIN (bsc#1183070). - Install /etc/resolv.conf using its resolved path (bsc#1183070). - Make sure that initrd.target.wants directory exists (bsc#1172670). kdump-0.9.0-18.3.1.src.rpm kdump-0.9.0-18.3.1.x86_64.rpm kdump-0.9.0-18.3.1.s390x.rpm kdump-0.9.0-18.3.1.ppc64le.rpm kdump-0.9.0-18.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3328 moderate SUSE Updates openSUSE-SLE 15.3 This update for patterns-sap fixes the following issue: - Remove 'libssh2-1' from SAP-HANA pattern (jsc#SLE-20033) - 'libssh2-1' is not longer needed for newer HANA 2.0 versions - Adjust the 'patterns-sap' version to 15.3 patterns-sap-15.3-9.5.1.src.rpm patterns-sap-15.3-9.5.1.x86_64.rpm patterns-sap-b1-15.3-9.5.1.x86_64.rpm patterns-sap-hana-15.3-9.5.1.x86_64.rpm patterns-sap-nw-15.3-9.5.1.x86_64.rpm patterns-sap-15.3-9.5.1.ppc64le.rpm patterns-sap-b1-15.3-9.5.1.ppc64le.rpm patterns-sap-hana-15.3-9.5.1.ppc64le.rpm patterns-sap-nw-15.3-9.5.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3536 low SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - Fix desktop file so the control center tooltip is translated. (bsc#1187270) - Recommend to install libyui-qt-graph package in order to offer the View/Device Graphs menu option. (bsc#1191109) - Fix (un)masking systemd units by using the systemctl --plain flag. (bsc#1191347). yast2-storage-ng-4.3.56-3.12.1.src.rpm yast2-storage-ng-4.3.56-3.12.1.x86_64.rpm yast2-storage-ng-4.3.56-3.12.1.s390x.rpm yast2-storage-ng-4.3.56-3.12.1.ppc64le.rpm yast2-storage-ng-4.3.56-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3390 moderate SUSE Updates openSUSE-SLE 15.3 This update for fcoe-utils fixes the following issues: Update to version 1.0.34 (bsc#1182804) - Fix 21 string-op truncation, format truncation, and format overflow errors - Use of uninitialized values detected during LTO - fix VLAN device name overflow check - Fix an issue caused by 'safe_makepath' change in 'libopenfcoe.c' - Char can be unsigned on ARM, so set signed explicitly as the check expects it can be negative - Handle NIC names longer than 7 characters. (bsc#1010047) - Change debug->log message if daemon running - Remove references to 'open-fcoe.org' - Fix two gcc-11 compiler warnings. - Exit 'fcoemon' command if 'fcoemon' daemon is already running. - Update systemd service files fcoe-utils-1.0.34-12.3.1.src.rpm fcoe-utils-1.0.34-12.3.1.x86_64.rpm fcoe-utils-1.0.34-12.3.1.s390x.rpm fcoe-utils-1.0.34-12.3.1.ppc64le.rpm fcoe-utils-1.0.34-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3479 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Fix usage information for -f parameter. (bsc#1187470) - Fix obsolete reference to 96insmodpost in manpage. (bsc#1187774) - Remove references to INITRD_MODULES. (bsc#1187115) - Multipath FCoE configurations may not boot when using only one path. (bsc#1186260) - Adjust path for SUSE: /var/lib/nfs/statd/sm to /var/lib/nfs/sm. (bsc#1184970) - Systemd coredump unit files are missing in initrd. (1190845) - Use $kernel rather than $(uname -r). - Exclude modules that are built-in. - Restore INITRD_MODULES in mkinitrd script. - Call dracut_instmods with hostonly. dracut-049.1+suse.209.gebcf4f33-3.40.1.src.rpm dracut-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-extra-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-fips-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-ima-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-tools-049.1+suse.209.gebcf4f33-3.40.1.x86_64.rpm dracut-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-extra-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-fips-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-ima-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-tools-049.1+suse.209.gebcf4f33-3.40.1.s390x.rpm dracut-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-extra-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-fips-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-ima-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-tools-049.1+suse.209.gebcf4f33-3.40.1.ppc64le.rpm dracut-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm dracut-extra-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm dracut-fips-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm dracut-ima-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm dracut-tools-049.1+suse.209.gebcf4f33-3.40.1.aarch64.rpm openSUSE-SLE-15.3-2021-3474 moderate SUSE Updates openSUSE-SLE 15.3 This update for util-linux fixes the following issues: - CVE-2021-37600: Fixed an integer overflow which could lead to a buffer overflow in get_sem_elements() in sys-utils/ipcutils.c. (bsc#1188921) libblkid-devel-2.36.2-4.5.1.x86_64.rpm libblkid-devel-32bit-2.36.2-4.5.1.x86_64.rpm libblkid-devel-static-2.36.2-4.5.1.x86_64.rpm libblkid1-2.36.2-4.5.1.x86_64.rpm libblkid1-32bit-2.36.2-4.5.1.x86_64.rpm libfdisk-devel-2.36.2-4.5.1.x86_64.rpm libfdisk-devel-32bit-2.36.2-4.5.1.x86_64.rpm libfdisk-devel-static-2.36.2-4.5.1.x86_64.rpm libfdisk1-2.36.2-4.5.1.x86_64.rpm libfdisk1-32bit-2.36.2-4.5.1.x86_64.rpm libmount-devel-2.36.2-4.5.1.x86_64.rpm libmount-devel-32bit-2.36.2-4.5.1.x86_64.rpm libmount-devel-static-2.36.2-4.5.1.x86_64.rpm libmount1-2.36.2-4.5.1.x86_64.rpm libmount1-32bit-2.36.2-4.5.1.x86_64.rpm libsmartcols-devel-2.36.2-4.5.1.x86_64.rpm libsmartcols-devel-32bit-2.36.2-4.5.1.x86_64.rpm libsmartcols-devel-static-2.36.2-4.5.1.x86_64.rpm libsmartcols1-2.36.2-4.5.1.x86_64.rpm libsmartcols1-32bit-2.36.2-4.5.1.x86_64.rpm libuuid-devel-2.36.2-4.5.1.x86_64.rpm libuuid-devel-32bit-2.36.2-4.5.1.x86_64.rpm libuuid-devel-static-2.36.2-4.5.1.x86_64.rpm libuuid1-2.36.2-4.5.1.x86_64.rpm libuuid1-32bit-2.36.2-4.5.1.x86_64.rpm python3-libmount-2.36.2-4.5.1.src.rpm python3-libmount-2.36.2-4.5.1.x86_64.rpm util-linux-2.36.2-4.5.1.src.rpm util-linux-2.36.2-4.5.1.x86_64.rpm util-linux-lang-2.36.2-4.5.1.noarch.rpm util-linux-systemd-2.36.2-4.5.1.src.rpm util-linux-systemd-2.36.2-4.5.1.x86_64.rpm uuidd-2.36.2-4.5.1.x86_64.rpm libblkid-devel-2.36.2-4.5.1.s390x.rpm libblkid-devel-static-2.36.2-4.5.1.s390x.rpm libblkid1-2.36.2-4.5.1.s390x.rpm libfdisk-devel-2.36.2-4.5.1.s390x.rpm libfdisk-devel-static-2.36.2-4.5.1.s390x.rpm libfdisk1-2.36.2-4.5.1.s390x.rpm libmount-devel-2.36.2-4.5.1.s390x.rpm libmount-devel-static-2.36.2-4.5.1.s390x.rpm libmount1-2.36.2-4.5.1.s390x.rpm libsmartcols-devel-2.36.2-4.5.1.s390x.rpm libsmartcols-devel-static-2.36.2-4.5.1.s390x.rpm libsmartcols1-2.36.2-4.5.1.s390x.rpm libuuid-devel-2.36.2-4.5.1.s390x.rpm libuuid-devel-static-2.36.2-4.5.1.s390x.rpm libuuid1-2.36.2-4.5.1.s390x.rpm python3-libmount-2.36.2-4.5.1.s390x.rpm util-linux-2.36.2-4.5.1.s390x.rpm util-linux-systemd-2.36.2-4.5.1.s390x.rpm uuidd-2.36.2-4.5.1.s390x.rpm libblkid-devel-2.36.2-4.5.1.ppc64le.rpm libblkid-devel-static-2.36.2-4.5.1.ppc64le.rpm libblkid1-2.36.2-4.5.1.ppc64le.rpm libfdisk-devel-2.36.2-4.5.1.ppc64le.rpm libfdisk-devel-static-2.36.2-4.5.1.ppc64le.rpm libfdisk1-2.36.2-4.5.1.ppc64le.rpm libmount-devel-2.36.2-4.5.1.ppc64le.rpm libmount-devel-static-2.36.2-4.5.1.ppc64le.rpm libmount1-2.36.2-4.5.1.ppc64le.rpm libsmartcols-devel-2.36.2-4.5.1.ppc64le.rpm libsmartcols-devel-static-2.36.2-4.5.1.ppc64le.rpm libsmartcols1-2.36.2-4.5.1.ppc64le.rpm libuuid-devel-2.36.2-4.5.1.ppc64le.rpm libuuid-devel-static-2.36.2-4.5.1.ppc64le.rpm libuuid1-2.36.2-4.5.1.ppc64le.rpm python3-libmount-2.36.2-4.5.1.ppc64le.rpm util-linux-2.36.2-4.5.1.ppc64le.rpm util-linux-systemd-2.36.2-4.5.1.ppc64le.rpm uuidd-2.36.2-4.5.1.ppc64le.rpm libblkid-devel-2.36.2-4.5.1.aarch64.rpm libblkid-devel-static-2.36.2-4.5.1.aarch64.rpm libblkid1-2.36.2-4.5.1.aarch64.rpm libfdisk-devel-2.36.2-4.5.1.aarch64.rpm libfdisk-devel-static-2.36.2-4.5.1.aarch64.rpm libfdisk1-2.36.2-4.5.1.aarch64.rpm libmount-devel-2.36.2-4.5.1.aarch64.rpm libmount-devel-static-2.36.2-4.5.1.aarch64.rpm libmount1-2.36.2-4.5.1.aarch64.rpm libsmartcols-devel-2.36.2-4.5.1.aarch64.rpm libsmartcols-devel-static-2.36.2-4.5.1.aarch64.rpm libsmartcols1-2.36.2-4.5.1.aarch64.rpm libuuid-devel-2.36.2-4.5.1.aarch64.rpm libuuid-devel-static-2.36.2-4.5.1.aarch64.rpm libuuid1-2.36.2-4.5.1.aarch64.rpm python3-libmount-2.36.2-4.5.1.aarch64.rpm util-linux-2.36.2-4.5.1.aarch64.rpm util-linux-systemd-2.36.2-4.5.1.aarch64.rpm uuidd-2.36.2-4.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3410 moderate SUSE Updates openSUSE-SLE 15.3 This update for xkeyboard-config fixes the following issue: - Wrong keyboard mapping causing input delays with ABNT2 keyboards. (bsc#1191242) xkeyboard-config-2.23.1-3.9.1.noarch.rpm xkeyboard-config-2.23.1-3.9.1.src.rpm xkeyboard-config-lang-2.23.1-3.9.1.noarch.rpm openSUSE-SLE-15.3-2021-3406 moderate SUSE Updates openSUSE-SLE 15.3 This update for ServiceReport fixes the following issues: - ServiceReport v2.2.3 release.(jsc#18193) - Added hardening to systemd service(s). - Run-on supported architectures only. - [fadump] Update crashkernel recommendation. - [Daemon] check active status along with enabled. - Take crashkernel recommendation from kdump-lib.sh scripts. ServiceReport-2.2.3+git1.55a13db1c256-3.3.1.noarch.rpm ServiceReport-2.2.3+git1.55a13db1c256-3.3.1.src.rpm openSUSE-SLE-15.3-2021-3411 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - Do not crash vgextend when extending VG with missing PV. (bsc#1191019) device-mapper-1.02.163-8.36.1.x86_64.rpm device-mapper-devel-1.02.163-8.36.1.x86_64.rpm device-mapper-devel-32bit-1.02.163-8.36.1.x86_64.rpm libdevmapper-event1_03-1.02.163-8.36.1.x86_64.rpm libdevmapper-event1_03-32bit-1.02.163-8.36.1.x86_64.rpm libdevmapper1_03-1.02.163-8.36.1.x86_64.rpm libdevmapper1_03-32bit-1.02.163-8.36.1.x86_64.rpm liblvm2cmd2_03-2.03.05-8.36.1.x86_64.rpm lvm2-2.03.05-8.36.1.src.rpm lvm2-2.03.05-8.36.1.x86_64.rpm lvm2-devel-2.03.05-8.36.1.x86_64.rpm lvm2-device-mapper-2.03.05-8.36.1.src.rpm lvm2-lockd-2.03.05-8.36.1.x86_64.rpm lvm2-lvmlockd-2.03.05-8.36.1.src.rpm lvm2-testsuite-2.03.05-8.36.1.x86_64.rpm device-mapper-1.02.163-8.36.1.s390x.rpm device-mapper-devel-1.02.163-8.36.1.s390x.rpm libdevmapper-event1_03-1.02.163-8.36.1.s390x.rpm libdevmapper1_03-1.02.163-8.36.1.s390x.rpm liblvm2cmd2_03-2.03.05-8.36.1.s390x.rpm lvm2-2.03.05-8.36.1.s390x.rpm lvm2-devel-2.03.05-8.36.1.s390x.rpm lvm2-lockd-2.03.05-8.36.1.s390x.rpm lvm2-testsuite-2.03.05-8.36.1.s390x.rpm device-mapper-1.02.163-8.36.1.ppc64le.rpm device-mapper-devel-1.02.163-8.36.1.ppc64le.rpm libdevmapper-event1_03-1.02.163-8.36.1.ppc64le.rpm libdevmapper1_03-1.02.163-8.36.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-8.36.1.ppc64le.rpm lvm2-2.03.05-8.36.1.ppc64le.rpm lvm2-devel-2.03.05-8.36.1.ppc64le.rpm lvm2-lockd-2.03.05-8.36.1.ppc64le.rpm lvm2-testsuite-2.03.05-8.36.1.ppc64le.rpm device-mapper-1.02.163-8.36.1.aarch64.rpm device-mapper-devel-1.02.163-8.36.1.aarch64.rpm libdevmapper-event1_03-1.02.163-8.36.1.aarch64.rpm libdevmapper1_03-1.02.163-8.36.1.aarch64.rpm liblvm2cmd2_03-2.03.05-8.36.1.aarch64.rpm lvm2-2.03.05-8.36.1.aarch64.rpm lvm2-devel-2.03.05-8.36.1.aarch64.rpm lvm2-lockd-2.03.05-8.36.1.aarch64.rpm lvm2-testsuite-2.03.05-8.36.1.aarch64.rpm openSUSE-SLE-15.3-2021-3407 low SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Live migration fails in some scenarios. (bsc#1180668) ldirectord-4.8.0+git30.d0077df0-8.14.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.14.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.14.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.14.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.14.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3798 moderate SUSE Updates openSUSE-SLE 15.3 This update for gcc7 fixes the following issues: - Fixed a build issue when built with recent kernel headers. - Backport the "-fpatchable-function-entry" feature from newer GCC. (jsc#SLE-20049) - do not handle exceptions in std::thread (jsc#CAR-1182) cpp7-7.5.0+r278197-4.30.1.x86_64.rpm cross-aarch64-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-aarch64-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-aarch64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.src.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.x86_64.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.src.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.x86_64.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.src.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.x86_64.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-hppa-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-i386-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-m68k-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-mips-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-nvptx-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-nvptx-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-nvptx-newlib7-devel-7.5.0+r278197-4.30.1.x86_64.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-ppc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-ppc64le-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-ppc64le-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-ppc64le-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.src.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.x86_64.rpm cross-s390x-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-s390x-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-s390x-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm cross-sparc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm cross-sparcv9-gcc7-icecream-backend-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-7.5.0+r278197-4.30.1.src.rpm gcc7-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-ada-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-ada-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-c++-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-c++-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-fortran-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-fortran-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-go-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-go-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-info-7.5.0+r278197-4.30.1.noarch.rpm gcc7-locale-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-obj-c++-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-obj-c++-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-objc-32bit-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-objc-7.5.0+r278197-4.30.1.x86_64.rpm gcc7-testresults-7.5.0+r278197-4.30.1.src.rpm gcc7-testresults-7.5.0+r278197-4.30.1.x86_64.rpm libada7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libada7-7.5.0+r278197-4.30.1.x86_64.rpm libasan4-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libasan4-7.5.0+r278197-4.30.1.x86_64.rpm libatomic1-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libatomic1-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libcilkrts5-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libcilkrts5-7.5.0+r278197-4.30.1.x86_64.rpm libgcc_s1-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libgcc_s1-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libgfortran4-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libgfortran4-7.5.0+r278197-4.30.1.x86_64.rpm libgo11-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libgo11-7.5.0+r278197-4.30.1.x86_64.rpm libgomp1-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libgomp1-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libitm1-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libitm1-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm liblsan0-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libmpx2-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libmpx2-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libmpxwrappers2-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libmpxwrappers2-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libobjc4-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libobjc4-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libquadmath0-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libquadmath0-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-devel-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-gcc7-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libstdc++6-gcc7-locale-7.5.0+r278197-4.30.1.x86_64.rpm libtsan0-gcc7-7.5.0+r278197-4.30.1.x86_64.rpm libubsan0-32bit-7.5.0+r278197-4.30.1.x86_64.rpm libubsan0-7.5.0+r278197-4.30.1.x86_64.rpm cpp7-7.5.0+r278197-4.30.1.s390x.rpm cross-aarch64-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-aarch64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.s390x.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.s390x.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.s390x.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-hppa-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-i386-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-m68k-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-mips-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-ppc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-ppc64le-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-ppc64le-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.s390x.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-sparc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-sparcv9-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm cross-x86_64-gcc7-7.5.0+r278197-4.30.1.s390x.rpm cross-x86_64-gcc7-7.5.0+r278197-4.30.1.src.rpm cross-x86_64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.s390x.rpm gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-7.5.0+r278197-4.30.1.s390x.rpm gcc7-ada-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-ada-7.5.0+r278197-4.30.1.s390x.rpm gcc7-c++-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-c++-7.5.0+r278197-4.30.1.s390x.rpm gcc7-fortran-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-fortran-7.5.0+r278197-4.30.1.s390x.rpm gcc7-go-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-go-7.5.0+r278197-4.30.1.s390x.rpm gcc7-locale-7.5.0+r278197-4.30.1.s390x.rpm gcc7-obj-c++-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-obj-c++-7.5.0+r278197-4.30.1.s390x.rpm gcc7-objc-32bit-7.5.0+r278197-4.30.1.s390x.rpm gcc7-objc-7.5.0+r278197-4.30.1.s390x.rpm gcc7-testresults-7.5.0+r278197-4.30.1.s390x.rpm libada7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libada7-7.5.0+r278197-4.30.1.s390x.rpm libasan4-32bit-7.5.0+r278197-4.30.1.s390x.rpm libasan4-7.5.0+r278197-4.30.1.s390x.rpm libatomic1-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libatomic1-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libgcc_s1-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libgcc_s1-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libgfortran4-32bit-7.5.0+r278197-4.30.1.s390x.rpm libgfortran4-7.5.0+r278197-4.30.1.s390x.rpm libgo11-32bit-7.5.0+r278197-4.30.1.s390x.rpm libgo11-7.5.0+r278197-4.30.1.s390x.rpm libgomp1-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libgomp1-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libitm1-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libitm1-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libobjc4-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libobjc4-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-devel-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-devel-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-gcc7-32bit-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-gcc7-7.5.0+r278197-4.30.1.s390x.rpm libstdc++6-gcc7-locale-7.5.0+r278197-4.30.1.s390x.rpm libubsan0-32bit-7.5.0+r278197-4.30.1.s390x.rpm libubsan0-7.5.0+r278197-4.30.1.s390x.rpm cpp7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-aarch64-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-aarch64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.ppc64le.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.ppc64le.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.ppc64le.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-hppa-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-i386-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-m68k-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-mips-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-ppc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.ppc64le.rpm cross-s390x-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-s390x-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-sparc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-sparcv9-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm cross-x86_64-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm cross-x86_64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-ada-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-c++-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-fortran-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-go-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-locale-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-obj-c++-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-objc-7.5.0+r278197-4.30.1.ppc64le.rpm gcc7-testresults-7.5.0+r278197-4.30.1.ppc64le.rpm libada7-7.5.0+r278197-4.30.1.ppc64le.rpm libasan4-7.5.0+r278197-4.30.1.ppc64le.rpm libatomic1-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libgcc_s1-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libgfortran4-7.5.0+r278197-4.30.1.ppc64le.rpm libgo11-7.5.0+r278197-4.30.1.ppc64le.rpm libgomp1-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libitm1-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm liblsan0-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libobjc4-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libstdc++6-devel-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libstdc++6-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libstdc++6-gcc7-locale-7.5.0+r278197-4.30.1.ppc64le.rpm libtsan0-gcc7-7.5.0+r278197-4.30.1.ppc64le.rpm libubsan0-7.5.0+r278197-4.30.1.ppc64le.rpm cpp7-7.5.0+r278197-4.30.1.aarch64.rpm cross-arm-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-arm-none-gcc7-bootstrap-7.5.0+r278197-4.30.1.aarch64.rpm cross-avr-gcc7-bootstrap-7.5.0+r278197-4.30.1.aarch64.rpm cross-epiphany-gcc7-bootstrap-7.5.0+r278197-4.30.1.aarch64.rpm cross-hppa-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-hppa-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-i386-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-i386-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-m68k-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-m68k-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-mips-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-mips-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-ppc64-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-ppc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-ppc64le-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-ppc64le-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-rx-gcc7-bootstrap-7.5.0+r278197-4.30.1.aarch64.rpm cross-s390x-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-s390x-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-sparc-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-sparc64-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-sparc64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-sparcv9-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm cross-x86_64-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm cross-x86_64-gcc7-icecream-backend-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-ada-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-c++-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-fortran-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-go-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-locale-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-obj-c++-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-objc-7.5.0+r278197-4.30.1.aarch64.rpm gcc7-testresults-7.5.0+r278197-4.30.1.aarch64.rpm libada7-7.5.0+r278197-4.30.1.aarch64.rpm libasan4-7.5.0+r278197-4.30.1.aarch64.rpm libatomic1-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libgcc_s1-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libgfortran4-7.5.0+r278197-4.30.1.aarch64.rpm libgo11-7.5.0+r278197-4.30.1.aarch64.rpm libgomp1-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libitm1-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm liblsan0-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libobjc4-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libstdc++6-devel-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libstdc++6-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libstdc++6-gcc7-locale-7.5.0+r278197-4.30.1.aarch64.rpm libtsan0-gcc7-7.5.0+r278197-4.30.1.aarch64.rpm libubsan0-7.5.0+r278197-4.30.1.aarch64.rpm openSUSE-SLE-15.3-2021-3413 important SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools fixes the following issues: - Fixed an issue where the queuing of secure boot certificates did not happen (bsc#1189841, bsc#1190598) - Fixed an issue where initrd was not always rebuilding after installing any kernel-*-extra package (bsc#1189441) suse-module-tools-15.3.10-3.8.1.src.rpm suse-module-tools-15.3.10-3.8.1.x86_64.rpm suse-module-tools-legacy-15.3.10-3.8.1.x86_64.rpm suse-module-tools-15.3.10-3.8.1.s390x.rpm suse-module-tools-legacy-15.3.10-3.8.1.s390x.rpm suse-module-tools-15.3.10-3.8.1.ppc64le.rpm suse-module-tools-legacy-15.3.10-3.8.1.ppc64le.rpm suse-module-tools-15.3.10-3.8.1.aarch64.rpm suse-module-tools-legacy-15.3.10-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3489 moderate SUSE Updates openSUSE-SLE 15.3 This update for python fixes the following issues: - CVE-2021-3737: Fixed http client infinite line reading (DoS) after a http 100. (bsc#1189241) - CVE-2021-3733: Fixed ReDoS in urllib.request. (bsc#1189287) libpython2_7-1_0-2.7.18-33.1.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-33.1.x86_64.rpm python-2.7.18-33.1.src.rpm python-2.7.18-33.1.x86_64.rpm python-32bit-2.7.18-33.1.x86_64.rpm python-base-2.7.18-33.1.src.rpm python-base-2.7.18-33.1.x86_64.rpm python-base-32bit-2.7.18-33.1.x86_64.rpm python-curses-2.7.18-33.1.x86_64.rpm python-demo-2.7.18-33.1.x86_64.rpm python-devel-2.7.18-33.1.x86_64.rpm python-doc-2.7.18-33.1.noarch.rpm python-doc-2.7.18-33.1.src.rpm python-doc-pdf-2.7.18-33.1.noarch.rpm python-gdbm-2.7.18-33.1.x86_64.rpm python-idle-2.7.18-33.1.x86_64.rpm python-tk-2.7.18-33.1.x86_64.rpm python-xml-2.7.18-33.1.x86_64.rpm libpython2_7-1_0-2.7.18-33.1.s390x.rpm python-2.7.18-33.1.s390x.rpm python-base-2.7.18-33.1.s390x.rpm python-curses-2.7.18-33.1.s390x.rpm python-demo-2.7.18-33.1.s390x.rpm python-devel-2.7.18-33.1.s390x.rpm python-gdbm-2.7.18-33.1.s390x.rpm python-idle-2.7.18-33.1.s390x.rpm python-tk-2.7.18-33.1.s390x.rpm python-xml-2.7.18-33.1.s390x.rpm libpython2_7-1_0-2.7.18-33.1.ppc64le.rpm python-2.7.18-33.1.ppc64le.rpm python-base-2.7.18-33.1.ppc64le.rpm python-curses-2.7.18-33.1.ppc64le.rpm python-demo-2.7.18-33.1.ppc64le.rpm python-devel-2.7.18-33.1.ppc64le.rpm python-gdbm-2.7.18-33.1.ppc64le.rpm python-idle-2.7.18-33.1.ppc64le.rpm python-tk-2.7.18-33.1.ppc64le.rpm python-xml-2.7.18-33.1.ppc64le.rpm libpython2_7-1_0-2.7.18-33.1.aarch64.rpm python-2.7.18-33.1.aarch64.rpm python-base-2.7.18-33.1.aarch64.rpm python-curses-2.7.18-33.1.aarch64.rpm python-demo-2.7.18-33.1.aarch64.rpm python-devel-2.7.18-33.1.aarch64.rpm python-gdbm-2.7.18-33.1.aarch64.rpm python-idle-2.7.18-33.1.aarch64.rpm python-tk-2.7.18-33.1.aarch64.rpm python-xml-2.7.18-33.1.aarch64.rpm openSUSE-SLE-15.3-2021-3447 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP2 kernel was updated. The following security bugs were fixed: - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bnc#1191193) - CVE-2021-3752: Fixed a use after free vulnerability in the Linux kernel's bluetooth module. (bsc#1190023) - CVE-2021-40490: Fixed a race condition discovered in the ext4 subsystem that could leat to local priviledge escalation. (bnc#1190159) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534) - CVE-2021-3669: Fixed a bug that doesn't allow /proc/sysvipc/shm to scale with large shared memory segment counts which could lead to resource exhaustion and DoS. (bsc#1188986) The following non-security bugs were fixed: - ALSA: firewire-motu: fix truncated bytes in message tracepoints (git-fixes). - apparmor: remove duplicate macro list_entry_is_head() (git-fixes). - ASoC: fsl_micfil: register platform component before registering cpu dai (git-fixes). - ASoC: mediatek: common: handle NULL case in suspend/resume function (git-fixes). - ASoC: rockchip: i2s: Fix regmap_ops hang (git-fixes). - ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B (git-fixes). - ASoC: SOF: Fix DSP oops stack dump output contents (git-fixes). - ath9k: fix OOB read ar9300_eeprom_restore_internal (git-fixes). - ath9k: fix sleeping in atomic context (git-fixes). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - Bluetooth: skip invalid hci_sync_conn_complete_evt (git-fixes). - bnx2x: fix an error code in bnx2x_nic_load() (git-fixes). - bnxt_en: Add missing DMA memory barriers (git-fixes). - bnxt_en: Disable aRFS if running on 212 firmware (git-fixes). - bnxt_en: Do not enable legacy TX push on older firmware (git-fixes). - bnxt_en: Store the running firmware version code (git-fixes). - bnxt: count Tx drops (git-fixes). - bnxt: disable napi before canceling DIM (git-fixes). - bnxt: do not lock the tx queue from napi poll (git-fixes). - bnxt: make sure xmit_more + errors does not miss doorbells (git-fixes). - btrfs: prevent rename2 from exchanging a subvol with a directory from different parents (bsc#1190626). - clk: at91: clk-generated: Limit the requested rate to our range (git-fixes). - clk: at91: clk-generated: pass the id of changeable parent at registration (git-fixes). - console: consume APC, DM, DCS (git-fixes). - cuse: fix broken release (bsc#1190596). - cxgb4: dont touch blocked freelist bitmap after free (git-fixes). - debugfs: Return error during {full/open}_proxy_open() on rmmod (bsc#1173746). - devlink: Break parameter notification sequence to be before/after unload/load driver (bsc#1154353). - dmaengine: ioat: depends on !UML (git-fixes). - dmaengine: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - dmaengine: xilinx_dma: Set DMA mask for coherent APIs (git-fixes). - docs: Fix infiniband uverbs minor number (git-fixes). - drivers: gpu: amd: Initialize amdgpu_dm_backlight_caps object to 0 in amdgpu_dm_update_backlight_caps (git-fixes). - drm: avoid blocking in drm_clients_info's rcu section (git-fixes). - drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex (git-fixes). - drm/amd/display: Fix timer_per_pixel unit error (git-fixes). - drm/amdgpu: Fix BUG_ON assert (git-fixes). - drm/gma500: Fix end of loop tests for list_for_each_entry (git-fixes). - drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV (git-fixes). - drm/panfrost: Clamp lock region to Bifrost minimum (git-fixes). - e1000e: Do not take care about recovery NVM checksum (jsc#SLE-8100). - e1000e: Fix the max snoop/no-snoop latency for 10M (git-fixes). - EDAC/i10nm: Fix NVDIMM detection (bsc#1152489). - EDAC/synopsys: Fix wrong value type assignment for edac_mode (bsc#1152489). - erofs: fix up erofs_lookup tracepoint (git-fixes). - fbmem: do not allow too huge resolutions (git-fixes). - fpga: machxo2-spi: Fix missing error code in machxo2_write_complete() (git-fixes). - fpga: machxo2-spi: Return an error on failure (git-fixes). - fuse: flush extending writes (bsc#1190595). - fuse: truncate pagecache on atomic_o_trunc (bsc#1190705). - genirq: add device_has_managed_msi_irq (bsc#1185762). - gpio: uniphier: Fix void functions to remove return value (git-fixes). - gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port() (git-fixes). - gve: fix the wrong AdminQ buffer overflow check (bsc#1176940). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726). - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726). - hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs (git-fixes). - hwmon: (tmp421) fix rounding for negative values (git-fixes). - hwmon: (tmp421) report /PVLD condition as fault (git-fixes). - i40e: Add additional info to PHY type error (git-fixes). - i40e: Fix firmware LLDP agent related warning (git-fixes). - i40e: Fix log TC creation failure when max num of queues is exceeded (git-fixes). - i40e: Fix logic of disabling queues (git-fixes). - i40e: Fix queue-to-TC mapping on Tx (git-fixes). - iavf: Fix ping is lost after untrusted VF had tried to change MAC (jsc#SLE-7940). - iavf: Set RSS LUT and key in reset handle path (git-fixes). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: Consolidate code in replenish_rx_pool() (bsc#1190758 ltc#191943). - ibmvnic: Fix up some comments and messages (bsc#1190758 ltc#191943). - ibmvnic: init_tx_pools move loop-invariant code (bsc#1190758 ltc#191943). - ibmvnic: Reuse LTB when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse rx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse tx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Use bitmap for LTB map_ids (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_rx_pools (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_tx_pools (bsc#1190758 ltc#191943). - ice: Prevent probing virtual functions (git-fixes). - iio: dac: ad5624r: Fix incorrect handling of an optional regulator (git-fixes). - include/linux/list.h: add a macro to test if entry is pointing to the head (git-fixes). - iomap: Fix negative assignment to unsigned sis->pages in iomap_swapfile_activate (bsc#1190784). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: count csum_none when offload enabled (bsc#1167773). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - ipc/util.c: use binary search for max_idx (bsc#1159886). - ipvs: allow connection reuse for unconfirmed conntrack (bsc#1190467). - ipvs: avoid expiring many connections from timer (bsc#1190467). - ipvs: Fix up kabi for expire_nodest_conn_work addition (bsc#1190467). - ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (bsc#1190467). - iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed (git-fixes). - kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable. - kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs. - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716). - kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358). The script part for base package case is completely separate from the part for subpackages. Remove the part for subpackages from the base package script and use the KMP scripts for subpackages instead. - libata: fix ata_host_start() (git-fixes). - mac80211-hwsim: fix late beacon hrtimer handling (git-fixes). - mac80211: Fix ieee80211_amsdu_aggregate frag_tail bug (git-fixes). - mac80211: fix use-after-free in CCMP/GCMP RX (git-fixes). - mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (git-fixes). - mac80211: mesh: fix potentially unaligned access (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats (git-fixes). - media: dib8000: rewrite the init prbs logic (git-fixes). - media: imx258: Limit the max analogue gain to 480 (git-fixes). - media: imx258: Rectify mismatch of VTS value (git-fixes). - media: rc-loopback: return number of emitters rather than error (git-fixes). - media: TDA1997x: fix tda1997x_query_dv_timings() return value (git-fixes). - media: uvc: do not do DMA on stack (git-fixes). - media: v4l2-dv-timings.c: fix wrong condition in two for-loops (git-fixes). - mfd: Do not use irq_create_mapping() to resolve a mapping (git-fixes). - mlx4: Fix missing error code in mlx4_load_one() (git-fixes). - mm: always have io_remap_pfn_range() set pgprot_decrypted() (git-fixes). - mm/swap: consider max pages in iomap_swapfile_add_extent (bsc#1190785). - mmc: core: Return correct emmc response in case of ioctl error (git-fixes). - mmc: rtsx_pci: Fix long reads when clock is prescaled (git-fixes). - mmc: sdhci-of-arasan: Check return value of non-void funtions (git-fixes). - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726). - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726). - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726). - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726). - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726). - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726). - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726). - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726). - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726). - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726). - net: qlcnic: add missed unlock in qlcnic_83xx_flash_read32 (git-fixes). - net: sched: sch_teql: fix null-pointer dereference (bsc#1190717). - net/mlx5: E-Switch, handle devcom events only for ports on the same device (git-fixes). - net/mlx5: Fix flow table chaining (git-fixes). - net/mlx5: Fix return value from tracer initialization (git-fixes). - net/mlx5: Unload device upon firmware fatal error (git-fixes). - net/mlx5e: Avoid creating tunnel headers for local route (git-fixes). - net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() (git-fixes). - net/mlx5e: Prohibit inner indir TIRs in IPoIB (git-fixes). - netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (bsc#1190062). - nfp: update ethtool reporting of pauseframe control (git-fixes). - NFS: change nfs_access_get_cached to only report the mask (bsc#1190746). - NFS: do not store 'struct cred *' in struct nfs_access_entry (bsc#1190746). - NFS: pass cred explicitly for access tests (bsc#1190746). - nvme: avoid race in shutdown namespace removal (bsc#1188067). - nvme: fix refcounting imbalance when all paths are down (bsc#1188067). - parport: remove non-zero check on count (git-fixes). - PCI: aardvark: Fix checking for PIO status (git-fixes). - PCI: aardvark: Fix masking and unmasking legacy INTx interrupts (git-fixes). - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response (git-fixes). - PCI: Add ACS quirks for Cavium multi-function devices (git-fixes). - PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms (git-fixes). - PCI: Add AMD GPU multi-function power dependencies (git-fixes). - PCI: ibmphp: Fix double unmap of io_mem (git-fixes). - PCI: pci-bridge-emul: Add PCIe Root Capabilities Register (git-fixes). - PCI: pci-bridge-emul: Fix array overruns, improve safety (git-fixes). - PCI: pci-bridge-emul: Fix big-endian support (git-fixes). - PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported (git-fixes). - PCI: Use pci_update_current_state() in pci_enable_device_flags() (git-fixes). - PM: base: power: do not try to use non-existing RTC for storing data (git-fixes). - PM: EM: Increase energy calculation precision (git-fixes). - power: supply: axp288_fuel_gauge: Report register-address on readb / writeb errors (git-fixes). - power: supply: max17042_battery: fix typo in MAx17042_TOFF (git-fixes). - powercap: intel_rapl: add support for Sapphire Rapids (jsc#SLE-15289). - powerpc: fix function annotations to avoid section mismatch warnings with gcc-10 (bsc#1148868). - powerpc/drmem: Make LMB walk a bit more flexible (bsc#1190543 ltc#194523). - powerpc/perf: Drop the case of returning 0 as instruction pointer (bsc#1065729). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (bsc#1065729). - powerpc/perf: Fix the check for SIAR value (bsc#1065729). - powerpc/perf: Use regs->nip when SIAR is zero (bsc#1065729). - powerpc/perf: Use stack siar instead of mfspr (bsc#1065729). - powerpc/perf: Use the address from SIAR register to set cpumode flags (bsc#1065729). - powerpc/perf/hv-gpci: Fix counter value parsing (bsc#1065729). - powerpc/powernv: Fix machine check reporting of async store errors (bsc#1065729). - powerpc/pseries: Prevent free CPU ids being reused on another node (bsc#1190620 ltc#194498). - powerpc/pseries/dlpar: use rtas_get_sensor() (bsc#1065729). - pseries/drmem: update LMBs after LPM (bsc#1190543 ltc#194523). - pwm: img: Do not modify HW state in .remove() callback (git-fixes). - pwm: rockchip: Do not modify HW state in .remove() callback (git-fixes). - pwm: stm32-lp: Do not modify HW state in .remove() callback (git-fixes). - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom (git-fixes). - RDMA/bnxt_re: Remove unpaired rtnl unlock in bnxt_re_dev_init() (bsc#1170774). - Re-enable UAS for LaCie Rugged USB3-FW with fk quirk (git-fixes). - regmap: fix page selection for noinc reads (git-fixes). - regmap: fix page selection for noinc writes (git-fixes). - regmap: fix the offset of register error log (git-fixes). - Restore kabi after NFS: pass cred explicitly for access tests (bsc#1190746). - rpm: Abolish scritplet templating (bsc#1189841). Outsource kernel-binary and KMP scriptlets to suse-module-tools. This allows fixing bugs in the scriptlets as well as defining initrd regeneration policy independent of the kernel packages. - rpm/kernel-binary.spec: Use only non-empty certificates. - rpm/kernel-binary.spec.in: avoid conflicting suse-release suse-release had arbitrary values in staging, we can't use it for dependencies. The filesystem one has to be enough (boo#1184804). - rtc: rx8010: select REGMAP_I2C (git-fixes). - rtc: tps65910: Correct driver module alias (git-fixes). - s390/unwind: use current_frame_address() to unwind current task (bsc#1185677). - sched/fair: Add ancestors of unthrottled undecayed cfs_rq (bsc#1191292). - scsi: core: Add helper to return number of logical blocks in a request (bsc#1190576). - scsi: core: Introduce the scsi_cmd_to_rq() function (bsc#1190576). - scsi: fc: Add EDC ELS definition (bsc#1190576). - scsi: fc: Update formal FPIN descriptor definitions (bsc#1190576). - scsi: lpfc: Add bsg support for retrieving adapter cmf data (bsc#1190576). - scsi: lpfc: Add cm statistics buffer support (bsc#1190576). - scsi: lpfc: Add cmf_info sysfs entry (bsc#1190576). - scsi: lpfc: Add cmfsync WQE support (bsc#1190576). - scsi: lpfc: Add debugfs support for cm framework buffers (bsc#1190576). - scsi: lpfc: Add EDC ELS support (bsc#1190576). - scsi: lpfc: Add MIB feature enablement support (bsc#1190576). - scsi: lpfc: Add rx monitoring statistics (bsc#1190576). - scsi: lpfc: Add SET_HOST_DATA mbox cmd to pass date/time info to firmware (bsc#1190576). - scsi: lpfc: Add support for cm enablement buffer (bsc#1190576). - scsi: lpfc: Add support for maintaining the cm statistics buffer (bsc#1190576). - scsi: lpfc: Add support for the CM framework (bsc#1190576). - scsi: lpfc: Adjust bytes received vales during cmf timer interval (bsc#1190576). - scsi: lpfc: Copyright updates for 14.0.0.1 patches (bsc#1190576). - scsi: lpfc: Do not release final kref on Fport node while ABTS outstanding (bsc#1190576). - scsi: lpfc: Do not remove ndlp on PRLI errors in P2P mode (bsc#1190576). - scsi: lpfc: Expand FPIN and RDF receive logging (bsc#1190576). - scsi: lpfc: Fix compilation errors on kernels with no CONFIG_DEBUG_FS (bsc#1190576). - scsi: lpfc: Fix CPU to/from endian warnings introduced by ELS processing (bsc#1190576). - scsi: lpfc: Fix EEH support for NVMe I/O (bsc#1190576). - scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (bsc#1190576). - scsi: lpfc: Fix gcc -Wstringop-overread warning, again (bsc#1190576). - scsi: lpfc: Fix hang on unload due to stuck fport node (bsc#1190576). - scsi: lpfc: Fix I/O block after enabling managed congestion mode (bsc#1190576). - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (bsc#1190576). - scsi: lpfc: Fix NVMe I/O failover to non-optimized path (bsc#1190576). - scsi: lpfc: Fix premature rpi release for unsolicited TPLS and LS_RJT (bsc#1190576). - scsi: lpfc: Fix rediscovery of tape device after LIP (bsc#1190576). - scsi: lpfc: Fix sprintf() overflow in lpfc_display_fpin_wwpn() (bsc#1190576). - scsi: lpfc: Improve PBDE checks during SGL processing (bsc#1190576). - scsi: lpfc: Remove unneeded variable (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.1 (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.2 (bsc#1190576). - scsi: lpfc: Use correct scnprintf() limit (bsc#1190576). - scsi: lpfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190576). - scsi: lpfc: Use the proper SCSI midlayer interfaces for PI (bsc#1190576). - scsi: lpfc: Zero CGN stats only during initial driver load and stat reset (bsc#1190576). - scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V (bsc#1189297). - serial: 8250_pci: make setup_port() parameters explicitly unsigned (git-fixes). - serial: 8250: Define RX trigger levels for OxSemi 950 devices (git-fixes). - serial: mvebu-uart: fix driver's tx_empty callback (git-fixes). - serial: sh-sci: fix break handling for sysrq (git-fixes). - spi: Fix tegra20 build with CONFIG_PM=n (git-fixes). - staging: board: Fix uninitialized spinlock when attaching genpd (git-fixes). - staging: ks7010: Fix the initialization of the 'sleep_status' structure (git-fixes). - staging: rts5208: Fix get_ms_information() heap buffer size (git-fixes). - thermal/core: Potential buffer overflow in thermal_build_list_of_policies() (git-fixes). - time: Handle negative seconds correctly in timespec64_to_ns() (git-fixes). - tty: Fix data race between tiocsti() and flush_to_ldisc() (git-fixes). - tty: serial: jsm: hold port lock when reporting modem line changes (git-fixes). - tty: synclink_gt, drop unneeded forward declarations (git-fixes). - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails (git-fixes). - usb: dwc2: Avoid leaving the error_debugfs label unused (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave (git-fixes). - usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA (git-fixes). - usb: EHCI: ehci-mv: improve error handling in mv_ehci_enable() (git-fixes). - usb: gadget: r8a66597: fix a loop in set_feature() (git-fixes). - usb: gadget: u_ether: fix a potential null pointer dereference (git-fixes). - usb: host: fotg210: fix the actual_length of an iso packet (git-fixes). - usb: host: fotg210: fix the endpoint's transactional opportunities calculation (git-fixes). - usb: musb: musb_dsps: request_irq() after initializing musb (git-fixes). - usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned() (git-fixes). - usb: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes). - usb: serial: option: add device id for Foxconn T99W265 (git-fixes). - usb: serial: option: add Telit LN920 compositions (git-fixes). - usb: serial: option: remove duplicate USB device ID (git-fixes). - usbip: give back URBs for unsent unlink requests during cleanup (git-fixes). - usbip:vhci_hcd USB port can get stuck in the disabled state (git-fixes). - video: fbdev: asiliantfb: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: fix a DoS bug by restricting user input (git-fixes). - video: fbdev: riva: Error out if 'pixclock' equals zero (git-fixes). - vmxnet3: add support for 32 Tx/Rx queues (bsc#1190406). - vmxnet3: add support for ESP IPv6 RSS (bsc#1190406). - vmxnet3: increase maximum configurable mtu to 9190 (bsc#1190406). - vmxnet3: prepare for version 6 changes (bsc#1190406). - vmxnet3: remove power of 2 limitation on the queues (bsc#1190406). - vmxnet3: set correct hash type based on rss information (bsc#1190406). - vmxnet3: update to version 6 (bsc#1190406). - watchdog/sb_watchdog: fix compilation problem due to COMPILE_TEST (git-fixes). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1185302). - x86/apic/msi: Plug non-maskable MSI affinity race (bsc#1184439). - x86/cpu: Fix core name for Sapphire Rapids (jsc#SLE-15289). - x86/mm: Fix kern_addr_valid() to cope with existing but not present entries (bsc#1152489). - x86/resctrl: Fix a maybe-uninitialized build warning treated as error (bsc#1152489). - x86/resctrl: Fix default monitoring groups reporting (bsc#1152489). - xfs: allow mount/remount when stripe width alignment is zero (bsc#1188651). - xfs: sync lazy sb accounting on quiesce of read-only mounts (bsc#1190679). - xgene-v2: Fix a resource leak in the error handling path of 'xge_probe()' (git-fixes). - xhci: Set HCD flag to defer primary roothub registration (git-fixes). kmod-25-6.10.1.src.rpm True kmod-compat-25-6.10.1.x86_64.rpm True kmod-compat-25-6.10.1.s390x.rpm True kmod-compat-25-6.10.1.ppc64le.rpm True kmod-compat-25-6.10.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3338 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bnc#1191193) - CVE-2021-3752: Fixed a use after free vulnerability in the Linux kernel's bluetooth module. (bsc#1190023) - CVE-2021-40490: Fixed a race condition discovered in the ext4 subsystem that could leat to local priviledge escalation. (bnc#1190159) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534) - CVE-2021-3669: Fixed a bug that doesn't allow /proc/sysvipc/shm to scale with large shared memory segment counts which could lead to resource exhaustion and DoS. (bsc#1188986) The following non-security bugs were fixed: - ALSA: firewire-motu: fix truncated bytes in message tracepoints (git-fixes). - apparmor: remove duplicate macro list_entry_is_head() (git-fixes). - ASoC: fsl_micfil: register platform component before registering cpu dai (git-fixes). - ASoC: Intel: Fix platform ID matching (git-fixes). - ASoC: mediatek: common: handle NULL case in suspend/resume function (git-fixes). - ASoC: rockchip: i2s: Fix regmap_ops hang (git-fixes). - ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B (git-fixes). - ASoC: rt5682: Implement remove callback (git-fixes). - ASoC: rt5682: Properly turn off regulators if wrong device ID (git-fixes). - ASoC: rt5682: Remove unused variable in rt5682_i2c_remove() (git-fixes). - ASoC: SOF: Fix DSP oops stack dump output contents (git-fixes). - ath9k: fix OOB read ar9300_eeprom_restore_internal (git-fixes). - ath9k: fix sleeping in atomic context (git-fixes). - backlight: pwm_bl: Improve bootloader/kernel device handover (git-fixes). - bareudp: Fix invalid read beyond skb's linear data (jsc#SLE-15172). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - Bluetooth: skip invalid hci_sync_conn_complete_evt (git-fixes). - bnx2x: fix an error code in bnx2x_nic_load() (git-fixes). - bnxt_en: Add missing DMA memory barriers (git-fixes). - bnxt_en: Disable aRFS if running on 212 firmware (git-fixes). - bnxt_en: Do not enable legacy TX push on older firmware (git-fixes). - bnxt_en: Fix asic.rev in devlink dev info command (jsc#SLE-16649). - bnxt_en: fix stored FW_PSID version masks (jsc#SLE-16649). - bnxt_en: Store the running firmware version code (git-fixes). - bnxt: count Tx drops (git-fixes). - bnxt: disable napi before canceling DIM (git-fixes). - bnxt: do not lock the tx queue from napi poll (git-fixes). - bnxt: make sure xmit_more + errors does not miss doorbells (git-fixes). - bpf, samples: Add missing mprog-disable to xdp_redirect_cpu's optstring (git-fixes). - bpf: Fix ringbuf helper function compatibility (git-fixes). - bpftool: Add sock_release help info for cgroup attach/prog load command (bsc#1177028). - btrfs: prevent rename2 from exchanging a subvol with a directory from different parents (bsc#1190626). - clk: at91: clk-generated: Limit the requested rate to our range (git-fixes). - clk: at91: clk-generated: pass the id of changeable parent at registration (git-fixes). - console: consume APC, DM, DCS (git-fixes). - cpuidle: pseries: Do not cap the CEDE0 latency in fixup_cede0_latency() (bsc#1185550 ltc#192610 git-fixes jsc#SLE-18128). - cuse: fix broken release (bsc#1190596). - cxgb4: dont touch blocked freelist bitmap after free (git-fixes). - debugfs: Return error during {full/open}_proxy_open() on rmmod (bsc#1173746). - devlink: Break parameter notification sequence to be before/after unload/load driver (bsc#1154353). - devlink: Clear whole devlink_flash_notify struct (bsc#1176447). - dma-buf: DMABUF_MOVE_NOTIFY should depend on DMA_SHARED_BUFFER (git-fixes). - dmaengine: ioat: depends on !UML (git-fixes). - dmaengine: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - dmaengine: xilinx_dma: Set DMA mask for coherent APIs (git-fixes). - docs: Fix infiniband uverbs minor number (git-fixes). - drivers: gpu: amd: Initialize amdgpu_dm_backlight_caps object to 0 in amdgpu_dm_update_backlight_caps (git-fixes). - drm: avoid blocking in drm_clients_info's rcu section (git-fixes). - drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex (git-fixes). - drm/amd/display: Fix timer_per_pixel unit error (git-fixes). - drm/amdgpu: Fix BUG_ON assert (git-fixes). - drm/ast: Fix missing conversions to managed API (git-fixes). - drm/gma500: Fix end of loop tests for list_for_each_entry (git-fixes). - drm/i915: Allow the sysadmin to override security mitigations (git-fixes). - drm/i915/rkl: Remove require_force_probe protection (bsc#1189257). - drm/ingenic: Switch IPU plane to type OVERLAY (git-fixes). - drm/mgag200: Select clock in PLL update functions (git-fixes). - drm/msm/mdp4: move HW revision detection to earlier phase (git-fixes). - drm/msm/mdp4: refactor HW revision detection into read_mdp_hw_revision (git-fixes). - drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV (git-fixes). - drm/panfrost: Clamp lock region to Bifrost minimum (git-fixes). - drm/pl111: depend on CONFIG_VEXPRESS_CONFIG (git-fixes). - drm/rockchip: cdn-dp-core: Make cdn_dp_core_resume __maybe_unused (git-fixes). - e1000e: Do not take care about recovery NVM checksum (jsc#SLE-8100). - e1000e: Fix the max snoop/no-snoop latency for 10M (git-fixes). - EDAC/i10nm: Fix NVDIMM detection (bsc#1152489). - EDAC/mce_amd: Do not load edac_mce_amd module on guests (bsc#1190138). - EDAC/synopsys: Fix wrong value type assignment for edac_mode (bsc#1152489). - enetc: Fix uninitialized struct dim_sample field usage (git-fixes). - erofs: fix up erofs_lookup tracepoint (git-fixes). - fbmem: do not allow too huge resolutions (git-fixes). - fpga: machxo2-spi: Fix missing error code in machxo2_write_complete() (git-fixes). - fpga: machxo2-spi: Return an error on failure (git-fixes). - fuse: flush extending writes (bsc#1190595). - fuse: truncate pagecache on atomic_o_trunc (bsc#1190705). - genirq: add device_has_managed_msi_irq (bsc#1185762). - genirq: add device_has_managed_msi_irq (bsc#1185762). - gpio: uniphier: Fix void functions to remove return value (git-fixes). - gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port() (git-fixes). - gve: fix the wrong AdminQ buffer overflow check (bsc#1176940). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726). - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726). - hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs (git-fixes). - hwmon: (tmp421) fix rounding for negative values (git-fixes). - hwmon: (tmp421) report /PVLD condition as fault (git-fixes). - i40e: Add additional info to PHY type error (git-fixes). - i40e: Fix firmware LLDP agent related warning (git-fixes). - i40e: Fix log TC creation failure when max num of queues is exceeded (git-fixes). - i40e: Fix logic of disabling queues (git-fixes). - i40e: Fix queue-to-TC mapping on Tx (git-fixes). - i40e: improve locking of mac_filter_hash (jsc#SLE-13701). - iavf: Fix ping is lost after untrusted VF had tried to change MAC (jsc#SLE-7940). - iavf: Set RSS LUT and key in reset handle path (git-fixes). - IB/hfi1: Indicate DMA wait when txq is queued for wakeup (jsc#SLE-13208). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: Consolidate code in replenish_rx_pool() (bsc#1190758 ltc#191943). - ibmvnic: Fix up some comments and messages (bsc#1190758 ltc#191943). - ibmvnic: init_tx_pools move loop-invariant code (bsc#1190758 ltc#191943). - ibmvnic: Reuse LTB when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse rx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse tx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Use bitmap for LTB map_ids (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_rx_pools (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_tx_pools (bsc#1190758 ltc#191943). - ice: do not abort devlink info if board identifier can't be found (jsc#SLE-12878). - ice: do not remove netdev->dev_addr from uc sync list (git-fixes). - ice: Prevent probing virtual functions (git-fixes). - igc: Use num_tx_queues when iterating over tx_ring queue (jsc#SLE-13533). - iio: dac: ad5624r: Fix incorrect handling of an optional regulator (git-fixes). - include/linux/list.h: add a macro to test if entry is pointing to the head (git-fixes). - iomap: Fix negative assignment to unsigned sis->pages in iomap_swapfile_activate (bsc#1190784). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: count csum_none when offload enabled (bsc#1167773). - ionic: drop useless check of PCI driver data validity (bsc#1167773). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - ipc/util.c: use binary search for max_idx (bsc#1159886). - ipvs: allow connection reuse for unconfirmed conntrack (bsc#1190467). - ipvs: avoid expiring many connections from timer (bsc#1190467). - ipvs: Fix up kabi for expire_nodest_conn_work addition (bsc#1190467). - ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (bsc#1190467). - iwlwifi Add support for ax201 in Samsung Galaxy Book Flex2 Alpha (git-fixes). - iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed (git-fixes). - kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable. - kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs. - kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358). The script part for base package case is completely separate from the part for subpackages. Remove the part for subpackages from the base package script and use the KMP scripts for subpackages instead. - libata: fix ata_host_start() (git-fixes). - libbpf: Fix removal of inner map in bpf_object__create_map (git-fixes). - libbpf: Fix the possible memory leak on error (git-fixes). - mac80211-hwsim: fix late beacon hrtimer handling (git-fixes). - mac80211: Fix ieee80211_amsdu_aggregate frag_tail bug (git-fixes). - mac80211: fix use-after-free in CCMP/GCMP RX (git-fixes). - mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (git-fixes). - mac80211: mesh: fix potentially unaligned access (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats (git-fixes). - media: dib8000: rewrite the init prbs logic (git-fixes). - media: imx258: Limit the max analogue gain to 480 (git-fixes). - media: imx258: Rectify mismatch of VTS value (git-fixes). - media: rc-loopback: return number of emitters rather than error (git-fixes). - media: TDA1997x: fix tda1997x_query_dv_timings() return value (git-fixes). - media: uvc: do not do DMA on stack (git-fixes). - media: v4l2-dv-timings.c: fix wrong condition in two for-loops (git-fixes). - mfd: Do not use irq_create_mapping() to resolve a mapping (git-fixes). - misc: sram: Only map reserved areas in Tegra SYSRAM (git-fixes). - misc: sram: use devm_platform_ioremap_resource_wc() (git-fixes). - mlx4: Fix missing error code in mlx4_load_one() (git-fixes). - mm: always have io_remap_pfn_range() set pgprot_decrypted() (git-fixes). - mm/swap: consider max pages in iomap_swapfile_add_extent (bsc#1190785). - mmc: core: Return correct emmc response in case of ioctl error (git-fixes). - mmc: rtsx_pci: Fix long reads when clock is prescaled (git-fixes). - mmc: sdhci-of-arasan: Check return value of non-void funtions (git-fixes). - mmc: sdhci: Fix issue with uninitialized dma_slave_config (git-fixes). - net: ethernet: ti: cpsw: fix min eth packet size for non-switch use-cases (git-fixes). - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726). - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726). - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726). - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726). - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726). - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726). - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726). - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726). - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726). - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726). - net: qlcnic: add missed unlock in qlcnic_83xx_flash_read32 (git-fixes). - net: sched: sch_teql: fix null-pointer dereference (bsc#1190717). - net/mlx5: E-Switch, handle devcom events only for ports on the same device (git-fixes). - net/mlx5: Fix flow table chaining (git-fixes). - net/mlx5: Fix missing return value in mlx5_devlink_eswitch_inline_mode_set() (jsc#SLE-15172). - net/mlx5: Fix return value from tracer initialization (git-fixes). - net/mlx5: Unload device upon firmware fatal error (git-fixes). - net/mlx5e: Avoid creating tunnel headers for local route (git-fixes). - net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() (git-fixes). - net/mlx5e: Prohibit inner indir TIRs in IPoIB (git-fixes). - netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (bsc#1190062). - nfp: update ethtool reporting of pauseframe control (git-fixes). - NFS: change nfs_access_get_cached to only report the mask (bsc#1190746). - NFS: do not store 'struct cred *' in struct nfs_access_entry (bsc#1190746). - NFS: pass cred explicitly for access tests (bsc#1190746). - nvme-multipath: revalidate paths during rescan (bsc#1187211). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme: avoid race in shutdown namespace removal (bsc#1188067). - nvme: fix refcounting imbalance when all paths are down (bsc#1188067). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - optee: Fix memory leak when failing to register shm pages (git-fixes). - parport: remove non-zero check on count (git-fixes). - PCI: aardvark: Fix checking for PIO status (git-fixes). - PCI: aardvark: Fix masking and unmasking legacy INTx interrupts (git-fixes). - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response (git-fixes). - PCI: Add ACS quirks for Cavium multi-function devices (git-fixes). - PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms (git-fixes). - PCI: Add AMD GPU multi-function power dependencies (git-fixes). - PCI: ibmphp: Fix double unmap of io_mem (git-fixes). - PCI: of: Do not fail devm_pci_alloc_host_bridge() on missing 'ranges' (git-fixes). - PCI: pci-bridge-emul: Add PCIe Root Capabilities Register (git-fixes). - PCI: pci-bridge-emul: Fix array overruns, improve safety (git-fixes). - PCI: pci-bridge-emul: Fix big-endian support (git-fixes). - PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported (git-fixes). - PCI: Use pci_update_current_state() in pci_enable_device_flags() (git-fixes). - phy: tegra: xusb: Fix dangling pointer on probe failure (git-fixes). - PM: base: power: do not try to use non-existing RTC for storing data (git-fixes). - PM: EM: Increase energy calculation precision (git-fixes). - power: supply: axp288_fuel_gauge: Report register-address on readb / writeb errors (git-fixes). - power: supply: max17042_battery: fix typo in MAx17042_TOFF (git-fixes). - powercap: intel_rapl: add support for Sapphire Rapids (jsc#SLE-15289). - powerpc: fix function annotations to avoid section mismatch warnings with gcc-10 (bsc#1148868). - powerpc/drmem: Make LMB walk a bit more flexible (bsc#1190543 ltc#194523). - powerpc/numa: Consider the max NUMA node for migratable LPAR (bsc#1190544 ltc#194520). - powerpc/perf: Drop the case of returning 0 as instruction pointer (bsc#1065729). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (bsc#1065729). - powerpc/perf: Fix the check for SIAR value (bsc#1065729). - powerpc/perf: Use regs->nip when SIAR is zero (bsc#1065729). - powerpc/perf: Use stack siar instead of mfspr (bsc#1065729). - powerpc/perf: Use the address from SIAR register to set cpumode flags (bsc#1065729). - powerpc/perf/hv-gpci: Fix counter value parsing (bsc#1065729). - powerpc/powernv: Fix machine check reporting of async store errors (bsc#1065729). - powerpc/pseries: Prevent free CPU ids being reused on another node (bsc#1190620 ltc#194498). - powerpc/pseries/dlpar: use rtas_get_sensor() (bsc#1065729). - pseries/drmem: update LMBs after LPM (bsc#1190543 ltc#194523). - pwm: img: Do not modify HW state in .remove() callback (git-fixes). - pwm: rockchip: Do not modify HW state in .remove() callback (git-fixes). - pwm: stm32-lp: Do not modify HW state in .remove() callback (git-fixes). - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom (git-fixes). - RDMA/bnxt_re: Remove unpaired rtnl unlock in bnxt_re_dev_init() (bsc#1170774). - RDMA/hns: Fix QP's resp incomplete assignment (jsc#SLE-14777). - RDMA/mlx5: Delay emptying a cache entry when a new MR is added to it recently (jsc#SLE-15175). - RDMA/mlx5: Delete not-available udata check (jsc#SLE-15175). - RDMA/rtrs: Remove a useless kfree() (jsc#SLE-15176). - Re-enable UAS for LaCie Rugged USB3-FW with fk quirk (git-fixes). - regmap: fix page selection for noinc reads (git-fixes). - regmap: fix page selection for noinc writes (git-fixes). - regmap: fix the offset of register error log (git-fixes). - Restore kabi after NFS: pass cred explicitly for access tests (bsc#1190746). - rpm: Abolish scritplet templating (bsc#1189841). Outsource kernel-binary and KMP scriptlets to suse-module-tools. This allows fixing bugs in the scriptlets as well as defining initrd regeneration policy independent of the kernel packages. - rpm/kernel-binary.spec: Use only non-empty certificates. - rpm/kernel-binary.spec.in: avoid conflicting suse-release suse-release had arbitrary values in staging, we can't use it for dependencies. The filesystem one has to be enough (boo#1184804). - rtc: rx8010: select REGMAP_I2C (git-fixes). - rtc: tps65910: Correct driver module alias (git-fixes). - s390/unwind: use current_frame_address() to unwind current task (bsc#1185677). - sch_cake: fix srchost/dsthost hashing mode (bsc#1176447). - sched/fair: Add ancestors of unthrottled undecayed cfs_rq (bsc#1191292). - scsi: core: Add helper to return number of logical blocks in a request (bsc#1190576). - scsi: core: Introduce the scsi_cmd_to_rq() function (bsc#1190576). - scsi: fc: Add EDC ELS definition (bsc#1190576). - scsi: fc: Update formal FPIN descriptor definitions (bsc#1190576). - scsi: lpfc: Add bsg support for retrieving adapter cmf data (bsc#1190576). - scsi: lpfc: Add cm statistics buffer support (bsc#1190576). - scsi: lpfc: Add cmf_info sysfs entry (bsc#1190576). - scsi: lpfc: Add cmfsync WQE support (bsc#1190576). - scsi: lpfc: Add debugfs support for cm framework buffers (bsc#1190576). - scsi: lpfc: Add EDC ELS support (bsc#1190576). - scsi: lpfc: Add MIB feature enablement support (bsc#1190576). - scsi: lpfc: Add rx monitoring statistics (bsc#1190576). - scsi: lpfc: Add SET_HOST_DATA mbox cmd to pass date/time info to firmware (bsc#1190576). - scsi: lpfc: Add support for cm enablement buffer (bsc#1190576). - scsi: lpfc: Add support for maintaining the cm statistics buffer (bsc#1190576). - scsi: lpfc: Add support for the CM framework (bsc#1190576). - scsi: lpfc: Adjust bytes received vales during cmf timer interval (bsc#1190576). - scsi: lpfc: Copyright updates for 14.0.0.1 patches (bsc#1190576). - scsi: lpfc: Do not release final kref on Fport node while ABTS outstanding (bsc#1190576). - scsi: lpfc: Do not remove ndlp on PRLI errors in P2P mode (bsc#1190576). - scsi: lpfc: Expand FPIN and RDF receive logging (bsc#1190576). - scsi: lpfc: Fix compilation errors on kernels with no CONFIG_DEBUG_FS (bsc#1190576). - scsi: lpfc: Fix CPU to/from endian warnings introduced by ELS processing (bsc#1190576). - scsi: lpfc: Fix EEH support for NVMe I/O (bsc#1190576). - scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (bsc#1190576). - scsi: lpfc: Fix gcc -Wstringop-overread warning, again (bsc#1190576). - scsi: lpfc: Fix hang on unload due to stuck fport node (bsc#1190576). - scsi: lpfc: Fix I/O block after enabling managed congestion mode (bsc#1190576). - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (bsc#1190576). - scsi: lpfc: Fix NVMe I/O failover to non-optimized path (bsc#1190576). - scsi: lpfc: Fix premature rpi release for unsolicited TPLS and LS_RJT (bsc#1190576). - scsi: lpfc: Fix rediscovery of tape device after LIP (bsc#1190576). - scsi: lpfc: Fix sprintf() overflow in lpfc_display_fpin_wwpn() (bsc#1190576). - scsi: lpfc: Improve PBDE checks during SGL processing (bsc#1190576). - scsi: lpfc: Remove unneeded variable (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.1 (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.2 (bsc#1190576). - scsi: lpfc: Use correct scnprintf() limit (bsc#1190576). - scsi: lpfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190576). - scsi: lpfc: Use the proper SCSI midlayer interfaces for PI (bsc#1190576). - scsi: lpfc: Zero CGN stats only during initial driver load and stat reset (bsc#1190576). - scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V (bsc#1189297). - scsi/fc: kABI fixes for new ELS_EDC, ELS_RDP definition (bsc#1171688 bsc#1174003 bsc#1190576). - selftests/bpf: Define string const as global for test_sysctl_prog.c (git-fixes). - selftests/bpf: Fix bpf-iter-tcp4 test to print correctly the dest IP (git-fixes). - selftests/bpf: Fix test_sysctl_loop{1, 2} failure due to clang change (git-fixes). - selftests/bpf: Whitelist test_progs.h from .gitignore (git-fixes). - serial: 8250_pci: make setup_port() parameters explicitly unsigned (git-fixes). - serial: 8250: Define RX trigger levels for OxSemi 950 devices (git-fixes). - serial: mvebu-uart: fix driver's tx_empty callback (git-fixes). - serial: sh-sci: fix break handling for sysrq (git-fixes). - spi: Fix tegra20 build with CONFIG_PM=n (git-fixes). - staging: board: Fix uninitialized spinlock when attaching genpd (git-fixes). - staging: ks7010: Fix the initialization of the 'sleep_status' structure (git-fixes). - staging: rts5208: Fix get_ms_information() heap buffer size (git-fixes). - thermal/core: Potential buffer overflow in thermal_build_list_of_policies() (git-fixes). - time: Handle negative seconds correctly in timespec64_to_ns() (git-fixes). - tools: bpf: Fix error in 'make -C tools/ bpf_install' (git-fixes). - tty: Fix data race between tiocsti() and flush_to_ldisc() (git-fixes). - tty: serial: jsm: hold port lock when reporting modem line changes (git-fixes). - tty: synclink_gt, drop unneeded forward declarations (git-fixes). - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails (git-fixes). - usb: dwc2: Avoid leaving the error_debugfs label unused (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave (git-fixes). - usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA (git-fixes). - usb: EHCI: ehci-mv: improve error handling in mv_ehci_enable() (git-fixes). - usb: gadget: r8a66597: fix a loop in set_feature() (git-fixes). - usb: gadget: u_ether: fix a potential null pointer dereference (git-fixes). - usb: host: fotg210: fix the actual_length of an iso packet (git-fixes). - usb: host: fotg210: fix the endpoint's transactional opportunities calculation (git-fixes). - usb: musb: musb_dsps: request_irq() after initializing musb (git-fixes). - usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned() (git-fixes). - usb: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes). - usb: serial: option: add device id for Foxconn T99W265 (git-fixes). - usb: serial: option: add Telit LN920 compositions (git-fixes). - usb: serial: option: remove duplicate USB device ID (git-fixes). - usbip: give back URBs for unsent unlink requests during cleanup (git-fixes). - usbip:vhci_hcd USB port can get stuck in the disabled state (git-fixes). - video: fbdev: asiliantfb: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: fix a DoS bug by restricting user input (git-fixes). - video: fbdev: riva: Error out if 'pixclock' equals zero (git-fixes). - vmxnet3: add support for 32 Tx/Rx queues (bsc#1190406). - vmxnet3: add support for ESP IPv6 RSS (bsc#1190406). - vmxnet3: increase maximum configurable mtu to 9190 (bsc#1190406). - vmxnet3: prepare for version 6 changes (bsc#1190406). - vmxnet3: remove power of 2 limitation on the queues (bsc#1190406). - vmxnet3: set correct hash type based on rss information (bsc#1190406). - vmxnet3: update to version 6 (bsc#1190406). - watchdog/sb_watchdog: fix compilation problem due to COMPILE_TEST (git-fixes). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1185302). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1190561). - x86/apic/msi: Plug non-maskable MSI affinity race (bsc#1184439). - x86/asm: Fix SETZ size enqcmds() build failure (bsc#1178134). - x86/cpu: Fix core name for Sapphire Rapids (jsc#SLE-15289). - x86/mm: Fix kern_addr_valid() to cope with existing but not present entries (bsc#1152489). - x86/resctrl: Fix a maybe-uninitialized build warning treated as error (bsc#1152489). - x86/resctrl: Fix default monitoring groups reporting (bsc#1152489). - xfs: allow mount/remount when stripe width alignment is zero (bsc#1188651). - xfs: sync lazy sb accounting on quiesce of read-only mounts (bsc#1190679). - xgene-v2: Fix a resource leak in the error handling path of 'xge_probe()' (git-fixes). - xhci: Set HCD flag to defer primary roothub registration (git-fixes). cluster-md-kmp-azure-5.3.18-38.25.2.x86_64.rpm True dlm-kmp-azure-5.3.18-38.25.2.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.25.2.x86_64.rpm True kernel-azure-5.3.18-38.25.2.nosrc.rpm True kernel-azure-5.3.18-38.25.2.x86_64.rpm True kernel-azure-devel-5.3.18-38.25.2.x86_64.rpm True kernel-azure-extra-5.3.18-38.25.2.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.25.2.x86_64.rpm True kernel-azure-optional-5.3.18-38.25.2.x86_64.rpm True kernel-devel-azure-5.3.18-38.25.2.noarch.rpm True kernel-source-azure-5.3.18-38.25.2.noarch.rpm True kernel-source-azure-5.3.18-38.25.2.src.rpm True kernel-syms-azure-5.3.18-38.25.1.src.rpm True kernel-syms-azure-5.3.18-38.25.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.25.2.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.25.2.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.25.2.x86_64.rpm True openSUSE-SLE-15.3-2021-3409 low SUSE Updates openSUSE-SLE 15.3 This update for libGLw fixes the following issue: - fix libGLw.so symlink of devel package. (bsc#1191122) libGLw-8.0.0-3.4.1.src.rpm libGLw-devel-8.0.0-3.4.1.x86_64.rpm libGLw1-32bit-8.0.0-3.4.1.x86_64.rpm libGLw1-8.0.0-3.4.1.x86_64.rpm libGLwM1-32bit-8.0.0-3.4.1.x86_64.rpm libGLwM1-8.0.0-3.4.1.x86_64.rpm libGLw-devel-8.0.0-3.4.1.s390x.rpm libGLw1-8.0.0-3.4.1.s390x.rpm libGLwM1-8.0.0-3.4.1.s390x.rpm libGLw-devel-8.0.0-3.4.1.ppc64le.rpm libGLw1-8.0.0-3.4.1.ppc64le.rpm libGLwM1-8.0.0-3.4.1.ppc64le.rpm libGLw-devel-8.0.0-3.4.1.aarch64.rpm libGLw1-8.0.0-3.4.1.aarch64.rpm libGLwM1-8.0.0-3.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3506 important SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker, runc fixes the following issues: Docker was updated to 20.10.9-ce. (bsc#1191355) See upstream changelog in the packaged /usr/share/doc/packages/docker/CHANGELOG.md. CVE-2021-41092 CVE-2021-41089 CVE-2021-41091 CVE-2021-41103 container was updated to v1.4.11, to fix CVE-2021-41103. bsc#1191355 - CVE-2021-32760: Fixed that a archive package allows chmod of file outside of unpack target directory (bsc#1188282) - Install systemd service file as well (bsc#1190826) Update to runc v1.0.2. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.2 * Fixed a failure to set CPU quota period in some cases on cgroup v1. * Fixed the inability to start a container with the "adding seccomp filter rule for syscall ..." error, caused by redundant seccomp rules (i.e. those that has action equal to the default one). Such redundant rules are now skipped. * Made release builds reproducible from now on. * Fixed a rare debug log race in runc init, which can result in occasional harmful "failed to decode ..." errors from runc run or exec. * Fixed the check in cgroup v1 systemd manager if a container needs to be frozen before Set, and add a setting to skip such freeze unconditionally. The previous fix for that issue, done in runc 1.0.1, was not working. Update to runc v1.0.1. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.1 * Fixed occasional runc exec/run failure ("interrupted system call") on an Azure volume. * Fixed "unable to find groups ... token too long" error with /etc/group containing lines longer than 64K characters. * cgroup/systemd/v1: fix leaving cgroup frozen after Set if a parent cgroup is frozen. This is a regression in 1.0.0, not affecting runc itself but some of libcontainer users (e.g Kubernetes). * cgroupv2: bpf: Ignore inaccessible existing programs in case of permission error when handling replacement of existing bpf cgroup programs. This fixes a regression in 1.0.0, where some SELinux policies would block runc from being able to run entirely. * cgroup/systemd/v2: don't freeze cgroup on Set. * cgroup/systemd/v1: avoid unnecessary freeze on Set. - fix issues with runc under openSUSE MicroOS's SELinux policy. bsc#1187704 Update to runc v1.0.0. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0 ! The usage of relative paths for mountpoints will now produce a warning (such configurations are outside of the spec, and in future runc will produce an error when given such configurations). * cgroupv2: devices: rework the filter generation to produce consistent results with cgroupv1, and always clobber any existing eBPF program(s) to fix runc update and avoid leaking eBPF programs (resulting in errors when managing containers). * cgroupv2: correctly convert "number of IOs" statistics in a cgroupv1-compatible way. * cgroupv2: support larger than 32-bit IO statistics on 32-bit architectures. * cgroupv2: wait for freeze to finish before returning from the freezing code, optimize the method for checking whether a cgroup is frozen. * cgroups/systemd: fixed "retry on dbus disconnect" logic introduced in rc94 * cgroups/systemd: fixed returning "unit already exists" error from a systemd cgroup manager (regression in rc94) + cgroupv2: support SkipDevices with systemd driver + cgroup/systemd: return, not ignore, stop unit error from Destroy + Make "runc --version" output sane even when built with go get or otherwise outside of our build scripts. + cgroups: set SkipDevices during runc update (so we don't modify cgroups at all during runc update). + cgroup1: blkio: support BFQ weights. + cgroupv2: set per-device io weights if BFQ IO scheduler is available. Update to runc v1.0.0~rc95. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc95 This release of runc contains a fix for CVE-2021-30465, and users are strongly recommended to update (especially if you are providing semi-limited access to spawn containers to untrusted users). (bsc#1185405) Update to runc v1.0.0~rc94. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc94 Breaking Changes: * cgroupv1: kernel memory limits are now always ignored, as kmemcg has been effectively deprecated by the kernel. Users should make use of regular memory cgroup controls. Regression Fixes: * seccomp: fix 32-bit compilation errors * runc init: fix a hang caused by deadlock in seccomp/ebpf loading code * runc start: fix "chdir to cwd: permission denied" for some setups Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.4.11-56.1.src.rpm containerd-1.4.11-56.1.x86_64.rpm containerd-ctr-1.4.11-56.1.x86_64.rpm docker-20.10.9_ce-156.1.src.rpm docker-20.10.9_ce-156.1.x86_64.rpm docker-bash-completion-20.10.9_ce-156.1.noarch.rpm docker-fish-completion-20.10.9_ce-156.1.noarch.rpm docker-kubic-20.10.9_ce-156.1.src.rpm docker-kubic-20.10.9_ce-156.1.x86_64.rpm docker-kubic-bash-completion-20.10.9_ce-156.1.noarch.rpm docker-kubic-fish-completion-20.10.9_ce-156.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.9_ce-156.1.x86_64.rpm docker-kubic-zsh-completion-20.10.9_ce-156.1.noarch.rpm docker-zsh-completion-20.10.9_ce-156.1.noarch.rpm runc-1.0.2-23.1.src.rpm runc-1.0.2-23.1.x86_64.rpm containerd-1.4.11-56.1.s390x.rpm containerd-ctr-1.4.11-56.1.s390x.rpm docker-20.10.9_ce-156.1.s390x.rpm docker-kubic-20.10.9_ce-156.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.9_ce-156.1.s390x.rpm runc-1.0.2-23.1.s390x.rpm containerd-1.4.11-56.1.ppc64le.rpm containerd-ctr-1.4.11-56.1.ppc64le.rpm docker-20.10.9_ce-156.1.ppc64le.rpm docker-kubic-20.10.9_ce-156.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.9_ce-156.1.ppc64le.rpm runc-1.0.2-23.1.ppc64le.rpm containerd-1.4.11-56.1.aarch64.rpm containerd-ctr-1.4.11-56.1.aarch64.rpm docker-20.10.9_ce-156.1.aarch64.rpm docker-kubic-20.10.9_ce-156.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.9_ce-156.1.aarch64.rpm runc-1.0.2-23.1.aarch64.rpm openSUSE-SLE-15.3-2021-3382 moderate SUSE Updates openSUSE-SLE 15.3 This update for ca-certificates-mozilla fixes the following issues: - A new sub-package for minimal base containers (jsc#SLE-22162) ca-certificates-mozilla-2.44-21.1.noarch.rpm ca-certificates-mozilla-2.44-21.1.src.rpm ca-certificates-mozilla-prebuilt-2.44-21.1.noarch.rpm ca-certificates-mozilla-prebuilt-2.44-21.1.src.rpm openSUSE-SLE-15.3-2021-3448 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: The scap-security-guide was updated to 0.1.58 release (jsc#ECO-3319) - Support for Script Checking Engine (SCE) - Split RHEL 8 CIS profile using new controls file format - CIS Profiles for SUSE Linux Enterprise 12 - Initial Ubuntu 20.04 STIG Profiles - Addition of an automated CCE adder scap-security-guide-0.1.58-1.21.1.noarch.rpm scap-security-guide-0.1.58-1.21.1.src.rpm scap-security-guide-debian-0.1.58-1.21.1.noarch.rpm scap-security-guide-redhat-0.1.58-1.21.1.noarch.rpm scap-security-guide-ubuntu-0.1.58-1.21.1.noarch.rpm openSUSE-SLE-15.3-2021-3387 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2020-3702: Fixed a bug which could be triggered with specifically timed and handcrafted traffic and cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure. (bnc#1191193) - CVE-2021-3752: Fixed a use after free vulnerability in the Linux kernel's bluetooth module. (bsc#1190023) - CVE-2021-40490: Fixed a race condition discovered in the ext4 subsystem that could leat to local priviledge escalation. (bnc#1190159) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534) - CVE-2021-3669: Fixed a bug that doesn't allow /proc/sysvipc/shm to scale with large shared memory segment counts which could lead to resource exhaustion and DoS. (bsc#1188986) - CVE-2021-3759: Unaccounted ipc objects in Linux kernel could have lead to breaking memcg limits and DoS attacks (bsc#1190115). The following non-security bugs were fixed: - ALSA: firewire-motu: fix truncated bytes in message tracepoints (git-fixes). - apparmor: remove duplicate macro list_entry_is_head() (git-fixes). - ASoC: fsl_micfil: register platform component before registering cpu dai (git-fixes). - ASoC: Intel: Fix platform ID matching (git-fixes). - ASoC: mediatek: common: handle NULL case in suspend/resume function (git-fixes). - ASoC: rockchip: i2s: Fix regmap_ops hang (git-fixes). - ASoC: rockchip: i2s: Fixup config for DAIFMT_DSP_A/B (git-fixes). - ASoC: rt5682: Implement remove callback (git-fixes). - ASoC: rt5682: Properly turn off regulators if wrong device ID (git-fixes). - ASoC: rt5682: Remove unused variable in rt5682_i2c_remove() (git-fixes). - ASoC: SOF: Fix DSP oops stack dump output contents (git-fixes). - ath9k: fix OOB read ar9300_eeprom_restore_internal (git-fixes). - ath9k: fix sleeping in atomic context (git-fixes). - backlight: pwm_bl: Improve bootloader/kernel device handover (git-fixes). - bareudp: Fix invalid read beyond skb's linear data (jsc#SLE-15172). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: do not deactivate hctx if managed irq isn't used (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: kABI fixes for blk_mq_queue_map (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - blk-mq: mark if one queue map uses managed irq (bsc#1185762). - Bluetooth: skip invalid hci_sync_conn_complete_evt (git-fixes). - bnx2x: fix an error code in bnx2x_nic_load() (git-fixes). - bnxt_en: Add missing DMA memory barriers (git-fixes). - bnxt_en: Disable aRFS if running on 212 firmware (git-fixes). - bnxt_en: Do not enable legacy TX push on older firmware (git-fixes). - bnxt_en: Fix asic.rev in devlink dev info command (jsc#SLE-16649). - bnxt_en: fix stored FW_PSID version masks (jsc#SLE-16649). - bnxt_en: Store the running firmware version code (git-fixes). - bnxt: count Tx drops (git-fixes). - bnxt: disable napi before canceling DIM (git-fixes). - bnxt: do not lock the tx queue from napi poll (git-fixes). - bnxt: make sure xmit_more + errors does not miss doorbells (git-fixes). - bpf, samples: Add missing mprog-disable to xdp_redirect_cpu's optstring (git-fixes). - bpf: Fix ringbuf helper function compatibility (git-fixes). - bpftool: Add sock_release help info for cgroup attach/prog load command (bsc#1177028). - btrfs: prevent rename2 from exchanging a subvol with a directory from different parents (bsc#1190626). - clk: at91: clk-generated: Limit the requested rate to our range (git-fixes). - clk: at91: clk-generated: pass the id of changeable parent at registration (git-fixes). - console: consume APC, DM, DCS (git-fixes). - cpuidle: pseries: Do not cap the CEDE0 latency in fixup_cede0_latency() (bsc#1185550 ltc#192610 git-fixes jsc#SLE-18128). - cuse: fix broken release (bsc#1190596). - cxgb4: dont touch blocked freelist bitmap after free (git-fixes). - debugfs: Return error during {full/open}_proxy_open() on rmmod (bsc#1173746). - devlink: Break parameter notification sequence to be before/after unload/load driver (bsc#1154353). - devlink: Clear whole devlink_flash_notify struct (bsc#1176447). - dma-buf: DMABUF_MOVE_NOTIFY should depend on DMA_SHARED_BUFFER (git-fixes). - dmaengine: ioat: depends on !UML (git-fixes). - dmaengine: sprd: Add missing MODULE_DEVICE_TABLE (git-fixes). - dmaengine: xilinx_dma: Set DMA mask for coherent APIs (git-fixes). - docs: Fix infiniband uverbs minor number (git-fixes). - drivers: gpu: amd: Initialize amdgpu_dm_backlight_caps object to 0 in amdgpu_dm_update_backlight_caps (git-fixes). - drm: avoid blocking in drm_clients_info's rcu section (git-fixes). - drm/amd/amdgpu: Update debugfs link_settings output link_rate field in hex (git-fixes). - drm/amd/display: Fix timer_per_pixel unit error (git-fixes). - drm/amdgpu: Fix BUG_ON assert (git-fixes). - drm/ast: Fix missing conversions to managed API (git-fixes). - drm/gma500: Fix end of loop tests for list_for_each_entry (git-fixes). - drm/i915: Allow the sysadmin to override security mitigations (git-fixes). - drm/i915/rkl: Remove require_force_probe protection (bsc#1189257). - drm/ingenic: Switch IPU plane to type OVERLAY (git-fixes). - drm/mgag200: Select clock in PLL update functions (git-fixes). - drm/msm/mdp4: move HW revision detection to earlier phase (git-fixes). - drm/msm/mdp4: refactor HW revision detection into read_mdp_hw_revision (git-fixes). - drm/nouveau/nvkm: Replace -ENOSYS with -ENODEV (git-fixes). - drm/panfrost: Clamp lock region to Bifrost minimum (git-fixes). - drm/pl111: depend on CONFIG_VEXPRESS_CONFIG (git-fixes). - drm/rockchip: cdn-dp-core: Make cdn_dp_core_resume __maybe_unused (git-fixes). - e1000e: Do not take care about recovery NVM checksum (jsc#SLE-8100). - e1000e: Fix the max snoop/no-snoop latency for 10M (git-fixes). - EDAC/i10nm: Fix NVDIMM detection (bsc#1152489). - EDAC/mce_amd: Do not load edac_mce_amd module on guests (bsc#1190138). - EDAC/synopsys: Fix wrong value type assignment for edac_mode (bsc#1152489). - enetc: Fix uninitialized struct dim_sample field usage (git-fixes). - erofs: fix up erofs_lookup tracepoint (git-fixes). - fbmem: do not allow too huge resolutions (git-fixes). - fpga: machxo2-spi: Fix missing error code in machxo2_write_complete() (git-fixes). - fpga: machxo2-spi: Return an error on failure (git-fixes). - fuse: flush extending writes (bsc#1190595). - fuse: truncate pagecache on atomic_o_trunc (bsc#1190705). - genirq: add device_has_managed_msi_irq (bsc#1185762). - genirq: add device_has_managed_msi_irq (bsc#1185762). - gpio: uniphier: Fix void functions to remove return value (git-fixes). - gpu: drm: amd: amdgpu: amdgpu_i2c: fix possible uninitialized-variable access in amdgpu_i2c_router_select_ddc_port() (git-fixes). - gve: fix the wrong AdminQ buffer overflow check (bsc#1176940). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726). - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726). - hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs (git-fixes). - hwmon: (tmp421) fix rounding for negative values (git-fixes). - hwmon: (tmp421) report /PVLD condition as fault (git-fixes). - i40e: Add additional info to PHY type error (git-fixes). - i40e: Fix firmware LLDP agent related warning (git-fixes). - i40e: Fix log TC creation failure when max num of queues is exceeded (git-fixes). - i40e: Fix logic of disabling queues (git-fixes). - i40e: Fix queue-to-TC mapping on Tx (git-fixes). - i40e: improve locking of mac_filter_hash (jsc#SLE-13701). - iavf: Fix ping is lost after untrusted VF had tried to change MAC (jsc#SLE-7940). - iavf: Set RSS LUT and key in reset handle path (git-fixes). - IB/hfi1: Indicate DMA wait when txq is queued for wakeup (jsc#SLE-13208). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: Consolidate code in replenish_rx_pool() (bsc#1190758 ltc#191943). - ibmvnic: Fix up some comments and messages (bsc#1190758 ltc#191943). - ibmvnic: init_tx_pools move loop-invariant code (bsc#1190758 ltc#191943). - ibmvnic: Reuse LTB when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse rx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Reuse tx pools when possible (bsc#1190758 ltc#191943). - ibmvnic: Use bitmap for LTB map_ids (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_rx_pools (bsc#1190758 ltc#191943). - ibmvnic: Use/rename local vars in init_tx_pools (bsc#1190758 ltc#191943). - ice: do not abort devlink info if board identifier can't be found (jsc#SLE-12878). - ice: do not remove netdev->dev_addr from uc sync list (git-fixes). - ice: Prevent probing virtual functions (git-fixes). - igc: Use num_tx_queues when iterating over tx_ring queue (jsc#SLE-13533). - iio: dac: ad5624r: Fix incorrect handling of an optional regulator (git-fixes). - include/linux/list.h: add a macro to test if entry is pointing to the head (git-fixes). - iomap: Fix negative assignment to unsigned sis->pages in iomap_swapfile_activate (bsc#1190784). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: cleanly release devlink instance (bsc#1167773). - ionic: count csum_none when offload enabled (bsc#1167773). - ionic: drop useless check of PCI driver data validity (bsc#1167773). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - ipc/util.c: use binary search for max_idx (bsc#1159886). - ipvs: allow connection reuse for unconfirmed conntrack (bsc#1190467). - ipvs: avoid expiring many connections from timer (bsc#1190467). - ipvs: Fix up kabi for expire_nodest_conn_work addition (bsc#1190467). - ipvs: queue delayed work to expire no destination connections if expire_nodest_conn=1 (bsc#1190467). - iwlwifi Add support for ax201 in Samsung Galaxy Book Flex2 Alpha (git-fixes). - iwlwifi: mvm: fix a memory leak in iwl_mvm_mac_ctxt_beacon_changed (git-fixes). - kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable. - kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs. - kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358). The script part for base package case is completely separate from the part for subpackages. Remove the part for subpackages from the base package script and use the KMP scripts for subpackages instead. - libata: fix ata_host_start() (git-fixes). - libbpf: Fix removal of inner map in bpf_object__create_map (git-fixes). - libbpf: Fix the possible memory leak on error (git-fixes). - mac80211-hwsim: fix late beacon hrtimer handling (git-fixes). - mac80211: Fix ieee80211_amsdu_aggregate frag_tail bug (git-fixes). - mac80211: fix use-after-free in CCMP/GCMP RX (git-fixes). - mac80211: limit injected vht mcs/nss in ieee80211_parse_tx_radiotap (git-fixes). - mac80211: mesh: fix potentially unaligned access (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: coda: fix frame_mem_ctrl for YUV420 and YVU420 formats (git-fixes). - media: dib8000: rewrite the init prbs logic (git-fixes). - media: imx258: Limit the max analogue gain to 480 (git-fixes). - media: imx258: Rectify mismatch of VTS value (git-fixes). - media: rc-loopback: return number of emitters rather than error (git-fixes). - media: TDA1997x: fix tda1997x_query_dv_timings() return value (git-fixes). - media: uvc: do not do DMA on stack (git-fixes). - media: v4l2-dv-timings.c: fix wrong condition in two for-loops (git-fixes). - mfd: Do not use irq_create_mapping() to resolve a mapping (git-fixes). - misc: sram: Only map reserved areas in Tegra SYSRAM (git-fixes). - misc: sram: use devm_platform_ioremap_resource_wc() (git-fixes). - mlx4: Fix missing error code in mlx4_load_one() (git-fixes). - mm: always have io_remap_pfn_range() set pgprot_decrypted() (git-fixes). - mm/swap: consider max pages in iomap_swapfile_add_extent (bsc#1190785). - mmc: core: Return correct emmc response in case of ioctl error (git-fixes). - mmc: rtsx_pci: Fix long reads when clock is prescaled (git-fixes). - mmc: sdhci-of-arasan: Check return value of non-void funtions (git-fixes). - mmc: sdhci: Fix issue with uninitialized dma_slave_config (git-fixes). - net: ethernet: ti: cpsw: fix min eth packet size for non-switch use-cases (git-fixes). - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726). - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726). - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726). - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726). - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726). - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726). - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726). - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726). - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726). - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726). - net: qlcnic: add missed unlock in qlcnic_83xx_flash_read32 (git-fixes). - net: sched: sch_teql: fix null-pointer dereference (bsc#1190717). - net/mlx5: E-Switch, handle devcom events only for ports on the same device (git-fixes). - net/mlx5: Fix flow table chaining (git-fixes). - net/mlx5: Fix missing return value in mlx5_devlink_eswitch_inline_mode_set() (jsc#SLE-15172). - net/mlx5: Fix return value from tracer initialization (git-fixes). - net/mlx5: Unload device upon firmware fatal error (git-fixes). - net/mlx5e: Avoid creating tunnel headers for local route (git-fixes). - net/mlx5e: Fix nullptr in mlx5e_hairpin_get_mdev() (git-fixes). - net/mlx5e: Prohibit inner indir TIRs in IPoIB (git-fixes). - netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state (bsc#1190062). - nfp: update ethtool reporting of pauseframe control (git-fixes). - NFS: change nfs_access_get_cached to only report the mask (bsc#1190746). - NFS: do not store 'struct cred *' in struct nfs_access_entry (bsc#1190746). - NFS: pass cred explicitly for access tests (bsc#1190746). - nvme-multipath: revalidate paths during rescan (bsc#1187211). - nvme-tcp: Do not reset transport on data digest errors (bsc#1188418). - nvme: avoid race in shutdown namespace removal (bsc#1188067). - nvme: fix refcounting imbalance when all paths are down (bsc#1188067). - nvme: only call synchronize_srcu when clearing current path (bsc#1188067). - optee: Fix memory leak when failing to register shm pages (git-fixes). - parport: remove non-zero check on count (git-fixes). - PCI: aardvark: Fix checking for PIO status (git-fixes). - PCI: aardvark: Fix masking and unmasking legacy INTx interrupts (git-fixes). - PCI: aardvark: Increase polling delay to 1.5s while waiting for PIO response (git-fixes). - PCI: Add ACS quirks for Cavium multi-function devices (git-fixes). - PCI: Add ACS quirks for NXP LX2xx0 and LX2xx2 platforms (git-fixes). - PCI: Add AMD GPU multi-function power dependencies (git-fixes). - PCI: ibmphp: Fix double unmap of io_mem (git-fixes). - PCI: of: Do not fail devm_pci_alloc_host_bridge() on missing 'ranges' (git-fixes). - PCI: pci-bridge-emul: Add PCIe Root Capabilities Register (git-fixes). - PCI: pci-bridge-emul: Fix array overruns, improve safety (git-fixes). - PCI: pci-bridge-emul: Fix big-endian support (git-fixes). - PCI: Restrict ASMedia ASM1062 SATA Max Payload Size Supported (git-fixes). - PCI: Use pci_update_current_state() in pci_enable_device_flags() (git-fixes). - phy: tegra: xusb: Fix dangling pointer on probe failure (git-fixes). - PM: base: power: do not try to use non-existing RTC for storing data (git-fixes). - PM: EM: Increase energy calculation precision (git-fixes). - power: supply: axp288_fuel_gauge: Report register-address on readb / writeb errors (git-fixes). - power: supply: max17042_battery: fix typo in MAx17042_TOFF (git-fixes). - powercap: intel_rapl: add support for Sapphire Rapids (jsc#SLE-15289). - powerpc: fix function annotations to avoid section mismatch warnings with gcc-10 (bsc#1148868). - powerpc/drmem: Make LMB walk a bit more flexible (bsc#1190543 ltc#194523). - powerpc/numa: Consider the max NUMA node for migratable LPAR (bsc#1190544 ltc#194520). - powerpc/perf: Drop the case of returning 0 as instruction pointer (bsc#1065729). - powerpc/perf: Fix crash in perf_instruction_pointer() when ppmu is not set (bsc#1065729). - powerpc/perf: Fix the check for SIAR value (bsc#1065729). - powerpc/perf: Use regs->nip when SIAR is zero (bsc#1065729). - powerpc/perf: Use stack siar instead of mfspr (bsc#1065729). - powerpc/perf: Use the address from SIAR register to set cpumode flags (bsc#1065729). - powerpc/perf/hv-gpci: Fix counter value parsing (bsc#1065729). - powerpc/powernv: Fix machine check reporting of async store errors (bsc#1065729). - powerpc/pseries: Prevent free CPU ids being reused on another node (bsc#1190620 ltc#194498). - powerpc/pseries/dlpar: use rtas_get_sensor() (bsc#1065729). - pseries/drmem: update LMBs after LPM (bsc#1190543 ltc#194523). - pwm: img: Do not modify HW state in .remove() callback (git-fixes). - pwm: rockchip: Do not modify HW state in .remove() callback (git-fixes). - pwm: stm32-lp: Do not modify HW state in .remove() callback (git-fixes). - qlcnic: Remove redundant unlock in qlcnic_pinit_from_rom (git-fixes). - RDMA/bnxt_re: Remove unpaired rtnl unlock in bnxt_re_dev_init() (bsc#1170774). - RDMA/hns: Fix QP's resp incomplete assignment (jsc#SLE-14777). - RDMA/mlx5: Delay emptying a cache entry when a new MR is added to it recently (jsc#SLE-15175). - RDMA/mlx5: Delete not-available udata check (jsc#SLE-15175). - RDMA/rtrs: Remove a useless kfree() (jsc#SLE-15176). - Re-enable UAS for LaCie Rugged USB3-FW with fk quirk (git-fixes). - regmap: fix page selection for noinc reads (git-fixes). - regmap: fix page selection for noinc writes (git-fixes). - regmap: fix the offset of register error log (git-fixes). - Restore kabi after NFS: pass cred explicitly for access tests (bsc#1190746). - rpm: Abolish scritplet templating (bsc#1189841). Outsource kernel-binary and KMP scriptlets to suse-module-tools. This allows fixing bugs in the scriptlets as well as defining initrd regeneration policy independent of the kernel packages. - rpm/kernel-binary.spec: Use only non-empty certificates. - rpm/kernel-binary.spec.in: avoid conflicting suse-release suse-release had arbitrary values in staging, we can't use it for dependencies. The filesystem one has to be enough (boo#1184804). - rtc: rx8010: select REGMAP_I2C (git-fixes). - rtc: tps65910: Correct driver module alias (git-fixes). - s390/unwind: use current_frame_address() to unwind current task (bsc#1185677). - sch_cake: fix srchost/dsthost hashing mode (bsc#1176447). - sched/fair: Add ancestors of unthrottled undecayed cfs_rq (bsc#1191292). - scsi: core: Add helper to return number of logical blocks in a request (bsc#1190576). - scsi: core: Introduce the scsi_cmd_to_rq() function (bsc#1190576). - scsi: fc: Add EDC ELS definition (bsc#1190576). - scsi: fc: Update formal FPIN descriptor definitions (bsc#1190576). - scsi: lpfc: Add bsg support for retrieving adapter cmf data (bsc#1190576). - scsi: lpfc: Add cm statistics buffer support (bsc#1190576). - scsi: lpfc: Add cmf_info sysfs entry (bsc#1190576). - scsi: lpfc: Add cmfsync WQE support (bsc#1190576). - scsi: lpfc: Add debugfs support for cm framework buffers (bsc#1190576). - scsi: lpfc: Add EDC ELS support (bsc#1190576). - scsi: lpfc: Add MIB feature enablement support (bsc#1190576). - scsi: lpfc: Add rx monitoring statistics (bsc#1190576). - scsi: lpfc: Add SET_HOST_DATA mbox cmd to pass date/time info to firmware (bsc#1190576). - scsi: lpfc: Add support for cm enablement buffer (bsc#1190576). - scsi: lpfc: Add support for maintaining the cm statistics buffer (bsc#1190576). - scsi: lpfc: Add support for the CM framework (bsc#1190576). - scsi: lpfc: Adjust bytes received vales during cmf timer interval (bsc#1190576). - scsi: lpfc: Copyright updates for 14.0.0.1 patches (bsc#1190576). - scsi: lpfc: Do not release final kref on Fport node while ABTS outstanding (bsc#1190576). - scsi: lpfc: Do not remove ndlp on PRLI errors in P2P mode (bsc#1190576). - scsi: lpfc: Expand FPIN and RDF receive logging (bsc#1190576). - scsi: lpfc: Fix compilation errors on kernels with no CONFIG_DEBUG_FS (bsc#1190576). - scsi: lpfc: Fix CPU to/from endian warnings introduced by ELS processing (bsc#1190576). - scsi: lpfc: Fix EEH support for NVMe I/O (bsc#1190576). - scsi: lpfc: Fix FCP I/O flush functionality for TMF routines (bsc#1190576). - scsi: lpfc: Fix gcc -Wstringop-overread warning, again (bsc#1190576). - scsi: lpfc: Fix hang on unload due to stuck fport node (bsc#1190576). - scsi: lpfc: Fix I/O block after enabling managed congestion mode (bsc#1190576). - scsi: lpfc: Fix list_add() corruption in lpfc_drain_txq() (bsc#1190576). - scsi: lpfc: Fix NVMe I/O failover to non-optimized path (bsc#1190576). - scsi: lpfc: Fix premature rpi release for unsolicited TPLS and LS_RJT (bsc#1190576). - scsi: lpfc: Fix rediscovery of tape device after LIP (bsc#1190576). - scsi: lpfc: Fix sprintf() overflow in lpfc_display_fpin_wwpn() (bsc#1190576). - scsi: lpfc: Improve PBDE checks during SGL processing (bsc#1190576). - scsi: lpfc: Remove unneeded variable (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.1 (bsc#1190576). - scsi: lpfc: Update lpfc version to 14.0.0.2 (bsc#1190576). - scsi: lpfc: Use correct scnprintf() limit (bsc#1190576). - scsi: lpfc: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190576). - scsi: lpfc: Use the proper SCSI midlayer interfaces for PI (bsc#1190576). - scsi: lpfc: Zero CGN stats only during initial driver load and stat reset (bsc#1190576). - scsi: scsi_devinfo: Add blacklist entry for HPE OPEN-V (bsc#1189297). - scsi/fc: kABI fixes for new ELS_EDC, ELS_RDP definition (bsc#1171688 bsc#1174003 bsc#1190576). - selftests/bpf: Define string const as global for test_sysctl_prog.c (git-fixes). - selftests/bpf: Fix bpf-iter-tcp4 test to print correctly the dest IP (git-fixes). - selftests/bpf: Fix test_sysctl_loop{1, 2} failure due to clang change (git-fixes). - selftests/bpf: Whitelist test_progs.h from .gitignore (git-fixes). - serial: 8250_pci: make setup_port() parameters explicitly unsigned (git-fixes). - serial: 8250: Define RX trigger levels for OxSemi 950 devices (git-fixes). - serial: mvebu-uart: fix driver's tx_empty callback (git-fixes). - serial: sh-sci: fix break handling for sysrq (git-fixes). - spi: Fix tegra20 build with CONFIG_PM=n (git-fixes). - staging: board: Fix uninitialized spinlock when attaching genpd (git-fixes). - staging: ks7010: Fix the initialization of the 'sleep_status' structure (git-fixes). - staging: rts5208: Fix get_ms_information() heap buffer size (git-fixes). - thermal/core: Potential buffer overflow in thermal_build_list_of_policies() (git-fixes). - time: Handle negative seconds correctly in timespec64_to_ns() (git-fixes). - tools: bpf: Fix error in 'make -C tools/ bpf_install' (git-fixes). - tty: Fix data race between tiocsti() and flush_to_ldisc() (git-fixes). - tty: serial: jsm: hold port lock when reporting modem line changes (git-fixes). - tty: synclink_gt, drop unneeded forward declarations (git-fixes). - usb-storage: Add quirk for ScanLogic SL11R-IDE older than 2.6c (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: Add missing cleanups when usb_add_gadget_udc() fails (git-fixes). - usb: dwc2: Avoid leaving the error_debugfs label unused (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for BDMA and Slave (git-fixes). - usb: dwc2: gadget: Fix ISOC transfer complete handling for DDMA (git-fixes). - usb: EHCI: ehci-mv: improve error handling in mv_ehci_enable() (git-fixes). - usb: gadget: r8a66597: fix a loop in set_feature() (git-fixes). - usb: gadget: u_ether: fix a potential null pointer dereference (git-fixes). - usb: host: fotg210: fix the actual_length of an iso packet (git-fixes). - usb: host: fotg210: fix the endpoint's transactional opportunities calculation (git-fixes). - usb: musb: musb_dsps: request_irq() after initializing musb (git-fixes). - usb: musb: tusb6010: uninitialized data in tusb_fifo_write_unaligned() (git-fixes). - usb: serial: cp210x: add ID for GW Instek GDM-834x Digital Multimeter (git-fixes). - usb: serial: option: add device id for Foxconn T99W265 (git-fixes). - usb: serial: option: add Telit LN920 compositions (git-fixes). - usb: serial: option: remove duplicate USB device ID (git-fixes). - usbip: give back URBs for unsent unlink requests during cleanup (git-fixes). - usbip:vhci_hcd USB port can get stuck in the disabled state (git-fixes). - video: fbdev: asiliantfb: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: Error out if 'pixclock' equals zero (git-fixes). - video: fbdev: kyro: fix a DoS bug by restricting user input (git-fixes). - video: fbdev: riva: Error out if 'pixclock' equals zero (git-fixes). - vmxnet3: add support for 32 Tx/Rx queues (bsc#1190406). - vmxnet3: add support for ESP IPv6 RSS (bsc#1190406). - vmxnet3: increase maximum configurable mtu to 9190 (bsc#1190406). - vmxnet3: prepare for version 6 changes (bsc#1190406). - vmxnet3: remove power of 2 limitation on the queues (bsc#1190406). - vmxnet3: set correct hash type based on rss information (bsc#1190406). - vmxnet3: update to version 6 (bsc#1190406). - watchdog/sb_watchdog: fix compilation problem due to COMPILE_TEST (git-fixes). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1185302). - x86/alternatives: Teach text_poke_bp() to emulate instructions (bsc#1190561). - x86/apic/msi: Plug non-maskable MSI affinity race (bsc#1184439). - x86/asm: Fix SETZ size enqcmds() build failure (bsc#1178134). - x86/cpu: Fix core name for Sapphire Rapids (jsc#SLE-15289). - x86/mm: Fix kern_addr_valid() to cope with existing but not present entries (bsc#1152489). - x86/resctrl: Fix a maybe-uninitialized build warning treated as error (bsc#1152489). - x86/resctrl: Fix default monitoring groups reporting (bsc#1152489). - xfs: allow mount/remount when stripe width alignment is zero (bsc#1188651). - xfs: sync lazy sb accounting on quiesce of read-only mounts (bsc#1190679). - xgene-v2: Fix a resource leak in the error handling path of 'xge_probe()' (git-fixes). - xhci: Set HCD flag to defer primary roothub registration (git-fixes). cluster-md-kmp-default-5.3.18-59.27.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.27.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.27.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True kernel-debug-5.3.18-59.27.1.nosrc.rpm True kernel-debug-5.3.18-59.27.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.27.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.27.1.x86_64.rpm True kernel-default-5.3.18-59.27.1.nosrc.rpm True kernel-default-5.3.18-59.27.1.x86_64.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.src.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.27.1.18.15.1.x86_64.rpm True kernel-default-devel-5.3.18-59.27.1.x86_64.rpm True kernel-default-extra-5.3.18-59.27.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.27.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.27.1.x86_64.rpm True kernel-default-optional-5.3.18-59.27.1.x86_64.rpm True kernel-devel-5.3.18-59.27.1.noarch.rpm True kernel-docs-5.3.18-59.27.1.noarch.rpm True kernel-docs-5.3.18-59.27.1.nosrc.rpm True kernel-docs-html-5.3.18-59.27.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.27.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.27.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.27.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.27.1.x86_64.rpm True kernel-macros-5.3.18-59.27.1.noarch.rpm True kernel-obs-build-5.3.18-59.27.1.src.rpm True kernel-obs-build-5.3.18-59.27.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.27.1.src.rpm True kernel-obs-qa-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-5.3.18-59.27.1.nosrc.rpm True kernel-preempt-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.27.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.27.1.x86_64.rpm True kernel-source-5.3.18-59.27.1.noarch.rpm True kernel-source-5.3.18-59.27.1.src.rpm True kernel-source-vanilla-5.3.18-59.27.1.noarch.rpm True kernel-syms-5.3.18-59.27.1.src.rpm True kernel-syms-5.3.18-59.27.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.27.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.27.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.27.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.27.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.27.1.s390x.rpm True dlm-kmp-default-5.3.18-59.27.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.27.1.s390x.rpm True kernel-default-5.3.18-59.27.1.s390x.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.27.1.18.15.1.s390x.rpm True kernel-default-devel-5.3.18-59.27.1.s390x.rpm True kernel-default-extra-5.3.18-59.27.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.27.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.27.1.s390x.rpm True kernel-default-optional-5.3.18-59.27.1.s390x.rpm True kernel-obs-build-5.3.18-59.27.1.s390x.rpm True kernel-obs-qa-5.3.18-59.27.1.s390x.rpm True kernel-syms-5.3.18-59.27.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.27.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.27.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.27.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.27.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.27.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.27.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.27.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.27.1.ppc64le.rpm True kernel-debug-5.3.18-59.27.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-default-5.3.18-59.27.1.ppc64le.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.27.1.18.15.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.27.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.27.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.27.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.27.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.27.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.27.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.27.1.ppc64le.rpm True kernel-syms-5.3.18-59.27.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.27.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.27.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.27.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.27.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.27.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True dtb-aarch64-5.3.18-59.27.1.src.rpm True dtb-al-5.3.18-59.27.1.aarch64.rpm True dtb-allwinner-5.3.18-59.27.1.aarch64.rpm True dtb-altera-5.3.18-59.27.1.aarch64.rpm True dtb-amd-5.3.18-59.27.1.aarch64.rpm True dtb-amlogic-5.3.18-59.27.1.aarch64.rpm True dtb-apm-5.3.18-59.27.1.aarch64.rpm True dtb-arm-5.3.18-59.27.1.aarch64.rpm True dtb-broadcom-5.3.18-59.27.1.aarch64.rpm True dtb-cavium-5.3.18-59.27.1.aarch64.rpm True dtb-exynos-5.3.18-59.27.1.aarch64.rpm True dtb-freescale-5.3.18-59.27.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.27.1.aarch64.rpm True dtb-lg-5.3.18-59.27.1.aarch64.rpm True dtb-marvell-5.3.18-59.27.1.aarch64.rpm True dtb-mediatek-5.3.18-59.27.1.aarch64.rpm True dtb-nvidia-5.3.18-59.27.1.aarch64.rpm True dtb-qcom-5.3.18-59.27.1.aarch64.rpm True dtb-renesas-5.3.18-59.27.1.aarch64.rpm True dtb-rockchip-5.3.18-59.27.1.aarch64.rpm True dtb-socionext-5.3.18-59.27.1.aarch64.rpm True dtb-sprd-5.3.18-59.27.1.aarch64.rpm True dtb-xilinx-5.3.18-59.27.1.aarch64.rpm True dtb-zte-5.3.18-59.27.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.27.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-5.3.18-59.27.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.27.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.27.1.aarch64.rpm True kernel-default-5.3.18-59.27.1.aarch64.rpm True kernel-default-base-5.3.18-59.27.1.18.15.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.27.1.18.15.1.aarch64.rpm True kernel-default-devel-5.3.18-59.27.1.aarch64.rpm True kernel-default-extra-5.3.18-59.27.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.27.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.27.1.aarch64.rpm True kernel-default-optional-5.3.18-59.27.1.aarch64.rpm True kernel-obs-build-5.3.18-59.27.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.27.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.27.1.aarch64.rpm True kernel-syms-5.3.18-59.27.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.27.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.27.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.27.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.27.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.27.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3495 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-add-on fixes the following issue: - Don't crash Auto client when importing from an empty add-on section. (bsc#1189154) yast2-add-on-4.3.9-3.5.2.noarch.rpm yast2-add-on-4.3.9-3.5.2.src.rpm openSUSE-SLE-15.3-2021-3485 moderate SUSE Updates openSUSE-SLE 15.3 This update for squid fixes the following issues: Update to version 4.17: - CVE-2021-28116: Fixed a out-of-bounds read in the WCCP protocol (bsc#1189403). squid-4.17-5.29.1.src.rpm squid-4.17-5.29.1.x86_64.rpm squid-4.17-5.29.1.s390x.rpm squid-4.17-5.29.1.ppc64le.rpm squid-4.17-5.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-3832 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issue: - Update to version 0.353 (bsc#1191375) hwdata-0.353-3.36.1.noarch.rpm hwdata-0.353-3.36.1.src.rpm openSUSE-SLE-15.3-2021-3558 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: koan: - Readding the requires for runtime dependencies on python3-netifaces and python3-distro (bsc#1191448) spacecmd: - Version 4.2.13-1 * Update translation strings * configchannel_updatefile handles directory properly (bsc#1190512) * Add schedule_archivecompleted to mass archive actions (bsc#1181223) * Remove whoami from the list of unauthenticated commands (bsc#1188977) spacewalk-client-tools: - Version 4.2.14-1 * Update translation strings koan-3.0.1-4.23.1.noarch.rpm koan-3.0.1-4.23.1.src.rpm spacecmd-4.2.13-3.68.1.noarch.rpm spacecmd-4.2.13-3.68.1.src.rpm openSUSE-SLE-15.3-2021-3383 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-migration-services fixes the following issues: - The migration services were updated to version 2.0.31 suse-migration-services-2.0.32-1.43.1.noarch.rpm suse-migration-services-2.0.32-1.43.1.src.rpm openSUSE-SLE-15.3-2021-3493 moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - CVE-2021-39272: Fix failure to enforce STARTTLS session encryption in some circumstances, such as a certain situation with IMAP and PREAUTH. (bsc#1190069) fetchmail-6.3.26-20.17.1.src.rpm fetchmail-6.3.26-20.17.1.x86_64.rpm fetchmailconf-6.3.26-20.17.1.x86_64.rpm fetchmail-6.3.26-20.17.1.s390x.rpm fetchmailconf-6.3.26-20.17.1.s390x.rpm fetchmail-6.3.26-20.17.1.ppc64le.rpm fetchmailconf-6.3.26-20.17.1.ppc64le.rpm fetchmail-6.3.26-20.17.1.aarch64.rpm fetchmailconf-6.3.26-20.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3472 important SUSE Updates openSUSE-SLE 15.3 This update for flatpak fixes the following issues: - Update to version 1.10.5: - CVE-2021-41133: Fixed a bug that could lead to sandbox bypass via recent VFS-manipulating syscalls. (bsc#1191507) flatpak-1.10.5-4.9.1.src.rpm flatpak-1.10.5-4.9.1.x86_64.rpm flatpak-devel-1.10.5-4.9.1.x86_64.rpm flatpak-zsh-completion-1.10.5-4.9.1.x86_64.rpm libflatpak0-1.10.5-4.9.1.x86_64.rpm system-user-flatpak-1.10.5-4.9.1.x86_64.rpm typelib-1_0-Flatpak-1_0-1.10.5-4.9.1.x86_64.rpm flatpak-1.10.5-4.9.1.s390x.rpm flatpak-devel-1.10.5-4.9.1.s390x.rpm flatpak-zsh-completion-1.10.5-4.9.1.s390x.rpm libflatpak0-1.10.5-4.9.1.s390x.rpm system-user-flatpak-1.10.5-4.9.1.s390x.rpm typelib-1_0-Flatpak-1_0-1.10.5-4.9.1.s390x.rpm flatpak-1.10.5-4.9.1.ppc64le.rpm flatpak-devel-1.10.5-4.9.1.ppc64le.rpm flatpak-zsh-completion-1.10.5-4.9.1.ppc64le.rpm libflatpak0-1.10.5-4.9.1.ppc64le.rpm system-user-flatpak-1.10.5-4.9.1.ppc64le.rpm typelib-1_0-Flatpak-1_0-1.10.5-4.9.1.ppc64le.rpm flatpak-1.10.5-4.9.1.aarch64.rpm flatpak-devel-1.10.5-4.9.1.aarch64.rpm flatpak-zsh-completion-1.10.5-4.9.1.aarch64.rpm libflatpak0-1.10.5-4.9.1.aarch64.rpm system-user-flatpak-1.10.5-4.9.1.aarch64.rpm typelib-1_0-Flatpak-1_0-1.10.5-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3557 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - CVE-2021-21996: Exclude the full path of a download URL to prevent injection of malicious code. (bsc#1190265) python3-salt-3002.2-50.1.15.1.x86_64.rpm True salt-3002.2-50.1.15.1.src.rpm True salt-3002.2-50.1.15.1.x86_64.rpm True salt-api-3002.2-50.1.15.1.x86_64.rpm True salt-bash-completion-3002.2-50.1.15.1.noarch.rpm True salt-cloud-3002.2-50.1.15.1.x86_64.rpm True salt-doc-3002.2-50.1.15.1.x86_64.rpm True salt-fish-completion-3002.2-50.1.15.1.noarch.rpm True salt-master-3002.2-50.1.15.1.x86_64.rpm True salt-minion-3002.2-50.1.15.1.x86_64.rpm True salt-proxy-3002.2-50.1.15.1.x86_64.rpm True salt-ssh-3002.2-50.1.15.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.15.1.x86_64.rpm True salt-syndic-3002.2-50.1.15.1.x86_64.rpm True salt-transactional-update-3002.2-50.1.15.1.x86_64.rpm True salt-zsh-completion-3002.2-50.1.15.1.noarch.rpm True python3-salt-3002.2-50.1.15.1.s390x.rpm True salt-3002.2-50.1.15.1.s390x.rpm True salt-api-3002.2-50.1.15.1.s390x.rpm True salt-cloud-3002.2-50.1.15.1.s390x.rpm True salt-doc-3002.2-50.1.15.1.s390x.rpm True salt-master-3002.2-50.1.15.1.s390x.rpm True salt-minion-3002.2-50.1.15.1.s390x.rpm True salt-proxy-3002.2-50.1.15.1.s390x.rpm True salt-ssh-3002.2-50.1.15.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-50.1.15.1.s390x.rpm True salt-syndic-3002.2-50.1.15.1.s390x.rpm True salt-transactional-update-3002.2-50.1.15.1.s390x.rpm True python3-salt-3002.2-50.1.15.1.ppc64le.rpm True salt-3002.2-50.1.15.1.ppc64le.rpm True salt-api-3002.2-50.1.15.1.ppc64le.rpm True salt-cloud-3002.2-50.1.15.1.ppc64le.rpm True salt-doc-3002.2-50.1.15.1.ppc64le.rpm True salt-master-3002.2-50.1.15.1.ppc64le.rpm True salt-minion-3002.2-50.1.15.1.ppc64le.rpm True salt-proxy-3002.2-50.1.15.1.ppc64le.rpm True salt-ssh-3002.2-50.1.15.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-50.1.15.1.ppc64le.rpm True salt-syndic-3002.2-50.1.15.1.ppc64le.rpm True salt-transactional-update-3002.2-50.1.15.1.ppc64le.rpm True python3-salt-3002.2-50.1.15.1.aarch64.rpm True salt-3002.2-50.1.15.1.aarch64.rpm True salt-api-3002.2-50.1.15.1.aarch64.rpm True salt-cloud-3002.2-50.1.15.1.aarch64.rpm True salt-doc-3002.2-50.1.15.1.aarch64.rpm True salt-master-3002.2-50.1.15.1.aarch64.rpm True salt-minion-3002.2-50.1.15.1.aarch64.rpm True salt-proxy-3002.2-50.1.15.1.aarch64.rpm True salt-ssh-3002.2-50.1.15.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-50.1.15.1.aarch64.rpm True salt-syndic-3002.2-50.1.15.1.aarch64.rpm True salt-transactional-update-3002.2-50.1.15.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3500 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-vm-tools fixes the following issues: - New/Updated features: * Added a configurable logging capability to the network script * The hgfsmounter (mount.vmhgfs) command has been removed from open-vm-tools. It has been replaced by hgfs-fuse. - Resolved issues: * Customization: Retry the Linux reboot if telinit is a soft link to systemctl * open-vm-tools commands would hang if configured with "--enable-valgrind" libvmtools-devel-11.3.5-13.1.x86_64.rpm libvmtools0-11.3.5-13.1.x86_64.rpm open-vm-tools-11.3.5-13.1.src.rpm open-vm-tools-11.3.5-13.1.x86_64.rpm open-vm-tools-desktop-11.3.5-13.1.x86_64.rpm open-vm-tools-sdmp-11.3.5-13.1.x86_64.rpm libvmtools-devel-11.3.5-13.1.aarch64.rpm libvmtools0-11.3.5-13.1.aarch64.rpm open-vm-tools-11.3.5-13.1.aarch64.rpm open-vm-tools-desktop-11.3.5-13.1.aarch64.rpm open-vm-tools-sdmp-11.3.5-13.1.aarch64.rpm openSUSE-SLE-15.3-2021-3501 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper, libsolv and protobuf fixes the following issues: - Choice rules: treat orphaned packages as newest (bsc#1190465) - Avoid calling 'su' to detect a too restrictive sudo user umask (bsc#1186602) - Do not check of signatures and keys two times(redundant) (bsc#1190059) - Rephrase vendor conflict message in case 2 packages are involved (bsc#1187760) - Show key fpr from signature when signature check fails (bsc#1187224) - Fix solver jobs for PTFs (bsc#1186503) - Fix purge-kernels fails (bsc#1187738) - Fix obs:// platform guessing for Leap (bsc#1187425) - Make sure to keep states alives while transitioning. (bsc#1190199) - Manpage: Improve description about patch updates(bsc#1187466) - Manpage: Recommend the needs-rebooting command to test whether a system reboot is suggested. - Fix kernel-*-livepatch removal in purge-kernels. (bsc#1190815) - Fix crashes in logging code when shutting down (bsc#1189031) - Do not download full files even if the checkExistsOnly flag is set. (bsc#1190712) - Add need reboot/restart hint to XML install summary (bsc#1188435) - Prompt: choose exact match if prompt options are not prefix free (bsc#1188156) - Include libprotobuf-lite20 in products to enable parallel downloads. (jsc#ECO-2911, jsc#SLE-16862) libprotobuf-lite20-3.9.2-4.9.1.x86_64.rpm True libprotobuf-lite20-32bit-3.9.2-4.9.1.x86_64.rpm True libprotobuf20-3.9.2-4.9.1.x86_64.rpm True libprotobuf20-32bit-3.9.2-4.9.1.x86_64.rpm True libprotoc20-3.9.2-4.9.1.x86_64.rpm True libprotoc20-32bit-3.9.2-4.9.1.x86_64.rpm True libsolv-0.7.20-9.2.src.rpm True libsolv-demo-0.7.20-9.2.x86_64.rpm True libsolv-devel-0.7.20-9.2.x86_64.rpm True libsolv-tools-0.7.20-9.2.x86_64.rpm True libzypp-17.28.5-15.2.src.rpm True libzypp-17.28.5-15.2.x86_64.rpm True libzypp-devel-17.28.5-15.2.x86_64.rpm True libzypp-devel-doc-17.28.5-15.2.x86_64.rpm True perl-solv-0.7.20-9.2.x86_64.rpm True protobuf-3.9.2-4.9.1.src.rpm True protobuf-devel-3.9.2-4.9.1.x86_64.rpm True protobuf-java-3.9.2-4.9.1.x86_64.rpm True protobuf-source-3.9.2-4.9.1.noarch.rpm True python-solv-0.7.20-9.2.x86_64.rpm True python2-protobuf-3.9.2-4.9.1.x86_64.rpm True python3-protobuf-3.9.2-4.9.1.x86_64.rpm True python3-solv-0.7.20-9.2.x86_64.rpm True ruby-solv-0.7.20-9.2.x86_64.rpm True zypper-1.14.49-16.1.src.rpm True zypper-1.14.49-16.1.x86_64.rpm True zypper-aptitude-1.14.49-16.1.noarch.rpm True zypper-log-1.14.49-16.1.noarch.rpm True zypper-needs-restarting-1.14.49-16.1.noarch.rpm True libprotobuf-lite20-3.9.2-4.9.1.s390x.rpm True libprotobuf20-3.9.2-4.9.1.s390x.rpm True libprotoc20-3.9.2-4.9.1.s390x.rpm True libsolv-demo-0.7.20-9.2.s390x.rpm True libsolv-devel-0.7.20-9.2.s390x.rpm True libsolv-tools-0.7.20-9.2.s390x.rpm True libzypp-17.28.5-15.2.s390x.rpm True libzypp-devel-17.28.5-15.2.s390x.rpm True libzypp-devel-doc-17.28.5-15.2.s390x.rpm True perl-solv-0.7.20-9.2.s390x.rpm True protobuf-devel-3.9.2-4.9.1.s390x.rpm True protobuf-java-3.9.2-4.9.1.s390x.rpm True python-solv-0.7.20-9.2.s390x.rpm True python2-protobuf-3.9.2-4.9.1.s390x.rpm True python3-protobuf-3.9.2-4.9.1.s390x.rpm True python3-solv-0.7.20-9.2.s390x.rpm True ruby-solv-0.7.20-9.2.s390x.rpm True zypper-1.14.49-16.1.s390x.rpm True libprotobuf-lite20-3.9.2-4.9.1.ppc64le.rpm True libprotobuf20-3.9.2-4.9.1.ppc64le.rpm True libprotoc20-3.9.2-4.9.1.ppc64le.rpm True libsolv-demo-0.7.20-9.2.ppc64le.rpm True libsolv-devel-0.7.20-9.2.ppc64le.rpm True libsolv-tools-0.7.20-9.2.ppc64le.rpm True libzypp-17.28.5-15.2.ppc64le.rpm True libzypp-devel-17.28.5-15.2.ppc64le.rpm True libzypp-devel-doc-17.28.5-15.2.ppc64le.rpm True perl-solv-0.7.20-9.2.ppc64le.rpm True protobuf-devel-3.9.2-4.9.1.ppc64le.rpm True protobuf-java-3.9.2-4.9.1.ppc64le.rpm True python-solv-0.7.20-9.2.ppc64le.rpm True python2-protobuf-3.9.2-4.9.1.ppc64le.rpm True python3-protobuf-3.9.2-4.9.1.ppc64le.rpm True python3-solv-0.7.20-9.2.ppc64le.rpm True ruby-solv-0.7.20-9.2.ppc64le.rpm True zypper-1.14.49-16.1.ppc64le.rpm True libprotobuf-lite20-3.9.2-4.9.1.aarch64.rpm True libprotobuf20-3.9.2-4.9.1.aarch64.rpm True libprotoc20-3.9.2-4.9.1.aarch64.rpm True libsolv-demo-0.7.20-9.2.aarch64.rpm True libsolv-devel-0.7.20-9.2.aarch64.rpm True libsolv-tools-0.7.20-9.2.aarch64.rpm True libzypp-17.28.5-15.2.aarch64.rpm True libzypp-devel-17.28.5-15.2.aarch64.rpm True libzypp-devel-doc-17.28.5-15.2.aarch64.rpm True perl-solv-0.7.20-9.2.aarch64.rpm True protobuf-devel-3.9.2-4.9.1.aarch64.rpm True protobuf-java-3.9.2-4.9.1.aarch64.rpm True python-solv-0.7.20-9.2.aarch64.rpm True python2-protobuf-3.9.2-4.9.1.aarch64.rpm True python3-protobuf-3.9.2-4.9.1.aarch64.rpm True python3-solv-0.7.20-9.2.aarch64.rpm True ruby-solv-0.7.20-9.2.aarch64.rpm True zypper-1.14.49-16.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3445 important SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: Security issues fixed: - PGP hardening changes (bsc#1185299) Maintaince issues fixed: - Fixed zstd detection (bsc#1187670) - Added ndb rofs support (bsc#1188548) - Fixed deadlock when multiple rpm processes try tp acquire the database lock (bsc#1183659) python-rpm-4.14.3-40.1.src.rpm python2-rpm-4.14.3-40.1.x86_64.rpm python3-rpm-4.14.3-40.1.x86_64.rpm rpm-32bit-4.14.3-40.1.x86_64.rpm rpm-4.14.3-40.1.src.rpm rpm-4.14.3-40.1.x86_64.rpm rpm-build-4.14.3-40.1.x86_64.rpm rpm-devel-4.14.3-40.1.x86_64.rpm rpm-ndb-32bit-4.14.3-40.1.x86_64.rpm rpm-ndb-4.14.3-40.1.src.rpm rpm-ndb-4.14.3-40.1.x86_64.rpm python2-rpm-4.14.3-40.1.s390x.rpm python3-rpm-4.14.3-40.1.s390x.rpm rpm-4.14.3-40.1.s390x.rpm rpm-build-4.14.3-40.1.s390x.rpm rpm-devel-4.14.3-40.1.s390x.rpm rpm-ndb-4.14.3-40.1.s390x.rpm python2-rpm-4.14.3-40.1.ppc64le.rpm python3-rpm-4.14.3-40.1.ppc64le.rpm rpm-4.14.3-40.1.ppc64le.rpm rpm-build-4.14.3-40.1.ppc64le.rpm rpm-devel-4.14.3-40.1.ppc64le.rpm rpm-ndb-4.14.3-40.1.ppc64le.rpm python2-rpm-4.14.3-40.1.aarch64.rpm python3-rpm-4.14.3-40.1.aarch64.rpm rpm-4.14.3-40.1.aarch64.rpm rpm-build-4.14.3-40.1.aarch64.rpm rpm-devel-4.14.3-40.1.aarch64.rpm rpm-ndb-4.14.3-40.1.aarch64.rpm openSUSE-SLE-15.3-2021-3487 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to go1.16.9 - CVE-2021-38297: misc/wasm, cmd/link: do not let command line args overwrite global data (bsc#1191468) go1.16-1.16.9-1.29.1.src.rpm go1.16-1.16.9-1.29.1.x86_64.rpm go1.16-doc-1.16.9-1.29.1.x86_64.rpm go1.16-race-1.16.9-1.29.1.x86_64.rpm go1.16-1.16.9-1.29.1.s390x.rpm go1.16-doc-1.16.9-1.29.1.s390x.rpm go1.16-1.16.9-1.29.1.ppc64le.rpm go1.16-doc-1.16.9-1.29.1.ppc64le.rpm go1.16-1.16.9-1.29.1.aarch64.rpm go1.16-doc-1.16.9-1.29.1.aarch64.rpm go1.16-race-1.16.9-1.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-3488 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Update to go1.17.2 - CVE-2021-38297: misc/wasm, cmd/link: do not let command line args overwrite global data (bsc#1191468) go1.17-1.17.2-1.6.2.i586.rpm go1.17-1.17.2-1.6.2.src.rpm go1.17-doc-1.17.2-1.6.2.i586.rpm go1.17-1.17.2-1.6.2.x86_64.rpm go1.17-doc-1.17.2-1.6.2.x86_64.rpm go1.17-race-1.17.2-1.6.2.x86_64.rpm go1.17-1.17.2-1.6.2.s390x.rpm go1.17-doc-1.17.2-1.6.2.s390x.rpm go1.17-1.17.2-1.6.2.ppc64le.rpm go1.17-doc-1.17.2-1.6.2.ppc64le.rpm go1.17-1.17.2-1.6.2.aarch64.rpm go1.17-doc-1.17.2-1.6.2.aarch64.rpm go1.17-race-1.17.2-1.6.2.aarch64.rpm openSUSE-SLE-15.3-2021-4150 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Update to version 91.4 MFSA 2021-54 (bsc#1193485) - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - CVE-2021-43528: JavaScript unexpectedly enabled for the composition area - Update to version 91.3.2 - CVE-2021-40529: Fixed ElGamal implementation could allow plaintext recovery (bsc#1190244) - Update to version 91.3 MFSA 2021-50 (bsc#1192250) - CVE-2021-38503: Fixed iframe sandbox rules did not apply to XSLT stylesheets - CVE-2021-38504: Fixed use-after-free in file picker dialog - CVE-2021-38505: Fixed Windows 10 Cloud Clipboard may have recorded sensitive user data - CVE-2021-38506: Fixed Thunderbird could be coaxed into going into fullscreen mode without notification or warning - CVE-2021-38507: Fixed opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports - CVE-2021-38508: Fixed permission Prompt could be overlaid, resulting in user confusion and potential spoofing - CVE-2021-38509: Fixed Javascript alert box could have been spoofed onto an arbitrary domain - CVE-2021-38510: Fixed Download Protections were bypassed by .inetloc files on Mac OS - Fixed plain text reformatting regression (bsc#1182863) - Update to version 91.2 MFSA 2021-47 (bsc#1191332) - CVE-2021-29981: Live range splitting could have led to conflicting assignments in the JIT - CVE-2021-29982: Single bit data leak due to incorrect JIT optimization and type confusion - CVE-2021-29987: Users could have been tricked into accepting unwanted permissions on Linux - CVE-2021-32810: Data race in crossbeam-deque - CVE-2021-38493: Memory safety bugs fixed in Thunderbird 78.14 and Thunderbird 91.1 - CVE-2021-38496: Use-after-free in MessageTask - CVE-2021-38497: Validation message could have been overlaid on another origin - CVE-2021-38498: Use-after-free of nsLanguageAtomService object - CVE-2021-38500: Memory safety bugs fixed in Thunderbird 91.2 - CVE-2021-38501: Memory safety bugs fixed in Thunderbird 91.2 - CVE-2021-38502: Downgrade attack on SMTP STARTTLS connections - Update to version 91.1.0 MFSA 2021-41 (bsc#1190269) - CVE-2021-38492: Navigating to `mk:` URL scheme could load Internet Explorer - CVE-2021-38495: Memory safety bugs fixed in Thunderbird 91.1 - Update to version 91.0.1 MFSA 2021-37 (bsc#1189547) - CVE-2021-29991: Header Splitting possible with HTTP/3 Responses MozillaThunderbird-91.4.0-8.45.2.src.rpm MozillaThunderbird-91.4.0-8.45.2.x86_64.rpm MozillaThunderbird-translations-common-91.4.0-8.45.2.x86_64.rpm MozillaThunderbird-translations-other-91.4.0-8.45.2.x86_64.rpm MozillaThunderbird-91.4.0-8.45.2.s390x.rpm MozillaThunderbird-translations-common-91.4.0-8.45.2.s390x.rpm MozillaThunderbird-translations-other-91.4.0-8.45.2.s390x.rpm MozillaThunderbird-91.4.0-8.45.2.ppc64le.rpm MozillaThunderbird-translations-common-91.4.0-8.45.2.ppc64le.rpm MozillaThunderbird-translations-other-91.4.0-8.45.2.ppc64le.rpm MozillaThunderbird-91.4.0-8.45.2.aarch64.rpm MozillaThunderbird-translations-common-91.4.0-8.45.2.aarch64.rpm MozillaThunderbird-translations-other-91.4.0-8.45.2.aarch64.rpm openSUSE-SLE-15.3-2021-3496 low SUSE Updates openSUSE-SLE 15.3 This update for bash-completion fixes the following issue: - modinfo completion fails to recognize .ko.xz (bsc#1190929) bash-completion-2.7-4.6.1.noarch.rpm bash-completion-2.7-4.6.1.src.rpm bash-completion-devel-2.7-4.6.1.noarch.rpm bash-completion-doc-2.7-4.6.1.noarch.rpm bash-completion-doc-2.7-4.6.1.src.rpm openSUSE-SLE-15.3-2021-3498 low SUSE Updates openSUSE-SLE 15.3 This update for texlive-specs-i fixes the following issue: - Fix "undefined control sequence" error when using with XeLaTeX (bsc#1190640) texlive-eqnarray-2017.133.1.3svn20641-7.3.1.noarch.rpm texlive-eqnarray-doc-2017.133.1.3svn20641-7.3.1.noarch.rpm texlive-eqparbox-2017.133.4.0svn29419-7.3.1.noarch.rpm texlive-eqparbox-doc-2017.133.4.0svn29419-7.3.1.noarch.rpm texlive-erdc-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-erdc-doc-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-erewhon-2017.133.1.08svn43506-7.3.1.noarch.rpm texlive-erewhon-doc-2017.133.1.08svn43506-7.3.1.noarch.rpm texlive-erewhon-fonts-2017.133.1.08svn43506-7.3.1.noarch.rpm texlive-errata-2017.133.0.0.3svn42428-7.3.1.noarch.rpm texlive-errata-doc-2017.133.0.0.3svn42428-7.3.1.noarch.rpm texlive-es-tex-faq-2017.133.1.97svn15878-7.3.1.noarch.rpm texlive-esami-2017.133.2.1svn41774-7.3.1.noarch.rpm texlive-esami-doc-2017.133.2.1svn41774-7.3.1.noarch.rpm texlive-esdiff-2017.133.1.2svn21385-7.3.1.noarch.rpm texlive-esdiff-doc-2017.133.1.2svn21385-7.3.1.noarch.rpm texlive-esint-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-esint-doc-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-esint-type1-2017.133.svn15878-7.3.1.noarch.rpm texlive-esint-type1-doc-2017.133.svn15878-7.3.1.noarch.rpm texlive-esint-type1-fonts-2017.133.svn15878-7.3.1.noarch.rpm texlive-esk-2017.133.1.0svn18115-7.3.1.noarch.rpm texlive-esk-doc-2017.133.1.0svn18115-7.3.1.noarch.rpm texlive-eskd-2017.133.svn15878-7.3.1.noarch.rpm texlive-eskd-doc-2017.133.svn15878-7.3.1.noarch.rpm texlive-eskdx-2017.133.0.0.98svn29235-7.3.1.noarch.rpm texlive-eskdx-doc-2017.133.0.0.98svn29235-7.3.1.noarch.rpm texlive-eso-pic-2017.133.2.0gsvn37925-7.3.1.noarch.rpm texlive-eso-pic-doc-2017.133.2.0gsvn37925-7.3.1.noarch.rpm texlive-esrelation-2017.133.svn37236-7.3.1.noarch.rpm texlive-esrelation-doc-2017.133.svn37236-7.3.1.noarch.rpm texlive-esrelation-fonts-2017.133.svn37236-7.3.1.noarch.rpm texlive-esstix-2017.133.1.0svn22426-7.3.1.noarch.rpm texlive-esstix-doc-2017.133.1.0svn22426-7.3.1.noarch.rpm texlive-esstix-fonts-2017.133.1.0svn22426-7.3.1.noarch.rpm texlive-estcpmm-2017.133.0.0.4svn17335-7.3.1.noarch.rpm texlive-estcpmm-doc-2017.133.0.0.4svn17335-7.3.1.noarch.rpm texlive-esvect-2017.133.1.3svn32098-7.3.1.noarch.rpm texlive-esvect-doc-2017.133.1.3svn32098-7.3.1.noarch.rpm texlive-esvect-fonts-2017.133.1.3svn32098-7.3.1.noarch.rpm texlive-etaremune-2017.133.1.2svn15878-7.3.1.noarch.rpm texlive-etaremune-doc-2017.133.1.2svn15878-7.3.1.noarch.rpm texlive-etdipa-2017.133.2.6svn36354-7.3.1.noarch.rpm texlive-etex-2017.133.svn37057-7.3.1.noarch.rpm texlive-etex-doc-2017.133.svn37057-7.3.1.noarch.rpm texlive-etex-pkg-2017.133.2.7svn41784-7.3.1.noarch.rpm texlive-etex-pkg-doc-2017.133.2.7svn41784-7.3.1.noarch.rpm texlive-etextools-2017.133.3.1415926svn20694-7.3.1.noarch.rpm texlive-etextools-doc-2017.133.3.1415926svn20694-7.3.1.noarch.rpm texlive-ethiop-2017.133.0.0.7svn15878-7.3.1.noarch.rpm texlive-ethiop-doc-2017.133.0.0.7svn15878-7.3.1.noarch.rpm texlive-ethiop-t1-2017.133.svn15878-7.3.1.noarch.rpm texlive-ethiop-t1-doc-2017.133.svn15878-7.3.1.noarch.rpm texlive-ethiop-t1-fonts-2017.133.svn15878-7.3.1.noarch.rpm texlive-etoc-2017.133.1.08isvn42182-7.3.1.noarch.rpm texlive-etoc-doc-2017.133.1.08isvn42182-7.3.1.noarch.rpm texlive-etoolbox-2017.133.2.4svn42855-7.3.1.noarch.rpm texlive-etoolbox-de-2017.133.1svn21906-7.3.1.noarch.rpm texlive-etoolbox-doc-2017.133.2.4svn42855-7.3.1.noarch.rpm texlive-euenc-2017.133.0.0.1hsvn19795-7.3.1.noarch.rpm texlive-euenc-doc-2017.133.0.0.1hsvn19795-7.3.1.noarch.rpm texlive-eukdate-2017.133.1.04svn15878-7.3.1.noarch.rpm texlive-eukdate-doc-2017.133.1.04svn15878-7.3.1.noarch.rpm texlive-euler-2017.133.2.5svn42428-7.3.1.noarch.rpm texlive-euler-doc-2017.133.2.5svn42428-7.3.1.noarch.rpm texlive-eulerpx-2017.133.0.0.2.1svn43735-7.3.1.noarch.rpm texlive-eulerpx-doc-2017.133.0.0.2.1svn43735-7.3.1.noarch.rpm texlive-eulervm-2017.133.4.0svn15878-7.3.1.noarch.rpm texlive-eulervm-doc-2017.133.4.0svn15878-7.3.1.noarch.rpm texlive-euro-2017.133.1.1svn22191-7.3.1.noarch.rpm texlive-euro-ce-2017.133.3.0bsvn25714-7.3.1.noarch.rpm texlive-euro-ce-doc-2017.133.3.0bsvn25714-7.3.1.noarch.rpm texlive-euro-doc-2017.133.1.1svn22191-7.3.1.noarch.rpm texlive-europasscv-2017.133.svn43033-7.3.1.noarch.rpm texlive-europasscv-doc-2017.133.svn43033-7.3.1.noarch.rpm texlive-europecv-2017.133.svn34454-7.3.1.noarch.rpm texlive-europecv-doc-2017.133.svn34454-7.3.1.noarch.rpm texlive-eurosym-2017.133.1.4_subrfixsvn17265-7.3.1.noarch.rpm texlive-eurosym-doc-2017.133.1.4_subrfixsvn17265-7.3.1.noarch.rpm texlive-eurosym-fonts-2017.133.1.4_subrfixsvn17265-7.3.1.noarch.rpm texlive-euxm-2017.133.svn20202-7.3.1.noarch.rpm texlive-everyhook-2017.133.1.2svn35675-7.3.1.noarch.rpm texlive-everyhook-doc-2017.133.1.2svn35675-7.3.1.noarch.rpm texlive-everypage-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-everypage-doc-2017.133.1.1svn15878-7.3.1.noarch.rpm texlive-exam-2017.133.2.5svn37279-7.3.1.noarch.rpm texlive-exam-doc-2017.133.2.5svn37279-7.3.1.noarch.rpm texlive-exam-n-2017.133.1.1.4svn42755-7.3.1.noarch.rpm texlive-exam-n-doc-2017.133.1.1.4svn42755-7.3.1.noarch.rpm texlive-examdesign-2017.133.1.101svn15878-7.3.1.noarch.rpm texlive-examdesign-doc-2017.133.1.101svn15878-7.3.1.noarch.rpm texlive-example-2017.133.svn33398-7.3.1.noarch.rpm texlive-examplep-2017.133.0.0.04svn16916-7.3.1.noarch.rpm texlive-examplep-doc-2017.133.0.0.04svn16916-7.3.1.noarch.rpm texlive-exceltex-2017.133.0.0.5.1svn26313-7.3.1.noarch.rpm texlive-exceltex-doc-2017.133.0.0.5.1svn26313-7.3.1.noarch.rpm texlive-excludeonly-2017.133.1.0svn17262-7.3.1.noarch.rpm texlive-excludeonly-doc-2017.133.1.0svn17262-7.3.1.noarch.rpm texlive-exercise-2017.133.1.6svn35417-7.3.1.noarch.rpm texlive-exercise-doc-2017.133.1.6svn35417-7.3.1.noarch.rpm texlive-exercises-2017.133.1.0svn42428-7.3.1.noarch.rpm texlive-exercises-doc-2017.133.1.0svn42428-7.3.1.noarch.rpm texlive-exp-testopt-2017.133.0.0.3svn15878-7.3.1.noarch.rpm texlive-exp-testopt-doc-2017.133.0.0.3svn15878-7.3.1.noarch.rpm texlive-expdlist-2017.133.2.4svn15878-7.3.1.noarch.rpm texlive-expdlist-doc-2017.133.2.4svn15878-7.3.1.noarch.rpm texlive-expex-2017.133.5.1bsvn44499-7.3.1.noarch.rpm texlive-expex-doc-2017.133.5.1bsvn44499-7.3.1.noarch.rpm texlive-export-2017.133.1.8svn27206-7.3.1.noarch.rpm texlive-export-doc-2017.133.1.8svn27206-7.3.1.noarch.rpm texlive-expressg-2017.133.1.5svn29349-7.3.1.noarch.rpm texlive-expressg-doc-2017.133.1.5svn29349-7.3.1.noarch.rpm texlive-exsheets-2017.133.0.0.21isvn43188-7.3.1.noarch.rpm texlive-exsheets-doc-2017.133.0.0.21isvn43188-7.3.1.noarch.rpm texlive-exsol-2017.133.1.2svn41377-7.3.1.noarch.rpm texlive-exsol-doc-2017.133.1.2svn41377-7.3.1.noarch.rpm texlive-extarrows-2017.133.1.0bsvn15878-7.3.1.noarch.rpm texlive-extarrows-doc-2017.133.1.0bsvn15878-7.3.1.noarch.rpm texlive-exteps-2017.133.0.0.41svn19859-7.3.1.noarch.rpm texlive-exteps-doc-2017.133.0.0.41svn19859-7.3.1.noarch.rpm texlive-extpfeil-2017.133.0.0.4svn16243-7.3.1.noarch.rpm texlive-extpfeil-doc-2017.133.0.0.4svn16243-7.3.1.noarch.rpm texlive-extract-2017.133.1.8svn15878-7.3.1.noarch.rpm texlive-extract-doc-2017.133.1.8svn15878-7.3.1.noarch.rpm texlive-extsizes-2017.133.1.4asvn17263-7.3.1.noarch.rpm texlive-extsizes-doc-2017.133.1.4asvn17263-7.3.1.noarch.rpm texlive-facsimile-2017.133.1.0svn21328-7.3.1.noarch.rpm texlive-facsimile-doc-2017.133.1.0svn21328-7.3.1.noarch.rpm texlive-factura-2017.133.3.00svn43470-7.3.1.noarch.rpm texlive-factura-doc-2017.133.3.00svn43470-7.3.1.noarch.rpm texlive-facture-2017.133.1.2.2svn43865-7.3.1.noarch.rpm texlive-facture-doc-2017.133.1.2.2svn43865-7.3.1.noarch.rpm texlive-faktor-2017.133.0.0.1bsvn15878-7.3.1.noarch.rpm texlive-faktor-doc-2017.133.0.0.1bsvn15878-7.3.1.noarch.rpm texlive-fancybox-2017.133.1.4svn18304-7.3.1.noarch.rpm texlive-fancybox-doc-2017.133.1.4svn18304-7.3.1.noarch.rpm texlive-fancyhdr-2017.133.3.9svn44479-7.3.1.noarch.rpm texlive-fancyhdr-doc-2017.133.3.9svn44479-7.3.1.noarch.rpm texlive-fancyhdr-it-2017.133.svn21912-7.3.1.noarch.rpm texlive-fancylabel-2017.133.1.0svn34684-7.3.1.noarch.rpm texlive-fancylabel-doc-2017.133.1.0svn34684-7.3.1.noarch.rpm texlive-fancynum-2017.133.0.0.92svn15878-7.3.1.noarch.rpm texlive-fancynum-doc-2017.133.0.0.92svn15878-7.3.1.noarch.rpm texlive-fancypar-2017.133.1.1svn18018-7.3.1.noarch.rpm texlive-fancypar-doc-2017.133.1.1svn18018-7.3.1.noarch.rpm texlive-fancyref-2017.133.0.0.9csvn15878-7.3.1.noarch.rpm texlive-fancyref-doc-2017.133.0.0.9csvn15878-7.3.1.noarch.rpm texlive-fancyslides-2017.133.1.0svn36263-7.3.1.noarch.rpm texlive-fancyslides-doc-2017.133.1.0svn36263-7.3.1.noarch.rpm texlive-fancytabs-2017.133.1.9svn41549-7.3.1.noarch.rpm texlive-fancytabs-doc-2017.133.1.9svn41549-7.3.1.noarch.rpm texlive-fancytooltips-2017.133.1.8svn27129-7.3.1.noarch.rpm texlive-fancytooltips-doc-2017.133.1.8svn27129-7.3.1.noarch.rpm texlive-fancyvrb-2017.133.2.8svn18492-7.3.1.noarch.rpm texlive-fancyvrb-doc-2017.133.2.8svn18492-7.3.1.noarch.rpm texlive-fandol-2017.133.0.0.3svn37889-7.3.1.noarch.rpm texlive-fandol-doc-2017.133.0.0.3svn37889-7.3.1.noarch.rpm texlive-fandol-fonts-2017.133.0.0.3svn37889-7.3.1.noarch.rpm texlive-fast-diagram-2017.133.1.1svn29264-7.3.1.noarch.rpm texlive-fast-diagram-doc-2017.133.1.1svn29264-7.3.1.noarch.rpm texlive-fbb-2017.133.1.12svn43464-7.3.1.noarch.rpm texlive-fbb-doc-2017.133.1.12svn43464-7.3.1.noarch.rpm texlive-fbb-fonts-2017.133.1.12svn43464-7.3.1.noarch.rpm texlive-fbithesis-2017.133.1.2msvn21340-7.3.1.noarch.rpm texlive-fbithesis-doc-2017.133.1.2msvn21340-7.3.1.noarch.rpm texlive-fbs-2017.133.svn15878-7.3.1.noarch.rpm texlive-fc-2017.133.1.4svn32796-7.3.1.noarch.rpm texlive-fc-doc-2017.133.1.4svn32796-7.3.1.noarch.rpm texlive-fcavtex-2017.133.1.1svn38074-7.3.1.noarch.rpm texlive-fcavtex-doc-2017.133.1.1svn38074-7.3.1.noarch.rpm texlive-fcltxdoc-2017.133.1.0svn24500-7.3.1.noarch.rpm texlive-fcltxdoc-doc-2017.133.1.0svn24500-7.3.1.noarch.rpm texlive-fcolumn-2017.133.1.1.1svn38489-7.3.1.noarch.rpm texlive-fcolumn-doc-2017.133.1.1.1svn38489-7.3.1.noarch.rpm texlive-fdsymbol-2017.133.0.0.8svn26722-7.3.1.noarch.rpm texlive-fdsymbol-doc-2017.133.0.0.8svn26722-7.3.1.noarch.rpm texlive-fdsymbol-fonts-2017.133.0.0.8svn26722-7.3.1.noarch.rpm texlive-featpost-2017.133.0.0.8.8svn35346-7.3.1.noarch.rpm texlive-featpost-doc-2017.133.0.0.8.8svn35346-7.3.1.noarch.rpm texlive-fei-2017.133.3.0.6svn43630-7.3.1.noarch.rpm texlive-fei-doc-2017.133.3.0.6svn43630-7.3.1.noarch.rpm texlive-fenixpar-2017.133.0.0.92svn24730-7.3.1.noarch.rpm texlive-fenixpar-doc-2017.133.0.0.92svn24730-7.3.1.noarch.rpm texlive-fetamont-2017.133.svn43812-7.3.1.noarch.rpm texlive-fetamont-doc-2017.133.svn43812-7.3.1.noarch.rpm texlive-fetamont-fonts-2017.133.svn43812-7.3.1.noarch.rpm texlive-feupphdteses-2017.133.4.0svn30962-7.3.1.noarch.rpm texlive-feupphdteses-doc-2017.133.4.0svn30962-7.3.1.noarch.rpm texlive-feyn-2017.133.0.0.3.3svn15878-7.3.1.noarch.rpm texlive-feyn-doc-2017.133.0.0.3.3svn15878-7.3.1.noarch.rpm texlive-feynmf-2017.133.1.08svn17259-7.3.1.noarch.rpm texlive-feynmf-doc-2017.133.1.08svn17259-7.3.1.noarch.rpm texlive-feynmp-auto-2017.133.1.1svn30223-7.3.1.noarch.rpm texlive-feynmp-auto-doc-2017.133.1.1svn30223-7.3.1.noarch.rpm texlive-ffslides-2017.133.svn38895-7.3.1.noarch.rpm texlive-ffslides-doc-2017.133.svn38895-7.3.1.noarch.rpm texlive-fge-2017.133.1.25svn37628-7.3.1.noarch.rpm texlive-fge-doc-2017.133.1.25svn37628-7.3.1.noarch.rpm texlive-fge-fonts-2017.133.1.25svn37628-7.3.1.noarch.rpm texlive-fgruler-2017.133.1.0svn42966-7.3.1.noarch.rpm texlive-fgruler-doc-2017.133.1.0svn42966-7.3.1.noarch.rpm texlive-fibeamer-2017.133.1.1.7svn44239-7.3.1.noarch.rpm texlive-fibeamer-doc-2017.133.1.1.7svn44239-7.3.1.noarch.rpm texlive-fifinddo-info-2017.133.1.1bsvn29349-7.3.1.noarch.rpm texlive-fifinddo-info-doc-2017.133.1.1bsvn29349-7.3.1.noarch.rpm texlive-fifo-stack-2017.133.1.0svn33288-7.3.1.noarch.rpm texlive-fifo-stack-doc-2017.133.1.0svn33288-7.3.1.noarch.rpm texlive-fig4latex-2017.133.0.0.2svn26313-7.3.1.noarch.rpm texlive-fig4latex-doc-2017.133.0.0.2svn26313-7.3.1.noarch.rpm texlive-figbas-2017.133.1.0.3svn28943-7.3.1.noarch.rpm texlive-figbas-doc-2017.133.1.0.3svn28943-7.3.1.noarch.rpm texlive-figbas-fonts-2017.133.1.0.3svn28943-7.3.1.noarch.rpm texlive-figbib-2017.133.svn19388-7.3.1.noarch.rpm texlive-figbib-doc-2017.133.svn19388-7.3.1.noarch.rpm texlive-figflow-2017.133.svn21462-7.3.1.noarch.rpm texlive-figflow-doc-2017.133.svn21462-7.3.1.noarch.rpm texlive-figsize-2017.133.0.0.1svn18784-7.3.1.noarch.rpm texlive-figsize-doc-2017.133.0.0.1svn18784-7.3.1.noarch.rpm texlive-filecontents-2017.133.1.3svn24250-7.3.1.noarch.rpm texlive-filecontents-doc-2017.133.1.3svn24250-7.3.1.noarch.rpm texlive-filecontentsdef-2017.133.1.2svn42107-7.3.1.noarch.rpm texlive-filecontentsdef-doc-2017.133.1.2svn42107-7.3.1.noarch.rpm texlive-filedate-2017.133.svn29529-7.3.1.noarch.rpm texlive-filedate-doc-2017.133.svn29529-7.3.1.noarch.rpm texlive-filehook-2017.133.0.0.5dsvn24280-7.3.1.noarch.rpm texlive-filehook-doc-2017.133.0.0.5dsvn24280-7.3.1.noarch.rpm texlive-fileinfo-2017.133.0.0.81asvn28421-7.3.1.noarch.rpm texlive-fileinfo-doc-2017.133.0.0.81asvn28421-7.3.1.noarch.rpm texlive-filemod-2017.133.1.2svn24042-7.3.1.noarch.rpm texlive-filemod-doc-2017.133.1.2svn24042-7.3.1.noarch.rpm texlive-finbib-2017.133.svn15878-7.3.1.noarch.rpm texlive-findhyph-2017.133.3.4svn38674-7.3.1.noarch.rpm texlive-findhyph-doc-2017.133.3.4svn38674-7.3.1.noarch.rpm texlive-fink-2017.133.2.2.1svn24329-7.3.1.noarch.rpm texlive-fink-doc-2017.133.2.2.1svn24329-7.3.1.noarch.rpm texlive-finstrut-2017.133.0.0.5svn21719-7.3.1.noarch.rpm texlive-finstrut-doc-2017.133.0.0.5svn21719-7.3.1.noarch.rpm texlive-fira-2017.133.4.2svn42501-7.3.1.noarch.rpm texlive-fira-doc-2017.133.4.2svn42501-7.3.1.noarch.rpm texlive-fira-fonts-2017.133.4.2svn42501-7.3.1.noarch.rpm texlive-first-latex-doc-2017.133.svn15878-7.3.1.noarch.rpm texlive-fitbox-2017.133.1.00svn38139-7.3.1.noarch.rpm texlive-fitbox-doc-2017.133.1.00svn38139-7.3.1.noarch.rpm texlive-fithesis-2017.133.0.0.3.46svn44472-7.3.1.noarch.rpm texlive-fithesis-doc-2017.133.0.0.3.46svn44472-7.3.1.noarch.rpm texlive-fix2col-2017.133.0.0.04svn38770-7.3.1.noarch.rpm texlive-fix2col-doc-2017.133.0.0.04svn38770-7.3.1.noarch.rpm texlive-fixcmex-2017.133.1.0svn38816-7.3.1.noarch.rpm texlive-fixcmex-doc-2017.133.1.0svn38816-7.3.1.noarch.rpm texlive-fixfoot-2017.133.0.0.3asvn17131-7.3.1.noarch.rpm texlive-fixfoot-doc-2017.133.0.0.3asvn17131-7.3.1.noarch.rpm texlive-fixlatvian-2017.133.1asvn21631-7.3.1.noarch.rpm texlive-fixlatvian-doc-2017.133.1asvn21631-7.3.1.noarch.rpm texlive-specs-i-2017-7.3.1.src.rpm openSUSE-SLE-15.3-2021-3534 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - Drop unformatted log message about log permissions. (bsc#1190821) libpacemaker-devel-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-4.13.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.13.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.13.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.13.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-4.13.1.aarch64.rpm openSUSE-SLE-15.3-2021-3542 moderate SUSE Updates openSUSE-SLE 15.3 This update for openscap fixes the following issues: - Since upstream has moved to Python 3, switch the BuildRequires from 'python-devel' to 'python3-devel'. - Add definitions for SUSE Linux Enterprise Server, SUSE Linux Enterprise Desktop, openSUSE Tumbleweed, openSUSE Leap and Fedora to the CPE dictionary. (bsc#1186735) - Add updated definitions for openSUSE Tumbleweed, openSUSE Leap and Wind River Linux using the Open Vulnerability and Assessment Language. (bsc#1186735) - openscap 1.3.5 - New features - Made 'schematron-based' validation enabled by default for validate command of 'oval' and 'xccdf' modules - Added SCAP 1.3 source data stream Schematron - Added XML Signature Validation - Added '--enforce-signature' option for eval, guide, and fix modules - Added <content> entity support (OVAL/yamlfilecontent) - Allowed to clamp mtime to SOURCE_DATE_EPOCH - Added severity and role attributes - Added support for requires/conflicts elements of the Rule and Group (XCCDF) - Added Kubernetes remediation to HTML report - Maintenance, bug fix - Fixed CMake warnings - Made 'gpfs', 'proc' and 'sysfs' filesystems non-local - Fixed handling of '--arg=val'-styled common options - Documented used environment variables - Updated man page and help texts - Added '--skip-validation' option synonym for '--skip-valid' - Fixed behavior of StateType operator - Fixed coverity warnings - Ignoring namespace in XPath expressions - Fixed how 'oval_probe_ext_eval' checks absence of the response from the probe (obtrusive data warning) - Described SWID tags detection - Improved documentation about '--stig-viewer' option - File probe behaviour fixed (symlink traversal now behaves as defined by OVAL) - Fixed multiple segfaults and broken test in '--stig-viewer' feature - Added dpkg version comparison algorithm - Fixed 'TestResult/benchmark/@href' attribute - Fixed memory allocation - Fixed field names for cases where key selection section is followed by a set section (probes/yamfilecontent) - Changing hard coded libperl path in favor of FindPerlLibs method - Check local filesystems when using 'filepath' element libopenscap25-1.3.5-3.6.1.x86_64.rpm libopenscap_sce25-1.3.5-3.6.1.x86_64.rpm openscap-1.3.5-3.6.1.src.rpm openscap-1.3.5-3.6.1.x86_64.rpm openscap-content-1.3.5-3.6.1.x86_64.rpm openscap-devel-1.3.5-3.6.1.x86_64.rpm openscap-docker-1.3.5-3.6.1.x86_64.rpm openscap-utils-1.3.5-3.6.1.x86_64.rpm libopenscap25-1.3.5-3.6.1.s390x.rpm libopenscap_sce25-1.3.5-3.6.1.s390x.rpm openscap-1.3.5-3.6.1.s390x.rpm openscap-content-1.3.5-3.6.1.s390x.rpm openscap-devel-1.3.5-3.6.1.s390x.rpm openscap-docker-1.3.5-3.6.1.s390x.rpm openscap-utils-1.3.5-3.6.1.s390x.rpm libopenscap25-1.3.5-3.6.1.ppc64le.rpm libopenscap_sce25-1.3.5-3.6.1.ppc64le.rpm openscap-1.3.5-3.6.1.ppc64le.rpm openscap-content-1.3.5-3.6.1.ppc64le.rpm openscap-devel-1.3.5-3.6.1.ppc64le.rpm openscap-docker-1.3.5-3.6.1.ppc64le.rpm openscap-utils-1.3.5-3.6.1.ppc64le.rpm libopenscap25-1.3.5-3.6.1.aarch64.rpm libopenscap_sce25-1.3.5-3.6.1.aarch64.rpm openscap-1.3.5-3.6.1.aarch64.rpm openscap-content-1.3.5-3.6.1.aarch64.rpm openscap-devel-1.3.5-3.6.1.aarch64.rpm openscap-docker-1.3.5-3.6.1.aarch64.rpm openscap-utils-1.3.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3467 important SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: A feature was added: - Add auth_els plugin to support Marvell FC-SP encryption (jsc#SLE-20151) Security issues fixed: - CVE-2021-41991: Fixed an integer overflow when replacing certificates in cache. (bsc#1191435) - CVE-2021-41990: Fixed an integer Overflow in the gmp Plugin. (bsc#1191367) strongswan-5.8.2-11.21.1.src.rpm strongswan-5.8.2-11.21.1.x86_64.rpm strongswan-doc-5.8.2-11.21.1.noarch.rpm strongswan-hmac-5.8.2-11.21.1.x86_64.rpm strongswan-ipsec-5.8.2-11.21.1.x86_64.rpm strongswan-libs0-5.8.2-11.21.1.x86_64.rpm strongswan-mysql-5.8.2-11.21.1.x86_64.rpm strongswan-nm-5.8.2-11.21.1.x86_64.rpm strongswan-sqlite-5.8.2-11.21.1.x86_64.rpm strongswan-5.8.2-11.21.1.s390x.rpm strongswan-hmac-5.8.2-11.21.1.s390x.rpm strongswan-ipsec-5.8.2-11.21.1.s390x.rpm strongswan-libs0-5.8.2-11.21.1.s390x.rpm strongswan-mysql-5.8.2-11.21.1.s390x.rpm strongswan-nm-5.8.2-11.21.1.s390x.rpm strongswan-sqlite-5.8.2-11.21.1.s390x.rpm strongswan-5.8.2-11.21.1.ppc64le.rpm strongswan-hmac-5.8.2-11.21.1.ppc64le.rpm strongswan-ipsec-5.8.2-11.21.1.ppc64le.rpm strongswan-libs0-5.8.2-11.21.1.ppc64le.rpm strongswan-mysql-5.8.2-11.21.1.ppc64le.rpm strongswan-nm-5.8.2-11.21.1.ppc64le.rpm strongswan-sqlite-5.8.2-11.21.1.ppc64le.rpm strongswan-5.8.2-11.21.1.aarch64.rpm strongswan-hmac-5.8.2-11.21.1.aarch64.rpm strongswan-ipsec-5.8.2-11.21.1.aarch64.rpm strongswan-libs0-5.8.2-11.21.1.aarch64.rpm strongswan-mysql-5.8.2-11.21.1.aarch64.rpm strongswan-nm-5.8.2-11.21.1.aarch64.rpm strongswan-sqlite-5.8.2-11.21.1.aarch64.rpm openSUSE-SLE-15.3-2021-3490 moderate SUSE Updates openSUSE-SLE 15.3 This update for ncurses fixes the following issues: - CVE-2021-39537: Fixed an heap-based buffer overflow in _nc_captoinfo. (bsc#1190793) libncurses5-32bit-6.1-5.9.1.x86_64.rpm libncurses5-6.1-5.9.1.x86_64.rpm libncurses6-32bit-6.1-5.9.1.x86_64.rpm libncurses6-6.1-5.9.1.x86_64.rpm ncurses-6.1-5.9.1.src.rpm ncurses-devel-32bit-6.1-5.9.1.x86_64.rpm ncurses-devel-6.1-5.9.1.x86_64.rpm ncurses-utils-6.1-5.9.1.x86_64.rpm ncurses5-devel-32bit-6.1-5.9.1.x86_64.rpm ncurses5-devel-6.1-5.9.1.x86_64.rpm tack-6.1-5.9.1.x86_64.rpm terminfo-6.1-5.9.1.x86_64.rpm terminfo-base-6.1-5.9.1.x86_64.rpm terminfo-iterm-6.1-5.9.1.x86_64.rpm terminfo-screen-6.1-5.9.1.x86_64.rpm libncurses5-6.1-5.9.1.s390x.rpm libncurses6-6.1-5.9.1.s390x.rpm ncurses-devel-6.1-5.9.1.s390x.rpm ncurses-utils-6.1-5.9.1.s390x.rpm ncurses5-devel-6.1-5.9.1.s390x.rpm tack-6.1-5.9.1.s390x.rpm terminfo-6.1-5.9.1.s390x.rpm terminfo-base-6.1-5.9.1.s390x.rpm terminfo-iterm-6.1-5.9.1.s390x.rpm terminfo-screen-6.1-5.9.1.s390x.rpm libncurses5-6.1-5.9.1.ppc64le.rpm libncurses6-6.1-5.9.1.ppc64le.rpm ncurses-devel-6.1-5.9.1.ppc64le.rpm ncurses-utils-6.1-5.9.1.ppc64le.rpm ncurses5-devel-6.1-5.9.1.ppc64le.rpm tack-6.1-5.9.1.ppc64le.rpm terminfo-6.1-5.9.1.ppc64le.rpm terminfo-base-6.1-5.9.1.ppc64le.rpm terminfo-iterm-6.1-5.9.1.ppc64le.rpm terminfo-screen-6.1-5.9.1.ppc64le.rpm libncurses5-6.1-5.9.1.aarch64.rpm libncurses6-6.1-5.9.1.aarch64.rpm ncurses-devel-6.1-5.9.1.aarch64.rpm ncurses-utils-6.1-5.9.1.aarch64.rpm ncurses5-devel-6.1-5.9.1.aarch64.rpm tack-6.1-5.9.1.aarch64.rpm terminfo-6.1-5.9.1.aarch64.rpm terminfo-base-6.1-5.9.1.aarch64.rpm terminfo-iterm-6.1-5.9.1.aarch64.rpm terminfo-screen-6.1-5.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3483 moderate SUSE Updates openSUSE-SLE 15.3 This update for saptune fixes the following issues: Update saptune from version 2.0.3 to version 3.0.0 (jsc#SLE-20985) - This will be additional reflected in the saptune version found in '/etc/sysconfig/saptune' '(SAPTUNE_VERSION)' - Strengthen configuration process with staging, checks of external changes and expansion of automation to new platforms (Azure, AWS) and hardware specifics (jsc#SLE-20985) - Remove saptune version 1 (jsc#SLE-10823, jsc#SLE-10842) - Remove usage of 'tuned' from saptune - Add an own systemd service file for saptune to 'start/stop' tuning of parameter values during a reboot of the system. - Add a new saptune action 'service' to handle the 'saptune.service' supporting 'start/stop/enable/disable/status'. - The saptune action 'daemon', which handled 'tuned.service' in the past, is now flagged as 'deprecated' and internally linked to the new action 'service'. (jsc#SLE-5589, jsc#SLE-5588, jsc#SLE-6457) - Add a sanity check to detect Note definition files which do not exist anymore. (bsc#1149205) This can happen when a Note is renamed or deleted, but without reverting the Note before. saptune will now print an error message, remove the Note from the tracking variables in '/etc/sysconfig/saptune' and try to revert the related parameter settings. - Validate if the json input file is empty and handle left-over files from the migration from saptune v1 to saptune v2 (bsc#1167618) - To support system parameters only relevant for specific SUSE Linux Enterprise Server releases, service packs and/or hardware architectures saptune now supports 'tagged' sections inside the Note definition files. (jsc#SLE-13246, jsc#SLE-13245) - New kernel requirement for Power added to SAP-Note 2205917 and 2684254 (bsc#1167416) SAP Note 2205917 updated to Version 61 SAP Note 2684254 updated to Version 15 - SAP Note 2382421 updated to Version 37 (bsc#1170672) - Move all 'not-well-defined' parameters from the 'reminder' section into the 'sysctl' section, but with 'empty' values. - Use an override file to define the values fitting your system requirements - Support empty parameter values in the Note definition files and not only in the override file. (bsc#1170672, jsc#TEAM-1702) - This is needed for the support of SAP Notes like 2382421, so that the customer is able to simply use an override file to define some special parameters instead of using a customer specific Note definition file. - Report an 'error' instead of 'info' and set the exit code to '1', if we reject the apply of a solution (bsc#1167213) - Skip perf bias change if secure boot is enabled. (bsc#1176243) - When a system is in lockdown mode, i.e., Secure Boot is enabled, MSR cannot be altered in user-space. So check, if Secure Boot is enabled using the mokutil utility and skip setting the perf bias in case it is. - Rework the internal block device handling to speed up the apply of block device related tunings on systems with a high number of block devices. (bsc#1178207) - Change block device handling to handle multipath devices correctly. Only the DM multipath devices will be used for the settings, but not its paths. (bsc#1179275) - fixed wrong comparison used for setting FORCE_LATENCY (bsc#1185702) - add keyword 'all' to the 'rpm' section description in the man page saptune-note(5). (bsc#1182287) - support note definition versions containing digits, upper-case and lower-case letters, dots, underscores, minus and plus signs. (bsc#1182289) - fixed issue with 'verify' operation and parameter 'VSZ_TMPFS_PERCENT'. As this parameter is only used to calculate the value of 'ShmFileSystemSizeMB' (if it is not set to a value >0 in the Note definition file) it will not be checked and compared during the saptune operation 'verify'. A footnote is pointing this out. (bsc#1182009) - SAP Note 1771258 update nofile values (bsc#1164720) - SAP Note 2684254 updated to Version 20 SAP Note 2578899 updated to Version 39 SAP Note 1680803 updated to Version 26 - enhancements for saptune version 3 (jsc#SLE-16972) - Implement a lock to avoid multiple instances of saptune running in parallel. (jsc#TEAM-1700) - Support for non-colorized output (jsc#TEAM-1679) - If redirecting the output from saptune to a pipe, you no longer need to deal with the 'ugly' control sequences for the colorized output. - Add enable/disable for systemd units and support all systemd unit types in section [service] (jsc#TEAM-1701) - remove script '/usr/share/doc/packages/saptune/sapconf2saptune' and the associated man page (jsc#TEAM-1707) - implement staging of Note definition file and solution definitions. (jsc#TEAM-1844) - The idea is to freeze the saptune configuration to avoid config changes on package update when adding/removing/changing notes or solutions within the package - support custom solutions and override files for solutions. (jsc#TEAM-1706) - Partners and customers will now be able to define their own solution definitions by using files in '/etc/saptune/extra' or to override the shipped solution definitions by using override files in '/etc/saptune/override' - support for device specific configurations (jsc#TEAM-1728) - only supported for the [block] section, tags are 'vendor' and 'model' to support special block devices of a dedicated hardware vendor or a dedicated hardware model - add support for AZURE cloud (SAP Note 2993054) (jsc#TEAM-2676) - add support for AWS cloud (SAP Note 1656250) (jsc#TEAM-1754, jsc#TEAM-1755) - add NVMe support to the block device handling to support AWS (jsc#TEAM-2675) - add SAP Note 3024346 (a NetApp note) (jsc#TEAM-3454) - rework daemon and service actions (jsc#TEAM-3154) - add support for 'read_ahead_kb' and 'max_sectors_kb' to the [block] section (jsc#TEAM-1699) - add a warning to the reminder section of SAP Note 2382421 regarding iSCSI devices and setting of 'net.ipv4.tcp_syn_retries' (jsc#TEAM-1705) - For the actions 'note customise' and 'note create' check, if the customer has changed something during the editor session. If not, remove the temporary created note definition file. (jsc#TEAM-825) - add support for [sys] section and handle double configurations for parameters defined in the [sys] section (jsc#TEAM-3342) - check system sysctl config files as mentioned in the comments of '/etc/sysctl.conf' and in man page 'sysctl.conf(5)' for 'sysctl' parameters currently set by saptune notes. Print a warning and a footnote for 'verify' and 'customize'. (jsc#TEAM-1696) - add support for [filesystem] section only check filesystem mount options, not modify. Starting with filesystem type 'xfs' (jsc#TEAM-4093) - add SAP Note 900929 for SAP Netweaver workloads. (jsc#TEAM-4386) - It's the equivalent to the HANA Note 1980196. - move state files from '/var/lib/saptune' to '/run/saptune' to solve the problem of state files surviving a reboot. - add '/sbin/saptune_check' - add the description of the solution definitions shipped with saptune to the man page saptune(8) (jsc#TEAM-4260) saptune-3.0.0-8.16.1.src.rpm saptune-3.0.0-8.16.1.x86_64.rpm saptune-3.0.0-8.16.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3465 moderate SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv contains the following fixes: - Update to version 8.1.2 (bsc#1190250) + Place certificate key in proper destination - Update to version 8.1.1 (bsc#1190250) + Use a cross-filesystem compatible method to move certificates cloud-regionsrv-8.1.2-11.6.1.noarch.rpm cloud-regionsrv-8.1.2-11.6.1.src.rpm cloud-regionsrv-generic-config-1.0.0-11.6.1.noarch.rpm openSUSE-SLE-15.3-2021-3527 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireguard-tools fixes the following issues: - Removed world-readable permissions from /etc/wireguard (bsc#1191224) wireguard-tools-1.0.20200827-5.9.1.src.rpm wireguard-tools-1.0.20200827-5.9.1.x86_64.rpm wireguard-tools-1.0.20200827-5.9.1.s390x.rpm wireguard-tools-1.0.20200827-5.9.1.ppc64le.rpm wireguard-tools-1.0.20200827-5.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3610 low SUSE Updates openSUSE-SLE 15.3 This update for slurm_20_11 fixes the following issue: - Adds libslurm36-debuginfo to the repositores. (bsc#1191666) libnss_slurm2_20_11-20.11.7-6.7.1.x86_64.rpm libpmi0_20_11-20.11.7-6.7.1.x86_64.rpm perl-slurm_20_11-20.11.7-6.7.1.x86_64.rpm slurm_20_11-20.11.7-6.7.1.src.rpm slurm_20_11-20.11.7-6.7.1.x86_64.rpm slurm_20_11-auth-none-20.11.7-6.7.1.x86_64.rpm slurm_20_11-config-20.11.7-6.7.1.x86_64.rpm slurm_20_11-config-man-20.11.7-6.7.1.x86_64.rpm slurm_20_11-cray-20.11.7-6.7.1.x86_64.rpm slurm_20_11-devel-20.11.7-6.7.1.x86_64.rpm slurm_20_11-doc-20.11.7-6.7.1.x86_64.rpm slurm_20_11-hdf5-20.11.7-6.7.1.x86_64.rpm slurm_20_11-lua-20.11.7-6.7.1.x86_64.rpm slurm_20_11-munge-20.11.7-6.7.1.x86_64.rpm slurm_20_11-node-20.11.7-6.7.1.x86_64.rpm slurm_20_11-openlava-20.11.7-6.7.1.x86_64.rpm slurm_20_11-pam_slurm-20.11.7-6.7.1.x86_64.rpm slurm_20_11-plugins-20.11.7-6.7.1.x86_64.rpm slurm_20_11-rest-20.11.7-6.7.1.x86_64.rpm slurm_20_11-seff-20.11.7-6.7.1.x86_64.rpm slurm_20_11-sjstat-20.11.7-6.7.1.x86_64.rpm slurm_20_11-slurmdbd-20.11.7-6.7.1.x86_64.rpm slurm_20_11-sql-20.11.7-6.7.1.x86_64.rpm slurm_20_11-sview-20.11.7-6.7.1.x86_64.rpm slurm_20_11-torque-20.11.7-6.7.1.x86_64.rpm slurm_20_11-webdoc-20.11.7-6.7.1.x86_64.rpm libnss_slurm2_20_11-20.11.7-6.7.1.s390x.rpm libpmi0_20_11-20.11.7-6.7.1.s390x.rpm perl-slurm_20_11-20.11.7-6.7.1.s390x.rpm slurm_20_11-20.11.7-6.7.1.s390x.rpm slurm_20_11-auth-none-20.11.7-6.7.1.s390x.rpm slurm_20_11-config-20.11.7-6.7.1.s390x.rpm slurm_20_11-config-man-20.11.7-6.7.1.s390x.rpm slurm_20_11-cray-20.11.7-6.7.1.s390x.rpm slurm_20_11-devel-20.11.7-6.7.1.s390x.rpm slurm_20_11-doc-20.11.7-6.7.1.s390x.rpm slurm_20_11-hdf5-20.11.7-6.7.1.s390x.rpm slurm_20_11-lua-20.11.7-6.7.1.s390x.rpm slurm_20_11-munge-20.11.7-6.7.1.s390x.rpm slurm_20_11-node-20.11.7-6.7.1.s390x.rpm slurm_20_11-openlava-20.11.7-6.7.1.s390x.rpm slurm_20_11-pam_slurm-20.11.7-6.7.1.s390x.rpm slurm_20_11-plugins-20.11.7-6.7.1.s390x.rpm slurm_20_11-rest-20.11.7-6.7.1.s390x.rpm slurm_20_11-seff-20.11.7-6.7.1.s390x.rpm slurm_20_11-sjstat-20.11.7-6.7.1.s390x.rpm slurm_20_11-slurmdbd-20.11.7-6.7.1.s390x.rpm slurm_20_11-sql-20.11.7-6.7.1.s390x.rpm slurm_20_11-sview-20.11.7-6.7.1.s390x.rpm slurm_20_11-torque-20.11.7-6.7.1.s390x.rpm slurm_20_11-webdoc-20.11.7-6.7.1.s390x.rpm libnss_slurm2_20_11-20.11.7-6.7.1.ppc64le.rpm libpmi0_20_11-20.11.7-6.7.1.ppc64le.rpm perl-slurm_20_11-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-auth-none-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-config-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-config-man-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-cray-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-devel-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-doc-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-hdf5-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-lua-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-munge-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-node-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-openlava-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-pam_slurm-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-plugins-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-rest-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-seff-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-sjstat-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-slurmdbd-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-sql-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-sview-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-torque-20.11.7-6.7.1.ppc64le.rpm slurm_20_11-webdoc-20.11.7-6.7.1.ppc64le.rpm libnss_slurm2_20_11-20.11.7-6.7.1.aarch64.rpm libpmi0_20_11-20.11.7-6.7.1.aarch64.rpm perl-slurm_20_11-20.11.7-6.7.1.aarch64.rpm slurm_20_11-20.11.7-6.7.1.aarch64.rpm slurm_20_11-auth-none-20.11.7-6.7.1.aarch64.rpm slurm_20_11-config-20.11.7-6.7.1.aarch64.rpm slurm_20_11-config-man-20.11.7-6.7.1.aarch64.rpm slurm_20_11-cray-20.11.7-6.7.1.aarch64.rpm slurm_20_11-devel-20.11.7-6.7.1.aarch64.rpm slurm_20_11-doc-20.11.7-6.7.1.aarch64.rpm slurm_20_11-hdf5-20.11.7-6.7.1.aarch64.rpm slurm_20_11-lua-20.11.7-6.7.1.aarch64.rpm slurm_20_11-munge-20.11.7-6.7.1.aarch64.rpm slurm_20_11-node-20.11.7-6.7.1.aarch64.rpm slurm_20_11-openlava-20.11.7-6.7.1.aarch64.rpm slurm_20_11-pam_slurm-20.11.7-6.7.1.aarch64.rpm slurm_20_11-plugins-20.11.7-6.7.1.aarch64.rpm slurm_20_11-rest-20.11.7-6.7.1.aarch64.rpm slurm_20_11-seff-20.11.7-6.7.1.aarch64.rpm slurm_20_11-sjstat-20.11.7-6.7.1.aarch64.rpm slurm_20_11-slurmdbd-20.11.7-6.7.1.aarch64.rpm slurm_20_11-sql-20.11.7-6.7.1.aarch64.rpm slurm_20_11-sview-20.11.7-6.7.1.aarch64.rpm slurm_20_11-torque-20.11.7-6.7.1.aarch64.rpm slurm_20_11-webdoc-20.11.7-6.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3570 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Fix file copying when using relurl:// and file:// naming schemes (bsc#1191160) yast2-installation-4.3.43-3.13.1.noarch.rpm yast2-installation-4.3.43-3.13.1.src.rpm openSUSE-SLE-15.3-2021-3529 moderate SUSE Updates openSUSE-SLE 15.3 This update for pcre fixes the following issues: Update pcre to version 8.45: - CVE-2020-14155: Fixed integer overflow via a large number after a '(?C' substring (bsc#1172974). - CVE-2019-20838: Fixed buffer over-read in JIT compiler (bsc#1172973) libpcre1-32bit-8.45-20.10.1.x86_64.rpm libpcre1-8.45-20.10.1.x86_64.rpm libpcre16-0-32bit-8.45-20.10.1.x86_64.rpm libpcre16-0-8.45-20.10.1.x86_64.rpm libpcrecpp0-32bit-8.45-20.10.1.x86_64.rpm libpcrecpp0-8.45-20.10.1.x86_64.rpm libpcreposix0-32bit-8.45-20.10.1.x86_64.rpm libpcreposix0-8.45-20.10.1.x86_64.rpm pcre-8.45-20.10.1.src.rpm pcre-devel-8.45-20.10.1.x86_64.rpm pcre-devel-static-8.45-20.10.1.x86_64.rpm pcre-doc-8.45-20.10.1.noarch.rpm pcre-tools-8.45-20.10.1.x86_64.rpm libpcre1-8.45-20.10.1.s390x.rpm libpcre16-0-8.45-20.10.1.s390x.rpm libpcrecpp0-8.45-20.10.1.s390x.rpm libpcreposix0-8.45-20.10.1.s390x.rpm pcre-devel-8.45-20.10.1.s390x.rpm pcre-devel-static-8.45-20.10.1.s390x.rpm pcre-tools-8.45-20.10.1.s390x.rpm libpcre1-8.45-20.10.1.ppc64le.rpm libpcre16-0-8.45-20.10.1.ppc64le.rpm libpcrecpp0-8.45-20.10.1.ppc64le.rpm libpcreposix0-8.45-20.10.1.ppc64le.rpm pcre-devel-8.45-20.10.1.ppc64le.rpm pcre-devel-static-8.45-20.10.1.ppc64le.rpm pcre-tools-8.45-20.10.1.ppc64le.rpm libpcre1-8.45-20.10.1.aarch64.rpm libpcre16-0-8.45-20.10.1.aarch64.rpm libpcrecpp0-8.45-20.10.1.aarch64.rpm libpcreposix0-8.45-20.10.1.aarch64.rpm pcre-devel-8.45-20.10.1.aarch64.rpm pcre-devel-static-8.45-20.10.1.aarch64.rpm pcre-tools-8.45-20.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-3521 moderate SUSE Updates openSUSE-SLE 15.3 This update for ffmpeg fixes the following issues: - CVE-2021-3566: Fixed information leak (bsc#1189166). - CVE-2021-38093: Fixed integer overflow vulnerability in filter_robert() (bsc#1190734) - CVE-2021-38092: Fixed integer overflow vulnerability in filter_prewitt() (bsc#1190733) - CVE-2021-38094: Fixed integer overflow vulnerability in filter_sobel() (bsc#1190735) - CVE-2020-22037: Fixed denial of service vulnerability caused by memory leak in avcodec_alloc_context3() (bsc#1186756) - CVE-2020-35965: Fixed out-of-bounds write in decode_frame() (bsc#1187852) - CVE-2020-20892: Fixed an issue with filter_frame() (bsc#1190719) - CVE-2020-20891: Fixed a buffer overflow vulnerability in config_input() (bsc#1190718) - CVE-2020-20895: Fixed a buffer overflow vulnerability in function filter_vertically_##name (bsc#1190722) - CVE-2020-20896: Fixed an issue with latm_write_packet() (bsc#1190723) - CVE-2020-20899: Fixed a buffer overflow vulnerability in config_props() (bsc#1190726) - CVE-2020-20902: Fixed an out-of-bounds read vulnerabilit long_term_filter() (bsc#1190729) ffmpeg-3.4.2-11.17.1.src.rpm ffmpeg-3.4.2-11.17.1.x86_64.rpm ffmpeg-private-devel-3.4.2-11.17.1.x86_64.rpm libavcodec-devel-3.4.2-11.17.1.x86_64.rpm libavcodec57-3.4.2-11.17.1.x86_64.rpm libavcodec57-32bit-3.4.2-11.17.1.x86_64.rpm libavdevice-devel-3.4.2-11.17.1.x86_64.rpm libavdevice57-3.4.2-11.17.1.x86_64.rpm libavdevice57-32bit-3.4.2-11.17.1.x86_64.rpm libavfilter-devel-3.4.2-11.17.1.x86_64.rpm libavfilter6-3.4.2-11.17.1.x86_64.rpm libavfilter6-32bit-3.4.2-11.17.1.x86_64.rpm libavformat-devel-3.4.2-11.17.1.x86_64.rpm libavformat57-3.4.2-11.17.1.x86_64.rpm libavformat57-32bit-3.4.2-11.17.1.x86_64.rpm libavresample-devel-3.4.2-11.17.1.x86_64.rpm libavresample3-3.4.2-11.17.1.x86_64.rpm libavresample3-32bit-3.4.2-11.17.1.x86_64.rpm libavutil-devel-3.4.2-11.17.1.x86_64.rpm libavutil55-3.4.2-11.17.1.x86_64.rpm libavutil55-32bit-3.4.2-11.17.1.x86_64.rpm libpostproc-devel-3.4.2-11.17.1.x86_64.rpm libpostproc54-3.4.2-11.17.1.x86_64.rpm libpostproc54-32bit-3.4.2-11.17.1.x86_64.rpm libswresample-devel-3.4.2-11.17.1.x86_64.rpm libswresample2-3.4.2-11.17.1.x86_64.rpm libswresample2-32bit-3.4.2-11.17.1.x86_64.rpm libswscale-devel-3.4.2-11.17.1.x86_64.rpm libswscale4-3.4.2-11.17.1.x86_64.rpm libswscale4-32bit-3.4.2-11.17.1.x86_64.rpm ffmpeg-3.4.2-11.17.1.s390x.rpm ffmpeg-private-devel-3.4.2-11.17.1.s390x.rpm libavcodec-devel-3.4.2-11.17.1.s390x.rpm libavcodec57-3.4.2-11.17.1.s390x.rpm libavdevice-devel-3.4.2-11.17.1.s390x.rpm libavdevice57-3.4.2-11.17.1.s390x.rpm libavfilter-devel-3.4.2-11.17.1.s390x.rpm libavfilter6-3.4.2-11.17.1.s390x.rpm libavformat-devel-3.4.2-11.17.1.s390x.rpm libavformat57-3.4.2-11.17.1.s390x.rpm libavresample-devel-3.4.2-11.17.1.s390x.rpm libavresample3-3.4.2-11.17.1.s390x.rpm libavutil-devel-3.4.2-11.17.1.s390x.rpm libavutil55-3.4.2-11.17.1.s390x.rpm libpostproc-devel-3.4.2-11.17.1.s390x.rpm libpostproc54-3.4.2-11.17.1.s390x.rpm libswresample-devel-3.4.2-11.17.1.s390x.rpm libswresample2-3.4.2-11.17.1.s390x.rpm libswscale-devel-3.4.2-11.17.1.s390x.rpm libswscale4-3.4.2-11.17.1.s390x.rpm ffmpeg-3.4.2-11.17.1.ppc64le.rpm ffmpeg-private-devel-3.4.2-11.17.1.ppc64le.rpm libavcodec-devel-3.4.2-11.17.1.ppc64le.rpm libavcodec57-3.4.2-11.17.1.ppc64le.rpm libavdevice-devel-3.4.2-11.17.1.ppc64le.rpm libavdevice57-3.4.2-11.17.1.ppc64le.rpm libavfilter-devel-3.4.2-11.17.1.ppc64le.rpm libavfilter6-3.4.2-11.17.1.ppc64le.rpm libavformat-devel-3.4.2-11.17.1.ppc64le.rpm libavformat57-3.4.2-11.17.1.ppc64le.rpm libavresample-devel-3.4.2-11.17.1.ppc64le.rpm libavresample3-3.4.2-11.17.1.ppc64le.rpm libavutil-devel-3.4.2-11.17.1.ppc64le.rpm libavutil55-3.4.2-11.17.1.ppc64le.rpm libpostproc-devel-3.4.2-11.17.1.ppc64le.rpm libpostproc54-3.4.2-11.17.1.ppc64le.rpm libswresample-devel-3.4.2-11.17.1.ppc64le.rpm libswresample2-3.4.2-11.17.1.ppc64le.rpm libswscale-devel-3.4.2-11.17.1.ppc64le.rpm libswscale4-3.4.2-11.17.1.ppc64le.rpm ffmpeg-3.4.2-11.17.1.aarch64.rpm ffmpeg-private-devel-3.4.2-11.17.1.aarch64.rpm libavcodec-devel-3.4.2-11.17.1.aarch64.rpm libavcodec57-3.4.2-11.17.1.aarch64.rpm libavdevice-devel-3.4.2-11.17.1.aarch64.rpm libavdevice57-3.4.2-11.17.1.aarch64.rpm libavfilter-devel-3.4.2-11.17.1.aarch64.rpm libavfilter6-3.4.2-11.17.1.aarch64.rpm libavformat-devel-3.4.2-11.17.1.aarch64.rpm libavformat57-3.4.2-11.17.1.aarch64.rpm libavresample-devel-3.4.2-11.17.1.aarch64.rpm libavresample3-3.4.2-11.17.1.aarch64.rpm libavutil-devel-3.4.2-11.17.1.aarch64.rpm libavutil55-3.4.2-11.17.1.aarch64.rpm libpostproc-devel-3.4.2-11.17.1.aarch64.rpm libpostproc54-3.4.2-11.17.1.aarch64.rpm libswresample-devel-3.4.2-11.17.1.aarch64.rpm libswresample2-3.4.2-11.17.1.aarch64.rpm libswscale-devel-3.4.2-11.17.1.aarch64.rpm libswscale4-3.4.2-11.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3605 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938) Non-security issues fixed: - Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234) qemu-5.2.0-106.4.src.rpm qemu-5.2.0-106.4.x86_64.rpm qemu-arm-5.2.0-106.4.x86_64.rpm qemu-audio-alsa-5.2.0-106.4.x86_64.rpm qemu-audio-pa-5.2.0-106.4.x86_64.rpm qemu-audio-spice-5.2.0-106.4.x86_64.rpm qemu-block-curl-5.2.0-106.4.x86_64.rpm qemu-block-dmg-5.2.0-106.4.x86_64.rpm qemu-block-gluster-5.2.0-106.4.x86_64.rpm qemu-block-iscsi-5.2.0-106.4.x86_64.rpm qemu-block-nfs-5.2.0-106.4.x86_64.rpm qemu-block-rbd-5.2.0-106.4.x86_64.rpm qemu-block-ssh-5.2.0-106.4.x86_64.rpm qemu-chardev-baum-5.2.0-106.4.x86_64.rpm qemu-chardev-spice-5.2.0-106.4.x86_64.rpm qemu-extra-5.2.0-106.4.x86_64.rpm qemu-guest-agent-5.2.0-106.4.x86_64.rpm qemu-hw-display-qxl-5.2.0-106.4.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-106.4.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-106.4.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-106.4.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-106.4.x86_64.rpm qemu-hw-usb-redirect-5.2.0-106.4.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-106.4.x86_64.rpm qemu-ipxe-1.0.0+-106.4.noarch.rpm qemu-ivshmem-tools-5.2.0-106.4.x86_64.rpm qemu-ksm-5.2.0-106.4.x86_64.rpm qemu-kvm-5.2.0-106.4.x86_64.rpm qemu-lang-5.2.0-106.4.x86_64.rpm qemu-linux-user-5.2.0-106.3.src.rpm qemu-linux-user-5.2.0-106.3.x86_64.rpm qemu-microvm-5.2.0-106.4.noarch.rpm qemu-ppc-5.2.0-106.4.x86_64.rpm qemu-s390x-5.2.0-106.4.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-106.4.noarch.rpm qemu-sgabios-8-106.4.noarch.rpm qemu-skiboot-5.2.0-106.4.noarch.rpm qemu-testsuite-5.2.0-106.3.src.rpm qemu-testsuite-5.2.0-106.3.x86_64.rpm qemu-tools-5.2.0-106.4.x86_64.rpm qemu-ui-curses-5.2.0-106.4.x86_64.rpm qemu-ui-gtk-5.2.0-106.4.x86_64.rpm qemu-ui-opengl-5.2.0-106.4.x86_64.rpm qemu-ui-spice-app-5.2.0-106.4.x86_64.rpm qemu-ui-spice-core-5.2.0-106.4.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-106.4.noarch.rpm qemu-vhost-user-gpu-5.2.0-106.4.x86_64.rpm qemu-x86-5.2.0-106.4.x86_64.rpm qemu-5.2.0-106.4.s390x.rpm qemu-arm-5.2.0-106.4.s390x.rpm qemu-audio-alsa-5.2.0-106.4.s390x.rpm qemu-audio-pa-5.2.0-106.4.s390x.rpm qemu-audio-spice-5.2.0-106.4.s390x.rpm qemu-block-curl-5.2.0-106.4.s390x.rpm qemu-block-dmg-5.2.0-106.4.s390x.rpm qemu-block-gluster-5.2.0-106.4.s390x.rpm qemu-block-iscsi-5.2.0-106.4.s390x.rpm qemu-block-nfs-5.2.0-106.4.s390x.rpm qemu-block-rbd-5.2.0-106.4.s390x.rpm qemu-block-ssh-5.2.0-106.4.s390x.rpm qemu-chardev-baum-5.2.0-106.4.s390x.rpm qemu-chardev-spice-5.2.0-106.4.s390x.rpm qemu-extra-5.2.0-106.4.s390x.rpm qemu-guest-agent-5.2.0-106.4.s390x.rpm qemu-hw-display-qxl-5.2.0-106.4.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-106.4.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-106.4.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-106.4.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-106.4.s390x.rpm qemu-hw-usb-redirect-5.2.0-106.4.s390x.rpm qemu-hw-usb-smartcard-5.2.0-106.4.s390x.rpm qemu-ivshmem-tools-5.2.0-106.4.s390x.rpm qemu-ksm-5.2.0-106.4.s390x.rpm qemu-kvm-5.2.0-106.4.s390x.rpm qemu-lang-5.2.0-106.4.s390x.rpm qemu-linux-user-5.2.0-106.3.s390x.rpm qemu-ppc-5.2.0-106.4.s390x.rpm qemu-s390x-5.2.0-106.4.s390x.rpm qemu-testsuite-5.2.0-106.3.s390x.rpm qemu-tools-5.2.0-106.4.s390x.rpm qemu-ui-curses-5.2.0-106.4.s390x.rpm qemu-ui-gtk-5.2.0-106.4.s390x.rpm qemu-ui-opengl-5.2.0-106.4.s390x.rpm qemu-ui-spice-app-5.2.0-106.4.s390x.rpm qemu-ui-spice-core-5.2.0-106.4.s390x.rpm qemu-vhost-user-gpu-5.2.0-106.4.s390x.rpm qemu-x86-5.2.0-106.4.s390x.rpm qemu-5.2.0-106.4.ppc64le.rpm qemu-arm-5.2.0-106.4.ppc64le.rpm qemu-audio-alsa-5.2.0-106.4.ppc64le.rpm qemu-audio-pa-5.2.0-106.4.ppc64le.rpm qemu-audio-spice-5.2.0-106.4.ppc64le.rpm qemu-block-curl-5.2.0-106.4.ppc64le.rpm qemu-block-dmg-5.2.0-106.4.ppc64le.rpm qemu-block-gluster-5.2.0-106.4.ppc64le.rpm qemu-block-iscsi-5.2.0-106.4.ppc64le.rpm qemu-block-nfs-5.2.0-106.4.ppc64le.rpm qemu-block-rbd-5.2.0-106.4.ppc64le.rpm qemu-block-ssh-5.2.0-106.4.ppc64le.rpm qemu-chardev-baum-5.2.0-106.4.ppc64le.rpm qemu-chardev-spice-5.2.0-106.4.ppc64le.rpm qemu-extra-5.2.0-106.4.ppc64le.rpm qemu-guest-agent-5.2.0-106.4.ppc64le.rpm qemu-hw-display-qxl-5.2.0-106.4.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-106.4.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-106.4.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-106.4.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-106.4.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-106.4.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-106.4.ppc64le.rpm qemu-ivshmem-tools-5.2.0-106.4.ppc64le.rpm qemu-ksm-5.2.0-106.4.ppc64le.rpm qemu-lang-5.2.0-106.4.ppc64le.rpm qemu-linux-user-5.2.0-106.3.ppc64le.rpm qemu-ppc-5.2.0-106.4.ppc64le.rpm qemu-s390x-5.2.0-106.4.ppc64le.rpm qemu-testsuite-5.2.0-106.3.ppc64le.rpm qemu-tools-5.2.0-106.4.ppc64le.rpm qemu-ui-curses-5.2.0-106.4.ppc64le.rpm qemu-ui-gtk-5.2.0-106.4.ppc64le.rpm qemu-ui-opengl-5.2.0-106.4.ppc64le.rpm qemu-ui-spice-app-5.2.0-106.4.ppc64le.rpm qemu-ui-spice-core-5.2.0-106.4.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-106.4.ppc64le.rpm qemu-x86-5.2.0-106.4.ppc64le.rpm qemu-5.2.0-106.4.aarch64.rpm qemu-arm-5.2.0-106.4.aarch64.rpm qemu-audio-alsa-5.2.0-106.4.aarch64.rpm qemu-audio-pa-5.2.0-106.4.aarch64.rpm qemu-audio-spice-5.2.0-106.4.aarch64.rpm qemu-block-curl-5.2.0-106.4.aarch64.rpm qemu-block-dmg-5.2.0-106.4.aarch64.rpm qemu-block-gluster-5.2.0-106.4.aarch64.rpm qemu-block-iscsi-5.2.0-106.4.aarch64.rpm qemu-block-nfs-5.2.0-106.4.aarch64.rpm qemu-block-rbd-5.2.0-106.4.aarch64.rpm qemu-block-ssh-5.2.0-106.4.aarch64.rpm qemu-chardev-baum-5.2.0-106.4.aarch64.rpm qemu-chardev-spice-5.2.0-106.4.aarch64.rpm qemu-extra-5.2.0-106.4.aarch64.rpm qemu-guest-agent-5.2.0-106.4.aarch64.rpm qemu-hw-display-qxl-5.2.0-106.4.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-106.4.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-106.4.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-106.4.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-106.4.aarch64.rpm qemu-hw-usb-redirect-5.2.0-106.4.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-106.4.aarch64.rpm qemu-ivshmem-tools-5.2.0-106.4.aarch64.rpm qemu-ksm-5.2.0-106.4.aarch64.rpm qemu-lang-5.2.0-106.4.aarch64.rpm qemu-linux-user-5.2.0-106.3.aarch64.rpm qemu-ppc-5.2.0-106.4.aarch64.rpm qemu-s390x-5.2.0-106.4.aarch64.rpm qemu-testsuite-5.2.0-106.3.aarch64.rpm qemu-tools-5.2.0-106.4.aarch64.rpm qemu-ui-curses-5.2.0-106.4.aarch64.rpm qemu-ui-gtk-5.2.0-106.4.aarch64.rpm qemu-ui-opengl-5.2.0-106.4.aarch64.rpm qemu-ui-spice-app-5.2.0-106.4.aarch64.rpm qemu-ui-spice-core-5.2.0-106.4.aarch64.rpm qemu-vhost-user-gpu-5.2.0-106.4.aarch64.rpm qemu-x86-5.2.0-106.4.aarch64.rpm openSUSE-SLE-15.3-2021-3604 important SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938) Non-security issues fixed: - Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234) qemu-4.2.1-11.31.3.src.rpm qemu-s390-4.2.1-11.31.3.x86_64.rpm qemu-s390-4.2.1-11.31.3.s390x.rpm qemu-s390-4.2.1-11.31.3.ppc64le.rpm qemu-s390-4.2.1-11.31.3.aarch64.rpm openSUSE-SLE-15.3-2021-3599 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql, postgresql13, postgresql14 fixes the following issues: This update ships postgresql14. (jsc#SLE-20675 jsc#SLE-20676) Feature changes in postgresql14: - https://www.postgresql.org/about/news/postgresql-14-released-2318/ - https://www.postgresql.org/docs/14/release-14.html Changes in postgresql13: - Stop building the mini and lib packages as they are now coming from postgresql14. Changes in postgresql: - Bump version to 14, leave default at 12. libecpg6-14.0-5.3.1.x86_64.rpm libecpg6-32bit-14.0-5.3.1.x86_64.rpm libpq5-14.0-5.3.1.x86_64.rpm libpq5-32bit-14.0-5.3.1.x86_64.rpm postgresql13-13.4-5.19.1.src.rpm postgresql13-13.4-5.19.1.x86_64.rpm postgresql13-contrib-13.4-5.19.1.x86_64.rpm postgresql13-devel-13.4-5.19.1.x86_64.rpm postgresql13-docs-13.4-5.19.1.noarch.rpm postgresql13-llvmjit-13.4-5.19.1.x86_64.rpm postgresql13-plperl-13.4-5.19.1.x86_64.rpm postgresql13-plpython-13.4-5.19.1.x86_64.rpm postgresql13-pltcl-13.4-5.19.1.x86_64.rpm postgresql13-server-13.4-5.19.1.x86_64.rpm postgresql13-server-devel-13.4-5.19.1.x86_64.rpm postgresql13-test-13.4-5.19.1.x86_64.rpm postgresql14-14.0-5.3.1.src.rpm postgresql14-14.0-5.3.1.x86_64.rpm postgresql14-contrib-14.0-5.3.1.x86_64.rpm postgresql14-devel-14.0-5.3.1.x86_64.rpm postgresql14-devel-mini-14.0-5.3.1.x86_64.rpm postgresql14-docs-14.0-5.3.1.noarch.rpm postgresql14-llvmjit-14.0-5.3.1.x86_64.rpm postgresql14-plperl-14.0-5.3.1.x86_64.rpm postgresql14-plpython-14.0-5.3.1.x86_64.rpm postgresql14-pltcl-14.0-5.3.1.x86_64.rpm postgresql14-server-14.0-5.3.1.x86_64.rpm postgresql14-server-devel-14.0-5.3.1.x86_64.rpm postgresql14-test-14.0-5.3.1.x86_64.rpm libecpg6-14.0-5.3.1.s390x.rpm libpq5-14.0-5.3.1.s390x.rpm postgresql13-13.4-5.19.1.s390x.rpm postgresql13-contrib-13.4-5.19.1.s390x.rpm postgresql13-devel-13.4-5.19.1.s390x.rpm postgresql13-llvmjit-13.4-5.19.1.s390x.rpm postgresql13-plperl-13.4-5.19.1.s390x.rpm postgresql13-plpython-13.4-5.19.1.s390x.rpm postgresql13-pltcl-13.4-5.19.1.s390x.rpm postgresql13-server-13.4-5.19.1.s390x.rpm postgresql13-server-devel-13.4-5.19.1.s390x.rpm postgresql13-test-13.4-5.19.1.s390x.rpm postgresql14-14.0-5.3.1.s390x.rpm postgresql14-contrib-14.0-5.3.1.s390x.rpm postgresql14-devel-14.0-5.3.1.s390x.rpm postgresql14-devel-mini-14.0-5.3.1.s390x.rpm postgresql14-llvmjit-14.0-5.3.1.s390x.rpm postgresql14-plperl-14.0-5.3.1.s390x.rpm postgresql14-plpython-14.0-5.3.1.s390x.rpm postgresql14-pltcl-14.0-5.3.1.s390x.rpm postgresql14-server-14.0-5.3.1.s390x.rpm postgresql14-server-devel-14.0-5.3.1.s390x.rpm postgresql14-test-14.0-5.3.1.s390x.rpm libecpg6-14.0-5.3.1.ppc64le.rpm libpq5-14.0-5.3.1.ppc64le.rpm postgresql13-13.4-5.19.1.ppc64le.rpm postgresql13-contrib-13.4-5.19.1.ppc64le.rpm postgresql13-devel-13.4-5.19.1.ppc64le.rpm postgresql13-llvmjit-13.4-5.19.1.ppc64le.rpm postgresql13-plperl-13.4-5.19.1.ppc64le.rpm postgresql13-plpython-13.4-5.19.1.ppc64le.rpm postgresql13-pltcl-13.4-5.19.1.ppc64le.rpm postgresql13-server-13.4-5.19.1.ppc64le.rpm postgresql13-server-devel-13.4-5.19.1.ppc64le.rpm postgresql13-test-13.4-5.19.1.ppc64le.rpm postgresql14-14.0-5.3.1.ppc64le.rpm postgresql14-contrib-14.0-5.3.1.ppc64le.rpm postgresql14-devel-14.0-5.3.1.ppc64le.rpm postgresql14-devel-mini-14.0-5.3.1.ppc64le.rpm postgresql14-llvmjit-14.0-5.3.1.ppc64le.rpm postgresql14-plperl-14.0-5.3.1.ppc64le.rpm postgresql14-plpython-14.0-5.3.1.ppc64le.rpm postgresql14-pltcl-14.0-5.3.1.ppc64le.rpm postgresql14-server-14.0-5.3.1.ppc64le.rpm postgresql14-server-devel-14.0-5.3.1.ppc64le.rpm postgresql14-test-14.0-5.3.1.ppc64le.rpm libecpg6-14.0-5.3.1.aarch64.rpm libpq5-14.0-5.3.1.aarch64.rpm postgresql13-13.4-5.19.1.aarch64.rpm postgresql13-contrib-13.4-5.19.1.aarch64.rpm postgresql13-devel-13.4-5.19.1.aarch64.rpm postgresql13-llvmjit-13.4-5.19.1.aarch64.rpm postgresql13-plperl-13.4-5.19.1.aarch64.rpm postgresql13-plpython-13.4-5.19.1.aarch64.rpm postgresql13-pltcl-13.4-5.19.1.aarch64.rpm postgresql13-server-13.4-5.19.1.aarch64.rpm postgresql13-server-devel-13.4-5.19.1.aarch64.rpm postgresql13-test-13.4-5.19.1.aarch64.rpm postgresql14-14.0-5.3.1.aarch64.rpm postgresql14-contrib-14.0-5.3.1.aarch64.rpm postgresql14-devel-14.0-5.3.1.aarch64.rpm postgresql14-devel-mini-14.0-5.3.1.aarch64.rpm postgresql14-llvmjit-14.0-5.3.1.aarch64.rpm postgresql14-plperl-14.0-5.3.1.aarch64.rpm postgresql14-plpython-14.0-5.3.1.aarch64.rpm postgresql14-pltcl-14.0-5.3.1.aarch64.rpm postgresql14-server-14.0-5.3.1.aarch64.rpm postgresql14-server-devel-14.0-5.3.1.aarch64.rpm postgresql14-test-14.0-5.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3600 moderate SUSE Updates openSUSE-SLE 15.3 This update for postgresql fixes the following issues: - Bump version to 14, leave default at 13. postgresql-14-10.6.2.noarch.rpm postgresql-14-10.6.2.src.rpm postgresql-contrib-14-10.6.2.noarch.rpm postgresql-devel-14-10.6.2.noarch.rpm postgresql-docs-14-10.6.2.noarch.rpm postgresql-llvmjit-14-10.6.2.noarch.rpm postgresql-plperl-14-10.6.2.noarch.rpm postgresql-plpython-14-10.6.2.noarch.rpm postgresql-pltcl-14-10.6.2.noarch.rpm postgresql-server-14-10.6.2.noarch.rpm postgresql-server-devel-14-10.6.2.noarch.rpm postgresql-test-14-10.6.2.noarch.rpm openSUSE-SLE-15.3-2021-3787 moderate SUSE Updates openSUSE-SLE 15.3 This update for xfsprogs fixes the following issues: - Make libhandle1 an explicit dependency in the xfsprogs-devel package (bsc#1191566) - Remove deprecated barrier/nobarrier mount options from manual pages section 5 (bsc#1191675) - xfs_io: include support for label command (bsc#1191500) - xfs_quota: state command to report all three (-ugp) grace times separately (bsc#1189983) - xfs_admin: add support for external log devices (bsc#1189984) libhandle1-4.15.0-4.52.1.x86_64.rpm xfsprogs-4.15.0-4.52.1.src.rpm xfsprogs-4.15.0-4.52.1.x86_64.rpm xfsprogs-devel-4.15.0-4.52.1.x86_64.rpm libhandle1-4.15.0-4.52.1.s390x.rpm xfsprogs-4.15.0-4.52.1.s390x.rpm xfsprogs-devel-4.15.0-4.52.1.s390x.rpm libhandle1-4.15.0-4.52.1.ppc64le.rpm xfsprogs-4.15.0-4.52.1.ppc64le.rpm xfsprogs-devel-4.15.0-4.52.1.ppc64le.rpm libhandle1-4.15.0-4.52.1.aarch64.rpm xfsprogs-4.15.0-4.52.1.aarch64.rpm xfsprogs-devel-4.15.0-4.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-3573 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-theme fixes the following issues: - Remove unnecesary rej file and add icon for Budgie pattern (bsc#1191830, bsc#1176164) yast2-theme-4.3.11-3.6.1.noarch.rpm yast2-theme-4.3.11-3.6.1.src.rpm openSUSE-SLE-15.3-2021-3571 moderate SUSE Updates openSUSE-SLE 15.3 This update for postfix fixes the following issues: - Adapt config.postfix to filter out lmdb files from the alias maps (bsc#1190945) postfix-3.5.9-5.9.2.src.rpm postfix-3.5.9-5.9.2.x86_64.rpm postfix-bdb-3.5.9-5.9.2.src.rpm postfix-bdb-3.5.9-5.9.2.x86_64.rpm postfix-bdb-lmdb-3.5.9-5.9.2.x86_64.rpm postfix-devel-3.5.9-5.9.2.x86_64.rpm postfix-doc-3.5.9-5.9.2.noarch.rpm postfix-ldap-3.5.9-5.9.2.x86_64.rpm postfix-mysql-3.5.9-5.9.2.x86_64.rpm postfix-postgresql-3.5.9-5.9.2.x86_64.rpm postfix-3.5.9-5.9.2.s390x.rpm postfix-bdb-3.5.9-5.9.2.s390x.rpm postfix-bdb-lmdb-3.5.9-5.9.2.s390x.rpm postfix-devel-3.5.9-5.9.2.s390x.rpm postfix-ldap-3.5.9-5.9.2.s390x.rpm postfix-mysql-3.5.9-5.9.2.s390x.rpm postfix-postgresql-3.5.9-5.9.2.s390x.rpm postfix-3.5.9-5.9.2.ppc64le.rpm postfix-bdb-3.5.9-5.9.2.ppc64le.rpm postfix-bdb-lmdb-3.5.9-5.9.2.ppc64le.rpm postfix-devel-3.5.9-5.9.2.ppc64le.rpm postfix-ldap-3.5.9-5.9.2.ppc64le.rpm postfix-mysql-3.5.9-5.9.2.ppc64le.rpm postfix-postgresql-3.5.9-5.9.2.ppc64le.rpm postfix-3.5.9-5.9.2.aarch64.rpm postfix-bdb-3.5.9-5.9.2.aarch64.rpm postfix-bdb-lmdb-3.5.9-5.9.2.aarch64.rpm postfix-devel-3.5.9-5.9.2.aarch64.rpm postfix-ldap-3.5.9-5.9.2.aarch64.rpm postfix-mysql-3.5.9-5.9.2.aarch64.rpm postfix-postgresql-3.5.9-5.9.2.aarch64.rpm openSUSE-SLE-15.3-2021-3538 moderate SUSE Updates openSUSE-SLE 15.3 This update for iproute2 fixes the following issues: - Follow-up fixes backported from upstream. (bsc#1160242) iproute2-5.3-5.5.1.src.rpm iproute2-5.3-5.5.1.x86_64.rpm iproute2-arpd-5.3-5.5.1.x86_64.rpm iproute2-bash-completion-5.3-5.5.1.x86_64.rpm libnetlink-devel-5.3-5.5.1.x86_64.rpm iproute2-5.3-5.5.1.s390x.rpm iproute2-arpd-5.3-5.5.1.s390x.rpm iproute2-bash-completion-5.3-5.5.1.s390x.rpm libnetlink-devel-5.3-5.5.1.s390x.rpm iproute2-5.3-5.5.1.ppc64le.rpm iproute2-arpd-5.3-5.5.1.ppc64le.rpm iproute2-bash-completion-5.3-5.5.1.ppc64le.rpm libnetlink-devel-5.3-5.5.1.ppc64le.rpm iproute2-5.3-5.5.1.aarch64.rpm iproute2-arpd-5.3-5.5.1.aarch64.rpm iproute2-bash-completion-5.3-5.5.1.aarch64.rpm libnetlink-devel-5.3-5.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3569 moderate SUSE Updates openSUSE-SLE 15.3 This update for orarun fixes the following issues: - Fixed warning messages, changed $ORACLE_HOME to $ORACLE_BASE/product/21c in oracle.sh (bsc#1191350) orarun-2.1-17.3.1.src.rpm orarun-2.1-17.3.1.x86_64.rpm orarun-2.1-17.3.1.s390x.rpm openSUSE-SLE-15.3-2021-3574 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - whitelisting of systemd-od (bsc#1191821) and pam_u2f (bsc#1190790 jsc#SLE-21888) rpmlint-1.10-7.30.1.noarch.rpm rpmlint-1.10-7.30.1.src.rpm openSUSE-SLE-15.3-2021-3512 moderate SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: - Allow accessing /proc/sys/crypto/fips_enabled from within the newly introduced socket process sandbox. (bsc#1191815, bsc#1190141) - Add a way to let users overwrite MOZ_ENABLE_WAYLAND MozillaFirefox-91.2.0-152.3.1.src.rpm MozillaFirefox-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-branding-upstream-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-devel-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-translations-common-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-translations-other-91.2.0-152.3.1.x86_64.rpm MozillaFirefox-91.2.0-152.3.1.s390x.rpm MozillaFirefox-branding-upstream-91.2.0-152.3.1.s390x.rpm MozillaFirefox-devel-91.2.0-152.3.1.s390x.rpm MozillaFirefox-translations-common-91.2.0-152.3.1.s390x.rpm MozillaFirefox-translations-other-91.2.0-152.3.1.s390x.rpm MozillaFirefox-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-devel-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-translations-common-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-translations-other-91.2.0-152.3.1.ppc64le.rpm MozillaFirefox-91.2.0-152.3.1.aarch64.rpm MozillaFirefox-branding-upstream-91.2.0-152.3.1.aarch64.rpm MozillaFirefox-devel-91.2.0-152.3.1.aarch64.rpm MozillaFirefox-translations-common-91.2.0-152.3.1.aarch64.rpm MozillaFirefox-translations-other-91.2.0-152.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3543 moderate SUSE Updates openSUSE-SLE 15.3 This update for system-role-common-criteria ships it to the Server Applications Module. system-role-common-criteria-15.2.1-8.1.src.rpm system-role-common-criteria-15.2.1-8.1.x86_64.rpm system-role-common-criteria-15.2.1-8.1.s390x.rpm system-role-common-criteria-15.2.1-8.1.ppc64le.rpm system-role-common-criteria-15.2.1-8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3568 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Update to parse lifetime option correctly in ui_resource (bsc#1191508) crmsh-4.3.1+20211012.52d4086a-5.68.1.noarch.rpm crmsh-4.3.1+20211012.52d4086a-5.68.1.src.rpm crmsh-scripts-4.3.1+20211012.52d4086a-5.68.1.noarch.rpm crmsh-test-4.3.1+20211012.52d4086a-5.68.1.noarch.rpm openSUSE-SLE-15.3-2021-3790 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-iscsi fixes the following issues: - Ensure executables are not moved from /sbin to /usr/sbin in SLE (bsc#1192013)(bsc#1191054) - iscsi-init.service default dependencies can cause the boot to hang so they have been removed (bsc#1187190) - IPv6 offload iSCSI lun needs to be exposed during installation (bsc#1187958) - iscsid needs to use the new prctl(PR_SET_IO_FLUSHER) system call (bsc#1188869) - The iscsi-init.service unit can run too early, when root is read-only, causing it to fail (bsc#1192568) iscsiuio-0.7.8.6-32.12.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.5-32.12.1.x86_64.rpm open-iscsi-2.1.5-32.12.1.src.rpm open-iscsi-2.1.5-32.12.1.x86_64.rpm open-iscsi-devel-2.1.5-32.12.1.x86_64.rpm iscsiuio-0.7.8.6-32.12.1.s390x.rpm libopeniscsiusr0_2_0-2.1.5-32.12.1.s390x.rpm open-iscsi-2.1.5-32.12.1.s390x.rpm open-iscsi-devel-2.1.5-32.12.1.s390x.rpm iscsiuio-0.7.8.6-32.12.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.5-32.12.1.ppc64le.rpm open-iscsi-2.1.5-32.12.1.ppc64le.rpm open-iscsi-devel-2.1.5-32.12.1.ppc64le.rpm iscsiuio-0.7.8.6-32.12.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.5-32.12.1.aarch64.rpm open-iscsi-2.1.5-32.12.1.aarch64.rpm open-iscsi-devel-2.1.5-32.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3731 moderate SUSE Updates openSUSE-SLE 15.3 This update for spack fixes the following issues: - Make sure modules are not called recursively even if modules are loaded in an out-of-order fashion from python-Sphinx. - Fix typo to export prefix in patch. (bsc#1191395) spack-0.16.1-5.3.1.noarch.rpm spack-0.16.1-5.3.1.src.rpm spack-info-0.16.1-5.3.1.noarch.rpm spack-man-0.16.1-5.3.1.noarch.rpm spack-recipes-0.16.1-5.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3587 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-country fixes the following issues: - Move the keyboards database to lib/ to make the module compatible with the self-update mechanism. (bsc#1189461) - Use official China timezone Asia/Shanghai. (bsc#1187857) yast2-country-4.3.18-3.11.1.src.rpm yast2-country-4.3.18-3.11.1.x86_64.rpm yast2-country-data-4.3.18-3.11.1.x86_64.rpm yast2-country-4.3.18-3.11.1.s390x.rpm yast2-country-data-4.3.18-3.11.1.s390x.rpm yast2-country-4.3.18-3.11.1.ppc64le.rpm yast2-country-data-4.3.18-3.11.1.ppc64le.rpm yast2-country-4.3.18-3.11.1.aarch64.rpm yast2-country-data-4.3.18-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3671 important SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: Update to 11.0.13+8 (October 2021 CPU) - CVE-2021-35550, bsc#1191901: Update the default enabled cipher suites preference - CVE-2021-35565, bsc#1191909: com.sun.net.HttpsServer spins on TLS session close - CVE-2021-35556, bsc#1191910: Richer Text Editors - CVE-2021-35559, bsc#1191911: Enhanced style for RTF kit - CVE-2021-35561, bsc#1191912: Better hashing support - CVE-2021-35564, bsc#1191913: Improve Keystore integrity - CVE-2021-35567, bsc#1191903: More Constrained Delegation - CVE-2021-35578, bsc#1191904: Improve TLS client handshaking - CVE-2021-35586, bsc#1191914: Better BMP support - CVE-2021-35603, bsc#1191906: Better session identification - Improve Stream handling for SSL - Improve requests of certificates - Correct certificate requests - Enhance DTLS client handshake java-11-openjdk-11.0.13.0-3.65.1.src.rpm java-11-openjdk-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-accessibility-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-demo-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-devel-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-headless-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-javadoc-11.0.13.0-3.65.1.noarch.rpm java-11-openjdk-jmods-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-src-11.0.13.0-3.65.1.x86_64.rpm java-11-openjdk-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-accessibility-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-demo-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-devel-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-headless-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-jmods-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-src-11.0.13.0-3.65.1.s390x.rpm java-11-openjdk-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-demo-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-devel-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-headless-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-jmods-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-src-11.0.13.0-3.65.1.ppc64le.rpm java-11-openjdk-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-accessibility-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-demo-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-devel-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-headless-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-jmods-11.0.13.0-3.65.1.aarch64.rpm java-11-openjdk-src-11.0.13.0-3.65.1.aarch64.rpm openSUSE-SLE-15.3-2021-3509 important SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools fixes the following issues: Update to version 15.3.13: - Fix bad exit status in openQA. (bsc#1191922) - Ignore kernel keyring for kernel certificates. (bsc#1191480) - Deal with existing certificates that should be de-enrolled. (bsc#1191804) - Don't pass existing files to weak-modules2. (bsc#1191200) - Skip certificate scriptlet on non-UEFI systems. (bsc#1191260) suse-module-tools-15.3.13-3.11.1.src.rpm suse-module-tools-15.3.13-3.11.1.x86_64.rpm suse-module-tools-legacy-15.3.13-3.11.1.x86_64.rpm suse-module-tools-15.3.13-3.11.1.s390x.rpm suse-module-tools-legacy-15.3.13-3.11.1.s390x.rpm suse-module-tools-15.3.13-3.11.1.ppc64le.rpm suse-module-tools-legacy-15.3.13-3.11.1.ppc64le.rpm suse-module-tools-15.3.13-3.11.1.aarch64.rpm suse-module-tools-legacy-15.3.13-3.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3510 important SUSE Updates openSUSE-SLE 15.3 This update for pam fixes the following issues: - Fixed a bad directive file which resulted in the "securetty" file to be installed as "macros.pam". (bsc#1191987) pam-1.3.0-6.50.1.src.rpm pam-1.3.0-6.50.1.x86_64.rpm pam-32bit-1.3.0-6.50.1.x86_64.rpm pam-devel-1.3.0-6.50.1.x86_64.rpm pam-devel-32bit-1.3.0-6.50.1.x86_64.rpm pam-doc-1.3.0-6.50.1.noarch.rpm pam-extra-1.3.0-6.50.1.x86_64.rpm pam-extra-32bit-1.3.0-6.50.1.x86_64.rpm pam-1.3.0-6.50.1.s390x.rpm pam-devel-1.3.0-6.50.1.s390x.rpm pam-extra-1.3.0-6.50.1.s390x.rpm pam-1.3.0-6.50.1.ppc64le.rpm pam-devel-1.3.0-6.50.1.ppc64le.rpm pam-extra-1.3.0-6.50.1.ppc64le.rpm pam-1.3.0-6.50.1.aarch64.rpm pam-devel-1.3.0-6.50.1.aarch64.rpm pam-extra-1.3.0-6.50.1.aarch64.rpm openSUSE-SLE-15.3-2021-3564 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpm-config-SUSE fixes the following issues: - Support ZSTD compressed kernel modules. (bsc#1190850) rpm-config-SUSE-1-5.3.1.noarch.rpm rpm-config-SUSE-1-5.3.1.src.rpm openSUSE-SLE-15.3-2021-3589 moderate SUSE Updates openSUSE-SLE 15.3 This update for apparmor fixes the following issues: - Fixed an issue when apparmor provides python2 and python3 libraries with the same name. (bsc#1191690) apache2-mod_apparmor-2.13.6-3.3.1.x86_64.rpm apparmor-2.13.6-3.3.1.src.rpm apparmor-abstractions-2.13.6-3.3.1.noarch.rpm apparmor-docs-2.13.6-3.3.1.noarch.rpm apparmor-parser-2.13.6-3.3.1.x86_64.rpm apparmor-parser-lang-2.13.6-3.3.1.noarch.rpm apparmor-profiles-2.13.6-3.3.1.noarch.rpm apparmor-utils-2.13.6-3.3.1.noarch.rpm apparmor-utils-lang-2.13.6-3.3.1.noarch.rpm libapparmor-2.13.6-3.3.1.src.rpm libapparmor-devel-2.13.6-3.3.1.x86_64.rpm libapparmor1-2.13.6-3.3.1.x86_64.rpm libapparmor1-32bit-2.13.6-3.3.1.x86_64.rpm pam_apparmor-2.13.6-3.3.1.x86_64.rpm pam_apparmor-32bit-2.13.6-3.3.1.x86_64.rpm perl-apparmor-2.13.6-3.3.1.x86_64.rpm python3-apparmor-2.13.6-3.3.1.x86_64.rpm ruby-apparmor-2.13.6-3.3.1.x86_64.rpm apache2-mod_apparmor-2.13.6-3.3.1.s390x.rpm apparmor-parser-2.13.6-3.3.1.s390x.rpm libapparmor-devel-2.13.6-3.3.1.s390x.rpm libapparmor1-2.13.6-3.3.1.s390x.rpm pam_apparmor-2.13.6-3.3.1.s390x.rpm perl-apparmor-2.13.6-3.3.1.s390x.rpm python3-apparmor-2.13.6-3.3.1.s390x.rpm ruby-apparmor-2.13.6-3.3.1.s390x.rpm apache2-mod_apparmor-2.13.6-3.3.1.ppc64le.rpm apparmor-parser-2.13.6-3.3.1.ppc64le.rpm libapparmor-devel-2.13.6-3.3.1.ppc64le.rpm libapparmor1-2.13.6-3.3.1.ppc64le.rpm pam_apparmor-2.13.6-3.3.1.ppc64le.rpm perl-apparmor-2.13.6-3.3.1.ppc64le.rpm python3-apparmor-2.13.6-3.3.1.ppc64le.rpm ruby-apparmor-2.13.6-3.3.1.ppc64le.rpm apache2-mod_apparmor-2.13.6-3.3.1.aarch64.rpm apparmor-parser-2.13.6-3.3.1.aarch64.rpm libapparmor-devel-2.13.6-3.3.1.aarch64.rpm libapparmor1-2.13.6-3.3.1.aarch64.rpm pam_apparmor-2.13.6-3.3.1.aarch64.rpm perl-apparmor-2.13.6-3.3.1.aarch64.rpm python3-apparmor-2.13.6-3.3.1.aarch64.rpm ruby-apparmor-2.13.6-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3619 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: - lxc: controller: Fix container launch on cgroup v1. (bsc#1183247) - supportconfig: Use systemctl command 'is-active' instead of 'is-enabled' when checking if libvirtd is active. - qemu: Do not report error in the logs when processing monitor IO. (bsc#1190917) - spec: Fix an issue when package update hangs (bsc#1177902, bsc#1190693) - spec: Don't add '--timeout' argument to '/etc/sysconfig/libvirtd' when running in traditional mode without socket activation. (bsc#1190695) - libxl: Improve reporting of 'die_id' in capabilities. (bsc#1190493) - libxl: Fix driver reload. (bsc#1190420) - qemu: Set label on virtual host network device when hotplugging. (bsc#1186398) - supportconfig: When checking for installed hypervisor drivers, use the libvirtr-daemon-driver-<hypervisor> package instead of libvirt-daemon-<hypervisor>. The latter are not required packages for a functioning hypervisor driver. libvirt-7.1.0-6.8.1.src.rpm libvirt-7.1.0-6.8.1.x86_64.rpm libvirt-admin-7.1.0-6.8.1.x86_64.rpm libvirt-bash-completion-7.1.0-6.8.1.noarch.rpm libvirt-client-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-6.8.1.x86_64.rpm libvirt-daemon-xen-7.1.0-6.8.1.x86_64.rpm libvirt-devel-32bit-7.1.0-6.8.1.x86_64.rpm libvirt-devel-7.1.0-6.8.1.x86_64.rpm libvirt-doc-7.1.0-6.8.1.noarch.rpm libvirt-libs-7.1.0-6.8.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-6.8.1.x86_64.rpm libvirt-nss-7.1.0-6.8.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-6.8.1.x86_64.rpm libvirt-7.1.0-6.8.1.s390x.rpm libvirt-admin-7.1.0-6.8.1.s390x.rpm libvirt-client-7.1.0-6.8.1.s390x.rpm libvirt-daemon-7.1.0-6.8.1.s390x.rpm libvirt-daemon-config-network-7.1.0-6.8.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.8.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.8.1.s390x.rpm libvirt-daemon-hooks-7.1.0-6.8.1.s390x.rpm libvirt-daemon-lxc-7.1.0-6.8.1.s390x.rpm libvirt-daemon-qemu-7.1.0-6.8.1.s390x.rpm libvirt-devel-7.1.0-6.8.1.s390x.rpm libvirt-libs-7.1.0-6.8.1.s390x.rpm libvirt-lock-sanlock-7.1.0-6.8.1.s390x.rpm libvirt-nss-7.1.0-6.8.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-6.8.1.s390x.rpm libvirt-7.1.0-6.8.1.ppc64le.rpm libvirt-admin-7.1.0-6.8.1.ppc64le.rpm libvirt-client-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-6.8.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-6.8.1.ppc64le.rpm libvirt-devel-7.1.0-6.8.1.ppc64le.rpm libvirt-libs-7.1.0-6.8.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-6.8.1.ppc64le.rpm libvirt-nss-7.1.0-6.8.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-6.8.1.ppc64le.rpm libvirt-7.1.0-6.8.1.aarch64.rpm libvirt-admin-7.1.0-6.8.1.aarch64.rpm libvirt-client-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-6.8.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-6.8.1.aarch64.rpm libvirt-devel-7.1.0-6.8.1.aarch64.rpm libvirt-libs-7.1.0-6.8.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-6.8.1.aarch64.rpm libvirt-nss-7.1.0-6.8.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-6.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3532 important SUSE Updates openSUSE-SLE 15.3 This update for pmdk fixes the following issues: - Fixed an issue when 'PMDK' causes data corruption on power failure. (bsc#1191339) libpmem-devel-1.9-3.3.1.x86_64.rpm libpmem1-1.9-3.3.1.x86_64.rpm libpmemblk-devel-1.9-3.3.1.x86_64.rpm libpmemblk1-1.9-3.3.1.x86_64.rpm libpmemlog-devel-1.9-3.3.1.x86_64.rpm libpmemlog1-1.9-3.3.1.x86_64.rpm libpmemobj-devel-1.9-3.3.1.x86_64.rpm libpmemobj1-1.9-3.3.1.x86_64.rpm libpmempool-devel-1.9-3.3.1.x86_64.rpm libpmempool1-1.9-3.3.1.x86_64.rpm librpmem-devel-1.9-3.3.1.x86_64.rpm librpmem1-1.9-3.3.1.x86_64.rpm pmdk-1.9-3.3.1.src.rpm pmdk-1.9-3.3.1.x86_64.rpm pmdk-devel-doc-1.9-3.3.1.x86_64.rpm pmdk-tools-1.9-3.3.1.x86_64.rpm rpmemd-1.9-3.3.1.x86_64.rpm libpmem-devel-1.9-3.3.1.ppc64le.rpm libpmem1-1.9-3.3.1.ppc64le.rpm libpmemblk-devel-1.9-3.3.1.ppc64le.rpm libpmemblk1-1.9-3.3.1.ppc64le.rpm libpmemlog-devel-1.9-3.3.1.ppc64le.rpm libpmemlog1-1.9-3.3.1.ppc64le.rpm libpmemobj-devel-1.9-3.3.1.ppc64le.rpm libpmemobj1-1.9-3.3.1.ppc64le.rpm libpmempool-devel-1.9-3.3.1.ppc64le.rpm libpmempool1-1.9-3.3.1.ppc64le.rpm librpmem-devel-1.9-3.3.1.ppc64le.rpm librpmem1-1.9-3.3.1.ppc64le.rpm pmdk-1.9-3.3.1.ppc64le.rpm pmdk-devel-doc-1.9-3.3.1.ppc64le.rpm pmdk-tools-1.9-3.3.1.ppc64le.rpm rpmemd-1.9-3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3609 low SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Add the "keep_unknown_lv" element to the partitioning schema. (bsc#1191968) autoyast2-4.3.91-3.28.1.noarch.rpm autoyast2-4.3.91-3.28.1.src.rpm autoyast2-installation-4.3.91-3.28.1.noarch.rpm openSUSE-SLE-15.3-2021-3606 moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - 15.3.20211025 (tracked in bsc#933411) - Added note about NVMe-oF TCP support (bsc#1190394) - Added note about manual pages (bsc#1188302) - Added keepalived to support exceptions (bsc#1183906) - Updated note about support information (bsc#1189989) - Updated SELinux note to include warning (bsc#1186099) release-notes-sles-15.3.20211025-3.12.2.noarch.rpm release-notes-sles-15.3.20211025-3.12.2.src.rpm openSUSE-SLE-15.3-2021-3846 moderate SUSE Updates openSUSE-SLE 15.3 This update for blktrace fixes the following issues: - Fix a rare crash due to dropped first event while using pipe input. (bsc#1191788) blktrace-1.1.0+git.20170126-3.6.1.src.rpm blktrace-1.1.0+git.20170126-3.6.1.x86_64.rpm blktrace-1.1.0+git.20170126-3.6.1.s390x.rpm blktrace-1.1.0+git.20170126-3.6.1.ppc64le.rpm blktrace-1.1.0+git.20170126-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3796 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issues: Lifecycle data updates. (bsc#1020320) - Updates for 5_3_18-24_83, 5_3_18-24_86, 5_3_18-59_24, 5_3_18-59_27. lifecycle-data-sle-module-live-patching-15-4.63.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.63.1.src.rpm openSUSE-SLE-15.3-2021-3884 moderate SUSE Updates openSUSE-SLE 15.3 This update for libmwaw and libetonyek fixes the following issues: libetonyek: update to version 0.1.10 (jsc#SLE-18214) - Use mdds-1.5 by default. - Parse shadow. - Improve detection of the "new" formats. - Fix handling of text baseline shift. - Improve various formats. - Various small bugfixes and fuzzer fixes libmwaw: update to 0.3.20 (jsc#SLE-18214) - add a parser for Student Writing Center files (v1) - add a parser for Word Maker files (v1) - add a parser for Canvas 9/10 files (Mac) - add a parser for Canvas 7/8 files (Mac) - add a parser for Canvas Image files (Mac 5-8, Windows 5-6) - add a parser for Canvas 6 (Mac and Windows) - remove many coverity warnings - add a parser for Canvas 5 (Mac and Windows) - add basic support for hatch - add basic support for drop cap libetonyek-0.1.10-3.3.1.src.rpm libetonyek-0_1-1-0.1.10-3.3.1.x86_64.rpm libetonyek-devel-0.1.10-3.3.1.x86_64.rpm libetonyek-devel-doc-0.1.10-3.3.1.noarch.rpm libetonyek-tools-0.1.10-3.3.1.x86_64.rpm libmwaw-0.3.20-4.14.1.src.rpm libmwaw-0_3-3-0.3.20-4.14.1.x86_64.rpm libmwaw-devel-0.3.20-4.14.1.x86_64.rpm libmwaw-devel-doc-0.3.20-4.14.1.noarch.rpm libmwaw-tools-0.3.20-4.14.1.x86_64.rpm libetonyek-0_1-1-0.1.10-3.3.1.s390x.rpm libetonyek-devel-0.1.10-3.3.1.s390x.rpm libetonyek-tools-0.1.10-3.3.1.s390x.rpm libmwaw-0_3-3-0.3.20-4.14.1.s390x.rpm libmwaw-devel-0.3.20-4.14.1.s390x.rpm libmwaw-tools-0.3.20-4.14.1.s390x.rpm libetonyek-0_1-1-0.1.10-3.3.1.ppc64le.rpm libetonyek-devel-0.1.10-3.3.1.ppc64le.rpm libetonyek-tools-0.1.10-3.3.1.ppc64le.rpm libmwaw-0_3-3-0.3.20-4.14.1.ppc64le.rpm libmwaw-devel-0.3.20-4.14.1.ppc64le.rpm libmwaw-tools-0.3.20-4.14.1.ppc64le.rpm libetonyek-0_1-1-0.1.10-3.3.1.aarch64.rpm libetonyek-devel-0.1.10-3.3.1.aarch64.rpm libetonyek-tools-0.1.10-3.3.1.aarch64.rpm libmwaw-0_3-3-0.3.20-4.14.1.aarch64.rpm libmwaw-devel-0.3.20-4.14.1.aarch64.rpm libmwaw-tools-0.3.20-4.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3616 moderate SUSE Updates openSUSE-SLE 15.3 This update for binutils fixes the following issues: Update to binutils 2.37: * The GNU Binutils sources now requires a C99 compiler and library to build. * Support for Realm Management Extension (RME) for AArch64 has been added. * A new linker option '-z report-relative-reloc' for x86 ELF targets has been added to report dynamic relative relocations. * A new linker option '-z start-stop-gc' has been added to disable special treatment of __start_*/__stop_* references when --gc-sections. * A new linker options '-Bno-symbolic' has been added which will cancel the '-Bsymbolic' and '-Bsymbolic-functions' options. * The readelf tool has a new command line option which can be used to specify how the numeric values of symbols are reported. --sym-base=0|8|10|16 tells readelf to display the values in base 8, base 10 or base 16. A sym base of 0 represents the default action of displaying values under 10000 in base 10 and values above that in base 16. * A new format has been added to the nm program. Specifying '--format=just-symbols' (or just using -j) will tell the program to only display symbol names and nothing else. * A new command line option '--keep-section-symbols' has been added to objcopy and strip. This stops the removal of unused section symbols when the file is copied. Removing these symbols saves space, but sometimes they are needed by other tools. * The '--weaken', '--weaken-symbol' and '--weaken-symbols' options supported by objcopy now make undefined symbols weak on targets that support weak symbols. * Readelf and objdump can now display and use the contents of .debug_sup sections. * Readelf and objdump will now follow links to separate debug info files by default. This behaviour can be stopped via the use of the new '-wN' or '--debug-dump=no-follow-links' options for readelf and the '-WN' or '--dwarf=no-follow-links' options for objdump. Also the old behaviour can be restored by the use of the '--enable-follow-debug-links=no' configure time option. The semantics of the =follow-links option have also been slightly changed. When enabled, the option allows for the loading of symbol tables and string tables from the separate files which can be used to enhance the information displayed when dumping other sections, but it does not automatically imply that information from the separate files should be displayed. If other debug section display options are also enabled (eg '--debug-dump=info') then the contents of matching sections in both the main file and the separate debuginfo file *will* be displayed. This is because in most cases the debug section will only be present in one of the files. If however non-debug section display options are enabled (eg '--sections') then the contents of matching parts of the separate debuginfo file will *not* be displayed. This is because in most cases the user probably only wanted to load the symbol information from the separate debuginfo file. In order to change this behaviour a new command line option --process-links can be used. This will allow di0pslay options to applied to both the main file and any separate debuginfo files. * Nm has a new command line option: '--quiet'. This suppresses "no symbols" diagnostic. Update to binutils 2.36: New features in the Assembler: - General: * When setting the link order attribute of ELF sections, it is now possible to use a numeric section index instead of symbol name. * Added a .nop directive to generate a single no-op instruction in a target neutral manner. This instruction does have an effect on DWARF line number generation, if that is active. * Removed --reduce-memory-overheads and --hash-size as gas now uses hash tables that can be expand and shrink automatically. - X86/x86_64: * Add support for AVX VNNI, HRESET, UINTR, TDX, AMX and Key Locker instructions. * Support non-absolute segment values for lcall and ljmp. * Add {disp16} pseudo prefix to x86 assembler. * Configure with --enable-x86-used-note by default for Linux/x86. - ARM/AArch64: * Add support for Cortex-A78, Cortex-A78AE and Cortex-X1, Cortex-R82, Neoverse V1, and Neoverse N2 cores. * Add support for ETMv4 (Embedded Trace Macrocell), ETE (Embedded Trace Extension), TRBE (Trace Buffer Extension), CSRE (Call Stack Recorder Extension) and BRBE (Branch Record Buffer Extension) system registers. * Add support for Armv8-R and Armv8.7-A ISA extensions. * Add support for DSB memory nXS barrier, WFET and WFIT instruction for Armv8.7. * Add support for +csre feature for -march. Add CSR PDEC instruction for CSRE feature in AArch64. * Add support for +flagm feature for -march in Armv8.4 AArch64. * Add support for +ls64 feature for -march in Armv8.7 AArch64. Add atomic 64-byte load/store instructions for this feature. * Add support for +pauth (Pointer Authentication) feature for -march in AArch64. New features in the Linker: * Add --error-handling-script=<NAME> command line option to allow a helper script to be invoked when an undefined symbol or a missing library is encountered. This option can be suppressed via the configure time switch: --enable-error-handling-script=no. * Add -z x86-64-{baseline|v[234]} to the x86 ELF linker to mark x86-64-{baseline|v[234]} ISA level as needed. * Add -z unique-symbol to avoid duplicated local symbol names. * The creation of PE format DLLs now defaults to using a more secure set of DLL characteristics. * The linker now deduplicates the types in .ctf sections. The new command-line option --ctf-share-types describes how to do this: its default value, share-unconflicted, produces the most compact output. * The linker now omits the "variable section" from .ctf sections by default, saving space. This is almost certainly what you want unless you are working on a project that has its own analogue of symbol tables that are not reflected in the ELF symtabs. New features in other binary tools: * The ar tool's previously unused l modifier is now used for specifying dependencies of a static library. The arguments of this option (or --record-libdeps long form option) will be stored verbatim in the __.LIBDEP member of the archive, which the linker may read at link time. * Readelf can now display the contents of LTO symbol table sections when asked to do so via the --lto-syms command line option. * Readelf now accepts the -C command line option to enable the demangling of symbol names. In addition the --demangle=<style>, --no-demangle, --recurse-limit and --no-recurse-limit options are also now availale. The following security fixes are addressed by the update: - CVE-2021-20197: Fixed a race condition which allows users to own arbitrary files (bsc#1181452). - CVE-2021-20284: Fixed a heap-based buffer overflow in _bfd_elf_slurp_secondary_reloc_section in elf.c (bsc#1183511). - CVE-2021-3487: Fixed a denial of service via excessive debug section size causing excessive memory consumption in bfd's dwarf2.c read_section() (bsc#1184620). - CVE-2020-35448: Fixed a heap-based buffer over-read in bfd_getl_signed_32() in libbfd.c (bsc#1184794). - CVE-2020-16590: Fixed a double free vulnerability in process_symbol_table() (bsc#1179898). - CVE-2020-16591: Fixed an invalid read in process_symbol_table() (bsc#1179899). - CVE-2020-16592: Fixed an use-after-free in bfd_hash_lookup() (bsc#1179900). - CVE-2020-16593: Fixed a null pointer dereference in scan_unit_for_symbols() (bsc#1179901). - CVE-2020-16598: Fixed a null pointer dereference in debug_get_real_type() (bsc#1179902). - CVE-2020-16599: Fixed a null pointer dereference in _bfd_elf_get_symbol_version_string() (bsc#1179903) - CVE-2020-35493: Fixed heap-based buffer overflow in bfd_pef_parse_function_stubs function in bfd/pef.c via crafted PEF file (bsc#1180451). - CVE-2020-35496: Fixed multiple null pointer dereferences in bfd module due to not checking return value of bfd_malloc (bsc#1180454). - CVE-2020-35507: Fixed a null pointer dereference in bfd_pef_parse_function_stubs() (bsc#1180461). binutils-2.37-7.21.2.src.rpm binutils-2.37-7.21.2.x86_64.rpm binutils-devel-2.37-7.21.2.x86_64.rpm binutils-devel-32bit-2.37-7.21.2.x86_64.rpm binutils-gold-2.37-7.21.2.x86_64.rpm bpftrace-0.11.4-3.2.1.src.rpm bpftrace-0.11.4-3.2.1.x86_64.rpm bpftrace-tools-0.11.4-3.2.1.noarch.rpm cross-aarch64-binutils-2.37-7.21.1.src.rpm cross-aarch64-binutils-2.37-7.21.1.x86_64.rpm cross-arm-binutils-2.37-7.21.1.src.rpm cross-arm-binutils-2.37-7.21.1.x86_64.rpm cross-avr-binutils-2.37-7.21.1.src.rpm cross-avr-binutils-2.37-7.21.1.x86_64.rpm cross-epiphany-binutils-2.37-7.21.1.src.rpm cross-epiphany-binutils-2.37-7.21.1.x86_64.rpm cross-hppa-binutils-2.37-7.21.1.src.rpm cross-hppa-binutils-2.37-7.21.1.x86_64.rpm cross-hppa64-binutils-2.37-7.21.1.src.rpm cross-hppa64-binutils-2.37-7.21.1.x86_64.rpm cross-i386-binutils-2.37-7.21.1.src.rpm cross-i386-binutils-2.37-7.21.1.x86_64.rpm cross-ia64-binutils-2.37-7.21.1.src.rpm cross-ia64-binutils-2.37-7.21.1.x86_64.rpm cross-m68k-binutils-2.37-7.21.1.src.rpm cross-m68k-binutils-2.37-7.21.1.x86_64.rpm cross-mips-binutils-2.37-7.21.1.src.rpm cross-mips-binutils-2.37-7.21.1.x86_64.rpm cross-ppc-binutils-2.37-7.21.1.src.rpm cross-ppc-binutils-2.37-7.21.1.x86_64.rpm cross-ppc64-binutils-2.37-7.21.1.src.rpm cross-ppc64-binutils-2.37-7.21.1.x86_64.rpm cross-ppc64le-binutils-2.37-7.21.1.src.rpm cross-ppc64le-binutils-2.37-7.21.1.x86_64.rpm cross-riscv64-binutils-2.37-7.21.1.src.rpm cross-riscv64-binutils-2.37-7.21.1.x86_64.rpm cross-rx-binutils-2.37-7.21.1.src.rpm cross-rx-binutils-2.37-7.21.1.x86_64.rpm cross-s390-binutils-2.37-7.21.1.src.rpm cross-s390-binutils-2.37-7.21.1.x86_64.rpm cross-s390x-binutils-2.37-7.21.1.src.rpm cross-s390x-binutils-2.37-7.21.1.x86_64.rpm cross-sparc-binutils-2.37-7.21.1.src.rpm cross-sparc-binutils-2.37-7.21.1.x86_64.rpm cross-sparc64-binutils-2.37-7.21.1.src.rpm cross-sparc64-binutils-2.37-7.21.1.x86_64.rpm cross-spu-binutils-2.37-7.21.1.src.rpm cross-spu-binutils-2.37-7.21.1.x86_64.rpm libctf-nobfd0-2.37-7.21.2.x86_64.rpm libctf0-2.37-7.21.2.x86_64.rpm binutils-2.37-7.21.2.s390x.rpm binutils-devel-2.37-7.21.2.s390x.rpm binutils-gold-2.37-7.21.2.s390x.rpm bpftrace-0.11.4-3.2.1.s390x.rpm cross-aarch64-binutils-2.37-7.21.1.s390x.rpm cross-arm-binutils-2.37-7.21.1.s390x.rpm cross-avr-binutils-2.37-7.21.1.s390x.rpm cross-epiphany-binutils-2.37-7.21.1.s390x.rpm cross-hppa-binutils-2.37-7.21.1.s390x.rpm cross-hppa64-binutils-2.37-7.21.1.s390x.rpm cross-i386-binutils-2.37-7.21.1.s390x.rpm cross-ia64-binutils-2.37-7.21.1.s390x.rpm cross-m68k-binutils-2.37-7.21.1.s390x.rpm cross-mips-binutils-2.37-7.21.1.s390x.rpm cross-ppc-binutils-2.37-7.21.1.s390x.rpm cross-ppc64-binutils-2.37-7.21.1.s390x.rpm cross-ppc64le-binutils-2.37-7.21.1.s390x.rpm cross-riscv64-binutils-2.37-7.21.1.s390x.rpm cross-rx-binutils-2.37-7.21.1.s390x.rpm cross-s390-binutils-2.37-7.21.1.s390x.rpm cross-sparc-binutils-2.37-7.21.1.s390x.rpm cross-sparc64-binutils-2.37-7.21.1.s390x.rpm cross-spu-binutils-2.37-7.21.1.s390x.rpm cross-x86_64-binutils-2.37-7.21.1.s390x.rpm cross-x86_64-binutils-2.37-7.21.1.src.rpm libctf-nobfd0-2.37-7.21.2.s390x.rpm libctf0-2.37-7.21.2.s390x.rpm binutils-2.37-7.21.2.ppc64le.rpm binutils-devel-2.37-7.21.2.ppc64le.rpm binutils-gold-2.37-7.21.2.ppc64le.rpm bpftrace-0.11.4-3.2.1.ppc64le.rpm cross-aarch64-binutils-2.37-7.21.1.ppc64le.rpm cross-arm-binutils-2.37-7.21.1.ppc64le.rpm cross-avr-binutils-2.37-7.21.1.ppc64le.rpm cross-epiphany-binutils-2.37-7.21.1.ppc64le.rpm cross-hppa-binutils-2.37-7.21.1.ppc64le.rpm cross-hppa64-binutils-2.37-7.21.1.ppc64le.rpm cross-i386-binutils-2.37-7.21.1.ppc64le.rpm cross-ia64-binutils-2.37-7.21.1.ppc64le.rpm cross-m68k-binutils-2.37-7.21.1.ppc64le.rpm cross-mips-binutils-2.37-7.21.1.ppc64le.rpm cross-ppc-binutils-2.37-7.21.1.ppc64le.rpm cross-ppc64-binutils-2.37-7.21.1.ppc64le.rpm cross-riscv64-binutils-2.37-7.21.1.ppc64le.rpm cross-rx-binutils-2.37-7.21.1.ppc64le.rpm cross-s390-binutils-2.37-7.21.1.ppc64le.rpm cross-s390x-binutils-2.37-7.21.1.ppc64le.rpm cross-sparc-binutils-2.37-7.21.1.ppc64le.rpm cross-sparc64-binutils-2.37-7.21.1.ppc64le.rpm cross-spu-binutils-2.37-7.21.1.ppc64le.rpm cross-x86_64-binutils-2.37-7.21.1.ppc64le.rpm libctf-nobfd0-2.37-7.21.2.ppc64le.rpm libctf0-2.37-7.21.2.ppc64le.rpm binutils-2.37-7.21.2.aarch64.rpm binutils-devel-2.37-7.21.2.aarch64.rpm binutils-gold-2.37-7.21.2.aarch64.rpm bpftrace-0.11.4-3.2.1.aarch64.rpm cross-arm-binutils-2.37-7.21.1.aarch64.rpm cross-avr-binutils-2.37-7.21.1.aarch64.rpm cross-epiphany-binutils-2.37-7.21.1.aarch64.rpm cross-hppa-binutils-2.37-7.21.1.aarch64.rpm cross-hppa64-binutils-2.37-7.21.1.aarch64.rpm cross-i386-binutils-2.37-7.21.1.aarch64.rpm cross-ia64-binutils-2.37-7.21.1.aarch64.rpm cross-m68k-binutils-2.37-7.21.1.aarch64.rpm cross-mips-binutils-2.37-7.21.1.aarch64.rpm cross-ppc-binutils-2.37-7.21.1.aarch64.rpm cross-ppc64-binutils-2.37-7.21.1.aarch64.rpm cross-ppc64le-binutils-2.37-7.21.1.aarch64.rpm cross-riscv64-binutils-2.37-7.21.1.aarch64.rpm cross-rx-binutils-2.37-7.21.1.aarch64.rpm cross-s390-binutils-2.37-7.21.1.aarch64.rpm cross-s390x-binutils-2.37-7.21.1.aarch64.rpm cross-sparc-binutils-2.37-7.21.1.aarch64.rpm cross-sparc64-binutils-2.37-7.21.1.aarch64.rpm cross-spu-binutils-2.37-7.21.1.aarch64.rpm cross-x86_64-binutils-2.37-7.21.1.aarch64.rpm libctf-nobfd0-2.37-7.21.2.aarch64.rpm libctf0-2.37-7.21.2.aarch64.rpm openSUSE-SLE-15.3-2021-3591 moderate SUSE Updates openSUSE-SLE 15.3 This update for man-pages fixes the following issues: - Added missing manual entry for kernel_lockdown in section 7 (bsc#1185534) man-pages-4.16-13.3.1.noarch.rpm man-pages-4.16-13.3.1.src.rpm openSUSE-SLE-15.3-2021-3590 moderate SUSE Updates openSUSE-SLE 15.3 This update for libyui fixes the following issues: - Fixed crash in NCurses online update when retracted packages are present (bsc#1191130) libyui-4.1.5-3.6.1.src.rpm libyui-bindings-4.1.5-3.6.1.src.rpm libyui-devel-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-4.1.5-3.6.1.src.rpm libyui-ncurses-devel-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-pkg-4.1.5-3.6.1.src.rpm libyui-ncurses-pkg-devel-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-pkg15-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-rest-api-4.1.5-3.6.1.src.rpm libyui-ncurses-rest-api-devel-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-rest-api15-4.1.5-3.6.1.x86_64.rpm libyui-ncurses-tools-4.1.5-3.6.1.x86_64.rpm libyui-ncurses15-4.1.5-3.6.1.x86_64.rpm libyui-qt-4.1.5-3.6.1.src.rpm libyui-qt-devel-4.1.5-3.6.1.x86_64.rpm libyui-qt-graph-4.1.5-3.6.1.src.rpm libyui-qt-graph-devel-4.1.5-3.6.1.x86_64.rpm libyui-qt-graph15-4.1.5-3.6.1.x86_64.rpm libyui-qt-pkg-4.1.5-3.6.1.src.rpm libyui-qt-pkg-devel-4.1.5-3.6.1.x86_64.rpm libyui-qt-pkg15-4.1.5-3.6.1.x86_64.rpm libyui-qt-rest-api-4.1.5-3.6.1.src.rpm libyui-qt-rest-api-devel-4.1.5-3.6.1.x86_64.rpm libyui-qt-rest-api15-4.1.5-3.6.1.x86_64.rpm libyui-qt15-4.1.5-3.6.1.x86_64.rpm libyui-rest-api-4.1.5-3.6.1.src.rpm libyui-rest-api-devel-4.1.5-3.6.1.x86_64.rpm libyui-rest-api15-4.1.5-3.6.1.x86_64.rpm libyui15-4.1.5-3.6.1.x86_64.rpm perl-yui-4.1.5-3.6.1.x86_64.rpm python3-yui-4.1.5-3.6.1.x86_64.rpm ruby-yui-4.1.5-3.6.1.x86_64.rpm libyui-devel-4.1.5-3.6.1.s390x.rpm libyui-ncurses-devel-4.1.5-3.6.1.s390x.rpm libyui-ncurses-pkg-devel-4.1.5-3.6.1.s390x.rpm libyui-ncurses-pkg15-4.1.5-3.6.1.s390x.rpm libyui-ncurses-rest-api-devel-4.1.5-3.6.1.s390x.rpm libyui-ncurses-rest-api15-4.1.5-3.6.1.s390x.rpm libyui-ncurses-tools-4.1.5-3.6.1.s390x.rpm libyui-ncurses15-4.1.5-3.6.1.s390x.rpm libyui-qt-devel-4.1.5-3.6.1.s390x.rpm libyui-qt-graph-devel-4.1.5-3.6.1.s390x.rpm libyui-qt-graph15-4.1.5-3.6.1.s390x.rpm libyui-qt-pkg-devel-4.1.5-3.6.1.s390x.rpm libyui-qt-pkg15-4.1.5-3.6.1.s390x.rpm libyui-qt-rest-api-devel-4.1.5-3.6.1.s390x.rpm libyui-qt-rest-api15-4.1.5-3.6.1.s390x.rpm libyui-qt15-4.1.5-3.6.1.s390x.rpm libyui-rest-api-devel-4.1.5-3.6.1.s390x.rpm libyui-rest-api15-4.1.5-3.6.1.s390x.rpm libyui15-4.1.5-3.6.1.s390x.rpm perl-yui-4.1.5-3.6.1.s390x.rpm python3-yui-4.1.5-3.6.1.s390x.rpm ruby-yui-4.1.5-3.6.1.s390x.rpm libyui-devel-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-devel-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-pkg-devel-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-pkg15-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-rest-api-devel-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-rest-api15-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses-tools-4.1.5-3.6.1.ppc64le.rpm libyui-ncurses15-4.1.5-3.6.1.ppc64le.rpm libyui-qt-devel-4.1.5-3.6.1.ppc64le.rpm libyui-qt-graph-devel-4.1.5-3.6.1.ppc64le.rpm libyui-qt-graph15-4.1.5-3.6.1.ppc64le.rpm libyui-qt-pkg-devel-4.1.5-3.6.1.ppc64le.rpm libyui-qt-pkg15-4.1.5-3.6.1.ppc64le.rpm libyui-qt-rest-api-devel-4.1.5-3.6.1.ppc64le.rpm libyui-qt-rest-api15-4.1.5-3.6.1.ppc64le.rpm libyui-qt15-4.1.5-3.6.1.ppc64le.rpm libyui-rest-api-devel-4.1.5-3.6.1.ppc64le.rpm libyui-rest-api15-4.1.5-3.6.1.ppc64le.rpm libyui15-4.1.5-3.6.1.ppc64le.rpm perl-yui-4.1.5-3.6.1.ppc64le.rpm python3-yui-4.1.5-3.6.1.ppc64le.rpm ruby-yui-4.1.5-3.6.1.ppc64le.rpm libyui-devel-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-devel-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-pkg-devel-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-pkg15-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-rest-api-devel-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-rest-api15-4.1.5-3.6.1.aarch64.rpm libyui-ncurses-tools-4.1.5-3.6.1.aarch64.rpm libyui-ncurses15-4.1.5-3.6.1.aarch64.rpm libyui-qt-devel-4.1.5-3.6.1.aarch64.rpm libyui-qt-graph-devel-4.1.5-3.6.1.aarch64.rpm libyui-qt-graph15-4.1.5-3.6.1.aarch64.rpm libyui-qt-pkg-devel-4.1.5-3.6.1.aarch64.rpm libyui-qt-pkg15-4.1.5-3.6.1.aarch64.rpm libyui-qt-rest-api-devel-4.1.5-3.6.1.aarch64.rpm libyui-qt-rest-api15-4.1.5-3.6.1.aarch64.rpm libyui-qt15-4.1.5-3.6.1.aarch64.rpm libyui-rest-api-devel-4.1.5-3.6.1.aarch64.rpm libyui-rest-api15-4.1.5-3.6.1.aarch64.rpm libyui15-4.1.5-3.6.1.aarch64.rpm perl-yui-4.1.5-3.6.1.aarch64.rpm python3-yui-4.1.5-3.6.1.aarch64.rpm ruby-yui-4.1.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3596 moderate SUSE Updates openSUSE-SLE 15.3 This update for libyui-ncurses-pkg fixes the following issues: - Fixed crash in NCurses online update when retracted packages are present (bsc#1191130) libyui-ncurses-pkg-2.50.8-3.3.1.src.rpm libyui-ncurses-pkg-doc-2.50.8-3.3.1.noarch.rpm libyui-ncurses-pkg-doc-2.50.8-3.3.1.src.rpm libyui-ncurses-pkg11-2.50.8-3.3.1.x86_64.rpm libyui-ncurses-pkg11-2.50.8-3.3.1.s390x.rpm libyui-ncurses-pkg11-2.50.8-3.3.1.ppc64le.rpm libyui-ncurses-pkg11-2.50.8-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3603 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - CVE-2021-42762: Updated seccomp rules with latest changes from flatpak (bsc#1191937). libjavascriptcoregtk-4_0-18-2.32.4-15.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.32.4-15.1.x86_64.rpm libwebkit2gtk-4_0-37-2.32.4-15.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.32.4-15.1.x86_64.rpm libwebkit2gtk3-lang-2.32.4-15.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-15.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.32.4-15.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-15.1.x86_64.rpm webkit-jsc-4-2.32.4-15.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.32.4-15.1.x86_64.rpm webkit2gtk3-2.32.4-15.1.src.rpm webkit2gtk3-devel-2.32.4-15.1.x86_64.rpm webkit2gtk3-minibrowser-2.32.4-15.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.32.4-15.1.s390x.rpm libwebkit2gtk-4_0-37-2.32.4-15.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-15.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.32.4-15.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-15.1.s390x.rpm webkit-jsc-4-2.32.4-15.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.32.4-15.1.s390x.rpm webkit2gtk3-devel-2.32.4-15.1.s390x.rpm webkit2gtk3-minibrowser-2.32.4-15.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.32.4-15.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.32.4-15.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-15.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.32.4-15.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-15.1.ppc64le.rpm webkit-jsc-4-2.32.4-15.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.32.4-15.1.ppc64le.rpm webkit2gtk3-devel-2.32.4-15.1.ppc64le.rpm webkit2gtk3-minibrowser-2.32.4-15.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.32.4-15.1.aarch64.rpm libwebkit2gtk-4_0-37-2.32.4-15.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.32.4-15.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.32.4-15.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.32.4-15.1.aarch64.rpm webkit-jsc-4-2.32.4-15.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.32.4-15.1.aarch64.rpm webkit2gtk3-devel-2.32.4-15.1.aarch64.rpm webkit2gtk3-minibrowser-2.32.4-15.1.aarch64.rpm openSUSE-SLE-15.3-2021-3584 important SUSE Updates openSUSE-SLE 15.3 This update for transfig fixes the following issues: Update to fig2dev version 3.2.8 Patchlevel 8b (Aug 2021) - bsc#1190618, CVE-2020-21529: stack buffer overflow in the bezier_spline function in genepic.c. - bsc#1190615, CVE-2020-21530: segmentation fault in the read_objects function in read.c. - bsc#1190617, CVE-2020-21531: global buffer overflow in the conv_pattern_index function in gencgm.c. - bsc#1190616, CVE-2020-21532: global buffer overflow in the setfigfont function in genepic.c. - bsc#1190612, CVE-2020-21533: stack buffer overflow in the read_textobject function in read.c. - bsc#1190611, CVE-2020-21534: global buffer overflow in the get_line function in read.c. - bsc#1190607, CVE-2020-21535: segmentation fault in the gencgm_start function in gencgm.c. - bsc#1192019, CVE-2021-32280: NULL pointer dereference in compute_closed_spline() in trans_spline.c transfig-3.2.8b-4.15.1.src.rpm transfig-3.2.8b-4.15.1.x86_64.rpm transfig-3.2.8b-4.15.1.s390x.rpm transfig-3.2.8b-4.15.1.ppc64le.rpm transfig-3.2.8b-4.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-3663 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools fixes the following issues: - Update to version 15.3.14: * more fixes for updates under secure boot * cert-script: Deal with existing $cert.delete file (bsc#1191804). suse-module-tools-15.3.14-3.14.1.src.rpm suse-module-tools-15.3.14-3.14.1.x86_64.rpm suse-module-tools-legacy-15.3.14-3.14.1.x86_64.rpm suse-module-tools-15.3.14-3.14.1.s390x.rpm suse-module-tools-legacy-15.3.14-3.14.1.s390x.rpm suse-module-tools-15.3.14-3.14.1.ppc64le.rpm suse-module-tools-legacy-15.3.14-3.14.1.ppc64le.rpm suse-module-tools-15.3.14-3.14.1.aarch64.rpm suse-module-tools-legacy-15.3.14-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-3943 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2021-21703: Fixed local privilege escalation via PHP-FPM (bsc#1192050). - CVE-2021-21707: Fixed special character breaks path in xml parsing (bsc#1193041). - Added patch to prevent memory access violation in php7 when running test suite (bsc#1175508) apache2-mod_php7-7.4.6-3.29.1.x86_64.rpm php7-7.4.6-3.29.1.src.rpm php7-7.4.6-3.29.1.x86_64.rpm php7-bcmath-7.4.6-3.29.1.x86_64.rpm php7-bz2-7.4.6-3.29.1.x86_64.rpm php7-calendar-7.4.6-3.29.1.x86_64.rpm php7-ctype-7.4.6-3.29.1.x86_64.rpm php7-curl-7.4.6-3.29.1.x86_64.rpm php7-dba-7.4.6-3.29.1.x86_64.rpm php7-devel-7.4.6-3.29.1.x86_64.rpm php7-dom-7.4.6-3.29.1.x86_64.rpm php7-embed-7.4.6-3.29.1.x86_64.rpm php7-enchant-7.4.6-3.29.1.x86_64.rpm php7-exif-7.4.6-3.29.1.x86_64.rpm php7-fastcgi-7.4.6-3.29.1.x86_64.rpm php7-fileinfo-7.4.6-3.29.1.x86_64.rpm php7-firebird-7.4.6-3.29.1.x86_64.rpm php7-fpm-7.4.6-3.29.1.x86_64.rpm php7-ftp-7.4.6-3.29.1.x86_64.rpm php7-gd-7.4.6-3.29.1.x86_64.rpm php7-gettext-7.4.6-3.29.1.x86_64.rpm php7-gmp-7.4.6-3.29.1.x86_64.rpm php7-iconv-7.4.6-3.29.1.x86_64.rpm php7-intl-7.4.6-3.29.1.x86_64.rpm php7-json-7.4.6-3.29.1.x86_64.rpm php7-ldap-7.4.6-3.29.1.x86_64.rpm php7-mbstring-7.4.6-3.29.1.x86_64.rpm php7-mysql-7.4.6-3.29.1.x86_64.rpm php7-odbc-7.4.6-3.29.1.x86_64.rpm php7-opcache-7.4.6-3.29.1.x86_64.rpm php7-openssl-7.4.6-3.29.1.x86_64.rpm php7-pcntl-7.4.6-3.29.1.x86_64.rpm php7-pdo-7.4.6-3.29.1.x86_64.rpm php7-pgsql-7.4.6-3.29.1.x86_64.rpm php7-phar-7.4.6-3.29.1.x86_64.rpm php7-posix-7.4.6-3.29.1.x86_64.rpm php7-readline-7.4.6-3.29.1.x86_64.rpm php7-shmop-7.4.6-3.29.1.x86_64.rpm php7-snmp-7.4.6-3.29.1.x86_64.rpm php7-soap-7.4.6-3.29.1.x86_64.rpm php7-sockets-7.4.6-3.29.1.x86_64.rpm php7-sodium-7.4.6-3.29.1.x86_64.rpm php7-sqlite-7.4.6-3.29.1.x86_64.rpm php7-sysvmsg-7.4.6-3.29.1.x86_64.rpm php7-sysvsem-7.4.6-3.29.1.x86_64.rpm php7-sysvshm-7.4.6-3.29.1.x86_64.rpm php7-test-7.4.6-3.29.1.src.rpm php7-test-7.4.6-3.29.1.x86_64.rpm php7-tidy-7.4.6-3.29.1.x86_64.rpm php7-tokenizer-7.4.6-3.29.1.x86_64.rpm php7-xmlreader-7.4.6-3.29.1.x86_64.rpm php7-xmlrpc-7.4.6-3.29.1.x86_64.rpm php7-xmlwriter-7.4.6-3.29.1.x86_64.rpm php7-xsl-7.4.6-3.29.1.x86_64.rpm php7-zip-7.4.6-3.29.1.x86_64.rpm php7-zlib-7.4.6-3.29.1.x86_64.rpm apache2-mod_php7-7.4.6-3.29.1.s390x.rpm php7-7.4.6-3.29.1.s390x.rpm php7-bcmath-7.4.6-3.29.1.s390x.rpm php7-bz2-7.4.6-3.29.1.s390x.rpm php7-calendar-7.4.6-3.29.1.s390x.rpm php7-ctype-7.4.6-3.29.1.s390x.rpm php7-curl-7.4.6-3.29.1.s390x.rpm php7-dba-7.4.6-3.29.1.s390x.rpm php7-devel-7.4.6-3.29.1.s390x.rpm php7-dom-7.4.6-3.29.1.s390x.rpm php7-embed-7.4.6-3.29.1.s390x.rpm php7-enchant-7.4.6-3.29.1.s390x.rpm php7-exif-7.4.6-3.29.1.s390x.rpm php7-fastcgi-7.4.6-3.29.1.s390x.rpm php7-fileinfo-7.4.6-3.29.1.s390x.rpm php7-firebird-7.4.6-3.29.1.s390x.rpm php7-fpm-7.4.6-3.29.1.s390x.rpm php7-ftp-7.4.6-3.29.1.s390x.rpm php7-gd-7.4.6-3.29.1.s390x.rpm php7-gettext-7.4.6-3.29.1.s390x.rpm php7-gmp-7.4.6-3.29.1.s390x.rpm php7-iconv-7.4.6-3.29.1.s390x.rpm php7-intl-7.4.6-3.29.1.s390x.rpm php7-json-7.4.6-3.29.1.s390x.rpm php7-ldap-7.4.6-3.29.1.s390x.rpm php7-mbstring-7.4.6-3.29.1.s390x.rpm php7-mysql-7.4.6-3.29.1.s390x.rpm php7-odbc-7.4.6-3.29.1.s390x.rpm php7-opcache-7.4.6-3.29.1.s390x.rpm php7-openssl-7.4.6-3.29.1.s390x.rpm php7-pcntl-7.4.6-3.29.1.s390x.rpm php7-pdo-7.4.6-3.29.1.s390x.rpm php7-pgsql-7.4.6-3.29.1.s390x.rpm php7-phar-7.4.6-3.29.1.s390x.rpm php7-posix-7.4.6-3.29.1.s390x.rpm php7-readline-7.4.6-3.29.1.s390x.rpm php7-shmop-7.4.6-3.29.1.s390x.rpm php7-snmp-7.4.6-3.29.1.s390x.rpm php7-soap-7.4.6-3.29.1.s390x.rpm php7-sockets-7.4.6-3.29.1.s390x.rpm php7-sodium-7.4.6-3.29.1.s390x.rpm php7-sqlite-7.4.6-3.29.1.s390x.rpm php7-sysvmsg-7.4.6-3.29.1.s390x.rpm php7-sysvsem-7.4.6-3.29.1.s390x.rpm php7-sysvshm-7.4.6-3.29.1.s390x.rpm php7-test-7.4.6-3.29.1.s390x.rpm php7-tidy-7.4.6-3.29.1.s390x.rpm php7-tokenizer-7.4.6-3.29.1.s390x.rpm php7-xmlreader-7.4.6-3.29.1.s390x.rpm php7-xmlrpc-7.4.6-3.29.1.s390x.rpm php7-xmlwriter-7.4.6-3.29.1.s390x.rpm php7-xsl-7.4.6-3.29.1.s390x.rpm php7-zip-7.4.6-3.29.1.s390x.rpm php7-zlib-7.4.6-3.29.1.s390x.rpm apache2-mod_php7-7.4.6-3.29.1.ppc64le.rpm php7-7.4.6-3.29.1.ppc64le.rpm php7-bcmath-7.4.6-3.29.1.ppc64le.rpm php7-bz2-7.4.6-3.29.1.ppc64le.rpm php7-calendar-7.4.6-3.29.1.ppc64le.rpm php7-ctype-7.4.6-3.29.1.ppc64le.rpm php7-curl-7.4.6-3.29.1.ppc64le.rpm php7-dba-7.4.6-3.29.1.ppc64le.rpm php7-devel-7.4.6-3.29.1.ppc64le.rpm php7-dom-7.4.6-3.29.1.ppc64le.rpm php7-embed-7.4.6-3.29.1.ppc64le.rpm php7-enchant-7.4.6-3.29.1.ppc64le.rpm php7-exif-7.4.6-3.29.1.ppc64le.rpm php7-fastcgi-7.4.6-3.29.1.ppc64le.rpm php7-fileinfo-7.4.6-3.29.1.ppc64le.rpm php7-firebird-7.4.6-3.29.1.ppc64le.rpm php7-fpm-7.4.6-3.29.1.ppc64le.rpm php7-ftp-7.4.6-3.29.1.ppc64le.rpm php7-gd-7.4.6-3.29.1.ppc64le.rpm php7-gettext-7.4.6-3.29.1.ppc64le.rpm php7-gmp-7.4.6-3.29.1.ppc64le.rpm php7-iconv-7.4.6-3.29.1.ppc64le.rpm php7-intl-7.4.6-3.29.1.ppc64le.rpm php7-json-7.4.6-3.29.1.ppc64le.rpm php7-ldap-7.4.6-3.29.1.ppc64le.rpm php7-mbstring-7.4.6-3.29.1.ppc64le.rpm php7-mysql-7.4.6-3.29.1.ppc64le.rpm php7-odbc-7.4.6-3.29.1.ppc64le.rpm php7-opcache-7.4.6-3.29.1.ppc64le.rpm php7-openssl-7.4.6-3.29.1.ppc64le.rpm php7-pcntl-7.4.6-3.29.1.ppc64le.rpm php7-pdo-7.4.6-3.29.1.ppc64le.rpm php7-pgsql-7.4.6-3.29.1.ppc64le.rpm php7-phar-7.4.6-3.29.1.ppc64le.rpm php7-posix-7.4.6-3.29.1.ppc64le.rpm php7-readline-7.4.6-3.29.1.ppc64le.rpm php7-shmop-7.4.6-3.29.1.ppc64le.rpm php7-snmp-7.4.6-3.29.1.ppc64le.rpm php7-soap-7.4.6-3.29.1.ppc64le.rpm php7-sockets-7.4.6-3.29.1.ppc64le.rpm php7-sodium-7.4.6-3.29.1.ppc64le.rpm php7-sqlite-7.4.6-3.29.1.ppc64le.rpm php7-sysvmsg-7.4.6-3.29.1.ppc64le.rpm php7-sysvsem-7.4.6-3.29.1.ppc64le.rpm php7-sysvshm-7.4.6-3.29.1.ppc64le.rpm php7-test-7.4.6-3.29.1.ppc64le.rpm php7-tidy-7.4.6-3.29.1.ppc64le.rpm php7-tokenizer-7.4.6-3.29.1.ppc64le.rpm php7-xmlreader-7.4.6-3.29.1.ppc64le.rpm php7-xmlrpc-7.4.6-3.29.1.ppc64le.rpm php7-xmlwriter-7.4.6-3.29.1.ppc64le.rpm php7-xsl-7.4.6-3.29.1.ppc64le.rpm php7-zip-7.4.6-3.29.1.ppc64le.rpm php7-zlib-7.4.6-3.29.1.ppc64le.rpm apache2-mod_php7-7.4.6-3.29.1.aarch64.rpm php7-7.4.6-3.29.1.aarch64.rpm php7-bcmath-7.4.6-3.29.1.aarch64.rpm php7-bz2-7.4.6-3.29.1.aarch64.rpm php7-calendar-7.4.6-3.29.1.aarch64.rpm php7-ctype-7.4.6-3.29.1.aarch64.rpm php7-curl-7.4.6-3.29.1.aarch64.rpm php7-dba-7.4.6-3.29.1.aarch64.rpm php7-devel-7.4.6-3.29.1.aarch64.rpm php7-dom-7.4.6-3.29.1.aarch64.rpm php7-embed-7.4.6-3.29.1.aarch64.rpm php7-enchant-7.4.6-3.29.1.aarch64.rpm php7-exif-7.4.6-3.29.1.aarch64.rpm php7-fastcgi-7.4.6-3.29.1.aarch64.rpm php7-fileinfo-7.4.6-3.29.1.aarch64.rpm php7-firebird-7.4.6-3.29.1.aarch64.rpm php7-fpm-7.4.6-3.29.1.aarch64.rpm php7-ftp-7.4.6-3.29.1.aarch64.rpm php7-gd-7.4.6-3.29.1.aarch64.rpm php7-gettext-7.4.6-3.29.1.aarch64.rpm php7-gmp-7.4.6-3.29.1.aarch64.rpm php7-iconv-7.4.6-3.29.1.aarch64.rpm php7-intl-7.4.6-3.29.1.aarch64.rpm php7-json-7.4.6-3.29.1.aarch64.rpm php7-ldap-7.4.6-3.29.1.aarch64.rpm php7-mbstring-7.4.6-3.29.1.aarch64.rpm php7-mysql-7.4.6-3.29.1.aarch64.rpm php7-odbc-7.4.6-3.29.1.aarch64.rpm php7-opcache-7.4.6-3.29.1.aarch64.rpm php7-openssl-7.4.6-3.29.1.aarch64.rpm php7-pcntl-7.4.6-3.29.1.aarch64.rpm php7-pdo-7.4.6-3.29.1.aarch64.rpm php7-pgsql-7.4.6-3.29.1.aarch64.rpm php7-phar-7.4.6-3.29.1.aarch64.rpm php7-posix-7.4.6-3.29.1.aarch64.rpm php7-readline-7.4.6-3.29.1.aarch64.rpm php7-shmop-7.4.6-3.29.1.aarch64.rpm php7-snmp-7.4.6-3.29.1.aarch64.rpm php7-soap-7.4.6-3.29.1.aarch64.rpm php7-sockets-7.4.6-3.29.1.aarch64.rpm php7-sodium-7.4.6-3.29.1.aarch64.rpm php7-sqlite-7.4.6-3.29.1.aarch64.rpm php7-sysvmsg-7.4.6-3.29.1.aarch64.rpm php7-sysvsem-7.4.6-3.29.1.aarch64.rpm php7-sysvshm-7.4.6-3.29.1.aarch64.rpm php7-test-7.4.6-3.29.1.aarch64.rpm php7-tidy-7.4.6-3.29.1.aarch64.rpm php7-tokenizer-7.4.6-3.29.1.aarch64.rpm php7-xmlreader-7.4.6-3.29.1.aarch64.rpm php7-xmlrpc-7.4.6-3.29.1.aarch64.rpm php7-xmlwriter-7.4.6-3.29.1.aarch64.rpm php7-xsl-7.4.6-3.29.1.aarch64.rpm php7-zip-7.4.6-3.29.1.aarch64.rpm php7-zlib-7.4.6-3.29.1.aarch64.rpm openSUSE-SLE-15.3-2021-3581 important SUSE Updates openSUSE-SLE 15.3 This update for SUSEConnect contains the following fix: - Update to 0.3.32: - Allow --regcode and --instance-data attributes at the same time. (jsc#PCT-164) - Document that 'debug' can also get set in the config file - --status will also print the subscription name SUSEConnect-0.3.32-16.1.src.rpm SUSEConnect-0.3.32-16.1.x86_64.rpm SUSEConnect-0.3.32-16.1.s390x.rpm SUSEConnect-0.3.32-16.1.ppc64le.rpm SUSEConnect-0.3.32-16.1.aarch64.rpm openSUSE-SLE-15.3-2021-3672 moderate SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issues: - CVE-2021-30640: Escape parameters in JNDI Realm queries (bsc#1188279). - CVE-2021-33037: Process T-E header from both HTTP 1.0 and HTTP 1.1. clients (bsc#1188278). - CVE-2021-41079: Fixed a denial of service caused by an unexpected TLS packet (bsc#1190558). tomcat-9.0.36-13.1.noarch.rpm tomcat-9.0.36-13.1.src.rpm tomcat-admin-webapps-9.0.36-13.1.noarch.rpm tomcat-docs-webapp-9.0.36-13.1.noarch.rpm tomcat-el-3_0-api-9.0.36-13.1.noarch.rpm tomcat-embed-9.0.36-13.1.noarch.rpm tomcat-javadoc-9.0.36-13.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-13.1.noarch.rpm tomcat-jsvc-9.0.36-13.1.noarch.rpm tomcat-lib-9.0.36-13.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-13.1.noarch.rpm tomcat-webapps-9.0.36-13.1.noarch.rpm openSUSE-SLE-15.3-2021-3873 important SUSE Updates openSUSE-SLE 15.3 This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. libnetcdf-gnu-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf18-32bit-4.7.4-4.3.2.x86_64.rpm libnetcdf18-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi2-32bit-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi2-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi3-32bit-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi3-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi4-32bit-4.7.4-4.3.2.x86_64.rpm libnetcdf18-openmpi4-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.x86_64.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.x86_64.rpm netcdf-4.7.4-4.3.2.src.rpm netcdf-4.7.4-4.3.2.x86_64.rpm netcdf-devel-4.7.4-4.3.2.x86_64.rpm netcdf-devel-data-4.7.4-4.3.2.x86_64.rpm netcdf-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf-gnu-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-mpich-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-mpich-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.noarch.rpm netcdf-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.noarch.rpm netcdf-openmpi2-4.7.4-4.3.2.src.rpm netcdf-openmpi2-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi2-devel-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi2-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi3-4.7.4-4.3.2.src.rpm netcdf-openmpi3-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi3-devel-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi3-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi4-4.7.4-4.3.2.src.rpm netcdf-openmpi4-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi4-devel-4.7.4-4.3.2.x86_64.rpm netcdf-openmpi4-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.src.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.x86_64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2.x86_64.rpm libnetcdf-gnu-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf18-4.7.4-4.3.2.s390x.rpm libnetcdf18-openmpi2-4.7.4-4.3.2.s390x.rpm libnetcdf18-openmpi3-4.7.4-4.3.2.s390x.rpm libnetcdf18-openmpi4-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.s390x.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.s390x.rpm netcdf-4.7.4-4.3.2.s390x.rpm netcdf-devel-4.7.4-4.3.2.s390x.rpm netcdf-devel-data-4.7.4-4.3.2.s390x.rpm netcdf-devel-static-4.7.4-4.3.2.s390x.rpm netcdf-openmpi2-4.7.4-4.3.2.s390x.rpm netcdf-openmpi2-devel-4.7.4-4.3.2.s390x.rpm netcdf-openmpi2-devel-static-4.7.4-4.3.2.s390x.rpm netcdf-openmpi3-4.7.4-4.3.2.s390x.rpm netcdf-openmpi3-devel-4.7.4-4.3.2.s390x.rpm netcdf-openmpi3-devel-static-4.7.4-4.3.2.s390x.rpm netcdf-openmpi4-4.7.4-4.3.2.s390x.rpm netcdf-openmpi4-devel-4.7.4-4.3.2.s390x.rpm netcdf-openmpi4-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.s390x.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2.s390x.rpm libnetcdf-gnu-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf18-4.7.4-4.3.2.ppc64le.rpm libnetcdf18-openmpi2-4.7.4-4.3.2.ppc64le.rpm libnetcdf18-openmpi3-4.7.4-4.3.2.ppc64le.rpm libnetcdf18-openmpi4-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.ppc64le.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf-4.7.4-4.3.2.ppc64le.rpm netcdf-devel-4.7.4-4.3.2.ppc64le.rpm netcdf-devel-data-4.7.4-4.3.2.ppc64le.rpm netcdf-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi2-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi2-devel-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi2-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi3-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi3-devel-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi3-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi4-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi4-devel-4.7.4-4.3.2.ppc64le.rpm netcdf-openmpi4-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.ppc64le.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2.ppc64le.rpm libnetcdf-gnu-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-mpich-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-mvapich2-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-openmpi2-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-openmpi3-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf-gnu-openmpi4-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf18-4.7.4-4.3.2.aarch64.rpm libnetcdf18-openmpi2-4.7.4-4.3.2.aarch64.rpm libnetcdf18-openmpi3-4.7.4-4.3.2.aarch64.rpm libnetcdf18-openmpi4-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.aarch64.rpm libnetcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.aarch64.rpm netcdf-4.7.4-4.3.2.aarch64.rpm netcdf-devel-4.7.4-4.3.2.aarch64.rpm netcdf-devel-data-4.7.4-4.3.2.aarch64.rpm netcdf-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi2-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi2-devel-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi2-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi3-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi3-devel-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi3-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi4-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi4-devel-4.7.4-4.3.2.aarch64.rpm netcdf-openmpi4-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mpich-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-mvapich2-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi2-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi3-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-4.7.4-4.3.2.aarch64.rpm netcdf_4_7_4-gnu-openmpi4-hpc-devel-static-4.7.4-4.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-3805 important SUSE Updates openSUSE-SLE 15.3 This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. libnetcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.src.rpm netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-4.7.3-3.7.2.x86_64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-static-4.7.3-3.7.2.x86_64.rpm libnetcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-4.7.3-3.7.2.ppc64le.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-static-4.7.3-3.7.2.ppc64le.rpm libnetcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.aarch64.rpm libnetcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.aarch64.rpm libnetcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.aarch64.rpm libnetcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.aarch64.rpm libnetcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mpich-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mpich-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-mvapich2-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi2-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-4.7.3-3.7.2.aarch64.rpm netcdf_4_7_3-gnu-openmpi3-hpc-devel-static-4.7.3-3.7.2.aarch64.rpm openSUSE-SLE-15.3-2021-3815 important SUSE Updates openSUSE-SLE 15.3 This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. libnetcdf-gnu-openmpi1-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.x86_64.rpm libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.x86_64.rpm netcdf-gnu-openmpi1-hpc-4.6.1-10.7.2.noarch.rpm netcdf-gnu-openmpi1-hpc-devel-4.6.1-10.7.2.noarch.rpm netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-hpc-devel-data-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.src.rpm netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2.x86_64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2.x86_64.rpm libnetcdf-gnu-openmpi1-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.ppc64le.rpm libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-hpc-devel-data-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2.ppc64le.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2.ppc64le.rpm libnetcdf-gnu-openmpi1-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.aarch64.rpm libnetcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-hpc-devel-data-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mpich-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mpich-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-mvapich2-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi1-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-4.6.1-10.7.2.aarch64.rpm netcdf_4_6_1-gnu-openmpi2-hpc-devel-static-4.6.1-10.7.2.aarch64.rpm openSUSE-SLE-15.3-2021-3804 important SUSE Updates openSUSE-SLE 15.3 This update for netcdf fixes the following issues: - Fixed multiple vulnerabilities in ezXML: CVE-2019-20007, CVE-2019-20006, CVE-2019-20201, CVE-2019-20202, CVE-2019-20199, CVE-2019-20200, CVE-2019-20198, CVE-2021-26221, CVE-2021-26222, CVE-2021-30485, CVE-2021-31229, CVE-2021-31347, CVE-2021-31348, CVE-2021-31598 (bsc#1191856) Note: * CVE-2021-26220 https://sourceforge.net/p/ezxml/bugs/23 not relevant for netcdf: code isn't used. * CVE-2019-20005 https://sourceforge.net/p/ezxml/bugs/14 Issue cannot be reproduced and no patch is available upstream. libnetcdf13-32bit-4.6.1-5.7.1.x86_64.rpm libnetcdf13-4.6.1-5.7.1.x86_64.rpm libnetcdf13-openmpi-32bit-4.6.1-5.7.1.x86_64.rpm libnetcdf13-openmpi-4.6.1-5.7.1.x86_64.rpm netcdf-4.6.1-5.7.1.src.rpm netcdf-openmpi-4.6.1-5.7.1.src.rpm netcdf-openmpi-4.6.1-5.7.1.x86_64.rpm netcdf-openmpi-devel-4.6.1-5.7.1.x86_64.rpm netcdf-openmpi-devel-data-4.6.1-5.7.1.x86_64.rpm netcdf-openmpi-devel-static-4.6.1-5.7.1.x86_64.rpm libnetcdf13-4.6.1-5.7.1.ppc64le.rpm libnetcdf13-openmpi-4.6.1-5.7.1.ppc64le.rpm netcdf-openmpi-4.6.1-5.7.1.ppc64le.rpm netcdf-openmpi-devel-4.6.1-5.7.1.ppc64le.rpm netcdf-openmpi-devel-data-4.6.1-5.7.1.ppc64le.rpm netcdf-openmpi-devel-static-4.6.1-5.7.1.ppc64le.rpm libnetcdf13-4.6.1-5.7.1.aarch64.rpm libnetcdf13-openmpi-4.6.1-5.7.1.aarch64.rpm netcdf-openmpi-4.6.1-5.7.1.aarch64.rpm netcdf-openmpi-devel-4.6.1-5.7.1.aarch64.rpm netcdf-openmpi-devel-data-4.6.1-5.7.1.aarch64.rpm netcdf-openmpi-devel-static-4.6.1-5.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-3899 moderate SUSE Updates openSUSE-SLE 15.3 This update for aaa_base fixes the following issues: - Allowed ping and ICMP commands without CAP_NET_RAW (bsc#1174504). - Add $HOME/.local/bin to PATH, if it exists (bsc#1192248). - Fixed get_kernel_version.c to work also for recent kernels on the s390/X platform (bsc#1191563). - Support xz compressed kernel (bsc#1162581) aaa_base-84.87+git20180409.04c9dae-3.52.1.src.rpm aaa_base-84.87+git20180409.04c9dae-3.52.1.x86_64.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.52.1.x86_64.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.52.1.x86_64.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.52.1.x86_64.rpm aaa_base-84.87+git20180409.04c9dae-3.52.1.s390x.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.52.1.s390x.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.52.1.s390x.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.52.1.s390x.rpm aaa_base-84.87+git20180409.04c9dae-3.52.1.ppc64le.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.52.1.ppc64le.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.52.1.ppc64le.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.52.1.ppc64le.rpm aaa_base-84.87+git20180409.04c9dae-3.52.1.aarch64.rpm aaa_base-extras-84.87+git20180409.04c9dae-3.52.1.aarch64.rpm aaa_base-malloccheck-84.87+git20180409.04c9dae-3.52.1.aarch64.rpm aaa_base-wsl-84.87+git20180409.04c9dae-3.52.1.aarch64.rpm openSUSE-SLE-15.3-2021-3766 moderate SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - Installation of the "git-daemon" package needs nogroup group dependency (bsc#1192023) git-2.31.1-10.6.1.src.rpm git-2.31.1-10.6.1.x86_64.rpm git-arch-2.31.1-10.6.1.x86_64.rpm git-core-2.31.1-10.6.1.x86_64.rpm git-credential-gnome-keyring-2.31.1-10.6.1.x86_64.rpm git-credential-libsecret-2.31.1-10.6.1.x86_64.rpm git-cvs-2.31.1-10.6.1.x86_64.rpm git-daemon-2.31.1-10.6.1.x86_64.rpm git-doc-2.31.1-10.6.1.noarch.rpm git-email-2.31.1-10.6.1.x86_64.rpm git-gui-2.31.1-10.6.1.x86_64.rpm git-p4-2.31.1-10.6.1.x86_64.rpm git-svn-2.31.1-10.6.1.x86_64.rpm git-web-2.31.1-10.6.1.x86_64.rpm gitk-2.31.1-10.6.1.x86_64.rpm perl-Git-2.31.1-10.6.1.x86_64.rpm git-2.31.1-10.6.1.s390x.rpm git-arch-2.31.1-10.6.1.s390x.rpm git-core-2.31.1-10.6.1.s390x.rpm git-credential-gnome-keyring-2.31.1-10.6.1.s390x.rpm git-credential-libsecret-2.31.1-10.6.1.s390x.rpm git-cvs-2.31.1-10.6.1.s390x.rpm git-daemon-2.31.1-10.6.1.s390x.rpm git-email-2.31.1-10.6.1.s390x.rpm git-gui-2.31.1-10.6.1.s390x.rpm git-p4-2.31.1-10.6.1.s390x.rpm git-svn-2.31.1-10.6.1.s390x.rpm git-web-2.31.1-10.6.1.s390x.rpm gitk-2.31.1-10.6.1.s390x.rpm perl-Git-2.31.1-10.6.1.s390x.rpm git-2.31.1-10.6.1.ppc64le.rpm git-arch-2.31.1-10.6.1.ppc64le.rpm git-core-2.31.1-10.6.1.ppc64le.rpm git-credential-gnome-keyring-2.31.1-10.6.1.ppc64le.rpm git-credential-libsecret-2.31.1-10.6.1.ppc64le.rpm git-cvs-2.31.1-10.6.1.ppc64le.rpm git-daemon-2.31.1-10.6.1.ppc64le.rpm git-email-2.31.1-10.6.1.ppc64le.rpm git-gui-2.31.1-10.6.1.ppc64le.rpm git-p4-2.31.1-10.6.1.ppc64le.rpm git-svn-2.31.1-10.6.1.ppc64le.rpm git-web-2.31.1-10.6.1.ppc64le.rpm gitk-2.31.1-10.6.1.ppc64le.rpm perl-Git-2.31.1-10.6.1.ppc64le.rpm git-2.31.1-10.6.1.aarch64.rpm git-arch-2.31.1-10.6.1.aarch64.rpm git-core-2.31.1-10.6.1.aarch64.rpm git-credential-gnome-keyring-2.31.1-10.6.1.aarch64.rpm git-credential-libsecret-2.31.1-10.6.1.aarch64.rpm git-cvs-2.31.1-10.6.1.aarch64.rpm git-daemon-2.31.1-10.6.1.aarch64.rpm git-email-2.31.1-10.6.1.aarch64.rpm git-gui-2.31.1-10.6.1.aarch64.rpm git-p4-2.31.1-10.6.1.aarch64.rpm git-svn-2.31.1-10.6.1.aarch64.rpm git-web-2.31.1-10.6.1.aarch64.rpm gitk-2.31.1-10.6.1.aarch64.rpm perl-Git-2.31.1-10.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3774 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issue: - Improve client fail over to regain access to nfs share (bsc#1184382) ldirectord-4.8.0+git30.d0077df0-8.17.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-8.17.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.src.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-8.17.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-8.17.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-8.17.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-8.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3615 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openj9 fixes the following issues: Update to OpenJDK 8u312 build 07 with OpenJ9 0.29.0 virtual machine including Oracle July 2021 and October 2021 CPU changes - CVE-2021-2161: Fixed incorrect handling of partially quoted arguments in ProcessBuilder on Windows (bsc#1185056). - CVE-2021-2163: Fixed incomplete enforcement of JAR signing disabled algorithms (bsc#1185055). - CVE-2021-2341: Fixed flaw inside the FtpClient (bsc#1188564). - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files (bsc#1188565). - CVE-2021-2388: Fixed flaw inside the Hotspot component performed range check elimination (bsc#1188566). - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). java-1_8_0-openj9-1.8.0.312-3.18.2.src.rpm java-1_8_0-openj9-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-accessibility-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-demo-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-devel-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-headless-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-javadoc-1.8.0.312-3.18.2.noarch.rpm java-1_8_0-openj9-src-1.8.0.312-3.18.2.x86_64.rpm java-1_8_0-openj9-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-accessibility-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-demo-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-devel-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-headless-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-src-1.8.0.312-3.18.2.s390x.rpm java-1_8_0-openj9-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-accessibility-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-demo-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-devel-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-headless-1.8.0.312-3.18.2.ppc64le.rpm java-1_8_0-openj9-src-1.8.0.312-3.18.2.ppc64le.rpm openSUSE-SLE-15.3-2021-3778 moderate SUSE Updates openSUSE-SLE 15.3 This update for tuned fixes the following issues: - Follow upstream and set backup latency requirement to 3 (bsc#1191341) tuned-2.10.0-11.6.1.noarch.rpm tuned-2.10.0-11.6.1.src.rpm tuned-gtk-2.10.0-11.6.1.noarch.rpm tuned-profiles-atomic-2.10.0-11.6.1.noarch.rpm tuned-profiles-nfv-2.10.0-11.6.1.noarch.rpm tuned-profiles-oracle-2.10.0-11.6.1.noarch.rpm tuned-profiles-realtime-2.10.0-11.6.1.noarch.rpm tuned-utils-2.10.0-11.6.1.noarch.rpm tuned-utils-systemtap-2.10.0-11.6.1.noarch.rpm openSUSE-SLE-15.3-2021-3612 moderate SUSE Updates openSUSE-SLE 15.3 This update for post-build-checks-malwarescan fixes the following issues: - Ensure that busybox cpio is supported post-build-checks-malwarescan-0.1-3.19.1.noarch.rpm post-build-checks-malwarescan-0.1-3.19.1.src.rpm openSUSE-SLE-15.3-2021-3655 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. NOTE: This update was retracted due to a NFS regression. The following security bugs were fixed: - CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351). - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have allowed the kernel to read uninitialized memory (bsc#1188563). - CVE-2021-43056: Fixed possible KVM host crash via malicious KVM guest on Power8 (bnc#1192107). - CVE-2021-3896: Fixed a array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (bsc#1191958). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067). - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673). - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2021-33033: Fixed a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled (bsc#1186109). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-34866: Fixed eBPF Type Confusion Privilege Escalation Vulnerability (bsc#1191645). - CVE-2021-42252: Fixed an issue inside aspeed_lpc_ctrl_mmap that could have allowed local attackers to access the Aspeed LPC control interface to overwrite memory in the kernel and potentially execute privileges (bnc#1190479). - CVE-2021-41864: Fixed prealloc_elems_and_freelist that allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: Fixed a slab out-of-bounds write in the decode_data function in drivers/net/hamradio/6pack.c. Input from a process that had the CAP_NET_ADMIN capability could have lead to root access (bsc#1191315). The following non-security bugs were fixed: - ACPI: NFIT: Use fallback node id when numa info in NFIT table is incorrect (git-fixes). - ACPI: bgrt: Fix CFI violation (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ALSA: hda - Enable headphone mic on Dell Latitude laptops with ALC3254 (git-fixes). - ALSA: hda/realtek - ALC236 headset MIC recording issue (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PC50HS (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo X170KM-G (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek: Complete partial device name to avoid ambiguity (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell Precision 5560 laptop (git-fixes). - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo 13s Gen2 (git-fixes). - ALSA: hda/realtek: Fix the mic type detection issue for ASUS G551JW (git-fixes). - ALSA: hda/realtek: Quirks to enable speaker output for Lenovo Legion 7i 15IMHG05, Yoga 7i 14ITL5/15ITL5, and 13s Gen2 laptops (git-fixes). - ALSA: hda: avoid write to STATESTS if controller is in reset (git-fixes). - ALSA: hda: intel: Allow repeatedly probing on codec configuration errors (bsc#1190801). - ALSA: pcm: Workaround for a wrong offset in SYNC_PTR compat ioctl (git-fixes). - ALSA: seq: Fix a potential UAF by wrong private_free call order (git-fixes). - ALSA: usb-audio: Add quirk for VF0770 (git-fixes). - ALSA: usb-audio: Provide quirk for Sennheiser GSP670 Headset (git-fixes). - ASoC: DAPM: Fix missing kctl change notifications (git-fixes). - ASoC: Intel: Skylake: Fix module configuration for KPB and MIXER (git-fixes). - ASoC: Intel: Skylake: Fix passing loadable flag for module (git-fixes). - ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the matching in-/output (git-fixes). - ASoC: Intel: sof_sdw: tag SoundWire BEs as non-atomic (git-fixes). - ASoC: SOF: imx: imx8: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: imx: imx8m: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: loader: release_firmware() on load failure to avoid batching (git-fixes). - ASoC: atmel: ATMEL drivers do not need HAS_DMA (git-fixes). - ASoC: dapm: use component prefix when checking widget names (git-fixes). - ASoC: fsl_spdif: register platform component before registering cpu dai (git-fixes). - ASoC: wm8960: Fix clock configuration on slave mode (git-fixes). - Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731). - Configure mpi3mr as currently unsupported (jsc#SLE-18120) - HID: apple: Fix logical maximum and usage maximum of Magic Keyboard JIS (git-fixes). - HID: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes). - HID: u2fzero: ignore incomplete packets without data (git-fixes). - HID: usbhid: free raw_report buffers in usbhid_stop (git-fixes). - HID: wacom: Add new Intuos BT (CTL-4100WL/CTL-6100WL) device IDs (git-fixes). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - Input: snvs_pwrkey - add clk handling (git-fixes). - Input: xpad - add support for another USB ID of Nacon GC-100 (git-fixes). - KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs are live (bsc#1156395). - KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state (bsc#1156395). - KVM: PPC: Book3S HV: Fix copy_tofrom_guest routines (jsc#SLE-12936 git-fixes). - KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729). - KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing registers (bsc#1156395). - KVM: PPC: Fix clearing never mapped TCEs in realmode (bsc#1156395). - KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak (bsc#1156395). - NFC: digital: fix possible memory leak in digital_in_send_sdd_req() (git-fixes). - NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() (git-fixes). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - PCI: Fix pci_host_bridge struct device release/free handling (git-fixes). - PM / devfreq: rk3399_dmc: Add missing of_node_put() (git-fixes). - PM / devfreq: rk3399_dmc: Disable devfreq-event device when fails (git-fixes). - PM / devfreq: rk3399_dmc: Fix kernel oops when rockchip,pmu is absent (git-fixes). - PM / devfreq: rk3399_dmc: Fix spelling typo (git-fixes). - PM / devfreq: rk3399_dmc: Remove unneeded semicolon (git-fixes). - RDMA/cma: Do not change route.addr.src_addr.ss_family (bsc#1181147). - RDMA/cma: Fix listener leak in rdma_cma_listen_on_all() failure (bsc#1181147). - USB: cdc-acm: clean up probe error labels (git-fixes). - USB: cdc-acm: fix minor-number release (git-fixes). - USB: serial: option: add Quectel EC200S-CN module support (git-fixes). - USB: serial: option: add Telit LE910Cx composition 0x1204 (git-fixes). - USB: serial: option: add prod. id for Quectel EG91 (git-fixes). - USB: serial: qcserial: add EM9191 QDL support (git-fixes). - USB: xhci: dbc: fix tty registration race (git-fixes). - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - ata: ahci_platform: fix null-ptr-deref in ahci_platform_enable_regulators() (git-fixes). - ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init() (git-fixes). - audit: fix possible null-pointer dereference in audit_filter_rules (git-fixes). - bfq: Remove merged request already in bfq_requests_merged() (bsc#1191456). - blk: Fix lock inversion between ioc lock and bfqd lock (bsc#1191456). - blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452). - block: bfq: fix bfq_set_next_ioprio_data() (bsc#1191451). - bnxt_en: make bnxt_free_skbs() safe to call after bnxt_free_mem() (jsc#SLE-16649). - bpf: Add bpf_patch_call_args prototype to include/linux/bpf.h (git-fixes). - bpf: Fix OOB read when printing XDP link fdinfo (git-fixes). - bpf: Fix a typo of reuseport map in bpf.h (git-fixes). - bpf: Fix up bpf_skb_adjust_room helper's skb csum setting (git-fixes). - can: dev: can_restart: fix use after free bug (git-fixes). - can: peak_pci: peak_pci_remove(): fix UAF (git-fixes). - can: peak_usb: fix use after free bugs (git-fixes). - can: peak_usb: pcan_usb_fd_decode_status(): fix back to ERROR_ACTIVE state notification (git-fixes). - can: rcar_can: fix suspend/resume (git-fixes). - can: ti_hecc: ti_hecc_probe(): add missed clk_disable_unprepare() in error path (git-fixes). - can: xilinx_can: handle failure cases of pm_runtime_get_sync (git-fixes). - cb710: avoid NULL pointer subtraction (git-fixes). - ceph: fix handling of "meta" errors (bsc#1192041). - ceph: skip existing superblocks that are blocklisted or shut down when mounting (bsc#1192040). - cfg80211: correct bridge/4addr mode check (git-fixes). - cfg80211: fix management registrations locking (git-fixes). - cfg80211: scan: fix RCU in cfg80211_add_nontrans_list() (git-fixes). - cpuidle: pseries: Mark pseries_idle_proble() as __init (jsc#SLE-13614 bsc#1176914 ltc#186394 git-fixes). - drm/amd/display: Pass PCI deviceid into DC (git-fixes). - drm/amdgpu: correct initial cp_hqd_quantum for gfx9 (git-fixes). - drm/amdgpu: fix gart.bo pin_count leak (git-fixes). - drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read (git-fixes). - drm/i915: Fix syncmap memory leak (bsc#1152489) Backporting notes: * context changes in intel_timeline_fini() - drm/msm/dsi: Fix an error code in msm_dsi_modeset_init() (git-fixes). - drm/msm/dsi: fix off by one in dsi_bus_clk_enable error handling (git-fixes). - drm/msm: Avoid potential overflow in timeout_to_jiffies() (git-fixes). - drm/msm: Fix null pointer dereference on pointer edp (git-fixes). - drm/nouveau/debugfs: fix file release memory leak (git-fixes). - drm/nouveau/kms/nv50-: fix file release memory leak (git-fixes). - drm/nouveau/kms/tu102-: delay enabling cursor until after assign_windows (git-fixes). - drm/nouveau: avoid a use-after-free when BO init fails (bsc#1152472) - drm/panel: olimex-lcd-olinuxino: select CRC32 (git-fixes). - drm/panfrost: Make sure MMU context lifetime is not bound to (bsc#1152472) - drm/sun4i: dw-hdmi: Fix HDMI PHY clock setup (git-fixes). - e1000e: Drop patch to avoid regressions until real fix is available (bsc#1191663). - e1000e: Fix packet loss on Tiger Lake and later (git-fixes). - e100: fix buffer overrun in e100_get_regs (git-fixes). - e100: fix length calculation in e100_get_regs_len (git-fixes). - e100: handle eeprom as little endian (git-fixes). - ext4: fix reserved space counter leakage (bsc#1191450). - ext4: report correct st_size for encrypted symlinks (bsc#1191449). - fs, mm: fix race in unlinking swapfile (bsc#1191455). - fscrypt: add fscrypt_symlink_getattr() for computing st_size (bsc#1191449). - gpio: pca953x: Improve bias setting (git-fixes). - hso: fix bailout in error case of probe (git-fixes). - i2c: acpi: fix resource leak in reconfiguration device addition (git-fixes). - ice: fix getting UDP tunnel entry (jsc#SLE-12878). - iio: adc128s052: Fix the error handling path of 'adc128_probe()' (git-fixes). - iio: adc: aspeed: set driver data when adc probe (git-fixes). - iio: dac: ti-dac5571: fix an error code in probe() (git-fixes). - iio: light: opt3001: Fixed timeout error when 0 lux (git-fixes). - iio: mtk-auxadc: fix case IIO_CHAN_INFO_PROCESSED (git-fixes). - iio: ssp_sensors: add more range checking in ssp_parse_dataframe() (git-fixes). - iio: ssp_sensors: fix error code in ssp_print_mcu_debug() (git-fixes). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - isdn: cpai: check ctr->cnr to avoid array index out of bound (git-fixes). - isdn: mISDN: Fix sleeping function called from invalid context (git-fixes). - iwlwifi: pcie: add configuration of a Wi-Fi adapter on Dell XPS 15 (git-fixes). - ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes). - kABI workaround for HD-audio probe retry changes (bsc#1190801). - kABI workaround for cfg80211 mgmt_registration_lock changes (git-fixes). - kabi: block: Fix kabi of blk_mq_sched_try_insert_merge() (bsc#1191456). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167). - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as well. Fixes: e98096d5cf85 ("rpm: Abolish scritplet templating (bsc#1189841).") - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229). - lan78xx: select CRC32 (git-fixes). - libata: Add ATA_HORKAGE_NO_NCQ_ON_ATI for Samsung 860 and 870 SSD (git-fixes). - mac80211: Drop frames from invalid MAC address in ad-hoc mode (git-fixes). - mac80211: check return value of rhashtable_init (git-fixes). - mei: me: add Ice Lake-N device id (git-fixes). - mmc: dw_mmc: exynos: fix the finding clock sample value (git-fixes). - mmc: meson-gx: do not use memcpy_to/fromio for dram-access-quirk (git-fixes). - mmc: vub300: fix control-message timeouts (git-fixes). - net/mlx5: E-Switch, Fix double allocation of acl flow counter (jsc#SLE-15172). - net/mlx5e: IPSEC RX, enable checksum complete (jsc#SLE-15172). - net/mlx5e: RX, Avoid possible data corruption when relaxed ordering and LRO combined (jsc#SLE-15172). - net/sched: ets: fix crash when flipping from 'strict' to 'quantum' (bsc#1176774). - net: batman-adv: fix error handling (git-fixes). - net: can: ems_usb: fix use-after-free in ems_usb_disconnect() (git-fixes). - net: cdc_eem: fix tx fixup skb leak (git-fixes). - net: cdc_ncm: correct overhead in delayed_ndp_size (git-fixes). - net: hns3: check queue id range before using (jsc#SLE-14777). - net: hso: add failure handler for add_net_device (git-fixes). - net: hso: fix NULL-deref on disconnect regression (git-fixes). - net: hso: fix null-ptr-deref during tty device unregistration (git-fixes). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: lan78xx: fix division by zero in send path (git-fixes). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800). - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() (git-fixes). - netfilter: Drop fragmented ndisc packets assembled in netfilter (git-fixes). - netfilter: conntrack: collect all entries in one cycle (bsc#1173604). - netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value (bsc#1176447). - nfc: fix error handling of nfc_proto_register() (git-fixes). - nfc: port100: fix using -ERRNO as command type mask (git-fixes). - nvme-fc: avoid race between time out and tear down (bsc#1185762). - nvme-fc: remove freeze/unfreeze around update_nr_hw_queues (bsc#1185762). - nvme-fc: update hardware queues before using them (bsc#1185762). - nvme-pci: Fix abort command id (git-fixes). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme: add command id quirk for apple controllers (git-fixes). - ocfs2: fix data corruption after conversion from inline format (bsc#1190795). - pata_legacy: fix a couple uninitialized variable bugs (git-fixes). - phy: mdio: fix memory leak (git-fixes). - platform/mellanox: mlxreg-io: Fix argument base in kstrtou32() call (git-fixes). - platform/mellanox: mlxreg-io: Fix read access of n-bytes size attributes (git-fixes). - platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from run_smbios_call (git-fixes). - platform/x86: intel_scu_ipc: Fix busy loop expiry time (git-fixes). - powerpc/64s: Fix entry flush patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Fix stf mitigation patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Remove irq mask workaround in accumulate_stolen_time() (jsc#SLE-9246 git-fixes). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/lib/code-patching: Do not use struct 'ppc_inst' for runnable code in tests (jsc#SLE-13847 git-fixes). - powerpc/lib/code-patching: Make instr_is_branch_to_addr() static (jsc#SLE-13847 git-fixes). - powerpc/lib: Fix emulate_step() std test (bsc#1065729). - powerpc/numa: Update cpu_cpu_map on CPU online/offline (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes). - powerpc/smp: Cache CPU to chip lookup (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Enable CACHE domain for shared processor (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fix a crash while booting kvm guest with nr_cpus=2 (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fold cpu_die() into its only caller (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Set numa node before updating mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Update cpu_core_map on all PowerPc systems (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/uprobes: Validation for prefixed instruction (jsc#SLE-13847 git-fixes). - powerpc/xive: Discard disabled interrupts in get_irqchip_state() (bsc#1085030 git-fixes). - powerpc: Do not dereference code as 'struct ppc_inst' (uprobe, code-patching, feature-fixups) (jsc#SLE-13847 git-fixes). - powerpc: Do not use 'struct ppc_inst' to reference instruction location (jsc#SLE-13847 git-fixes). - powerpc: Move arch_cpu_idle_dead() into smp.c (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init (git-fixes). - ptp_pch: Load module automatically if ID matches (git-fixes). - ptp_pch: Restore dependency on PCI (git-fixes). - regmap: Fix possible double-free in regcache_rbtree_exit() (git-fixes). - rpm: fix kmp install path - rpm: use _rpmmacrodir (boo#1191384) - scsi: ibmvfc: Fix up duplicate response detection (bsc#1191867 ltc#194757). - scsi: iscsi: Fix deadlock on recovery path during GFP_IO reclaim (git-fixes). - scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145). - scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145). - scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145). - scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349). - scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine (bsc#1192145). - scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (bsc#1192145). - scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145). - scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145). - scsi: mpi3mr: Add EEDP DIF DIX support (jsc#SLE-18120). - scsi: mpi3mr: Add bios_param SCSI host template hook (jsc#SLE-18120). - scsi: mpi3mr: Add change queue depth support (jsc#SLE-18120). - scsi: mpi3mr: Add event handling debug prints (jsc#SLE-18120). - scsi: mpi3mr: Add mpi30 Rev-R headers and Kconfig (jsc#SLE-18120). - scsi: mpi3mr: Add support for DSN secure firmware check (jsc#SLE-18120). - scsi: mpi3mr: Add support for PCIe device event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for PM suspend and resume (jsc#SLE-18120). - scsi: mpi3mr: Add support for device add/remove event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for internal watchdog thread (jsc#SLE-18120). - scsi: mpi3mr: Add support for queue command processing (jsc#SLE-18120). - scsi: mpi3mr: Add support for recovering controller (jsc#SLE-18120). - scsi: mpi3mr: Add support for threaded ISR (jsc#SLE-18120). - scsi: mpi3mr: Add support for timestamp sync with firmware (jsc#SLE-18120). - scsi: mpi3mr: Additional event handling (jsc#SLE-18120). - scsi: mpi3mr: Allow certain commands during pci-remove hook (jsc#SLE-18120). - scsi: mpi3mr: Base driver code (jsc#SLE-18120). - scsi: mpi3mr: Complete support for soft reset (jsc#SLE-18120). - scsi: mpi3mr: Create operational request and reply queue pair (jsc#SLE-18120). - scsi: mpi3mr: Fix error handling in mpi3mr_setup_isr() (git-fixes). - scsi: mpi3mr: Fix missing unlock on error (git-fixes). - scsi: mpi3mr: Hardware workaround for UNMAP commands to NVMe drives (jsc#SLE-18120). - scsi: mpi3mr: Implement SCSI error handler hooks (jsc#SLE-18120). - scsi: mpi3mr: Print IOC info for debugging (jsc#SLE-18120). - scsi: mpi3mr: Print pending host I/Os for debugging (jsc#SLE-18120). - scsi: mpi3mr: Set up IRQs in resume path (jsc#SLE-18120). - scsi: mpi3mr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (jsc#SLE-18120). - scsi: mpi3mr: Use the proper SCSI midlayer interfaces for PI (jsc#SLE-18120). - scsi: mpi3mr: Wait for pending I/O completions upon detection of VD I/O timeout (jsc#SLE-18120). - scsi: qla2xxx: Add debug print of 64G link speed (bsc#1190941). - scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941). - scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941). - scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941). - scsi: qla2xxx: Call process_response_queue() in Tx path (bsc#1190941). - scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941). - scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941). - scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941). - scsi: qla2xxx: Do not call fc_block_scsi_eh() during bus reset (bsc#1190941). - scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941). - scsi: qla2xxx: Fix NVMe retry (bsc#1190941). - scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941). - scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941). - scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941). - scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941). - scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941). - scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941). - scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941). - scsi: qla2xxx: Fix port type info (bsc#1190941). - scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941). - scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941). - scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_device_reset() (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_target_reset() (bsc#1190941). - scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941). - scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941). - scsi: qla2xxx: Show OS name and version in FDMI-1 (bsc#1190941). - scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941). - scsi: qla2xxx: Sync queue idx with queue_pair_map idx (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941). - scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190941). - scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941). - scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941). - scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941). - scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941). - scsi: qla2xxx: edif: Fix stale session (bsc#1190941). - scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941). - scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941). - scsi: target: Fix the pgr/alua_support_store functions (git-fixes). - sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351). - soc: qcom: mdt_loader: Drop PT_LOAD check on hash segment (git-fixes). - spi: spi-nxp-fspi: do not depend on a specific node name erratum workaround (git-fixes). - tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729). - usb: chipidea: ci_hdrc_imx: Also search for 'phys' phandle (git-fixes). - usb: hso: fix error handling code of hso_create_net_device (git-fixes). - usb: hso: remove the bailout parameter (git-fixes). - usb: musb: dsps: Fix the probe error path (git-fixes). - video: fbdev: gbefb: Only instantiate device when built for IP32 (git-fixes). - virtio: write back F_VERSION_1 before validate (git-fixes). - watchdog: orion: use 0 for unset heartbeat (git-fixes). - x86/pat: Pass valid address to sanitize_phys() (bsc#1152489). - x86/resctrl: Free the ctrlval arrays when domain_setup_mon_state() fails (bsc#1152489). - x86/sev: Return an error on a returned non-zero SW_EXITINFO1[31:0] (bsc#1178134). - xen: fix setting of max_pfn in shared_info (git-fixes). - xen: reset legacy rtc flag for PV domU (git-fixes). - xfs: Fixed non-directory creation in SGID directories introduced by CVE-2018-13405 patch (bsc#1190006). - xfs: ensure that the inode uid/gid match values match the icdinode ones (bsc#1190006). - xfs: fix I_DONTCACHE (bsc#1192074). - xfs: fix log intent recovery ENOSPC shutdowns when inactivating inodes (bsc#1190642). - xfs: merge the projid fields in struct xfs_icdinode (bsc#1190006). - xfs: remove the icdinode di_uid/di_gid members (bsc#1190006). - xhci: Enable trust tx length quirk for Fresco FL11 USB controller (git-fixes). - xhci: Fix command ring pointer corruption while aborting a command (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). cluster-md-kmp-default-5.3.18-59.30.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.30.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.30.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True kernel-debug-5.3.18-59.30.1.nosrc.rpm True kernel-debug-5.3.18-59.30.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.30.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.30.1.x86_64.rpm True kernel-default-5.3.18-59.30.1.nosrc.rpm True kernel-default-5.3.18-59.30.1.x86_64.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.src.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.30.1.18.17.1.x86_64.rpm True kernel-default-devel-5.3.18-59.30.1.x86_64.rpm True kernel-default-extra-5.3.18-59.30.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.30.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.30.1.x86_64.rpm True kernel-default-optional-5.3.18-59.30.1.x86_64.rpm True kernel-devel-5.3.18-59.30.1.noarch.rpm True kernel-docs-5.3.18-59.30.1.noarch.rpm True kernel-docs-5.3.18-59.30.1.nosrc.rpm True kernel-docs-html-5.3.18-59.30.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.30.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.30.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.30.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.30.1.x86_64.rpm True kernel-macros-5.3.18-59.30.1.noarch.rpm True kernel-obs-build-5.3.18-59.30.1.src.rpm True kernel-obs-build-5.3.18-59.30.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.30.1.src.rpm True kernel-obs-qa-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-5.3.18-59.30.1.nosrc.rpm True kernel-preempt-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.30.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.30.1.x86_64.rpm True kernel-source-5.3.18-59.30.1.noarch.rpm True kernel-source-5.3.18-59.30.1.src.rpm True kernel-source-vanilla-5.3.18-59.30.1.noarch.rpm True kernel-syms-5.3.18-59.30.1.src.rpm True kernel-syms-5.3.18-59.30.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.30.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.30.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.30.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.30.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.30.1.s390x.rpm True dlm-kmp-default-5.3.18-59.30.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.30.1.s390x.rpm True kernel-default-5.3.18-59.30.1.s390x.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.30.1.18.17.1.s390x.rpm True kernel-default-devel-5.3.18-59.30.1.s390x.rpm True kernel-default-extra-5.3.18-59.30.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.30.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.30.1.s390x.rpm True kernel-default-optional-5.3.18-59.30.1.s390x.rpm True kernel-obs-build-5.3.18-59.30.1.s390x.rpm True kernel-obs-qa-5.3.18-59.30.1.s390x.rpm True kernel-syms-5.3.18-59.30.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.30.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.30.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.30.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.30.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.30.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.30.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.30.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.30.1.ppc64le.rpm True kernel-debug-5.3.18-59.30.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-default-5.3.18-59.30.1.ppc64le.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.30.1.18.17.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.30.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.30.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.30.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.30.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.30.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.30.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.30.1.ppc64le.rpm True kernel-syms-5.3.18-59.30.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.30.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.30.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.30.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.30.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.30.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True dtb-aarch64-5.3.18-59.30.1.src.rpm True dtb-al-5.3.18-59.30.1.aarch64.rpm True dtb-allwinner-5.3.18-59.30.1.aarch64.rpm True dtb-altera-5.3.18-59.30.1.aarch64.rpm True dtb-amd-5.3.18-59.30.1.aarch64.rpm True dtb-amlogic-5.3.18-59.30.1.aarch64.rpm True dtb-apm-5.3.18-59.30.1.aarch64.rpm True dtb-arm-5.3.18-59.30.1.aarch64.rpm True dtb-broadcom-5.3.18-59.30.1.aarch64.rpm True dtb-cavium-5.3.18-59.30.1.aarch64.rpm True dtb-exynos-5.3.18-59.30.1.aarch64.rpm True dtb-freescale-5.3.18-59.30.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.30.1.aarch64.rpm True dtb-lg-5.3.18-59.30.1.aarch64.rpm True dtb-marvell-5.3.18-59.30.1.aarch64.rpm True dtb-mediatek-5.3.18-59.30.1.aarch64.rpm True dtb-nvidia-5.3.18-59.30.1.aarch64.rpm True dtb-qcom-5.3.18-59.30.1.aarch64.rpm True dtb-renesas-5.3.18-59.30.1.aarch64.rpm True dtb-rockchip-5.3.18-59.30.1.aarch64.rpm True dtb-socionext-5.3.18-59.30.1.aarch64.rpm True dtb-sprd-5.3.18-59.30.1.aarch64.rpm True dtb-xilinx-5.3.18-59.30.1.aarch64.rpm True dtb-zte-5.3.18-59.30.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.30.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-5.3.18-59.30.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.30.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.30.1.aarch64.rpm True kernel-default-5.3.18-59.30.1.aarch64.rpm True kernel-default-base-5.3.18-59.30.1.18.17.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.30.1.18.17.1.aarch64.rpm True kernel-default-devel-5.3.18-59.30.1.aarch64.rpm True kernel-default-extra-5.3.18-59.30.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.30.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.30.1.aarch64.rpm True kernel-default-optional-5.3.18-59.30.1.aarch64.rpm True kernel-obs-build-5.3.18-59.30.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.30.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.30.1.aarch64.rpm True kernel-syms-5.3.18-59.30.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.30.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.30.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.30.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.30.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.30.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3641 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351). - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have allowed the kernel to read uninitialized memory (bsc#1188563). - CVE-2021-43056: Fixed possible KVM host crash via malicious KVM guest on Power8 (bnc#1192107). - CVE-2021-3896: Fixed a array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (bsc#1191958). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067). - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673). - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2021-33033: Fixed a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled (bsc#1186109). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-34866: Fixed eBPF Type Confusion Privilege Escalation Vulnerability (bsc#1191645). - CVE-2021-42252: Fixed an issue inside aspeed_lpc_ctrl_mmap that could have allowed local attackers to access the Aspeed LPC control interface to overwrite memory in the kernel and potentially execute privileges (bnc#1190479). - CVE-2021-41864: Fixed prealloc_elems_and_freelist that allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: Fixed a slab out-of-bounds write in the decode_data function in drivers/net/hamradio/6pack.c. Input from a process that had the CAP_NET_ADMIN capability could have lead to root access (bsc#1191315). The following non-security bugs were fixed: - ACPI: NFIT: Use fallback node id when numa info in NFIT table is incorrect (git-fixes). - ACPI: bgrt: Fix CFI violation (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ALSA: hda - Enable headphone mic on Dell Latitude laptops with ALC3254 (git-fixes). - ALSA: hda/realtek - ALC236 headset MIC recording issue (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PC50HS (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo X170KM-G (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek: Complete partial device name to avoid ambiguity (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell Precision 5560 laptop (git-fixes). - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo 13s Gen2 (git-fixes). - ALSA: hda/realtek: Fix the mic type detection issue for ASUS G551JW (git-fixes). - ALSA: hda/realtek: Quirks to enable speaker output for Lenovo Legion 7i 15IMHG05, Yoga 7i 14ITL5/15ITL5, and 13s Gen2 laptops (git-fixes). - ALSA: hda: avoid write to STATESTS if controller is in reset (git-fixes). - ALSA: hda: intel: Allow repeatedly probing on codec configuration errors (bsc#1190801). - ALSA: pcm: Workaround for a wrong offset in SYNC_PTR compat ioctl (git-fixes). - ALSA: seq: Fix a potential UAF by wrong private_free call order (git-fixes). - ALSA: usb-audio: Add quirk for VF0770 (git-fixes). - ALSA: usb-audio: Provide quirk for Sennheiser GSP670 Headset (git-fixes). - ASoC: DAPM: Fix missing kctl change notifications (git-fixes). - ASoC: Intel: Skylake: Fix module configuration for KPB and MIXER (git-fixes). - ASoC: Intel: Skylake: Fix passing loadable flag for module (git-fixes). - ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the matching in-/output (git-fixes). - ASoC: Intel: sof_sdw: tag SoundWire BEs as non-atomic (git-fixes). - ASoC: SOF: imx: imx8: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: imx: imx8m: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: loader: release_firmware() on load failure to avoid batching (git-fixes). - ASoC: atmel: ATMEL drivers do not need HAS_DMA (git-fixes). - ASoC: dapm: use component prefix when checking widget names (git-fixes). - ASoC: fsl_spdif: register platform component before registering cpu dai (git-fixes). - ASoC: wm8960: Fix clock configuration on slave mode (git-fixes). - Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731). - Configure mpi3mr as currently unsupported (jsc#SLE-18120) - HID: apple: Fix logical maximum and usage maximum of Magic Keyboard JIS (git-fixes). - HID: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes). - HID: u2fzero: ignore incomplete packets without data (git-fixes). - HID: usbhid: free raw_report buffers in usbhid_stop (git-fixes). - HID: wacom: Add new Intuos BT (CTL-4100WL/CTL-6100WL) device IDs (git-fixes). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - Input: snvs_pwrkey - add clk handling (git-fixes). - Input: xpad - add support for another USB ID of Nacon GC-100 (git-fixes). - KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs are live (bsc#1156395). - KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state (bsc#1156395). - KVM: PPC: Book3S HV: Fix copy_tofrom_guest routines (jsc#SLE-12936 git-fixes). - KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729). - KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing registers (bsc#1156395). - KVM: PPC: Fix clearing never mapped TCEs in realmode (bsc#1156395). - KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak (bsc#1156395). - NFC: digital: fix possible memory leak in digital_in_send_sdd_req() (git-fixes). - NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() (git-fixes). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - PCI: Fix pci_host_bridge struct device release/free handling (git-fixes). - PM / devfreq: rk3399_dmc: Add missing of_node_put() (git-fixes). - PM / devfreq: rk3399_dmc: Disable devfreq-event device when fails (git-fixes). - PM / devfreq: rk3399_dmc: Fix kernel oops when rockchip,pmu is absent (git-fixes). - PM / devfreq: rk3399_dmc: Fix spelling typo (git-fixes). - PM / devfreq: rk3399_dmc: Remove unneeded semicolon (git-fixes). - RDMA/cma: Do not change route.addr.src_addr.ss_family (bsc#1181147). - RDMA/cma: Fix listener leak in rdma_cma_listen_on_all() failure (bsc#1181147). - USB: cdc-acm: clean up probe error labels (git-fixes). - USB: cdc-acm: fix minor-number release (git-fixes). - USB: serial: option: add Quectel EC200S-CN module support (git-fixes). - USB: serial: option: add Telit LE910Cx composition 0x1204 (git-fixes). - USB: serial: option: add prod. id for Quectel EG91 (git-fixes). - USB: serial: qcserial: add EM9191 QDL support (git-fixes). - USB: xhci: dbc: fix tty registration race (git-fixes). - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - ata: ahci_platform: fix null-ptr-deref in ahci_platform_enable_regulators() (git-fixes). - ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init() (git-fixes). - audit: fix possible null-pointer dereference in audit_filter_rules (git-fixes). - bfq: Remove merged request already in bfq_requests_merged() (bsc#1191456). - blk: Fix lock inversion between ioc lock and bfqd lock (bsc#1191456). - blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452). - block: bfq: fix bfq_set_next_ioprio_data() (bsc#1191451). - bnxt_en: make bnxt_free_skbs() safe to call after bnxt_free_mem() (jsc#SLE-16649). - bpf: Add bpf_patch_call_args prototype to include/linux/bpf.h (git-fixes). - bpf: Fix OOB read when printing XDP link fdinfo (git-fixes). - bpf: Fix a typo of reuseport map in bpf.h (git-fixes). - bpf: Fix up bpf_skb_adjust_room helper's skb csum setting (git-fixes). - can: dev: can_restart: fix use after free bug (git-fixes). - can: peak_pci: peak_pci_remove(): fix UAF (git-fixes). - can: peak_usb: fix use after free bugs (git-fixes). - can: peak_usb: pcan_usb_fd_decode_status(): fix back to ERROR_ACTIVE state notification (git-fixes). - can: rcar_can: fix suspend/resume (git-fixes). - can: ti_hecc: ti_hecc_probe(): add missed clk_disable_unprepare() in error path (git-fixes). - can: xilinx_can: handle failure cases of pm_runtime_get_sync (git-fixes). - cb710: avoid NULL pointer subtraction (git-fixes). - ceph: fix handling of "meta" errors (bsc#1192041). - ceph: skip existing superblocks that are blocklisted or shut down when mounting (bsc#1192040). - cfg80211: correct bridge/4addr mode check (git-fixes). - cfg80211: fix management registrations locking (git-fixes). - cfg80211: scan: fix RCU in cfg80211_add_nontrans_list() (git-fixes). - cpuidle: pseries: Mark pseries_idle_proble() as __init (jsc#SLE-13614 bsc#1176914 ltc#186394 git-fixes). - drm/amd/display: Pass PCI deviceid into DC (git-fixes). - drm/amdgpu: correct initial cp_hqd_quantum for gfx9 (git-fixes). - drm/amdgpu: fix gart.bo pin_count leak (git-fixes). - drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read (git-fixes). - drm/i915: Fix syncmap memory leak (bsc#1152489) Backporting notes: * context changes in intel_timeline_fini() - drm/msm/dsi: Fix an error code in msm_dsi_modeset_init() (git-fixes). - drm/msm/dsi: fix off by one in dsi_bus_clk_enable error handling (git-fixes). - drm/msm: Avoid potential overflow in timeout_to_jiffies() (git-fixes). - drm/msm: Fix null pointer dereference on pointer edp (git-fixes). - drm/nouveau/debugfs: fix file release memory leak (git-fixes). - drm/nouveau/kms/nv50-: fix file release memory leak (git-fixes). - drm/nouveau/kms/tu102-: delay enabling cursor until after assign_windows (git-fixes). - drm/nouveau: avoid a use-after-free when BO init fails (bsc#1152472) - drm/panel: olimex-lcd-olinuxino: select CRC32 (git-fixes). - drm/panfrost: Make sure MMU context lifetime is not bound to (bsc#1152472) - drm/sun4i: dw-hdmi: Fix HDMI PHY clock setup (git-fixes). - e1000e: Drop patch to avoid regressions until real fix is available (bsc#1191663). - e1000e: Fix packet loss on Tiger Lake and later (git-fixes). - e100: fix buffer overrun in e100_get_regs (git-fixes). - e100: fix length calculation in e100_get_regs_len (git-fixes). - e100: handle eeprom as little endian (git-fixes). - ext4: fix reserved space counter leakage (bsc#1191450). - ext4: report correct st_size for encrypted symlinks (bsc#1191449). - fs, mm: fix race in unlinking swapfile (bsc#1191455). - fscrypt: add fscrypt_symlink_getattr() for computing st_size (bsc#1191449). - gpio: pca953x: Improve bias setting (git-fixes). - hso: fix bailout in error case of probe (git-fixes). - i2c: acpi: fix resource leak in reconfiguration device addition (git-fixes). - ice: fix getting UDP tunnel entry (jsc#SLE-12878). - iio: adc128s052: Fix the error handling path of 'adc128_probe()' (git-fixes). - iio: adc: aspeed: set driver data when adc probe (git-fixes). - iio: dac: ti-dac5571: fix an error code in probe() (git-fixes). - iio: light: opt3001: Fixed timeout error when 0 lux (git-fixes). - iio: mtk-auxadc: fix case IIO_CHAN_INFO_PROCESSED (git-fixes). - iio: ssp_sensors: add more range checking in ssp_parse_dataframe() (git-fixes). - iio: ssp_sensors: fix error code in ssp_print_mcu_debug() (git-fixes). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - isdn: cpai: check ctr->cnr to avoid array index out of bound (git-fixes). - isdn: mISDN: Fix sleeping function called from invalid context (git-fixes). - iwlwifi: pcie: add configuration of a Wi-Fi adapter on Dell XPS 15 (git-fixes). - ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes). - kABI workaround for HD-audio probe retry changes (bsc#1190801). - kABI workaround for cfg80211 mgmt_registration_lock changes (git-fixes). - kabi: block: Fix kabi of blk_mq_sched_try_insert_merge() (bsc#1191456). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167). - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as well. Fixes: e98096d5cf85 ("rpm: Abolish scritplet templating (bsc#1189841).") - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229). - lan78xx: select CRC32 (git-fixes). - libata: Add ATA_HORKAGE_NO_NCQ_ON_ATI for Samsung 860 and 870 SSD (git-fixes). - mac80211: Drop frames from invalid MAC address in ad-hoc mode (git-fixes). - mac80211: check return value of rhashtable_init (git-fixes). - mei: me: add Ice Lake-N device id (git-fixes). - mmc: dw_mmc: exynos: fix the finding clock sample value (git-fixes). - mmc: meson-gx: do not use memcpy_to/fromio for dram-access-quirk (git-fixes). - mmc: vub300: fix control-message timeouts (git-fixes). - net/mlx5: E-Switch, Fix double allocation of acl flow counter (jsc#SLE-15172). - net/mlx5e: IPSEC RX, enable checksum complete (jsc#SLE-15172). - net/mlx5e: RX, Avoid possible data corruption when relaxed ordering and LRO combined (jsc#SLE-15172). - net/sched: ets: fix crash when flipping from 'strict' to 'quantum' (bsc#1176774). - net: batman-adv: fix error handling (git-fixes). - net: can: ems_usb: fix use-after-free in ems_usb_disconnect() (git-fixes). - net: cdc_eem: fix tx fixup skb leak (git-fixes). - net: cdc_ncm: correct overhead in delayed_ndp_size (git-fixes). - net: hns3: check queue id range before using (jsc#SLE-14777). - net: hso: add failure handler for add_net_device (git-fixes). - net: hso: fix NULL-deref on disconnect regression (git-fixes). - net: hso: fix null-ptr-deref during tty device unregistration (git-fixes). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: lan78xx: fix division by zero in send path (git-fixes). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800). - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() (git-fixes). - netfilter: Drop fragmented ndisc packets assembled in netfilter (git-fixes). - netfilter: conntrack: collect all entries in one cycle (bsc#1173604). - netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value (bsc#1176447). - nfc: fix error handling of nfc_proto_register() (git-fixes). - nfc: port100: fix using -ERRNO as command type mask (git-fixes). - nvme-fc: avoid race between time out and tear down (bsc#1185762). - nvme-fc: remove freeze/unfreeze around update_nr_hw_queues (bsc#1185762). - nvme-fc: update hardware queues before using them (bsc#1185762). - nvme-pci: Fix abort command id (git-fixes). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme: add command id quirk for apple controllers (git-fixes). - ocfs2: fix data corruption after conversion from inline format (bsc#1190795). - pata_legacy: fix a couple uninitialized variable bugs (git-fixes). - phy: mdio: fix memory leak (git-fixes). - platform/mellanox: mlxreg-io: Fix argument base in kstrtou32() call (git-fixes). - platform/mellanox: mlxreg-io: Fix read access of n-bytes size attributes (git-fixes). - platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from run_smbios_call (git-fixes). - platform/x86: intel_scu_ipc: Fix busy loop expiry time (git-fixes). - powerpc/64s: Fix entry flush patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Fix stf mitigation patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Remove irq mask workaround in accumulate_stolen_time() (jsc#SLE-9246 git-fixes). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc/lib/code-patching: Do not use struct 'ppc_inst' for runnable code in tests (jsc#SLE-13847 git-fixes). - powerpc/lib/code-patching: Make instr_is_branch_to_addr() static (jsc#SLE-13847 git-fixes). - powerpc/lib: Fix emulate_step() std test (bsc#1065729). - powerpc/numa: Update cpu_cpu_map on CPU online/offline (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes). - powerpc/smp: Cache CPU to chip lookup (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Enable CACHE domain for shared processor (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fix a crash while booting kvm guest with nr_cpus=2 (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fold cpu_die() into its only caller (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Set numa node before updating mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Update cpu_core_map on all PowerPc systems (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/uprobes: Validation for prefixed instruction (jsc#SLE-13847 git-fixes). - powerpc/xive: Discard disabled interrupts in get_irqchip_state() (bsc#1085030 git-fixes). - powerpc: Do not dereference code as 'struct ppc_inst' (uprobe, code-patching, feature-fixups) (jsc#SLE-13847 git-fixes). - powerpc: Do not use 'struct ppc_inst' to reference instruction location (jsc#SLE-13847 git-fixes). - powerpc: Move arch_cpu_idle_dead() into smp.c (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init (git-fixes). - ptp_pch: Load module automatically if ID matches (git-fixes). - ptp_pch: Restore dependency on PCI (git-fixes). - regmap: Fix possible double-free in regcache_rbtree_exit() (git-fixes). - rpm: fix kmp install path - rpm: use _rpmmacrodir (boo#1191384) - scsi: ibmvfc: Fix up duplicate response detection (bsc#1191867 ltc#194757). - scsi: iscsi: Fix deadlock on recovery path during GFP_IO reclaim (git-fixes). - scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145). - scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145). - scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145). - scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349). - scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine (bsc#1192145). - scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (bsc#1192145). - scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145). - scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145). - scsi: mpi3mr: Add EEDP DIF DIX support (jsc#SLE-18120). - scsi: mpi3mr: Add bios_param SCSI host template hook (jsc#SLE-18120). - scsi: mpi3mr: Add change queue depth support (jsc#SLE-18120). - scsi: mpi3mr: Add event handling debug prints (jsc#SLE-18120). - scsi: mpi3mr: Add mpi30 Rev-R headers and Kconfig (jsc#SLE-18120). - scsi: mpi3mr: Add support for DSN secure firmware check (jsc#SLE-18120). - scsi: mpi3mr: Add support for PCIe device event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for PM suspend and resume (jsc#SLE-18120). - scsi: mpi3mr: Add support for device add/remove event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for internal watchdog thread (jsc#SLE-18120). - scsi: mpi3mr: Add support for queue command processing (jsc#SLE-18120). - scsi: mpi3mr: Add support for recovering controller (jsc#SLE-18120). - scsi: mpi3mr: Add support for threaded ISR (jsc#SLE-18120). - scsi: mpi3mr: Add support for timestamp sync with firmware (jsc#SLE-18120). - scsi: mpi3mr: Additional event handling (jsc#SLE-18120). - scsi: mpi3mr: Allow certain commands during pci-remove hook (jsc#SLE-18120). - scsi: mpi3mr: Base driver code (jsc#SLE-18120). - scsi: mpi3mr: Complete support for soft reset (jsc#SLE-18120). - scsi: mpi3mr: Create operational request and reply queue pair (jsc#SLE-18120). - scsi: mpi3mr: Fix error handling in mpi3mr_setup_isr() (git-fixes). - scsi: mpi3mr: Fix missing unlock on error (git-fixes). - scsi: mpi3mr: Hardware workaround for UNMAP commands to NVMe drives (jsc#SLE-18120). - scsi: mpi3mr: Implement SCSI error handler hooks (jsc#SLE-18120). - scsi: mpi3mr: Print IOC info for debugging (jsc#SLE-18120). - scsi: mpi3mr: Print pending host I/Os for debugging (jsc#SLE-18120). - scsi: mpi3mr: Set up IRQs in resume path (jsc#SLE-18120). - scsi: mpi3mr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (jsc#SLE-18120). - scsi: mpi3mr: Use the proper SCSI midlayer interfaces for PI (jsc#SLE-18120). - scsi: mpi3mr: Wait for pending I/O completions upon detection of VD I/O timeout (jsc#SLE-18120). - scsi: qla2xxx: Add debug print of 64G link speed (bsc#1190941). - scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941). - scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941). - scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941). - scsi: qla2xxx: Call process_response_queue() in Tx path (bsc#1190941). - scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941). - scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941). - scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941). - scsi: qla2xxx: Do not call fc_block_scsi_eh() during bus reset (bsc#1190941). - scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941). - scsi: qla2xxx: Fix NVMe retry (bsc#1190941). - scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941). - scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941). - scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941). - scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941). - scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941). - scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941). - scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941). - scsi: qla2xxx: Fix port type info (bsc#1190941). - scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941). - scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941). - scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_device_reset() (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_target_reset() (bsc#1190941). - scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941). - scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941). - scsi: qla2xxx: Show OS name and version in FDMI-1 (bsc#1190941). - scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941). - scsi: qla2xxx: Sync queue idx with queue_pair_map idx (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941). - scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190941). - scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941). - scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941). - scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941). - scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941). - scsi: qla2xxx: edif: Fix stale session (bsc#1190941). - scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941). - scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941). - scsi: target: Fix the pgr/alua_support_store functions (git-fixes). - sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351). - soc: qcom: mdt_loader: Drop PT_LOAD check on hash segment (git-fixes). - spi: spi-nxp-fspi: do not depend on a specific node name erratum workaround (git-fixes). - tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729). - usb: chipidea: ci_hdrc_imx: Also search for 'phys' phandle (git-fixes). - usb: hso: fix error handling code of hso_create_net_device (git-fixes). - usb: hso: remove the bailout parameter (git-fixes). - usb: musb: dsps: Fix the probe error path (git-fixes). - video: fbdev: gbefb: Only instantiate device when built for IP32 (git-fixes). - virtio: write back F_VERSION_1 before validate (git-fixes). - watchdog: orion: use 0 for unset heartbeat (git-fixes). - x86/pat: Pass valid address to sanitize_phys() (bsc#1152489). - x86/resctrl: Free the ctrlval arrays when domain_setup_mon_state() fails (bsc#1152489). - x86/sev: Return an error on a returned non-zero SW_EXITINFO1[31:0] (bsc#1178134). - xen: fix setting of max_pfn in shared_info (git-fixes). - xen: reset legacy rtc flag for PV domU (git-fixes). - xfs: Fixed non-directory creation in SGID directories introduced by CVE-2018-13405 patch (bsc#1190006). - xfs: ensure that the inode uid/gid match values match the icdinode ones (bsc#1190006). - xfs: fix I_DONTCACHE (bsc#1192074). - xfs: fix log intent recovery ENOSPC shutdowns when inactivating inodes (bsc#1190642). - xfs: merge the projid fields in struct xfs_icdinode (bsc#1190006). - xfs: remove the icdinode di_uid/di_gid members (bsc#1190006). - xhci: Enable trust tx length quirk for Fresco FL11 USB controller (git-fixes). - xhci: Fix command ring pointer corruption while aborting a command (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). cluster-md-kmp-azure-5.3.18-38.28.2.x86_64.rpm True dlm-kmp-azure-5.3.18-38.28.2.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.28.2.x86_64.rpm True kernel-azure-5.3.18-38.28.2.nosrc.rpm True kernel-azure-5.3.18-38.28.2.x86_64.rpm True kernel-azure-devel-5.3.18-38.28.2.x86_64.rpm True kernel-azure-extra-5.3.18-38.28.2.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.28.2.x86_64.rpm True kernel-azure-optional-5.3.18-38.28.2.x86_64.rpm True kernel-devel-azure-5.3.18-38.28.2.noarch.rpm True kernel-source-azure-5.3.18-38.28.2.noarch.rpm True kernel-source-azure-5.3.18-38.28.2.src.rpm True kernel-syms-azure-5.3.18-38.28.1.src.rpm True kernel-syms-azure-5.3.18-38.28.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.28.2.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.28.2.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.28.2.x86_64.rpm True openSUSE-SLE-15.3-2021-3821 moderate SUSE Updates openSUSE-SLE 15.3 This update for subversions fixes the following issue: - the kde wallet plugin is now built and shipped again for openSUSE Leap 15.3 (bsc#1191282) libsvn_auth_gnome_keyring-1-0-1.10.6-10.5.1.x86_64.rpm libsvn_auth_kwallet-1-0-1.10.6-10.5.1.x86_64.rpm subversion-1.10.6-10.5.1.src.rpm subversion-1.10.6-10.5.1.x86_64.rpm subversion-bash-completion-1.10.6-10.5.1.noarch.rpm subversion-devel-1.10.6-10.5.1.x86_64.rpm subversion-perl-1.10.6-10.5.1.x86_64.rpm subversion-python-1.10.6-10.5.1.x86_64.rpm subversion-python-ctypes-1.10.6-10.5.1.x86_64.rpm subversion-ruby-1.10.6-10.5.1.x86_64.rpm subversion-server-1.10.6-10.5.1.x86_64.rpm subversion-tools-1.10.6-10.5.1.x86_64.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-10.5.1.s390x.rpm libsvn_auth_kwallet-1-0-1.10.6-10.5.1.s390x.rpm subversion-1.10.6-10.5.1.s390x.rpm subversion-devel-1.10.6-10.5.1.s390x.rpm subversion-perl-1.10.6-10.5.1.s390x.rpm subversion-python-1.10.6-10.5.1.s390x.rpm subversion-python-ctypes-1.10.6-10.5.1.s390x.rpm subversion-ruby-1.10.6-10.5.1.s390x.rpm subversion-server-1.10.6-10.5.1.s390x.rpm subversion-tools-1.10.6-10.5.1.s390x.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-10.5.1.ppc64le.rpm libsvn_auth_kwallet-1-0-1.10.6-10.5.1.ppc64le.rpm subversion-1.10.6-10.5.1.ppc64le.rpm subversion-devel-1.10.6-10.5.1.ppc64le.rpm subversion-perl-1.10.6-10.5.1.ppc64le.rpm subversion-python-1.10.6-10.5.1.ppc64le.rpm subversion-python-ctypes-1.10.6-10.5.1.ppc64le.rpm subversion-ruby-1.10.6-10.5.1.ppc64le.rpm subversion-server-1.10.6-10.5.1.ppc64le.rpm subversion-tools-1.10.6-10.5.1.ppc64le.rpm libsvn_auth_gnome_keyring-1-0-1.10.6-10.5.1.aarch64.rpm libsvn_auth_kwallet-1-0-1.10.6-10.5.1.aarch64.rpm subversion-1.10.6-10.5.1.aarch64.rpm subversion-devel-1.10.6-10.5.1.aarch64.rpm subversion-perl-1.10.6-10.5.1.aarch64.rpm subversion-python-1.10.6-10.5.1.aarch64.rpm subversion-python-ctypes-1.10.6-10.5.1.aarch64.rpm subversion-ruby-1.10.6-10.5.1.aarch64.rpm subversion-server-1.10.6-10.5.1.aarch64.rpm subversion-tools-1.10.6-10.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-3625 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - osd: move down peers out from peer_purged (bsc#1187709) - osd: fix scrub reschedule bug (bsc#1187584) - osd: marked down causes wrong backfill_toofull (bsc#1188911) - osd: panic occur repeatedly when recovery an object after disk replacement (bsc#1190415) - rgw: allow to set ssl options and ciphers for beast frontend (bsc#1185747) - bucket removal operation fails (bsc#1191357) - os/bluestore: fix erroneous SharedBlob record removal during repair - os/bluestore: Remove possibility of replay log and file inconsistency - mgr/dashboard/api: set a UTF-8 locale when running pip - mgr/DaemonServer: skip redundant update of pgp_num_actual - pybind/mgr/insights: Don't persist report data - common/options: Set osd_client_message_cap to 256 - pybind/ceph_volume_client: use cephfs mkdirs api ceph-14.2.22.445+ga68959d39a6-3.72.1.src.rpm ceph-dashboard-e2e-14.2.22.445+ga68959d39a6-3.72.1.noarch.rpm ceph-mgr-ssh-14.2.22.445+ga68959d39a6-3.72.1.noarch.rpm openSUSE-SLE-15.3-2021-3745 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: MozillaFirefox was updated to Extended Support Release 91.3.0 ESR * Fixed: Various stability, functionality, and security fixes MFSA 2021-49 (bsc#1192250) * CVE-2021-38503: iframe sandbox rules did not apply to XSLT stylesheets * CVE-2021-38504: Use-after-free in file picker dialog * CVE-2021-38505: Windows 10 Cloud Clipboard may have recorded sensitive user data * CVE-2021-38506: Firefox could be coaxed into going into fullscreen mode without notification or warning * CVE-2021-38507: Opportunistic Encryption in HTTP2 could be used to bypass the Same-Origin-Policy on services hosted on other ports * CVE-2021-38508: Permission Prompt could be overlaid, resulting in user confusion and potential spoofing * CVE-2021-38509: Javascript alert box could have been spoofed onto an arbitrary domain * CVE-2021-38510: Download Protections were bypassed by .inetloc files on Mac OS * MOZ-2021-0008: Use-after-free in HTTP2 Session object * MOZ-2021-0007: Memory safety bugs fixed in Firefox 94 and Firefox ESR 91.3 MozillaFirefox-91.3.0-152.6.1.src.rpm MozillaFirefox-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-branding-upstream-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-devel-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-translations-common-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-translations-other-91.3.0-152.6.1.x86_64.rpm MozillaFirefox-91.3.0-152.6.1.s390x.rpm MozillaFirefox-branding-upstream-91.3.0-152.6.1.s390x.rpm MozillaFirefox-devel-91.3.0-152.6.1.s390x.rpm MozillaFirefox-translations-common-91.3.0-152.6.1.s390x.rpm MozillaFirefox-translations-other-91.3.0-152.6.1.s390x.rpm MozillaFirefox-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-devel-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-translations-common-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-translations-other-91.3.0-152.6.1.ppc64le.rpm MozillaFirefox-91.3.0-152.6.1.aarch64.rpm MozillaFirefox-branding-upstream-91.3.0-152.6.1.aarch64.rpm MozillaFirefox-devel-91.3.0-152.6.1.aarch64.rpm MozillaFirefox-translations-common-91.3.0-152.6.1.aarch64.rpm MozillaFirefox-translations-other-91.3.0-152.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3773 important SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25219: Fixed lame cache that could have been abused to severely degrade resolver performance (bsc#1192146). bind-9.16.6-12.57.1.src.rpm bind-devel-32bit-9.16.6-12.57.1.x86_64.rpm libbind9-1600-32bit-9.16.6-12.57.1.x86_64.rpm libdns1605-32bit-9.16.6-12.57.1.x86_64.rpm libirs1601-32bit-9.16.6-12.57.1.x86_64.rpm libisc1606-32bit-9.16.6-12.57.1.x86_64.rpm libisccc1600-32bit-9.16.6-12.57.1.x86_64.rpm libisccfg1600-32bit-9.16.6-12.57.1.x86_64.rpm libns1604-32bit-9.16.6-12.57.1.x86_64.rpm openSUSE-SLE-15.3-2021-3767 moderate SUSE Updates openSUSE-SLE 15.3 This update for apr-util fixes the following problem: - The dbm backend is shipped in the libapr-util1-dbm-db package in the Legacy Module. apr-util-1.6.1-18.2.1.src.rpm apr-util-devel-1.6.1-18.2.1.x86_64.rpm libapr-util1-1.6.1-18.2.1.x86_64.rpm libapr-util1-dbd-mysql-1.6.1-18.2.1.x86_64.rpm libapr-util1-dbd-pgsql-1.6.1-18.2.1.x86_64.rpm libapr-util1-dbd-sqlite3-1.6.1-18.2.1.x86_64.rpm libapr-util1-dbm-db-1.6.1-18.2.1.x86_64.rpm apr-util-devel-1.6.1-18.2.1.s390x.rpm libapr-util1-1.6.1-18.2.1.s390x.rpm libapr-util1-dbd-mysql-1.6.1-18.2.1.s390x.rpm libapr-util1-dbd-pgsql-1.6.1-18.2.1.s390x.rpm libapr-util1-dbd-sqlite3-1.6.1-18.2.1.s390x.rpm libapr-util1-dbm-db-1.6.1-18.2.1.s390x.rpm apr-util-devel-1.6.1-18.2.1.ppc64le.rpm libapr-util1-1.6.1-18.2.1.ppc64le.rpm libapr-util1-dbd-mysql-1.6.1-18.2.1.ppc64le.rpm libapr-util1-dbd-pgsql-1.6.1-18.2.1.ppc64le.rpm libapr-util1-dbd-sqlite3-1.6.1-18.2.1.ppc64le.rpm libapr-util1-dbm-db-1.6.1-18.2.1.ppc64le.rpm apr-util-devel-1.6.1-18.2.1.aarch64.rpm libapr-util1-1.6.1-18.2.1.aarch64.rpm libapr-util1-dbd-mysql-1.6.1-18.2.1.aarch64.rpm libapr-util1-dbd-pgsql-1.6.1-18.2.1.aarch64.rpm libapr-util1-dbd-sqlite3-1.6.1-18.2.1.aarch64.rpm libapr-util1-dbm-db-1.6.1-18.2.1.aarch64.rpm openSUSE-SLE-15.3-2021-3792 moderate SUSE Updates openSUSE-SLE 15.3 This update for kmod fixes the following issues: - Enable ZSTD compression (bsc#1192104)(jsc#SLE-21256) kmod-29-4.12.1.src.rpm kmod-29-4.12.1.x86_64.rpm kmod-bash-completion-29-4.12.1.noarch.rpm libkmod-devel-29-4.12.1.x86_64.rpm libkmod2-29-4.12.1.x86_64.rpm kmod-29-4.12.1.s390x.rpm libkmod-devel-29-4.12.1.s390x.rpm libkmod2-29-4.12.1.s390x.rpm kmod-29-4.12.1.ppc64le.rpm libkmod-devel-29-4.12.1.ppc64le.rpm libkmod2-29-4.12.1.ppc64le.rpm kmod-29-4.12.1.aarch64.rpm libkmod-devel-29-4.12.1.aarch64.rpm libkmod2-29-4.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3793 moderate SUSE Updates openSUSE-SLE 15.3 This update for u-boot fixes the following issues: - Fix boot error on DE0-Nano-Soc board (bsc#1191966) u-boot-2021.01-7.3.1.src.rpm u-boot-tools-2021.01-7.3.1.x86_64.rpm u-boot-tools-2021.01-7.3.1.s390x.rpm u-boot-tools-2021.01-7.3.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.01-7.3.1.aarch64.rpm u-boot-avnetultra96rev1-2021.01-7.3.1.src.rpm u-boot-avnetultra96rev1-doc-2021.01-7.3.1.aarch64.rpm u-boot-bananapim64-2021.01-7.3.1.aarch64.rpm u-boot-bananapim64-2021.01-7.3.1.src.rpm u-boot-bananapim64-doc-2021.01-7.3.1.aarch64.rpm u-boot-dragonboard410c-2021.01-7.3.1.aarch64.rpm u-boot-dragonboard410c-2021.01-7.3.1.src.rpm u-boot-dragonboard410c-doc-2021.01-7.3.1.aarch64.rpm u-boot-dragonboard820c-2021.01-7.3.1.aarch64.rpm u-boot-dragonboard820c-2021.01-7.3.1.src.rpm u-boot-dragonboard820c-doc-2021.01-7.3.1.aarch64.rpm u-boot-evb-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-evb-rk3399-2021.01-7.3.1.src.rpm u-boot-evb-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-firefly-rk3399-2021.01-7.3.1.src.rpm u-boot-firefly-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-geekbox-2021.01-7.3.1.aarch64.rpm u-boot-geekbox-2021.01-7.3.1.src.rpm u-boot-geekbox-doc-2021.01-7.3.1.aarch64.rpm u-boot-hikey-2021.01-7.3.1.aarch64.rpm u-boot-hikey-2021.01-7.3.1.src.rpm u-boot-hikey-doc-2021.01-7.3.1.aarch64.rpm u-boot-khadas-vim-2021.01-7.3.1.aarch64.rpm u-boot-khadas-vim-2021.01-7.3.1.src.rpm u-boot-khadas-vim-doc-2021.01-7.3.1.aarch64.rpm u-boot-khadas-vim2-2021.01-7.3.1.aarch64.rpm u-boot-khadas-vim2-2021.01-7.3.1.src.rpm u-boot-khadas-vim2-doc-2021.01-7.3.1.aarch64.rpm u-boot-libretech-ac-2021.01-7.3.1.aarch64.rpm u-boot-libretech-ac-2021.01-7.3.1.src.rpm u-boot-libretech-ac-doc-2021.01-7.3.1.aarch64.rpm u-boot-libretech-cc-2021.01-7.3.1.aarch64.rpm u-boot-libretech-cc-2021.01-7.3.1.src.rpm u-boot-libretech-cc-doc-2021.01-7.3.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-7.3.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.01-7.3.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.01-7.3.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-7.3.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.01-7.3.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.01-7.3.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-7.3.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.01-7.3.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.01-7.3.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-7.3.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.01-7.3.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.01-7.3.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-7.3.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.01-7.3.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.01-7.3.1.aarch64.rpm u-boot-nanopia64-2021.01-7.3.1.aarch64.rpm u-boot-nanopia64-2021.01-7.3.1.src.rpm u-boot-nanopia64-doc-2021.01-7.3.1.aarch64.rpm u-boot-odroid-c2-2021.01-7.3.1.aarch64.rpm u-boot-odroid-c2-2021.01-7.3.1.src.rpm u-boot-odroid-c2-doc-2021.01-7.3.1.aarch64.rpm u-boot-odroid-c4-2021.01-7.3.1.aarch64.rpm u-boot-odroid-c4-2021.01-7.3.1.src.rpm u-boot-odroid-c4-doc-2021.01-7.3.1.aarch64.rpm u-boot-odroid-n2-2021.01-7.3.1.aarch64.rpm u-boot-odroid-n2-2021.01-7.3.1.src.rpm u-boot-odroid-n2-doc-2021.01-7.3.1.aarch64.rpm u-boot-orangepipc2-2021.01-7.3.1.aarch64.rpm u-boot-orangepipc2-2021.01-7.3.1.src.rpm u-boot-orangepipc2-doc-2021.01-7.3.1.aarch64.rpm u-boot-p2371-2180-2021.01-7.3.1.aarch64.rpm u-boot-p2371-2180-2021.01-7.3.1.src.rpm u-boot-p2371-2180-doc-2021.01-7.3.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-7.3.1.aarch64.rpm u-boot-p2771-0000-500-2021.01-7.3.1.src.rpm u-boot-p2771-0000-500-doc-2021.01-7.3.1.aarch64.rpm u-boot-p3450-0000-2021.01-7.3.1.aarch64.rpm u-boot-p3450-0000-2021.01-7.3.1.src.rpm u-boot-p3450-0000-doc-2021.01-7.3.1.aarch64.rpm u-boot-pine64plus-2021.01-7.3.1.aarch64.rpm u-boot-pine64plus-2021.01-7.3.1.src.rpm u-boot-pine64plus-doc-2021.01-7.3.1.aarch64.rpm u-boot-pinebook-2021.01-7.3.1.aarch64.rpm u-boot-pinebook-2021.01-7.3.1.src.rpm u-boot-pinebook-doc-2021.01-7.3.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.01-7.3.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-pineh64-2021.01-7.3.1.aarch64.rpm u-boot-pineh64-2021.01-7.3.1.src.rpm u-boot-pineh64-doc-2021.01-7.3.1.aarch64.rpm u-boot-pinephone-2021.01-7.3.1.aarch64.rpm u-boot-pinephone-2021.01-7.3.1.src.rpm u-boot-pinephone-doc-2021.01-7.3.1.aarch64.rpm u-boot-poplar-2021.01-7.3.1.aarch64.rpm u-boot-poplar-2021.01-7.3.1.src.rpm u-boot-poplar-doc-2021.01-7.3.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.01-7.3.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-7.3.1.aarch64.rpm u-boot-rock64-rk3328-2021.01-7.3.1.src.rpm u-boot-rock64-rk3328-doc-2021.01-7.3.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-rock960-rk3399-2021.01-7.3.1.src.rpm u-boot-rock960-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-7.3.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.01-7.3.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.01-7.3.1.aarch64.rpm u-boot-rpi3-2021.01-7.3.1.aarch64.rpm u-boot-rpi3-2021.01-7.3.1.src.rpm u-boot-rpi3-doc-2021.01-7.3.1.aarch64.rpm u-boot-rpi4-2021.01-7.3.1.aarch64.rpm u-boot-rpi4-2021.01-7.3.1.src.rpm u-boot-rpi4-doc-2021.01-7.3.1.aarch64.rpm u-boot-rpiarm64-2021.01-7.3.1.aarch64.rpm u-boot-rpiarm64-2021.01-7.3.1.src.rpm u-boot-rpiarm64-doc-2021.01-7.3.1.aarch64.rpm u-boot-tools-2021.01-7.3.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-7.3.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.01-7.3.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.01-7.3.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-7.3.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.01-7.3.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.01-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3782 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Fixed multipath devices that always default to bfq scheduler (bsc#1188713) - Fixed unbootable system when testing kernel 5.14 (bsc#1190326) - Add support for the new iscsiadm "no-wait" (-W) command (bsc#1187190) - Add iscsid.service requirements (bsc#1187190) dracut-049.1+suse.216.gf705637b-3.45.1.src.rpm dracut-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-extra-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-fips-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-ima-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-tools-049.1+suse.216.gf705637b-3.45.1.x86_64.rpm dracut-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-extra-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-fips-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-ima-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-tools-049.1+suse.216.gf705637b-3.45.1.s390x.rpm dracut-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-extra-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-fips-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-ima-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-tools-049.1+suse.216.gf705637b-3.45.1.ppc64le.rpm dracut-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm dracut-extra-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm dracut-fips-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm dracut-ima-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm dracut-tools-049.1+suse.216.gf705637b-3.45.1.aarch64.rpm openSUSE-SLE-15.3-2021-3659 important SUSE Updates openSUSE-SLE 15.3 This update for gnome-control-center fixes the following issues: - Restore patch that prompts error messages when wicked is used as network manager (bsc#1190875) gnome-control-center-3.34.6-9.3.1.src.rpm gnome-control-center-3.34.6-9.3.1.x86_64.rpm gnome-control-center-color-3.34.6-9.3.1.x86_64.rpm gnome-control-center-devel-3.34.6-9.3.1.x86_64.rpm gnome-control-center-goa-3.34.6-9.3.1.x86_64.rpm gnome-control-center-lang-3.34.6-9.3.1.noarch.rpm gnome-control-center-user-faces-3.34.6-9.3.1.x86_64.rpm gnome-control-center-3.34.6-9.3.1.s390x.rpm gnome-control-center-color-3.34.6-9.3.1.s390x.rpm gnome-control-center-devel-3.34.6-9.3.1.s390x.rpm gnome-control-center-goa-3.34.6-9.3.1.s390x.rpm gnome-control-center-user-faces-3.34.6-9.3.1.s390x.rpm gnome-control-center-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-color-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-devel-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-goa-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-user-faces-3.34.6-9.3.1.ppc64le.rpm gnome-control-center-3.34.6-9.3.1.aarch64.rpm gnome-control-center-color-3.34.6-9.3.1.aarch64.rpm gnome-control-center-devel-3.34.6-9.3.1.aarch64.rpm gnome-control-center-goa-3.34.6-9.3.1.aarch64.rpm gnome-control-center-user-faces-3.34.6-9.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3808 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Add timestamp to D-Bus events to improve traceability (jsc#SLE-17798) - Fix fd_is_mount_point() when both the parent and directory are network file systems (bsc#1190984) - Support detection for ARM64 Hyper-V guests (bsc#1186071) - Fix systemd-detect-virt not detecting Amazon EC2 Nitro instance (bsc#1190440) - Enable support for Portable Services in openSUSE Leap only (jsc#SLE-21694) - Fix IO scheduler udev rules to address performance issues (jsc#SLE-21032, bsc#1192161) libsystemd0-246.16-7.21.1.x86_64.rpm True libsystemd0-32bit-246.16-7.21.1.x86_64.rpm True libudev-devel-246.16-7.21.1.x86_64.rpm True libudev-devel-32bit-246.16-7.21.1.x86_64.rpm True libudev1-246.16-7.21.1.x86_64.rpm True libudev1-32bit-246.16-7.21.1.x86_64.rpm True nss-myhostname-246.16-7.21.1.x86_64.rpm True nss-myhostname-32bit-246.16-7.21.1.x86_64.rpm True nss-mymachines-246.16-7.21.1.x86_64.rpm True nss-mymachines-32bit-246.16-7.21.1.x86_64.rpm True nss-resolve-246.16-7.21.1.x86_64.rpm True nss-systemd-246.16-7.21.1.x86_64.rpm True systemd-246.16-7.21.1.src.rpm True systemd-246.16-7.21.1.x86_64.rpm True systemd-32bit-246.16-7.21.1.x86_64.rpm True systemd-container-246.16-7.21.1.x86_64.rpm True systemd-coredump-246.16-7.21.1.x86_64.rpm True systemd-devel-246.16-7.21.1.x86_64.rpm True systemd-doc-246.16-7.21.1.x86_64.rpm True systemd-journal-remote-246.16-7.21.1.x86_64.rpm True systemd-lang-246.16-7.21.1.noarch.rpm True systemd-logger-246.16-7.21.1.x86_64.rpm True systemd-network-246.16-7.21.1.x86_64.rpm True systemd-sysvinit-246.16-7.21.1.x86_64.rpm True udev-246.16-7.21.1.x86_64.rpm True libsystemd0-246.16-7.21.1.s390x.rpm True libudev-devel-246.16-7.21.1.s390x.rpm True libudev1-246.16-7.21.1.s390x.rpm True nss-myhostname-246.16-7.21.1.s390x.rpm True nss-mymachines-246.16-7.21.1.s390x.rpm True nss-resolve-246.16-7.21.1.s390x.rpm True nss-systemd-246.16-7.21.1.s390x.rpm True systemd-246.16-7.21.1.s390x.rpm True systemd-container-246.16-7.21.1.s390x.rpm True systemd-coredump-246.16-7.21.1.s390x.rpm True systemd-devel-246.16-7.21.1.s390x.rpm True systemd-doc-246.16-7.21.1.s390x.rpm True systemd-journal-remote-246.16-7.21.1.s390x.rpm True systemd-logger-246.16-7.21.1.s390x.rpm True systemd-network-246.16-7.21.1.s390x.rpm True systemd-sysvinit-246.16-7.21.1.s390x.rpm True udev-246.16-7.21.1.s390x.rpm True libsystemd0-246.16-7.21.1.ppc64le.rpm True libudev-devel-246.16-7.21.1.ppc64le.rpm True libudev1-246.16-7.21.1.ppc64le.rpm True nss-myhostname-246.16-7.21.1.ppc64le.rpm True nss-mymachines-246.16-7.21.1.ppc64le.rpm True nss-resolve-246.16-7.21.1.ppc64le.rpm True nss-systemd-246.16-7.21.1.ppc64le.rpm True systemd-246.16-7.21.1.ppc64le.rpm True systemd-container-246.16-7.21.1.ppc64le.rpm True systemd-coredump-246.16-7.21.1.ppc64le.rpm True systemd-devel-246.16-7.21.1.ppc64le.rpm True systemd-doc-246.16-7.21.1.ppc64le.rpm True systemd-journal-remote-246.16-7.21.1.ppc64le.rpm True systemd-logger-246.16-7.21.1.ppc64le.rpm True systemd-network-246.16-7.21.1.ppc64le.rpm True systemd-sysvinit-246.16-7.21.1.ppc64le.rpm True udev-246.16-7.21.1.ppc64le.rpm True libsystemd0-246.16-7.21.1.aarch64.rpm True libudev-devel-246.16-7.21.1.aarch64.rpm True libudev1-246.16-7.21.1.aarch64.rpm True nss-myhostname-246.16-7.21.1.aarch64.rpm True nss-mymachines-246.16-7.21.1.aarch64.rpm True nss-resolve-246.16-7.21.1.aarch64.rpm True nss-systemd-246.16-7.21.1.aarch64.rpm True systemd-246.16-7.21.1.aarch64.rpm True systemd-container-246.16-7.21.1.aarch64.rpm True systemd-coredump-246.16-7.21.1.aarch64.rpm True systemd-devel-246.16-7.21.1.aarch64.rpm True systemd-doc-246.16-7.21.1.aarch64.rpm True systemd-journal-remote-246.16-7.21.1.aarch64.rpm True systemd-logger-246.16-7.21.1.aarch64.rpm True systemd-network-246.16-7.21.1.aarch64.rpm True systemd-sysvinit-246.16-7.21.1.aarch64.rpm True udev-246.16-7.21.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3789 important SUSE Updates openSUSE-SLE 15.3 This update for yast2-installation fixes the following issues: - Filter the installation proposals (in the Installation Settings screen) according to the AutoYaST profile even before tab switching (related to bsc#1190294) yast2-installation-4.3.44-3.16.1.noarch.rpm yast2-installation-4.3.44-3.16.1.src.rpm openSUSE-SLE-15.3-2021-3647 important SUSE Updates openSUSE-SLE 15.3 This update for samba and ldb fixes the following issues: - CVE-2020-25718: Fixed that an RODC can issue (forge) administrator tickets to other servers (bsc#1192246). - CVE-2021-3738: Fixed crash in dsdb stack (bsc#1192215). - CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440). - CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284). - CVE-2020-25719: Fixed AD DC Username based races when no PAC is given (bsc#1192247). - CVE-2020-25722: Fixed AD DC UPN vs samAccountName not checked (top-level bug for AD DC validation issues) (bsc#1192283). - CVE-2021-23192: Fixed dcerpc requests to don't check all fragments against the first auth_state (bsc#1192214). - CVE-2020-25721: Fixed fill in the new HAS_SAM_NAME_AND_SID values (bsc#1192505). Samba was updated to 4.13.13 * rodc_rwdc test flaps;(bso#14868). * Backport bronze bit fixes, tests, and selftest improvements; (bso#14881). * Provide a fix for MS CVE-2020-17049 in Samba [SECURITY] 'Bronze bit' S4U2Proxy Constrained Delegation bypass in Samba with embedded Heimdal;(bso#14642). * Python ldb.msg_diff() memory handling failure;(bso#14836). * "in" operator on ldb.Message is case sensitive;(bso#14845). * Fix Samba support for UF_NO_AUTH_DATA_REQUIRED;(bso#14871). * Allow special chars like "@" in samAccountName when generating the salt;(bso#14874). * Fix transit path validation;(bso#12998). * Prepare to operate with MIT krb5 >= 1.20;(bso#14870). * rpcclient NetFileEnum and net rpc file both cause lock order violation: brlock.tdb, share_entries.tdb;(bso#14645). * Python ldb.msg_diff() memory handling failure;(bso#14836). * Release LDB 2.3.1 for Samba 4.14.9;(bso#14848). Samba was updated to 4.13.12: * Address a signifcant performance regression in database access in the AD DC since Samba 4.12;(bso#14806). * Fix performance regression in lsa_LookupSids3/LookupNames4 since Samba 4.9 by using an explicit database handle cache; (bso#14807). * An unuthenticated user can crash the AD DC KDC by omitting the server name in a TGS-REQ;(bso#14817). * Address flapping samba_tool_drs_showrepl test;(bso#14818). * Address flapping dsdb_schema_attributes test;(bso#14819). * An unuthenticated user can crash the AD DC KDC by omitting the server name in a TGS-REQ;(bso#14817). * Fix CTDB flag/status update race conditions(bso#14784). Samba was updated to 4.13.11: * smbd: panic on force-close share during offload write; (bso#14769). * Fix returned attributes on fake quota file handle and avoid hitting the VFS;(bso#14731). * smbd: "deadtime" parameter doesn't work anymore;(bso#14783). * net conf list crashes when run as normal user;(bso#14787). * Work around special SMB2 READ response behavior of NetApp Ontap 7.3.7;(bso#14607). * Start the SMB encryption as soon as possible;(bso#14793). * Winbind should not start if the socket path for the privileged pipe is too long;(bso#14792). ldb was updated to 2.2.2: + CVE-2020-25718: samba: An RODC can issue (forge) administrator tickets to other servers; (bsc#1192246); (bso#14558) + CVE-2021-3738: samba: crash in dsdb stack; (bsc#1192215);(bso#14848) Release ldb 2.2.2 + Corrected python behaviour for 'in' for LDAP attributes contained as part of ldb.Message;(bso#14845). + Fix memory handling in ldb.msg_diff Corrected python docstrings;(bso#14836) + Backport bronze bit fixes, tests, and selftest improvements; (bso#14881). ctdb-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm ctdb-pcp-pmda-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm ctdb-tests-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm ldb-2.2.2-3.3.1.src.rpm ldb-tools-2.2.2-3.3.1.x86_64.rpm libdcerpc-binding0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-binding0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-samr-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-samr0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc-samr0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libdcerpc0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libldb-devel-2.2.2-3.3.1.x86_64.rpm libldb2-2.2.2-3.3.1.x86_64.rpm libldb2-32bit-2.2.2-3.3.1.x86_64.rpm libndr-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-krb5pac-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-krb5pac0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-krb5pac0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-nbt-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-nbt0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-nbt0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-standard-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-standard0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr-standard0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr1-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libndr1-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libnetapi-devel-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libnetapi-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libnetapi0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libnetapi0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-credentials-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-credentials0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-credentials0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-errors-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-errors0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-errors0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-hostconfig-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-hostconfig0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-hostconfig0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-passdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-passdb0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-passdb0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-policy-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-policy-python3-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-policy0-python3-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-policy0-python3-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-util0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamba-util0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamdb0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsamdb0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbclient0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbclient0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbconf-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbconf0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbconf0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbldap-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbldap2-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libsmbldap2-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libtevent-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libtevent-util0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libtevent-util0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libwbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libwbclient0-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm libwbclient0-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm python3-ldb-2.2.2-3.3.1.x86_64.rpm python3-ldb-32bit-2.2.2-3.3.1.x86_64.rpm python3-ldb-devel-2.2.2-3.3.1.x86_64.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.src.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-ad-dc-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-ad-dc-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-ceph-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-client-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-client-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-core-devel-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-doc-4.13.13+git.528.140935f8d6a-3.12.1.noarch.rpm samba-dsdb-modules-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-gpupdate-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-ldb-ldap-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-libs-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-libs-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-libs-python3-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-libs-python3-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-python3-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-test-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-winbind-32bit-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm samba-winbind-4.13.13+git.528.140935f8d6a-3.12.1.x86_64.rpm ctdb-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm ctdb-pcp-pmda-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm ctdb-tests-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm ldb-tools-2.2.2-3.3.1.s390x.rpm libdcerpc-binding0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libdcerpc-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libdcerpc-samr-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libdcerpc-samr0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libdcerpc0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libldb-devel-2.2.2-3.3.1.s390x.rpm libldb2-2.2.2-3.3.1.s390x.rpm libndr-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-krb5pac-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-krb5pac0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-nbt-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-nbt0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-standard-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr-standard0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libndr1-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libnetapi-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libnetapi0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-credentials-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-credentials0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-errors-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-errors0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-hostconfig-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-hostconfig0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-passdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-passdb0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-policy-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-policy-python3-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-policy0-python3-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamba-util0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsamdb0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbclient0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbconf-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbconf0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbldap-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libsmbldap2-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libtevent-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libtevent-util0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libwbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm libwbclient0-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm python3-ldb-2.2.2-3.3.1.s390x.rpm python3-ldb-devel-2.2.2-3.3.1.s390x.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-ad-dc-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-client-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-core-devel-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-dsdb-modules-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-gpupdate-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-ldb-ldap-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-libs-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-libs-python3-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-python3-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-test-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm samba-winbind-4.13.13+git.528.140935f8d6a-3.12.1.s390x.rpm ctdb-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm ctdb-pcp-pmda-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm ctdb-tests-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm ldb-tools-2.2.2-3.3.1.ppc64le.rpm libdcerpc-binding0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libdcerpc-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libdcerpc-samr-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libdcerpc-samr0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libdcerpc0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libldb-devel-2.2.2-3.3.1.ppc64le.rpm libldb2-2.2.2-3.3.1.ppc64le.rpm libndr-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-krb5pac-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-krb5pac0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-nbt-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-nbt0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-standard-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr-standard0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libndr1-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libnetapi-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libnetapi0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-credentials-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-credentials0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-errors-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-errors0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-hostconfig-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-hostconfig0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-passdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-passdb0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-policy-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-policy-python3-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-policy0-python3-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamba-util0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsamdb0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbclient0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbconf-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbconf0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbldap-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libsmbldap2-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libtevent-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libtevent-util0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libwbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm libwbclient0-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm python3-ldb-2.2.2-3.3.1.ppc64le.rpm python3-ldb-devel-2.2.2-3.3.1.ppc64le.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-ad-dc-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-client-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-core-devel-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-dsdb-modules-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-gpupdate-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-ldb-ldap-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-libs-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-libs-python3-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-python3-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-test-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm samba-winbind-4.13.13+git.528.140935f8d6a-3.12.1.ppc64le.rpm ctdb-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm ctdb-pcp-pmda-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm ctdb-tests-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm ldb-tools-2.2.2-3.3.1.aarch64.rpm libdcerpc-binding0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc-binding0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libdcerpc-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc-samr-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc-samr0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc-samr0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libdcerpc0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libdcerpc0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libldb-devel-2.2.2-3.3.1.aarch64.rpm libldb2-2.2.2-3.3.1.aarch64.rpm libndr-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-krb5pac-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-krb5pac0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-krb5pac0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libndr-nbt-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-nbt0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-nbt0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libndr-standard-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-standard0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr-standard0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libndr1-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libndr1-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libnetapi-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libnetapi-devel-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libnetapi0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libnetapi0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-credentials-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-credentials0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-credentials0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-errors-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-errors0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-errors0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-hostconfig-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-hostconfig0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-hostconfig0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-passdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-passdb0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-passdb0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-policy-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-policy-python3-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-policy0-python3-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-policy0-python3-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamba-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-util0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamba-util0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsamdb-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamdb0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsamdb0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsmbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbclient0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbclient0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsmbconf-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbconf0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbconf0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libsmbldap-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbldap2-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libsmbldap2-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libtevent-util-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libtevent-util0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libtevent-util0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm libwbclient-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libwbclient0-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm libwbclient0-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm python3-ldb-2.2.2-3.3.1.aarch64.rpm python3-ldb-devel-2.2.2-3.3.1.aarch64.rpm samba-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-ad-dc-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-ad-dc-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm samba-ceph-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-client-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-client-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm samba-core-devel-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-dsdb-modules-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-gpupdate-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-ldb-ldap-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-libs-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-libs-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm samba-libs-python3-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-libs-python3-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm samba-python3-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-test-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-winbind-4.13.13+git.528.140935f8d6a-3.12.1.aarch64.rpm samba-winbind-64bit-4.13.13+git.528.140935f8d6a-3.12.1.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-3643 moderate SUSE Updates openSUSE-SLE 15.3 This update for binutils fixes the following issues: - For compatibility on old code stream that expect 'brcl 0,label' to not be disassembled as 'jgnop label' on s390x. (bsc#1192267) This reverts IBM zSeries HLASM support for now. - Fixed that ppc64 optflags did not enable LTO (bsc#1188941). - Fix empty man-pages from broken release tarball - Fixed a memory corruption with rpath option (bsc#1191473). - Fixed slow performance of stripping some binaries (bsc#1183909). Security issue fixed: - CVE-2021-20294: Fixed out-of-bounds write in print_dynamic_symbol in readelf (bnc#1184519) binutils-2.37-7.26.1.src.rpm binutils-2.37-7.26.1.x86_64.rpm binutils-devel-2.37-7.26.1.x86_64.rpm binutils-devel-32bit-2.37-7.26.1.x86_64.rpm binutils-gold-2.37-7.26.1.x86_64.rpm cross-aarch64-binutils-2.37-7.26.1.src.rpm cross-aarch64-binutils-2.37-7.26.1.x86_64.rpm cross-arm-binutils-2.37-7.26.1.src.rpm cross-arm-binutils-2.37-7.26.1.x86_64.rpm cross-avr-binutils-2.37-7.26.1.src.rpm cross-avr-binutils-2.37-7.26.1.x86_64.rpm cross-epiphany-binutils-2.37-7.26.1.src.rpm cross-epiphany-binutils-2.37-7.26.1.x86_64.rpm cross-hppa-binutils-2.37-7.26.1.src.rpm cross-hppa-binutils-2.37-7.26.1.x86_64.rpm cross-hppa64-binutils-2.37-7.26.1.src.rpm cross-hppa64-binutils-2.37-7.26.1.x86_64.rpm cross-i386-binutils-2.37-7.26.1.src.rpm cross-i386-binutils-2.37-7.26.1.x86_64.rpm cross-ia64-binutils-2.37-7.26.1.src.rpm cross-ia64-binutils-2.37-7.26.1.x86_64.rpm cross-m68k-binutils-2.37-7.26.1.src.rpm cross-m68k-binutils-2.37-7.26.1.x86_64.rpm cross-mips-binutils-2.37-7.26.1.src.rpm cross-mips-binutils-2.37-7.26.1.x86_64.rpm cross-ppc-binutils-2.37-7.26.1.src.rpm cross-ppc-binutils-2.37-7.26.1.x86_64.rpm cross-ppc64-binutils-2.37-7.26.1.src.rpm cross-ppc64-binutils-2.37-7.26.1.x86_64.rpm cross-ppc64le-binutils-2.37-7.26.1.src.rpm cross-ppc64le-binutils-2.37-7.26.1.x86_64.rpm cross-riscv64-binutils-2.37-7.26.1.src.rpm cross-riscv64-binutils-2.37-7.26.1.x86_64.rpm cross-rx-binutils-2.37-7.26.1.src.rpm cross-rx-binutils-2.37-7.26.1.x86_64.rpm cross-s390-binutils-2.37-7.26.1.src.rpm cross-s390-binutils-2.37-7.26.1.x86_64.rpm cross-s390x-binutils-2.37-7.26.1.src.rpm cross-s390x-binutils-2.37-7.26.1.x86_64.rpm cross-sparc-binutils-2.37-7.26.1.src.rpm cross-sparc-binutils-2.37-7.26.1.x86_64.rpm cross-sparc64-binutils-2.37-7.26.1.src.rpm cross-sparc64-binutils-2.37-7.26.1.x86_64.rpm cross-spu-binutils-2.37-7.26.1.src.rpm cross-spu-binutils-2.37-7.26.1.x86_64.rpm libctf-nobfd0-2.37-7.26.1.x86_64.rpm libctf0-2.37-7.26.1.x86_64.rpm binutils-2.37-7.26.1.s390x.rpm binutils-devel-2.37-7.26.1.s390x.rpm binutils-gold-2.37-7.26.1.s390x.rpm cross-aarch64-binutils-2.37-7.26.1.s390x.rpm cross-arm-binutils-2.37-7.26.1.s390x.rpm cross-avr-binutils-2.37-7.26.1.s390x.rpm cross-epiphany-binutils-2.37-7.26.1.s390x.rpm cross-hppa-binutils-2.37-7.26.1.s390x.rpm cross-hppa64-binutils-2.37-7.26.1.s390x.rpm cross-i386-binutils-2.37-7.26.1.s390x.rpm cross-ia64-binutils-2.37-7.26.1.s390x.rpm cross-m68k-binutils-2.37-7.26.1.s390x.rpm cross-mips-binutils-2.37-7.26.1.s390x.rpm cross-ppc-binutils-2.37-7.26.1.s390x.rpm cross-ppc64-binutils-2.37-7.26.1.s390x.rpm cross-ppc64le-binutils-2.37-7.26.1.s390x.rpm cross-riscv64-binutils-2.37-7.26.1.s390x.rpm cross-rx-binutils-2.37-7.26.1.s390x.rpm cross-s390-binutils-2.37-7.26.1.s390x.rpm cross-sparc-binutils-2.37-7.26.1.s390x.rpm cross-sparc64-binutils-2.37-7.26.1.s390x.rpm cross-spu-binutils-2.37-7.26.1.s390x.rpm cross-x86_64-binutils-2.37-7.26.1.s390x.rpm cross-x86_64-binutils-2.37-7.26.1.src.rpm libctf-nobfd0-2.37-7.26.1.s390x.rpm libctf0-2.37-7.26.1.s390x.rpm binutils-2.37-7.26.1.ppc64le.rpm binutils-devel-2.37-7.26.1.ppc64le.rpm binutils-gold-2.37-7.26.1.ppc64le.rpm cross-aarch64-binutils-2.37-7.26.1.ppc64le.rpm cross-arm-binutils-2.37-7.26.1.ppc64le.rpm cross-avr-binutils-2.37-7.26.1.ppc64le.rpm cross-epiphany-binutils-2.37-7.26.1.ppc64le.rpm cross-hppa-binutils-2.37-7.26.1.ppc64le.rpm cross-hppa64-binutils-2.37-7.26.1.ppc64le.rpm cross-i386-binutils-2.37-7.26.1.ppc64le.rpm cross-ia64-binutils-2.37-7.26.1.ppc64le.rpm cross-m68k-binutils-2.37-7.26.1.ppc64le.rpm cross-mips-binutils-2.37-7.26.1.ppc64le.rpm cross-ppc-binutils-2.37-7.26.1.ppc64le.rpm cross-ppc64-binutils-2.37-7.26.1.ppc64le.rpm cross-riscv64-binutils-2.37-7.26.1.ppc64le.rpm cross-rx-binutils-2.37-7.26.1.ppc64le.rpm cross-s390-binutils-2.37-7.26.1.ppc64le.rpm cross-s390x-binutils-2.37-7.26.1.ppc64le.rpm cross-sparc-binutils-2.37-7.26.1.ppc64le.rpm cross-sparc64-binutils-2.37-7.26.1.ppc64le.rpm cross-spu-binutils-2.37-7.26.1.ppc64le.rpm cross-x86_64-binutils-2.37-7.26.1.ppc64le.rpm libctf-nobfd0-2.37-7.26.1.ppc64le.rpm libctf0-2.37-7.26.1.ppc64le.rpm binutils-2.37-7.26.1.aarch64.rpm binutils-devel-2.37-7.26.1.aarch64.rpm binutils-gold-2.37-7.26.1.aarch64.rpm cross-arm-binutils-2.37-7.26.1.aarch64.rpm cross-avr-binutils-2.37-7.26.1.aarch64.rpm cross-epiphany-binutils-2.37-7.26.1.aarch64.rpm cross-hppa-binutils-2.37-7.26.1.aarch64.rpm cross-hppa64-binutils-2.37-7.26.1.aarch64.rpm cross-i386-binutils-2.37-7.26.1.aarch64.rpm cross-ia64-binutils-2.37-7.26.1.aarch64.rpm cross-m68k-binutils-2.37-7.26.1.aarch64.rpm cross-mips-binutils-2.37-7.26.1.aarch64.rpm cross-ppc-binutils-2.37-7.26.1.aarch64.rpm cross-ppc64-binutils-2.37-7.26.1.aarch64.rpm cross-ppc64le-binutils-2.37-7.26.1.aarch64.rpm cross-riscv64-binutils-2.37-7.26.1.aarch64.rpm cross-rx-binutils-2.37-7.26.1.aarch64.rpm cross-s390-binutils-2.37-7.26.1.aarch64.rpm cross-s390x-binutils-2.37-7.26.1.aarch64.rpm cross-sparc-binutils-2.37-7.26.1.aarch64.rpm cross-sparc64-binutils-2.37-7.26.1.aarch64.rpm cross-spu-binutils-2.37-7.26.1.aarch64.rpm cross-x86_64-binutils-2.37-7.26.1.aarch64.rpm libctf-nobfd0-2.37-7.26.1.aarch64.rpm libctf0-2.37-7.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-3834 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Security update go1.16.10 (released 2021-11-04) (bsc#1182345). - CVE-2021-41771: Fixed invalid dynamic symbol table command that could have caused panic (bsc#1192377). - CVE-2021-41772: Fixed panic on (*Reader).Open (bsc#1192378). go1.16-1.16.10-1.32.1.src.rpm go1.16-1.16.10-1.32.1.x86_64.rpm go1.16-doc-1.16.10-1.32.1.x86_64.rpm go1.16-race-1.16.10-1.32.1.x86_64.rpm go1.16-1.16.10-1.32.1.s390x.rpm go1.16-doc-1.16.10-1.32.1.s390x.rpm go1.16-1.16.10-1.32.1.ppc64le.rpm go1.16-doc-1.16.10-1.32.1.ppc64le.rpm go1.16-1.16.10-1.32.1.aarch64.rpm go1.16-doc-1.16.10-1.32.1.aarch64.rpm go1.16-race-1.16.10-1.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-3833 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Security update go1.17.3 (released 2021-11-04) (bsc#1190649). - CVE-2021-41771: Fixed invalid dynamic symbol table command that could have caused panic (bsc#1192377). - CVE-2021-41772: Fixed panic on (*Reader).Open (bsc#1192378). go1.17-1.17.3-1.9.1.i586.rpm go1.17-1.17.3-1.9.1.src.rpm go1.17-doc-1.17.3-1.9.1.i586.rpm go1.17-1.17.3-1.9.1.x86_64.rpm go1.17-doc-1.17.3-1.9.1.x86_64.rpm go1.17-race-1.17.3-1.9.1.x86_64.rpm go1.17-1.17.3-1.9.1.s390x.rpm go1.17-doc-1.17.3-1.9.1.s390x.rpm go1.17-1.17.3-1.9.1.ppc64le.rpm go1.17-doc-1.17.3-1.9.1.ppc64le.rpm go1.17-1.17.3-1.9.1.aarch64.rpm go1.17-doc-1.17.3-1.9.1.aarch64.rpm go1.17-race-1.17.3-1.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3981 moderate SUSE Updates openSUSE-SLE 15.3 This update for ocfs2-tools and libdlm fixes the following issues: ocfs2-tools: - Fix mounted.ocfs2 output when some devices are not ready (bsc#1191810) - Rollback when dir_index creation fails (bsc#1192103) libdlm: - Added libdlm to fix missing dependency libdlm-4.0.9-6.8.1.src.rpm libdlm-4.0.9-6.8.1.x86_64.rpm libdlm-devel-4.0.9-6.8.1.x86_64.rpm libdlm3-4.0.9-6.8.1.x86_64.rpm ocfs2-tools-1.8.5-12.11.1.src.rpm ocfs2-tools-1.8.5-12.11.1.x86_64.rpm ocfs2-tools-devel-1.8.5-12.11.1.x86_64.rpm ocfs2-tools-devel-static-1.8.5-12.11.1.x86_64.rpm ocfs2-tools-o2cb-1.8.5-12.11.1.x86_64.rpm libdlm-4.0.9-6.8.1.s390x.rpm libdlm-devel-4.0.9-6.8.1.s390x.rpm libdlm3-4.0.9-6.8.1.s390x.rpm ocfs2-tools-1.8.5-12.11.1.s390x.rpm ocfs2-tools-devel-1.8.5-12.11.1.s390x.rpm ocfs2-tools-devel-static-1.8.5-12.11.1.s390x.rpm ocfs2-tools-o2cb-1.8.5-12.11.1.s390x.rpm libdlm-4.0.9-6.8.1.ppc64le.rpm libdlm-devel-4.0.9-6.8.1.ppc64le.rpm libdlm3-4.0.9-6.8.1.ppc64le.rpm ocfs2-tools-1.8.5-12.11.1.ppc64le.rpm ocfs2-tools-devel-1.8.5-12.11.1.ppc64le.rpm ocfs2-tools-devel-static-1.8.5-12.11.1.ppc64le.rpm ocfs2-tools-o2cb-1.8.5-12.11.1.ppc64le.rpm libdlm-4.0.9-6.8.1.aarch64.rpm libdlm-devel-4.0.9-6.8.1.aarch64.rpm libdlm3-4.0.9-6.8.1.aarch64.rpm ocfs2-tools-1.8.5-12.11.1.aarch64.rpm ocfs2-tools-devel-1.8.5-12.11.1.aarch64.rpm ocfs2-tools-devel-static-1.8.5-12.11.1.aarch64.rpm ocfs2-tools-o2cb-1.8.5-12.11.1.aarch64.rpm openSUSE-SLE-15.3-2021-3724 moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issue: - Avoid error with HCN IDs containing same consecutive bytes (bsc#1192095) powerpc-utils-1.3.9-9.12.1.ppc64le.rpm powerpc-utils-1.3.9-9.12.1.src.rpm openSUSE-SLE-15.3-2021-3822 moderate SUSE Updates openSUSE-SLE 15.3 This update for virt-manager fixes the following issues: - DomU won't boot after adding phys hard drive (bsc#1188223) - Virtual Machine Manager shows disconnected after rebooting virtual machine in Xen mode (bsc#1191358) - Add Support for SUSE Product SLE-HPC to virt-install (bsc#1190215) virt-install-3.2.0-7.7.1.noarch.rpm virt-manager-3.2.0-7.7.1.noarch.rpm virt-manager-3.2.0-7.7.1.src.rpm virt-manager-common-3.2.0-7.7.1.noarch.rpm openSUSE-SLE-15.3-2021-3674 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440). - CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284). libsamba-policy-python-devel-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm libsamba-policy0-32bit-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm libsamba-policy0-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm samba-4.9.5+git.471.5edbe3dcae7-3.57.2.src.rpm samba-libs-python-32bit-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm samba-libs-python-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm samba-python-4.9.5+git.471.5edbe3dcae7-3.57.2.x86_64.rpm libsamba-policy-python-devel-4.9.5+git.471.5edbe3dcae7-3.57.2.s390x.rpm libsamba-policy0-4.9.5+git.471.5edbe3dcae7-3.57.2.s390x.rpm samba-libs-python-4.9.5+git.471.5edbe3dcae7-3.57.2.s390x.rpm samba-python-4.9.5+git.471.5edbe3dcae7-3.57.2.s390x.rpm libsamba-policy-python-devel-4.9.5+git.471.5edbe3dcae7-3.57.2.ppc64le.rpm libsamba-policy0-4.9.5+git.471.5edbe3dcae7-3.57.2.ppc64le.rpm samba-libs-python-4.9.5+git.471.5edbe3dcae7-3.57.2.ppc64le.rpm samba-python-4.9.5+git.471.5edbe3dcae7-3.57.2.ppc64le.rpm libsamba-policy-python-devel-4.9.5+git.471.5edbe3dcae7-3.57.2.aarch64.rpm libsamba-policy0-4.9.5+git.471.5edbe3dcae7-3.57.2.aarch64.rpm samba-libs-python-4.9.5+git.471.5edbe3dcae7-3.57.2.aarch64.rpm samba-python-4.9.5+git.471.5edbe3dcae7-3.57.2.aarch64.rpm openSUSE-SLE-15.3-2021-3827 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network and yast2-schema fixes the following issues: - Replace calls to dropped method. (bsc#1192560) Fixed interfaces table description for s390 Group devices. - AutoYaST: Use"device" and "name" elements use "device" as "name" and "name" as "description". (bsc#1192270) - Do not crash when checking if a virtual interface is connected (bsc#1192183, bsc#1192270) - Add 'description' to the interfaces in the networking section (bsc#1192270) - Add the "keep_unknown_lv" element to the partitioning schema (bsc#1191968) yast2-network-4.3.81-3.23.1.noarch.rpm yast2-network-4.3.81-3.23.1.src.rpm yast2-schema-4.3.27-3.9.1.src.rpm yast2-schema-4.3.27-3.9.1.x86_64.rpm yast2-schema-4.3.27-3.9.1.s390x.rpm yast2-schema-4.3.27-3.9.1.ppc64le.rpm yast2-schema-4.3.27-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3650 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - CVE-2016-2124: Fixed not to fallback to non spnego authentication if we require kerberos (bsc#1014440). - CVE-2020-25717: Fixed privilege escalation inside an AD Domain where a user could become root on domain members (bsc#1192284). - CVE-2021-23192: Fixed dcerpc requests to don't check all fragments against the first auth_state (bsc#1192214). libndr0-32bit-4.11.14+git.308.666c63d4eea-4.28.1.x86_64.rpm libndr0-4.11.14+git.308.666c63d4eea-4.28.1.x86_64.rpm samba-4.11.14+git.308.666c63d4eea-4.28.1.src.rpm libndr0-4.11.14+git.308.666c63d4eea-4.28.1.s390x.rpm libndr0-4.11.14+git.308.666c63d4eea-4.28.1.ppc64le.rpm libndr0-4.11.14+git.308.666c63d4eea-4.28.1.aarch64.rpm openSUSE-SLE-15.3-2021-3639 low SUSE Updates openSUSE-SLE 15.3 This update for tinyxml fixes the following issues: - CVE-2021-42260: Fixed an infinite loop for inputs containing the sequence 0xEF0x00 (bsc#1191576) libtinyxml0-2.6.2-3.3.1.x86_64.rpm tinyxml-2.6.2-3.3.1.src.rpm tinyxml-devel-2.6.2-3.3.1.x86_64.rpm tinyxml-docs-2.6.2-3.3.1.x86_64.rpm libtinyxml0-2.6.2-3.3.1.s390x.rpm tinyxml-devel-2.6.2-3.3.1.s390x.rpm tinyxml-docs-2.6.2-3.3.1.s390x.rpm libtinyxml0-2.6.2-3.3.1.ppc64le.rpm tinyxml-devel-2.6.2-3.3.1.ppc64le.rpm tinyxml-docs-2.6.2-3.3.1.ppc64le.rpm libtinyxml0-2.6.2-3.3.1.aarch64.rpm tinyxml-devel-2.6.2-3.3.1.aarch64.rpm tinyxml-docs-2.6.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3656 moderate SUSE Updates openSUSE-SLE 15.3 This update for bpftrace fixes the following issue: - rebuilt against the latest binutils version update. bpftrace-0.11.4-3.4.2.src.rpm bpftrace-0.11.4-3.4.2.x86_64.rpm bpftrace-tools-0.11.4-3.4.2.noarch.rpm bpftrace-0.11.4-3.4.2.s390x.rpm bpftrace-0.11.4-3.4.2.ppc64le.rpm bpftrace-0.11.4-3.4.2.aarch64.rpm openSUSE-SLE-15.3-2021-3809 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Add timestamp to D-Bus events to improve traceability (jsc#SLE-21862, jsc#SLE-18102, jsc#SLE-18103) - Fix IO scheduler udev rules to address performance issues (jsc#SLE-21032, bsc#1192161) - shutdown: Reduce log level of unmounts (bsc#1191252) - pid1: make use of new "prohibit_ipc" logging flag in PID 1 (bsc#1189803) - core: rework how we connect to the bus (bsc#1190325) - mount-util: fix fd_is_mount_point() when both the parent and directory are network fs (bsc#1190984) - virt: detect Amazon EC2 Nitro instance (bsc#1190440) - Several fixes for umount - busctl: use usec granularity for the timestamp printed by the busctl monitor command - fix unitialized fields in MountPoint in dm_list_get() - shutdown: explicitly set a log target - mount-util: add mount_option_mangle() - dissect: automatically mark partitions read-only that have a read-only file system - build-sys: require proper libmount version - systemd-shutdown: use log_set_prohibit_ipc(true) - rationalize interface for opening/closing logging - pid1: when we can't log to journal, remember our fallback log target - log: remove LOG_TARGET_SAFE pseudo log target - log: add brief comment for log_set_open_when_needed() and log_set_always_reopen_console() - log: add new "prohibit_ipc" flag to logging system - log: make log_set_upgrade_syslog_to_journal() take effect immediately - dbus: split up bus_done() into seperate functions - machine-id-setup: generate machine-id from DMI product ID on Amazon EC2 - virt: if we detect Xen by DMI, trust that over CPUID systemd-234-24.99.1.src.rpm systemd-bash-completion-234-24.99.1.noarch.rpm openSUSE-SLE-15.3-2021-3957 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-packager fixes the following issues: - When editing a repository display the repository alias as a fallback if the repository name is not set, do not display empty name (bsc#1184935) - Fix the tooltip in the control center is properly translated (bsc#1187270) - Use consistent names for the Full medium repositories (bsc#1191652) yast2-packager-4.3.25-3.8.1.src.rpm yast2-packager-4.3.25-3.8.1.x86_64.rpm yast2-packager-4.3.25-3.8.1.s390x.rpm yast2-packager-4.3.25-3.8.1.ppc64le.rpm yast2-packager-4.3.25-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3802 important SUSE Updates openSUSE-SLE 15.3 This update for dolly fixes the following issues: - Fix hostname resolution is not done in case of usage of an external configuration file. (bsc#1191613) dolly-0.63.1-3.3.1.src.rpm dolly-0.63.1-3.3.1.x86_64.rpm dolly-0.63.1-3.3.1.s390x.rpm dolly-0.63.1-3.3.1.ppc64le.rpm dolly-0.63.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3772 important SUSE Updates openSUSE-SLE 15.3 This update for redis fixes the following issues: - CVE-2021-32627: Fixed integer to heap buffer overflows with streams (bsc#1191305). - CVE-2021-32628: Fixed integer to heap buffer overflows handling ziplist-encoded data types (bsc#1191305). - CVE-2021-32687: Fixed integer to heap buffer overflow with intsets (bsc#1191302). - CVE-2021-32762: Fixed integer to heap buffer overflow issue in redis-cli and redis-sentinel (bsc#1191300). - CVE-2021-32626: Fixed heap buffer overflow caused by specially crafted Lua scripts (bsc#1191306). - CVE-2021-32672: Fixed random heap reading issue with Lua Debugger (bsc#1191304). - CVE-2021-32675: Fixed Denial Of Service when processing RESP request payloads with a large number of elements on many connections (bsc#1191303). - CVE-2021-41099: Fixed integer to heap buffer overflow handling certain string commands and network payloads (bsc#1191299). redis-6.0.14-6.8.1.src.rpm redis-6.0.14-6.8.1.x86_64.rpm redis-6.0.14-6.8.1.s390x.rpm redis-6.0.14-6.8.1.ppc64le.rpm redis-6.0.14-6.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3823 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-registration fixes the following issues: - Report properly that no product is selected in autoinstallation (bsc#1188211) - Fixed evaluating the update repositories: (bsc#1188717) The SUSE Manager update repositories were not disabled when installing the system without updates. yast2-registration-4.3.25-3.9.1.noarch.rpm yast2-registration-4.3.25-3.9.1.src.rpm openSUSE-SLE-15.3-2021-4062 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-python-bindings fixes the following issues: - Fix backtrace formatting for Python exceptions (bsc#1181595). yast2-python-bindings-4.2.0-3.3.1.src.rpm yast2-python-bindings-4.2.0-3.3.1.x86_64.rpm yast2-python3-bindings-4.2.0-3.3.1.x86_64.rpm yast2-python-bindings-4.2.0-3.3.1.s390x.rpm yast2-python3-bindings-4.2.0-3.3.1.s390x.rpm yast2-python-bindings-4.2.0-3.3.1.ppc64le.rpm yast2-python3-bindings-4.2.0-3.3.1.ppc64le.rpm yast2-python-bindings-4.2.0-3.3.1.aarch64.rpm yast2-python3-bindings-4.2.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3824 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - Set the volume group extent size according to the AutoYaST profile (bsc#1192124). yast2-storage-ng-4.3.57-3.15.1.src.rpm yast2-storage-ng-4.3.57-3.15.1.x86_64.rpm yast2-storage-ng-4.3.57-3.15.1.s390x.rpm yast2-storage-ng-4.3.57-3.15.1.ppc64le.rpm yast2-storage-ng-4.3.57-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-3835 moderate SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.5.13: - CVE-2021-35604: Fixed InnoDB vulnerability that allowed an high privileged attacker with network access via multiple protocols to compromise MySQL (bsc#1192497). libmariadbd-devel-10.5.13-3.12.1.x86_64.rpm libmariadbd19-10.5.13-3.12.1.x86_64.rpm mariadb-10.5.13-3.12.1.src.rpm mariadb-10.5.13-3.12.1.x86_64.rpm mariadb-bench-10.5.13-3.12.1.x86_64.rpm mariadb-client-10.5.13-3.12.1.x86_64.rpm mariadb-errormessages-10.5.13-3.12.1.noarch.rpm mariadb-rpm-macros-10.5.13-3.12.1.x86_64.rpm mariadb-test-10.5.13-3.12.1.x86_64.rpm mariadb-tools-10.5.13-3.12.1.x86_64.rpm libmariadbd-devel-10.5.13-3.12.1.s390x.rpm libmariadbd19-10.5.13-3.12.1.s390x.rpm mariadb-10.5.13-3.12.1.s390x.rpm mariadb-bench-10.5.13-3.12.1.s390x.rpm mariadb-client-10.5.13-3.12.1.s390x.rpm mariadb-rpm-macros-10.5.13-3.12.1.s390x.rpm mariadb-test-10.5.13-3.12.1.s390x.rpm mariadb-tools-10.5.13-3.12.1.s390x.rpm libmariadbd-devel-10.5.13-3.12.1.ppc64le.rpm libmariadbd19-10.5.13-3.12.1.ppc64le.rpm mariadb-10.5.13-3.12.1.ppc64le.rpm mariadb-bench-10.5.13-3.12.1.ppc64le.rpm mariadb-client-10.5.13-3.12.1.ppc64le.rpm mariadb-rpm-macros-10.5.13-3.12.1.ppc64le.rpm mariadb-test-10.5.13-3.12.1.ppc64le.rpm mariadb-tools-10.5.13-3.12.1.ppc64le.rpm libmariadbd-devel-10.5.13-3.12.1.aarch64.rpm libmariadbd19-10.5.13-3.12.1.aarch64.rpm mariadb-10.5.13-3.12.1.aarch64.rpm mariadb-bench-10.5.13-3.12.1.aarch64.rpm mariadb-client-10.5.13-3.12.1.aarch64.rpm mariadb-rpm-macros-10.5.13-3.12.1.aarch64.rpm mariadb-test-10.5.13-3.12.1.aarch64.rpm mariadb-tools-10.5.13-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-3675 important SUSE Updates openSUSE-SLE 15.3 The following security bugs were fixed: - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2021-3655: Fixed a missing size validations on inbound SCTP packets, which may have allowed the kernel to read uninitialized memory (bsc#1188563). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067). - CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351). - CVE-2021-3896: Fixed a array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (bsc#1191958). - CVE-2021-33033: Fixed a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled (bsc#1186109). - CVE-2021-34866: Fixed eBPF Type Confusion Privilege Escalation Vulnerability (bsc#1191645). - CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601). - CVE-2021-41864: Fixed prealloc_elems_and_freelist that allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: Fixed a slab out-of-bounds write in the decode_data function in drivers/net/hamradio/6pack.c. Input from a process that had the CAP_NET_ADMIN capability could have lead to root access (bsc#1191315). - CVE-2021-42252: Fixed an issue inside aspeed_lpc_ctrl_mmap that could have allowed local attackers to access the Aspeed LPC control interface to overwrite memory in the kernel and potentially execute privileges (bnc#1190479). - CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673). - CVE-2021-43056: Fixed possible KVM host crash via malicious KVM guest on Power8 (bnc#1192107). - CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958). The following non-security bugs were fixed: - acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes). - ACPI: bgrt: Fix CFI violation (git-fixes). - ACPI: fix NULL pointer dereference (git-fixes). - ACPI: NFIT: Use fallback node id when numa info in NFIT table is incorrect (git-fixes). - Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731). - ALSA: hda: avoid write to STATESTS if controller is in reset (git-fixes). - ALSA: hda - Enable headphone mic on Dell Latitude laptops with ALC3254 (git-fixes). - ALSA: hda: intel: Allow repeatedly probing on codec configuration errors (bsc#1190801). - ALSA: hda/realtek: Add quirk for Clevo PC50HS (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo X170KM-G (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek - ALC236 headset MIC recording issue (git-fixes). - ALSA: hda/realtek: Complete partial device name to avoid ambiguity (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell Precision 5560 laptop (git-fixes). - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo 13s Gen2 (git-fixes). - ALSA: hda/realtek: Fix mic mute LED for the HP Spectre x360 14 (git-fixes). - ALSA: hda/realtek: Fix the mic type detection issue for ASUS G551JW (git-fixes). - ALSA: hda/realtek: Quirks to enable speaker output for Lenovo Legion 7i 15IMHG05, Yoga 7i 14ITL5/15ITL5, and 13s Gen2 laptops (git-fixes). - ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes). - ALSA: hda: Use position buffer for SKL+ again (git-fixes). - ALSA: pcm: Workaround for a wrong offset in SYNC_PTR compat ioctl (git-fixes). - ALSA: seq: Fix a potential UAF by wrong private_free call order (git-fixes). - ALSA: ua101: fix division by zero at probe (git-fixes). - ALSA: uapi: Fix a C++ style comment in asound.h (git-fixes). - ALSA: usb-audio: Add quirk for VF0770 (git-fixes). - ALSA: usb-audio: Provide quirk for Sennheiser GSP670 Headset (git-fixes). - ASoC: atmel: ATMEL drivers do not need HAS_DMA (git-fixes). - ASoC: cs42l42: Correct some register default values (git-fixes). - ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes). - ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes). - ASoC: DAPM: Fix missing kctl change notifications (git-fixes). - ASoC: dapm: use component prefix when checking widget names (git-fixes). - ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes). - ASoC: fsl_spdif: register platform component before registering cpu dai (git-fixes). - ASoC: Intel: bytcr_rt5640: Move "Platform Clock" routes to the maps for the matching in-/output (git-fixes). - ASoC: Intel: Skylake: Fix module configuration for KPB and MIXER (git-fixes). - ASoC: Intel: Skylake: Fix passing loadable flag for module (git-fixes). - ASoC: Intel: sof_sdw: tag SoundWire BEs as non-atomic (git-fixes). - ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes). - ASoC: rockchip: Use generic dmaengine code (git-fixes). - ASoC: SOF: imx: imx8: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: imx: imx8m: Bar index is only valid for IRAM and SRAM types (git-fixes). - ASoC: SOF: loader: release_firmware() on load failure to avoid batching (git-fixes). - ASoC: SOF: topology: do not power down primary core during topology removal (git-fixes). - ASoC: topology: Fix stub for snd_soc_tplg_component_remove() (git-fixes). - ASoC: wm8960: Fix clock configuration on slave mode (git-fixes). - ata: ahci_platform: fix null-ptr-deref in ahci_platform_enable_regulators() (git-fixes). - ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init() (git-fixes). - ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes). - ath10k: fix control-message timeout (git-fixes). - ath10k: fix division by zero in send path (git-fixes). - ath10k: fix max antenna gain unit (git-fixes). - ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes). - ath10k: sdio: Add missing BH locking around napi_schdule() (git-fixes). - ath6kl: fix control-message timeout (git-fixes). - ath6kl: fix division by zero in send path (git-fixes). - ath9k: Fix potential interrupt storm on queue reset (git-fixes). - audit: fix possible null-pointer dereference in audit_filter_rules (git-fixes). - b43: fix a lower bounds test (git-fixes). - b43legacy: fix a lower bounds test (git-fixes). - bfq: Remove merged request already in bfq_requests_merged() (bsc#1191456). - blk: Fix lock inversion between ioc lock and bfqd lock (bsc#1191456). - blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452). - block: bfq: fix bfq_set_next_ioprio_data() (bsc#1191451). - Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes). - Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes). - bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes). - bnxt_en: make bnxt_free_skbs() safe to call after bnxt_free_mem() (jsc#SLE-16649). - bpf: Add bpf_patch_call_args prototype to include/linux/bpf.h (git-fixes). - bpf: Fix a typo of reuseport map in bpf.h (git-fixes). - bpf: Fix OOB read when printing XDP link fdinfo (git-fixes). - bpf: Fix up bpf_skb_adjust_room helper's skb csum setting (git-fixes). - can: dev: can_restart: fix use after free bug (git-fixes). - can: peak_pci: peak_pci_remove(): fix UAF (git-fixes). - can: peak_usb: fix use after free bugs (git-fixes). - can: peak_usb: pcan_usb_fd_decode_status(): fix back to ERROR_ACTIVE state notification (git-fixes). - can: rcar_can: fix suspend/resume (git-fixes). - can: ti_hecc: ti_hecc_probe(): add missed clk_disable_unprepare() in error path (git-fixes). - can: xilinx_can: handle failure cases of pm_runtime_get_sync (git-fixes). - cb710: avoid NULL pointer subtraction (git-fixes). - ceph: fix handling of "meta" errors (bsc#1192041). - ceph: skip existing superblocks that are blocklisted or shut down when mounting (bsc#1192040). - cfg80211: correct bridge/4addr mode check (git-fixes). - cfg80211: fix management registrations locking (git-fixes). - cfg80211: scan: fix RCU in cfg80211_add_nontrans_list() (git-fixes). - Configure mpi3mr as currently unsupported (jsc#SLE-18120) - cpuidle: pseries: Mark pseries_idle_proble() as __init (jsc#SLE-13614 bsc#1176914 ltc#186394 git-fixes). - driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851). - drm/amd/display: Pass PCI deviceid into DC (git-fixes). - drm/amdgpu: correct initial cp_hqd_quantum for gfx9 (git-fixes). - drm/amdgpu/display: add quirk handling for stutter mode (git-fixes). - drm/amdgpu: fix gart.bo pin_count leak (git-fixes). - drm/amdgpu: fix warning for overflow check (git-fixes). - drm/amdgpu/gmc6: fix DMA mask from 44 to 40 bits (git-fixes). - drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read (git-fixes). - drm/i915: Fix syncmap memory leak (bsc#1152489) Backporting notes: * context changes in intel_timeline_fini() - drm/msm: Avoid potential overflow in timeout_to_jiffies() (git-fixes). - drm/msm/dsi: Fix an error code in msm_dsi_modeset_init() (git-fixes). - drm/msm/dsi: fix off by one in dsi_bus_clk_enable error handling (git-fixes). - drm/msm: Fix null pointer dereference on pointer edp (git-fixes). - drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes). - drm/msm: potential error pointer dereference in init() (git-fixes). - drm/msm: uninitialized variable in msm_gem_import() (git-fixes). - drm/nouveau: avoid a use-after-free when BO init fails (bsc#1152472) - drm/nouveau/debugfs: fix file release memory leak (git-fixes). - drm/nouveau/kms/nv50-: fix file release memory leak (git-fixes). - drm/nouveau/kms/tu102-: delay enabling cursor until after assign_windows (git-fixes). - drm/panel: olimex-lcd-olinuxino: select CRC32 (git-fixes). - drm/panfrost: Make sure MMU context lifetime is not bound to (bsc#1152472) - drm/sun4i: dw-hdmi: Fix HDMI PHY clock setup (git-fixes). - drm/sun4i: Fix macros in sun8i_csc.h (git-fixes). - drm/ttm: stop calling tt_swapin in vm_access (git-fixes). - drm/v3d: fix wait for TMU write combiner flush (git-fixes). - e1000e: Drop patch to avoid regressions until real fix is available (bsc#1191663). - e1000e: Fix packet loss on Tiger Lake and later (git-fixes). - e100: fix buffer overrun in e100_get_regs (git-fixes). - e100: fix length calculation in e100_get_regs_len (git-fixes). - e100: handle eeprom as little endian (git-fixes). - EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (bsc#1192288). - ext4: fix reserved space counter leakage (bsc#1191450). - ext4: report correct st_size for encrypted symlinks (bsc#1191449). - firmware/psci: fix application of sizeof to pointer (git-fixes). - fscrypt: add fscrypt_symlink_getattr() for computing st_size (bsc#1191449). - fs, mm: fix race in unlinking swapfile (bsc#1191455). - ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267). - genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489). - gpio: pca953x: Improve bias setting (git-fixes). - gve: Avoid freeing NULL pointer (git-fixes). - gve: Correct available tx qpl check (git-fixes). - gve: fix gve_get_stats() (git-fixes). - gve: Properly handle errors in gve_assign_qpl (bsc#1176940). - gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940). - HID: apple: Fix logical maximum and usage maximum of Magic Keyboard JIS (git-fixes). - HID: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes). - HID: u2fzero: ignore incomplete packets without data (git-fixes). - HID: usbhid: free raw_report buffers in usbhid_stop (git-fixes). - HID: wacom: Add new Intuos BT (CTL-4100WL/CTL-6100WL) device IDs (git-fixes). - hso: fix bailout in error case of probe (git-fixes). - hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes). - hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes). - hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes). - hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes). - i2c: acpi: fix resource leak in reconfiguration device addition (git-fixes). - i40e: Fix ATR queue selection (git-fixes). - i40e: fix endless loop under rtnl (git-fixes). - i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes). - iavf: fix double unlock of crit_lock (git-fixes). - ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes). - ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177). - ice: fix getting UDP tunnel entry (jsc#SLE-12878). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241). - iio: adc128s052: Fix the error handling path of 'adc128_probe()' (git-fixes). - iio: adc: aspeed: set driver data when adc probe (git-fixes). - iio: dac: ti-dac5571: fix an error code in probe() (git-fixes). - iio: light: opt3001: Fixed timeout error when 0 lux (git-fixes). - iio: mtk-auxadc: fix case IIO_CHAN_INFO_PROCESSED (git-fixes). - iio: ssp_sensors: add more range checking in ssp_parse_dataframe() (git-fixes). - iio: ssp_sensors: fix error code in ssp_print_mcu_debug() (git-fixes). - Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980). - Input: snvs_pwrkey - add clk handling (git-fixes). - Input: xpad - add support for another USB ID of Nacon GC-100 (git-fixes). - ionic: do not remove netdev->dev_addr when syncing uc list (bsc#1167773). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - isdn: cpai: check ctr->cnr to avoid array index out of bound (git-fixes). - isdn: mISDN: Fix sleeping function called from invalid context (git-fixes). - iwlwifi: mvm: fix some kerneldoc issues (git-fixes). - iwlwifi: pcie: add configuration of a Wi-Fi adapter on Dell XPS 15 (git-fixes). - ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes). - kabi: block: Fix kabi of blk_mq_sched_try_insert_merge() (bsc#1191456). - kABI: Fix kABI after 36950f2da1ea (bsc#1191851). - kABI workaround for cfg80211 mgmt_registration_lock changes (git-fixes). - kABI workaround for HD-audio probe retry changes (bsc#1190801). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167). - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167 bsc#1191240 ltc#194716). - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as well. Fixes: e98096d5cf85 ("rpm: Abolish scritplet templating (bsc#1189841).") - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229). - KVM: PPC: Book3S HV: Fix copy_tofrom_guest routines (jsc#SLE-12936 git-fixes). - KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs are live (bsc#1156395). - KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state (bsc#1156395). - KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729). - KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing registers (bsc#1156395). - KVM: PPC: Fix clearing never mapped TCEs in realmode (bsc#1156395). - KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak (bsc#1156395). - KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021). - KVM: s390: index kvm->arch.idle_mask by vcpu_idx (bsc#1133021). - KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021). - KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021). - lan78xx: select CRC32 (git-fixes). - libata: Add ATA_HORKAGE_NO_NCQ_ON_ATI for Samsung 860 and 870 SSD (git-fixes). - libertas: Fix possible memory leak in probe and disconnect (git-fixes). - libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes). - mac80211: check return value of rhashtable_init (git-fixes). - mac80211: Drop frames from invalid MAC address in ad-hoc mode (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: cx23885: Fix snd_card_free call on null card pointer (git-fixes). - media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes). - media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes). - media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes). - media: em28xx: add missing em28xx_close_extension (git-fixes). - media: em28xx: Do not use ops->suspend if it is NULL (git-fixes). - media: i2c: ths8200 needs V4L2_ASYNC (git-fixes). - media: ite-cir: IR receiver stop working after receive overflow (git-fixes). - media: mtk-vpu: Fix a resource leak in the error handling path of 'mtk_vpu_probe()' (git-fixes). - media: mxl111sf: change mutex_init() location (git-fixes). - media: radio-wl1273: Avoid card name truncation (git-fixes). - media: si470x: Avoid card name truncation (git-fixes). - media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes). - media: TDA1997x: handle short reads of hdmi info frame (git-fixes). - media: tm6000: Avoid card name truncation (git-fixes). - media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes). - media: v4l2-ioctl: S_CTRL output the right value (git-fixes). - mei: me: add Ice Lake-N device id (git-fixes). - memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes). - memstick: avoid out-of-range warning (git-fixes). - memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes). - mlx5: count all link events (git-fixes). - mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes). - mmc: dw_mmc: exynos: fix the finding clock sample value (git-fixes). - mmc: meson-gx: do not use memcpy_to/fromio for dram-access-quirk (git-fixes). - mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes). - mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes). - mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes). - mmc: vub300: fix control-message timeouts (git-fixes). - mt76: mt7615: fix endianness warning in mt7615_mac_write_txwi (git-fixes). - mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes). - mt76: mt7915: fix muar_idx in mt7915_mcu_alloc_sta_req() (git-fixes). - mt76: mt7915: fix possible infinite loop release semaphore (git-fixes). - mt76: mt7915: fix sta_rec_wtbl tag len (git-fixes). - mwifiex: fix division by zero in fw download path (git-fixes). - mwifiex: Send DELBA requests according to spec (git-fixes). - net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353). - net: batman-adv: fix error handling (git-fixes). - net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes). - net: can: ems_usb: fix use-after-free in ems_usb_disconnect() (git-fixes). - net: cdc_eem: fix tx fixup skb leak (git-fixes). - net: cdc_ncm: correct overhead in delayed_ndp_size (git-fixes). - netfilter: conntrack: collect all entries in one cycle (bsc#1173604). - netfilter: Drop fragmented ndisc packets assembled in netfilter (git-fixes). - netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value (bsc#1176447). - net: hns3: check queue id range before using (jsc#SLE-14777). - net: hns3: fix vf reset workqueue cannot exit (bsc#1154353). - net: hso: add failure handler for add_net_device (git-fixes). - net: hso: fix NULL-deref on disconnect regression (git-fixes). - net: hso: fix null-ptr-deref during tty device unregistration (git-fixes). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: lan78xx: fix division by zero in send path (git-fixes). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800). - net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes). - net/mlx4_en: Resolve bad operstate value (git-fixes). - net/mlx5e: IPSEC RX, enable checksum complete (jsc#SLE-15172). - net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes). - net/mlx5e: RX, Avoid possible data corruption when relaxed ordering and LRO combined (jsc#SLE-15172). - net/mlx5: E-Switch, Fix double allocation of acl flow counter (jsc#SLE-15172). - net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464). - net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes). - net/sched: ets: fix crash when flipping from 'strict' to 'quantum' (bsc#1176774). - net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() (git-fixes). - NFC: digital: fix possible memory leak in digital_in_send_sdd_req() (git-fixes). - NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() (git-fixes). - nfc: fix error handling of nfc_proto_register() (git-fixes). - nfc: port100: fix using -ERRNO as command type mask (git-fixes). - nfs: dir_cookie is a pointer to the cookie in older kernels, not the cookie itself. (bsc#1191628 bsc#1192549). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - nvme: add command id quirk for apple controllers (git-fixes). - nvme-fc: avoid race between time out and tear down (bsc#1185762). - nvme-fc: remove freeze/unfreeze around update_nr_hw_queues (bsc#1185762). - nvme-fc: update hardware queues before using them (bsc#1185762). - nvme-pci: Fix abort command id (git-fixes). - nvme-pci: fix error unwind in nvme_map_data (bsc#1191934). - nvme-pci: refactor nvme_unmap_data (bsc#1191934). - nvme-pci: set min_align_mask (bsc#1191851). - ocfs2: fix data corruption after conversion from inline format (bsc#1190795). - pata_legacy: fix a couple uninitialized variable bugs (git-fixes). - PCI: Fix pci_host_bridge struct device release/free handling (git-fixes). - phy: mdio: fix memory leak (git-fixes). - platform/mellanox: mlxreg-io: Fix argument base in kstrtou32() call (git-fixes). - platform/mellanox: mlxreg-io: Fix read access of n-bytes size attributes (git-fixes). - platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from run_smbios_call (git-fixes). - platform/x86: intel_scu_ipc: Fix busy loop expiry time (git-fixes). - platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes). - PM / devfreq: rk3399_dmc: Add missing of_node_put() (git-fixes). - PM / devfreq: rk3399_dmc: Disable devfreq-event device when fails (git-fixes). - PM / devfreq: rk3399_dmc: Fix kernel oops when rockchip,pmu is absent (git-fixes). - PM / devfreq: rk3399_dmc: Fix spelling typo (git-fixes). - PM / devfreq: rk3399_dmc: Remove unneeded semicolon (git-fixes). - PM: sleep: Do not let "syscore" devices runtime-suspend during system transitions (git-fixes). - powerpc/64s: Fix entry flush patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Fix stf mitigation patching w/strict RWX & hash (jsc#SLE-13847 git-fixes). - powerpc/64s: Remove irq mask workaround in accumulate_stolen_time() (jsc#SLE-9246 git-fixes). - powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729). - powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729). - powerpc/bpf: Use bctrl for making function calls (bsc#1065729). - powerpc: Do not dereference code as 'struct ppc_inst' (uprobe, code-patching, feature-fixups) (jsc#SLE-13847 git-fixes). - powerpc: Do not use 'struct ppc_inst' to reference instruction location (jsc#SLE-13847 git-fixes). - powerpc/lib/code-patching: Do not use struct 'ppc_inst' for runnable code in tests (jsc#SLE-13847 git-fixes). - powerpc/lib/code-patching: Make instr_is_branch_to_addr() static (jsc#SLE-13847 git-fixes). - powerpc/lib: Fix emulate_step() std test (bsc#1065729). - powerpc: Move arch_cpu_idle_dead() into smp.c (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/numa: Update cpu_cpu_map on CPU online/offline (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes). - powerpc/smp: Cache CPU to chip lookup (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Enable CACHE domain for shared processor (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fix a crash while booting kvm guest with nr_cpus=2 (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Fold cpu_die() into its only caller (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Set numa node before updating mask (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/smp: Update cpu_core_map on all PowerPc systems (jsc#SLE-13615 bsc#1180100 ltc#190257 git-fixes). - powerpc/uprobes: Validation for prefixed instruction (jsc#SLE-13847 git-fixes). - powerpc/xive: Discard disabled interrupts in get_irqchip_state() (bsc#1085030 git-fixes). - pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init (git-fixes). - ptp_pch: Load module automatically if ID matches (git-fixes). - ptp_pch: Restore dependency on PCI (git-fixes). - qed: Fix missing error code in qed_slowpath_start() (git-fixes). - qed: Handle management FW error (git-fixes). - qed: rdma - do not wait for resources under hw error recovery flow (git-fixes). - RDMA/cma: Do not change route.addr.src_addr.ss_family (bsc#1181147). - RDMA/cma: Fix listener leak in rdma_cma_listen_on_all() failure (bsc#1181147). - regmap: Fix possible double-free in regcache_rbtree_exit() (git-fixes). - regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes). - regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes). - rpm: fix kmp install path - rpm: use _rpmmacrodir (boo#1191384) - rsi: fix control-message timeout (git-fixes). - rsi: Fix module dev_oper_mode parameter description (git-fixes). - rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes). - rtl8187: fix control-message timeouts (git-fixes). - scsi: ibmvfc: Fix up duplicate response detection (bsc#1191867 ltc#194757). - scsi: iscsi: Fix deadlock on recovery path during GFP_IO reclaim (git-fixes). - scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145). - scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145). - scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145). - scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349). - scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine (bsc#1192145). - scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (bsc#1192145). - scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145). - scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145). - scsi: mpi3mr: Add bios_param SCSI host template hook (jsc#SLE-18120). - scsi: mpi3mr: Add change queue depth support (jsc#SLE-18120). - scsi: mpi3mr: Add EEDP DIF DIX support (jsc#SLE-18120). - scsi: mpi3mr: Add event handling debug prints (jsc#SLE-18120). - scsi: mpi3mr: Additional event handling (jsc#SLE-18120). - scsi: mpi3mr: Add mpi30 Rev-R headers and Kconfig (jsc#SLE-18120). - scsi: mpi3mr: Add support for device add/remove event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for DSN secure firmware check (jsc#SLE-18120). - scsi: mpi3mr: Add support for internal watchdog thread (jsc#SLE-18120). - scsi: mpi3mr: Add support for PCIe device event handling (jsc#SLE-18120). - scsi: mpi3mr: Add support for PM suspend and resume (jsc#SLE-18120). - scsi: mpi3mr: Add support for queue command processing (jsc#SLE-18120). - scsi: mpi3mr: Add support for recovering controller (jsc#SLE-18120). - scsi: mpi3mr: Add support for threaded ISR (jsc#SLE-18120). - scsi: mpi3mr: Add support for timestamp sync with firmware (jsc#SLE-18120). - scsi: mpi3mr: Allow certain commands during pci-remove hook (jsc#SLE-18120). - scsi: mpi3mr: Base driver code (jsc#SLE-18120). - scsi: mpi3mr: Complete support for soft reset (jsc#SLE-18120). - scsi: mpi3mr: Create operational request and reply queue pair (jsc#SLE-18120). - scsi: mpi3mr: Fix error handling in mpi3mr_setup_isr() (git-fixes). - scsi: mpi3mr: Fix missing unlock on error (git-fixes). - scsi: mpi3mr: Hardware workaround for UNMAP commands to NVMe drives (jsc#SLE-18120). - scsi: mpi3mr: Implement SCSI error handler hooks (jsc#SLE-18120). - scsi: mpi3mr: Print IOC info for debugging (jsc#SLE-18120). - scsi: mpi3mr: Print pending host I/Os for debugging (jsc#SLE-18120). - scsi: mpi3mr: Set up IRQs in resume path (jsc#SLE-18120). - scsi: mpi3mr: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (jsc#SLE-18120). - scsi: mpi3mr: Use the proper SCSI midlayer interfaces for PI (jsc#SLE-18120). - scsi: mpi3mr: Wait for pending I/O completions upon detection of VD I/O timeout (jsc#SLE-18120). - scsi: qla2xxx: Add debug print of 64G link speed (bsc#1190941). - scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941). - scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941). - scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941). - scsi: qla2xxx: Call process_response_queue() in Tx path (bsc#1190941). - scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941). - scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941). - scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941). - scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941). - scsi: qla2xxx: Do not call fc_block_scsi_eh() during bus reset (bsc#1190941). - scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941). - scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941). - scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941). - scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941). - scsi: qla2xxx: edif: Fix stale session (bsc#1190941). - scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941). - scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941). - scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941). - scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941). - scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941). - scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941). - scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941). - scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941). - scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941). - scsi: qla2xxx: Fix NVMe retry (bsc#1190941). - scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941). - scsi: qla2xxx: Fix port type info (bsc#1190941). - scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941). - scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941). - scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_device_reset() (bsc#1190941). - scsi: qla2xxx: Open-code qla2xxx_eh_target_reset() (bsc#1190941). - scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941). - scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941). - scsi: qla2xxx: Show OS name and version in FDMI-1 (bsc#1190941). - scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941). - scsi: qla2xxx: Sync queue idx with queue_pair_map idx (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941). - scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941). - scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190941). - scsi: target: Fix the pgr/alua_support_store functions (git-fixes). - sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351). - soc: qcom: mdt_loader: Drop PT_LOAD check on hash segment (git-fixes). - spi: spi-nxp-fspi: do not depend on a specific node name erratum workaround (git-fixes). - swiotlb: add a IO_TLB_SIZE define (bsc#1191851). - swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851). - swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851). - swiotlb: factor out an io_tlb_offset helper (bsc#1191851). - swiotlb: factor out a nr_slots helper (bsc#1191851). - swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851). - swiotlb: respect min_align_mask (bsc#1191851). - swiotlb: Split size parameter to map/unmap APIs (bsc#1191851). - tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes). - tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729). - Update patch reference for AMDGPU fix (bsc#1180749) - USB: cdc-acm: clean up probe error labels (git-fixes). - USB: cdc-acm: fix minor-number release (git-fixes). - usb: chipidea: ci_hdrc_imx: Also search for 'phys' phandle (git-fixes). - usb: hso: fix error handling code of hso_create_net_device (git-fixes). - usb: hso: remove the bailout parameter (git-fixes). - usb: musb: dsps: Fix the probe error path (git-fixes). - usbnet: fix error return code in usbnet_probe() (git-fixes). - usbnet: sanity check for maxpacket (git-fixes). - USB: serial: option: add prod. id for Quectel EG91 (git-fixes). - USB: serial: option: add Quectel EC200S-CN module support (git-fixes). - USB: serial: option: add Telit LE910Cx composition 0x1204 (git-fixes). - USB: serial: qcserial: add EM9191 QDL support (git-fixes). - USB: xhci: dbc: fix tty registration race (git-fixes). - video: fbdev: gbefb: Only instantiate device when built for IP32 (git-fixes). - virtio-gpu: fix possible memory allocation failure (git-fixes). - virtio: write back F_VERSION_1 before validate (git-fixes). - watchdog: orion: use 0 for unset heartbeat (git-fixes). - wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two's complement (git-fixes). - wcn36xx: add proper DMA memory barriers in rx path (git-fixes). - wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes). - x86/ioapic: Force affinity setup before startup (bsc#1152489). - x86/msi: Force affinity setup before startup (bsc#1152489). - x86/pat: Pass valid address to sanitize_phys() (bsc#1152489). - x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489). - x86/resctrl: Free the ctrlval arrays when domain_setup_mon_state() fails (bsc#1152489). - x86/sev: Return an error on a returned non-zero SW_EXITINFO1[31:0] (bsc#1178134). - xen: fix setting of max_pfn in shared_info (git-fixes). - xen: reset legacy rtc flag for PV domU (git-fixes). - xfs: do not allow log writes if the data device is readonly (bsc#1192229). - xfs: ensure that the inode uid/gid match values match the icdinode ones (bsc#1190006). - xfs: Fixed non-directory creation in SGID directories introduced by CVE-2018-13405 patch (bsc#1190006). - xfs: fix I_DONTCACHE (bsc#1192074). - xfs: fix log intent recovery ENOSPC shutdowns when inactivating inodes (bsc#1190642). - xfs: merge the projid fields in struct xfs_icdinode (bsc#1190006). - xfs: remove the icdinode di_uid/di_gid members (bsc#1190006). - xhci: Enable trust tx length quirk for Fresco FL11 USB controller (git-fixes). - xhci: Fix command ring pointer corruption while aborting a command (git-fixes). - xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes). cluster-md-kmp-default-5.3.18-59.34.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.34.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.34.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True kernel-debug-5.3.18-59.34.1.nosrc.rpm True kernel-debug-5.3.18-59.34.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.34.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.34.1.x86_64.rpm True kernel-default-5.3.18-59.34.1.nosrc.rpm True kernel-default-5.3.18-59.34.1.x86_64.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.src.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.34.1.18.21.1.x86_64.rpm True kernel-default-devel-5.3.18-59.34.1.x86_64.rpm True kernel-default-extra-5.3.18-59.34.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.34.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.34.1.x86_64.rpm True kernel-default-optional-5.3.18-59.34.1.x86_64.rpm True kernel-devel-5.3.18-59.34.1.noarch.rpm True kernel-docs-5.3.18-59.34.1.noarch.rpm True kernel-docs-5.3.18-59.34.1.nosrc.rpm True kernel-docs-html-5.3.18-59.34.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.34.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.34.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.34.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.34.1.x86_64.rpm True kernel-macros-5.3.18-59.34.1.noarch.rpm True kernel-obs-build-5.3.18-59.34.1.src.rpm True kernel-obs-build-5.3.18-59.34.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.34.1.src.rpm True kernel-obs-qa-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-5.3.18-59.34.1.nosrc.rpm True kernel-preempt-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.34.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.34.1.x86_64.rpm True kernel-source-5.3.18-59.34.1.noarch.rpm True kernel-source-5.3.18-59.34.1.src.rpm True kernel-source-vanilla-5.3.18-59.34.1.noarch.rpm True kernel-syms-5.3.18-59.34.1.src.rpm True kernel-syms-5.3.18-59.34.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.34.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.34.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.34.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.34.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.34.1.s390x.rpm True dlm-kmp-default-5.3.18-59.34.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.34.1.s390x.rpm True kernel-default-5.3.18-59.34.1.s390x.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.34.1.18.21.1.s390x.rpm True kernel-default-devel-5.3.18-59.34.1.s390x.rpm True kernel-default-extra-5.3.18-59.34.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.34.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.34.1.s390x.rpm True kernel-default-optional-5.3.18-59.34.1.s390x.rpm True kernel-obs-build-5.3.18-59.34.1.s390x.rpm True kernel-obs-qa-5.3.18-59.34.1.s390x.rpm True kernel-syms-5.3.18-59.34.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.34.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.34.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.34.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.34.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.34.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.34.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.34.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.34.1.ppc64le.rpm True kernel-debug-5.3.18-59.34.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-default-5.3.18-59.34.1.ppc64le.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.34.1.18.21.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.34.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.34.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.34.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.34.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.34.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.34.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.34.1.ppc64le.rpm True kernel-syms-5.3.18-59.34.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.34.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.34.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.34.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.34.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.34.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True dtb-aarch64-5.3.18-59.34.1.src.rpm True dtb-al-5.3.18-59.34.1.aarch64.rpm True dtb-allwinner-5.3.18-59.34.1.aarch64.rpm True dtb-altera-5.3.18-59.34.1.aarch64.rpm True dtb-amd-5.3.18-59.34.1.aarch64.rpm True dtb-amlogic-5.3.18-59.34.1.aarch64.rpm True dtb-apm-5.3.18-59.34.1.aarch64.rpm True dtb-arm-5.3.18-59.34.1.aarch64.rpm True dtb-broadcom-5.3.18-59.34.1.aarch64.rpm True dtb-cavium-5.3.18-59.34.1.aarch64.rpm True dtb-exynos-5.3.18-59.34.1.aarch64.rpm True dtb-freescale-5.3.18-59.34.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.34.1.aarch64.rpm True dtb-lg-5.3.18-59.34.1.aarch64.rpm True dtb-marvell-5.3.18-59.34.1.aarch64.rpm True dtb-mediatek-5.3.18-59.34.1.aarch64.rpm True dtb-nvidia-5.3.18-59.34.1.aarch64.rpm True dtb-qcom-5.3.18-59.34.1.aarch64.rpm True dtb-renesas-5.3.18-59.34.1.aarch64.rpm True dtb-rockchip-5.3.18-59.34.1.aarch64.rpm True dtb-socionext-5.3.18-59.34.1.aarch64.rpm True dtb-sprd-5.3.18-59.34.1.aarch64.rpm True dtb-xilinx-5.3.18-59.34.1.aarch64.rpm True dtb-zte-5.3.18-59.34.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.34.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-5.3.18-59.34.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.34.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.34.1.aarch64.rpm True kernel-default-5.3.18-59.34.1.aarch64.rpm True kernel-default-base-5.3.18-59.34.1.18.21.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.34.1.18.21.1.aarch64.rpm True kernel-default-devel-5.3.18-59.34.1.aarch64.rpm True kernel-default-extra-5.3.18-59.34.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.34.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.34.1.aarch64.rpm True kernel-default-optional-5.3.18-59.34.1.aarch64.rpm True kernel-obs-build-5.3.18-59.34.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.34.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.34.1.aarch64.rpm True kernel-syms-5.3.18-59.34.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.34.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.34.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.34.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.34.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.34.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3662 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: - Fix regression introduced by CVE-2020-25717 patches, winbindd does not start when 'allow trusted domains' is off; (bso#14899); ctdb-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm ctdb-pcp-pmda-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm ctdb-tests-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-binding0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-binding0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-samr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-samr0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc-samr0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libdcerpc0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-krb5pac-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-krb5pac0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-krb5pac0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-nbt-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-nbt0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-nbt0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-standard-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-standard0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr-standard0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr1-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libndr1-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libnetapi-devel-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libnetapi-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libnetapi0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libnetapi0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-credentials-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-credentials0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-credentials0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-errors-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-errors0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-errors0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-hostconfig-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-hostconfig0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-hostconfig0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-passdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-passdb0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-passdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-policy-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-policy-python3-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-policy0-python3-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-policy0-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-util0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamba-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamdb0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsamdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbclient0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbconf-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbconf0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbconf0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbldap-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbldap2-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libsmbldap2-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libtevent-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libtevent-util0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libtevent-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libwbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libwbclient0-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm libwbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.src.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-ad-dc-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-ad-dc-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-ceph-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-client-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-client-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-core-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-doc-4.13.13+git.531.903f5c0ccdc-3.17.1.noarch.rpm samba-dsdb-modules-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-gpupdate-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-ldb-ldap-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-libs-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-libs-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-libs-python3-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-libs-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-test-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-winbind-32bit-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm samba-winbind-4.13.13+git.531.903f5c0ccdc-3.17.1.x86_64.rpm ctdb-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm ctdb-pcp-pmda-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm ctdb-tests-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc-binding0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc-samr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc-samr0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libdcerpc0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-krb5pac-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-krb5pac0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-nbt-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-nbt0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-standard-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr-standard0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libndr1-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libnetapi-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libnetapi0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-credentials-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-credentials0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-errors-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-errors0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-hostconfig-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-hostconfig0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-passdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-passdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-policy-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-policy-python3-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-policy0-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamba-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsamdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbconf-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbconf0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbldap-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libsmbldap2-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libtevent-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libtevent-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libwbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm libwbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-ad-dc-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-client-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-core-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-dsdb-modules-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-gpupdate-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-ldb-ldap-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-libs-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-libs-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-test-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm samba-winbind-4.13.13+git.531.903f5c0ccdc-3.17.1.s390x.rpm ctdb-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm ctdb-pcp-pmda-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm ctdb-tests-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc-binding0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc-samr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc-samr0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libdcerpc0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-krb5pac-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-krb5pac0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-nbt-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-nbt0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-standard-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr-standard0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libndr1-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libnetapi-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libnetapi0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-credentials-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-credentials0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-errors-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-errors0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-hostconfig-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-hostconfig0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-passdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-passdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-policy-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-policy-python3-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-policy0-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamba-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsamdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbconf-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbconf0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbldap-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libsmbldap2-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libtevent-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libtevent-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libwbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm libwbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-ad-dc-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-client-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-core-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-dsdb-modules-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-gpupdate-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-ldb-ldap-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-libs-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-libs-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-test-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm samba-winbind-4.13.13+git.531.903f5c0ccdc-3.17.1.ppc64le.rpm ctdb-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm ctdb-pcp-pmda-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm ctdb-tests-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-binding0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-binding0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libdcerpc-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-samr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-samr0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc-samr0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libdcerpc0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libdcerpc0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libndr-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-krb5pac-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-krb5pac0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-krb5pac0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libndr-nbt-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-nbt0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-nbt0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libndr-standard-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-standard0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr-standard0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libndr1-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libndr1-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libnetapi-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libnetapi-devel-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libnetapi0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libnetapi0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-credentials-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-credentials0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-credentials0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-errors-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-errors0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-errors0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-hostconfig-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-hostconfig0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-hostconfig0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-passdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-passdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-passdb0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-policy-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-policy-python3-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-policy0-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-policy0-python3-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamba-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamba-util0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsamdb-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamdb0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsamdb0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsmbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbclient0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsmbconf-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbconf0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbconf0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libsmbldap-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbldap2-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libsmbldap2-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libtevent-util-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libtevent-util0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libtevent-util0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm libwbclient-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libwbclient0-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm libwbclient0-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-ad-dc-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-ad-dc-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-ceph-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-client-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-client-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-core-devel-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-dsdb-modules-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-gpupdate-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-ldb-ldap-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-libs-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-libs-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-libs-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-libs-python3-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm samba-python3-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-test-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-winbind-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64.rpm samba-winbind-64bit-4.13.13+git.531.903f5c0ccdc-3.17.1.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-3860 moderate SUSE Updates openSUSE-SLE 15.3 This update for speex fixes the following issues: - CVE-2020-23903: Fixed zero division error in read_samples (bsc#1192580). libspeex1-1.2-3.3.1.x86_64.rpm libspeex1-32bit-1.2-3.3.1.x86_64.rpm speex-1.2-3.3.1.src.rpm speex-1.2-3.3.1.x86_64.rpm speex-devel-1.2-3.3.1.x86_64.rpm libspeex1-1.2-3.3.1.s390x.rpm speex-1.2-3.3.1.s390x.rpm speex-devel-1.2-3.3.1.s390x.rpm libspeex1-1.2-3.3.1.ppc64le.rpm speex-1.2-3.3.1.ppc64le.rpm speex-devel-1.2-3.3.1.ppc64le.rpm libspeex1-1.2-3.3.1.aarch64.rpm speex-1.2-3.3.1.aarch64.rpm speex-devel-1.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3762 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql13 fixes the following issues: - CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). postgresql13-13.5-5.22.1.src.rpm postgresql13-13.5-5.22.1.x86_64.rpm postgresql13-contrib-13.5-5.22.1.x86_64.rpm postgresql13-devel-13.5-5.22.1.x86_64.rpm postgresql13-docs-13.5-5.22.1.noarch.rpm postgresql13-llvmjit-13.5-5.22.1.x86_64.rpm postgresql13-plperl-13.5-5.22.1.x86_64.rpm postgresql13-plpython-13.5-5.22.1.x86_64.rpm postgresql13-pltcl-13.5-5.22.1.x86_64.rpm postgresql13-server-13.5-5.22.1.x86_64.rpm postgresql13-server-devel-13.5-5.22.1.x86_64.rpm postgresql13-test-13.5-5.22.1.x86_64.rpm postgresql13-13.5-5.22.1.s390x.rpm postgresql13-contrib-13.5-5.22.1.s390x.rpm postgresql13-devel-13.5-5.22.1.s390x.rpm postgresql13-llvmjit-13.5-5.22.1.s390x.rpm postgresql13-plperl-13.5-5.22.1.s390x.rpm postgresql13-plpython-13.5-5.22.1.s390x.rpm postgresql13-pltcl-13.5-5.22.1.s390x.rpm postgresql13-server-13.5-5.22.1.s390x.rpm postgresql13-server-devel-13.5-5.22.1.s390x.rpm postgresql13-test-13.5-5.22.1.s390x.rpm postgresql13-13.5-5.22.1.ppc64le.rpm postgresql13-contrib-13.5-5.22.1.ppc64le.rpm postgresql13-devel-13.5-5.22.1.ppc64le.rpm postgresql13-llvmjit-13.5-5.22.1.ppc64le.rpm postgresql13-plperl-13.5-5.22.1.ppc64le.rpm postgresql13-plpython-13.5-5.22.1.ppc64le.rpm postgresql13-pltcl-13.5-5.22.1.ppc64le.rpm postgresql13-server-13.5-5.22.1.ppc64le.rpm postgresql13-server-devel-13.5-5.22.1.ppc64le.rpm postgresql13-test-13.5-5.22.1.ppc64le.rpm postgresql13-13.5-5.22.1.aarch64.rpm postgresql13-contrib-13.5-5.22.1.aarch64.rpm postgresql13-devel-13.5-5.22.1.aarch64.rpm postgresql13-llvmjit-13.5-5.22.1.aarch64.rpm postgresql13-plperl-13.5-5.22.1.aarch64.rpm postgresql13-plpython-13.5-5.22.1.aarch64.rpm postgresql13-pltcl-13.5-5.22.1.aarch64.rpm postgresql13-server-13.5-5.22.1.aarch64.rpm postgresql13-server-devel-13.5-5.22.1.aarch64.rpm postgresql13-test-13.5-5.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-3758 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql12 fixes the following issues: - CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). postgresql12-12.9-8.26.1.src.rpm postgresql12-12.9-8.26.1.x86_64.rpm postgresql12-contrib-12.9-8.26.1.x86_64.rpm postgresql12-devel-12.9-8.26.1.x86_64.rpm postgresql12-docs-12.9-8.26.1.noarch.rpm postgresql12-llvmjit-12.9-8.26.1.x86_64.rpm postgresql12-plperl-12.9-8.26.1.x86_64.rpm postgresql12-plpython-12.9-8.26.1.x86_64.rpm postgresql12-pltcl-12.9-8.26.1.x86_64.rpm postgresql12-server-12.9-8.26.1.x86_64.rpm postgresql12-server-devel-12.9-8.26.1.x86_64.rpm postgresql12-test-12.9-8.26.1.x86_64.rpm postgresql12-12.9-8.26.1.s390x.rpm postgresql12-contrib-12.9-8.26.1.s390x.rpm postgresql12-devel-12.9-8.26.1.s390x.rpm postgresql12-llvmjit-12.9-8.26.1.s390x.rpm postgresql12-plperl-12.9-8.26.1.s390x.rpm postgresql12-plpython-12.9-8.26.1.s390x.rpm postgresql12-pltcl-12.9-8.26.1.s390x.rpm postgresql12-server-12.9-8.26.1.s390x.rpm postgresql12-server-devel-12.9-8.26.1.s390x.rpm postgresql12-test-12.9-8.26.1.s390x.rpm postgresql12-12.9-8.26.1.ppc64le.rpm postgresql12-contrib-12.9-8.26.1.ppc64le.rpm postgresql12-devel-12.9-8.26.1.ppc64le.rpm postgresql12-llvmjit-12.9-8.26.1.ppc64le.rpm postgresql12-plperl-12.9-8.26.1.ppc64le.rpm postgresql12-plpython-12.9-8.26.1.ppc64le.rpm postgresql12-pltcl-12.9-8.26.1.ppc64le.rpm postgresql12-server-12.9-8.26.1.ppc64le.rpm postgresql12-server-devel-12.9-8.26.1.ppc64le.rpm postgresql12-test-12.9-8.26.1.ppc64le.rpm postgresql12-12.9-8.26.1.aarch64.rpm postgresql12-contrib-12.9-8.26.1.aarch64.rpm postgresql12-devel-12.9-8.26.1.aarch64.rpm postgresql12-llvmjit-12.9-8.26.1.aarch64.rpm postgresql12-plperl-12.9-8.26.1.aarch64.rpm postgresql12-plpython-12.9-8.26.1.aarch64.rpm postgresql12-pltcl-12.9-8.26.1.aarch64.rpm postgresql12-server-12.9-8.26.1.aarch64.rpm postgresql12-server-devel-12.9-8.26.1.aarch64.rpm postgresql12-test-12.9-8.26.1.aarch64.rpm openSUSE-SLE-15.3-2021-4058 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql10 fixes the following issues: - CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). postgresql10-10.19-8.41.1.src.rpm postgresql10-10.19-8.41.1.x86_64.rpm postgresql10-contrib-10.19-8.41.1.x86_64.rpm postgresql10-docs-10.19-8.41.1.noarch.rpm postgresql10-plperl-10.19-8.41.1.x86_64.rpm postgresql10-plpython-10.19-8.41.1.x86_64.rpm postgresql10-pltcl-10.19-8.41.1.x86_64.rpm postgresql10-server-10.19-8.41.1.x86_64.rpm postgresql10-test-10.19-8.41.1.x86_64.rpm postgresql10-10.19-8.41.1.s390x.rpm postgresql10-contrib-10.19-8.41.1.s390x.rpm postgresql10-plperl-10.19-8.41.1.s390x.rpm postgresql10-plpython-10.19-8.41.1.s390x.rpm postgresql10-pltcl-10.19-8.41.1.s390x.rpm postgresql10-server-10.19-8.41.1.s390x.rpm postgresql10-test-10.19-8.41.1.s390x.rpm postgresql10-10.19-8.41.1.ppc64le.rpm postgresql10-contrib-10.19-8.41.1.ppc64le.rpm postgresql10-plperl-10.19-8.41.1.ppc64le.rpm postgresql10-plpython-10.19-8.41.1.ppc64le.rpm postgresql10-pltcl-10.19-8.41.1.ppc64le.rpm postgresql10-server-10.19-8.41.1.ppc64le.rpm postgresql10-test-10.19-8.41.1.ppc64le.rpm postgresql10-10.19-8.41.1.aarch64.rpm postgresql10-contrib-10.19-8.41.1.aarch64.rpm postgresql10-plperl-10.19-8.41.1.aarch64.rpm postgresql10-plpython-10.19-8.41.1.aarch64.rpm postgresql10-pltcl-10.19-8.41.1.aarch64.rpm postgresql10-server-10.19-8.41.1.aarch64.rpm postgresql10-test-10.19-8.41.1.aarch64.rpm openSUSE-SLE-15.3-2021-3759 important SUSE Updates openSUSE-SLE 15.3 This update for postgresql14 fixes the following issues: - CVE-2021-23214: Make the server reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - CVE-2021-23222: Make libpq reject extraneous data after an SSL or GSS encryption handshake (bsc#1192516). - Let rpmlint ignore shlib-policy-name-error (boo#1191782). libecpg6-14.1-5.6.1.x86_64.rpm libecpg6-32bit-14.1-5.6.1.x86_64.rpm libpq5-14.1-5.6.1.x86_64.rpm libpq5-32bit-14.1-5.6.1.x86_64.rpm postgresql14-14.1-5.6.1.src.rpm postgresql14-14.1-5.6.1.x86_64.rpm postgresql14-contrib-14.1-5.6.1.x86_64.rpm postgresql14-devel-14.1-5.6.1.x86_64.rpm postgresql14-devel-mini-14.1-5.6.1.x86_64.rpm postgresql14-docs-14.1-5.6.1.noarch.rpm postgresql14-llvmjit-14.1-5.6.1.x86_64.rpm postgresql14-plperl-14.1-5.6.1.x86_64.rpm postgresql14-plpython-14.1-5.6.1.x86_64.rpm postgresql14-pltcl-14.1-5.6.1.x86_64.rpm postgresql14-server-14.1-5.6.1.x86_64.rpm postgresql14-server-devel-14.1-5.6.1.x86_64.rpm postgresql14-test-14.1-5.6.1.x86_64.rpm libecpg6-14.1-5.6.1.s390x.rpm libpq5-14.1-5.6.1.s390x.rpm postgresql14-14.1-5.6.1.s390x.rpm postgresql14-contrib-14.1-5.6.1.s390x.rpm postgresql14-devel-14.1-5.6.1.s390x.rpm postgresql14-devel-mini-14.1-5.6.1.s390x.rpm postgresql14-llvmjit-14.1-5.6.1.s390x.rpm postgresql14-plperl-14.1-5.6.1.s390x.rpm postgresql14-plpython-14.1-5.6.1.s390x.rpm postgresql14-pltcl-14.1-5.6.1.s390x.rpm postgresql14-server-14.1-5.6.1.s390x.rpm postgresql14-server-devel-14.1-5.6.1.s390x.rpm postgresql14-test-14.1-5.6.1.s390x.rpm libecpg6-14.1-5.6.1.ppc64le.rpm libpq5-14.1-5.6.1.ppc64le.rpm postgresql14-14.1-5.6.1.ppc64le.rpm postgresql14-contrib-14.1-5.6.1.ppc64le.rpm postgresql14-devel-14.1-5.6.1.ppc64le.rpm postgresql14-devel-mini-14.1-5.6.1.ppc64le.rpm postgresql14-llvmjit-14.1-5.6.1.ppc64le.rpm postgresql14-plperl-14.1-5.6.1.ppc64le.rpm postgresql14-plpython-14.1-5.6.1.ppc64le.rpm postgresql14-pltcl-14.1-5.6.1.ppc64le.rpm postgresql14-server-14.1-5.6.1.ppc64le.rpm postgresql14-server-devel-14.1-5.6.1.ppc64le.rpm postgresql14-test-14.1-5.6.1.ppc64le.rpm libecpg6-14.1-5.6.1.aarch64.rpm libpq5-14.1-5.6.1.aarch64.rpm postgresql14-14.1-5.6.1.aarch64.rpm postgresql14-contrib-14.1-5.6.1.aarch64.rpm postgresql14-devel-14.1-5.6.1.aarch64.rpm postgresql14-devel-mini-14.1-5.6.1.aarch64.rpm postgresql14-llvmjit-14.1-5.6.1.aarch64.rpm postgresql14-plperl-14.1-5.6.1.aarch64.rpm postgresql14-plpython-14.1-5.6.1.aarch64.rpm postgresql14-pltcl-14.1-5.6.1.aarch64.rpm postgresql14-server-14.1-5.6.1.aarch64.rpm postgresql14-server-devel-14.1-5.6.1.aarch64.rpm postgresql14-test-14.1-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3844 moderate SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - CVE-2021-3941: Fixed divide-by-zero in Imf_3_1:RGBtoXYZ (bsc#1192556). - CVE-2021-3933: Fixed integer-overflow in Imf_3_1:bytesPerDeepLineTable (bsc#1192498). libIlmImf-2_2-23-2.2.1-3.38.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.38.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.38.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.38.1.x86_64.rpm openexr-2.2.1-3.38.1.src.rpm openexr-2.2.1-3.38.1.x86_64.rpm openexr-devel-2.2.1-3.38.1.x86_64.rpm openexr-doc-2.2.1-3.38.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.38.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.38.1.s390x.rpm openexr-2.2.1-3.38.1.s390x.rpm openexr-devel-2.2.1-3.38.1.s390x.rpm openexr-doc-2.2.1-3.38.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.38.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.38.1.ppc64le.rpm openexr-2.2.1-3.38.1.ppc64le.rpm openexr-devel-2.2.1-3.38.1.ppc64le.rpm openexr-doc-2.2.1-3.38.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.38.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.38.1.aarch64.rpm openexr-2.2.1-3.38.1.aarch64.rpm openexr-devel-2.2.1-3.38.1.aarch64.rpm openexr-doc-2.2.1-3.38.1.aarch64.rpm openSUSE-SLE-15.3-2021-3871 moderate SUSE Updates openSUSE-SLE 15.3 This update for xorg-cf-files fixes the following issues: - Resolves compatibility issue between binutils and imake (bsc#1192589) xorg-cf-files-1.0.6-3.3.1.noarch.rpm xorg-cf-files-1.0.6-3.3.1.src.rpm openSUSE-SLE-15.3-2021-3872 moderate SUSE Updates openSUSE-SLE 15.3 This update for cracklib fixes the following issues: - Enable build time tests (bsc#1191736) cracklib-2.9.7-11.6.1.src.rpm cracklib-2.9.7-11.6.1.x86_64.rpm cracklib-devel-2.9.7-11.6.1.x86_64.rpm cracklib-devel-32bit-2.9.7-11.6.1.x86_64.rpm cracklib-dict-small-2.9.7-11.6.1.x86_64.rpm libcrack2-2.9.7-11.6.1.x86_64.rpm libcrack2-32bit-2.9.7-11.6.1.x86_64.rpm cracklib-2.9.7-11.6.1.s390x.rpm cracklib-devel-2.9.7-11.6.1.s390x.rpm cracklib-dict-small-2.9.7-11.6.1.s390x.rpm libcrack2-2.9.7-11.6.1.s390x.rpm cracklib-2.9.7-11.6.1.ppc64le.rpm cracklib-devel-2.9.7-11.6.1.ppc64le.rpm cracklib-dict-small-2.9.7-11.6.1.ppc64le.rpm libcrack2-2.9.7-11.6.1.ppc64le.rpm cracklib-2.9.7-11.6.1.aarch64.rpm cracklib-devel-2.9.7-11.6.1.aarch64.rpm cracklib-dict-small-2.9.7-11.6.1.aarch64.rpm libcrack2-2.9.7-11.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3857 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-sqlparse fixes the following issues: - CVE-2021-32839: Fixed ReDoS via regular expression in StripComments filter (bsc#1190741). python-sqlparse-0.4.2-3.3.1.src.rpm python3-sqlparse-0.4.2-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3870 moderate SUSE Updates openSUSE-SLE 15.3 This update for libzypp, zypper fixes the following issues: libzypp: - Check log writer before accessing it (bsc#1192337) - Zypper should keep cached files if transaction is aborted (bsc#1190356) - Require a minimum number of mirrors for multicurl (bsc#1191609) - Fixed slowdowns when rlimit is too high by using procfs to detect niumber of open file descriptors (bsc#1191324) - Fixed zypper incomplete messages when using non English localization (bsc#1191370) - RepoManager: Don't probe for plaindir repository if the URL schema is a plugin (bsc#1191286) - Disable logger in the child process after fork (bsc#1192436) zypper: - Fixed Zypper removing a kernel explicitely pinned that uses uname -r output format as name (openSUSE/zypper#418) libzypp-17.28.8-20.1.src.rpm True libzypp-17.28.8-20.1.x86_64.rpm True libzypp-devel-17.28.8-20.1.x86_64.rpm True libzypp-devel-doc-17.28.8-20.1.x86_64.rpm True zypper-1.14.50-21.1.src.rpm True zypper-1.14.50-21.1.x86_64.rpm True zypper-aptitude-1.14.50-21.1.noarch.rpm True zypper-log-1.14.50-21.1.noarch.rpm True zypper-needs-restarting-1.14.50-21.1.noarch.rpm True libzypp-17.28.8-20.1.s390x.rpm True libzypp-devel-17.28.8-20.1.s390x.rpm True libzypp-devel-doc-17.28.8-20.1.s390x.rpm True zypper-1.14.50-21.1.s390x.rpm True libzypp-17.28.8-20.1.ppc64le.rpm True libzypp-devel-17.28.8-20.1.ppc64le.rpm True libzypp-devel-doc-17.28.8-20.1.ppc64le.rpm True zypper-1.14.50-21.1.ppc64le.rpm True libzypp-17.28.8-20.1.aarch64.rpm True libzypp-devel-17.28.8-20.1.aarch64.rpm True libzypp-devel-doc-17.28.8-20.1.aarch64.rpm True zypper-1.14.50-21.1.aarch64.rpm True openSUSE-SLE-15.3-2022-122 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for zxing-cpp fixes the following issues: Update LibreOffice from version 7.1.4.2 to 7.2.3.2 (jsc#SLE-18214): - Fix UI scaling on HIDPI Wayland/KDE screens - Fix gtk popover usage on gtk 3.20 for SUSE Linux Enterprise 12 - Fix inteaction between multi-column shape text and automatic height. (bsc#1187982) - Fix interaction of transparent cell fill and transparent shadow. (bsc#1189813) - Use external `poppler` version 21.01.0 (jsc#SLE-18214) - Use external `CMIS` version 0.5.2 - Update external `boost` to version 1.75.0 - Update external `pdfium` to version 4500 - Update external `skia` to version `m90` - Do not use `qrcodegen-devel` but move to `zxing-cpp` (jsc#SLE-18214) - Keep upstream desktop file names (bsc#1183655) - Display math icon (bsc#1180479) - Source `profile.d/alljava.sh` from either `/etc` (if found) or `/usr/etc`. Provide `zxing-cpp` 1.2.0 as new LibreOffice dependency. (jsc#SLE-18214) - Do not build examples to avoid a cycle with `QT5Multimedia` - Use `cmake3-full` package instead of `cmake` on SUSE Linux Enterprise 12 - Do not build examples on SUSE Linux Enterprise 12 - Only build blackbox tests on openSUSE Tumbleweed - New `BarcodeFormat` - New ZXingQtCamReader demo app based on `QtMultimedia` and `QtQuick` - New QRCode reader, faster and better support for rotated symbols - Add `Structured Append` support for `DataMatrix`, `Aztec` and `MaxiCode` - Add `DMRE` support for `DataMatrix` - Switch to the reimplemented 1D detectors, about 5x faster - Faster and more capable `isPure` detection for all 2D codes - 20% faster `ReedSolomon` error correction. - `ReedSolomon` error detection code 2x speedup. - PDF417 is faster and supports flipped symbols - Reduced false positive rate for `UPC/EAN` barcodes and improved Add-On symbol handling - Fix country-code metadata decoding for UPC/EAN codes. - Proper ECI handling in all 2D barcodes - Add baselibs.conf - Many performance improvements for 1D readers - More meta-data exported when reading specific format - Improve DataMatrix encoder - Add interface to simplify basic usage - WASM API to support pixels array as input - `LuminanceSource` based API is now deprecated but still compiles. - New BarcodeFormats flag type to specify the set of barcodes to look for. - New simplified and consistent Python API - Slightly improved QRCode detection for rotated symbols. libZXing1-1.2.0-9.4.1.x86_64.rpm zxing-cpp-1.2.0-9.4.1.src.rpm zxing-cpp-devel-1.2.0-9.4.1.x86_64.rpm libZXing1-1.2.0-9.4.1.s390x.rpm zxing-cpp-devel-1.2.0-9.4.1.s390x.rpm libZXing1-1.2.0-9.4.1.ppc64le.rpm zxing-cpp-devel-1.2.0-9.4.1.ppc64le.rpm libZXing1-1.2.0-9.4.1.aarch64.rpm zxing-cpp-devel-1.2.0-9.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3801 important SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update to version 9.3.0 - Support AHB-v3 - Support registration of BYOS instances against the update infrastructure - Properly extract the region for local zones in AWS to ensure instances get connected to the proper update servers - Azure addon service and executable rename - Support non SLE repos - Fix handling of regionservers configured with DNS names This update for regionServiceClientConfigEC2 fixes the following issues: - Update to version 3.1.0 (bsc#1029162) - Add IPv6 addresses to config - Include IPv6 certificates cloud-regionsrv-client-9.3.0-6.54.1.noarch.rpm cloud-regionsrv-client-9.3.0-6.54.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.54.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.54.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-6.54.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.54.1.noarch.rpm regionServiceClientConfigEC2-3.1.0-3.18.1.noarch.rpm regionServiceClientConfigEC2-3.1.0-3.18.1.src.rpm openSUSE-SLE-15.3-2021-3818 moderate SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fix reading /sys/kernel/mm/page_idle/bitmap could cause hang up on reading offline pages (bsc#1192599) libekmfweb1-2.15.1-8.8.1.s390x.rpm libekmfweb1-devel-2.15.1-8.8.1.s390x.rpm osasnmpd-2.15.1-8.8.1.s390x.rpm s390-tools-2.15.1-8.8.1.s390x.rpm s390-tools-2.15.1-8.8.1.src.rpm s390-tools-hmcdrvfs-2.15.1-8.8.1.s390x.rpm s390-tools-zdsfs-2.15.1-8.8.1.s390x.rpm openSUSE-SLE-15.3-2021-4198 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for ssh-import-id provides the following feature: - Support importing public ssh keys from GitHub (jsc#SLE-20868, bsc#1154502) ssh-import-id-5.11-5.5.1.noarch.rpm ssh-import-id-5.11-5.5.1.src.rpm openSUSE-SLE-15.3-2021-3925 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: prometheus-blackbox_exporter: - Provide 'prometheus-blackbox_exporter' version 0.19.0 (jsc#SLE-22351) - Use '%set_permissions' and '%verify_permissions' for SUSE Linux Enterprise 12 (bsc#1191194) - Set 'CAP_NET_RAW' capability to allow ICMP requests grafana: - Add URL to package source code in the login page footer spacecmd: - Update translation strings spacewalk-client-tools: - Update translation strings zypp-plugin-spacewalk: - Use proxy configured in 'up2date' config when it is defined - Added RHEL8 build. spacecmd-4.2.14-3.71.1.noarch.rpm spacecmd-4.2.14-3.71.1.src.rpm openSUSE-SLE-15.3-2021-3786 important SUSE Updates openSUSE-SLE 15.3 This update for rpm-config-SUSE fixes the following issues: - Add support for the kernel xz-compressed firmware files (bsc#1192160) rpm-config-SUSE-1-5.6.1.noarch.rpm rpm-config-SUSE-1-5.6.1.src.rpm openSUSE-SLE-15.3-2021-3922 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Use 'dnfnotify' instead 'yumnotify' for relevant distributions - Remove 'wrong _parse_cpe_name' from 'grains.core' - dnfnotify pkgset plugin implementation - Add 'rpm_vercmp' python library support for version comparison - Prevent pkg plugins errors on missing cookie path (bsc#1186738) - Fix 'ip6_interface' grain to not leak secondary IPv4 aliases (bsc#1191412) - Make "salt-api" package to require 'python3-cherrypy' on RHEL systems - 'tar' is required by minion on 'transactional-update' system - Do not consider skipped targets as failed for 'ansible.playbooks' state (bsc#1190446) - Fix 'traceback.*_exc()' calls python3-salt-3002.2-53.4.1.x86_64.rpm True salt-3002.2-53.4.1.src.rpm True salt-3002.2-53.4.1.x86_64.rpm True salt-api-3002.2-53.4.1.x86_64.rpm True salt-bash-completion-3002.2-53.4.1.noarch.rpm True salt-cloud-3002.2-53.4.1.x86_64.rpm True salt-doc-3002.2-53.4.1.x86_64.rpm True salt-fish-completion-3002.2-53.4.1.noarch.rpm True salt-master-3002.2-53.4.1.x86_64.rpm True salt-minion-3002.2-53.4.1.x86_64.rpm True salt-proxy-3002.2-53.4.1.x86_64.rpm True salt-ssh-3002.2-53.4.1.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-53.4.1.x86_64.rpm True salt-syndic-3002.2-53.4.1.x86_64.rpm True salt-transactional-update-3002.2-53.4.1.x86_64.rpm True salt-zsh-completion-3002.2-53.4.1.noarch.rpm True python3-salt-3002.2-53.4.1.s390x.rpm True salt-3002.2-53.4.1.s390x.rpm True salt-api-3002.2-53.4.1.s390x.rpm True salt-cloud-3002.2-53.4.1.s390x.rpm True salt-doc-3002.2-53.4.1.s390x.rpm True salt-master-3002.2-53.4.1.s390x.rpm True salt-minion-3002.2-53.4.1.s390x.rpm True salt-proxy-3002.2-53.4.1.s390x.rpm True salt-ssh-3002.2-53.4.1.s390x.rpm True salt-standalone-formulas-configuration-3002.2-53.4.1.s390x.rpm True salt-syndic-3002.2-53.4.1.s390x.rpm True salt-transactional-update-3002.2-53.4.1.s390x.rpm True python3-salt-3002.2-53.4.1.ppc64le.rpm True salt-3002.2-53.4.1.ppc64le.rpm True salt-api-3002.2-53.4.1.ppc64le.rpm True salt-cloud-3002.2-53.4.1.ppc64le.rpm True salt-doc-3002.2-53.4.1.ppc64le.rpm True salt-master-3002.2-53.4.1.ppc64le.rpm True salt-minion-3002.2-53.4.1.ppc64le.rpm True salt-proxy-3002.2-53.4.1.ppc64le.rpm True salt-ssh-3002.2-53.4.1.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-53.4.1.ppc64le.rpm True salt-syndic-3002.2-53.4.1.ppc64le.rpm True salt-transactional-update-3002.2-53.4.1.ppc64le.rpm True python3-salt-3002.2-53.4.1.aarch64.rpm True salt-3002.2-53.4.1.aarch64.rpm True salt-api-3002.2-53.4.1.aarch64.rpm True salt-cloud-3002.2-53.4.1.aarch64.rpm True salt-doc-3002.2-53.4.1.aarch64.rpm True salt-master-3002.2-53.4.1.aarch64.rpm True salt-minion-3002.2-53.4.1.aarch64.rpm True salt-proxy-3002.2-53.4.1.aarch64.rpm True salt-ssh-3002.2-53.4.1.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-53.4.1.aarch64.rpm True salt-syndic-3002.2-53.4.1.aarch64.rpm True salt-transactional-update-3002.2-53.4.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3949 moderate SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issues: - Update to 0.103.4 (bsc#1192346). - Update to 0.103.3 (bsc#1188284). clamav-0.103.4-3.32.1.src.rpm clamav-0.103.4-3.32.1.x86_64.rpm clamav-devel-0.103.4-3.32.1.x86_64.rpm libclamav9-0.103.4-3.32.1.x86_64.rpm libfreshclam2-0.103.4-3.32.1.x86_64.rpm clamav-0.103.4-3.32.1.s390x.rpm clamav-devel-0.103.4-3.32.1.s390x.rpm libclamav9-0.103.4-3.32.1.s390x.rpm libfreshclam2-0.103.4-3.32.1.s390x.rpm clamav-0.103.4-3.32.1.ppc64le.rpm clamav-devel-0.103.4-3.32.1.ppc64le.rpm libclamav9-0.103.4-3.32.1.ppc64le.rpm libfreshclam2-0.103.4-3.32.1.ppc64le.rpm clamav-0.103.4-3.32.1.aarch64.rpm clamav-devel-0.103.4-3.32.1.aarch64.rpm libclamav9-0.103.4-3.32.1.aarch64.rpm libfreshclam2-0.103.4-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-3770 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: Update to version OpenJDK 8u312 (October 2021 CPU): - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS (bsc#1191901). - CVE-2021-35556: Fixed excessive memory allocation in RTFParser (bsc#1191910). - CVE-2021-35559: Fixed excessive memory allocation in RTFReader (bsc#1191911). - CVE-2021-35561: Fixed excessive memory allocation in HashMap and HashSet (bsc#1191912). - CVE-2021-35564: Fixed certificates with end dates too far in the future can corrupt keystore (bsc#1191913). - CVE-2021-35565: Fixed loop in HttpsServer triggered during TLS session close (bsc#1191909). - CVE-2021-35567: Fixed incorrect principal selection when using Kerberos Constrained Delegation (bsc#1191903). - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake (bsc#1191904). - CVE-2021-35586: Fixed excessive memory allocation in BMPImageReader (bsc#1191914). - CVE-2021-35588: Fixed incomplete validation of inner class references in ClassFileParser (bsc#1191905) - CVE-2021-35603: Fixed non-constant comparison during TLS handshakes (bsc#1191906). java-1_8_0-openjdk-1.8.0.312-3.58.2.src.rpm java-1_8_0-openjdk-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.312-3.58.2.noarch.rpm java-1_8_0-openjdk-src-1.8.0.312-3.58.2.x86_64.rpm java-1_8_0-openjdk-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-src-1.8.0.312-3.58.2.s390x.rpm java-1_8_0-openjdk-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.312-3.58.2.ppc64le.rpm java-1_8_0-openjdk-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.58.2.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.312-3.58.2.aarch64.rpm openSUSE-SLE-15.3-2021-3946 moderate SUSE Updates openSUSE-SLE 15.3 This update for gmp fixes the following issues: - CVE-2021-43618: Fixed buffer overflow via crafted input in mpz/inp_raw.c (bsc#1192717). gmp-6.1.2-4.9.1.src.rpm gmp-devel-32bit-6.1.2-4.9.1.x86_64.rpm gmp-devel-6.1.2-4.9.1.x86_64.rpm libgmp10-32bit-6.1.2-4.9.1.x86_64.rpm libgmp10-6.1.2-4.9.1.x86_64.rpm libgmpxx4-32bit-6.1.2-4.9.1.x86_64.rpm libgmpxx4-6.1.2-4.9.1.x86_64.rpm gmp-devel-6.1.2-4.9.1.s390x.rpm libgmp10-6.1.2-4.9.1.s390x.rpm libgmpxx4-6.1.2-4.9.1.s390x.rpm gmp-devel-6.1.2-4.9.1.ppc64le.rpm libgmp10-6.1.2-4.9.1.ppc64le.rpm libgmpxx4-6.1.2-4.9.1.ppc64le.rpm gmp-devel-6.1.2-4.9.1.aarch64.rpm libgmp10-6.1.2-4.9.1.aarch64.rpm libgmpxx4-6.1.2-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-4104 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - CVE-2021-3426: Fixed information disclosure via pydoc (bsc#1183374). - CVE-2021-3733: Fixed infinitely reading potential HTTP headers after a 100 Continue status response from the server (bsc#1189241). - CVE-2021-3737: Fixed ReDoS in urllib.request (bsc#1189287). - We do not require python-rpm-macros package (bsc#1180125). - Use versioned python-Sphinx to avoid dependency on other version of Python (bsc#1183858). - Stop providing "python" symbol, which means python2 currently (bsc#1185588). - Modify Lib/ensurepip/__init__.py to contain the same version numbers as are in reality the ones in the bundled wheels (bsc#1187668). libpython3_6m1_0-3.6.15-10.9.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-10.9.1.x86_64.rpm python3-3.6.15-10.9.1.src.rpm python3-3.6.15-10.9.1.x86_64.rpm python3-base-3.6.15-10.9.1.x86_64.rpm python3-core-3.6.15-10.9.1.src.rpm python3-curses-3.6.15-10.9.1.x86_64.rpm python3-dbm-3.6.15-10.9.1.x86_64.rpm python3-devel-3.6.15-10.9.1.x86_64.rpm python3-doc-3.6.15-10.9.1.x86_64.rpm python3-doc-devhelp-3.6.15-10.9.1.x86_64.rpm python3-documentation-3.6.15-10.9.1.src.rpm python3-idle-3.6.15-10.9.1.x86_64.rpm python3-testsuite-3.6.15-10.9.1.x86_64.rpm python3-tk-3.6.15-10.9.1.x86_64.rpm python3-tools-3.6.15-10.9.1.x86_64.rpm libpython3_6m1_0-3.6.15-10.9.1.s390x.rpm python3-3.6.15-10.9.1.s390x.rpm python3-base-3.6.15-10.9.1.s390x.rpm python3-curses-3.6.15-10.9.1.s390x.rpm python3-dbm-3.6.15-10.9.1.s390x.rpm python3-devel-3.6.15-10.9.1.s390x.rpm python3-doc-3.6.15-10.9.1.s390x.rpm python3-doc-devhelp-3.6.15-10.9.1.s390x.rpm python3-idle-3.6.15-10.9.1.s390x.rpm python3-testsuite-3.6.15-10.9.1.s390x.rpm python3-tk-3.6.15-10.9.1.s390x.rpm python3-tools-3.6.15-10.9.1.s390x.rpm libpython3_6m1_0-3.6.15-10.9.1.ppc64le.rpm python3-3.6.15-10.9.1.ppc64le.rpm python3-base-3.6.15-10.9.1.ppc64le.rpm python3-curses-3.6.15-10.9.1.ppc64le.rpm python3-dbm-3.6.15-10.9.1.ppc64le.rpm python3-devel-3.6.15-10.9.1.ppc64le.rpm python3-doc-3.6.15-10.9.1.ppc64le.rpm python3-doc-devhelp-3.6.15-10.9.1.ppc64le.rpm python3-idle-3.6.15-10.9.1.ppc64le.rpm python3-testsuite-3.6.15-10.9.1.ppc64le.rpm python3-tk-3.6.15-10.9.1.ppc64le.rpm python3-tools-3.6.15-10.9.1.ppc64le.rpm libpython3_6m1_0-3.6.15-10.9.1.aarch64.rpm python3-3.6.15-10.9.1.aarch64.rpm python3-base-3.6.15-10.9.1.aarch64.rpm python3-curses-3.6.15-10.9.1.aarch64.rpm python3-dbm-3.6.15-10.9.1.aarch64.rpm python3-devel-3.6.15-10.9.1.aarch64.rpm python3-doc-3.6.15-10.9.1.aarch64.rpm python3-doc-devhelp-3.6.15-10.9.1.aarch64.rpm python3-idle-3.6.15-10.9.1.aarch64.rpm python3-testsuite-3.6.15-10.9.1.aarch64.rpm python3-tk-3.6.15-10.9.1.aarch64.rpm python3-tools-3.6.15-10.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3917 low SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issue: - Add URL to package source code in the login page footer. grafana-7.5.7-3.15.1.src.rpm grafana-7.5.7-3.15.1.x86_64.rpm grafana-7.5.7-3.15.1.s390x.rpm grafana-7.5.7-3.15.1.ppc64le.rpm grafana-7.5.7-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-3883 moderate SUSE Updates openSUSE-SLE 15.3 This update for timezone fixes the following issues: Update timezone to 2021e (bsc#1177460) - Palestine will fall back 10-29 (not 10-30) at 01:00 - Fiji suspends DST for the 2021/2022 season - 'zic -r' marks unspecified timestamps with "-00" - Fix a bug in 'zic -b fat' that caused old timestamps to be mishandled in 32-bit-only readers - Refresh timezone info for china timezone-2021e-75.4.1.src.rpm timezone-2021e-75.4.1.x86_64.rpm timezone-java-2021e-3.50.1.noarch.rpm timezone-java-2021e-3.50.1.src.rpm timezone-2021e-75.4.1.s390x.rpm timezone-2021e-75.4.1.ppc64le.rpm timezone-2021e-75.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3963 moderate SUSE Updates openSUSE-SLE 15.3 This update for system-users fixes the following issues: - system-user-tss.conf: Removed group entry because it's not needed and contained syntax errors (bsc#1190401) system-group-hardware-20170617-17.3.1.noarch.rpm system-group-kvm-20170617-17.3.1.noarch.rpm system-group-libvirt-20170617-17.3.1.noarch.rpm system-group-obsolete-20170617-17.3.1.noarch.rpm system-group-wheel-20170617-17.3.1.noarch.rpm system-user-bin-20170617-17.3.1.noarch.rpm system-user-daemon-20170617-17.3.1.noarch.rpm system-user-ftp-20170617-17.3.1.noarch.rpm system-user-games-20170617-17.3.1.noarch.rpm system-user-lp-20170617-17.3.1.noarch.rpm system-user-mail-20170617-17.3.1.noarch.rpm system-user-man-20170617-17.3.1.noarch.rpm system-user-news-20170617-17.3.1.noarch.rpm system-user-nobody-20170617-17.3.1.noarch.rpm system-user-qemu-20170617-17.3.1.noarch.rpm system-user-tftp-20170617-17.3.1.noarch.rpm system-user-tss-20170617-17.3.1.noarch.rpm system-user-upsd-20170617-17.3.1.noarch.rpm system-user-uucp-20170617-17.3.1.noarch.rpm system-user-uuidd-20170617-17.3.1.noarch.rpm system-user-wwwrun-20170617-17.3.1.noarch.rpm system-users-20170617-17.3.1.src.rpm openSUSE-SLE-15.3-2021-3868 moderate SUSE Updates openSUSE-SLE 15.3 This update for acct fixes the following issues: - Migrate pacct log file to new location when upgrading from SLE12 (bsc#1188159) acct-6.6.4-4.3.1.src.rpm acct-6.6.4-4.3.1.x86_64.rpm acct-6.6.4-4.3.1.s390x.rpm acct-6.6.4-4.3.1.ppc64le.rpm acct-6.6.4-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3936 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.55 fixes the following issues: - Implement rust version 1.55.0 on SLE 15 SP3. (jsc#SLE-19210) - Add BuildRequire: 'llvm12-devel' on Tumbleweed. (bsc#1192067) - Change 'llvm_bundling' to be required on 'x86_64', 'aarch64' and 'ppc64le' on 15.3, too. Otherwise cargo segfaults when building MozillaFirefox-93.0. - Swap to internal 'libgit' due to issue in current platform 'libgit2'. - Remove un-needed compiler docs. - Remove conflicting shell completions. - Remove developer tools in favour of rustup. cargo-1.55.0-21.9.1.x86_64.rpm cargo1.55-1.55.0-7.3.1.x86_64.rpm rust-1.55.0-21.9.1.src.rpm rust-1.55.0-21.9.1.x86_64.rpm rust1.55-1.55.0-7.3.1.src.rpm rust1.55-1.55.0-7.3.1.x86_64.rpm cargo-1.55.0-21.9.1.s390x.rpm cargo1.55-1.55.0-7.3.1.s390x.rpm rust-1.55.0-21.9.1.s390x.rpm rust1.55-1.55.0-7.3.1.s390x.rpm cargo-1.55.0-21.9.1.ppc64le.rpm cargo1.55-1.55.0-7.3.1.ppc64le.rpm rust-1.55.0-21.9.1.ppc64le.rpm rust1.55-1.55.0-7.3.1.ppc64le.rpm cargo-1.55.0-21.9.1.aarch64.rpm cargo1.55-1.55.0-7.3.1.aarch64.rpm rust-1.55.0-21.9.1.aarch64.rpm rust1.55-1.55.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3924 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for golang-github-prometheus-alertmanager fixes the following issue: Provide version 0.21.0 of golang-github-prometheus-alertmanager (jsc#SLE-21859) - Exclude s390 architecture - Remove systemd and shadow hard requirements - Use the system user provided by the 'system-user-prometheus' subpackge - Add 'prometheus-alertmanager' package alias - Fix building amtool (bsc#1176943) - Fix permissions for '/var/lib/prometheus' to match 'golang-github-prometheus-prometheus' package and avoid installation checks failures - Remove HipChat integration as it is end-of-life. - Remove default assignment of environment variables. - Enforce 512KB event size limit. - Add cluster command to show cluster and peer statuses. - Add redirection from '/' to the routes prefix when it isn't empty. - Add 'max_alerts' option to limit the number of alerts included in the payload. - Improve logs for API v2, notifications and clustering. - Fix child routes not inheriting their parent route's grouping when 'group_by: [...]'. - Fix the receiver selector in the Alerts page when the receiver name contains regular expression metacharacters such as '+'. - Fix error message about start and end time validation. - Fix a potential race condition in dispatcher. - Return an empty array of peers when the clustering is disabled. - Fix the registration of 'alertmanager_dispatcher_aggregation_groups' and 'alertmanager_dispatcher_alert_processing_duration_seconds' metrics. - Always retry notifications with back-off. - Update to build with go1.14 - Refresh example config from upstream - Add 'network-online' (Wants and After) dependency to systemd unit (bsc#1143913) golang-github-prometheus-alertmanager-0.21.0-4.4.1.src.rpm golang-github-prometheus-alertmanager-0.21.0-4.4.1.x86_64.rpm golang-github-prometheus-alertmanager-0.21.0-4.4.1.s390x.rpm golang-github-prometheus-alertmanager-0.21.0-4.4.1.ppc64le.rpm golang-github-prometheus-alertmanager-0.21.0-4.4.1.aarch64.rpm openSUSE-SLE-15.3-2021-3968 moderate SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2021-28702: Fixed PCI devices with RMRRs not deassigned correctly (XSA-386) (bsc#1191363). - CVE-2021-28704, CVE-2021-28707, CVE-2021-28708: Fixed PoD operations on misaligned GFNs (XSA-388) (bsc#1192557). - CVE-2021-28705, CVE-2021-28709: Fixed issues with partially successful P2M updates on x86 (XSA-389) (bsc#1192559). - CVE-2021-28706: Fixed guests may exceed their designated memory limit (XSA-385) (bsc#1192554). - Update to Xen 4.14.3 bug fix release (bsc#1027519). xen-4.14.3_04-3.15.1.src.rpm True xen-4.14.3_04-3.15.1.x86_64.rpm True xen-devel-4.14.3_04-3.15.1.x86_64.rpm True xen-doc-html-4.14.3_04-3.15.1.x86_64.rpm True xen-libs-32bit-4.14.3_04-3.15.1.x86_64.rpm True xen-libs-4.14.3_04-3.15.1.x86_64.rpm True xen-tools-4.14.3_04-3.15.1.x86_64.rpm True xen-tools-domU-4.14.3_04-3.15.1.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.3_04-3.15.1.noarch.rpm True xen-4.14.3_04-3.15.1.aarch64.rpm True xen-devel-4.14.3_04-3.15.1.aarch64.rpm True xen-doc-html-4.14.3_04-3.15.1.aarch64.rpm True xen-libs-4.14.3_04-3.15.1.aarch64.rpm True xen-tools-4.14.3_04-3.15.1.aarch64.rpm True xen-tools-domU-4.14.3_04-3.15.1.aarch64.rpm True openSUSE-SLE-15.3-2021-3817 important SUSE Updates openSUSE-SLE 15.3 This update for saptune fixes the following issues: - Fix the scheduler settings for multi path devices and suppress missleading warning messages regarding vendor and model information during block device detection (bsc#1192460) - Fix override of custom solutions (bsc#1192062) - Fix Cloud Notes marked as manually reverted after update from saptune2 to saptune3 (bsc#1192053) - saptune_check: degraded system is no longer considered an error (bsc#1192272) - Log missing model and vendor information to the saptune log file (bsc#1190509) saptune-3.0.1-8.19.1.src.rpm saptune-3.0.1-8.19.1.x86_64.rpm saptune-3.0.1-8.19.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3866 moderate SUSE Updates openSUSE-SLE 15.3 This update for rsync fixes the following issues: - Fixed an error when using the external compression library where files larger that 1GB would not be transferred completely and failing (bsc#1190828) rsync-3.1.3-4.10.1.src.rpm rsync-3.1.3-4.10.1.x86_64.rpm rsync-3.1.3-4.10.1.s390x.rpm rsync-3.1.3-4.10.1.ppc64le.rpm rsync-3.1.3-4.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-4018 moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - CVE-2021-36386: Fixed DoS or information disclosure in some configurations (bsc#1188875). - CVE-2021-39272: Fixed STARTTLS session encryption bypassing (fetchmail-SA-2021-02) (bsc#1190069). - Update to 6.4.22 (bsc#1152964, jsc#SLE-18159, jsc#SLE-17903, jsc#SLE-18059) - Remove all python2 dependencies (bsc#1190896). - De-hardcode /usr/lib path for launch executable (bsc#1174075). - Added hardening to systemd service(s) (bsc#1181400). fetchmail-6.4.22-20.20.1.src.rpm fetchmail-6.4.22-20.20.1.x86_64.rpm fetchmailconf-6.4.22-20.20.1.x86_64.rpm fetchmail-6.4.22-20.20.1.s390x.rpm fetchmailconf-6.4.22-20.20.1.s390x.rpm fetchmail-6.4.22-20.20.1.ppc64le.rpm fetchmailconf-6.4.22-20.20.1.ppc64le.rpm fetchmail-6.4.22-20.20.1.aarch64.rpm fetchmailconf-6.4.22-20.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-3938 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: - Update to Wireshark 3.4.10: - CVE-2021-39920: IPPUSB dissector crash (bsc#1192830). - CVE-2021-39921: Modbus dissector crash (bsc#1192830). - CVE-2021-39922: C12.22 dissector crash (bsc#1192830). - CVE-2021-39924: Bluetooth DHT dissector large loop (bsc#1192830). - CVE-2021-39925: Bluetooth SDP dissector crash (bsc#1192830). - CVE-2021-39926: Bluetooth HCI_ISO dissector crash (bsc#1192830). - CVE-2021-39928: IEEE 802.11 dissector crash (bsc#1192830). - CVE-2021-39929: Bluetooth DHT dissector crash (bsc#1192830). libwireshark14-3.4.10-3.62.1.x86_64.rpm libwiretap11-3.4.10-3.62.1.x86_64.rpm libwsutil12-3.4.10-3.62.1.x86_64.rpm wireshark-3.4.10-3.62.1.src.rpm wireshark-3.4.10-3.62.1.x86_64.rpm wireshark-devel-3.4.10-3.62.1.x86_64.rpm wireshark-ui-qt-3.4.10-3.62.1.x86_64.rpm libwireshark14-3.4.10-3.62.1.s390x.rpm libwiretap11-3.4.10-3.62.1.s390x.rpm libwsutil12-3.4.10-3.62.1.s390x.rpm wireshark-3.4.10-3.62.1.s390x.rpm wireshark-devel-3.4.10-3.62.1.s390x.rpm wireshark-ui-qt-3.4.10-3.62.1.s390x.rpm libwireshark14-3.4.10-3.62.1.ppc64le.rpm libwiretap11-3.4.10-3.62.1.ppc64le.rpm libwsutil12-3.4.10-3.62.1.ppc64le.rpm wireshark-3.4.10-3.62.1.ppc64le.rpm wireshark-devel-3.4.10-3.62.1.ppc64le.rpm wireshark-ui-qt-3.4.10-3.62.1.ppc64le.rpm libwireshark14-3.4.10-3.62.1.aarch64.rpm libwiretap11-3.4.10-3.62.1.aarch64.rpm libwsutil12-3.4.10-3.62.1.aarch64.rpm wireshark-3.4.10-3.62.1.aarch64.rpm wireshark-devel-3.4.10-3.62.1.aarch64.rpm wireshark-ui-qt-3.4.10-3.62.1.aarch64.rpm openSUSE-SLE-15.3-2021-3893 moderate SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issue: - Fix: ui_resource: Parse node and lifetime correctly (bsc#1192618) crmsh-4.3.1+20211119.97feb471-5.71.1.noarch.rpm crmsh-4.3.1+20211119.97feb471-5.71.1.src.rpm crmsh-scripts-4.3.1+20211119.97feb471-5.71.1.noarch.rpm crmsh-test-4.3.1+20211119.97feb471-5.71.1.noarch.rpm openSUSE-SLE-15.3-2021-3838 important SUSE Updates openSUSE-SLE 15.3 This update for ruby2.5 fixes the following issues: - CVE-2021-31799: Fixed Command injection vulnerability in RDoc (bsc#1190375). - CVE-2021-31810: Fixed trusting FTP PASV responses vulnerability in Net:FTP (bsc#1188161). - CVE-2021-32066: Fixed StartTLS stripping vulnerability in Net:IMAP (bsc#1188160). libruby2_5-2_5-2.5.9-4.20.1.x86_64.rpm ruby2.5-2.5.9-4.20.1.src.rpm ruby2.5-2.5.9-4.20.1.x86_64.rpm ruby2.5-devel-2.5.9-4.20.1.x86_64.rpm ruby2.5-devel-extra-2.5.9-4.20.1.x86_64.rpm ruby2.5-doc-2.5.9-4.20.1.x86_64.rpm ruby2.5-doc-ri-2.5.9-4.20.1.noarch.rpm ruby2.5-stdlib-2.5.9-4.20.1.x86_64.rpm libruby2_5-2_5-2.5.9-4.20.1.s390x.rpm ruby2.5-2.5.9-4.20.1.s390x.rpm ruby2.5-devel-2.5.9-4.20.1.s390x.rpm ruby2.5-devel-extra-2.5.9-4.20.1.s390x.rpm ruby2.5-doc-2.5.9-4.20.1.s390x.rpm ruby2.5-stdlib-2.5.9-4.20.1.s390x.rpm libruby2_5-2_5-2.5.9-4.20.1.ppc64le.rpm ruby2.5-2.5.9-4.20.1.ppc64le.rpm ruby2.5-devel-2.5.9-4.20.1.ppc64le.rpm ruby2.5-devel-extra-2.5.9-4.20.1.ppc64le.rpm ruby2.5-doc-2.5.9-4.20.1.ppc64le.rpm ruby2.5-stdlib-2.5.9-4.20.1.ppc64le.rpm libruby2_5-2_5-2.5.9-4.20.1.aarch64.rpm ruby2.5-2.5.9-4.20.1.aarch64.rpm ruby2.5-devel-2.5.9-4.20.1.aarch64.rpm ruby2.5-devel-extra-2.5.9-4.20.1.aarch64.rpm ruby2.5-doc-2.5.9-4.20.1.aarch64.rpm ruby2.5-stdlib-2.5.9-4.20.1.aarch64.rpm openSUSE-SLE-15.3-2021-3941 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573) You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0) - CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045 ). - CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781). - CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790) - CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961). The following non-security bugs were fixed: - ABI: sysfs-kernel-slab: Document some stats (git-fixes). - ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes). - ALSA: hda: Free card instance properly at probe errors (git-fixes). - ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes). - ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375). - ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes). - ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375). - ALSA: usb-audio: Use int for dB map values (bsc#1192375). - ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473). - auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes). - auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes). - auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes). - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573) - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574) - bpf: Disallow unprivileged bpf by default (jsc#SLE-22573). - bpf: Disallow unprivileged bpf by default (jsc#SLE-22574). - bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574). - bpf: Fix potential race in tail call compatibility check (git-fixes). - bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574). - btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896). - btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896). - btrfs: fix memory ordering between normal and ordered work functions (git-fixes). - btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896). - cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes). - config: disable unprivileged BPF by default (jsc#SLE-22573) Backport of mainline commit 8a03e56b253e ("bpf: Disallow unprivileged bpf by default") only changes kconfig default, used e.g. for "make oldconfig" when the config option is missing, but does not update our kernel configs used for build. Update also these to make sure unprivileged BPF is really disabled by default. - crypto: caam - disable pkc for non-E SoCs (git-fixes). - crypto: qat - detect PFVF collision after ACK (git-fixes). - crypto: qat - disregard spurious PFVF interrupts (git-fixes). - drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758). - drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802). - EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489). - Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then. - exfat: fix erroneous discard when clear cluster bit (git-fixes). - exfat: handle wrong stream entry size in exfat_readdir() (git-fixes). - exfat: properly set s_time_gran (bsc#1192328). - exfat: truncate atimes to 2s granularity (bsc#1192328). - Fix problem with missing installkernel on Tumbleweed. - fuse: fix page stealing (bsc#1192718). - gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid a leak (git-fixes). - gpio/rockchip: add driver for rockchip gpio (bsc#1192217). - gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217). - gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217). - gpio/rockchip: fetch deferred output settings on probe (bsc#1192217). - gpio/rockchip: fix get_direction value handling (bsc#1192217). - gpio/rockchip: support next version gpio controller (bsc#1192217). - gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217). - HID: u2fzero: clarify error check and length calculations (git-fixes). - HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629). - ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629). - iio: dac: ad5446: Fix ad5622_write() return value (git-fixes). - Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918). - kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740). - mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906). - Move upstreamed sound fix into sorted section - net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes). - net: mscc: ocelot: fix hardware timestamp dequeue logic. - net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes). - net/smc: Correct smc link connection counter in case of smc client (git-fixes). - net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work (git-fixes). - ocfs2: do not zero pages beyond i_size (bsc#1190795). - ocfs2: fix data corruption on truncate (bsc#1190795). - PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes). - PCI: aardvark: Do not spam about PIO Response Status (git-fixes). - PCI: aardvark: Do not unmask unused interrupts (git-fixes). - PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes). - PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes). - PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes). - PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes). - PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263). - PCI/ACPI: Clarify message about _OSC failure (bsc#1169263). - PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263). - PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263). - PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263). - PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263). - PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes). - PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes). - pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes). - pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217). - pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217). - pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217). - pinctrl: rockchip: add rk3308 SoC support (bsc#1192217). - pinctrl: rockchip: add support for rk3568 (bsc#1192217). - pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217). - pinctrl: rockchip: clear int status when driver probed (bsc#1192217). - pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217). - pinctrl: rockchip: do coding style for mux route struct (bsc#1192217). - pinctrl/rockchip: drop the gpio related codes (bsc#1192217). - pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217). - pinctrl: rockchip: make driver be tristate module (bsc#1192217). - pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217). - pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217). - pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217). - power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes). - power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes). - power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes). - power: supply: rt5033-battery: Change voltage values to 5V (git-fixes). - printk/console: Allow to disable console output by using console="" or console=null (bsc#1192753). - printk: handle blank console arguments passed in (bsc#1192753). - qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802). - r8152: add a helper function about setting EEE (git-fixes). - r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes). - r8152: Disable PLA MCU clock speed down (git-fixes). - r8152: disable U2P3 for RTL8153B (git-fixes). - r8152: divide the tx and rx bottom functions (git-fixes). - r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes). - r8152: fix runtime resume for linking change (git-fixes). - r8152: replace array with linking list for rx information (git-fixes). - r8152: reset flow control patch when linking on for RTL8153B (git-fixes). - r8152: saving the settings of EEE (git-fixes). - r8152: separate the rx buffer size (git-fixes). - r8152: use alloc_pages for rx buffer (git-fixes). - random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924) - Revert "ibmvnic: check failover_pending in login response" (bsc#1190523 ltc#194510). - Revert "platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes" (git-fixes). - Revert "r8152: adjust the settings about MAC clock speed down for RTL8153" (git-fixes). - Revert "scsi: ufs: fix a missing check of devm_reset_control_get" (git-fixes). - Revert "x86/kvm: fix vcpu-id indexed array sizes" (git-fixes). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes). - s390/dasd: fix use after free in dasd path handling (git-fixes). - s390/pci: fix use after free of zpci_dev (git-fixes). - s390/pci: fix zpci_zdev_put() on reserve (git-fixes). - s390/qeth: fix deadlock during failing recovery (git-fixes). - s390/qeth: Fix deadlock in remove_discipline (git-fixes). - s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes). - s390/topology: clear thread/group maps for offline cpus (git-fixes). - scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes). - scsi: BusLogic: Fix missing pr_cont() use (git-fixes). - scsi: core: Fix spelling in a source code comment (git-fixes). - scsi: csiostor: Add module softdep on cxgb4 (git-fixes). - scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes). - scsi: dc395: Fix error case unwinding (git-fixes). - scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes). - scsi: FlashPoint: Rename si_flags field (git-fixes). - scsi: iscsi: Fix iface sysfs attr detection (git-fixes). - scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes). - scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes). - scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes). - scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes). - scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes). - scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes). - scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes). - scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes). - scsi: snic: Fix an error message (git-fixes). - scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes). - scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes). - serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes). - serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes). - staging: r8712u: fix control-message timeout (git-fixes). - staging: rtl8192u: fix control-message timeouts (git-fixes). - stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes). - tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745). - Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set - Update config files: pull BPF configs together - usb: gadget: hid: fix error code in do_config() (git-fixes). - USB: iowarrior: fix control-message timeouts (git-fixes). - usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes). - usb: musb: Balance list entry in musb_gadget_queue (git-fixes). - USB: serial: keyspan: fix memleak on probe errors (git-fixes). - video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes). - x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489). - x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes). - xen-pciback: Fix return in pm_ctrl_init() (git-fixes). - xen: Fix implicit type conversion (git-fixes). cluster-md-kmp-default-5.3.18-59.37.2.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True dlm-kmp-default-5.3.18-59.37.2.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True gfs2-kmp-default-5.3.18-59.37.2.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True kernel-debug-5.3.18-59.37.2.nosrc.rpm True kernel-debug-5.3.18-59.37.2.x86_64.rpm True kernel-debug-devel-5.3.18-59.37.2.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.37.2.x86_64.rpm True kernel-default-5.3.18-59.37.2.nosrc.rpm True kernel-default-5.3.18-59.37.2.x86_64.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.src.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.x86_64.rpm True kernel-default-devel-5.3.18-59.37.2.x86_64.rpm True kernel-default-extra-5.3.18-59.37.2.x86_64.rpm True kernel-default-livepatch-5.3.18-59.37.2.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.37.2.x86_64.rpm True kernel-default-optional-5.3.18-59.37.2.x86_64.rpm True kernel-devel-5.3.18-59.37.2.noarch.rpm True kernel-docs-5.3.18-59.37.2.noarch.rpm True kernel-docs-5.3.18-59.37.2.nosrc.rpm True kernel-docs-html-5.3.18-59.37.2.noarch.rpm True kernel-kvmsmall-5.3.18-59.37.2.nosrc.rpm True kernel-kvmsmall-5.3.18-59.37.2.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.37.2.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.x86_64.rpm True kernel-macros-5.3.18-59.37.2.noarch.rpm True kernel-obs-build-5.3.18-59.37.3.src.rpm True kernel-obs-build-5.3.18-59.37.3.x86_64.rpm True kernel-obs-qa-5.3.18-59.37.1.src.rpm True kernel-obs-qa-5.3.18-59.37.1.x86_64.rpm True kernel-preempt-5.3.18-59.37.2.nosrc.rpm True kernel-preempt-5.3.18-59.37.2.x86_64.rpm True kernel-preempt-devel-5.3.18-59.37.2.x86_64.rpm True kernel-preempt-extra-5.3.18-59.37.2.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.37.2.x86_64.rpm True kernel-preempt-optional-5.3.18-59.37.2.x86_64.rpm True kernel-source-5.3.18-59.37.2.noarch.rpm True kernel-source-5.3.18-59.37.2.src.rpm True kernel-source-vanilla-5.3.18-59.37.2.noarch.rpm True kernel-syms-5.3.18-59.37.1.src.rpm True kernel-syms-5.3.18-59.37.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.37.2.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.37.2.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.37.2.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.37.2.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.37.2.s390x.rpm True dlm-kmp-default-5.3.18-59.37.2.s390x.rpm True gfs2-kmp-default-5.3.18-59.37.2.s390x.rpm True kernel-default-5.3.18-59.37.2.s390x.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.s390x.rpm True kernel-default-devel-5.3.18-59.37.2.s390x.rpm True kernel-default-extra-5.3.18-59.37.2.s390x.rpm True kernel-default-livepatch-5.3.18-59.37.2.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.37.2.s390x.rpm True kernel-default-optional-5.3.18-59.37.2.s390x.rpm True kernel-obs-build-5.3.18-59.37.3.s390x.rpm True kernel-obs-qa-5.3.18-59.37.1.s390x.rpm True kernel-syms-5.3.18-59.37.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.37.2.nosrc.rpm True kernel-zfcpdump-5.3.18-59.37.2.s390x.rpm True kselftests-kmp-default-5.3.18-59.37.2.s390x.rpm True ocfs2-kmp-default-5.3.18-59.37.2.s390x.rpm True reiserfs-kmp-default-5.3.18-59.37.2.s390x.rpm True cluster-md-kmp-default-5.3.18-59.37.2.ppc64le.rpm True dlm-kmp-default-5.3.18-59.37.2.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.37.2.ppc64le.rpm True kernel-debug-5.3.18-59.37.2.ppc64le.rpm True kernel-debug-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-default-5.3.18-59.37.2.ppc64le.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.ppc64le.rpm True kernel-default-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-default-extra-5.3.18-59.37.2.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.37.2.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-default-optional-5.3.18-59.37.2.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.37.2.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.37.2.ppc64le.rpm True kernel-obs-build-5.3.18-59.37.3.ppc64le.rpm True kernel-obs-qa-5.3.18-59.37.1.ppc64le.rpm True kernel-syms-5.3.18-59.37.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.37.2.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.37.2.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.37.2.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.37.2.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True dlm-kmp-default-5.3.18-59.37.2.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True dtb-aarch64-5.3.18-59.37.1.src.rpm True dtb-al-5.3.18-59.37.1.aarch64.rpm True dtb-allwinner-5.3.18-59.37.1.aarch64.rpm True dtb-altera-5.3.18-59.37.1.aarch64.rpm True dtb-amd-5.3.18-59.37.1.aarch64.rpm True dtb-amlogic-5.3.18-59.37.1.aarch64.rpm True dtb-apm-5.3.18-59.37.1.aarch64.rpm True dtb-arm-5.3.18-59.37.1.aarch64.rpm True dtb-broadcom-5.3.18-59.37.1.aarch64.rpm True dtb-cavium-5.3.18-59.37.1.aarch64.rpm True dtb-exynos-5.3.18-59.37.1.aarch64.rpm True dtb-freescale-5.3.18-59.37.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.37.1.aarch64.rpm True dtb-lg-5.3.18-59.37.1.aarch64.rpm True dtb-marvell-5.3.18-59.37.1.aarch64.rpm True dtb-mediatek-5.3.18-59.37.1.aarch64.rpm True dtb-nvidia-5.3.18-59.37.1.aarch64.rpm True dtb-qcom-5.3.18-59.37.1.aarch64.rpm True dtb-renesas-5.3.18-59.37.1.aarch64.rpm True dtb-rockchip-5.3.18-59.37.1.aarch64.rpm True dtb-socionext-5.3.18-59.37.1.aarch64.rpm True dtb-sprd-5.3.18-59.37.1.aarch64.rpm True dtb-xilinx-5.3.18-59.37.1.aarch64.rpm True dtb-zte-5.3.18-59.37.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True gfs2-kmp-default-5.3.18-59.37.2.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-5.3.18-59.37.2.nosrc.rpm True kernel-64kb-devel-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-extra-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.37.2.aarch64.rpm True kernel-64kb-optional-5.3.18-59.37.2.aarch64.rpm True kernel-default-5.3.18-59.37.2.aarch64.rpm True kernel-default-base-5.3.18-59.37.2.18.23.3.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.37.2.18.23.3.aarch64.rpm True kernel-default-devel-5.3.18-59.37.2.aarch64.rpm True kernel-default-extra-5.3.18-59.37.2.aarch64.rpm True kernel-default-livepatch-5.3.18-59.37.2.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.37.2.aarch64.rpm True kernel-default-optional-5.3.18-59.37.2.aarch64.rpm True kernel-obs-build-5.3.18-59.37.3.aarch64.rpm True kernel-obs-qa-5.3.18-59.37.1.aarch64.rpm True kernel-preempt-5.3.18-59.37.2.aarch64.rpm True kernel-preempt-devel-5.3.18-59.37.2.aarch64.rpm True kernel-preempt-extra-5.3.18-59.37.2.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.37.2.aarch64.rpm True kernel-preempt-optional-5.3.18-59.37.2.aarch64.rpm True kernel-syms-5.3.18-59.37.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True kselftests-kmp-default-5.3.18-59.37.2.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.37.2.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.37.2.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.37.2.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.37.2.aarch64.rpm True openSUSE-SLE-15.3-2021-3874 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - CVE-2021-30846: Fixed memory corruption issue that could lead to arbitrary code execution when processing maliciously crafted web content (bsc#1192063). - CVE-2021-30851: Fixed memory corruption vulnerability that could lead to arbitrary code execution when processing maliciously crafted web content (bsc#1192063). libjavascriptcoregtk-4_0-18-2.34.1-18.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.34.1-18.1.x86_64.rpm libwebkit2gtk-4_0-37-2.34.1-18.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.34.1-18.1.x86_64.rpm libwebkit2gtk3-lang-2.34.1-18.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.34.1-18.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.34.1-18.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.1-18.1.x86_64.rpm webkit-jsc-4-2.34.1-18.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.34.1-18.1.x86_64.rpm webkit2gtk3-2.34.1-18.1.src.rpm webkit2gtk3-devel-2.34.1-18.1.x86_64.rpm webkit2gtk3-minibrowser-2.34.1-18.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.34.1-18.1.s390x.rpm libwebkit2gtk-4_0-37-2.34.1-18.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.34.1-18.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.34.1-18.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.1-18.1.s390x.rpm webkit-jsc-4-2.34.1-18.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.34.1-18.1.s390x.rpm webkit2gtk3-devel-2.34.1-18.1.s390x.rpm webkit2gtk3-minibrowser-2.34.1-18.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.34.1-18.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.34.1-18.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.34.1-18.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.34.1-18.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.1-18.1.ppc64le.rpm webkit-jsc-4-2.34.1-18.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.34.1-18.1.ppc64le.rpm webkit2gtk3-devel-2.34.1-18.1.ppc64le.rpm webkit2gtk3-minibrowser-2.34.1-18.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.34.1-18.1.aarch64.rpm libwebkit2gtk-4_0-37-2.34.1-18.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.34.1-18.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.34.1-18.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.1-18.1.aarch64.rpm webkit-jsc-4-2.34.1-18.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.34.1-18.1.aarch64.rpm webkit2gtk3-devel-2.34.1-18.1.aarch64.rpm webkit2gtk3-minibrowser-2.34.1-18.1.aarch64.rpm openSUSE-SLE-15.3-2022-91 important SUSE Updates openSUSE-SLE 15.3 This update for apache2 fixes the following issues: Apache2 was updated to the current stable version 2.4.51 (jsc#SLE-22733 jsc#SLE-22849) It fixes all CVEs and selected bugs represented by patches found between 2.4.23 and 2.4.51. See https://downloads.apache.org/httpd/CHANGES_2.4 for a complete change log. Also fixed: - CVE-2021-44224: Fixed NULL dereference or SSRF in forward proxy configurations (bsc#1193943) - CVE-2021-44790: Fixed buffer overflow when parsing multipart content in mod_lua (bsc#1193942) apache2-2.4.51-3.37.1.src.rpm apache2-2.4.51-3.37.1.x86_64.rpm apache2-devel-2.4.51-3.37.1.x86_64.rpm apache2-doc-2.4.51-3.37.1.noarch.rpm apache2-event-2.4.51-3.37.1.x86_64.rpm apache2-example-pages-2.4.51-3.37.1.x86_64.rpm apache2-prefork-2.4.51-3.37.1.x86_64.rpm apache2-utils-2.4.51-3.37.1.x86_64.rpm apache2-worker-2.4.51-3.37.1.x86_64.rpm apache2-2.4.51-3.37.1.s390x.rpm apache2-devel-2.4.51-3.37.1.s390x.rpm apache2-event-2.4.51-3.37.1.s390x.rpm apache2-example-pages-2.4.51-3.37.1.s390x.rpm apache2-prefork-2.4.51-3.37.1.s390x.rpm apache2-utils-2.4.51-3.37.1.s390x.rpm apache2-worker-2.4.51-3.37.1.s390x.rpm apache2-2.4.51-3.37.1.ppc64le.rpm apache2-devel-2.4.51-3.37.1.ppc64le.rpm apache2-event-2.4.51-3.37.1.ppc64le.rpm apache2-example-pages-2.4.51-3.37.1.ppc64le.rpm apache2-prefork-2.4.51-3.37.1.ppc64le.rpm apache2-utils-2.4.51-3.37.1.ppc64le.rpm apache2-worker-2.4.51-3.37.1.ppc64le.rpm apache2-2.4.51-3.37.1.aarch64.rpm apache2-devel-2.4.51-3.37.1.aarch64.rpm apache2-event-2.4.51-3.37.1.aarch64.rpm apache2-example-pages-2.4.51-3.37.1.aarch64.rpm apache2-prefork-2.4.51-3.37.1.aarch64.rpm apache2-utils-2.4.51-3.37.1.aarch64.rpm apache2-worker-2.4.51-3.37.1.aarch64.rpm openSUSE-SLE-15.3-2021-3891 moderate SUSE Updates openSUSE-SLE 15.3 This update for keyutils fixes the following issues: - Add /etc/keys/ and /usr/etc/keys/ directory (bsc#1187654) keyutils was updated to 1.6.3 (jsc#SLE-20016): * Revert the change notifications that were using /dev/watch_queue. * Apply the change notifications that use pipe2(O_NOTIFICATION_PIPE). * Allow "keyctl supports" to retrieve raw capability data. * Allow "keyctl id" to turn a symbolic key ID into a numeric ID. * Allow "keyctl new_session" to name the keyring. * Allow "keyctl add/padd/etc." to take hex-encoded data. * Add "keyctl watch*" to expose kernel change notifications on keys. * Add caps for namespacing and notifications. * Set a default TTL on keys that upcall for name resolution. * Explicitly clear memory after it's held sensitive information. * Various manual page fixes. * Fix C++-related errors. * Add support for keyctl_move(). * Add support for keyctl_capabilities(). * Make key=val list optional for various public-key ops. * Fix system call signature for KEYCTL_PKEY_QUERY. * Fix 'keyctl pkey_query' argument passing. * Use keyctl_read_alloc() in dump_key_tree_aux(). * Various manual page fixes. Updated to 1.6: * Apply various specfile cleanups from Fedora. * request-key: Provide a command line option to suppress helper execution. * request-key: Find least-wildcard match rather than first match. * Remove the dependency on MIT Kerberos. * Fix some error messages * keyctl_dh_compute.3: Suggest /proc/crypto for list of available hashes. * Fix doc and comment typos. * Add public key ops for encrypt, decrypt, sign and verify (needs linux-4.20). * Add pkg-config support for finding libkeyutils. * upstream isn't offering PGP signatures for the source tarballs anymore Updated to 1.5.11 (bsc#1113013) * Add keyring restriction support. * Add KDF support to the Diffie-Helman function. * DNS: Add support for AFS config files and SRV records keyutils-1.6.3-5.6.1.src.rpm keyutils-1.6.3-5.6.1.x86_64.rpm keyutils-devel-1.6.3-5.6.1.x86_64.rpm keyutils-devel-32bit-1.6.3-5.6.1.x86_64.rpm libkeyutils1-1.6.3-5.6.1.x86_64.rpm libkeyutils1-32bit-1.6.3-5.6.1.x86_64.rpm keyutils-1.6.3-5.6.1.s390x.rpm keyutils-devel-1.6.3-5.6.1.s390x.rpm libkeyutils1-1.6.3-5.6.1.s390x.rpm keyutils-1.6.3-5.6.1.ppc64le.rpm keyutils-devel-1.6.3-5.6.1.ppc64le.rpm libkeyutils1-1.6.3-5.6.1.ppc64le.rpm keyutils-1.6.3-5.6.1.aarch64.rpm keyutils-devel-1.6.3-5.6.1.aarch64.rpm libkeyutils1-1.6.3-5.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-3974 moderate SUSE Updates openSUSE-SLE 15.3 This update for crash fixes the following issues: - Fix module loading (bsc#1190743) crash-7.2.9-23.8.1.src.rpm crash-7.2.9-23.8.1.x86_64.rpm crash-devel-7.2.9-23.8.1.x86_64.rpm crash-doc-7.2.9-23.8.1.x86_64.rpm crash-eppic-7.2.9-23.8.1.x86_64.rpm crash-gcore-7.2.9-23.8.1.x86_64.rpm crash-kmp-default-7.2.9_k5.3.18_59.34-23.8.1.x86_64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.34-23.8.1.x86_64.rpm crash-7.2.9-23.8.1.s390x.rpm crash-devel-7.2.9-23.8.1.s390x.rpm crash-doc-7.2.9-23.8.1.s390x.rpm crash-eppic-7.2.9-23.8.1.s390x.rpm crash-kmp-default-7.2.9_k5.3.18_59.34-23.8.1.s390x.rpm crash-7.2.9-23.8.1.ppc64le.rpm crash-devel-7.2.9-23.8.1.ppc64le.rpm crash-doc-7.2.9-23.8.1.ppc64le.rpm crash-eppic-7.2.9-23.8.1.ppc64le.rpm crash-kmp-default-7.2.9_k5.3.18_59.34-23.8.1.ppc64le.rpm crash-7.2.9-23.8.1.aarch64.rpm crash-devel-7.2.9-23.8.1.aarch64.rpm crash-doc-7.2.9-23.8.1.aarch64.rpm crash-eppic-7.2.9-23.8.1.aarch64.rpm crash-kmp-64kb-7.2.9_k5.3.18_59.34-23.8.1.aarch64.rpm crash-kmp-default-7.2.9_k5.3.18_59.34-23.8.1.aarch64.rpm crash-kmp-preempt-7.2.9_k5.3.18_59.34-23.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3806 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel for Azure was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573) You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0) - CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045). - CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781). - CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790) - CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961). - CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958). - CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c called unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601). The following non-security bugs were fixed: - ABI: sysfs-kernel-slab: Document some stats (git-fixes). - ALSA: hda: fix general protection fault in azx_runtime_idle (git-fixes). - ALSA: hda: Free card instance properly at probe errors (git-fixes). - ALSA: hda/realtek: Fix mic mute LED for the HP Spectre x360 14 (git-fixes). - ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes). - ALSA: hda: Use position buffer for SKL+ again (git-fixes). - ALSA: ua101: fix division by zero at probe (git-fixes). - ALSA: uapi: Fix a C++ style comment in asound.h (git-fixes). - ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes). - ALSA: usb-audio: Add minimal-mute notion in dB mapping table (bsc#1192375). - ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes). - ALSA: usb-audio: Fix dB level of Bose Revolve+ SoundLink (bsc#1192375). - ALSA: usb-audio: Use int for dB map values (bsc#1192375). - ARM: socfpga: Fix crash with CONFIG_FORTIRY_SOURCE (bsc#1192473). - ASoC: cs42l42: Correct some register default values (git-fixes). - ASoC: cs42l42: Defer probe if request_threaded_irq() returns EPROBE_DEFER (git-fixes). - ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes). - ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes). - ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes). - ASoC: rockchip: Use generic dmaengine code (git-fixes). - ASoC: SOF: topology: do not power down primary core during topology removal (git-fixes). - ASoC: topology: Fix stub for snd_soc_tplg_component_remove() (git-fixes). - ata: sata_mv: Fix the error handling of mv_chip_id() (git-fixes). - ath10k: fix control-message timeout (git-fixes). - ath10k: fix division by zero in send path (git-fixes). - ath10k: fix max antenna gain unit (git-fixes). - ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes). - ath10k: sdio: Add missing BH locking around napi_schdule() (git-fixes). - ath6kl: fix control-message timeout (git-fixes). - ath6kl: fix division by zero in send path (git-fixes). - ath9k: Fix potential interrupt storm on queue reset (git-fixes). - auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes). - auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes). - auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes). - b43: fix a lower bounds test (git-fixes). - b43legacy: fix a lower bounds test (git-fixes). - blacklist.conf: 5c9d706f6133 ("bpf: Fix BPF_LSM kconfig symbol dependency") Not needed since 30897832d8b9 ("bpf: Allow local storage to be used from LSM programs") is not backported. - Bluetooth: btmtkuart: fix a memleak in mtk_hci_wmt_sync (git-fixes). - Bluetooth: fix init and cleanup of sco_conn.timeout_work (git-fixes). - bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes). - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573) - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22574) - bpf: Disallow unprivileged bpf by default (jsc#SLE-22573). - bpf: Disallow unprivileged bpf by default (jsc#SLE-22574). - bpf: Fix BPF_JIT kconfig symbol dependency (git-fixes jsc#SLE-22574). - bpf: Fix potential race in tail call compatibility check (git-fixes). - bpf, kconfig: Add consolidated menu entry for bpf with core options (jsc#SLE-22574). - btrfs: block-group: Rework documentation of check_system_chunk function (bsc#1192896). - btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896). - btrfs: fix memory ordering between normal and ordered work functions (git-fixes). - btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896). - cgroup/cpuset: Change references of cpuset_mutex to cpuset_rwsem (git-fixes). - config: disable unprivileged BPF by default (jsc#SLE-22573) - crypto: caam - disable pkc for non-E SoCs (git-fixes). - crypto: qat - detect PFVF collision after ACK (git-fixes). - crypto: qat - disregard spurious PFVF interrupts (git-fixes). - driver core: add a min_align_mask field to struct device_dma_parameters (bsc#1191851). - drm/amdgpu/display: add quirk handling for stutter mode (git-fixes). - drm/amdgpu: fix warning for overflow check (git-fixes). - drm/amdgpu/gmc6: fix DMA mask from 44 to 40 bits (git-fixes). - drm/i915: Introduce intel_hpd_hotplug_irqs() (bsc#1192758). - drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes). - drm/msm: potential error pointer dereference in init() (git-fixes). - drm/msm: uninitialized variable in msm_gem_import() (git-fixes). - drm: prevent spectre issue in vmw_execbuf_ioctl (bsc#1192802). - drm/sun4i: Fix macros in sun8i_csc.h (git-fixes). - drm/ttm: stop calling tt_swapin in vm_access (git-fixes). - drm/v3d: fix wait for TMU write combiner flush (git-fixes). - EDAC/amd64: Set proper family type for Family 19h Models 20h-2Fh (bsc#1192288). - EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489). - Eradicate Patch-mainline: No The pre-commit check can reject this deprecated tag then. - exfat: fix erroneous discard when clear cluster bit (git-fixes). - exfat: handle wrong stream entry size in exfat_readdir() (git-fixes). - exfat: properly set s_time_gran (bsc#1192328). - exfat: truncate atimes to 2s granularity (bsc#1192328). - firmware/psci: fix application of sizeof to pointer (git-fixes). - ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267). - fuse: fix page stealing (bsc#1192718). - genirq: Provide IRQCHIP_AFFINITY_PRE_STARTUP (bsc#1152489). - gpio: mpc8xxx: Use 'devm_gpiochip_add_data()' to simplify the code and avoid a leak (git-fixes). - gpio/rockchip: add driver for rockchip gpio (bsc#1192217). - gpio/rockchip: drop irq_gc_lock/irq_gc_unlock for irq set type (bsc#1192217). - gpio/rockchip: extended debounce support is only available on v2 (bsc#1192217). - gpio/rockchip: fetch deferred output settings on probe (bsc#1192217). - gpio/rockchip: fix get_direction value handling (bsc#1192217). - gpio/rockchip: support next version gpio controller (bsc#1192217). - gpio/rockchip: use struct rockchip_gpio_regs for gpio controller (bsc#1192217). - gve: Avoid freeing NULL pointer (git-fixes). - gve: Correct available tx qpl check (git-fixes). - gve: fix gve_get_stats() (git-fixes). - gve: Properly handle errors in gve_assign_qpl (bsc#1176940). - gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940). - HID: u2fzero: clarify error check and length calculations (git-fixes). - HID: u2fzero: properly handle timeouts in usb_submit_urb (git-fixes). - hwmon: Fix possible memleak in __hwmon_device_register() (git-fixes). - hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes). - hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes). - hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes). - i40e: Fix ATR queue selection (git-fixes). - i40e: fix endless loop under rtnl (git-fixes). - i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes). - iavf: fix double unlock of crit_lock (git-fixes). - ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510). - ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes). - ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629). - ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629). - ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177). - iio: dac: ad5446: Fix ad5622_write() return value (git-fixes). - Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918). - Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980). - ionic: do not remove netdev->dev_addr when syncing uc list (bsc#1167773). - iwlwifi: mvm: fix some kerneldoc issues (git-fixes). - ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes). - kABI: Fix kABI after 36950f2da1ea (bsc#1191851). - kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740). - KVM: s390: extend kvm_s390_shadow_fault to return entry pointer (bsc#1133021). - KVM: s390: index kvm->arch.idle_mask by vcpu_idx (bsc#1133021). - KVM: s390: split kvm_s390_logical_to_effective (bsc#1133021). - KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021). - libertas: Fix possible memory leak in probe and disconnect (git-fixes). - libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes). - media: cedrus: Fix SUNXI tile size calculation (git-fixes). - media: cx23885: Fix snd_card_free call on null card pointer (git-fixes). - media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes). - media: dvb-frontends: mn88443x: Handle errors of clk_prepare_enable() (git-fixes). - media: dvb-usb: fix ununit-value in az6027_rc_query (git-fixes). - media: em28xx: add missing em28xx_close_extension (git-fixes). - media: em28xx: Do not use ops->suspend if it is NULL (git-fixes). - media: i2c: ths8200 needs V4L2_ASYNC (git-fixes). - media: ite-cir: IR receiver stop working after receive overflow (git-fixes). - media: mtk-vpu: Fix a resource leak in the error handling path of 'mtk_vpu_probe()' (git-fixes). - media: mxl111sf: change mutex_init() location (git-fixes). - media: radio-wl1273: Avoid card name truncation (git-fixes). - media: si470x: Avoid card name truncation (git-fixes). - media: staging/intel-ipu3: css: Fix wrong size comparison imgu_css_fw_init (git-fixes). - media: TDA1997x: handle short reads of hdmi info frame (git-fixes). - media: tm6000: Avoid card name truncation (git-fixes). - media: v4l2-ioctl: Fix check_ext_ctrls (git-fixes). - media: v4l2-ioctl: S_CTRL output the right value (git-fixes). - memory: fsl_ifc: fix leak of irq and nand_irq in fsl_ifc_ctrl_probe (git-fixes). - memstick: avoid out-of-range warning (git-fixes). - memstick: jmb38x_ms: use appropriate free function in jmb38x_ms_alloc_host() (git-fixes). - mlx5: count all link events (git-fixes). - mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes). - mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes). - mmc: sdhci: Map more voltage level to SDHCI_POWER_330 (git-fixes). - mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes). - mm/hugetlb: initialize hugetlb_usage in mm_init (bsc#1192906). - Move upstreamed sound fix into sorted section - mt76: mt7615: fix endianness warning in mt7615_mac_write_txwi (git-fixes). - mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes). - mt76: mt7915: fix muar_idx in mt7915_mcu_alloc_sta_req() (git-fixes). - mt76: mt7915: fix possible infinite loop release semaphore (git-fixes). - mt76: mt7915: fix sta_rec_wtbl tag len (git-fixes). - mwifiex: fix division by zero in fw download path (git-fixes). - mwifiex: Send DELBA requests according to spec (git-fixes). - net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353). - net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes). - net: dsa: felix: re-enable TX flow control in ocelot_port_flush() (git-fixes). - net: hns3: fix vf reset workqueue cannot exit (bsc#1154353). - net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes). - net/mlx4_en: Resolve bad operstate value (git-fixes). - net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes). - net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464). - net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes). - net: mscc: ocelot: fix hardware timestamp dequeue logic. - net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes). - net/smc: Correct smc link connection counter in case of smc client (git-fixes). - net/smc: fix 'workqueue leaked lock' in smc_conn_abort_work (git-fixes). - nvme-pci: set min_align_mask (bsc#1191851). - ocfs2: do not zero pages beyond i_size (bsc#1190795). - ocfs2: fix data corruption on truncate (bsc#1190795). - PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes). - PCI: aardvark: Do not spam about PIO Response Status (git-fixes). - PCI: aardvark: Do not unmask unused interrupts (git-fixes). - PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes). - PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes). - PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes). - PCI: aardvark: Read all 16-bits from PCIE_MSI_PAYLOAD_REG (git-fixes). - PCI/ACPI: Check for _OSC support in acpi_pci_osc_control_set() (bsc#1169263). - PCI/ACPI: Clarify message about _OSC failure (bsc#1169263). - PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263). - PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263). - PCI/ACPI: Remove OSC_PCI_SUPPORT_MASKS and OSC_PCI_CONTROL_MASKS (bsc#1169263). - PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263). - PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes). - PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes). - pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes). - pinctrl: pinctrl-rockchip: Fix a bunch of kerneldoc misdemeanours (bsc#1192217). - pinctrl/rockchip: add a queue for deferred pin output settings on probe (bsc#1192217). - pinctrl/rockchip: add pinctrl device to gpio bank struct (bsc#1192217). - pinctrl: rockchip: add rk3308 SoC support (bsc#1192217). - pinctrl: rockchip: add support for rk3568 (bsc#1192217). - pinctrl/rockchip: always enable clock for gpio controller (bsc#1192217). - pinctrl: rockchip: clear int status when driver probed (bsc#1192217). - pinctrl: rockchip: create irq mapping in gpio_to_irq (bsc#1192217). - pinctrl: rockchip: do coding style for mux route struct (bsc#1192217). - pinctrl/rockchip: drop the gpio related codes (bsc#1192217). - pinctrl: rockchip: enable gpio pclk for rockchip_gpio_to_irq (bsc#1192217). - pinctrl: rockchip: make driver be tristate module (bsc#1192217). - pinctrl: rockchip: Replace HTTP links with HTTPS ones (bsc#1192217). - pinctrl: rockchip: return ENOMEM instead of EINVAL if allocation fails (bsc#1192217). - pinctrl/rockchip: separate struct rockchip_pin_bank to a head file (bsc#1192217). - platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes). - PM: sleep: Do not let "syscore" devices runtime-suspend during system transitions (git-fixes). - power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes). - power: supply: max17042_battery: Prevent int underflow in set_soc_threshold (git-fixes). - power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes). - printk/console: Allow to disable console output by using console="" or console=null (bsc#1192753). - printk: handle blank console arguments passed in (bsc#1192753). - qed: Fix missing error code in qed_slowpath_start() (git-fixes). - qed: Handle management FW error (git-fixes). - qed: rdma - do not wait for resources under hw error recovery flow (git-fixes). - qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802). - r8152: add a helper function about setting EEE (git-fixes). - r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes). - r8152: Disable PLA MCU clock speed down (git-fixes). - r8152: disable U2P3 for RTL8153B (git-fixes). - r8152: divide the tx and rx bottom functions (git-fixes). - r8152: do not enable U1U2 with USB_SPEED_HIGH for RTL8153B (git-fixes). - r8152: fix runtime resume for linking change (git-fixes). - r8152: replace array with linking list for rx information (git-fixes). - r8152: reset flow control patch when linking on for RTL8153B (git-fixes). - r8152: saving the settings of EEE (git-fixes). - r8152: separate the rx buffer size (git-fixes). - r8152: use alloc_pages for rx buffer (git-fixes). - random: fix crash on multiple early calls to add_bootloader_randomness() (bsc#1184924) - README.BRANCH: Add Oscar Salvador as SLE15-SP3 maintainer - regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes). - regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes). - Revert "ibmvnic: check failover_pending in login response" (bsc#1190523 ltc#194510). - Revert "platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes" (git-fixes). - Revert "r8152: adjust the settings about MAC clock speed down for RTL8153" (git-fixes). - Revert "scsi: ufs: fix a missing check of devm_reset_control_get" (git-fixes). - Revert "x86/kvm: fix vcpu-id indexed array sizes" (git-fixes). - rndis_host: set proper input size for OID_GEN_PHYSICAL_MEDIUM request (git-fixes). - rsi: fix control-message timeout (git-fixes). - rsi: Fix module dev_oper_mode parameter description (git-fixes). - rsi: stop thread firstly in rsi_91x_init() error handling (git-fixes). - rtl8187: fix control-message timeouts (git-fixes). - s390/dasd: fix use after free in dasd path handling (git-fixes). - s390/pci: fix use after free of zpci_dev (git-fixes). - s390/pci: fix zpci_zdev_put() on reserve (git-fixes). - s390/qeth: fix deadlock during failing recovery (git-fixes). - s390/qeth: Fix deadlock in remove_discipline (git-fixes). - s390/qeth: fix NULL deref in qeth_clear_working_pool_list() (git-fixes). - s390/topology: clear thread/group maps for offline cpus (git-fixes). - scsi: be2iscsi: Fix an error handling path in beiscsi_dev_probe() (git-fixes). - scsi: BusLogic: Fix missing pr_cont() use (git-fixes). - scsi: core: Fix spelling in a source code comment (git-fixes). - scsi: csiostor: Add module softdep on cxgb4 (git-fixes). - scsi: csiostor: Uninitialized data in csio_ln_vnp_read_cbfn() (git-fixes). - scsi: dc395: Fix error case unwinding (git-fixes). - scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes). - scsi: FlashPoint: Rename si_flags field (git-fixes). - scsi: iscsi: Fix iface sysfs attr detection (git-fixes). - scsi: libsas: Use _safe() loop in sas_resume_port() (git-fixes). - scsi: mpt3sas: Fix error return value in _scsih_expander_add() (git-fixes). - scsi: qedf: Add pointer checks in qedf_update_link_speed() (git-fixes). - scsi: qedf: Fix error codes in qedf_alloc_global_queues() (git-fixes). - scsi: qedi: Fix error codes in qedi_alloc_global_queues() (git-fixes). - scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() (git-fixes). - scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes). - scsi: smartpqi: Fix an error code in pqi_get_raid_map() (git-fixes). - scsi: snic: Fix an error message (git-fixes). - scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes). - scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes). - serial: 8250_dw: Drop wrong use of ACPI_PTR() (git-fixes). - serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes). - staging: r8712u: fix control-message timeout (git-fixes). - staging: rtl8192u: fix control-message timeouts (git-fixes). - stmmac: platform: Fix signedness bug in stmmac_probe_config_dt() (git-fixes). - swiotlb: add a IO_TLB_SIZE define (bsc#1191851). - swiotlb: clean up swiotlb_tbl_unmap_single (bsc#1191851). - swiotlb: do not modify orig_addr in swiotlb_tbl_sync_single (bsc#1191851). - swiotlb: factor out an io_tlb_offset helper (bsc#1191851). - swiotlb: factor out a nr_slots helper (bsc#1191851). - swiotlb: refactor swiotlb_tbl_map_single (bsc#1191851). - swiotlb: respect min_align_mask (bsc#1191851). - swiotlb: Split size parameter to map/unmap APIs (bsc#1191851). - tpm: Check for integer overflow in tpm2_map_response_body() (git-fixes). - tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745). - Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set - Update patches.suse/NFS-Do-uncached-readdir-when-we-re-seeking-a-cookie-.patch (bsc#1191628 bsc#1192549). dir_cookie is a pointer to the cookie in older kernels, not the cookie itself. - Update patch reference for AMDGPU fix (bsc#1180749) - usb: gadget: hid: fix error code in do_config() (git-fixes). - USB: iowarrior: fix control-message timeouts (git-fixes). - usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes). - usb: musb: Balance list entry in musb_gadget_queue (git-fixes). - usbnet: fix error return code in usbnet_probe() (git-fixes). - usbnet: sanity check for maxpacket (git-fixes). - USB: serial: keyspan: fix memleak on probe errors (git-fixes). - video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes). - virtio-gpu: fix possible memory allocation failure (git-fixes). - wcn36xx: Add ability for wcn36xx_smd_dump_cmd_req to pass two's complement (git-fixes). - wcn36xx: add proper DMA memory barriers in rx path (git-fixes). - wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes). - x86/ioapic: Force affinity setup before startup (bsc#1152489). - x86/msi: Force affinity setup before startup (bsc#1152489). - x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489). - x86/sme: Use #define USE_EARLY_PGTABLE_L5 in mem_encrypt_identity.c (bsc#1152489). - x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (git-fixes). - xen: Fix implicit type conversion (git-fixes). - xen-pciback: Fix return in pm_ctrl_init() (git-fixes). - xfs: do not allow log writes if the data device is readonly (bsc#1192229). cluster-md-kmp-azure-5.3.18-38.31.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.31.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.31.1.x86_64.rpm True kernel-azure-5.3.18-38.31.1.nosrc.rpm True kernel-azure-5.3.18-38.31.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.31.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.31.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.31.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.31.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.31.1.noarch.rpm True kernel-source-azure-5.3.18-38.31.1.noarch.rpm True kernel-source-azure-5.3.18-38.31.1.src.rpm True kernel-syms-azure-5.3.18-38.31.1.src.rpm True kernel-syms-azure-5.3.18-38.31.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.31.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.31.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.31.1.x86_64.rpm True openSUSE-SLE-15.3-2021-3890 moderate SUSE Updates openSUSE-SLE 15.3 This update for gdb fixes the following issues: Rebase to 11.1 release (as in fedora 35 @ 9cd9368): * GDB now supports general memory tagging functionality if the underlying architecture supports the proper primitives and hooks. Currently this is enabled only for AArch64 MTE. * GDB will now look for the .gdbinit file in a config directory before looking for ~/.gdbinit. The file is searched for in the following locations: $XDG_CONFIG_HOME/gdb/gdbinit, $HOME/.config/gdb/gdbinit, $HOME/.gdbinit. * GDB will now load and process commands from ~/.config/gdb/gdbearlyinit or ~/.gdbearlyinit if these files are present. These files are processed earlier than any of the other initialization files and can affect parts of GDB's startup that previously had already been completed before the initialization files were read, for example styling of the initial GDB greeting. * GDB now has two new options "--early-init-command" and "--early-init-eval-command" with corresponding short options "-eix" and "-eiex" that allow options (that would normally appear in a gdbearlyinit file) to be passed on the command line. * set startup-quietly on|off show startup-quietly When 'on', this causes GDB to act as if "-silent" were passed on the command line. This command needs to be added to an early initialization file (e.g. ~/.config/gdb/gdbearlyinit) in order to affect GDB. * For RISC-V targets, the target feature "org.gnu.gdb.riscv.vector" is now understood by GDB, and can be used to describe the vector registers of a target. * TUI windows now support mouse actions. The mouse wheel scrolls the appropriate window. * Key combinations that do not have a specific action on the focused window are passed to GDB. For example, you now can use Ctrl-Left/Ctrl-Right to move between words in the command window regardless of which window is in focus. Previously you would need to focus on the command window for such key combinations to work. * set python ignore-environment on|off show python ignore-environment When 'on', this causes GDB's builtin Python to ignore any environment variables that would otherwise affect how Python behaves. This command needs to be added to an early initialization file (e.g. ~/.config/gdb/gdbearlyinit) in order to affect GDB. * set python dont-write-bytecode auto|on|off show python dont-write-bytecode When 'on', this causes GDB's builtin Python to not write any byte-code (.pyc files) to disk. This command needs to be added to an early initialization file (e.g. ~/.config/gdb/gdbearlyinit) in order to affect GDB. When 'off' byte-code will always be written. When set to 'auto' (the default) Python will check the PYTHONDONTWRITEBYTECODE environment variable. * break [PROBE_MODIFIER] [LOCATION] [thread THREADNUM] [-force-condition] [if CONDITION] This command would previously refuse setting a breakpoint if the CONDITION expression is invalid at a location. It now accepts and defines the breakpoint if there is at least one location at which the CONDITION is valid. The locations for which the CONDITION is invalid, are automatically disabled. If CONDITION is invalid at all of the locations, setting the breakpoint is still rejected. However, the '-force-condition' flag can be used in this case for forcing GDB to define the breakpoint, making all the current locations automatically disabled. This may be useful if the user knows the condition will become meaningful at a future location, e.g. due to a shared library load. - Update libipt to v2.0.4. gdb-11.1-8.27.1.src.rpm gdb-11.1-8.27.1.x86_64.rpm gdb-testresults-11.1-8.27.1.nosrc.rpm gdb-testresults-11.1-8.27.1.x86_64.rpm gdbserver-11.1-8.27.1.x86_64.rpm gdb-11.1-8.27.1.s390x.rpm gdb-testresults-11.1-8.27.1.s390x.rpm gdbserver-11.1-8.27.1.s390x.rpm gdb-11.1-8.27.1.ppc64le.rpm gdb-testresults-11.1-8.27.1.ppc64le.rpm gdbserver-11.1-8.27.1.ppc64le.rpm gdb-11.1-8.27.1.aarch64.rpm gdb-testresults-11.1-8.27.1.aarch64.rpm gdbserver-11.1-8.27.1.aarch64.rpm openSUSE-SLE-15.3-2021-4143 moderate SUSE Updates openSUSE-SLE 15.3 This update for libteam fixes the following issues: - Fix permission issues in NetworkManager (bsc#1185424) libteam-1.27-4.3.1.src.rpm libteam-devel-1.27-4.3.1.x86_64.rpm libteam-tools-1.27-4.3.1.x86_64.rpm libteam5-1.27-4.3.1.x86_64.rpm libteamdctl0-1.27-4.3.1.x86_64.rpm python-libteam-1.27-4.3.1.x86_64.rpm libteam-devel-1.27-4.3.1.s390x.rpm libteam-tools-1.27-4.3.1.s390x.rpm libteam5-1.27-4.3.1.s390x.rpm libteamdctl0-1.27-4.3.1.s390x.rpm python-libteam-1.27-4.3.1.s390x.rpm libteam-devel-1.27-4.3.1.ppc64le.rpm libteam-tools-1.27-4.3.1.ppc64le.rpm libteam5-1.27-4.3.1.ppc64le.rpm libteamdctl0-1.27-4.3.1.ppc64le.rpm python-libteam-1.27-4.3.1.ppc64le.rpm libteam-devel-1.27-4.3.1.aarch64.rpm libteam-tools-1.27-4.3.1.aarch64.rpm libteam5-1.27-4.3.1.aarch64.rpm libteamdctl0-1.27-4.3.1.aarch64.rpm python-libteam-1.27-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4144 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_0_0 fixes the following issues: - Fix parameters by name ffdheXXXX and modp_XXXX sometimes result in "not found" (bsc#1190885) - Fix binaries not linked as position independent executables (bsc#1186495) - Add RFC3526 and RFC7919 groups to 'openssl genpkey' so that it can output FIPS-appropriate parameter (bsc#1180995) libopenssl-1_0_0-devel-1.0.2p-3.46.2.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-3.46.2.x86_64.rpm libopenssl10-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-3.46.2.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-3.46.2.x86_64.rpm openssl-1_0_0-1.0.2p-3.46.2.src.rpm openssl-1_0_0-1.0.2p-3.46.2.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-3.46.2.x86_64.rpm openssl-1_0_0-doc-1.0.2p-3.46.2.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-3.46.2.s390x.rpm libopenssl10-1.0.2p-3.46.2.s390x.rpm libopenssl1_0_0-1.0.2p-3.46.2.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-3.46.2.s390x.rpm libopenssl1_0_0-steam-1.0.2p-3.46.2.s390x.rpm openssl-1_0_0-1.0.2p-3.46.2.s390x.rpm openssl-1_0_0-cavs-1.0.2p-3.46.2.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-3.46.2.ppc64le.rpm libopenssl10-1.0.2p-3.46.2.ppc64le.rpm libopenssl1_0_0-1.0.2p-3.46.2.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-3.46.2.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-3.46.2.ppc64le.rpm openssl-1_0_0-1.0.2p-3.46.2.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-3.46.2.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-3.46.2.aarch64.rpm libopenssl10-1.0.2p-3.46.2.aarch64.rpm libopenssl1_0_0-1.0.2p-3.46.2.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-3.46.2.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-3.46.2.aarch64.rpm openssl-1_0_0-1.0.2p-3.46.2.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-3.46.2.aarch64.rpm openSUSE-SLE-15.3-2021-4145 moderate SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - Remove previously applied patch because it interferes with FIPS validation (bsc#1161276) libopenssl-1_1-devel-1.1.1d-11.33.2.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.33.2.x86_64.rpm libopenssl1_1-1.1.1d-11.33.2.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.33.2.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.33.2.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.33.2.x86_64.rpm openssl-1_1-1.1.1d-11.33.2.src.rpm openssl-1_1-1.1.1d-11.33.2.x86_64.rpm openssl-1_1-doc-1.1.1d-11.33.2.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.33.2.s390x.rpm libopenssl1_1-1.1.1d-11.33.2.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.33.2.s390x.rpm openssl-1_1-1.1.1d-11.33.2.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.33.2.ppc64le.rpm libopenssl1_1-1.1.1d-11.33.2.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.33.2.ppc64le.rpm openssl-1_1-1.1.1d-11.33.2.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.33.2.aarch64.rpm libopenssl1_1-1.1.1d-11.33.2.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.33.2.aarch64.rpm openssl-1_1-1.1.1d-11.33.2.aarch64.rpm openSUSE-SLE-15.3-2021-3841 important SUSE Updates openSUSE-SLE 15.3 This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input (bsc#1184812). python-Pygments-2.2.0-4.9.1.src.rpm python2-Pygments-2.2.0-4.9.1.noarch.rpm openSUSE-SLE-15.3-2021-3839 important SUSE Updates openSUSE-SLE 15.3 This update for python-Pygments fixes the following issues: - CVE-2021-27291: Fixed ReDoS via crafted malicious input (bsc#1184812). python-Pygments-2.6.1-4.3.1.src.rpm python3-Pygments-2.6.1-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3980 moderate SUSE Updates openSUSE-SLE 15.3 glibc was updated to fix the following issue: - Support for new IBM Z Hardware (bsc#1191592, jsc#IBM-869) glibc-2.31-9.6.1.src.rpm glibc-2.31-9.6.1.x86_64.rpm glibc-32bit-2.31-9.6.1.x86_64.rpm glibc-devel-2.31-9.6.1.x86_64.rpm glibc-devel-32bit-2.31-9.6.1.x86_64.rpm glibc-devel-static-2.31-9.6.1.x86_64.rpm glibc-devel-static-32bit-2.31-9.6.1.x86_64.rpm glibc-extra-2.31-9.6.1.x86_64.rpm glibc-html-2.31-9.6.1.noarch.rpm glibc-i18ndata-2.31-9.6.1.noarch.rpm glibc-info-2.31-9.6.1.noarch.rpm glibc-lang-2.31-9.6.1.noarch.rpm glibc-locale-2.31-9.6.1.x86_64.rpm glibc-locale-base-2.31-9.6.1.x86_64.rpm glibc-locale-base-32bit-2.31-9.6.1.x86_64.rpm glibc-profile-2.31-9.6.1.x86_64.rpm glibc-profile-32bit-2.31-9.6.1.x86_64.rpm glibc-utils-2.31-9.6.1.x86_64.rpm glibc-utils-32bit-2.31-9.6.1.x86_64.rpm glibc-utils-src-2.31-9.6.1.src.rpm nscd-2.31-9.6.1.x86_64.rpm glibc-2.31-9.6.1.s390x.rpm glibc-devel-2.31-9.6.1.s390x.rpm glibc-devel-static-2.31-9.6.1.s390x.rpm glibc-extra-2.31-9.6.1.s390x.rpm glibc-locale-2.31-9.6.1.s390x.rpm glibc-locale-base-2.31-9.6.1.s390x.rpm glibc-profile-2.31-9.6.1.s390x.rpm glibc-utils-2.31-9.6.1.s390x.rpm nscd-2.31-9.6.1.s390x.rpm glibc-2.31-9.6.1.ppc64le.rpm glibc-devel-2.31-9.6.1.ppc64le.rpm glibc-devel-static-2.31-9.6.1.ppc64le.rpm glibc-extra-2.31-9.6.1.ppc64le.rpm glibc-locale-2.31-9.6.1.ppc64le.rpm glibc-locale-base-2.31-9.6.1.ppc64le.rpm glibc-profile-2.31-9.6.1.ppc64le.rpm glibc-utils-2.31-9.6.1.ppc64le.rpm nscd-2.31-9.6.1.ppc64le.rpm glibc-2.31-9.6.1.aarch64.rpm glibc-devel-2.31-9.6.1.aarch64.rpm glibc-devel-static-2.31-9.6.1.aarch64.rpm glibc-extra-2.31-9.6.1.aarch64.rpm glibc-locale-2.31-9.6.1.aarch64.rpm glibc-locale-base-2.31-9.6.1.aarch64.rpm glibc-profile-2.31-9.6.1.aarch64.rpm glibc-utils-2.31-9.6.1.aarch64.rpm nscd-2.31-9.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4135 moderate SUSE Updates openSUSE-SLE 15.3 bluez was updated to fix the following issue: - The bluez-deprecated package is readded to the Basesystem module as it was removed unexpectedly. In future SPs it might move to the Legacy module. (bsc#1192151) bluez-5.55-3.8.1.src.rpm bluez-5.55-3.8.1.x86_64.rpm bluez-auto-enable-devices-5.55-3.8.1.noarch.rpm bluez-cups-5.55-3.8.1.x86_64.rpm bluez-deprecated-5.55-3.8.1.x86_64.rpm bluez-devel-32bit-5.55-3.8.1.x86_64.rpm bluez-devel-5.55-3.8.1.x86_64.rpm bluez-test-5.55-3.8.1.x86_64.rpm libbluetooth3-32bit-5.55-3.8.1.x86_64.rpm libbluetooth3-5.55-3.8.1.x86_64.rpm bluez-5.55-3.8.1.s390x.rpm bluez-cups-5.55-3.8.1.s390x.rpm bluez-deprecated-5.55-3.8.1.s390x.rpm bluez-devel-5.55-3.8.1.s390x.rpm bluez-test-5.55-3.8.1.s390x.rpm libbluetooth3-5.55-3.8.1.s390x.rpm bluez-5.55-3.8.1.ppc64le.rpm bluez-cups-5.55-3.8.1.ppc64le.rpm bluez-deprecated-5.55-3.8.1.ppc64le.rpm bluez-devel-5.55-3.8.1.ppc64le.rpm bluez-test-5.55-3.8.1.ppc64le.rpm libbluetooth3-5.55-3.8.1.ppc64le.rpm bluez-5.55-3.8.1.aarch64.rpm bluez-cups-5.55-3.8.1.aarch64.rpm bluez-deprecated-5.55-3.8.1.aarch64.rpm bluez-devel-5.55-3.8.1.aarch64.rpm bluez-test-5.55-3.8.1.aarch64.rpm libbluetooth3-5.55-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3876 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573) You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0) - CVE-2021-0941: In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045). - CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in list_devices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAP_SYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781). - CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790) - CVE-2021-34981: Fixed file refcounting in cmtp when cmtp_attach_device fails (bsc#1191961). - CVE-2021-37159: hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601). - CVE-2021-3772: Fixed sctp vtag check in sctp_sf_ootb (bsc#1190351). - CVE-2021-3655: Missing size validations on inbound SCTP packets may have allowed the kernel to read uninitialized memory (bnc#1188563). - CVE-2021-33033: The Linux kernel has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads to writing an arbitrary value (bnc#1186109 bnc#1186390 bnc#1188876). - CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067). - CVE-2021-42739: The firewire subsystem in the Linux kernel has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bnc#1184673). - CVE-2021-3542: Fixed heap buffer overflow in firedtv driver (bsc#1186063). - CVE-2018-13405: The inode_init_owner function in fs/inode.c in the Linux kernel allowed local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID (bnc#1100416 bnc#1129735). - CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349). - CVE-2021-34556: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack (bnc#1188983). - CVE-2021-35477: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation did not necessarily occur before a store operation that has an attacker-controlled value (bnc#1188985). - CVE-2021-42252: An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes (bnc#1190479). - CVE-2021-41864: prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317). - CVE-2021-42008: The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access (bnc#1191315). - CVE-2021-3759: Unaccounted ipc objects could have lead to breaking memcg limits and DoS attacks (bsc#1190115). - CVE-2020-3702: Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic (bnc#1191193). - CVE-2021-3752: Fixed a use after free vulnerability in the bluetooth module. (bsc#1190023) - CVE-2021-40490: A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel (bnc#1190159 bnc#1192775) - CVE-2021-3744: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1189884) - CVE-2021-3764: Fixed a bug which could allows attackers to cause a denial of service. (bsc#1190534) - CVE-2020-12770: An issue was discovered in the Linux kernel sg_write lacks an sg_remove_request call in a certain failure case, aka CID-83c6f2390040 (bnc#1171420). - CVE-2021-3640: Fixed a Use-After-Free vulnerability in function sco_sock_sendmsg() in the bluetooth stack (bsc#1188172). - CVE-2019-3900: An infinite loop issue was found in the vhost_net kernel module, while handling incoming packets in handle_rx(). It could occur if one end sends packets faster than the other end can process them. A guest user, maybe remote one, could use this flaw to stall the vhost_net kernel thread, resulting in a DoS scenario (bnc#1133374). - CVE-2019-3874: The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. (bnc#1129898). - CVE-2018-9517: In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. (bnc#1108488). - CVE-2021-38160: Data corruption or loss could be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size in drivers/char/virtio_console.c (bsc#1190117) - CVE-2021-3753: Fixed race out-of-bounds in virtual terminal handling (bsc#1190025). - CVE-2021-3732: Mounting overlayfs inside an unprivileged user namespace can reveal files (bsc#1189706). - CVE-2021-3653: A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7 (bnc#1189399). - CVE-2021-3656: Missing validation of the the `virt_ext` VMCB field and allows a malicious L1 guest to disable both VMLOAD/VMSAVE intercepts and VLS for the L2 guest (bsc#1189400). - CVE-2021-38204: drivers/usb/host/max3421-hcd.c allowed physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations (bnc#1189291). - CVE-2021-3679: A lack of CPU resource in the tracing module functionality was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causing denial of service (bnc#1189057). - CVE-2020-4788: IBM Power9 (AIX 7.1, 7.2, and VIOS 3.1) processors could allow a local user to obtain sensitive information from the data in the L1 cache under extenuating circumstances. IBM X-Force ID: 189296 (bnc#0 bnc#1177666 bnc#1181158). - CVE-2021-3659: Fixed a NULL pointer dereference in llsec_key_alloc() in net/mac802154/llsec.c (bsc#1188876). - CVE-2020-0429: In l2tp_session_delete and related functions of l2tp_core.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1176724). - CVE-2021-37576: arch/powerpc/kvm/book3s_rtas.c on the powerpc platform allowed KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e (bnc#1188838 bnc#1190276). - CVE-2021-22543: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while still accessible by the VMM and guest. This allowed users with the ability to start and control a VM to read/write random pages of memory and can result in local privilege escalation (bnc#1186482 bnc#1190276). - CVE-2021-33909: fs/seq_file.c did not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05 (bnc#1188062 bnc#1188063). The following non-security bugs were fixed: - Add arch-dependent support markers in supported.conf (bsc#1186672) - Add the support for kernel-FLAVOR-optional subpackage (jsc#SLE-11796) - bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22913) - bpf: Disallow unprivileged bpf by default (jsc#SLE-22913). - ceph: take snap_empty_lock atomically with snaprealm refcount change (bsc#1191888). - config: disable unprivileged BPF by default (jsc#SLE-22913) - cpufreq: intel_pstate: Add Icelake servers support in no-HWP mode (bsc#1185758,bsc#1192400). - drm: fix spectre issue in vmw_execbuf_ioctl (bsc#1192802). - ftrace: Fix scripts/recordmcount.pl due to new binutils (bsc#1192267). - gigaset: fix spectre issue in do_data_b3_req (bsc#1192802). - hisax: fix spectre issues (bsc#1192802). - hv: mana: adjust mana_select_queue to old API (jsc#SLE-18779, bsc#1185726). - hv: mana: remove netdev_lockdep_set_classes usage (jsc#SLE-18779, bsc#1185726). - hv_netvsc: Make netvsc/VF binding check both MAC and serial number (jsc#SLE-18779, bsc#1185726). - hysdn: fix spectre issue in hycapi_send_message (bsc#1192802). - infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802). - infiniband: fix spectre issue in ib_uverbs_write (bsc#1192802). - ipc: remove memcg accounting for sops objects in do_semtimedop() (bsc#1190115). - iwlwifi: fix spectre issue in iwl_dbgfs_update_pm (bsc#1192802). - kernel-binary.spec: Exctract s390 decompression code (jsc#SLE-17042). - kernel-binary.spec: Fix up usrmerge for non-modular kernels. - kernel-binary.spec.in: build-id check requires elfutils. - kernel-binary.spec.in: Regenerate makefile when not using mkmakefile. - kernel-binary.spec: Only use mkmakefile when it exists Linux 5.13 no longer had a mkmakefile script - kernel-binary.spec: Remove obsolete and wrong comment mkmakefile is repleced by echo on newer kernel - kernel-docs.spec.in: Build using an utf-8 locale. Sphinx cannot handle UTF-8 input in non-UTF-8 locale. - media: dvb_ca_en50221: prevent using slot_info for Spectre attacs (bsc#1192802). - media: dvb_ca_en50221: sanity check slot number from userspace (bsc#1192802). - media: wl128x: get rid of a potential spectre issue (bsc#1192802). - memcg: enable accounting for file lock caches (bsc#1190115). - mm/memory.c: do_fault: avoid usage of stale vm_area_struct (bsc#1136513). - mpt3sas: fix spectre issues (bsc#1192802). - net: mana: Add a driver for Microsoft Azure Network Adapter (MANA) (jsc#SLE-18779, bsc#1185726). - net: mana: Add support for EQ sharing (jsc#SLE-18779, bsc#1185726). - net: mana: Add WARN_ON_ONCE in case of CQE read overflow (jsc#SLE-18779, bsc#1185726). - net: mana: Fix a memory leak in an error handling path in (jsc#SLE-18779, bsc#1185726). - net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800). - net: mana: fix PCI_HYPERV dependency (jsc#SLE-18779, bsc#1185726). - net: mana: Move NAPI from EQ to CQ (jsc#SLE-18779, bsc#1185726). - net: mana: Prefer struct_size over open coded arithmetic (jsc#SLE-18779, bsc#1185726). - net: mana: remove redundant initialization of variable err (jsc#SLE-18779, bsc#1185726). - net: mana: Use int to check the return value of mana_gd_poll_cq() (jsc#SLE-18779, bsc#1185726). - net: mana: Use struct_size() in kzalloc() (jsc#SLE-18779, bsc#1185726). - net_sched: cls_route: remove the right filter from hashtable (networking-stable-20_03_28). - net: sched: sch_teql: fix null-pointer dereference (bsc#1190717). - net: sock_diag: Fix spectre v1 gadget in __sock_diag_cmd() (bsc#1192802). - NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628). - objtool: Do not fail on missing symbol table (bsc#1192379). - osst: fix spectre issue in osst_verify_frame (bsc#1192802). - ovl: check whiteout in ovl_create_over_whiteout() (bsc#1189846). - ovl: filter of trusted xattr results in audit (bsc#1189846). - ovl: fix dentry leak in ovl_get_redirect (bsc#1189846). - ovl: initialize error in ovl_copy_xattr (bsc#1189846). - ovl: relax WARN_ON() on rename to self (bsc#1189846). - PCI: hv: Use expected affinity when unmasking IRQ (bsc#1185973). - Revert "memcg: enable accounting for file lock caches (bsc#1190115)." This reverts commit 912b4421a3e9bb9f0ef1aadc64a436666259bd4d. It's effectively upstream commit 3754707bcc3e190e5dadc978d172b61e809cb3bd applied to kernel-source (to avoid proliferation of patches). Make a note in blacklist.conf too. - s390/bpf: Fix 64-bit subtraction of the -0x80000000 constant (bsc#1190601). - s390/bpf: Fix branch shortening during codegen pass (bsc#1190601). - s390/bpf: Fix optimizing out zero-extensions (bsc#1190601). - s390: bpf: implement jitting of BPF_ALU | BPF_ARSH | BPF_* (bsc#1190601). - s390/bpf: Wrap JIT macro parameter usages in parentheses (bsc#1190601). - scripts/git_sort/git_sort.py: add bpf git repo - scripts/git_sort/git_sort.py: Update nvme repositories - scsi: libfc: Fix array index out of bound exception (bsc#1188616). - scsi: lpfc: Fix FLOGI failure due to accessing a freed node (bsc#1191349). - scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349 bsc#1191457). - scsi: lpfc: Keep NDLP reference until after freeing the IOCB after ELS handling (bsc#1191349 bsc#1191457). - scsi: target: avoid using lun_tg_pt_gp after unlock (bsc#1186078). - sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351). - sctp: fully initialize v4 addr in some functions (bsc#1188563). - sysvipc/sem: mitigate semnum index against spectre v1 (bsc#1192802). - target: core: Fix sense key for invalid XCOPY request (bsc#1186078). - Update config files: Add CONFIG_BPF_UNPRIV_DEFAULT_OFF is not set - Use /usr/lib/modules as module dir when usermerge is active in the target distro. - UsrMerge the kernel (boo#1184804) - x86/CPU: Add more Icelake model numbers (bsc#1185758,bsc#1192400). - xfrm: xfrm_state_mtu should return at least 1280 for ipv6 (bsc#1185377). kernel-debug-4.12.14-197.102.2.nosrc.rpm True kernel-debug-base-4.12.14-197.102.2.x86_64.rpm True kernel-default-4.12.14-197.102.2.nosrc.rpm True kernel-kvmsmall-4.12.14-197.102.2.nosrc.rpm True kernel-kvmsmall-base-4.12.14-197.102.2.x86_64.rpm True kernel-vanilla-4.12.14-197.102.2.nosrc.rpm True kernel-vanilla-4.12.14-197.102.2.x86_64.rpm True kernel-vanilla-base-4.12.14-197.102.2.x86_64.rpm True kernel-vanilla-devel-4.12.14-197.102.2.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.102.2.x86_64.rpm True kernel-default-man-4.12.14-197.102.2.s390x.rpm True kernel-vanilla-4.12.14-197.102.2.s390x.rpm True kernel-vanilla-base-4.12.14-197.102.2.s390x.rpm True kernel-vanilla-devel-4.12.14-197.102.2.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.102.2.s390x.rpm True kernel-zfcpdump-4.12.14-197.102.2.nosrc.rpm True kernel-zfcpdump-man-4.12.14-197.102.2.s390x.rpm True kernel-debug-base-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-base-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-devel-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.102.2.ppc64le.rpm True kernel-vanilla-4.12.14-197.102.2.aarch64.rpm True kernel-vanilla-base-4.12.14-197.102.2.aarch64.rpm True kernel-vanilla-devel-4.12.14-197.102.2.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.102.2.aarch64.rpm True openSUSE-SLE-15.3-2021-3961 moderate SUSE Updates openSUSE-SLE 15.3 This update for dnsmasq fixes the following issues: - Fix a segfault when re-reading an empty resolv.conf (bsc#1192529) dnsmasq-2.86-7.17.1.src.rpm dnsmasq-2.86-7.17.1.x86_64.rpm dnsmasq-utils-2.86-7.17.1.x86_64.rpm dnsmasq-2.86-7.17.1.s390x.rpm dnsmasq-utils-2.86-7.17.1.s390x.rpm dnsmasq-2.86-7.17.1.ppc64le.rpm dnsmasq-utils-2.86-7.17.1.ppc64le.rpm dnsmasq-2.86-7.17.1.aarch64.rpm dnsmasq-utils-2.86-7.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-4009 low SUSE Updates openSUSE-SLE 15.3 This update for systemd-rpm-macros fixes the following issues: - Introduce rpm macro %_systemd_util_dir systemd-rpm-macros-9-7.21.1.noarch.rpm systemd-rpm-macros-9-7.21.1.src.rpm openSUSE-SLE-15.3-2021-4204 moderate SUSE Updates openSUSE-SLE 15.3 This update for pptp fixes the following issues: - Fix issue when connecting to Microtic routers (bsc#1191717) - Remove UID related output from routing because not needed and prompts error (bsc#1131960) - Prevent pptpsetup creating world-readable peers file - Allow setting up passwords with quotes and trailing spaces - Fix tunnel file generation to make sure it can be used by a non-root user - Fix a memory leak in pqueue - Fix read and writes beyond allocated memory - Fix Use-After-Free in call close request handler - Allow missing window value to be specified in command line instead of being hardcoded - Randomise call-id to allow connecting with simultaneous pptp sessions - Fix file descriptor in call to ttyname. Resulting error was a common message: "pptp: GRE-to-PPP gateway on (null)" pptp-1.10.0-3.3.1.src.rpm pptp-1.10.0-3.3.1.x86_64.rpm pptp-1.10.0-3.3.1.s390x.rpm pptp-1.10.0-3.3.1.ppc64le.rpm pptp-1.10.0-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3950 important SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issues: - CVE-2021-41617: Fixed privilege escalation when AuthorizedKeysCommand/AuthorizedPrincipalsCommand are configured (bsc#1190975). openssh-8.4p1-3.6.1.src.rpm openssh-8.4p1-3.6.1.x86_64.rpm openssh-askpass-gnome-8.4p1-3.6.1.src.rpm openssh-askpass-gnome-8.4p1-3.6.1.x86_64.rpm openssh-cavs-8.4p1-3.6.1.x86_64.rpm openssh-clients-8.4p1-3.6.1.x86_64.rpm openssh-common-8.4p1-3.6.1.x86_64.rpm openssh-fips-8.4p1-3.6.1.x86_64.rpm openssh-helpers-8.4p1-3.6.1.x86_64.rpm openssh-server-8.4p1-3.6.1.x86_64.rpm openssh-8.4p1-3.6.1.s390x.rpm openssh-askpass-gnome-8.4p1-3.6.1.s390x.rpm openssh-cavs-8.4p1-3.6.1.s390x.rpm openssh-clients-8.4p1-3.6.1.s390x.rpm openssh-common-8.4p1-3.6.1.s390x.rpm openssh-fips-8.4p1-3.6.1.s390x.rpm openssh-helpers-8.4p1-3.6.1.s390x.rpm openssh-server-8.4p1-3.6.1.s390x.rpm openssh-8.4p1-3.6.1.ppc64le.rpm openssh-askpass-gnome-8.4p1-3.6.1.ppc64le.rpm openssh-cavs-8.4p1-3.6.1.ppc64le.rpm openssh-clients-8.4p1-3.6.1.ppc64le.rpm openssh-common-8.4p1-3.6.1.ppc64le.rpm openssh-fips-8.4p1-3.6.1.ppc64le.rpm openssh-helpers-8.4p1-3.6.1.ppc64le.rpm openssh-server-8.4p1-3.6.1.ppc64le.rpm openssh-8.4p1-3.6.1.aarch64.rpm openssh-askpass-gnome-8.4p1-3.6.1.aarch64.rpm openssh-cavs-8.4p1-3.6.1.aarch64.rpm openssh-clients-8.4p1-3.6.1.aarch64.rpm openssh-common-8.4p1-3.6.1.aarch64.rpm openssh-fips-8.4p1-3.6.1.aarch64.rpm openssh-helpers-8.4p1-3.6.1.aarch64.rpm openssh-server-8.4p1-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4070 important SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - CVE-2021-4008: Fixed Privilege Escalation Vulnerability via Out-Of-Bounds Access in SProcRenderCompositeGlyphs (bsc#1193030). xorg-x11-server-1.20.3-22.5.39.1.src.rpm xorg-x11-server-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.39.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.39.1.s390x.rpm xorg-x11-server-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.39.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.39.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.39.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.39.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.39.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-3940 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2021-22959: Fixed HTTP Request Smuggling due to spaced in headers (bsc#1191601). - CVE-2021-22960: Fixed HTTP Request Smuggling when parsing the body (bsc#1191602). - CVE-2021-37701: Fixed arbitrary file creation and overwrite in nodejs-tar (bsc#1190057). - CVE-2021-37712: Fixed arbitrary file creation and overwrite in nodejs-tar (bsc#1190056). - CVE-2021-37713: Fixed arbitrary code execution and file creation and overwrite in nodejs-tar (bsc#1190055). - CVE-2021-39134: Fixed symling following vulnerability in nodejs-arborist (bsc#1190054). - CVE-2021-39135: Fixed symling following vulnerability in nodejs-arborist (bsc#1190053). nodejs12-12.22.7-4.22.1.src.rpm nodejs12-12.22.7-4.22.1.x86_64.rpm nodejs12-devel-12.22.7-4.22.1.x86_64.rpm nodejs12-docs-12.22.7-4.22.1.noarch.rpm npm12-12.22.7-4.22.1.x86_64.rpm nodejs12-12.22.7-4.22.1.s390x.rpm nodejs12-devel-12.22.7-4.22.1.s390x.rpm npm12-12.22.7-4.22.1.s390x.rpm nodejs12-12.22.7-4.22.1.ppc64le.rpm nodejs12-devel-12.22.7-4.22.1.ppc64le.rpm npm12-12.22.7-4.22.1.ppc64le.rpm nodejs12-12.22.7-4.22.1.aarch64.rpm nodejs12-devel-12.22.7-4.22.1.aarch64.rpm npm12-12.22.7-4.22.1.aarch64.rpm openSUSE-SLE-15.3-2021-3945 important SUSE Updates openSUSE-SLE 15.3 This update for python-Babel fixes the following issues: - CVE-2021-42771: Fixed relative path traversal that may lead to arbitrary locale files loading and arbitrary code execution (bsc#1185768). python-Babel-2.8.0-3.3.1.src.rpm python-Babel-doc-2.8.0-3.3.1.noarch.rpm python-Babel-doc-2.8.0-3.3.1.src.rpm python2-Babel-2.8.0-3.3.1.noarch.rpm python3-Babel-2.8.0-3.3.1.noarch.rpm python3-Babel-doc-2.8.0-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3942 moderate SUSE Updates openSUSE-SLE 15.3 This update for brotli fixes the following issues: - CVE-2020-8927: Fixed integer overflow when input chunk is larger than 2GiB (bsc#1175825). brotli-1.0.7-3.3.1.src.rpm brotli-1.0.7-3.3.1.x86_64.rpm libbrotli-devel-1.0.7-3.3.1.x86_64.rpm libbrotlicommon1-1.0.7-3.3.1.x86_64.rpm libbrotlicommon1-32bit-1.0.7-3.3.1.x86_64.rpm libbrotlidec1-1.0.7-3.3.1.x86_64.rpm libbrotlidec1-32bit-1.0.7-3.3.1.x86_64.rpm libbrotlienc1-1.0.7-3.3.1.x86_64.rpm libbrotlienc1-32bit-1.0.7-3.3.1.x86_64.rpm brotli-1.0.7-3.3.1.s390x.rpm libbrotli-devel-1.0.7-3.3.1.s390x.rpm libbrotlicommon1-1.0.7-3.3.1.s390x.rpm libbrotlidec1-1.0.7-3.3.1.s390x.rpm libbrotlienc1-1.0.7-3.3.1.s390x.rpm brotli-1.0.7-3.3.1.ppc64le.rpm libbrotli-devel-1.0.7-3.3.1.ppc64le.rpm libbrotlicommon1-1.0.7-3.3.1.ppc64le.rpm libbrotlidec1-1.0.7-3.3.1.ppc64le.rpm libbrotlienc1-1.0.7-3.3.1.ppc64le.rpm brotli-1.0.7-3.3.1.aarch64.rpm libbrotli-devel-1.0.7-3.3.1.aarch64.rpm libbrotlicommon1-1.0.7-3.3.1.aarch64.rpm libbrotlidec1-1.0.7-3.3.1.aarch64.rpm libbrotlienc1-1.0.7-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4134 moderate SUSE Updates openSUSE-SLE 15.3 This update for open-lldp fixes the following issues: Backport fixes: - agent: reset frame status on message delete - Avoiding null pointer dereference liblldp_clif1-1.1+44.0f781b4162d3-3.3.1.x86_64.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.src.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.x86_64.rpm open-lldp-devel-1.1+44.0f781b4162d3-3.3.1.x86_64.rpm liblldp_clif1-1.1+44.0f781b4162d3-3.3.1.s390x.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.s390x.rpm open-lldp-devel-1.1+44.0f781b4162d3-3.3.1.s390x.rpm liblldp_clif1-1.1+44.0f781b4162d3-3.3.1.ppc64le.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.ppc64le.rpm open-lldp-devel-1.1+44.0f781b4162d3-3.3.1.ppc64le.rpm liblldp_clif1-1.1+44.0f781b4162d3-3.3.1.aarch64.rpm open-lldp-1.1+44.0f781b4162d3-3.3.1.aarch64.rpm open-lldp-devel-1.1+44.0f781b4162d3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3991 important SUSE Updates openSUSE-SLE 15.3 This update for python-boto3 fixes the following issues: -Disables Py 2 build for SLE 15 -Py 2 is considered legacy with limited support. -Update to version 1.18.7 (bsc#1189649) - S3 Access Point aliases can be used anywhere you use S3 bucket names to access data in S3 - Adds support for AnalyzeExpense, a new API to extract relevant data such as contact information, items purchased, and vendor name, from almost any invoice or receipt without the need for any templates or configuration. - Documentation-only update links - Documentation updates for SSO API Ref. - Update cloudwatch client to latest version - CloudWatch Synthetics now supports visual testing in its canaries. - Added product name, company name, and Region fields for security findings. Added details objects for RDS event subscriptions and AWS ECS services. Added fields to the details for AWS Elasticsearch domains. - Update to documentation to reapply missing change to SSM uninstall switch default value and improve description. - Add on-premise access type support for endpoints - MediaLive now supports passing through style data on WebVTT caption outputs. - This SDK release adds two new features: 1) Output to Native JDBC destinations and 2) Adding configurations to profile jobs - Update elbv2 client to latest version - Documentation updates for Amazon S3-control - This release allows customers to assign prefixes to their elastic network interface and to reserve IP blocks in their subnet CIDRs. These reserved blocks can be used to assign prefixes to elastic network interfaces or be excluded from auto-assignment. - Amazon QLDB now supports ledgers encrypted with customer managed KMS keys. Changes in CreateLedger, UpdateLedger and DescribeLedger APIs to support the changes. - Amazon Kendra now provides a data source connector for Amazon WorkDocs. - Documentation updates for AWS Proton - Documentation updates for AWS Identity and Access Management (IAM). - Adds the OriginalSnapshotCreateTime field to the DBSnapshot response object. This field timestamps the underlying data of a snapshot and doesn't change when the snapshot is copied. - Update elbv2 client to latest version - New ResourceConflictException error code for PutFunctionEventInvokeConfig, UpdateFunctionEventInvokeConfig, and DeleteFunctionEventInvokeConfig operations. - AWS CodeBuild now allows you to set the access permissions for build artifacts, project artifacts, and log files that are uploaded to an Amazon S3 bucket that is owned by another account. - My AWS Service (placeholder) -Making minProvisionedTPS an optional parameter when creating a campaign. If not provided, it defaults to 1. - Update emr client to latest version - Documentation updates for Compute Optimizer - Added idempotency to the CreateVolume API using the ClientToken request parameter - Documentation updates for reversal of default value for additional instance configuration SSM switch, plus improved descriptions for semantic versioning. - Documentation updates for directconnect - In the Health API, the maximum number of entities for the EventFilter and EntityFilter data types has changed from 100 to 99. This change is related to an internal optimization of the AWS Health service. - This release allows customers to create a new version of WorldTemplates with support for Doors. - Add five new API operations: UpdateGeofenceCollection, UpdateMap, UpdatePlaceIndex, UpdateRouteCalculator, UpdateTracker. - Updated DescribeManagedEndpoint and ListManagedEndpoints to return failureReason and stateDetails in API response. - Documentation update for AppIntegrations Service - This SDK release adds Account Status as one of the attributes in Account API response - This release relaxes the S3 URL character restrictions in AWS Audit Manager. Regex patterns have been updated for the following attributes: s3RelativePath, destination, and s3ResourcePath. 'AWS' terms have also been replaced with entities to align with China Rebrand documentation efforts. - This feature enables customers to specify weekly recurring time window(s) for scheduled events that reboot, stop or terminate EC2 instances. - Documentation updates for cognito-idp - Documentation updates for support of awsvpc mode on Windows. Lex now supports the en-IN locale - Update the default endpoint for the APIs used to manage asset models, assets, gateways, tags, and account configurations. If you have firewalls with strict egress rules, configure the rules to grant you access to api.iotsitewise.[region].amazonaws.com or api.iotsitewise.[cn-region].amazonaws.com.cn. - Drop support for Python 2.7 - Dropped support for Python 2.7 - Release of feature needed for ECA-Endpoint settings. This allows customer to delete a field in endpoint settings by using --exact-settings flag in modify-endpoint api. This also displays default values for certain required fields of endpoint settings in describe-endpoint-settings api. - Add support for Event Driven Workflows - Added support for RSA 3072 SSL certificate import - General availability for Amazon HealthLake. StartFHIRImportJob and StartFHIRExportJob APIs now require AWS KMS parameter. For more information, see the Amazon HealthLake Documentation https://docs.aws.amazon.com/healthlake/index.html. - This update provides support for Well- Architected API users to mark answer choices as not applicable. - This release adds support for the Amazon Lightsail object storage service, which allows you to create buckets and store objects. - Added Sign in with Apple OAuth provider. - Release new APIs to support new Redshift feature -Authentication Profile - Changes to OpsCenter APIs to support a new feature, operational insights. - Customers can now migrate bots built with Lex V1 APIs to V2 APIs. This release adds APIs to initiate and manage the migration of a bot. - This release adds a new filed named awsLogicalDeviceId that it displays the AWS Direct Connect endpoint which terminates a physical connection's BGP Sessions. - Documentation updates for api.pricing - Documentation updates for Wesley to support the parallel node upgrade feature. - Amazon Kendra now supports Principal Store - Releasing new APIs related to Tuning steps in model building pipelines. - This release adds support for ML Explainability to display model variable importance value in Amazon Fraud Detector. - MediaConvert now supports color, style and position information passthrough from 608 and Teletext to SRT and WebVTT subtitles. MediaConvert now also supports Automatic QVBR quality levels for QVBR RateControlMode. - Added waiters for EKS FargateProfiles. - Added property filters for listOutposts - AWS Firewall Manager now supports route table monitoring, and provides remediation action recommendations to security administrators for AWS Network Firewall policies with misconfigured routes. - Add ListAlerts for Channel, Program, Source Location, and VOD Source to return alerts for resources. - Add AnomalyReportedTimeRange field to include open and close time of anomalies. - Updated description for CreateContactChannel contactId. - Documentation updates for AWS Identity and Access Management (IAM). - Documentation updates for AWS Security Token Service. - adds support for modifying the maintenance window for brokers. - Amazon CloudFront now provides two new APIs, ListConflictingAliases and AssociateAlias, that help locate and move Alternate Domain Names (CNAMEs) if you encounter the CNAMEAlreadyExists error code. - Releasing new APIs for AWS Chime MediaCapturePipeline - This release add storage configuration APIs for AWS IoT SiteWise. - Adding support for oplocks for SMB file shares, S3 Access Point and S3 Private Link for all file shares and IP address support for file system associations - This release adds resource ids and tagging support for VPC security group rules. - Added support for AmazonMQRabbitMQ as an event source. Added support for VIRTUAL_HOST as SourceAccessType for streams event source mappings. - Adds support for specifying parameters to customize components for recipes. Expands configuration of the Amazon EC2 instances that are used for building and testing images, including the ability to specify commands to run on launch, and more control over installation and removal of the SSM agent. - Bug fix: Remove not supported EBS encryption type "NONE" - Adding new error code UnsupportedAddonModification for Addons in EKS - Sensitive data findings in Amazon Macie now include enhanced location data for JSON and JSON Lines files - Documentation updates for Amazon SNS. - Update elbv2 client to latest version - This release removes network-insights-boundary - SageMaker model registry now supports up to 5 containers and associated environment variables. - Documentation updates for Amazon SQS. - Adding a new reserved field to support future infrastructure improvements for Amazon EC2 Fleet. - Amazon EC2 Auto Scaling infrastructure improvements and optimizations. - Amazon Kendra Enterprise Edition now offered in smaller more granular units to enable customers with smaller workloads. Virtual Storage Capacity units now offer scaling in increments of 100,000 documents (up to 30GB) per unit and Virtual Query Units offer scaling increments of 8,000 queries per day. - Add support for Widevine DRM on CMAF packaging configurations. Both Widevine and FairPlay DRMs can now be used simultaneously, with CBCS encryption. - Fixes the tag key length range to 128 chars, tag value length to 256 chars; Adds support for UTF-8 chars for contact and channel names, Allows users to unset name in UpdateContact API; Adds throttling exception to StopEngagement API, validation exception to APIs UntagResource, ListTagsForResource - Adds support for the output of job results to the AWS Glue Data Catalog. - AWS Cloud Map now allows configuring the TTL of the SOA record for a hosted zone to control the negative caching for new services. - Sagemaker Neo now supports running compilation jobs using customer's Amazon VPC - Add JSON Support for Glue Schema Registry - Added InvalidClusterStateFault to the DisableLogging API, thrown when calling the API on a non available cluster. - MediaConvert adds support for HDR10+, ProRes 4444, and XAVC outputs, ADM/DAMF support for Dolby Atmos ingest, and alternative audio and WebVTT caption ingest via HLS inputs. MediaConvert also now supports creating trickplay outputs for Roku devices for HLS, CMAF, and DASH output groups. - Added waiters for template registration, service operations, and environment deployments. - Imports an existing backend authentication resource. - AWS Snow Family customers can remotely monitor and operate their connected AWS Snowcone devices. AWS Snowball Edge Storage Optimized customers can now import and export their data using NFS. - Adds EventIngestionUrl field to MediaPlacement - Minor update to AWS Cloud9 documentation to allow correct parsing of outputted text - Released Amazon Connect quick connects management API for general availability (GA). For more information, see https://docs.aws.amazon.com/connect/latest/APIReference/Welcome.html - Add support for encryption in transit to DAX clusters. - Added support for 15 new text transformation. - Amazon Kendra now supports SharePoint 2013 and SharePoint 2016 when using a SharePoint data source. - Added new resource details for ECS clusters and ECS task definitions. Added additional information for S3 buckets, Elasticsearch domains, and API Gateway V2 stages. - Customers can successfully use legacy clients with Transfer Family endpoints enabled for FTPS and FTP behind routers, firewalls, and load balancers by providing a Custom IP address used for data channel communication. - BucketOwnerAccess is currently not supported - DocumentDB documentation-only edits - Updated documentation for CreateEnvironmentEC2 to explain that because Amazon Linux AMI has ended standard support as of December 31, 2020, we recommend you choose Amazon Linux 2--which includes long term support through 2023--for new AWS Cloud9 environments. - Releasing new APIs for AWS QuickSight Folders - Update GetChannelSchedule to return information on ad breaks. - Amazon CloudFront adds support for a new security policy, TLSv1.2_2021. - AWS License Manager now allows license administrators and end users to communicate to each other by setting custom status reasons when updating the status on a granted license. - This release adds support for provisioning your own IP (BYOIP) range in multiple regions. This feature is in limited Preview for this release. Contact your account manager if you are interested in this feature. - Added the following parameters to ECS targets: CapacityProviderStrategy, EnableECSManagedTags, EnableExecuteCommand, PlacementConstraints, PlacementStrategy, PropagateTags, ReferenceId, and Tags - This release replaces previous generation CloudSearch instances with equivalent new instances that provide better stability at the same price. - Adds support for S3 based full repository analysis and changed lines scan. - CloudFormation registry service now supports 3rd party public type sharing - Amazon Kendra now supports the indexing of web documents for search through the web crawler. - Enable ml.g4dn instance types for SageMaker Batch Transform and SageMaker Processing - This release enables Database Activity Streams for RDS Oracle - This release adds a new API UpdateSipMediaApplicationCall, to update an in-progress call for SipMediaApplication. - Adds support for multi-Region keys - This release adds support for VLAN-tagged network traffic over an Elastic Network Interface (ENI). This feature is in limited Preview for this release. Contact your account manager if you are interested in this feature. - This release enables fast cloning in Aurora Serverless. You can now clone between Aurora Serverless clusters and Aurora Provisioned clusters. - Adds AWS Secrets Manager Access Token Authentication for Source Locations - Redshift Data API service now supports SQL parameterization. - This release adds new sets of APIs: AssociateBot, DisassociateBot, and ListBots. You can use it to programmatically add an Amazon Lex bot or Amazon Lex V2 bot on the specified Amazon Connect instance - EC2 M5n, M5dn, R5n, R5dn metal instances with 100 Gbps network performance and Elastic Fabric Adapter (EFA) for ultra low latency - Update lexv2-runtime client to latest version - Update lexv2-models client to latest version - Added "LEARNING" status for anomaly detector and updated description for "Offset" parameter in MetricSet APIs. - Adds support for data store partitions. - We have verified the APIs being released here and are ready to release - Amazon EC2 adds new AMI property to flag outdated AMIs - AWS MediaLive now supports OCR-based conversion of DVB-Sub and SCTE-27 image-based source captions to WebVTT, and supports ingest of ad avail decorations in HLS input manifests. - When you enable source failover, you can now designate one of two sources as the primary source. You can choose between two failover modes to prevent any disruption to the video stream. Merge combines the sources into a single stream. Failover allows switching between a primary and a backup stream. - Using SageMaker Edge Manager with AWS IoT Greengrass v2 simplifies accessing, maintaining, and deploying models to your devices. You can now create deployable IoT Greengrass components during edge packaging jobs. You can choose to create a device fleet with or without creating an AWS IoT role alias. - AppMesh now supports additional routing capabilities in match and rewrites for Gateway Routes and Routes. Additionally, App Mesh also supports specifying DNS Response Types in Virtual Nodes. - Added InvalidClusterStateFault to the ModifyAquaConfiguration API, thrown when calling the API on a non available cluster. - This SDK release adds support for UpdateAccount API to allow users to update their default license on Chime account. - This release adds a new optional parameter connectivityType (public, private) for the CreateNatGateway API. Private NatGateway does not require customers to attach an InternetGateway to the VPC and can be used for communication with other VPCs and on-premise networks. - AWS Resource Access Manager (RAM) is releasing new field isResourceTypeDefault in ListPermissions and GetPermission response, and adding permissionArn parameter to GetResourceShare request to filter by permission attached - Release BatchGetRecord API for AWS SageMaker Feature Store Runtime. - Amazon Cognito now supports targeted sign out through refresh token revocation - Adding MAP_ALL task type support. - This release supports KMS customer-managed Customer Master Keys (CMKs) on member-specific Hyperledger Fabric resources. - Documentation updates for the AWS Transfer Family service. - Support for unstructured text inputs in the items dataset to to automatically extract key information from product/content description as an input when creating solution versions. - This is the initial SDK release for AWS Proton - AWS Kendra now supports checking document status. - This release adds support for auditing end-user access to files, folders, and file shares using Windows event logs, enabling customers to meet their security and compliance needs. - increase max pagesize for List/Search apis - This release of the Amazon Macie API introduces stricter validation of S3 object criteria for classification jobs. - Documentation updates for cognito-idp - AWS SageMaker -Releasing new APIs related to Callback steps in model building pipelines. Adds experiment integration to model building pipelines. - Add SampleSize variable to S3Target to enable s3-sampling feature through API. - Update regex validation in kmsKeyArn and s3 path API parameters for AWS Personalize APIs - Added updateConfig option that allows customers to control upgrade velocity in Managed Node Group. - Documentation updates for RDS: fixing an outdated link to the RDS documentation in DBInstance$DBInstanceStatus - The new GetDimensionKeyDetails action retrieves the attributes of the specified dimension group for a DB instance or data source. - AWS CloudTrail supports data events on new service resources, including Amazon DynamoDB tables and S3 Object Lambda access points. - Add support for automatically setting the H.264 adaptive quantization and GOP B-frame fields. - Documentation updates for Amazon EC2 Auto Scaling - Documentation updates for Amazon QLDB - S3 Inventory now supports Bucket Key Status - Amazon S3 Batch Operations now supports S3 Bucket Keys. - Documentation updates for Route 53 Resolver - Documentation updates for ssm to fix customer reported issue - Added optional field AutoMLOverrideStrategy to CreatePredictor API that allows users to customize AutoML strategy. If provided in CreatePredictor request, this field is visible in DescribePredictor and GetAccuracyMetrics responses. - Update BuildRequires and Requires from setup.py - Update to version 1.17.86 - You can now launch EC2 instances with GP3 volumes when using Auto Scaling groups with Launch Configurations - Documentation updates for Lightsail - Documentation updates for Amazon ECS. - This SDK release adds support for DocDB global clusters. - Documentation updates for AWS Identity and Access Management (IAM). - Introduction of a RETIRED status for devices. - This release adds SMS sandbox in Amazon SNS and the ability to view all configured origination numbers. The SMS sandbox provides a safe environment for sending SMS messages, without risking your reputation as an SMS sender. - Amazon Polly adds new Canadian French voice -Gabrielle. Gabrielle is available as Neural voice only. - Added idempotency to CreateNetworkInterface using the ClientToken parameter. - Added six new public customer logging APIs to allow customers to set/get/reset log levels at resource type and resource id level. The log level set from the APIs will be used to filter log messages that can be emitted to CloudWatch in customer accounts. - Bugfixes -The DiscoverInstances API operation now provides an option to return all instances for health-checked services when there are no healthy instances available. - Allowing dot(.) character in table name for RDS and Redshift as source connector. - Adds support for calculation of routes, resource tagging and customer provided KMS keys. - Added SecurityDescriptorCopyFlags option that allows for control of which components of SMB security descriptors are copied from source to destination objects. - Releasing new APIs for AWS IoT Events Alarms - Introduces support for using our desktop testing service with applications hosted within your Virtual Private Cloud (VPC). - Amazon Kendra now suggests popular queries in order to help guide query typing and help overall accuracy. - IoT SiteWise Monitor Portal API updates to add alarms feature configuration. - Documentation updates for Resource Groups. - Documentation updates for Lightsail - Releasing new APIs for AWS IoT Events Alarms - This release adds LZ4 data compression support to FSx for Lustre to reduce storage consumption of both file system storage and file system backups. - Documentation updates for Amazon SQS for General Availability of high throughput for FIFO queues. - This release removes resource ids and tagging support for VPC security group rules. - Support STANDARD permissions mode in CreateLedger and DescribeLedger. Add UpdateLedgerPermissionsMode to update permissions mode on existing ledgers. - Documentation fix for CloudFront - Add ConflictException to DeleteOutpost, CreateOutpost - Adds scheduler count selection for Environments using Airflow version 2.0.2 or later. - This release adds resource ids and tagging support for VPC security group rules. - The release adds support for registering External instances to your Amazon ECS clusters. - This release enables customers to store CRLs in S3 buckets with Block Public Access enabled. The release adds the S3ObjectAcl parameter to the CreateCertificateAuthority and UpdateCertificateAuthority APIs to allow customers to choose whether their CRL will be publicly available. - AWS Transfer Family customers can now use AWS Managed Active Directory or AD Connector to authenticate their end users, enabling seamless migration of file transfer workflows that rely on AD authentication, without changing end users' credentials or needing a custom authorizer. - This release includes support for a new feature: Job templates for AWS IoT Device Management Jobs. The release includes job templates as a new resource and APIs for managing job templates. - Adds support for Linux device types in WorkspaceAccessProperties - Add new parameters on RegisterUser and UpdateUser APIs to assign or update external ID associated to QuickSight users federated through web identity. - Introduced FindingReasonCodes, PlatformDifferences, DiskResourceUtilization and NetworkResourceUtilization to GetRightsizingRecommendation action - Adds support for 1) additional instance types, 2) additional instance metrics, 3) finding reasons for instance recommendations, and 4) platform differences between a current instance and a recommended instance type. - This release adds support for creating and managing EC2 On-Demand Capacity Reservations on Outposts. - This release provides dimensions and unit support for metric filters. - Update efs client to latest version - Documentation updates for Amazon S3 - Updated attribute statistics in DescribeDatasetImportJob response to support Long values - New PUPPET_API_CRL attribute returned by DescribeServers API; new EngineVersion of 2019 available for Puppet Enterprise servers. - Added new API to stop a solution version creation that is pending or in progress for Amazon Personalize - Update lexv2-models client to latest version - Add ARN based Row Level Security support to CreateDataSet/UpdateDataSet APIs. - Documentation updates for AWS Identity and Access Management (IAM). - Kinesis Data Analytics now allows rapid iteration on Apache Flink stream processing through the Kinesis Data Analytics Studio feature. - Amazon Rekognition Custom Labels adds support for customer managed encryption, using AWS Key Management Service, of image files copied into the service and files written back to the customer. - Add pagination to ListUserTags operation - Update the EKS AddonActive waiter. - With this release, customers can easily use Predictive Scaling as a policy directly through Amazon EC2 Auto Scaling configurations to proactively scale their applications ahead of predicted demand. - Documentation updates for Amazon Lightsail. - Update BuildRequires and Requires from setup.py -Update to version 1.17.75 - Documentation updates for support - AWS App Runner is a service that provides a fast, simple, and cost-effective way to deploy from source code or a container image directly to a scalable and secure web application in the AWS Cloud. - This release enables compute optimizer to support exporting recommendations to Amazon S3 for EBS volumes and Lambda Functions. - Amazon Personalize now supports the ability to optimize a solution for a custom objective in addition to maximizing relevance. - AWS License Manager now supports periodic report generation. - Documentation updates for AWS IoT SiteWise. - Update lexv2-models client to latest version - MediaConnect now supports JPEG XS for AWS Cloud Digital Interface (AWS CDI) uncompressed workflows, allowing you to establish a bridge between your on-premises live video network and the AWS Cloud. - Documentation updates for Amazon A2I Runtime model - APIs for AWS Application Cost Profiler - Neptune support for CopyTagsToSnapshots - AWS IoT Core Device Advisor is fully managed test capability for IoT devices. Device manufacturers can use Device Advisor to test their IoT devices for reliable and secure connectivity with AWS IoT. - Documentation updates for elasticache - Update InputTransformer variable limit from 10 to 100 variables. - Block endpoint resolution of clients configured with S3 pseudo-regions (e.g. aws-global, s3-external-1) that will never resolve to a correct access point endpoint. - This release of the Amazon Macie API adds support for defining run-time, S3 bucket criteria for classification jobs. It also adds resources for querying data about AWS resources that Macie monitors. - Adds support for cold storage. - Updated descriptions to add notes on array lengths. - Updated descriptions of array parameters to add the restrictions on the array and value lengths. - Transcribe Medical now supports identification of PHI entities within transcripts - Text-only updates for bundled documentation feedback tickets -spring 2021. - Add validation to only attempt to connect to FIPS endpoints with a FIPS pseudo-region if the pseudo-region is explicitly known to the SDK. - High Memory virtual instances are powered by Intel Sky Lake CPUs and offer up to 12TB of memory. - AWS Systems Manager Incident Manager enables faster resolution of critical application availability and performance issues, management of contacts and post-incident analysis - Documentation updates for Amazon S3-control - AWS Elemental MediaConvert SDK has added support for Kantar SNAP File Audio Watermarking with a Kantar Watermarking account, and Display Definition Segment(DDS) segment data controls for DVB-Sub caption outputs. - This release contains updates for Amazon ECS. - Documentation updates for CodeArtifact - This release updates create-nodegroup and update-nodegroup-config APIs for adding/updating taints on managed nodegroups. - Add three new optional fields to support filtering and configurable sub-band in WirelessGateway APIs. The filtering is for all the RF region supported. The sub-band configuration is only applicable to LoRa gateways of US915 or AU915 RF region. - This release adds new APIs to associate, disassociate and list related items in SSM OpsCenter; and this release adds DisplayName as a version-level attribute for SSM Documents and introduces two new document types: ProblemAnalysis, ProblemAnalysisTemplate. - Amazon Kinesis Analytics now supports ListApplicationVersions and DescribeApplicationVersion API for Apache Flink applications - Adds paginator to multiple APIs: By default, the paginator allows user to iterate over the results and allows the CLI to return up to 1000 results. - This release adds Tag Based Access Control to AWS Lake Formation service - Enforcing UUID style for parameters that are already in UUID format today. Documentation specifying eventual consistency of lookoutmetrics resources. - Adds tagging support for Connect APIs CreateIntegrationAssociation and CreateUseCase. - Bugfix: Improved input validation for RegisterInstance action, InstanceId field - IAM Access Control for Amazon MSK enables you to create clusters that use IAM to authenticate clients and to allow or deny Apache Kafka actions for those clients. - SSM feature release -ChangeCalendar integration with StateManager. - AWS Snow Family adds APIs for ordering and managing Snow jobs with long term pricing - This release updates the CreateAssessmentFrameworkControlSet and UpdateAssessmentFrameworkControlSet API data types. For both of these data types, the control set name is now a required attribute. - Documentation Updates for Amazon Nimble Studio. - Amazon Kinesis Analytics now supports RollbackApplication for Apache Flink applications to revert the application to the previous running version - Amazon SageMaker Autopilot now provides the ability to automatically deploy the best model to an endpoint - Documentation updates for FinSpace API. - Documentation updates for FinSpaceData API. - Added GetCostEstimation and StartCostEstimation to get the monthly resource usage cost and added ability to view resource health by AWS service name and to search insights be AWS service name. - This release adds the KeyStorageSecurityStandard parameter to the CreateCertificateAuthority API to allow customers to mandate a security standard to which the CA key will be stored within. - Documentation updates for health - This release adds the ability to search for and order international phone numbers for Amazon Chime SIP media applications. - Enable retrying Training and Tuning Jobs that fail with InternalServerError by setting RetryStrategy. - Update FinSpace Data serviceAbbreviation - This is the initial SDK release for the data APIs for Amazon FinSpace. Amazon FinSpace is a data management and analytics application for the financial services industry (FSI). - Update mturk client to latest version - Added new BatchCreateChannelMembership API to support multiple membership creation for channels - This is the initial SDK release for the management APIs for Amazon FinSpace. Amazon FinSpace is a data management and analytics service for the financial services industry (FSI). - Updated ASFF to add the following new resource details objects: AwsEc2NetworkAcl, AwsEc2Subnet, and AwsElasticBeanstalkEnvironment. - Update URL for dataset export job documentation. - Allows user defined names for Changes in a ChangeSet. Users can use ChangeNames to reference properties in another Change within a ChangeSet. This feature allows users to make changes to an entity when the entity identifier is not yet available while constructing the StartChangeSet request. - Added new DeleteResourceTree operation that helps in deleting all the child resources of a given resource including the given resource. - Adds ROS2 Foxy as a supported Robot Software Suite Version and Gazebo 11 as a supported Simulation Software Suite Version - CloudFront now supports CloudFront Functions, a native feature of CloudFront that enables you to write lightweight functions in JavaScript for high-scale, latency-sensitive CDN customizations. - This release introduces GetMatches and MergeProfiles APIs to fetch and merge duplicate profiles - The Amazon Macie API now provides S3 bucket metadata that indicates whether a bucket policy requires server-side encryption of objects when objects are uploaded to the bucket. - Minor text updates for AWS Organizations API Reference - Add support for EphemeralStorage on TaskDefinition and TaskOverride - Increase AppInstanceUserId length to 64 characters - Updated max number of tags that can be attached from 200 to 50. MaxContacts is now an optional parameter for the UpdateQueueMaxContact API. - MediaPackage now offers the option to place your Sequence Parameter Set (SPS), Picture Parameter Set (PPS), and Video Parameter Set (VPS) encoder metadata in every video segment instead of in the init fragment for DASH and CMAF endpoints. - Amazon Nimble Studio is a virtual studio service that empowers visual effects, animation, and interactive content teams to create content securely within a scalable, private cloud service. - AWS IoT SiteWise interpolation API will get interpolated values for an asset property per specified time interval during a period of time. - Add CallAs parameter to GetTemplateSummary to enable use with StackSets delegated administrator integration - This release restricts using backslashes in control, assessment, and framework names. The controlSetName field of the UpdateAssessmentFrameworkControlSet API now allows strings without backslashes. - Adding support for Red Hat Enterprise Linux with HA for Reserved Instances. - Add a new optional field MessageType to support Sidewalk devices in SendDataToWirelessDevice API - Amazon Kinesis Data Analytics now supports custom application maintenance configuration using UpdateApplicationMaintenanceConfiguration API for Apache Flink applications. Customers will have visibility when their application is under maintenance status using 'MAINTENANCE' application status. - Added support for exporting data imported into an Amazon Personalize dataset to a specified data source (Amazon S3 bucket). - Documentation updates for mediaconvert - Include KMS Key Details in Repository Association APIs to enable usage of customer managed KMS Keys. - Adding Kafka Client Auth Related Parameters - This release updates existing Amazon EKS input validation so customers will see an InvalidParameterException instead of a ParamValidationError when they enter 0 for minSize and/or desiredSize. It also adds LaunchTemplate information to update responses and a new "CUSTOM" value for AMIType. - Add support for Widevine DRM on CMAF origin endpoints. Both Widevine and FairPlay DRMs can now be used simultaneously, with CBCS encryption. - Amazon SNS adds two new attributes, TemplateId and EntityId, for using sender IDs to send SMS messages to destinations in India. - This release adds EstimatedTimeRemaining minutes field to the DescribeDatasetImportJob, DescribePredictor, DescribeForecast API response which denotes the time remaining to complete the job IN_PROGRESS. - Replaced the term "master" with "administrator". Added new actions to replace AcceptInvitation, GetMasterAccount, and DisassociateFromMasterAccount. In Member, replaced MasterId with AdministratorId. - Documentation updates for cognito-idp - This release introduces log delivery of Redis slow log from Amazon ElastiCache. - Added parameters to track the data volume in bytes for a member account. Deprecated the existing parameters that tracked the volume as a percentage of the allowed volume for a behavior graph. Changes reflected in MemberDetails object. - Add operations: AddPartner, DescribePartners, DeletePartner, and UpdatePartnerStatus to support tracking integration status with data partners. - Support new S3 Recording Config allowing customers to write downlink data directly to S3. - Amazon Kendra now enables users to override index-level boosting configurations for each query. - Added support for creating and updating stack sets with self-managed permissions from templates that reference macros. - Added support for Amazon SageMaker in Machine Learning Savings Plans - Adding support for Sagemaker savings plans in GetSavingsPlansPurchaseRecommendation API - STS now supports assume role with Web Identity using JWT token length upto 20000 characters - AWS DMS added support of TLS for Kafka endpoint. Added Describe endpoint setting API for DMS endpoints. - For flows that use Listener protocols, you can now easily locate an output's outbound IP address for a private internet. Additionally, MediaConnect now supports the Waiters feature that makes it easier to poll for the status of a flow until it reaches its desired state. - Add exception for DeleteRemediationConfiguration and DescribeRemediationExecutionStatus - Documentation updates for route53 - This release adds tagging support for CodeStar Connections Host resources - Documentation updates for Amazon Lightsail. - This release adds the SourceIdentity parameter that can be set when assuming a role. - The InferICD10CM API now returns TIME_EXPRESSION entities that refer to medical conditions. - Clarify that enabling or disabling automated backups causes a brief downtime, not an outage. - Added support to enable AQUA in Amazon Redshift clusters. - Support for cross-region and cross-account backup copies - AWS CodeBuild now allows you to set the access permissions for build artifacts, project artifacts, and log files that are uploaded to an Amazon S3 bucket that is owned by another account. - Add support for case sensitive table level restore - Add paginator support to DescribeStoreImageTasks and update documentation. - CreateProtection now throws InvalidParameterException instead of InternalErrorException when system tags (tag with keys prefixed with "aws:") are passed in. - This release introduces support for Amazon Lookout for Equipment. - Documentation updates for archived.kinesisvideo - This release allows RoboMaker customers to specify custom tools to run with their simulation job - This release provides support for image updates - Documentation updates for AWS RAM resource sharing - Documentation updates for Put-Integration API - Amazon EC2 Auto Scaling announces Warm Pools that help applications to scale out faster by pre-initializing EC2 instances and save money by requiring fewer continuously running instances - File Gateway APIs now support FSx for Windows as a cloud storage. - IAM Access Analyzer now analyzes your CloudTrail events to identify actions and services that have been used by an IAM entity (user or role) and generates an IAM policy that is based on that activity. - This release adds tagging support for all AWS ElastiCache resources except Global Replication Groups. - This release adds support for the Auto-Record to S3 feature. Amazon IVS now enables you to save your live video to Amazon S3. - Add new service -Application Migration Service. - Supports removing a label or labels from a parameter, enables ScheduledEndTime and ChangeDetails for StartChangeRequestExecution API, supports critical/security/other noncompliant count for patch API. - MediaLive VPC outputs update to include Availability Zones, Security groups, Elastic Network Interfaces, and Subnet Ids in channel response - This release adds support for storing EBS-backed AMIs in S3 and restoring them from S3 to enable cross-partition copying of AMIs - Documentation updates for Cloud9 - AWS Audit Manager has updated the GetAssessment API operation to include a new response field called userRole. The userRole field indicates the role information and IAM ARN of the API caller. - MediaLive now support HTML5 Motion Graphics overlay - Added destination properties for Zendesk. - SPEKE v2 is an upgrade to the existing SPEKE API to support multiple encryption keys, based on an encryption contract selected by the customer. - This release adds support for Block Device Mappings for container image builds, and adds distribution configuration support for EC2 launch templates in AMI builds. - Route 53 Resolver DNS Firewall is a firewall service that allows you to filter and regulate outbound DNS traffic for your VPCs. - MediaConvert now supports HLS ingest, sidecar WebVTT ingest, Teletext color & style passthrough to TTML subtitles, TTML to WebVTT subtitle conversion with style, & DRC profiles in AC3 audio. - This release adds support for state detail for Amazon Lightsail container services. - AWS Kendra's ServiceNow data source now supports OAuth 2.0 authentication and knowledge article filtering via a ServiceNow query. - Lex now supports the ja-JP locale - Update lex-runtime client to latest version - Added Firewall Manager policy support for AWS Route 53 Resolver DNS Firewall. - VPC Flow Logs Service adds a new API, GetFlowLogsIntegrationTemplate, which generates CloudFormation templates for Athena. - Added support for ScopeDownStatement for ManagedRuleGroups, Labels, LabelMatchStatement, and LoggingFilter. For more information on these features, see the AWS WAF Developer Guide. - Added ability to prefix search on attribute value for ListThings API. - Minor documentation and link updates. - Amazon Transcribe now supports creating custom language models in the following languages: British English (en-GB), Australian English (en-AU), Indian Hindi (hi-IN), and US Spanish (es-US). - Minor documentation and link updates. - Support for customer managed KMS encryption of Comprehend custom models - Minor documentation updates and link updates. - AWS Batch adds support for Amazon EFS File System - Added the ability to assign tag values to Detective behavior graphs. Tag values can be used for attribute-based access control, and for cost allocation for billing. - Add Sidewalk support to APIs: GetWirelessDevice, ListWirelessDevices, GetWirelessDeviceStatistics. Add Gateway connection status in GetWirelessGatewayStatistics API. - 1. Added a new parameter RegionConcurrencyType in OperationPreferences. 2. Changed the name of AccountUrl to AccountsUrl in DeploymentTargets parameter. - Add ImageId input parameter to CreateEnvironmentEC2 endpoint. New parameter enables creation of environments with different AMIs. - This release adds MACsec support to AWS Direct Connect - Enable customers to share access to their Redshift clusters from other VPCs (including VPCs from other accounts). - This release adds support for mobile device access rules management in Amazon WorkMail. - Minor documentation updates and link updates. - Minor documentation updates and link updates. - Amazon SageMaker Autopilot now supports 1) feature importance reports for AutoML jobs and 2) PartialFailures for AutoML jobs - Adding support to push SSH keys to the EC2 serial console in order to allow an SSH connection to your Amazon EC2 instance's serial port. - Update cloudwatch client to latest version - This SDK release adds two new dataset features: 1) support for specifying a database connection as a dataset input 2) support for dynamic datasets that accept configurable parameters in S3 path. - This release adds support for Batch Predictions in Amazon Fraud Detector. - ReplaceRootVolume feature enables customers to replace the EBS root volume of a running instance to a previously known state. Add support to grant account-level access to the EC2 serial console - Adding new APIs to support ConformancePack Compliance CI in Aggregators - Added support for journey pause/resume, journey updatable import segment and journey quiet time wait. - Added custom request handling and custom response support in rule actions and default action; Added the option to inspect the web request body as parsed and filtered JSON. - AWS Identity and Access Management GetAccessKeyLastUsed API will throw a custom error if customer public key is not found for access keys. - Allow Dots in Registry and Schema Names for CreateRegistry, CreateSchema; Fixed issue when duplicate keys are present and not returned as part of QuerySchemaVersionMetadata. - This release adds support for Event Subscriptions to DocumentDB. - Amazon Location added support for specifying pricing plan information on resources in alignment with our cost model. - Support tag-on-create for WirelessDevice. - This release adds an optional parameter named FlowDefinition in PutIntegrationRequest. - Add support for SageMaker Model Builder Pipelines Targets to EventBridge - Amazon Transcribe now supports tagging words that match your vocabulary filter for batch transcription. - Allowing uppercase alphabets for RDS and Redshift database names. - Documentation updates for Amazon SQS - This release introduces AWS tagging support for Amazon Rekognition collections, stream processors, and Custom Label models. - This feature allows customer to specify the environment variables in their CreateTrainingJob requests. - EML now supports handling HDR10 and HLG 2020 color space from a Link input. - Amazon Lookout for Metrics is now generally available. You can use Lookout for Metrics to monitor your data for anomalies. For more information, see the Amazon Lookout for Metrics Developer Guide. - Added support for enabling and disabling data retention in the CreateProfile and UpdateProfile APIs and retrieving the state of data retention for a profile in the GetProfile API. - This release allows SSM Explorer customers to enable OpsData sources across their organization when creating a resource data sync. - Documentation updates for route53 - Fix an issue with XML newline normalization in PutBucketLifecycleConfiguration requests. - Documentation updates for Amazon S3 - Documentation updates for s3-control - maximumEfaInterfaces added to DescribeInstanceTypes API - Updated the parameters to make name required for CreateGroup API. - You can now create cost categories with inherited value rules and specify default values for any uncategorized costs. - Updated maximum allowed size of action parameter from 64 to 1024 - Removed APIs to control AQUA on clusters. - Documentation updates for IAM operations and descriptions. - GameLift adds support for using event notifications to monitor game session placements. Specify an SNS topic or use CloudWatch Events to track activity for a game session queue. - This release adds support for UEFI boot on selected AMD-and Intel-based EC2 instances. - Added support to enable AQUA in Amazon Redshift clusters. - Documentation updates for CodeArtifact - This release of the Amazon Macie API adds support for publishing sensitive data findings to AWS Security Hub and specifying which categories of findings to publish to Security Hub. - Adding authentication support for pulling images stored in private Docker registries to build containers for real-time inference. - X2gd instances are the next generation of memory-optimized instances powered by AWS-designed, Arm-based AWS Graviton2 processors. - Updated mislabeled exceptions for S3 Object Lambda - Amazon EC2 Auto Scaling Instance Refresh now supports phased deployments. - S3 Object Lambda is a new S3 feature that enables users to apply their own custom code to process the output of a standard S3 GET request by automatically invoking a Lambda function with a GET request - Add new fields for additional information about VPC endpoint for clusters with reallocation enabled, and a new field for total storage capacity for all clusters. - S3 Object Lambda is a new S3 feature that enables users to apply their own custom code to process the output of a standard S3 GET request by automatically invoking a Lambda function with a GET request - New object for separate provider and customer values. New objects track S3 Public Access Block configuration and identify sensitive data. BatchImportFinding requests are limited to 100 findings. - Support new target device ml_eia2 in SageMaker CreateCompilationJob API - Making serviceRole an optional parameter when creating a compute environment. If serviceRole is not provided then Service Linked Role will be created (or reused if it already exists). - Allow empty list for function response types - Documentation updates for AWS Identity and Access Management (IAM). - This release adds support for the SRT-listener protocol on sources and outputs. - This release adds support for the ValidatePolicy API. IAM Access Analyzer is adding over 100 policy checks and actionable recommendations that help you validate your policies during authoring. - MediaTailor channel assembly is a new manifest-only service that allows you to assemble linear streams using your existing VOD content. - This release adds UPDATE_FAILED and UNAVAILABLE MWAA environment states. - GameLift expands to six new AWS Regions, adds support for multi-location fleets to streamline management of hosting resources, and lets you customize more of the game session placement process. - Initial release of AWS Fault Injection Simulator, a managed service that enables you to perform fault injection experiments on your AWS workloads - AWS CodeDeploy can now detect instances running an outdated revision of your application and automatically update them with the latest revision. - Update emr client to latest version - This is for ecs exec feature release which includes two new APIs -execute-command and update-cluster and an AWS CLI customization for execute-command API - MediaTailor channel assembly is a new manifest-only service that allows you to assemble linear streams using your existing VOD content. - Adds API support for WorkSpaces bundle management operations. - Added optional billingViewArn field for OSG. - Update comprehend client to latest version - Update wafv2 client to latest version - Update medialive client to latest version - Update network-firewall client to latest version - Update accessanalyzer client to latest version - Update ssm client to latest version - Update s3 client to latest version - Update backup client to latest version - Update rds client to latest version - Update codeguruprofiler client to latest version - Update autoscaling client to latest version - Update iotwireless client to latest version - Update efs client to latest version - Update lambda client to latest version - Update emr client to latest version - Update kinesis-video-archived-media client to latest version - Update s3 client to latest version - Update s3control client to latest version - Update autoscaling client to latest version - Update license-manager client to latest version - Update network-firewall client to latest version - Update ec2 client to latest version - Update athena client to latest version - Update medialive client to latest version - Update shield client to latest version - Update codepipeline client to latest version - Update appflow client to latest version - Update servicediscovery client to latest version - Update events client to latest version - Update sagemaker client to latest version - Update mwaa client to latest version - Update forecast client to latest version - Update secretsmanager client to latest version - Update macie2 client to latest version - Update codebuild client to latest version - Update es client to latest version - Update acm client to latest version - Update wellarchitected client to latest version - Update iotwireless client to latest version - Update directconnect client to latest version - Fix an issue with XML newline normalization that could result in the DeleteObjects operation incorrectly deleting the wrong keys. - Update managedblockchain client to latest version - Update events client to latest version - Update compute-optimizer client to latest version - Update datasync client to latest version - Add a `__bytes__` method to the `Binary` DynamoDB type. - Update alexaforbusiness client to latest version - Update ssm client to latest version - Update codepipeline client to latest version - Update eks client to latest version - Update s3 client to latest version - Update sso-admin client to latest version - Update eks client to latest version - Update emr client to latest version - Update databrew client to latest version - Update detective client to latest version - Update lightsail client to latest version - Update imagebuilder client to latest version - Update transfer client to latest version - Update es client to latest version - Update mediapackage-vod client to latest version - Update appflow client to latest version - Update ecr-public client to latest version - Update compute-optimizer client to latest version - Update glue client to latest version - Update redshift-data client to latest version - Update s3control client to latest version - Update autoscaling client to latest version - Update pinpoint client to latest version - Update quicksight client to latest version - Update iotevents client to latest version - Update connect client to latest version - Update sagemaker-runtime client to latest version - Update sagemaker client to latest version - Update rds client to latest version - Update health client to latest version - Update sagemaker client to latest version - Update cloudformation client to latest version - Update codebuild client to latest version - Update ec2 client to latest version - Update config client to latest version - Update lookoutvision client to latest version This update for python-s3transfer fixes the following issues: - Update 0.5.0: (bsc#1189649) - Add set_exception to CRTTransferFuture to allow setting exceptions in subscribers. - Add optional AWS Common Runtime (CRT) support. The AWS CRT provides a C-based S3 transfer client that can improve transfer throughput. - Fix seek behavior in ReadFileChunk class - Block TransferManager methods for S3 Object Lambda resources - Add server side encryption context into allowed list - Update to version 0.2.1 (bsc#1146853) - Update to 0.1.13 (bsc#1075263) This update for aws-cli fixes the following issues: - Update to version 1.20.7 (bsc#1189649) - Update Requires in spec file from setup.py aws-cli-1.20.7-30.3.1.noarch.rpm aws-cli-1.20.7-30.3.1.src.rpm python-boto3-1.18.7-23.4.1.src.rpm python-botocore-1.21.7-37.4.1.src.rpm python-s3transfer-0.5.0-9.4.1.src.rpm python3-boto3-1.18.7-23.4.1.noarch.rpm python3-botocore-1.21.7-37.4.1.noarch.rpm python3-s3transfer-0.5.0-9.4.1.noarch.rpm openSUSE-SLE-15.3-2021-3964 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: nodejs14 was updated to 14.18.1: * deps: update llhttp to 2.1.4 - HTTP Request Smuggling due to spaced in headers (bsc#1191601, CVE-2021-22959) - HTTP Request Smuggling when parsing the body (bsc#1191602, CVE-2021-22960) Changes in 14.18.0: * buffer: + introduce Blob + add base64url encoding option * child_process: + allow options.cwd receive a URL + add timeout to spawn and fork + allow promisified exec to be cancel + add 'overlapped' stdio flag * dns: add "tries" option to Resolve options * fs: + allow empty string for temp directory prefix + allow no-params fsPromises fileHandle read + add support for async iterators to fsPromises.writeFile * http2: add support for sensitive headers * process: add 'worker' event * tls: allow reading data into a static buffer * worker: add setEnvironmentData/getEnvironmentData Changes in 14.17.6 * deps: upgrade npm to 6.14.15 which fixes a number of security issues (bsc#1190057, CVE-2021-37701, bsc#1190056, CVE-2021-37712, bsc#1190055, CVE-2021-37713, bsc#1190054, CVE-2021-39134, bsc#1190053, CVE-2021-39135) nodejs14-14.18.1-15.21.2.src.rpm nodejs14-14.18.1-15.21.2.x86_64.rpm nodejs14-devel-14.18.1-15.21.2.x86_64.rpm nodejs14-docs-14.18.1-15.21.2.noarch.rpm npm14-14.18.1-15.21.2.x86_64.rpm nodejs14-14.18.1-15.21.2.s390x.rpm nodejs14-devel-14.18.1-15.21.2.s390x.rpm npm14-14.18.1-15.21.2.s390x.rpm nodejs14-14.18.1-15.21.2.ppc64le.rpm nodejs14-devel-14.18.1-15.21.2.ppc64le.rpm npm14-14.18.1-15.21.2.ppc64le.rpm nodejs14-14.18.1-15.21.2.aarch64.rpm nodejs14-devel-14.18.1-15.21.2.aarch64.rpm npm14-14.18.1-15.21.2.aarch64.rpm openSUSE-SLE-15.3-2021-3959 moderate SUSE Updates openSUSE-SLE 15.3 This update for aide fixes the following issues: - Fix issue with Libgcrypt FIPS mode and AIDE by disabling MD5 in FIPS mode (bsc#1191422) aide-0.16-3.9.1.src.rpm aide-0.16-3.9.1.x86_64.rpm aide-test-0.16-3.9.1.x86_64.rpm aide-0.16-3.9.1.s390x.rpm aide-test-0.16-3.9.1.s390x.rpm aide-0.16-3.9.1.ppc64le.rpm aide-test-0.16-3.9.1.ppc64le.rpm aide-0.16-3.9.1.aarch64.rpm aide-test-0.16-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-4183 moderate SUSE Updates openSUSE-SLE 15.3 This update for cpuset fixes the following issues: - Fix wrong parentheses in the code that lead to an unsupported operand error (bsc#1191418) cpuset-1.6-3.3.1.noarch.rpm cpuset-1.6-3.3.1.src.rpm openSUSE-SLE-15.3-2022-18 moderate SUSE Updates openSUSE-SLE 15.3 This update for targetcli-fb fixes the following issues: - Fix sparse file creation - Do not install systemd files in 'setup.py', python2-targetcli-fb-2.1.54-3.3.1.noarch.rpm python3-targetcli-fb-2.1.54-3.3.1.noarch.rpm targetcli-fb-2.1.54-3.3.1.src.rpm targetcli-fb-common-2.1.54-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-3896 low SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: Release notes update to version 15.3.20211201. (bsc#933411) - Added note about the disabled usage of unprivileged eBPF (jsc#SLE-22593) - Document the value change for 'ping_group_range'. (bsc#1193054) - Document the deprecation of 'KillMode=none'. (bsc#1183034) - Document the removal of NodeJS 10. (bsc#1191917) - Document where Vagrant Boxes is supported. - Updated note about PostgreSQL support. (bsc#1183998) - Updated note about AutoYaST compact mode. (bsc#1191408) release-notes-sles-15.3.20211201-3.17.1.noarch.rpm release-notes-sles-15.3.20211201-3.17.1.src.rpm openSUSE-SLE-15.3-2021-3953 moderate SUSE Updates openSUSE-SLE 15.3 This update for nvme-cli fixes the following issues: - Allow -1 as ctrl_loss_tmo value (bsc#1192348) - Fix segfauls while discovering (bsc#1191935) - Adding missing hunk (bsc#1182591) - Use pkg-config for libuuid dependency setup nvme-cli-1.13-3.10.1.src.rpm nvme-cli-1.13-3.10.1.x86_64.rpm nvme-cli-regress-script-1.13-3.10.1.x86_64.rpm nvme-cli-1.13-3.10.1.s390x.rpm nvme-cli-regress-script-1.13-3.10.1.s390x.rpm nvme-cli-1.13-3.10.1.ppc64le.rpm nvme-cli-regress-script-1.13-3.10.1.ppc64le.rpm nvme-cli-1.13-3.10.1.aarch64.rpm nvme-cli-regress-script-1.13-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2022-70 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-configshell-fb fixes the following issues: - Upgrade to latest upstream version v1.1.29 (jsc#SLE-17360): * setup.py: specify a version range for pyparsing * setup.py: lets stick to pyparsing v2.4.7 * Don't warn if prefs file doesn't exist - Update to version v1.1.28 from v1.1.27 (jsc#SLE-17360): * version 1.1.28 * Ensure that all output reaches the client when daemonized * Remove Epydoc markup from command messages * Remove epydoc imports and epydoc calls python-configshell-fb-1.1.29-3.3.1.src.rpm python2-configshell-fb-1.1.29-3.3.1.noarch.rpm python3-configshell-fb-1.1.29-3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-8 moderate SUSE Updates openSUSE-SLE 15.3 This update for mailx fixes the following issues: - To add description how to avoid such mailx does not send mails unless run via strace or in verbose mode. (bsc#1192916) - Fix name argument when calling '/usr/sbin/sendmail' (bsc#1180355) - If the openssl RNG is already seeded (on linux it always is) skip snake-oil reeseeding from file. Update man page accordingly. - Update man page with information that ssl2 and ssl3 are not only deprecated but currently unavailable and that tls1 forces TLS 1.0 but not later versions. mailx-12.5-3.3.1.src.rpm mailx-12.5-3.3.1.x86_64.rpm mailx-12.5-3.3.1.s390x.rpm mailx-12.5-3.3.1.ppc64le.rpm mailx-12.5-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-71 moderate SUSE Updates openSUSE-SLE 15.3 This update for container-suseconnect is a rebuild against updated go toolchain to ensure an up to date GO runtime. container-suseconnect-2.3.0-4.17.1.src.rpm container-suseconnect-2.3.0-4.17.1.x86_64.rpm container-suseconnect-2.3.0-4.17.1.s390x.rpm container-suseconnect-2.3.0-4.17.1.ppc64le.rpm container-suseconnect-2.3.0-4.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-3944 important SUSE Updates openSUSE-SLE 15.3 This update for glib-networking fixes the following issues: Update to version 2.62.4: - CVE-2020-13645: Fixed a connection failure when the server identity is unset (bsc#1172460). glib-networking-2.62.4-3.3.1.src.rpm glib-networking-2.62.4-3.3.1.x86_64.rpm glib-networking-32bit-2.62.4-3.3.1.x86_64.rpm glib-networking-lang-2.62.4-3.3.1.noarch.rpm glib-networking-2.62.4-3.3.1.s390x.rpm glib-networking-2.62.4-3.3.1.ppc64le.rpm glib-networking-2.62.4-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-3934 important SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss fixes the following issues: Update to version 3.68.1: - CVE-2021-43527: Fixed a Heap overflow in NSS when verifying DER-encoded DSA or RSA-PSS signatures (bsc#1193170). libfreebl3-3.68.1-3.61.1.x86_64.rpm libfreebl3-32bit-3.68.1-3.61.1.x86_64.rpm libfreebl3-hmac-3.68.1-3.61.1.x86_64.rpm libfreebl3-hmac-32bit-3.68.1-3.61.1.x86_64.rpm libsoftokn3-3.68.1-3.61.1.x86_64.rpm libsoftokn3-32bit-3.68.1-3.61.1.x86_64.rpm libsoftokn3-hmac-3.68.1-3.61.1.x86_64.rpm libsoftokn3-hmac-32bit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-3.68.1-3.61.1.src.rpm mozilla-nss-3.68.1-3.61.1.x86_64.rpm mozilla-nss-32bit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-certs-3.68.1-3.61.1.x86_64.rpm mozilla-nss-certs-32bit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-devel-3.68.1-3.61.1.x86_64.rpm mozilla-nss-sysinit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.68.1-3.61.1.x86_64.rpm mozilla-nss-tools-3.68.1-3.61.1.x86_64.rpm libfreebl3-3.68.1-3.61.1.s390x.rpm libfreebl3-hmac-3.68.1-3.61.1.s390x.rpm libsoftokn3-3.68.1-3.61.1.s390x.rpm libsoftokn3-hmac-3.68.1-3.61.1.s390x.rpm mozilla-nss-3.68.1-3.61.1.s390x.rpm mozilla-nss-certs-3.68.1-3.61.1.s390x.rpm mozilla-nss-devel-3.68.1-3.61.1.s390x.rpm mozilla-nss-sysinit-3.68.1-3.61.1.s390x.rpm mozilla-nss-tools-3.68.1-3.61.1.s390x.rpm libfreebl3-3.68.1-3.61.1.ppc64le.rpm libfreebl3-hmac-3.68.1-3.61.1.ppc64le.rpm libsoftokn3-3.68.1-3.61.1.ppc64le.rpm libsoftokn3-hmac-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-certs-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-devel-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-sysinit-3.68.1-3.61.1.ppc64le.rpm mozilla-nss-tools-3.68.1-3.61.1.ppc64le.rpm libfreebl3-3.68.1-3.61.1.aarch64.rpm libfreebl3-hmac-3.68.1-3.61.1.aarch64.rpm libsoftokn3-3.68.1-3.61.1.aarch64.rpm libsoftokn3-hmac-3.68.1-3.61.1.aarch64.rpm mozilla-nss-3.68.1-3.61.1.aarch64.rpm mozilla-nss-certs-3.68.1-3.61.1.aarch64.rpm mozilla-nss-devel-3.68.1-3.61.1.aarch64.rpm mozilla-nss-sysinit-3.68.1-3.61.1.aarch64.rpm mozilla-nss-tools-3.68.1-3.61.1.aarch64.rpm openSUSE-SLE-15.3-2021-4014 moderate SUSE Updates openSUSE-SLE 15.3 This update for apparmor fixes the following issues: Changes in apparmor: - Add a profile for 'samba-bgqd'. (bsc#1191532) - Fix 'Requires' of python3 module. (bsc#1191690) apache2-mod_apparmor-2.13.6-3.8.1.x86_64.rpm apparmor-2.13.6-3.8.1.src.rpm apparmor-abstractions-2.13.6-3.8.1.noarch.rpm apparmor-docs-2.13.6-3.8.1.noarch.rpm apparmor-parser-2.13.6-3.8.1.x86_64.rpm apparmor-parser-lang-2.13.6-3.8.1.noarch.rpm apparmor-profiles-2.13.6-3.8.1.noarch.rpm apparmor-utils-2.13.6-3.8.1.noarch.rpm apparmor-utils-lang-2.13.6-3.8.1.noarch.rpm libapparmor-2.13.6-3.8.1.src.rpm libapparmor-devel-2.13.6-3.8.1.x86_64.rpm libapparmor1-2.13.6-3.8.1.x86_64.rpm libapparmor1-32bit-2.13.6-3.8.1.x86_64.rpm pam_apparmor-2.13.6-3.8.1.x86_64.rpm pam_apparmor-32bit-2.13.6-3.8.1.x86_64.rpm perl-apparmor-2.13.6-3.8.1.x86_64.rpm python3-apparmor-2.13.6-3.8.1.x86_64.rpm ruby-apparmor-2.13.6-3.8.1.x86_64.rpm apache2-mod_apparmor-2.13.6-3.8.1.s390x.rpm apparmor-parser-2.13.6-3.8.1.s390x.rpm libapparmor-devel-2.13.6-3.8.1.s390x.rpm libapparmor1-2.13.6-3.8.1.s390x.rpm pam_apparmor-2.13.6-3.8.1.s390x.rpm perl-apparmor-2.13.6-3.8.1.s390x.rpm python3-apparmor-2.13.6-3.8.1.s390x.rpm ruby-apparmor-2.13.6-3.8.1.s390x.rpm apache2-mod_apparmor-2.13.6-3.8.1.ppc64le.rpm apparmor-parser-2.13.6-3.8.1.ppc64le.rpm libapparmor-devel-2.13.6-3.8.1.ppc64le.rpm libapparmor1-2.13.6-3.8.1.ppc64le.rpm pam_apparmor-2.13.6-3.8.1.ppc64le.rpm perl-apparmor-2.13.6-3.8.1.ppc64le.rpm python3-apparmor-2.13.6-3.8.1.ppc64le.rpm ruby-apparmor-2.13.6-3.8.1.ppc64le.rpm apache2-mod_apparmor-2.13.6-3.8.1.aarch64.rpm apparmor-parser-2.13.6-3.8.1.aarch64.rpm libapparmor-devel-2.13.6-3.8.1.aarch64.rpm libapparmor1-2.13.6-3.8.1.aarch64.rpm pam_apparmor-2.13.6-3.8.1.aarch64.rpm perl-apparmor-2.13.6-3.8.1.aarch64.rpm python3-apparmor-2.13.6-3.8.1.aarch64.rpm ruby-apparmor-2.13.6-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3982 moderate SUSE Updates openSUSE-SLE 15.3 This update for librsvg fixes the following issues: - Bump required rust version to rust-1.53, in order to avoid a ppc64le crash (bsc#1189304, bsc#1191114) gdk-pixbuf-loader-rsvg-2.46.5-3.6.1.x86_64.rpm gdk-pixbuf-loader-rsvg-32bit-2.46.5-3.6.1.x86_64.rpm librsvg-2-2-2.46.5-3.6.1.x86_64.rpm librsvg-2-2-32bit-2.46.5-3.6.1.x86_64.rpm librsvg-2.46.5-3.6.1.src.rpm librsvg-devel-2.46.5-3.6.1.x86_64.rpm librsvg-lang-2.46.5-3.6.1.noarch.rpm rsvg-convert-2.46.5-3.6.1.x86_64.rpm rsvg-thumbnailer-2.46.5-3.6.1.noarch.rpm typelib-1_0-Rsvg-2_0-2.46.5-3.6.1.x86_64.rpm gdk-pixbuf-loader-rsvg-2.46.5-3.6.1.s390x.rpm librsvg-2-2-2.46.5-3.6.1.s390x.rpm librsvg-devel-2.46.5-3.6.1.s390x.rpm rsvg-convert-2.46.5-3.6.1.s390x.rpm typelib-1_0-Rsvg-2_0-2.46.5-3.6.1.s390x.rpm gdk-pixbuf-loader-rsvg-2.46.5-3.6.1.ppc64le.rpm librsvg-2-2-2.46.5-3.6.1.ppc64le.rpm librsvg-devel-2.46.5-3.6.1.ppc64le.rpm rsvg-convert-2.46.5-3.6.1.ppc64le.rpm typelib-1_0-Rsvg-2_0-2.46.5-3.6.1.ppc64le.rpm gdk-pixbuf-loader-rsvg-2.46.5-3.6.1.aarch64.rpm librsvg-2-2-2.46.5-3.6.1.aarch64.rpm librsvg-devel-2.46.5-3.6.1.aarch64.rpm rsvg-convert-2.46.5-3.6.1.aarch64.rpm typelib-1_0-Rsvg-2_0-2.46.5-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4007 moderate SUSE Updates openSUSE-SLE 15.3 This update for libstorage-ng fixes the following issues: - Fix having an empty partition table and a filesystem directly on the logical unit number (LUN), which confuses the yast2-partitioner. The solution is to prefer file system over empty MS-DOS partition table (bsc#1186823) libstorage-ng-4.3.109-3.8.1.src.rpm libstorage-ng-devel-4.3.109-3.8.1.x86_64.rpm libstorage-ng-integration-tests-4.3.109-3.8.1.x86_64.rpm libstorage-ng-lang-4.3.109-3.8.1.noarch.rpm libstorage-ng-python3-4.3.109-3.8.1.x86_64.rpm libstorage-ng-ruby-4.3.109-3.8.1.x86_64.rpm libstorage-ng-utils-4.3.109-3.8.1.x86_64.rpm libstorage-ng1-4.3.109-3.8.1.x86_64.rpm libstorage-ng-devel-4.3.109-3.8.1.s390x.rpm libstorage-ng-integration-tests-4.3.109-3.8.1.s390x.rpm libstorage-ng-python3-4.3.109-3.8.1.s390x.rpm libstorage-ng-ruby-4.3.109-3.8.1.s390x.rpm libstorage-ng-utils-4.3.109-3.8.1.s390x.rpm libstorage-ng1-4.3.109-3.8.1.s390x.rpm libstorage-ng-devel-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-integration-tests-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-python3-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-ruby-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-utils-4.3.109-3.8.1.ppc64le.rpm libstorage-ng1-4.3.109-3.8.1.ppc64le.rpm libstorage-ng-devel-4.3.109-3.8.1.aarch64.rpm libstorage-ng-integration-tests-4.3.109-3.8.1.aarch64.rpm libstorage-ng-python3-4.3.109-3.8.1.aarch64.rpm libstorage-ng-ruby-4.3.109-3.8.1.aarch64.rpm libstorage-ng-utils-4.3.109-3.8.1.aarch64.rpm libstorage-ng1-4.3.109-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2021-3928 critical SUSE Updates openSUSE-SLE 15.3 This update for rmt-server fixes the following issues: PubCloud: - Update the way allowed paths are checked SUMA requested a new feature where it is possible to validate all versions of the same product and arch (that are allowed to that system) PubCloud: - De-register BYOS systems using RMT as a proxy from SCC - De-activate a single product from a BYOS proxy system PubCloud: - Add the handling of the BYOS systems that use RMT as a SCC proxy In order to do that: - New boolean column in systems table in db: proxy_byos - Skip the sync with SCC (using that column) - Registration of the system to SCC (announce system call and then use SCC credentials) - Activation of products - Check subscription is active/valid for a product/repo to be accessed - Version 2.7.0 - Add subscription support in RMT. RMT can now consume registration codes supplied when registering a system. - Add host's login header to API requests to SCC. If the information is available, RMT will send it on requests to attach the registration proxy to a host system in SCC. - Add extra check to product dependency on RMT API. Now, when a system tries to activate a module through RMT, if it requires a root product which is not activated, the activation will fail (bsc#951189). - Load global configuration only if it can be ready by the current process. - Version 2.6.12 - Re-fix broken symlinks: This version fixes the bug-fix deployed with version 2.6.11. Reference bug (bsc#1188043) - Handle special characters in package names (bsc#1189805) rmt-server-2.7.0-3.12.1.src.rpm rmt-server-2.7.0-3.12.1.x86_64.rpm rmt-server-config-2.7.0-3.12.1.x86_64.rpm rmt-server-pubcloud-2.7.0-3.12.1.x86_64.rpm rmt-server-2.7.0-3.12.1.s390x.rpm rmt-server-config-2.7.0-3.12.1.s390x.rpm rmt-server-pubcloud-2.7.0-3.12.1.s390x.rpm rmt-server-2.7.0-3.12.1.ppc64le.rpm rmt-server-config-2.7.0-3.12.1.ppc64le.rpm rmt-server-pubcloud-2.7.0-3.12.1.ppc64le.rpm rmt-server-2.7.0-3.12.1.aarch64.rpm rmt-server-config-2.7.0-3.12.1.aarch64.rpm rmt-server-pubcloud-2.7.0-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2021-4163 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Fixed an issue when 'lvmid' disk cannot be found after second disk added to the root volume group. (bsc#1189874, bsc#1071559) - Fix for an error when '/boot/grub2/locale/POSIX.gmo' not found. (bsc#1189769) - Fix unknown TPM error on buggy uefi firmware. (bsc#1191504) - Fix arm64 kernel image not aligned on 64k boundary. (bsc#1192522) grub2-2.04-22.6.3.src.rpm grub2-2.04-22.6.3.x86_64.rpm grub2-arm64-efi-2.04-22.6.3.noarch.rpm grub2-arm64-efi-debug-2.04-22.6.3.noarch.rpm grub2-branding-upstream-2.04-22.6.3.x86_64.rpm grub2-i386-pc-2.04-22.6.3.noarch.rpm grub2-i386-pc-debug-2.04-22.6.3.noarch.rpm grub2-powerpc-ieee1275-2.04-22.6.3.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-22.6.3.noarch.rpm grub2-snapper-plugin-2.04-22.6.3.noarch.rpm grub2-systemd-sleep-plugin-2.04-22.6.3.noarch.rpm grub2-x86_64-efi-2.04-22.6.3.noarch.rpm grub2-x86_64-efi-debug-2.04-22.6.3.noarch.rpm grub2-x86_64-xen-2.04-22.6.3.noarch.rpm grub2-2.04-22.6.3.s390x.rpm grub2-branding-upstream-2.04-22.6.3.s390x.rpm grub2-s390x-emu-2.04-22.6.3.s390x.rpm grub2-s390x-emu-debug-2.04-22.6.3.s390x.rpm grub2-2.04-22.6.3.ppc64le.rpm grub2-branding-upstream-2.04-22.6.3.ppc64le.rpm grub2-2.04-22.6.3.aarch64.rpm grub2-branding-upstream-2.04-22.6.3.aarch64.rpm openSUSE-SLE-15.3-2021-4164 moderate SUSE Updates openSUSE-SLE 15.3 This update for adcli fixes the following issues: - Add 'dont-expire-password' option. (jsc#SLE-21224, jsc#SLE-22892) adcli-0.8.2-9.6.1.src.rpm adcli-0.8.2-9.6.1.x86_64.rpm adcli-doc-0.8.2-9.6.1.x86_64.rpm adcli-0.8.2-9.6.1.s390x.rpm adcli-doc-0.8.2-9.6.1.s390x.rpm adcli-0.8.2-9.6.1.ppc64le.rpm adcli-doc-0.8.2-9.6.1.ppc64le.rpm adcli-0.8.2-9.6.1.aarch64.rpm adcli-doc-0.8.2-9.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4101 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for kiwi-templates-JeOS fixes the following issues: - Install AppArmor pattern and audit (jsc#SLE-22705, jsc#SLE-23028) kiwi-templates-JeOS-15.3-4.4.1.noarch.rpm kiwi-templates-JeOS-15.3-4.4.1.src.rpm openSUSE-SLE-15.3-2021-4001 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pip fixes the following issues: - CVE-2021-3572: Fixed incorrect handling of unicode separators in git references (bsc#1186819). python-pip-20.0.2-6.15.1.src.rpm python2-pip-20.0.2-6.15.1.noarch.rpm python3-pip-20.0.2-6.15.1.noarch.rpm openSUSE-SLE-15.3-2021-4002 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-pip fixes the following issues: - CVE-2021-3572: Fixed incorrect handling of unicode separators in git references (bsc#1186819). python-pip-wheel-10.0.1-3.9.1.src.rpm python2-pip-wheel-10.0.1-3.9.1.noarch.rpm python3-pip-wheel-10.0.1-3.9.1.noarch.rpm openSUSE-SLE-15.3-2021-4184 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for tboot fixes the following issues: Update to upstream version 1.10.2 of tboot to sync with SLE-15-SP4 status (jsc#SLE-19516) - `acminfo` and `parse_err` now are called `txt-acminfo` and `txt-parse_err` - lcptools are deprecated (tpm 1.2, TrouSerS dependency) and are no longer packaged - tpmnv_* binaries are deprecated and no longer packaged - lcptools-v2: implement SM2 signing and SM2 signature verification and add pconf2 policy element support - Add SHA256, SHA384 and SHA512 support in `tb_polgen` - Add Doxygen documentation - Add SHA384 and SHA512 digest algorithms - Add support for 64bit framebuffer address - Add warning when using SHA1 as hashing algorithm - Default to D/A mapping instead of legacy when TPM1.2 and CBnT platform - Enable VGA logging for EFI platforms - Ensure `txt-acminfo` does not print false information if msr module is not loaded - Fix ACM chipset/processor list validation - Fix a harmless overflow caused by wrong loop limits - Fix issue with TPM1.2 - invalid default policy - Fix issue with multiboot(1) booting - infinite loop during boot - Fix warnings after "Avoid unsafe functions" scan - Print latest tag in logs - README is now README.md - Replace VMAC with Poly1305 - Strip executable file before generating tboot.gz - Update GRUB scripts to use multiboot2 only - Use SHA256 as default hashing algorithm - Validate TPM NV index attributes tboot-20170711_1.10.2-15.12.1.src.rpm tboot-20170711_1.10.2-15.12.1.x86_64.rpm openSUSE-SLE-15.3-2021-4186 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Updated to upstream version 1.17.5 to include fixes to the compiler, linker, syscall, runtime, the net/http, go/types, and time packages (bsc#1190649) - CVE-2021-44717: syscall: don't close fd 0 on ForkExec error (bsc#1193598). - CVE-2021-44716: net/http: limit growth of header canonicalization cache (bsc#1193597). go1.17-1.17.5-1.14.2.i586.rpm go1.17-1.17.5-1.14.2.src.rpm go1.17-doc-1.17.5-1.14.2.i586.rpm go1.17-1.17.5-1.14.2.x86_64.rpm go1.17-doc-1.17.5-1.14.2.x86_64.rpm go1.17-race-1.17.5-1.14.2.x86_64.rpm go1.17-1.17.5-1.14.2.s390x.rpm go1.17-doc-1.17.5-1.14.2.s390x.rpm go1.17-1.17.5-1.14.2.ppc64le.rpm go1.17-doc-1.17.5-1.14.2.ppc64le.rpm go1.17-1.17.5-1.14.2.aarch64.rpm go1.17-doc-1.17.5-1.14.2.aarch64.rpm go1.17-race-1.17.5-1.14.2.aarch64.rpm openSUSE-SLE-15.3-2021-4182 moderate SUSE Updates openSUSE-SLE 15.3 This update for zlib fixes the following issues: - Fix hardware compression incorrect result on z15 hardware (bsc#1192688) libminizip1-1.2.11-3.24.1.x86_64.rpm libminizip1-32bit-1.2.11-3.24.1.x86_64.rpm libz1-1.2.11-3.24.1.x86_64.rpm libz1-32bit-1.2.11-3.24.1.x86_64.rpm minizip-devel-1.2.11-3.24.1.x86_64.rpm zlib-1.2.11-3.24.1.src.rpm zlib-devel-1.2.11-3.24.1.x86_64.rpm zlib-devel-32bit-1.2.11-3.24.1.x86_64.rpm zlib-devel-static-1.2.11-3.24.1.x86_64.rpm zlib-devel-static-32bit-1.2.11-3.24.1.x86_64.rpm libminizip1-1.2.11-3.24.1.s390x.rpm libz1-1.2.11-3.24.1.s390x.rpm minizip-devel-1.2.11-3.24.1.s390x.rpm zlib-devel-1.2.11-3.24.1.s390x.rpm zlib-devel-static-1.2.11-3.24.1.s390x.rpm libminizip1-1.2.11-3.24.1.ppc64le.rpm libz1-1.2.11-3.24.1.ppc64le.rpm minizip-devel-1.2.11-3.24.1.ppc64le.rpm zlib-devel-1.2.11-3.24.1.ppc64le.rpm zlib-devel-static-1.2.11-3.24.1.ppc64le.rpm libminizip1-1.2.11-3.24.1.aarch64.rpm libz1-1.2.11-3.24.1.aarch64.rpm minizip-devel-1.2.11-3.24.1.aarch64.rpm zlib-devel-1.2.11-3.24.1.aarch64.rpm zlib-devel-static-1.2.11-3.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-6 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for numatop fixes the following issues: - Add support for ICX processors (jsc#SLE-19499, jsc#SLE-23044) numatop-2.2-3.3.1.src.rpm numatop-2.2-3.3.1.x86_64.rpm numatop-2.2-3.3.1.ppc64le.rpm openSUSE-SLE-15.3-2021-3985 moderate SUSE Updates openSUSE-SLE 15.3 This update for suse-module-tools fixes the following issues: - Blacklist isst_if_mbox_msr driver because uses hardware information based on CPU family and model, which is too unspecific. On large systems, this causes a lot of failing loading attempts for this driver, leading to slow or even stalled boot (bsc#1187196) suse-module-tools-15.3.15-3.17.1.src.rpm suse-module-tools-15.3.15-3.17.1.x86_64.rpm suse-module-tools-legacy-15.3.15-3.17.1.x86_64.rpm suse-module-tools-15.3.15-3.17.1.s390x.rpm suse-module-tools-legacy-15.3.15-3.17.1.s390x.rpm suse-module-tools-15.3.15-3.17.1.ppc64le.rpm suse-module-tools-legacy-15.3.15-3.17.1.ppc64le.rpm suse-module-tools-15.3.15-3.17.1.aarch64.rpm suse-module-tools-legacy-15.3.15-3.17.1.aarch64.rpm openSUSE-SLE-15.3-2021-4169 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Updated to upstream version 1.16.12 to include security fixes to the compiler, syscall, runtime, the net/http, net/http/httptest, and time packages (bsc#1182345) - CVE-2021-44717: syscall: don't close fd 0 on ForkExec error (bsc#1193598). - CVE-2021-44716: net/http: limit growth of header canonicalization cache (bsc#1193597). go1.16-1.16.12-1.37.2.src.rpm go1.16-1.16.12-1.37.2.x86_64.rpm go1.16-doc-1.16.12-1.37.2.x86_64.rpm go1.16-race-1.16.12-1.37.2.x86_64.rpm go1.16-1.16.12-1.37.2.s390x.rpm go1.16-doc-1.16.12-1.37.2.s390x.rpm go1.16-1.16.12-1.37.2.ppc64le.rpm go1.16-doc-1.16.12-1.37.2.ppc64le.rpm go1.16-1.16.12-1.37.2.aarch64.rpm go1.16-doc-1.16.12-1.37.2.aarch64.rpm go1.16-race-1.16.12-1.37.2.aarch64.rpm openSUSE-SLE-15.3-2021-4171 moderate SUSE Updates openSUSE-SLE 15.3 This update for runc fixes the following issues: Update to runc v1.0.3. * CVE-2021-43784: Fixed a potential vulnerability related to the internal usage of netlink, which is believed to not be exploitable with any released versions of runc (bsc#1193436) * Fixed inability to start a container with read-write bind mount of a read-only fuse host mount. * Fixed inability to start when read-only /dev in set in spec. * Fixed not removing sub-cgroups upon container delete, when rootless cgroup v2 is used with older systemd. * Fixed returning error from GetStats when hugetlb is unsupported (which causes excessive logging for kubernetes). runc-1.0.3-27.1.src.rpm runc-1.0.3-27.1.x86_64.rpm runc-1.0.3-27.1.s390x.rpm runc-1.0.3-27.1.ppc64le.rpm runc-1.0.3-27.1.aarch64.rpm openSUSE-SLE-15.3-2022-55 moderate SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - Upgrade to rsyslog 8.2106.0: * The prime new feature is support for TLS and non-TLS connections via imtcp in parallel. Furthermore, most TLS parameters can now be overriden at the input() level. The notable exceptions are certificate files, something that is due to be implemented as next step. * New global option "parser.supportCompressionExtension" This permits to turn off rsyslog's single-message compression extension when it interferes with non-syslog message processing (the parser subsystem expects syslog messages, not generic text) closes https://github.com/rsyslog/rsyslog/issues/4598 * imtcp: add more override config params to input() It is now possible to override all module parameters at the input() level. Module parameters serve as defaults. Existing configs need no modification. * imtcp: add stream driver parameter to input() configuration This permits to have different inputs use different stream drivers and stream driver parameters. * imtcp: permit to run multiple inputs in parallel Previously, a single server was used to run all imtcp inputs. This had a couple of drawsbacks. First and foremost, we could not use different stream drivers in the varios inputs. This patch now provides a baseline to do that, but does still not implement the capability (in this sense it is a staging patch). Secondly, we now ensure that each input has at least one exclusive thread for processing, untangling the performance of multiple inputs from each other. * tcpsrv bugfix: potential sluggishnes and hang on shutdown tcpsrv is used by multiple other modules (imtcp, imdiag, imgssapi, and, in theory, also others - even ones we do not know about). However, the internal synchornization did not properly take multiple tcpsrv users in consideration. As such, a single user could hang under some circumstances. This was caused by improperly awaking all users from a pthread condition wait. That in turn could lead to some sluggish behaviour and, in rare cases, a hang at shutdown. Note: it was highly unlikely to experience real problems with the officially provided modules. * refactoring of syslog/tcp driver parameter passing This has now been generalized to a parameter block, which makes it much cleaner and also easier to add new parameters in the future. * config script: add re_match_i() and re_extract_i() functions This provides case-insensitive regex functionality. - Upgrade to rsyslog 8.2104.0: * rainerscript: call getgrnam_r repeatedly to get all group members (bsc#1178490) * new built-in function get_property() to access property vars * mmdblookup: add support for mmdb DB reload on HUP * new contributed function module fmunflatten * test bugfix: some tests did not work with newer TLS library versions - Update 'remote.conf' example file to new 'Address' and 'Port' notation. (bsc#1182653) - Upgrade to rsyslog 8.2102.0: * omfwd: add stats counter for sent bytes * omfwd: add error reporting configuration option * action stats counter bugfix: failure count was not properly incremented * action stats counter bugfix: resume count was not incremented * omfwd bugfix: segfault or error if port not given * lookup table bugfix: data race on lookup table reload * testbench modernization * testbench: fix invalid sequence of kafka tests runs * testbench: fix kafkacat issues * testbench: fix year-dependendt clickhouse test - Upgrade to rsyslog 8.2012.0: * testbench bugfix: some tests did not work in make distcheck * immark: rewrite with many improvements * usability: re-phrase error message to help users better understand cause * add new system property $now-unixtimestamp * omfwd: add new rate limit option * omfwd bug: param "StreamDriver.PermitExpiredCerts" is not "off" by default - prepare usrmerge (bsc#1029961) - remove legacy stuff from specfile * sysvinit is not supported anymore, so remove all tests related to systemv in the specfile - Upgrade to rsyslog 8.2010.0: * gnutls TLS subsystem bugfix: handshake error handling * core/msg bugfix: memory leak * core/msg bugfix: segfault in jsonPathFindNext() when <root> not an object * openssl TLS subsystem: improvments of error and status messages * core bugfix: do not create empty JSON objects on non-existent key access * gnutls subsysem bugfix: potential hang on session closure * core/network bugfix: obey net.enableDNS=off when querying local hostname * core bugfix: potential segfault on query of PROGRAMNAME property * imtcp bugfix: broken connection not necessariy detected * new module: imhttp - http input * mmdarwin bugfix: potential zero uuid when reusing existing one * imdocker bugfix: build issue on some platforms * omudpspoof bugfix: make compatbile with Solaris build * testbench fix: python 3 incompatibility * core bugfix: segfault if disk-queue file cannot be created * cosmetic: fix dummy module name in debug output * config bugfix: intended warning emitted as error - Upgrade to rsyslog 8.2008.0 - Added custom unit file rsyslog.service because systemd service file was removed from upstream project - Use systemd_ordering instead of requiring to make rsyslog useable in containers. - Fix the URL for bug reporting, should not point to 'novell.com'. (bsc#1173433) - Add support for 'omkafka'. - Avoid build error with gcc flag '-fno-common'. (bsc#1160414) librdkafka-0.11.6-1.8.1.src.rpm librdkafka-devel-0.11.6-1.8.1.x86_64.rpm librdkafka1-0.11.6-1.8.1.x86_64.rpm rsyslog-8.2106.0-4.13.1.src.rpm rsyslog-8.2106.0-4.13.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-4.13.1.x86_64.rpm rsyslog-doc-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-relp-8.2106.0-4.13.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-4.13.1.x86_64.rpm librdkafka-devel-0.11.6-1.8.1.s390x.rpm librdkafka1-0.11.6-1.8.1.s390x.rpm rsyslog-8.2106.0-4.13.1.s390x.rpm rsyslog-diag-tools-8.2106.0-4.13.1.s390x.rpm rsyslog-doc-8.2106.0-4.13.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-4.13.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-4.13.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-4.13.1.s390x.rpm rsyslog-module-gtls-8.2106.0-4.13.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-4.13.1.s390x.rpm rsyslog-module-mysql-8.2106.0-4.13.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-4.13.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-4.13.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-4.13.1.s390x.rpm rsyslog-module-ossl-8.2106.0-4.13.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-4.13.1.s390x.rpm rsyslog-module-relp-8.2106.0-4.13.1.s390x.rpm rsyslog-module-snmp-8.2106.0-4.13.1.s390x.rpm librdkafka-devel-0.11.6-1.8.1.ppc64le.rpm librdkafka1-0.11.6-1.8.1.ppc64le.rpm rsyslog-8.2106.0-4.13.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-4.13.1.ppc64le.rpm rsyslog-doc-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-4.13.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-4.13.1.ppc64le.rpm librdkafka-devel-0.11.6-1.8.1.aarch64.rpm librdkafka1-0.11.6-1.8.1.aarch64.rpm rsyslog-8.2106.0-4.13.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-4.13.1.aarch64.rpm rsyslog-doc-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-relp-8.2106.0-4.13.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-4.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-19 moderate SUSE Updates openSUSE-SLE 15.3 This update for ghostscript, gswrap fixes the following issues: We now ship an additional wraper for ghostscript, called gswrap, for SLE 15 SP2 and SLE15 SP3. You can install this wrapper by installing the gswrap package. - Allow the `gswrap` package to use its wrapper script for `ghostscript` (jsc#SLE-21705 jsc#SLE-21706) - Use `update-alternatives` to get the real `ghostscript` binary from `/usr/bin/gs` to `/usr/bin/gs.bin` ghostscript-9.52-158.1.src.rpm ghostscript-9.52-158.1.x86_64.rpm ghostscript-devel-9.52-158.1.x86_64.rpm ghostscript-x11-9.52-158.1.x86_64.rpm gswrap-0.1-1.3.1.noarch.rpm gswrap-0.1-1.3.1.src.rpm ghostscript-9.52-158.1.s390x.rpm ghostscript-devel-9.52-158.1.s390x.rpm ghostscript-x11-9.52-158.1.s390x.rpm ghostscript-9.52-158.1.ppc64le.rpm ghostscript-devel-9.52-158.1.ppc64le.rpm ghostscript-x11-9.52-158.1.ppc64le.rpm ghostscript-9.52-158.1.aarch64.rpm ghostscript-devel-9.52-158.1.aarch64.rpm ghostscript-x11-9.52-158.1.aarch64.rpm openSUSE-SLE-15.3-2021-4063 important SUSE Updates openSUSE-SLE 15.3 This update for icu.691 fixes the following issues: - Renamed package from icu 69.1 for SUSE:SLE-15-SP3:Update. (jsc#SLE-17893) - Fix undefined behaviour in 'ComplexUnitsConverter::applyRounder' - Update to release 69.1 - For Norwegian, "no" is back to being the canonical code, with "nb" treated as equivalent. This aligns handling of Norwegian with other macro language codes. - Binary prefixes in measurement units (KiB, MiB, etc.) - Time zone offsets from local time with new APIs. - Don't disable testsuite under 'qemu-linux-user' - Fixed an issue when ICU test on 'aarch64 fails. (bsc#1182645) - Drop 'SUSE_ASNEEDED' as the issue was in binutils. (bsc#1182252) - Fix 'pthread' dependency issue. (bsc#1182252) - Update to release 68.2 - Fix memory problem in 'FormattedStringBuilder' - Fix assertion when 'setKeywordValue w/' long value. - Fix UBSan breakage on 8bit of rbbi - fix int32_t overflow in listFormat - Fix memory handling in MemoryPool::operator=() - Fix memory leak in AliasReplacer - Add back icu.keyring. - Update to release 68.1 - PluralRules selection for ranges of numbers - Locale ID canonicalization now conforms to the CLDR spec including edge cases - DateIntervalFormat supports output options such as capitalization - Measurement units are normalized in skeleton string output - Time zone data (tzdata) version 2020d - Add the provides for libicu to Make .Net core can install successfully. (bsc#1167603, bsc#1161007) - Update to version 67.1 - Unicode 13 (ICU-20893, same as in ICU 66) - Total of 5930 new characters - 4 new scripts - 55 new emoji characters, plus additional new sequences - New CJK extension, first characters in plane 3: U+30000..U+3134A - New language at Modern coverage: Nigerian Pidgin - New languages at Basic coverage: Fulah (Adlam), Maithili, Manipuri, Santali, Sindhi (Devanagari), Sundanese - Region containment: EU no longer includes GB - Unicode 13 root collation data and Chinese data for collation and transliteration - DateTimePatternGenerator now obeys the "hc" preference in the locale identifier - Various other improvements for ECMA-402 conformance - Number skeletons have a new "concise" form that can be used in MessageFormat strings - Currency formatting options for formal and other currency display name variants - ListFormatter: new public API to select the style & type - ListFormatter now selects the proper “and”/“or” form for Spanish & Hebrew. - Locale ID canonicalization upgraded to implement the complete CLDR spec. - LocaleMatcher: New option to ignore one-way matches - acceptLanguage() reimplemented via LocaleMatcher - Data build tool: tzdbNames.res moved from the "zone_tree" category to the "zone_supplemental" category - Fixed uses of u8"literals" broken by the C++20 introduction of the incompatible char8_t type - and added a few API overloads to reduce the need for reinterpret_cast. - Support for manipulating CLDR 37 unit identifiers in MeasureUnit. - Drop icu-versioning. (bsc#1159131) - Update to version 66.1 - Unicode 13 support - Fix uses of u8"literals" broken by C++20 introduction of incompatible char8_t type. - Fixed an issue when Qt apps can't handle non-ASCII filesystem path. ([bsc#1162882) - Remove '/usr/lib(64)/icu/current'. (bsc#1158955) icu.691-69.1-7.3.2.src.rpm icu.691-69.1-7.3.2.x86_64.rpm icu.691-devel-69.1-7.3.2.x86_64.rpm icu.691-doc-69.1-7.3.2.x86_64.rpm libicu69-69.1-7.3.2.x86_64.rpm libicu69-bedata-69.1-7.3.2.noarch.rpm libicu69-ledata-69.1-7.3.2.noarch.rpm icu.691-69.1-7.3.2.s390x.rpm icu.691-devel-69.1-7.3.2.s390x.rpm icu.691-doc-69.1-7.3.2.s390x.rpm libicu69-69.1-7.3.2.s390x.rpm icu.691-69.1-7.3.2.ppc64le.rpm icu.691-devel-69.1-7.3.2.ppc64le.rpm icu.691-doc-69.1-7.3.2.ppc64le.rpm libicu69-69.1-7.3.2.ppc64le.rpm icu.691-69.1-7.3.2.aarch64.rpm icu.691-devel-69.1-7.3.2.aarch64.rpm icu.691-doc-69.1-7.3.2.aarch64.rpm libicu69-69.1-7.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-143 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-11-openjdk fixes the following issues: - Java Cryptography was always operating in FIPS mode if crypto-policies was not used. - Allow plain key import in fips mode unless "com.suse.fips.plainKeySupport" is set to false java-11-openjdk-11.0.13.0-3.68.1.src.rpm java-11-openjdk-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-accessibility-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-demo-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-devel-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-headless-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-javadoc-11.0.13.0-3.68.1.noarch.rpm java-11-openjdk-jmods-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-src-11.0.13.0-3.68.1.x86_64.rpm java-11-openjdk-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-accessibility-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-demo-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-devel-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-headless-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-jmods-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-src-11.0.13.0-3.68.1.s390x.rpm java-11-openjdk-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-demo-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-devel-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-headless-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-jmods-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-src-11.0.13.0-3.68.1.ppc64le.rpm java-11-openjdk-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-accessibility-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-demo-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-devel-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-headless-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-jmods-11.0.13.0-3.68.1.aarch64.rpm java-11-openjdk-src-11.0.13.0-3.68.1.aarch64.rpm openSUSE-SLE-15.3-2022-46 moderate SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-openjdk fixes the following issues: - When system crypto policy files are not available, use the information from the java.security file that we distribute with OpenJDK as a fallback. (bsc#1193314) java-1_8_0-openjdk-1.8.0.312-3.61.3.src.rpm java-1_8_0-openjdk-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.312-3.61.3.noarch.rpm java-1_8_0-openjdk-src-1.8.0.312-3.61.3.x86_64.rpm java-1_8_0-openjdk-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-src-1.8.0.312-3.61.3.s390x.rpm java-1_8_0-openjdk-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.312-3.61.3.ppc64le.rpm java-1_8_0-openjdk-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.312-3.61.3.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.312-3.61.3.aarch64.rpm openSUSE-SLE-15.3-2021-4165 moderate SUSE Updates openSUSE-SLE 15.3 This update for kmod fixes the following issues: - Ensure that kmod and packages linking to libkmod provide same features. (bsc#1193430) kmod-29-4.15.1.src.rpm kmod-29-4.15.1.x86_64.rpm kmod-bash-completion-29-4.15.1.noarch.rpm libkmod-devel-29-4.15.1.x86_64.rpm libkmod2-29-4.15.1.x86_64.rpm kmod-29-4.15.1.s390x.rpm libkmod-devel-29-4.15.1.s390x.rpm libkmod2-29-4.15.1.s390x.rpm kmod-29-4.15.1.ppc64le.rpm libkmod-devel-29-4.15.1.ppc64le.rpm libkmod2-29-4.15.1.ppc64le.rpm kmod-29-4.15.1.aarch64.rpm libkmod-devel-29-4.15.1.aarch64.rpm libkmod2-29-4.15.1.aarch64.rpm openSUSE-SLE-15.3-2021-4189 moderate SUSE Updates openSUSE-SLE 15.3 This update for scap-security-guide fixes the following issues: - updated to 0.1.59 release (jsc#ECO-3319) - Support for Debian 11 - NERC CIP profiles for OCP4 and RHCOS - HIPAA profile for SLE15 - Delta Tailoring Files for STIG profiles scap-security-guide-0.1.59-1.24.3.noarch.rpm scap-security-guide-0.1.59-1.24.3.src.rpm scap-security-guide-debian-0.1.59-1.24.3.noarch.rpm scap-security-guide-redhat-0.1.59-1.24.3.noarch.rpm scap-security-guide-ubuntu-0.1.59-1.24.3.noarch.rpm openSUSE-SLE-15.3-2021-3996 moderate SUSE Updates openSUSE-SLE 15.3 This update for ImageMagick fixes the following issues: - CVE-2021-20176: Fixed division by zero caused by processing crafted file (bsc#1181836). ImageMagick-7.0.7.34-10.18.1.src.rpm ImageMagick-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-config-7-upstream-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-devel-32bit-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-devel-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-doc-7.0.7.34-10.18.1.noarch.rpm ImageMagick-extra-7.0.7.34-10.18.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-10.18.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.18.1.x86_64.rpm libMagick++-devel-32bit-7.0.7.34-10.18.1.x86_64.rpm libMagick++-devel-7.0.7.34-10.18.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-10.18.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.18.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-10.18.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.18.1.x86_64.rpm perl-PerlMagick-7.0.7.34-10.18.1.x86_64.rpm ImageMagick-7.0.7.34-10.18.1.s390x.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.18.1.s390x.rpm ImageMagick-config-7-upstream-7.0.7.34-10.18.1.s390x.rpm ImageMagick-devel-7.0.7.34-10.18.1.s390x.rpm ImageMagick-extra-7.0.7.34-10.18.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.18.1.s390x.rpm libMagick++-devel-7.0.7.34-10.18.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.18.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.18.1.s390x.rpm perl-PerlMagick-7.0.7.34-10.18.1.s390x.rpm ImageMagick-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-config-7-upstream-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-devel-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-extra-7.0.7.34-10.18.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.18.1.ppc64le.rpm libMagick++-devel-7.0.7.34-10.18.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.18.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.18.1.ppc64le.rpm perl-PerlMagick-7.0.7.34-10.18.1.ppc64le.rpm ImageMagick-7.0.7.34-10.18.1.aarch64.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.18.1.aarch64.rpm ImageMagick-config-7-upstream-7.0.7.34-10.18.1.aarch64.rpm ImageMagick-devel-7.0.7.34-10.18.1.aarch64.rpm ImageMagick-extra-7.0.7.34-10.18.1.aarch64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.18.1.aarch64.rpm libMagick++-devel-7.0.7.34-10.18.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.18.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.18.1.aarch64.rpm perl-PerlMagick-7.0.7.34-10.18.1.aarch64.rpm openSUSE-SLE-15.3-2021-3993 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Update to Extended Support Release 91.4.0 (bsc#1193485): - CVE-2021-43536: URL leakage when navigating while executing asynchronous function - CVE-2021-43537: Heap buffer overflow when using structured clone - CVE-2021-43538: Missing fullscreen and pointer lock notification when requesting both - CVE-2021-43539: GC rooting failure when calling wasm instance methods - CVE-2021-43541: External protocol handler parameters were unescaped - CVE-2021-43542: XMLHttpRequest error codes could have leaked the existence of an external protocol handler - CVE-2021-43543: Bypass of CSP sandbox directive when embedding - CVE-2021-43545: Denial of Service when using the Location API in a loop - CVE-2021-43546: Cursor spoofing could overlay user interface when native cursor is zoomed - Memory safety bugs fixed in Firefox 95 and Firefox ESR 91.4 - Removed x-scheme-handler/ftp from MozillaFirefox.desktop (bsc#1193321) MozillaFirefox-91.4.0-152.9.1.src.rpm MozillaFirefox-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-branding-upstream-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-devel-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-translations-common-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-translations-other-91.4.0-152.9.1.x86_64.rpm MozillaFirefox-91.4.0-152.9.1.s390x.rpm MozillaFirefox-branding-upstream-91.4.0-152.9.1.s390x.rpm MozillaFirefox-devel-91.4.0-152.9.1.s390x.rpm MozillaFirefox-translations-common-91.4.0-152.9.1.s390x.rpm MozillaFirefox-translations-other-91.4.0-152.9.1.s390x.rpm MozillaFirefox-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-devel-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-translations-common-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-translations-other-91.4.0-152.9.1.ppc64le.rpm MozillaFirefox-91.4.0-152.9.1.aarch64.rpm MozillaFirefox-branding-upstream-91.4.0-152.9.1.aarch64.rpm MozillaFirefox-devel-91.4.0-152.9.1.aarch64.rpm MozillaFirefox-translations-common-91.4.0-152.9.1.aarch64.rpm MozillaFirefox-translations-other-91.4.0-152.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-4170 moderate SUSE Updates openSUSE-SLE 15.3 This update for libaom fixes the following issues: - CVE-2020-36129: Fixed stack buffer overflow via the component src/aom_image.c (bsc#1193356). - CVE-2020-36131: Fixed stack buffer overflow via the component stats/rate_hist.c (bsc#1193365). - CVE-2020-36135: Fixed NULL pointer dereference via the component rate_hist.c (bsc#1193366). - CVE-2020-36130: Fixed NULL pointer dereference via the component av1/av1_dx_iface.c (bsc#1193369). aom-tools-1.0.0-3.9.1.x86_64.rpm libaom-1.0.0-3.9.1.src.rpm libaom-devel-1.0.0-3.9.1.x86_64.rpm libaom-devel-doc-1.0.0-3.9.1.noarch.rpm libaom0-1.0.0-3.9.1.x86_64.rpm libaom0-32bit-1.0.0-3.9.1.x86_64.rpm aom-tools-1.0.0-3.9.1.s390x.rpm libaom-devel-1.0.0-3.9.1.s390x.rpm libaom0-1.0.0-3.9.1.s390x.rpm aom-tools-1.0.0-3.9.1.ppc64le.rpm libaom-devel-1.0.0-3.9.1.ppc64le.rpm libaom0-1.0.0-3.9.1.ppc64le.rpm aom-tools-1.0.0-3.9.1.aarch64.rpm libaom-devel-1.0.0-3.9.1.aarch64.rpm libaom0-1.0.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-4167 moderate SUSE Updates openSUSE-SLE 15.3 This update for openscap fixes the following issues: - add SLES support to oscap-docker (bsc#1179314) Note that the oscap-docker currently requires python3-docker from PackageHub. libopenscap25-1.3.5-3.10.1.x86_64.rpm libopenscap_sce25-1.3.5-3.10.1.x86_64.rpm openscap-1.3.5-3.10.1.src.rpm openscap-1.3.5-3.10.1.x86_64.rpm openscap-content-1.3.5-3.10.1.x86_64.rpm openscap-devel-1.3.5-3.10.1.x86_64.rpm openscap-docker-1.3.5-3.10.1.x86_64.rpm openscap-utils-1.3.5-3.10.1.x86_64.rpm libopenscap25-1.3.5-3.10.1.s390x.rpm libopenscap_sce25-1.3.5-3.10.1.s390x.rpm openscap-1.3.5-3.10.1.s390x.rpm openscap-content-1.3.5-3.10.1.s390x.rpm openscap-devel-1.3.5-3.10.1.s390x.rpm openscap-docker-1.3.5-3.10.1.s390x.rpm openscap-utils-1.3.5-3.10.1.s390x.rpm libopenscap25-1.3.5-3.10.1.ppc64le.rpm libopenscap_sce25-1.3.5-3.10.1.ppc64le.rpm openscap-1.3.5-3.10.1.ppc64le.rpm openscap-content-1.3.5-3.10.1.ppc64le.rpm openscap-devel-1.3.5-3.10.1.ppc64le.rpm openscap-docker-1.3.5-3.10.1.ppc64le.rpm openscap-utils-1.3.5-3.10.1.ppc64le.rpm libopenscap25-1.3.5-3.10.1.aarch64.rpm libopenscap_sce25-1.3.5-3.10.1.aarch64.rpm openscap-1.3.5-3.10.1.aarch64.rpm openscap-content-1.3.5-3.10.1.aarch64.rpm openscap-devel-1.3.5-3.10.1.aarch64.rpm openscap-docker-1.3.5-3.10.1.aarch64.rpm openscap-utils-1.3.5-3.10.1.aarch64.rpm openSUSE-SLE-15.3-2021-4179 moderate SUSE Updates openSUSE-SLE 15.3 This update for corosync fixes the following issues: - Fix corosync not recognizing isolated nodes when interface is down (bsc#1192467) corosync-2.4.5-12.7.1.src.rpm corosync-2.4.5-12.7.1.x86_64.rpm corosync-qdevice-2.4.5-12.7.1.x86_64.rpm corosync-qnetd-2.4.5-12.7.1.x86_64.rpm corosync-testagents-2.4.5-12.7.1.x86_64.rpm libcfg6-2.4.5-12.7.1.x86_64.rpm libcfg6-32bit-2.4.5-12.7.1.x86_64.rpm libcmap4-2.4.5-12.7.1.x86_64.rpm libcmap4-32bit-2.4.5-12.7.1.x86_64.rpm libcorosync-devel-2.4.5-12.7.1.x86_64.rpm libcorosync_common4-2.4.5-12.7.1.x86_64.rpm libcorosync_common4-32bit-2.4.5-12.7.1.x86_64.rpm libcpg4-2.4.5-12.7.1.x86_64.rpm libcpg4-32bit-2.4.5-12.7.1.x86_64.rpm libquorum5-2.4.5-12.7.1.x86_64.rpm libquorum5-32bit-2.4.5-12.7.1.x86_64.rpm libsam4-2.4.5-12.7.1.x86_64.rpm libsam4-32bit-2.4.5-12.7.1.x86_64.rpm libtotem_pg5-2.4.5-12.7.1.x86_64.rpm libtotem_pg5-32bit-2.4.5-12.7.1.x86_64.rpm libvotequorum8-2.4.5-12.7.1.x86_64.rpm libvotequorum8-32bit-2.4.5-12.7.1.x86_64.rpm corosync-2.4.5-12.7.1.s390x.rpm corosync-qdevice-2.4.5-12.7.1.s390x.rpm corosync-qnetd-2.4.5-12.7.1.s390x.rpm corosync-testagents-2.4.5-12.7.1.s390x.rpm libcfg6-2.4.5-12.7.1.s390x.rpm libcmap4-2.4.5-12.7.1.s390x.rpm libcorosync-devel-2.4.5-12.7.1.s390x.rpm libcorosync_common4-2.4.5-12.7.1.s390x.rpm libcpg4-2.4.5-12.7.1.s390x.rpm libquorum5-2.4.5-12.7.1.s390x.rpm libsam4-2.4.5-12.7.1.s390x.rpm libtotem_pg5-2.4.5-12.7.1.s390x.rpm libvotequorum8-2.4.5-12.7.1.s390x.rpm corosync-2.4.5-12.7.1.ppc64le.rpm corosync-qdevice-2.4.5-12.7.1.ppc64le.rpm corosync-qnetd-2.4.5-12.7.1.ppc64le.rpm corosync-testagents-2.4.5-12.7.1.ppc64le.rpm libcfg6-2.4.5-12.7.1.ppc64le.rpm libcmap4-2.4.5-12.7.1.ppc64le.rpm libcorosync-devel-2.4.5-12.7.1.ppc64le.rpm libcorosync_common4-2.4.5-12.7.1.ppc64le.rpm libcpg4-2.4.5-12.7.1.ppc64le.rpm libquorum5-2.4.5-12.7.1.ppc64le.rpm libsam4-2.4.5-12.7.1.ppc64le.rpm libtotem_pg5-2.4.5-12.7.1.ppc64le.rpm libvotequorum8-2.4.5-12.7.1.ppc64le.rpm corosync-2.4.5-12.7.1.aarch64.rpm corosync-qdevice-2.4.5-12.7.1.aarch64.rpm corosync-qnetd-2.4.5-12.7.1.aarch64.rpm corosync-testagents-2.4.5-12.7.1.aarch64.rpm libcfg6-2.4.5-12.7.1.aarch64.rpm libcmap4-2.4.5-12.7.1.aarch64.rpm libcorosync-devel-2.4.5-12.7.1.aarch64.rpm libcorosync_common4-2.4.5-12.7.1.aarch64.rpm libcpg4-2.4.5-12.7.1.aarch64.rpm libquorum5-2.4.5-12.7.1.aarch64.rpm libsam4-2.4.5-12.7.1.aarch64.rpm libtotem_pg5-2.4.5-12.7.1.aarch64.rpm libvotequorum8-2.4.5-12.7.1.aarch64.rpm openSUSE-SLE-15.3-2021-4153 important SUSE Updates openSUSE-SLE 15.3 This update for openssh fixes the following issues: - CVE-2021-28041: Fixed double free in ssh-agent (bsc#1183137). openssh-8.4p1-3.9.1.src.rpm openssh-8.4p1-3.9.1.x86_64.rpm openssh-askpass-gnome-8.4p1-3.9.1.src.rpm openssh-askpass-gnome-8.4p1-3.9.1.x86_64.rpm openssh-cavs-8.4p1-3.9.1.x86_64.rpm openssh-clients-8.4p1-3.9.1.x86_64.rpm openssh-common-8.4p1-3.9.1.x86_64.rpm openssh-fips-8.4p1-3.9.1.x86_64.rpm openssh-helpers-8.4p1-3.9.1.x86_64.rpm openssh-server-8.4p1-3.9.1.x86_64.rpm openssh-8.4p1-3.9.1.s390x.rpm openssh-askpass-gnome-8.4p1-3.9.1.s390x.rpm openssh-cavs-8.4p1-3.9.1.s390x.rpm openssh-clients-8.4p1-3.9.1.s390x.rpm openssh-common-8.4p1-3.9.1.s390x.rpm openssh-fips-8.4p1-3.9.1.s390x.rpm openssh-helpers-8.4p1-3.9.1.s390x.rpm openssh-server-8.4p1-3.9.1.s390x.rpm openssh-8.4p1-3.9.1.ppc64le.rpm openssh-askpass-gnome-8.4p1-3.9.1.ppc64le.rpm openssh-cavs-8.4p1-3.9.1.ppc64le.rpm openssh-clients-8.4p1-3.9.1.ppc64le.rpm openssh-common-8.4p1-3.9.1.ppc64le.rpm openssh-fips-8.4p1-3.9.1.ppc64le.rpm openssh-helpers-8.4p1-3.9.1.ppc64le.rpm openssh-server-8.4p1-3.9.1.ppc64le.rpm openssh-8.4p1-3.9.1.aarch64.rpm openssh-askpass-gnome-8.4p1-3.9.1.aarch64.rpm openssh-cavs-8.4p1-3.9.1.aarch64.rpm openssh-clients-8.4p1-3.9.1.aarch64.rpm openssh-common-8.4p1-3.9.1.aarch64.rpm openssh-fips-8.4p1-3.9.1.aarch64.rpm openssh-helpers-8.4p1-3.9.1.aarch64.rpm openssh-server-8.4p1-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2021-3999 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issues: - CVE-2021-44228: Fix a remote code execution vulnerability that existed in the LDAP JNDI parser. [bsc#1193611, CVE-2021-44228] log4j-2.13.0-4.3.1.noarch.rpm log4j-2.13.0-4.3.1.src.rpm log4j-javadoc-2.13.0-4.3.1.noarch.rpm log4j-jcl-2.13.0-4.3.1.noarch.rpm log4j-slf4j-2.13.0-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-4142 important SUSE Updates openSUSE-SLE 15.3 This update for xdg-desktop-portal-gtk fixes the following issues: - Fix xdg-desktop-portal-gtk process hanging the logout. Make the process exit after one second unless it has active sessions (bsc#1179465) xdg-desktop-portal-gtk-1.8.0-3.6.1.src.rpm xdg-desktop-portal-gtk-1.8.0-3.6.1.x86_64.rpm xdg-desktop-portal-gtk-lang-1.8.0-3.6.1.noarch.rpm xdg-desktop-portal-gtk-1.8.0-3.6.1.s390x.rpm xdg-desktop-portal-gtk-1.8.0-3.6.1.ppc64le.rpm xdg-desktop-portal-gtk-1.8.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4141 important SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Add iscsi-init.service requirements (bsc#1193512) dracut-049.1+suse.218.gca24e614-3.48.3.src.rpm dracut-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-extra-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-fips-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-ima-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-tools-049.1+suse.218.gca24e614-3.48.3.x86_64.rpm dracut-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-extra-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-fips-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-ima-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-tools-049.1+suse.218.gca24e614-3.48.3.s390x.rpm dracut-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-extra-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-fips-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-ima-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-tools-049.1+suse.218.gca24e614-3.48.3.ppc64le.rpm dracut-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm dracut-extra-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm dracut-fips-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm dracut-ima-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm dracut-tools-049.1+suse.218.gca24e614-3.48.3.aarch64.rpm openSUSE-SLE-15.3-2022-485 moderate SUSE Updates openSUSE-SLE 15.3 This update for tomcat fixes the following issues: - Fix Null Pointer Exception in JNDIRealm, when userRoleAttribute is not set (bsc#1193569) tomcat-9.0.36-16.1.noarch.rpm tomcat-9.0.36-16.1.src.rpm tomcat-admin-webapps-9.0.36-16.1.noarch.rpm tomcat-docs-webapp-9.0.36-16.1.noarch.rpm tomcat-el-3_0-api-9.0.36-16.1.noarch.rpm tomcat-embed-9.0.36-16.1.noarch.rpm tomcat-javadoc-9.0.36-16.1.noarch.rpm tomcat-jsp-2_3-api-9.0.36-16.1.noarch.rpm tomcat-jsvc-9.0.36-16.1.noarch.rpm tomcat-lib-9.0.36-16.1.noarch.rpm tomcat-servlet-4_0-api-9.0.36-16.1.noarch.rpm tomcat-webapps-9.0.36-16.1.noarch.rpm openSUSE-SLE-15.3-2021-4195 important SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 and yast2 fixes the following issues: autoyast2: - During autoupgrade, merge the selected product workflow in order to execute 2nd stage modules (bsc#1192437) - Process the `add-on` section only during 1st stage and not again during the 2nd stage (bsc#1192185) - Stop autoyast installation when registration failed on online medium (bsc#1188211) yast2: - Do not reinitialize the packaging system during offline upgrade (bsc#1193784, bsc#1192437) autoyast2-4.3.94-3.32.1.noarch.rpm autoyast2-4.3.94-3.32.1.src.rpm autoyast2-installation-4.3.94-3.32.1.noarch.rpm yast2-4.3.66-3.14.1.src.rpm yast2-4.3.66-3.14.1.x86_64.rpm yast2-logs-4.3.66-3.14.1.x86_64.rpm yast2-4.3.66-3.14.1.s390x.rpm yast2-logs-4.3.66-3.14.1.s390x.rpm yast2-4.3.66-3.14.1.ppc64le.rpm yast2-logs-4.3.66-3.14.1.ppc64le.rpm yast2-4.3.66-3.14.1.aarch64.rpm yast2-logs-4.3.66-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2021-4149 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849). ctdb-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm ctdb-pcp-pmda-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm ctdb-tests-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-binding0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-binding0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-samr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-samr0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc-samr0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libdcerpc0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-krb5pac-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-krb5pac0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-krb5pac0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-nbt-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-nbt0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-nbt0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-standard-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-standard0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr-standard0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr1-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libndr1-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libnetapi-devel-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libnetapi-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libnetapi0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libnetapi0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-credentials-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-credentials0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-credentials0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-errors0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-errors0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-hostconfig-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-hostconfig0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-hostconfig0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-passdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-passdb0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-passdb0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-policy-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-policy-python3-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-policy0-python3-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-policy0-python3-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-util0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamba-util0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamdb0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsamdb0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbclient0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbconf-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbconf0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbconf0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbldap-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbldap2-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libsmbldap2-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libtevent-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libtevent-util0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libtevent-util0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libwbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libwbclient0-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm libwbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.src.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-ad-dc-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-ad-dc-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-ceph-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-client-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-client-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-core-devel-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-doc-4.13.13+git.539.fdbc44a8598-3.20.2.noarch.rpm samba-dsdb-modules-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-gpupdate-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-ldb-ldap-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-libs-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-libs-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-libs-python3-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-libs-python3-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-python3-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-test-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-winbind-32bit-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm samba-winbind-4.13.13+git.539.fdbc44a8598-3.20.2.x86_64.rpm ctdb-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm ctdb-pcp-pmda-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm ctdb-tests-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc-binding0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc-samr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc-samr0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libdcerpc0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-krb5pac-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-krb5pac0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-nbt-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-nbt0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-standard-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr-standard0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libndr1-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libnetapi-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libnetapi0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-credentials-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-credentials0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-errors0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-hostconfig-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-hostconfig0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-passdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-passdb0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-policy-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-policy-python3-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-policy0-python3-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamba-util0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsamdb0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbconf-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbconf0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbldap-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libsmbldap2-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libtevent-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libtevent-util0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libwbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm libwbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-ad-dc-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-client-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-core-devel-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-dsdb-modules-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-gpupdate-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-ldb-ldap-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-libs-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-libs-python3-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-python3-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-test-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm samba-winbind-4.13.13+git.539.fdbc44a8598-3.20.2.s390x.rpm ctdb-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm ctdb-pcp-pmda-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm ctdb-tests-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc-binding0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc-samr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc-samr0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libdcerpc0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-krb5pac-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-krb5pac0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-nbt-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-nbt0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-standard-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr-standard0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libndr1-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libnetapi-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libnetapi0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-credentials-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-credentials0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-errors0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-hostconfig-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-hostconfig0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-passdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-passdb0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-policy-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-policy-python3-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-policy0-python3-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamba-util0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsamdb0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbconf-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbconf0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbldap-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libsmbldap2-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libtevent-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libtevent-util0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libwbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm libwbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-ad-dc-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-client-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-core-devel-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-dsdb-modules-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-gpupdate-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-ldb-ldap-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-libs-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-libs-python3-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-python3-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-test-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm samba-winbind-4.13.13+git.539.fdbc44a8598-3.20.2.ppc64le.rpm ctdb-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm ctdb-pcp-pmda-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm ctdb-tests-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-binding0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-binding0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libdcerpc-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-samr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-samr0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc-samr0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libdcerpc0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libdcerpc0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libndr-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-krb5pac-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-krb5pac0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-krb5pac0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libndr-nbt-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-nbt0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-nbt0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libndr-standard-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-standard0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr-standard0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libndr1-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libndr1-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libnetapi-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libnetapi-devel-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libnetapi0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libnetapi0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-credentials-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-credentials0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-credentials0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-errors0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-errors0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-hostconfig-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-hostconfig0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-hostconfig0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-passdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-passdb0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-passdb0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-policy-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-policy-python3-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-policy0-python3-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-policy0-python3-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamba-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-util0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamba-util0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsamdb-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamdb0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsamdb0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsmbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbclient0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsmbconf-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbconf0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbconf0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libsmbldap-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbldap2-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libsmbldap2-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libtevent-util-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libtevent-util0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libtevent-util0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm libwbclient-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libwbclient0-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm libwbclient0-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-ad-dc-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-ad-dc-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-ceph-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-client-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-client-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-core-devel-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-dsdb-modules-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-gpupdate-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-ldb-ldap-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-libs-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-libs-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-libs-python3-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-libs-python3-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm samba-python3-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-test-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-winbind-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64.rpm samba-winbind-64bit-4.13.13+git.539.fdbc44a8598-3.20.2.aarch64_ilp32.rpm openSUSE-SLE-15.3-2021-4173 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849). libndr0-32bit-4.11.14+git.313.d4e302805e1-4.32.1.x86_64.rpm libndr0-4.11.14+git.313.d4e302805e1-4.32.1.x86_64.rpm samba-4.11.14+git.313.d4e302805e1-4.32.1.src.rpm libndr0-4.11.14+git.313.d4e302805e1-4.32.1.s390x.rpm libndr0-4.11.14+git.313.d4e302805e1-4.32.1.ppc64le.rpm libndr0-4.11.14+git.313.d4e302805e1-4.32.1.aarch64.rpm openSUSE-SLE-15.3-2021-4117 important SUSE Updates openSUSE-SLE 15.3 This update for samba fixes the following issues: The username map advice from the CVE-2020-25717 advisory note has undesired side effects for the local nt token. Fallback to a SID/UID based mapping if the name based lookup fails (bsc#1192849). libsamba-policy-python-devel-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm libsamba-policy0-32bit-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm libsamba-policy0-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm samba-4.9.5+git.477.8163dd03413-3.61.1.src.rpm samba-libs-python-32bit-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm samba-libs-python-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm samba-python-4.9.5+git.477.8163dd03413-3.61.1.x86_64.rpm libsamba-policy-python-devel-4.9.5+git.477.8163dd03413-3.61.1.s390x.rpm libsamba-policy0-4.9.5+git.477.8163dd03413-3.61.1.s390x.rpm samba-libs-python-4.9.5+git.477.8163dd03413-3.61.1.s390x.rpm samba-python-4.9.5+git.477.8163dd03413-3.61.1.s390x.rpm libsamba-policy-python-devel-4.9.5+git.477.8163dd03413-3.61.1.ppc64le.rpm libsamba-policy0-4.9.5+git.477.8163dd03413-3.61.1.ppc64le.rpm samba-libs-python-4.9.5+git.477.8163dd03413-3.61.1.ppc64le.rpm samba-python-4.9.5+git.477.8163dd03413-3.61.1.ppc64le.rpm libsamba-policy-python-devel-4.9.5+git.477.8163dd03413-3.61.1.aarch64.rpm libsamba-policy0-4.9.5+git.477.8163dd03413-3.61.1.aarch64.rpm samba-libs-python-4.9.5+git.477.8163dd03413-3.61.1.aarch64.rpm samba-python-4.9.5+git.477.8163dd03413-3.61.1.aarch64.rpm openSUSE-SLE-15.3-2022-66 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: Rust is shipped in version 1.56.1. (jsc#SLE-18627 jsc#SLE-18626) cargo-1.56.1-21.12.1.x86_64.rpm cargo1.56-1.56.1-7.3.2.x86_64.rpm rust-1.56.1-21.12.1.src.rpm rust-1.56.1-21.12.1.x86_64.rpm rust1.56-1.56.1-7.3.2.src.rpm rust1.56-1.56.1-7.3.2.x86_64.rpm cargo-1.56.1-21.12.1.s390x.rpm cargo1.56-1.56.1-7.3.2.s390x.rpm rust-1.56.1-21.12.1.s390x.rpm rust1.56-1.56.1-7.3.2.s390x.rpm cargo-1.56.1-21.12.1.ppc64le.rpm cargo1.56-1.56.1-7.3.2.ppc64le.rpm rust-1.56.1-21.12.1.ppc64le.rpm rust1.56-1.56.1-7.3.2.ppc64le.rpm cargo-1.56.1-21.12.1.aarch64.rpm cargo1.56-1.56.1-7.3.2.aarch64.rpm rust-1.56.1-21.12.1.aarch64.rpm rust1.56-1.56.1-7.3.2.aarch64.rpm openSUSE-SLE-15.3-2021-4139 critical SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Revert "core: rework how we connect to the bus" (bsc#1193521 bsc#1193481) sleep-config: partitions can't be deleted, only files can shared/sleep-config: exclude zram devices from hibernation candidates systemd-234-24.102.1.src.rpm True systemd-bash-completion-234-24.102.1.noarch.rpm True openSUSE-SLE-15.3-2021-4175 important SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - Bump the max number of inodes for /dev to a million (bsc#1192858) - sleep: don't skip resume device with low priority/available space (bsc#1192423) - test: use kbd-mode-map we ship in one more test case - test-keymap-util: always use kbd-model-map we ship - Add rules for virtual devices and enforce "none" for loop devices. (bsc#1193759) libsystemd0-246.16-7.28.1.x86_64.rpm True libsystemd0-32bit-246.16-7.28.1.x86_64.rpm True libudev-devel-246.16-7.28.1.x86_64.rpm True libudev-devel-32bit-246.16-7.28.1.x86_64.rpm True libudev1-246.16-7.28.1.x86_64.rpm True libudev1-32bit-246.16-7.28.1.x86_64.rpm True nss-myhostname-246.16-7.28.1.x86_64.rpm True nss-myhostname-32bit-246.16-7.28.1.x86_64.rpm True nss-mymachines-246.16-7.28.1.x86_64.rpm True nss-mymachines-32bit-246.16-7.28.1.x86_64.rpm True nss-resolve-246.16-7.28.1.x86_64.rpm True nss-systemd-246.16-7.28.1.x86_64.rpm True systemd-246.16-7.28.1.src.rpm True systemd-246.16-7.28.1.x86_64.rpm True systemd-32bit-246.16-7.28.1.x86_64.rpm True systemd-container-246.16-7.28.1.x86_64.rpm True systemd-coredump-246.16-7.28.1.x86_64.rpm True systemd-devel-246.16-7.28.1.x86_64.rpm True systemd-doc-246.16-7.28.1.x86_64.rpm True systemd-journal-remote-246.16-7.28.1.x86_64.rpm True systemd-lang-246.16-7.28.1.noarch.rpm True systemd-logger-246.16-7.28.1.x86_64.rpm True systemd-network-246.16-7.28.1.x86_64.rpm True systemd-sysvinit-246.16-7.28.1.x86_64.rpm True udev-246.16-7.28.1.x86_64.rpm True libsystemd0-246.16-7.28.1.s390x.rpm True libudev-devel-246.16-7.28.1.s390x.rpm True libudev1-246.16-7.28.1.s390x.rpm True nss-myhostname-246.16-7.28.1.s390x.rpm True nss-mymachines-246.16-7.28.1.s390x.rpm True nss-resolve-246.16-7.28.1.s390x.rpm True nss-systemd-246.16-7.28.1.s390x.rpm True systemd-246.16-7.28.1.s390x.rpm True systemd-container-246.16-7.28.1.s390x.rpm True systemd-coredump-246.16-7.28.1.s390x.rpm True systemd-devel-246.16-7.28.1.s390x.rpm True systemd-doc-246.16-7.28.1.s390x.rpm True systemd-journal-remote-246.16-7.28.1.s390x.rpm True systemd-logger-246.16-7.28.1.s390x.rpm True systemd-network-246.16-7.28.1.s390x.rpm True systemd-sysvinit-246.16-7.28.1.s390x.rpm True udev-246.16-7.28.1.s390x.rpm True libsystemd0-246.16-7.28.1.ppc64le.rpm True libudev-devel-246.16-7.28.1.ppc64le.rpm True libudev1-246.16-7.28.1.ppc64le.rpm True nss-myhostname-246.16-7.28.1.ppc64le.rpm True nss-mymachines-246.16-7.28.1.ppc64le.rpm True nss-resolve-246.16-7.28.1.ppc64le.rpm True nss-systemd-246.16-7.28.1.ppc64le.rpm True systemd-246.16-7.28.1.ppc64le.rpm True systemd-container-246.16-7.28.1.ppc64le.rpm True systemd-coredump-246.16-7.28.1.ppc64le.rpm True systemd-devel-246.16-7.28.1.ppc64le.rpm True systemd-doc-246.16-7.28.1.ppc64le.rpm True systemd-journal-remote-246.16-7.28.1.ppc64le.rpm True systemd-logger-246.16-7.28.1.ppc64le.rpm True systemd-network-246.16-7.28.1.ppc64le.rpm True systemd-sysvinit-246.16-7.28.1.ppc64le.rpm True udev-246.16-7.28.1.ppc64le.rpm True libsystemd0-246.16-7.28.1.aarch64.rpm True libudev-devel-246.16-7.28.1.aarch64.rpm True libudev1-246.16-7.28.1.aarch64.rpm True nss-myhostname-246.16-7.28.1.aarch64.rpm True nss-mymachines-246.16-7.28.1.aarch64.rpm True nss-resolve-246.16-7.28.1.aarch64.rpm True nss-systemd-246.16-7.28.1.aarch64.rpm True systemd-246.16-7.28.1.aarch64.rpm True systemd-container-246.16-7.28.1.aarch64.rpm True systemd-coredump-246.16-7.28.1.aarch64.rpm True systemd-devel-246.16-7.28.1.aarch64.rpm True systemd-doc-246.16-7.28.1.aarch64.rpm True systemd-journal-remote-246.16-7.28.1.aarch64.rpm True systemd-logger-246.16-7.28.1.aarch64.rpm True systemd-network-246.16-7.28.1.aarch64.rpm True systemd-sysvinit-246.16-7.28.1.aarch64.rpm True udev-246.16-7.28.1.aarch64.rpm True openSUSE-SLE-15.3-2022-12 moderate SUSE Updates openSUSE-SLE 15.3 This recommended update for cairo, jbigkit, libjpeg-turbo, libwebp, libxcb, openjpeg2, pixman, poppler, tiff provides the following fix: - Ship some missing binaries to PackageHub. cairo-1.16.0-5.2.1.src.rpm cairo-devel-1.16.0-5.2.1.x86_64.rpm cairo-devel-32bit-1.16.0-5.2.1.x86_64.rpm cairo-tools-1.16.0-5.2.1.x86_64.rpm jbigkit-2.1-3.2.1.src.rpm jbigkit-2.1-3.2.1.x86_64.rpm libcairo-gobject2-1.16.0-5.2.1.x86_64.rpm libcairo-gobject2-32bit-1.16.0-5.2.1.x86_64.rpm libcairo-script-interpreter2-1.16.0-5.2.1.x86_64.rpm libcairo-script-interpreter2-32bit-1.16.0-5.2.1.x86_64.rpm libcairo2-1.16.0-5.2.1.x86_64.rpm libcairo2-32bit-1.16.0-5.2.1.x86_64.rpm libjbig-devel-2.1-3.2.1.x86_64.rpm libjbig-devel-32bit-2.1-3.2.1.x86_64.rpm libjbig2-2.1-3.2.1.x86_64.rpm libjbig2-32bit-2.1-3.2.1.x86_64.rpm libjpeg-turbo-1.5.3-32.2.1.src.rpm libjpeg-turbo-1.5.3-32.2.1.x86_64.rpm libjpeg62-32bit-62.2.0-32.0.1.x86_64.rpm libjpeg62-62.2.0-32.0.1.x86_64.rpm libjpeg62-devel-32bit-62.2.0-32.0.1.x86_64.rpm libjpeg62-devel-62.2.0-32.0.1.x86_64.rpm libjpeg62-turbo-1.5.3-32.0.1.src.rpm libjpeg62-turbo-1.5.3-32.0.1.x86_64.rpm libjpeg8-32bit-8.1.2-32.2.1.x86_64.rpm libjpeg8-8.1.2-32.2.1.x86_64.rpm libjpeg8-devel-32bit-8.1.2-32.2.1.x86_64.rpm libjpeg8-devel-8.1.2-32.2.1.x86_64.rpm libopenjp2-7-2.3.0-3.2.2.x86_64.rpm libopenjp2-7-32bit-2.3.0-3.2.2.x86_64.rpm libpixman-1-0-0.34.0-7.2.1.x86_64.rpm libpixman-1-0-32bit-0.34.0-7.2.1.x86_64.rpm libpixman-1-0-devel-0.34.0-7.2.1.x86_64.rpm libpoppler-cpp0-0.79.0-3.5.1.x86_64.rpm libpoppler-cpp0-32bit-0.79.0-3.5.1.x86_64.rpm libpoppler-devel-0.79.0-3.5.1.x86_64.rpm libpoppler-glib-devel-0.79.0-3.5.1.x86_64.rpm libpoppler-glib8-0.79.0-3.5.1.x86_64.rpm libpoppler-glib8-32bit-0.79.0-3.5.1.x86_64.rpm libpoppler-qt5-1-0.79.0-3.5.1.x86_64.rpm libpoppler-qt5-1-32bit-0.79.0-3.5.1.x86_64.rpm libpoppler-qt5-devel-0.79.0-3.5.1.x86_64.rpm libpoppler89-0.79.0-3.5.1.x86_64.rpm libpoppler89-32bit-0.79.0-3.5.1.x86_64.rpm libtiff-devel-32bit-4.0.9-45.2.1.x86_64.rpm libtiff-devel-4.0.9-45.2.1.x86_64.rpm libtiff5-32bit-4.0.9-45.2.1.x86_64.rpm libtiff5-4.0.9-45.2.1.x86_64.rpm libturbojpeg0-32bit-8.1.2-32.2.1.x86_64.rpm libturbojpeg0-8.1.2-32.2.1.x86_64.rpm libwebp-1.0.3-3.2.1.src.rpm libwebp-devel-1.0.3-3.2.1.x86_64.rpm libwebp-devel-32bit-1.0.3-3.2.1.x86_64.rpm libwebp-tools-1.0.3-3.2.1.x86_64.rpm libwebp7-1.0.3-3.2.1.x86_64.rpm libwebp7-32bit-1.0.3-3.2.1.x86_64.rpm libwebpdecoder3-1.0.3-3.2.1.x86_64.rpm libwebpdecoder3-32bit-1.0.3-3.2.1.x86_64.rpm libwebpdemux2-1.0.3-3.2.1.x86_64.rpm libwebpdemux2-32bit-1.0.3-3.2.1.x86_64.rpm libwebpmux3-1.0.3-3.2.1.x86_64.rpm libwebpmux3-32bit-1.0.3-3.2.1.x86_64.rpm libxcb-1.13-3.7.1.src.rpm libxcb-composite0-1.13-3.7.1.x86_64.rpm libxcb-composite0-32bit-1.13-3.7.1.x86_64.rpm libxcb-damage0-1.13-3.7.1.x86_64.rpm libxcb-damage0-32bit-1.13-3.7.1.x86_64.rpm libxcb-devel-1.13-3.7.1.x86_64.rpm libxcb-devel-32bit-1.13-3.7.1.x86_64.rpm libxcb-devel-doc-1.13-3.7.1.noarch.rpm libxcb-dpms0-1.13-3.7.1.x86_64.rpm libxcb-dpms0-32bit-1.13-3.7.1.x86_64.rpm libxcb-dri2-0-1.13-3.7.1.x86_64.rpm libxcb-dri2-0-32bit-1.13-3.7.1.x86_64.rpm libxcb-dri3-0-1.13-3.7.1.x86_64.rpm libxcb-dri3-0-32bit-1.13-3.7.1.x86_64.rpm libxcb-glx0-1.13-3.7.1.x86_64.rpm libxcb-glx0-32bit-1.13-3.7.1.x86_64.rpm libxcb-present0-1.13-3.7.1.x86_64.rpm libxcb-present0-32bit-1.13-3.7.1.x86_64.rpm libxcb-randr0-1.13-3.7.1.x86_64.rpm libxcb-randr0-32bit-1.13-3.7.1.x86_64.rpm libxcb-record0-1.13-3.7.1.x86_64.rpm libxcb-record0-32bit-1.13-3.7.1.x86_64.rpm libxcb-render0-1.13-3.7.1.x86_64.rpm libxcb-render0-32bit-1.13-3.7.1.x86_64.rpm libxcb-res0-1.13-3.7.1.x86_64.rpm libxcb-res0-32bit-1.13-3.7.1.x86_64.rpm libxcb-screensaver0-1.13-3.7.1.x86_64.rpm libxcb-screensaver0-32bit-1.13-3.7.1.x86_64.rpm libxcb-shape0-1.13-3.7.1.x86_64.rpm libxcb-shape0-32bit-1.13-3.7.1.x86_64.rpm libxcb-shm0-1.13-3.7.1.x86_64.rpm libxcb-shm0-32bit-1.13-3.7.1.x86_64.rpm libxcb-sync1-1.13-3.7.1.x86_64.rpm libxcb-sync1-32bit-1.13-3.7.1.x86_64.rpm libxcb-xf86dri0-1.13-3.7.1.x86_64.rpm libxcb-xf86dri0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xfixes0-1.13-3.7.1.x86_64.rpm libxcb-xfixes0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xinerama0-1.13-3.7.1.x86_64.rpm libxcb-xinerama0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xinput0-1.13-3.7.1.x86_64.rpm libxcb-xinput0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xkb1-1.13-3.7.1.x86_64.rpm libxcb-xkb1-32bit-1.13-3.7.1.x86_64.rpm libxcb-xtest0-1.13-3.7.1.x86_64.rpm libxcb-xtest0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xv0-1.13-3.7.1.x86_64.rpm libxcb-xv0-32bit-1.13-3.7.1.x86_64.rpm libxcb-xvmc0-1.13-3.7.1.x86_64.rpm libxcb-xvmc0-32bit-1.13-3.7.1.x86_64.rpm libxcb1-1.13-3.7.1.x86_64.rpm libxcb1-32bit-1.13-3.7.1.x86_64.rpm openjpeg2-2.3.0-3.2.2.src.rpm openjpeg2-2.3.0-3.2.2.x86_64.rpm openjpeg2-devel-2.3.0-3.2.2.x86_64.rpm pixman-0.34.0-7.2.1.src.rpm poppler-0.79.0-3.5.1.src.rpm poppler-qt5-0.79.0-3.5.1.src.rpm poppler-tools-0.79.0-3.5.1.x86_64.rpm tiff-4.0.9-45.2.1.src.rpm tiff-4.0.9-45.2.1.x86_64.rpm typelib-1_0-Poppler-0_18-0.79.0-3.5.1.x86_64.rpm cairo-devel-1.16.0-5.2.1.s390x.rpm cairo-tools-1.16.0-5.2.1.s390x.rpm jbigkit-2.1-3.2.1.s390x.rpm libcairo-gobject2-1.16.0-5.2.1.s390x.rpm libcairo-script-interpreter2-1.16.0-5.2.1.s390x.rpm libcairo2-1.16.0-5.2.1.s390x.rpm libjbig-devel-2.1-3.2.1.s390x.rpm libjbig2-2.1-3.2.1.s390x.rpm libjpeg-turbo-1.5.3-32.2.1.s390x.rpm libjpeg62-62.2.0-32.0.1.s390x.rpm libjpeg62-devel-62.2.0-32.0.1.s390x.rpm libjpeg62-turbo-1.5.3-32.0.1.s390x.rpm libjpeg8-8.1.2-32.2.1.s390x.rpm libjpeg8-devel-8.1.2-32.2.1.s390x.rpm libopenjp2-7-2.3.0-3.2.2.s390x.rpm libpixman-1-0-0.34.0-7.2.1.s390x.rpm libpixman-1-0-devel-0.34.0-7.2.1.s390x.rpm libpoppler-cpp0-0.79.0-3.5.1.s390x.rpm libpoppler-devel-0.79.0-3.5.1.s390x.rpm libpoppler-glib-devel-0.79.0-3.5.1.s390x.rpm libpoppler-glib8-0.79.0-3.5.1.s390x.rpm libpoppler-qt5-1-0.79.0-3.5.1.s390x.rpm libpoppler-qt5-devel-0.79.0-3.5.1.s390x.rpm libpoppler89-0.79.0-3.5.1.s390x.rpm libtiff-devel-4.0.9-45.2.1.s390x.rpm libtiff5-4.0.9-45.2.1.s390x.rpm libturbojpeg0-8.1.2-32.2.1.s390x.rpm libwebp-devel-1.0.3-3.2.1.s390x.rpm libwebp-tools-1.0.3-3.2.1.s390x.rpm libwebp7-1.0.3-3.2.1.s390x.rpm libwebpdecoder3-1.0.3-3.2.1.s390x.rpm libwebpdemux2-1.0.3-3.2.1.s390x.rpm libwebpmux3-1.0.3-3.2.1.s390x.rpm libxcb-composite0-1.13-3.7.1.s390x.rpm libxcb-damage0-1.13-3.7.1.s390x.rpm libxcb-devel-1.13-3.7.1.s390x.rpm libxcb-dpms0-1.13-3.7.1.s390x.rpm libxcb-dri2-0-1.13-3.7.1.s390x.rpm libxcb-dri3-0-1.13-3.7.1.s390x.rpm libxcb-glx0-1.13-3.7.1.s390x.rpm libxcb-present0-1.13-3.7.1.s390x.rpm libxcb-randr0-1.13-3.7.1.s390x.rpm libxcb-record0-1.13-3.7.1.s390x.rpm libxcb-render0-1.13-3.7.1.s390x.rpm libxcb-res0-1.13-3.7.1.s390x.rpm libxcb-screensaver0-1.13-3.7.1.s390x.rpm libxcb-shape0-1.13-3.7.1.s390x.rpm libxcb-shm0-1.13-3.7.1.s390x.rpm libxcb-sync1-1.13-3.7.1.s390x.rpm libxcb-xf86dri0-1.13-3.7.1.s390x.rpm libxcb-xfixes0-1.13-3.7.1.s390x.rpm libxcb-xinerama0-1.13-3.7.1.s390x.rpm libxcb-xinput0-1.13-3.7.1.s390x.rpm libxcb-xkb1-1.13-3.7.1.s390x.rpm libxcb-xtest0-1.13-3.7.1.s390x.rpm libxcb-xv0-1.13-3.7.1.s390x.rpm libxcb-xvmc0-1.13-3.7.1.s390x.rpm libxcb1-1.13-3.7.1.s390x.rpm openjpeg2-2.3.0-3.2.2.s390x.rpm openjpeg2-devel-2.3.0-3.2.2.s390x.rpm poppler-tools-0.79.0-3.5.1.s390x.rpm tiff-4.0.9-45.2.1.s390x.rpm typelib-1_0-Poppler-0_18-0.79.0-3.5.1.s390x.rpm cairo-devel-1.16.0-5.2.1.ppc64le.rpm cairo-tools-1.16.0-5.2.1.ppc64le.rpm jbigkit-2.1-3.2.1.ppc64le.rpm libcairo-gobject2-1.16.0-5.2.1.ppc64le.rpm libcairo-script-interpreter2-1.16.0-5.2.1.ppc64le.rpm libcairo2-1.16.0-5.2.1.ppc64le.rpm libjbig-devel-2.1-3.2.1.ppc64le.rpm libjbig2-2.1-3.2.1.ppc64le.rpm libjpeg-turbo-1.5.3-32.2.1.ppc64le.rpm libjpeg62-62.2.0-32.0.1.ppc64le.rpm libjpeg62-devel-62.2.0-32.0.1.ppc64le.rpm libjpeg62-turbo-1.5.3-32.0.1.ppc64le.rpm libjpeg8-8.1.2-32.2.1.ppc64le.rpm libjpeg8-devel-8.1.2-32.2.1.ppc64le.rpm libopenjp2-7-2.3.0-3.2.2.ppc64le.rpm libpixman-1-0-0.34.0-7.2.1.ppc64le.rpm libpixman-1-0-devel-0.34.0-7.2.1.ppc64le.rpm libpoppler-cpp0-0.79.0-3.5.1.ppc64le.rpm libpoppler-devel-0.79.0-3.5.1.ppc64le.rpm libpoppler-glib-devel-0.79.0-3.5.1.ppc64le.rpm libpoppler-glib8-0.79.0-3.5.1.ppc64le.rpm libpoppler-qt5-1-0.79.0-3.5.1.ppc64le.rpm libpoppler-qt5-devel-0.79.0-3.5.1.ppc64le.rpm libpoppler89-0.79.0-3.5.1.ppc64le.rpm libtiff-devel-4.0.9-45.2.1.ppc64le.rpm libtiff5-4.0.9-45.2.1.ppc64le.rpm libturbojpeg0-8.1.2-32.2.1.ppc64le.rpm libwebp-devel-1.0.3-3.2.1.ppc64le.rpm libwebp-tools-1.0.3-3.2.1.ppc64le.rpm libwebp7-1.0.3-3.2.1.ppc64le.rpm libwebpdecoder3-1.0.3-3.2.1.ppc64le.rpm libwebpdemux2-1.0.3-3.2.1.ppc64le.rpm libwebpmux3-1.0.3-3.2.1.ppc64le.rpm libxcb-composite0-1.13-3.7.1.ppc64le.rpm libxcb-damage0-1.13-3.7.1.ppc64le.rpm libxcb-devel-1.13-3.7.1.ppc64le.rpm libxcb-dpms0-1.13-3.7.1.ppc64le.rpm libxcb-dri2-0-1.13-3.7.1.ppc64le.rpm libxcb-dri3-0-1.13-3.7.1.ppc64le.rpm libxcb-glx0-1.13-3.7.1.ppc64le.rpm libxcb-present0-1.13-3.7.1.ppc64le.rpm libxcb-randr0-1.13-3.7.1.ppc64le.rpm libxcb-record0-1.13-3.7.1.ppc64le.rpm libxcb-render0-1.13-3.7.1.ppc64le.rpm libxcb-res0-1.13-3.7.1.ppc64le.rpm libxcb-screensaver0-1.13-3.7.1.ppc64le.rpm libxcb-shape0-1.13-3.7.1.ppc64le.rpm libxcb-shm0-1.13-3.7.1.ppc64le.rpm libxcb-sync1-1.13-3.7.1.ppc64le.rpm libxcb-xf86dri0-1.13-3.7.1.ppc64le.rpm libxcb-xfixes0-1.13-3.7.1.ppc64le.rpm libxcb-xinerama0-1.13-3.7.1.ppc64le.rpm libxcb-xinput0-1.13-3.7.1.ppc64le.rpm libxcb-xkb1-1.13-3.7.1.ppc64le.rpm libxcb-xtest0-1.13-3.7.1.ppc64le.rpm libxcb-xv0-1.13-3.7.1.ppc64le.rpm libxcb-xvmc0-1.13-3.7.1.ppc64le.rpm libxcb1-1.13-3.7.1.ppc64le.rpm openjpeg2-2.3.0-3.2.2.ppc64le.rpm openjpeg2-devel-2.3.0-3.2.2.ppc64le.rpm poppler-tools-0.79.0-3.5.1.ppc64le.rpm tiff-4.0.9-45.2.1.ppc64le.rpm typelib-1_0-Poppler-0_18-0.79.0-3.5.1.ppc64le.rpm cairo-devel-1.16.0-5.2.1.aarch64.rpm cairo-tools-1.16.0-5.2.1.aarch64.rpm jbigkit-2.1-3.2.1.aarch64.rpm libcairo-gobject2-1.16.0-5.2.1.aarch64.rpm libcairo-script-interpreter2-1.16.0-5.2.1.aarch64.rpm libcairo2-1.16.0-5.2.1.aarch64.rpm libjbig-devel-2.1-3.2.1.aarch64.rpm libjbig2-2.1-3.2.1.aarch64.rpm libjpeg-turbo-1.5.3-32.2.1.aarch64.rpm libjpeg62-62.2.0-32.0.1.aarch64.rpm libjpeg62-devel-62.2.0-32.0.1.aarch64.rpm libjpeg62-turbo-1.5.3-32.0.1.aarch64.rpm libjpeg8-8.1.2-32.2.1.aarch64.rpm libjpeg8-devel-8.1.2-32.2.1.aarch64.rpm libopenjp2-7-2.3.0-3.2.2.aarch64.rpm libpixman-1-0-0.34.0-7.2.1.aarch64.rpm libpixman-1-0-devel-0.34.0-7.2.1.aarch64.rpm libpoppler-cpp0-0.79.0-3.5.1.aarch64.rpm libpoppler-devel-0.79.0-3.5.1.aarch64.rpm libpoppler-glib-devel-0.79.0-3.5.1.aarch64.rpm libpoppler-glib8-0.79.0-3.5.1.aarch64.rpm libpoppler-qt5-1-0.79.0-3.5.1.aarch64.rpm libpoppler-qt5-devel-0.79.0-3.5.1.aarch64.rpm libpoppler89-0.79.0-3.5.1.aarch64.rpm libtiff-devel-4.0.9-45.2.1.aarch64.rpm libtiff5-4.0.9-45.2.1.aarch64.rpm libturbojpeg0-8.1.2-32.2.1.aarch64.rpm libwebp-devel-1.0.3-3.2.1.aarch64.rpm libwebp-tools-1.0.3-3.2.1.aarch64.rpm libwebp7-1.0.3-3.2.1.aarch64.rpm libwebpdecoder3-1.0.3-3.2.1.aarch64.rpm libwebpdemux2-1.0.3-3.2.1.aarch64.rpm libwebpmux3-1.0.3-3.2.1.aarch64.rpm libxcb-composite0-1.13-3.7.1.aarch64.rpm libxcb-damage0-1.13-3.7.1.aarch64.rpm libxcb-devel-1.13-3.7.1.aarch64.rpm libxcb-dpms0-1.13-3.7.1.aarch64.rpm libxcb-dri2-0-1.13-3.7.1.aarch64.rpm libxcb-dri3-0-1.13-3.7.1.aarch64.rpm libxcb-glx0-1.13-3.7.1.aarch64.rpm libxcb-present0-1.13-3.7.1.aarch64.rpm libxcb-randr0-1.13-3.7.1.aarch64.rpm libxcb-record0-1.13-3.7.1.aarch64.rpm libxcb-render0-1.13-3.7.1.aarch64.rpm libxcb-res0-1.13-3.7.1.aarch64.rpm libxcb-screensaver0-1.13-3.7.1.aarch64.rpm libxcb-shape0-1.13-3.7.1.aarch64.rpm libxcb-shm0-1.13-3.7.1.aarch64.rpm libxcb-sync1-1.13-3.7.1.aarch64.rpm libxcb-xf86dri0-1.13-3.7.1.aarch64.rpm libxcb-xfixes0-1.13-3.7.1.aarch64.rpm libxcb-xinerama0-1.13-3.7.1.aarch64.rpm libxcb-xinput0-1.13-3.7.1.aarch64.rpm libxcb-xkb1-1.13-3.7.1.aarch64.rpm libxcb-xtest0-1.13-3.7.1.aarch64.rpm libxcb-xv0-1.13-3.7.1.aarch64.rpm libxcb-xvmc0-1.13-3.7.1.aarch64.rpm libxcb1-1.13-3.7.1.aarch64.rpm openjpeg2-2.3.0-3.2.2.aarch64.rpm openjpeg2-devel-2.3.0-3.2.2.aarch64.rpm poppler-tools-0.79.0-3.5.1.aarch64.rpm tiff-4.0.9-45.2.1.aarch64.rpm typelib-1_0-Poppler-0_18-0.79.0-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2021-4166 moderate SUSE Updates openSUSE-SLE 15.3 This update for ceph fixes the following issues: - Rebase on top of Ceph v15.2.15 tag - Re-do some downstream patches - Fix parsing of kwargs arguments. (bsc#1192840, jsc#SES-704) (fixes an issue caused by downstream commit "pybing/mgr/mgr_module: allow keyword arguments") ceph-15.2.15.83+gf72054fa653-3.34.1.src.rpm ceph-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-base-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-common-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-fuse-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-grafana-dashboards-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-immutable-object-cache-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-mds-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-mgr-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-mgr-cephadm-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-dashboard-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-diskprediction-cloud-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-diskprediction-local-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-k8sevents-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-modules-core-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mgr-rook-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-mon-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-osd-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-prometheus-alerts-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm ceph-radosgw-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-test-15.2.15.83+gf72054fa653-3.34.1.src.rpm ceph-test-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm cephadm-15.2.15.83+gf72054fa653-3.34.1.noarch.rpm cephfs-shell-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm libcephfs-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm libcephfs2-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librados-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librados2-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm libradospp-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librbd-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librbd1-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librgw-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm librgw2-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-ceph-argparse-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-ceph-common-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-cephfs-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-rados-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-rbd-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm python3-rgw-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm rados-objclass-devel-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm rbd-fuse-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm rbd-mirror-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm rbd-nbd-15.2.15.83+gf72054fa653-3.34.1.x86_64.rpm ceph-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-base-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-common-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-fuse-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-immutable-object-cache-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-mds-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-mgr-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-mon-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-osd-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-radosgw-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm cephfs-shell-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm libcephfs-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm libcephfs2-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librados-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librados2-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm libradospp-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librbd-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librbd1-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librgw-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm librgw2-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-ceph-argparse-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-ceph-common-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-cephfs-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-rados-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-rbd-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm python3-rgw-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm rados-objclass-devel-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm rbd-fuse-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm rbd-mirror-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm rbd-nbd-15.2.15.83+gf72054fa653-3.34.1.s390x.rpm ceph-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-base-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-common-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-fuse-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-immutable-object-cache-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-mds-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-mgr-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-mon-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-osd-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-radosgw-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm cephfs-shell-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm libcephfs-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm libcephfs2-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librados-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librados2-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm libradospp-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librbd-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librbd1-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librgw-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm librgw2-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-ceph-argparse-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-ceph-common-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-cephfs-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-rados-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-rbd-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm python3-rgw-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm rados-objclass-devel-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm rbd-fuse-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm rbd-mirror-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm rbd-nbd-15.2.15.83+gf72054fa653-3.34.1.ppc64le.rpm ceph-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-base-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-common-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-fuse-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-immutable-object-cache-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-mds-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-mgr-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-mon-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-osd-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm ceph-radosgw-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm cephfs-shell-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm libcephfs-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm libcephfs2-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librados-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librados2-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm libradospp-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librbd-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librbd1-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librgw-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm librgw2-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-ceph-argparse-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-ceph-common-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-cephfs-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-rados-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-rbd-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm python3-rgw-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm rados-objclass-devel-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm rbd-fuse-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm rbd-mirror-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm rbd-nbd-15.2.15.83+gf72054fa653-3.34.1.aarch64.rpm openSUSE-SLE-15.3-2022-727 moderate SUSE Updates openSUSE-SLE 15.3 This security update for libeconf, shadow and util-linux fix the following issues: libeconf: - Add libeconf to SLE-Module-Basesystem_15-SP3 because needed by 'util-linux' and 'shadow' to fix autoyast handling of security related parameters (bsc#1192954, jsc#SLE-23384, jsc#SLE-23402) Issues fixed in libeconf: - Reading numbers with different bases (e.g. oktal) (bsc#1193632) (#157) - Fixed different issues while writing string values to file. - Writing comments to file too. - Fixed crash while merging values. - Added econftool cat option (#146) - new API call: econf_readDirsHistory (showing ALL locations) - new API call: econf_getPath (absolute path of the configuration file) - Man pages libeconf.3 and econftool.8. - Handling multiline strings. - Added libeconf_ext which returns more information like line_nr, comments, path of the configuration file,... - Econftool, an command line interface for handling configuration files. - Generating HTML API documentation with doxygen. - Improving error handling and semantic file check. - Joining entries with the same key to one single entry if env variable ECONF_JOIN_SAME_ENTRIES has been set. shadow: - The legacy code does not support /etc/login.defs.d used by YaST. Enable libeconf to read it (bsc#1192954, jsc#SLE-23384, jsc#SLE-23402) util-linux: - The legacy code does not support /etc/login.defs.d used by YaST. Enable libeconf to read it (bsc#1192954, jsc#SLE-23384, jsc#SLE-23402) - Allow use of larger values for start sector to prevent `blockdev --report` aborting (bsc#1188507) - Fixed `blockdev --report` using non-space characters as a field separator (bsc#1188507) - CVE-2021-3995: Fixed unauthorized unmount in util-linux's libmount. (bsc#1194976) - CVE-2021-3996: Fixed unauthorized unmount in util-linux's libmount. (bsc#1194976) libblkid-devel-2.36.2-150300.4.14.3.x86_64.rpm libblkid-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libblkid-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libblkid1-2.36.2-150300.4.14.3.x86_64.rpm libblkid1-32bit-2.36.2-150300.4.14.3.x86_64.rpm libeconf-0.4.4+git20220104.962774f-150300.3.6.2.src.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.6.2.x86_64.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.6.2.x86_64.rpm libeconf0-32bit-0.4.4+git20220104.962774f-150300.3.6.2.x86_64.rpm libfdisk-devel-2.36.2-150300.4.14.3.x86_64.rpm libfdisk-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libfdisk-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libfdisk1-2.36.2-150300.4.14.3.x86_64.rpm libfdisk1-32bit-2.36.2-150300.4.14.3.x86_64.rpm libmount-devel-2.36.2-150300.4.14.3.x86_64.rpm libmount-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libmount-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libmount1-2.36.2-150300.4.14.3.x86_64.rpm libmount1-32bit-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols-devel-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols1-2.36.2-150300.4.14.3.x86_64.rpm libsmartcols1-32bit-2.36.2-150300.4.14.3.x86_64.rpm libuuid-devel-2.36.2-150300.4.14.3.x86_64.rpm libuuid-devel-32bit-2.36.2-150300.4.14.3.x86_64.rpm libuuid-devel-static-2.36.2-150300.4.14.3.x86_64.rpm libuuid1-2.36.2-150300.4.14.3.x86_64.rpm libuuid1-32bit-2.36.2-150300.4.14.3.x86_64.rpm login_defs-4.8.1-150300.4.3.8.noarch.rpm python3-libmount-2.36.2-150300.4.14.2.src.rpm python3-libmount-2.36.2-150300.4.14.2.x86_64.rpm shadow-4.8.1-150300.4.3.8.src.rpm shadow-4.8.1-150300.4.3.8.x86_64.rpm util-linux-2.36.2-150300.4.14.3.src.rpm util-linux-2.36.2-150300.4.14.3.x86_64.rpm util-linux-lang-2.36.2-150300.4.14.3.noarch.rpm util-linux-systemd-2.36.2-150300.4.14.2.src.rpm util-linux-systemd-2.36.2-150300.4.14.2.x86_64.rpm uuidd-2.36.2-150300.4.14.2.x86_64.rpm libblkid-devel-2.36.2-150300.4.14.3.s390x.rpm libblkid-devel-static-2.36.2-150300.4.14.3.s390x.rpm libblkid1-2.36.2-150300.4.14.3.s390x.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.6.2.s390x.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.6.2.s390x.rpm libfdisk-devel-2.36.2-150300.4.14.3.s390x.rpm libfdisk-devel-static-2.36.2-150300.4.14.3.s390x.rpm libfdisk1-2.36.2-150300.4.14.3.s390x.rpm libmount-devel-2.36.2-150300.4.14.3.s390x.rpm libmount-devel-static-2.36.2-150300.4.14.3.s390x.rpm libmount1-2.36.2-150300.4.14.3.s390x.rpm libsmartcols-devel-2.36.2-150300.4.14.3.s390x.rpm libsmartcols-devel-static-2.36.2-150300.4.14.3.s390x.rpm libsmartcols1-2.36.2-150300.4.14.3.s390x.rpm libuuid-devel-2.36.2-150300.4.14.3.s390x.rpm libuuid-devel-static-2.36.2-150300.4.14.3.s390x.rpm libuuid1-2.36.2-150300.4.14.3.s390x.rpm python3-libmount-2.36.2-150300.4.14.2.s390x.rpm shadow-4.8.1-150300.4.3.8.s390x.rpm util-linux-2.36.2-150300.4.14.3.s390x.rpm util-linux-systemd-2.36.2-150300.4.14.2.s390x.rpm uuidd-2.36.2-150300.4.14.2.s390x.rpm libblkid-devel-2.36.2-150300.4.14.3.ppc64le.rpm libblkid-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libblkid1-2.36.2-150300.4.14.3.ppc64le.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.6.2.ppc64le.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.6.2.ppc64le.rpm libfdisk-devel-2.36.2-150300.4.14.3.ppc64le.rpm libfdisk-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libfdisk1-2.36.2-150300.4.14.3.ppc64le.rpm libmount-devel-2.36.2-150300.4.14.3.ppc64le.rpm libmount-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libmount1-2.36.2-150300.4.14.3.ppc64le.rpm libsmartcols-devel-2.36.2-150300.4.14.3.ppc64le.rpm libsmartcols-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libsmartcols1-2.36.2-150300.4.14.3.ppc64le.rpm libuuid-devel-2.36.2-150300.4.14.3.ppc64le.rpm libuuid-devel-static-2.36.2-150300.4.14.3.ppc64le.rpm libuuid1-2.36.2-150300.4.14.3.ppc64le.rpm python3-libmount-2.36.2-150300.4.14.2.ppc64le.rpm shadow-4.8.1-150300.4.3.8.ppc64le.rpm util-linux-2.36.2-150300.4.14.3.ppc64le.rpm util-linux-systemd-2.36.2-150300.4.14.2.ppc64le.rpm uuidd-2.36.2-150300.4.14.2.ppc64le.rpm libblkid-devel-2.36.2-150300.4.14.3.aarch64.rpm libblkid-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libblkid1-2.36.2-150300.4.14.3.aarch64.rpm libeconf-devel-0.4.4+git20220104.962774f-150300.3.6.2.aarch64.rpm libeconf0-0.4.4+git20220104.962774f-150300.3.6.2.aarch64.rpm libfdisk-devel-2.36.2-150300.4.14.3.aarch64.rpm libfdisk-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libfdisk1-2.36.2-150300.4.14.3.aarch64.rpm libmount-devel-2.36.2-150300.4.14.3.aarch64.rpm libmount-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libmount1-2.36.2-150300.4.14.3.aarch64.rpm libsmartcols-devel-2.36.2-150300.4.14.3.aarch64.rpm libsmartcols-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libsmartcols1-2.36.2-150300.4.14.3.aarch64.rpm libuuid-devel-2.36.2-150300.4.14.3.aarch64.rpm libuuid-devel-static-2.36.2-150300.4.14.3.aarch64.rpm libuuid1-2.36.2-150300.4.14.3.aarch64.rpm python3-libmount-2.36.2-150300.4.14.2.aarch64.rpm shadow-4.8.1-150300.4.3.8.aarch64.rpm util-linux-2.36.2-150300.4.14.3.aarch64.rpm util-linux-systemd-2.36.2-150300.4.14.2.aarch64.rpm uuidd-2.36.2-150300.4.14.2.aarch64.rpm openSUSE-SLE-15.3-2021-4094 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issue: CVE-2021-44228: The previously published fix by upstream turned out to be incomplete. Therefore, upstream has recommended disabling JNDI support in log4j by default to be completely sure that this vulnerability cannot be exploited. This update implements that recommendation and disables JNDI support by default. [bsc#1193611, CVE-2021-44228] CVE-2021-45046: A Thread Context Message Pattern and Context Lookup Pattern vulnerable to a denial of service attack is also fixed by disabling JNDI support by default (bsc#1193743) log4j-2.13.0-4.6.1.noarch.rpm log4j-2.13.0-4.6.1.src.rpm log4j-javadoc-2.13.0-4.6.1.noarch.rpm log4j-jcl-2.13.0-4.6.1.noarch.rpm log4j-slf4j-2.13.0-4.6.1.noarch.rpm openSUSE-SLE-15.3-2021-4136 important SUSE Updates openSUSE-SLE 15.3 This update for xorg-x11-server fixes the following issues: - CVE-2021-4009: The handler for the CreatePointerBarrier request of the XFixes extension does not properly validate the request length leading to out of bounds memory write. (bsc#1190487) - CVE-2021-4010: The handler for the Suspend request of the Screen Saver extension does not properly validate the request length leading to out of bounds memory write. (bsc#1190488) - CVE-2021-4011: The handlers for the RecordCreateContext and RecordRegisterClients requests of the Record extension do not properly validate the request length leading to out of bounds memory write. (bsc#1190489) xorg-x11-server-1.20.3-22.5.42.1.src.rpm xorg-x11-server-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-extra-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-source-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-22.5.42.1.x86_64.rpm xorg-x11-server-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-extra-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-sdk-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-source-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-wayland-1.20.3-22.5.42.1.s390x.rpm xorg-x11-server-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-source-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-22.5.42.1.ppc64le.rpm xorg-x11-server-1.20.3-22.5.42.1.aarch64.rpm xorg-x11-server-extra-1.20.3-22.5.42.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-22.5.42.1.aarch64.rpm xorg-x11-server-source-1.20.3-22.5.42.1.aarch64.rpm xorg-x11-server-wayland-1.20.3-22.5.42.1.aarch64.rpm openSUSE-SLE-15.3-2021-4107 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issue: - Previously published fixes for log4jshell turned out to be incomplete. Upstream has followed up on the original patch for CVE-2021-44228 with several additional changes (LOG4J2-3198, LOG4J2-3201, LOG4J2-3208, and LOG4J2-3211) that are included in this update. Since the totality of those patches is pretty much equivalent to an update to the latest version of log4j, we did update the package's tarball from version 2.13.0 to 2.16.0 instead of trying to apply those patches to the old version. This change brings in a new dependency on "jakarta-servlet" and a version update of "disruptor". [bsc#1193743, CVE-2021-45046] disruptor-3.4.4-3.3.1.noarch.rpm disruptor-3.4.4-3.3.1.src.rpm disruptor-javadoc-3.4.4-3.3.1.noarch.rpm jakarta-servlet-5.0.0-5.3.1.noarch.rpm jakarta-servlet-5.0.0-5.3.1.src.rpm jakarta-servlet-javadoc-5.0.0-5.3.1.noarch.rpm log4j-2.16.0-4.10.1.noarch.rpm log4j-2.16.0-4.10.1.src.rpm log4j-javadoc-2.16.0-4.10.1.noarch.rpm log4j-jcl-2.16.0-4.10.1.noarch.rpm log4j-slf4j-2.16.0-4.10.1.noarch.rpm openSUSE-SLE-15.3-2021-4111 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issue: - CVE-2021-4104: Disable the JMSAppender class from log4j to protect against the log4jshell vulnerability. [bsc#1193662] log4j-1.2.17-5.6.1.src.rpm log4j-manual-1.2.17-5.6.1.noarch.rpm openSUSE-SLE-15.3-2021-4112 important SUSE Updates openSUSE-SLE 15.3 This update for log4j12 fixes the following issues: - CVE-2021-4104: Disable the JMSAppender class from log4j to protect against the log4jshell vulnerability. [bsc#1193662] log4j12-1.2.17-4.3.1.noarch.rpm log4j12-1.2.17-4.3.1.src.rpm log4j12-javadoc-1.2.17-4.3.1.noarch.rpm log4j12-manual-1.2.17-4.3.1.noarch.rpm openSUSE-SLE-15.3-2021-4158 important SUSE Updates openSUSE-SLE 15.3 This update for python3-ec2imgutils fixes the following issues: - Update to version 9.0.4 (bsc#1192298) - Set a time out for the ssh connection to avoid hang in a multi threaded environment - Update to version 9.0.3 (bsc#1190538) - Support setting the boot mode for EC2 images, either to legacy-bios or uefi. Argument is optional, without it instance will use the default boot mode for the given instance type. - Update to version 9.0.2 (bsc#1189649) - In addition to tagging images in AWS also set them to deprecated in EC2. This allows the framework to hide the images from new users when images are no longer supposed to be used. python3-ec2imgutils-9.0.4-6.4.1.noarch.rpm python3-ec2imgutils-9.0.4-6.4.1.src.rpm openSUSE-SLE-15.3-2021-4109 important SUSE Updates openSUSE-SLE 15.3 This update for logback fixes the following issues: Upgrade to version 1.2.8 + In response to log4Shell/CVE-2021-44228, all JNDI lookup code in logback has been disabled until further notice. This impacts ContextJNDISelector and insertFromJNDI element in configuration files. + Also in response to log4Shell/CVE-2021-44228, all database (JDBC) related code in the project has been removed with no replacement. + Note that the vulnerability mentioned in LOGBACK-1591 requires write access to logback's configuration file as a prerequisite. The log4Shell/CVE-2021-44228 and LOGBACK-1591 are of different severity levels. A successful RCE requires all of the following conditions to be met: - write access to logback.xml - use of versions lower then 1.2.8 - reloading of poisoned configuration data, which implies application restart or scan="true" set prior to attack logback-1.2.8-3.3.1.noarch.rpm logback-1.2.8-3.3.1.src.rpm logback-access-1.2.8-3.3.1.noarch.rpm logback-examples-1.2.8-3.3.1.noarch.rpm logback-javadoc-1.2.8-3.3.1.noarch.rpm openSUSE-SLE-15.3-2021-4205 important SUSE Updates openSUSE-SLE 15.3 This update for yast2-storage-ng fixes the following issues: - AutoYaST: fixes for reusing encrypted devices, RAIDs and bcache devices. (bsc#1193450) - Fix duplicate PV error detection with disabled multipath. (bsc#1170216) yast2-storage-ng-4.3.59-3.18.1.src.rpm yast2-storage-ng-4.3.59-3.18.1.x86_64.rpm yast2-storage-ng-4.3.59-3.18.1.s390x.rpm yast2-storage-ng-4.3.59-3.18.1.ppc64le.rpm yast2-storage-ng-4.3.59-3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-186 moderate SUSE Updates openSUSE-SLE 15.3 This update for gdm fixes the following issues: -Fixed an issue when X server does not restart after using "ctrl-alt-backspace". (bsc#1190230) -Fixed an issue when Xorg does not log to 'var/log/Xorg.*.log'. (bsc#1192177) gdm-3.34.1-8.21.3.src.rpm gdm-3.34.1-8.21.3.x86_64.rpm gdm-branding-upstream-3.34.1-8.21.3.noarch.rpm gdm-devel-3.34.1-8.21.3.x86_64.rpm gdm-lang-3.34.1-8.21.3.noarch.rpm gdm-systemd-3.34.1-8.21.3.noarch.rpm gdmflexiserver-3.34.1-8.21.3.noarch.rpm libgdm1-3.34.1-8.21.3.x86_64.rpm typelib-1_0-Gdm-1_0-3.34.1-8.21.3.x86_64.rpm gdm-3.34.1-8.21.3.s390x.rpm gdm-devel-3.34.1-8.21.3.s390x.rpm libgdm1-3.34.1-8.21.3.s390x.rpm typelib-1_0-Gdm-1_0-3.34.1-8.21.3.s390x.rpm gdm-3.34.1-8.21.3.ppc64le.rpm gdm-devel-3.34.1-8.21.3.ppc64le.rpm libgdm1-3.34.1-8.21.3.ppc64le.rpm typelib-1_0-Gdm-1_0-3.34.1-8.21.3.ppc64le.rpm gdm-3.34.1-8.21.3.aarch64.rpm gdm-devel-3.34.1-8.21.3.aarch64.rpm libgdm1-3.34.1-8.21.3.aarch64.rpm typelib-1_0-Gdm-1_0-3.34.1-8.21.3.aarch64.rpm openSUSE-SLE-15.3-2021-4118 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issues: - Update to 2.17.0 - CVE-2021-45105: Apache Log4j2 does not always protect from infinite recursion in lookup evaluation. (bsc#1193887, bsc#1193888) log4j-2.17.0-4.13.1.noarch.rpm log4j-2.17.0-4.13.1.src.rpm log4j-javadoc-2.17.0-4.13.1.noarch.rpm log4j-jcl-2.17.0-4.13.1.noarch.rpm log4j-slf4j-2.17.0-4.13.1.noarch.rpm openSUSE-SLE-15.3-2022-4 moderate SUSE Updates openSUSE-SLE 15.3 This update for libgcrypt fixes the following issues: - Fix function gcry_mpi_sub_ui subtracting from negative value (bsc#1193480) libgcrypt-1.8.2-8.42.1.src.rpm libgcrypt-cavs-1.8.2-8.42.1.x86_64.rpm libgcrypt-devel-1.8.2-8.42.1.x86_64.rpm libgcrypt-devel-32bit-1.8.2-8.42.1.x86_64.rpm libgcrypt20-1.8.2-8.42.1.x86_64.rpm libgcrypt20-32bit-1.8.2-8.42.1.x86_64.rpm libgcrypt20-hmac-1.8.2-8.42.1.x86_64.rpm libgcrypt20-hmac-32bit-1.8.2-8.42.1.x86_64.rpm libgcrypt-cavs-1.8.2-8.42.1.s390x.rpm libgcrypt-devel-1.8.2-8.42.1.s390x.rpm libgcrypt20-1.8.2-8.42.1.s390x.rpm libgcrypt20-hmac-1.8.2-8.42.1.s390x.rpm libgcrypt-cavs-1.8.2-8.42.1.ppc64le.rpm libgcrypt-devel-1.8.2-8.42.1.ppc64le.rpm libgcrypt20-1.8.2-8.42.1.ppc64le.rpm libgcrypt20-hmac-1.8.2-8.42.1.ppc64le.rpm libgcrypt-cavs-1.8.2-8.42.1.aarch64.rpm libgcrypt-devel-1.8.2-8.42.1.aarch64.rpm libgcrypt20-1.8.2-8.42.1.aarch64.rpm libgcrypt20-hmac-1.8.2-8.42.1.aarch64.rpm openSUSE-SLE-15.3-2022-11 moderate SUSE Updates openSUSE-SLE 15.3 This update for lifecycle-data-sle-module-live-patching fixes the following issue: Lifecycle data updates. (bsc#1020320) - Updates for 4_12_14-150_78, 4_12_14-197_102, 5_3_18-24_93, 5_3_18-24_96, 5_3_18-59_30, 5_3_18-59_34, 5_3_18-59_37. lifecycle-data-sle-module-live-patching-15-4.66.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-4.66.1.src.rpm openSUSE-SLE-15.3-2022-303 moderate SUSE Updates openSUSE-SLE 15.3 This update for hplip fixes the following issues: - Replace keyserver with `pgp.surf.nl` (bsc#1193656) - Add build dependency on `python-rpm-macros` (bsc#1193718) - Update hplip to version 3.21.10 and added support for the following new printers: * HP Color LaserJet Enterprise M455dn * HP Color LaserJet Enterprise MFP M480f * HP Color LaserJet Managed E45028dn * HP Color LaserJet Managed MFP E47528f * HP DesignJet Z6 Pro 64in * HP DesignJet Z9 Pro 64in * HP DeskJet Ink Advantage Ultra 4800 All-in-One Printer series * HP ENVY Inspire 7200e series * HP ENVY Inspire 7900e series * HP Envy 6400 series * HP Lasejet M211d * HP LaserJet Enterprise M406dn * HP LaserJet Enterprise M407dn * HP LaserJet Enterprise MFP M430f * HP LaserJet Enterprise MFP M431f * HP LaserJet M109a * HP LaserJet M109w * HP LaserJet M109we * HP LaserJet M110a * HP LaserJet M110w * HP LaserJet M110we * HP LaserJet M111a * HP LaserJet M111w * HP LaserJet M111we * HP LaserJet M112a * HP LaserJet M112w * HP LaserJet M112we * HP LaserJet M212dwe * HP LaserJet MFP M139a * HP LaserJet MFP M139w * HP LaserJet MFP M139we * HP LaserJet MFP M140a * HP LaserJet MFP M140w * HP LaserJet MFP M140we * HP LaserJet MFP M141a * HP LaserJet MFP M141w * HP LaserJet MFP M141we * HP LaserJet MFP M142a * HP LaserJet MFP M142w * HP LaserJet MFP M142we * HP LaserJet MFP M232d * HP LaserJet MFP M232dw * HP LaserJet MFP M232dwc * HP LaserJet MFP M232sdn * HP LaserJet MFP M232sdw * HP LaserJet MFP M233d * HP LaserJet MFP M233dw * HP LaserJet MFP M233sdn * HP LaserJet MFP M233sdw * HP LaserJet MFP M234dw * HP LaserJet MFP M234dwe * HP LaserJet MFP M234sdn * HP LaserJet MFP M234sdne * HP LaserJet MFP M234sdw * HP LaserJet MFP M234sdwe * HP LaserJet MFP M235d * HP LaserJet MFP M235dw * HP LaserJet MFP M235dwe * HP LaserJet MFP M235sdn * HP LaserJet MFP M235sdne * HP LaserJet MFP M235sdw * HP LaserJet MFP M235sdwe * HP LaserJet MFP M236d * HP LaserJet MFP M236dw * HP LaserJet MFP M236sdn * HP LaserJet MFP M236sdw * HP LaserJet MFP M237d * HP LaserJet MFP M237dw * HP LaserJet MFP M237dwe * HP LaserJet MFP M237sdn * HP LaserJet MFP M237sdne * HP LaserJet MFP M237sdw * HP LaserJet MFP M237sdwe * HP LaserJet Managed E40040dn * HP LaserJet Managed MFP E42540f * HP Laserjet M207d * HP Laserjet M207dw * HP Laserjet M208d * HP Laserjet M208dw * HP Laserjet M209d * HP Laserjet M209dw * HP Laserjet M209dwe * HP Laserjet M210d * HP Laserjet M210dw * HP Laserjet M210dwe * HP Laserjet M211dw * HP Laserjet M212d * HP Laserjet M212dw * HP PageWide XL 3920 MFP * HP PageWide XL 3920 MFP * HP PageWide XL 4200 Multifunction Printer * HP PageWide XL 4200 Multifunction Printer * HP PageWide XL 4200 Printer * HP PageWide XL 4200 Printer * HP PageWide XL 4700 Multifunction Printer * HP PageWide XL 4700 Multifunction Printer * HP PageWide XL 4700 Printer * HP PageWide XL 4700 Printer * HP PageWide XL 5200 Multifunction Printer * HP PageWide XL 5200 Multifunction Printer * HP PageWide XL 5200 Printer * HP PageWide XL 5200 Printer * HP PageWide XL 8200 Printer * HP PageWide XL 8200 Printer * HP PageWide XL Pro 5200 PS MFP series * HP PageWide XL Pro 8200 PS MFP series * HP Smart Tank 500 series * HP Smart Tank 530 series * HP Smart Tank 750 * HP Smart Tank 7600 * HP Smart Tank 790 * HP Smart Tank Plus 570 series * HP Smart Tank Plus 6000 * HP Smart Tank Plus 660-670 * HP Smart Tank Plus 7000 * HP Smart Tank Plus 710-720 - Remove libtool archives - Fixes to the built artifacts: * Disabled image processor build with the configure option `--disable-imageProcessor-build` * Remove executable bit in `%{_datadir}/hplip/` * Ignore duplicate files in `hplip-rpmlintrc ("__init__.*.pyc?")` hplip-3.21.10-4.3.1.src.rpm hplip-3.21.10-4.3.1.x86_64.rpm hplip-devel-3.21.10-4.3.1.x86_64.rpm hplip-hpijs-3.21.10-4.3.1.x86_64.rpm hplip-sane-3.21.10-4.3.1.x86_64.rpm hplip-scan-utils-3.21.10-4.3.1.x86_64.rpm hplip-3.21.10-4.3.1.s390x.rpm hplip-devel-3.21.10-4.3.1.s390x.rpm hplip-hpijs-3.21.10-4.3.1.s390x.rpm hplip-sane-3.21.10-4.3.1.s390x.rpm hplip-scan-utils-3.21.10-4.3.1.s390x.rpm hplip-3.21.10-4.3.1.ppc64le.rpm hplip-devel-3.21.10-4.3.1.ppc64le.rpm hplip-hpijs-3.21.10-4.3.1.ppc64le.rpm hplip-sane-3.21.10-4.3.1.ppc64le.rpm hplip-scan-utils-3.21.10-4.3.1.ppc64le.rpm hplip-3.21.10-4.3.1.aarch64.rpm hplip-devel-3.21.10-4.3.1.aarch64.rpm hplip-hpijs-3.21.10-4.3.1.aarch64.rpm hplip-sane-3.21.10-4.3.1.aarch64.rpm hplip-scan-utils-3.21.10-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4178 important SUSE Updates openSUSE-SLE 15.3 This update for cpupower fixes the following issues: - Fix `turbostat` immediately exiting on AMD Zen machines (bsc#1193557) cpupower-5.10-3.6.1.src.rpm cpupower-5.10-3.6.1.x86_64.rpm cpupower-bench-5.10-3.6.1.x86_64.rpm cpupower-devel-5.10-3.6.1.x86_64.rpm libcpupower0-5.10-3.6.1.x86_64.rpm cpupower-5.10-3.6.1.s390x.rpm cpupower-bench-5.10-3.6.1.s390x.rpm cpupower-devel-5.10-3.6.1.s390x.rpm libcpupower0-5.10-3.6.1.s390x.rpm cpupower-5.10-3.6.1.ppc64le.rpm cpupower-bench-5.10-3.6.1.ppc64le.rpm cpupower-devel-5.10-3.6.1.ppc64le.rpm libcpupower0-5.10-3.6.1.ppc64le.rpm cpupower-5.10-3.6.1.aarch64.rpm cpupower-bench-5.10-3.6.1.aarch64.rpm cpupower-devel-5.10-3.6.1.aarch64.rpm libcpupower0-5.10-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-2 moderate SUSE Updates openSUSE-SLE 15.3 This update for lvm2 fixes the following issues: - Fix lvconvert not taking `--stripes` option (bsc#1183905) - Fix LVM vgimportclone not working on hardware snapshot (bsc#1193181) device-mapper-1.02.163-8.39.1.x86_64.rpm device-mapper-devel-1.02.163-8.39.1.x86_64.rpm device-mapper-devel-32bit-1.02.163-8.39.1.x86_64.rpm libdevmapper-event1_03-1.02.163-8.39.1.x86_64.rpm libdevmapper-event1_03-32bit-1.02.163-8.39.1.x86_64.rpm libdevmapper1_03-1.02.163-8.39.1.x86_64.rpm libdevmapper1_03-32bit-1.02.163-8.39.1.x86_64.rpm liblvm2cmd2_03-2.03.05-8.39.1.x86_64.rpm lvm2-2.03.05-8.39.1.src.rpm lvm2-2.03.05-8.39.1.x86_64.rpm lvm2-devel-2.03.05-8.39.1.x86_64.rpm lvm2-device-mapper-2.03.05-8.39.1.src.rpm lvm2-lockd-2.03.05-8.39.1.x86_64.rpm lvm2-lvmlockd-2.03.05-8.39.1.src.rpm lvm2-testsuite-2.03.05-8.39.1.x86_64.rpm device-mapper-1.02.163-8.39.1.s390x.rpm device-mapper-devel-1.02.163-8.39.1.s390x.rpm libdevmapper-event1_03-1.02.163-8.39.1.s390x.rpm libdevmapper1_03-1.02.163-8.39.1.s390x.rpm liblvm2cmd2_03-2.03.05-8.39.1.s390x.rpm lvm2-2.03.05-8.39.1.s390x.rpm lvm2-devel-2.03.05-8.39.1.s390x.rpm lvm2-lockd-2.03.05-8.39.1.s390x.rpm lvm2-testsuite-2.03.05-8.39.1.s390x.rpm device-mapper-1.02.163-8.39.1.ppc64le.rpm device-mapper-devel-1.02.163-8.39.1.ppc64le.rpm libdevmapper-event1_03-1.02.163-8.39.1.ppc64le.rpm libdevmapper1_03-1.02.163-8.39.1.ppc64le.rpm liblvm2cmd2_03-2.03.05-8.39.1.ppc64le.rpm lvm2-2.03.05-8.39.1.ppc64le.rpm lvm2-devel-2.03.05-8.39.1.ppc64le.rpm lvm2-lockd-2.03.05-8.39.1.ppc64le.rpm lvm2-testsuite-2.03.05-8.39.1.ppc64le.rpm device-mapper-1.02.163-8.39.1.aarch64.rpm device-mapper-devel-1.02.163-8.39.1.aarch64.rpm libdevmapper-event1_03-1.02.163-8.39.1.aarch64.rpm libdevmapper1_03-1.02.163-8.39.1.aarch64.rpm liblvm2cmd2_03-2.03.05-8.39.1.aarch64.rpm lvm2-2.03.05-8.39.1.aarch64.rpm lvm2-devel-2.03.05-8.39.1.aarch64.rpm lvm2-lockd-2.03.05-8.39.1.aarch64.rpm lvm2-testsuite-2.03.05-8.39.1.aarch64.rpm openSUSE-SLE-15.3-2021-4177 important SUSE Updates openSUSE-SLE 15.3 This update for ServiceReport fixes the following issues: - Fix build to require python-rpm-macros (bsc#1193718) ServiceReport-2.2.3+git1.55a13db1c256-3.6.1.noarch.rpm ServiceReport-2.2.3+git1.55a13db1c256-3.6.1.src.rpm openSUSE-SLE-15.3-2022-482 moderate SUSE Updates openSUSE-SLE 15.3 This update for libreoffice fixes the following issues: Update LibreOffice from version 7.1.4.2 to 7.2.3.2 (jsc#SLE-18214) - Improve the rendering and loading rendering of shapes. (bsc#1183308) - Removed unrecognized option `--disable-vlc` This option has been removed from upstream in commit https://gerrit.libreoffice.org/c/core/+/108283 There's no real change in our build given that the VLC avmedia backend was explicitly disabled. - Fix gtk popover usage on gtk 3.20 - Revert upstream commit https://gerrit.libreoffice.org/c/core/+/116884 - Fix generated list of files for python scripts - Updating some LibreOffice buildrequires - Fix UI scaling on HIDPI Wayland/KDE screens - Fix inteaction between multi-column shape text and automatic height. (bsc#1187982) - Fix interaction of transparent cell fill and transparent shadow. (bsc#1189813) - Use vendored boost for all codestreams except Tumbleweed. Update boost vendored version. - Add vendored poppler to use for all codestreams except Tumbleweed. - Keep upstream desktop file names (bsc#1183655) and display math icon (bsc#1180479) - Source profile.d/alljava.sh from either /etc (if found) or /usr/etc). libreoffice-7.2.3.2-150300.14.22.15.3.src.rpm libreoffice-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-base-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-base-drivers-postgresql-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-branding-upstream-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-calc-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-calc-extensions-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-draw-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-filters-optional-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-gdb-pretty-printers-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-glade-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-gnome-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-gtk3-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-icon-themes-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-impress-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-l10n-af-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-am-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ar-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-as-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ast-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-be-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bg-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bn_IN-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bo-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-br-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-brx-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-bs-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ca-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ca_valencia-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ckb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-cs-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-cy-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-da-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-de-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-dgo-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-dsb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-dz-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-el-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-en-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-en_GB-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-en_ZA-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-eo-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-es-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-et-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-eu-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fa-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fi-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fur-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-fy-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ga-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-gd-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-gl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-gu-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-gug-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-he-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-hi-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-hr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-hsb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-hu-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-id-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-is-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-it-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ja-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ka-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kab-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kk-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-km-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kmr_Latn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ko-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-kok-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ks-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-lb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-lo-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-lt-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-lv-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mai-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mk-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ml-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mni-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-mr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-my-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nb-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ne-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-nso-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-oc-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-om-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-or-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-pa-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-pl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-pt_BR-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-pt_PT-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ro-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ru-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-rw-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sa_IN-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sat-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sd-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-si-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sid-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sk-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sq-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ss-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-st-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sv-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-sw_TZ-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-szl-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ta-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-te-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-tg-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-th-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-tn-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-tr-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ts-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-tt-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ug-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-uk-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-uz-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-ve-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-vec-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-vi-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-xh-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-zh_CN-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-zh_TW-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-l10n-zu-7.2.3.2-150300.14.22.15.3.noarch.rpm libreoffice-librelogo-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-mailmerge-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-math-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-officebean-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-pyuno-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-qt5-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-sdk-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-sdk-doc-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-writer-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-writer-extensions-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreofficekit-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreofficekit-devel-7.2.3.2-150300.14.22.15.3.x86_64.rpm libreoffice-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-base-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-base-drivers-postgresql-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-calc-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-calc-extensions-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-draw-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-filters-optional-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-gnome-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-gtk3-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-impress-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-librelogo-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-mailmerge-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-math-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-officebean-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-pyuno-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-qt5-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-sdk-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-sdk-doc-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-writer-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-writer-extensions-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreofficekit-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreofficekit-devel-7.2.3.2-150300.14.22.15.3.ppc64le.rpm libreoffice-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-base-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-base-drivers-postgresql-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-calc-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-calc-extensions-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-draw-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-filters-optional-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-gnome-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-gtk3-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-impress-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-librelogo-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-mailmerge-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-math-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-officebean-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-pyuno-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-qt5-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-sdk-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-sdk-doc-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-writer-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreoffice-writer-extensions-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreofficekit-7.2.3.2-150300.14.22.15.3.aarch64.rpm libreofficekit-devel-7.2.3.2-150300.14.22.15.3.aarch64.rpm openSUSE-SLE-15.3-2022-50 important SUSE Updates openSUSE-SLE 15.3 This update for net-snmp fixes the following issues: - CVE-2020-15862: Make extended MIB read-only (bsc#1174961) - CVE-2018-18065: Fix remote DoS in agent/helpers/table.c (bsc#1111122) libsnmp30-32bit-5.7.3-10.9.1.x86_64.rpm libsnmp30-5.7.3-10.9.1.x86_64.rpm net-snmp-5.7.3-10.9.1.src.rpm net-snmp-5.7.3-10.9.1.x86_64.rpm net-snmp-devel-32bit-5.7.3-10.9.1.x86_64.rpm net-snmp-devel-5.7.3-10.9.1.x86_64.rpm perl-SNMP-5.7.3-10.9.1.x86_64.rpm python2-net-snmp-5.7.3-10.9.1.x86_64.rpm python3-net-snmp-5.7.3-10.9.1.x86_64.rpm snmp-mibs-5.7.3-10.9.1.x86_64.rpm libsnmp30-5.7.3-10.9.1.s390x.rpm net-snmp-5.7.3-10.9.1.s390x.rpm net-snmp-devel-5.7.3-10.9.1.s390x.rpm perl-SNMP-5.7.3-10.9.1.s390x.rpm python2-net-snmp-5.7.3-10.9.1.s390x.rpm python3-net-snmp-5.7.3-10.9.1.s390x.rpm snmp-mibs-5.7.3-10.9.1.s390x.rpm libsnmp30-5.7.3-10.9.1.ppc64le.rpm net-snmp-5.7.3-10.9.1.ppc64le.rpm net-snmp-devel-5.7.3-10.9.1.ppc64le.rpm perl-SNMP-5.7.3-10.9.1.ppc64le.rpm python2-net-snmp-5.7.3-10.9.1.ppc64le.rpm python3-net-snmp-5.7.3-10.9.1.ppc64le.rpm snmp-mibs-5.7.3-10.9.1.ppc64le.rpm libsnmp30-5.7.3-10.9.1.aarch64.rpm net-snmp-5.7.3-10.9.1.aarch64.rpm net-snmp-devel-5.7.3-10.9.1.aarch64.rpm perl-SNMP-5.7.3-10.9.1.aarch64.rpm python2-net-snmp-5.7.3-10.9.1.aarch64.rpm python3-net-snmp-5.7.3-10.9.1.aarch64.rpm snmp-mibs-5.7.3-10.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-127 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-docker_label_helper fixes the following issues: - Support new syntax which makes Dockerfiles compatible with plain Docker/podman build. The new syntax uses entry/exit point to determine whether labels should be expanded. Doing so makes the Dockerfile compatible with standard `docker build` and `podman build` command. (bsc#1193429) - Retain compatibility with old syntax. Update documentation - Improve summary, description and README.md a bit - Improve regexp instead of having two as proposed by Fabian Vogt obs-service-docker_label_helper-0.0-5.6.1.noarch.rpm obs-service-docker_label_helper-0.0-5.6.1.src.rpm openSUSE-SLE-15.3-2021-4194 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-ibmca fixes the following issues: - Use the ".include" directive to update the openssl.cnf file and make checking of line count in sample file unnecessary (bsc#1004463) openssl-ibmca-2.1.1-3.3.1.s390x.rpm openssl-ibmca-2.1.1-3.3.1.src.rpm openSUSE-SLE-15.3-2022-72 important SUSE Updates openSUSE-SLE 15.3 This update for mozilla-nss and MozillaFirefox fix the following issues: mozilla-nss: - Update from version 3.68.1 to 3.68.2 (bsc#1193845) - Add SHA-2 support to mozilla::pkix's Online Certificate Status Protocol implementation MozillaFirefox: - Firefox Extended Support Release 91.4.1 ESR (bsc#1193845) - Add SHA-2 support to mozilla::pkix's Online Certificate Status Protocol implementation to fix frequent MOZILLA_PKIX_ERROR_OCSP_RESPONSE_FOR_CERT_MISSING error messages when trying to connect to various microsoft.com domains libfreebl3-3.68.2-3.64.2.x86_64.rpm libfreebl3-32bit-3.68.2-3.64.2.x86_64.rpm libfreebl3-hmac-3.68.2-3.64.2.x86_64.rpm libfreebl3-hmac-32bit-3.68.2-3.64.2.x86_64.rpm libsoftokn3-3.68.2-3.64.2.x86_64.rpm libsoftokn3-32bit-3.68.2-3.64.2.x86_64.rpm libsoftokn3-hmac-3.68.2-3.64.2.x86_64.rpm libsoftokn3-hmac-32bit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-3.68.2-3.64.2.src.rpm mozilla-nss-3.68.2-3.64.2.x86_64.rpm mozilla-nss-32bit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-certs-3.68.2-3.64.2.x86_64.rpm mozilla-nss-certs-32bit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-devel-3.68.2-3.64.2.x86_64.rpm mozilla-nss-sysinit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-sysinit-32bit-3.68.2-3.64.2.x86_64.rpm mozilla-nss-tools-3.68.2-3.64.2.x86_64.rpm libfreebl3-3.68.2-3.64.2.s390x.rpm libfreebl3-hmac-3.68.2-3.64.2.s390x.rpm libsoftokn3-3.68.2-3.64.2.s390x.rpm libsoftokn3-hmac-3.68.2-3.64.2.s390x.rpm mozilla-nss-3.68.2-3.64.2.s390x.rpm mozilla-nss-certs-3.68.2-3.64.2.s390x.rpm mozilla-nss-devel-3.68.2-3.64.2.s390x.rpm mozilla-nss-sysinit-3.68.2-3.64.2.s390x.rpm mozilla-nss-tools-3.68.2-3.64.2.s390x.rpm libfreebl3-3.68.2-3.64.2.ppc64le.rpm libfreebl3-hmac-3.68.2-3.64.2.ppc64le.rpm libsoftokn3-3.68.2-3.64.2.ppc64le.rpm libsoftokn3-hmac-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-certs-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-devel-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-sysinit-3.68.2-3.64.2.ppc64le.rpm mozilla-nss-tools-3.68.2-3.64.2.ppc64le.rpm libfreebl3-3.68.2-3.64.2.aarch64.rpm libfreebl3-hmac-3.68.2-3.64.2.aarch64.rpm libsoftokn3-3.68.2-3.64.2.aarch64.rpm libsoftokn3-hmac-3.68.2-3.64.2.aarch64.rpm mozilla-nss-3.68.2-3.64.2.aarch64.rpm mozilla-nss-certs-3.68.2-3.64.2.aarch64.rpm mozilla-nss-devel-3.68.2-3.64.2.aarch64.rpm mozilla-nss-sysinit-3.68.2-3.64.2.aarch64.rpm mozilla-nss-tools-3.68.2-3.64.2.aarch64.rpm openSUSE-SLE-15.3-2022-37 moderate SUSE Updates openSUSE-SLE 15.3 This update for s3fs fixes the following issues: - Update to version 1.90 (bsc#1193236) + Don't ignore nomultipart when storage is low + Fix POSIX compatibility issues found by pjdfstest + Fail CheckBucket when S3 returns PermanentRedirect + Do not create zero-byte object when creating file + Allow arbitrary size AWS secret keys + Fix race conditions + Set explicit Content-Length: 0 when initiating MPU + Set CURLOPT_UNRESTRICTED_AUTH when authenticating + Add jitter to avoid thundering herd + Loosen CheckBucket to check only the bucket + Add support for AWS-style environment variables - Update to version 1.89 + Fix a regression when writing objects larger than 10 GB during periodic dirty data flush (on by default). + Propagate S3 errors to errno more accurately + Allow writing > 5 GB single-part objects supported by some non-AWS S3 + Allow configuration of multipart copy size and limit to 5 GB + Allow configuration of multipart upload threshold and reduce default to 25 MB + Set default stat timeout to 900 seconds correctly + Fix data corruption while updating metadata with use_cache - Update to version 1.88 + Fixed a bug about move file over limit of ensure space + Fix multiple race conditions + Dynamically determine whether lseek extended options are supported + Add support for deep archive storage class + Plug FdEntity leaks + Fix use_session_token option parsing + Allow 32-bit platforms to upload single-part objects > 2 GB + Fix dead lock in disk insufficient and optimize code + Ensure environment variable is set when using ECS + Do not call put headers if not exist pending meta + Do not send SSE headers during bucket creation + Add sigv4 only option + Add atime and correct atime/mtime/ctime operations + Fixed a bug that symlink could not be read after restarting s3fs + Periodically flush written data to reduce temporary local storage + Added logfile option for non-syslog logging + Add AWS IMDSv2 support + Fix multiple issues when retrying requests - Update to version 1.87 + use correct content-type when complete multipart upload + Fixed a bug of stats cache compression + Fixed the truncation bug of stat file for cache file + Improved strictness of cache file stats(file) + Fixed insufficient upload size for mix multipart upload + Warn about missing MIME types instead of exiting + Not abort process by exception threw from s3fs_strtoofft + Support Google Cloud Storage headers + Added a parameter to output body to curldbg option + Fix renames of open files with nocopyapi option + Relink cache stats file atomically via rename + Ignore case when comparing ETags + Retry with exponential backoff during 500 error + Fixed a bug about serializing from cache file + Fixed about ParallelMixMultipartUpload + Add support for glacier storage class + Fixed upload error about mixuploading sparse file and truncating file + Added SIGUSR1 option for cache file integrity test + Change default stat_cache_expire - Update to version 1.86 + enable various optimizations when using modern curl + allow SSE-C keys to have NUL bytes + add session token support + allow large files on 32-bit systems like Raspberry Pi + fix data corruption when external modification changes a cached object + fix data corruption when opening a second fd to an unflushed file + fix clock skew errors when writing large files + allow concurrent metadata queries during data operations + use server-side copy for partially modified files + fix multiple concurrency issues + add requester_pays support + add symlink cache + add intelligent_ia storage tier - Make COPYING file a license file - Update to version 1.85 + add Backblaze B2 + Fix typo s/mutliple/multiple/ + Made instructions for creating password file more obvious. + Enable big writes if capable + For RPM distributions fuse-libs is enough + Add support for storage class ONEZONE_IA. + Simplify hex conversion + New installation instructions for Fedora >= 27 and CentOS7 + Improve template for issues + Make the compilation instructions generic + Replace all mentions to MacOS X to macOS + Correct typo + Correctly compare list_object_max_keys + Allow credentials from ${HOME}/.aws/credentials + Replace ~ with ${HOME} in examples + Include StackOverflow in FAQs + Add icon for s3fs + Upload S3 parts without batching + Add 'profile' option to command line help. + fix multihead warning check + Multi-arch support for ppc64le + Correct typos in command-line parsing + Address cppcheck 1.86 errors + Check arguments and environment before .aws/creds + [curl] Assume long encryption keys are base64 encoded + Update s3fs_util.cpp for correspondence of Nextcloud contype + Add Server Fault to FAQs + Repair xattr tests + Store and retrieve file change time + Default uid/gid/mode when object lacks permissions + Emit more friendly error for buckets with dots + Flush file before renaming + Tighten up HTTP response code check + Plug memory leak + Plug memory leaks + Avoid pass-by-value when not necessary + Prefer find(char) over find(const char *) + Remove unnecessary calls to std::string::c_str + Fix comparison in s3fs_strtoofft + Prefer HTTPS links where possible + Added an error message when HTTP 301 status + Ignore after period character of floating point in x-amz-meta-mtime + Added a missing extension to .gitignore, and formatted dot files + Added detail error message when HTTP 301/307 status + Automatic region change made possible other than us-east-1(default) + Prefer abort over assert(false) + Issue readdir HEAD requests without batching + Reference better-known AWS CLI for compatibility + Load tail range during overwrite + Add test for mv non-empty directory + Remove unnecessary string copies + Remove redundant string initializations + Reverted automatic region change and changed messages + Prefer empty over size checks + Remove redundant null checks before delete + Accept paths with : in them + Correct enable_content_md5 docs + Correct sigv2 typo + Prefer AutoLock for synchronization + Remove mirror path when deleting cache + Checked and corrected all typo + Disable malloc_trim + Remove unneeded void parameter + Prefer specific [io]stringstream where possible + Copy parts in parallel + Ensure s3fs compiles with C++03 + Return not supported when hard linking + Repair utility mode + Simplify async request completion code + Add logging for too many parts + Implement exponential backoff for 503 + Added S3FS_MALLOC_TRIM build switch + Added a non-interactive option to utility mode + Automatically abort failed multipart requests + Update s3ql link + Clear containers instead of individual erases + Address miscellaneous clang-tidy warnings + Upgrade to S3Proxy 1.6.1 + Document lack of inotify support + Fixed code for latest cppcheck error on OSX + Wtf8 + Work around cppcheck warnings + Improvement of curl session pool for multipart + Increase FdEntity reference count when returning + Fix lazy typo + Remove from file from stat cache during rename + Add instructions for Amazon Linux + Changed the description order of man page options + Fixed ref-count when error occurred. + Make macOS instructions consistent with others - Update to version 1.84 + Update README.md with details about .passwd-s3fs + add disk space reservation + Added Cygwin build options + reduce lock contention on file open + don't fail multirequest on single thread error + add an instance_name option for logging + FreeBSD build fixes + More useful error message for dupe entries in passwd file + cleanup curl handle state on retries + don't fail mkdir when directory exists + fix xpath selector in bucket listing + Validate the URL format for http/https + Added reset curl handle when returning to handle pool + Optimize defaults + Simplify installation for Ubuntu 16.04 + Upgrade to S3Proxy 1.6.0 + cleanup curl handles before curl share + Remove false multihead warnings + Add Debian installation instructions + Remove s3fs-python + Fixed memory leak + Revert "enable FUSE read_sync by default" + Option for IAM authentication endpoint + gnutls_auth: initialize libgcrypt + Fixed an error by cppcheck on OSX + Log messages for 5xx and 4xx HTTP response code + Instructions for SUSE and openSUSE prebuilt packages + Added list_object_max_keys option based on #783 PR s3fs-1.90-3.6.1.src.rpm s3fs-1.90-3.6.1.x86_64.rpm s3fs-1.90-3.6.1.s390x.rpm s3fs-1.90-3.6.1.ppc64le.rpm s3fs-1.90-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4192 moderate SUSE Updates openSUSE-SLE 15.3 This update for permissions fixes the following issues: - Update to version 20181225: * drop ping capabilities in favor of ICMP_PROTO sockets (bsc#1174504) permissions-20181225-23.9.1.src.rpm permissions-20181225-23.9.1.x86_64.rpm permissions-zypp-plugin-20181225-23.9.1.noarch.rpm permissions-20181225-23.9.1.s390x.rpm permissions-20181225-23.9.1.ppc64le.rpm permissions-20181225-23.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-9 important SUSE Updates openSUSE-SLE 15.3 This update for ovmf fixes the following issue: - VM enters crash/reset loop inside OVMF on reboots (bsc#1192126) ovmf-202008-10.11.1.src.rpm ovmf-202008-10.11.1.x86_64.rpm ovmf-tools-202008-10.11.1.x86_64.rpm qemu-ovmf-ia32-202008-10.11.1.noarch.rpm qemu-ovmf-x86_64-202008-10.11.1.noarch.rpm qemu-ovmf-x86_64-debug-202008-10.11.1.x86_64.rpm qemu-uefi-aarch32-202008-10.11.1.noarch.rpm qemu-uefi-aarch64-202008-10.11.1.noarch.rpm ovmf-202008-10.11.1.aarch64.rpm ovmf-tools-202008-10.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-84 moderate SUSE Updates openSUSE-SLE 15.3 This update for dosfstools fixes the following issues: - To be able to create filesystems compatible with previous version, add -g command line option to mkfs (bsc#1188401) - BREAKING CHANGES: After fixing of bsc#1172863 in the last update, mkfs started to create different images than before. Applications that depend on exact FAT file format (e. g. embedded systems) may be broken in two ways: * The introduction of the alignment may create smaller images than before, with a different positions of important image elements. It can break existing software that expect images in doststools <= 4.1 style. To work around these problems, use "-a" command line argument. * The new image may contain a different geometry values. Geometry sensitive applications expecting doststools <= 4.1 style images can fails to accept different geometry values. There is no direct work around for this problem. But you can take the old image, use "file -s $IMAGE", check its "sectors/track" and "heads", and use them in the newly introduced "-g" command line argument. dosfstools-4.1-3.6.1.src.rpm dosfstools-4.1-3.6.1.x86_64.rpm dosfstools-4.1-3.6.1.s390x.rpm dosfstools-4.1-3.6.1.ppc64le.rpm dosfstools-4.1-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-1 important SUSE Updates openSUSE-SLE 15.3 This update for ha-cluster-bootstrap fixes the following issues: - Add deprecated warning when using ha-cluster-bootstrap (bsc#1193437) ha-cluster-bootstrap-0.5-13.3.1.noarch.rpm ha-cluster-bootstrap-0.5-13.3.1.src.rpm openSUSE-SLE-15.3-2022-96 important SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Fix header check so that old rpms no longer get rejected (bsc#1190824) - Add explicit requirement on python-rpm-macros (bsc#1180125, bsc#1193711) python-rpm-4.14.3-43.1.src.rpm python2-rpm-4.14.3-43.1.x86_64.rpm python3-rpm-4.14.3-43.1.x86_64.rpm rpm-32bit-4.14.3-43.1.x86_64.rpm rpm-4.14.3-43.1.src.rpm rpm-4.14.3-43.1.x86_64.rpm rpm-build-4.14.3-43.1.x86_64.rpm rpm-devel-4.14.3-43.1.x86_64.rpm rpm-ndb-32bit-4.14.3-43.1.x86_64.rpm rpm-ndb-4.14.3-43.1.src.rpm rpm-ndb-4.14.3-43.1.x86_64.rpm python2-rpm-4.14.3-43.1.s390x.rpm python3-rpm-4.14.3-43.1.s390x.rpm rpm-4.14.3-43.1.s390x.rpm rpm-build-4.14.3-43.1.s390x.rpm rpm-devel-4.14.3-43.1.s390x.rpm rpm-ndb-4.14.3-43.1.s390x.rpm python2-rpm-4.14.3-43.1.ppc64le.rpm python3-rpm-4.14.3-43.1.ppc64le.rpm rpm-4.14.3-43.1.ppc64le.rpm rpm-build-4.14.3-43.1.ppc64le.rpm rpm-devel-4.14.3-43.1.ppc64le.rpm rpm-ndb-4.14.3-43.1.ppc64le.rpm python2-rpm-4.14.3-43.1.aarch64.rpm python3-rpm-4.14.3-43.1.aarch64.rpm rpm-4.14.3-43.1.aarch64.rpm rpm-build-4.14.3-43.1.aarch64.rpm rpm-devel-4.14.3-43.1.aarch64.rpm rpm-ndb-4.14.3-43.1.aarch64.rpm openSUSE-SLE-15.3-2022-35 low SUSE Updates openSUSE-SLE 15.3 This update for telnet fixes the following issues: - Update Source location to use Gentoo mirror, fixes bsc#1129925 telnet-1.2-3.3.1.src.rpm telnet-1.2-3.3.1.x86_64.rpm telnet-server-1.2-3.3.1.x86_64.rpm telnet-1.2-3.3.1.s390x.rpm telnet-server-1.2-3.3.1.s390x.rpm telnet-1.2-3.3.1.ppc64le.rpm telnet-server-1.2-3.3.1.ppc64le.rpm telnet-1.2-3.3.1.aarch64.rpm telnet-server-1.2-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4210 important SUSE Updates openSUSE-SLE 15.3 This update for gegl fixes the following issues: - CVE-2021-45463: fixed shell expansion via crafted pathname in the ImageMagick convert fallback (bsc#1194045). gegl-0.3.34-3.3.1.src.rpm gegl-0_3-0.3.34-3.3.1.x86_64.rpm gegl-0_3-lang-0.3.34-3.3.1.noarch.rpm libgegl-0_3-0-0.3.34-3.3.1.x86_64.rpm typelib-1_0-Gegl-0_3-0.3.34-3.3.1.x86_64.rpm gegl-0_3-0.3.34-3.3.1.s390x.rpm libgegl-0_3-0-0.3.34-3.3.1.s390x.rpm typelib-1_0-Gegl-0_3-0.3.34-3.3.1.s390x.rpm gegl-0_3-0.3.34-3.3.1.ppc64le.rpm libgegl-0_3-0-0.3.34-3.3.1.ppc64le.rpm typelib-1_0-Gegl-0_3-0.3.34-3.3.1.ppc64le.rpm gegl-0_3-0.3.34-3.3.1.aarch64.rpm libgegl-0_3-0-0.3.34-3.3.1.aarch64.rpm typelib-1_0-Gegl-0_3-0.3.34-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2021-4209 important SUSE Updates openSUSE-SLE 15.3 This update for gegl fixes the following issues: - CVE-2021-45463: fixed shell expansion via crafted pathname in the ImageMagick convert fallback (bsc#1194045). gegl-0.4.16-3.3.1.src.rpm gegl-0.4.16-3.3.1.x86_64.rpm gegl-0_4-0.4.16-3.3.1.x86_64.rpm gegl-0_4-lang-0.4.16-3.3.1.noarch.rpm gegl-devel-0.4.16-3.3.1.x86_64.rpm gegl-doc-0.4.16-3.3.1.x86_64.rpm libgegl-0_4-0-0.4.16-3.3.1.x86_64.rpm libgegl-0_4-0-32bit-0.4.16-3.3.1.x86_64.rpm typelib-1_0-Gegl-0_4-0.4.16-3.3.1.x86_64.rpm gegl-0.4.16-3.3.1.s390x.rpm gegl-0_4-0.4.16-3.3.1.s390x.rpm gegl-devel-0.4.16-3.3.1.s390x.rpm gegl-doc-0.4.16-3.3.1.s390x.rpm libgegl-0_4-0-0.4.16-3.3.1.s390x.rpm typelib-1_0-Gegl-0_4-0.4.16-3.3.1.s390x.rpm gegl-0.4.16-3.3.1.ppc64le.rpm gegl-0_4-0.4.16-3.3.1.ppc64le.rpm gegl-devel-0.4.16-3.3.1.ppc64le.rpm gegl-doc-0.4.16-3.3.1.ppc64le.rpm libgegl-0_4-0-0.4.16-3.3.1.ppc64le.rpm typelib-1_0-Gegl-0_4-0.4.16-3.3.1.ppc64le.rpm gegl-0.4.16-3.3.1.aarch64.rpm gegl-0_4-0.4.16-3.3.1.aarch64.rpm gegl-devel-0.4.16-3.3.1.aarch64.rpm gegl-doc-0.4.16-3.3.1.aarch64.rpm libgegl-0_4-0-0.4.16-3.3.1.aarch64.rpm typelib-1_0-Gegl-0_4-0.4.16-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-40 important SUSE Updates openSUSE-SLE 15.3 This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container fixes the following issues: - CVE-2021-43565: Fixes a vulnerability in the golang.org/x/crypto/ssh package which allowed unauthenticated clients to cause a panic in SSH servers. (bsc#1193930) kubevirt-0.45.0-8.7.1.src.rpm kubevirt-container-disk-0.45.0-8.7.1.x86_64.rpm kubevirt-manifests-0.45.0-8.7.1.x86_64.rpm kubevirt-tests-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-api-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-controller-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-handler-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-launcher-0.45.0-8.7.1.x86_64.rpm kubevirt-virt-operator-0.45.0-8.7.1.x86_64.rpm kubevirt-virtctl-0.45.0-8.7.1.x86_64.rpm obs-service-kubevirt_containers_meta-0.45.0-8.7.1.x86_64.rpm openSUSE-SLE-15.3-2022-348 important SUSE Updates openSUSE-SLE 15.3 This update for libzypp fixes the following issues: - RepoManager: remember execution errors in exception history (bsc#1193007) - Fix exception handling when reading or writing credentials (bsc#1194898) - Fix install path for parser (bsc#1194597) - Fix Legacy include (bsc#1194597) - Public header files on older distros must use c++11 (bsc#1194597) - Use the default zypp.conf settings if no zypp.conf exists (bsc#1193488) - Fix wrong encoding of URI compontents of ISO images (bsc#954813) - When invoking 32bit mode in userland of an aarch64 kernel, handle armv8l as armv7hl compatible - Introduce zypp-curl as a sublibrary for CURL related code - zypp-rpm: Increase rpm loglevel if ZYPP_RPM_DEBUG is set - Save all signatures associated with a public key in its PublicKeyData libzypp-17.29.3-27.1.src.rpm True libzypp-17.29.3-27.1.x86_64.rpm True libzypp-devel-17.29.3-27.1.x86_64.rpm True libzypp-devel-doc-17.29.3-27.1.x86_64.rpm True zypper-1.14.51-24.1.src.rpm True zypper-1.14.51-24.1.x86_64.rpm True zypper-aptitude-1.14.51-24.1.noarch.rpm True zypper-log-1.14.51-24.1.noarch.rpm True zypper-needs-restarting-1.14.51-24.1.noarch.rpm True libzypp-17.29.3-27.1.s390x.rpm True libzypp-devel-17.29.3-27.1.s390x.rpm True libzypp-devel-doc-17.29.3-27.1.s390x.rpm True zypper-1.14.51-24.1.s390x.rpm True libzypp-17.29.3-27.1.ppc64le.rpm True libzypp-devel-17.29.3-27.1.ppc64le.rpm True libzypp-devel-doc-17.29.3-27.1.ppc64le.rpm True zypper-1.14.51-24.1.ppc64le.rpm True libzypp-17.29.3-27.1.aarch64.rpm True libzypp-devel-17.29.3-27.1.aarch64.rpm True libzypp-devel-doc-17.29.3-27.1.aarch64.rpm True zypper-1.14.51-24.1.aarch64.rpm True openSUSE-SLE-15.3-2022-187 moderate SUSE Updates openSUSE-SLE 15.3 This update for vsftpd fixes the following issues: - Fix several issues related to SSL/TLS support (bsc#1021387) - Fix a seccomp failure that used to occur in FIPS mode when SSL is enabled (bsc#1052900) - Fix seccomp bug where the process would hang trying access syslog (bsc#971784) vsftpd-3.0.3-12.6.1.src.rpm vsftpd-3.0.3-12.6.1.x86_64.rpm vsftpd-3.0.3-12.6.1.s390x.rpm vsftpd-3.0.3-12.6.1.ppc64le.rpm vsftpd-3.0.3-12.6.1.aarch64.rpm openSUSE-SLE-15.3-2021-4208 moderate SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issues: - CVE-2021-44832: Fixes a remote code execution via JDBC Appender (bsc#1194127) log4j-2.17.0-4.16.1.noarch.rpm log4j-2.17.0-4.16.1.src.rpm log4j-javadoc-2.17.0-4.16.1.noarch.rpm log4j-jcl-2.17.0-4.16.1.noarch.rpm log4j-slf4j-2.17.0-4.16.1.noarch.rpm openSUSE-SLE-15.3-2022-21 important SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: - CVE-2021-4147: libxl: Fix libvirtd deadlocks and segfaults. (bsc#1194041) libvirt-7.1.0-6.11.1.src.rpm libvirt-7.1.0-6.11.1.x86_64.rpm libvirt-admin-7.1.0-6.11.1.x86_64.rpm libvirt-bash-completion-7.1.0-6.11.1.noarch.rpm libvirt-client-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-6.11.1.x86_64.rpm libvirt-daemon-xen-7.1.0-6.11.1.x86_64.rpm libvirt-devel-32bit-7.1.0-6.11.1.x86_64.rpm libvirt-devel-7.1.0-6.11.1.x86_64.rpm libvirt-doc-7.1.0-6.11.1.noarch.rpm libvirt-libs-7.1.0-6.11.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-6.11.1.x86_64.rpm libvirt-nss-7.1.0-6.11.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-6.11.1.x86_64.rpm libvirt-7.1.0-6.11.1.s390x.rpm libvirt-admin-7.1.0-6.11.1.s390x.rpm libvirt-client-7.1.0-6.11.1.s390x.rpm libvirt-daemon-7.1.0-6.11.1.s390x.rpm libvirt-daemon-config-network-7.1.0-6.11.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.11.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.11.1.s390x.rpm libvirt-daemon-hooks-7.1.0-6.11.1.s390x.rpm libvirt-daemon-lxc-7.1.0-6.11.1.s390x.rpm libvirt-daemon-qemu-7.1.0-6.11.1.s390x.rpm libvirt-devel-7.1.0-6.11.1.s390x.rpm libvirt-libs-7.1.0-6.11.1.s390x.rpm libvirt-lock-sanlock-7.1.0-6.11.1.s390x.rpm libvirt-nss-7.1.0-6.11.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-6.11.1.s390x.rpm libvirt-7.1.0-6.11.1.ppc64le.rpm libvirt-admin-7.1.0-6.11.1.ppc64le.rpm libvirt-client-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-6.11.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-6.11.1.ppc64le.rpm libvirt-devel-7.1.0-6.11.1.ppc64le.rpm libvirt-libs-7.1.0-6.11.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-6.11.1.ppc64le.rpm libvirt-nss-7.1.0-6.11.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-6.11.1.ppc64le.rpm libvirt-7.1.0-6.11.1.aarch64.rpm libvirt-admin-7.1.0-6.11.1.aarch64.rpm libvirt-client-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-6.11.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-6.11.1.aarch64.rpm libvirt-devel-7.1.0-6.11.1.aarch64.rpm libvirt-libs-7.1.0-6.11.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-6.11.1.aarch64.rpm libvirt-nss-7.1.0-6.11.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-6.11.1.aarch64.rpm openSUSE-SLE-15.3-2022-52 important SUSE Updates openSUSE-SLE 15.3 This update for libsndfile fixes the following issues: - CVE-2021-4156: Fixed heap buffer overflow in flac_buffer_copy that could potentially lead to heap exploitation (bsc#1194006). libsndfile-1.0.28-5.15.1.src.rpm libsndfile-devel-1.0.28-5.15.1.x86_64.rpm libsndfile-progs-1.0.28-5.15.1.src.rpm libsndfile-progs-1.0.28-5.15.1.x86_64.rpm libsndfile1-1.0.28-5.15.1.x86_64.rpm libsndfile1-32bit-1.0.28-5.15.1.x86_64.rpm libsndfile-devel-1.0.28-5.15.1.s390x.rpm libsndfile-progs-1.0.28-5.15.1.s390x.rpm libsndfile1-1.0.28-5.15.1.s390x.rpm libsndfile-devel-1.0.28-5.15.1.ppc64le.rpm libsndfile-progs-1.0.28-5.15.1.ppc64le.rpm libsndfile1-1.0.28-5.15.1.ppc64le.rpm libsndfile-devel-1.0.28-5.15.1.aarch64.rpm libsndfile-progs-1.0.28-5.15.1.aarch64.rpm libsndfile1-1.0.28-5.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-313 moderate SUSE Updates openSUSE-SLE 15.3 This update for infinipath-psm fixes the following issues: - Fix compilation with GCC10. (bsc#1160270) - Disable LTO. (bsc#1133133) - Fix build date. (bsc#1047218) infinipath-psm-3.3-5.3.1.src.rpm infinipath-psm-devel-3.3-5.3.1.x86_64.rpm libinfinipath4-3.3-5.3.1.x86_64.rpm libinfinipath4-32bit-3.3-5.3.1.x86_64.rpm libpsm_infinipath1-3.3-5.3.1.x86_64.rpm libpsm_infinipath1-32bit-3.3-5.3.1.x86_64.rpm openSUSE-SLE-15.3-2022-48 moderate SUSE Updates openSUSE-SLE 15.3 This update for python3 fixes the following issues: - Don't use OpenSSL 1.1 on platforms which don't have it. - Remove shebangs from python-base libraries in '_libdir'. (bsc#1193179, bsc#1192249). - Build against 'openssl 1.1' as it is incompatible with 'openssl 3.0+' (bsc#1190566) - Fix for permission error when changing the mtime of the source file in presence of 'SOURCE_DATE_EPOCH'. libpython3_6m1_0-3.6.15-10.15.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-10.15.1.x86_64.rpm python3-3.6.15-10.15.1.src.rpm python3-3.6.15-10.15.1.x86_64.rpm python3-base-3.6.15-10.15.1.x86_64.rpm python3-core-3.6.15-10.15.1.src.rpm python3-curses-3.6.15-10.15.1.x86_64.rpm python3-dbm-3.6.15-10.15.1.x86_64.rpm python3-devel-3.6.15-10.15.1.x86_64.rpm python3-doc-3.6.15-10.15.1.x86_64.rpm python3-doc-devhelp-3.6.15-10.15.1.x86_64.rpm python3-documentation-3.6.15-10.15.1.src.rpm python3-idle-3.6.15-10.15.1.x86_64.rpm python3-testsuite-3.6.15-10.15.1.x86_64.rpm python3-tk-3.6.15-10.15.1.x86_64.rpm python3-tools-3.6.15-10.15.1.x86_64.rpm libpython3_6m1_0-3.6.15-10.15.1.s390x.rpm python3-3.6.15-10.15.1.s390x.rpm python3-base-3.6.15-10.15.1.s390x.rpm python3-curses-3.6.15-10.15.1.s390x.rpm python3-dbm-3.6.15-10.15.1.s390x.rpm python3-devel-3.6.15-10.15.1.s390x.rpm python3-doc-3.6.15-10.15.1.s390x.rpm python3-doc-devhelp-3.6.15-10.15.1.s390x.rpm python3-idle-3.6.15-10.15.1.s390x.rpm python3-testsuite-3.6.15-10.15.1.s390x.rpm python3-tk-3.6.15-10.15.1.s390x.rpm python3-tools-3.6.15-10.15.1.s390x.rpm libpython3_6m1_0-3.6.15-10.15.1.ppc64le.rpm python3-3.6.15-10.15.1.ppc64le.rpm python3-base-3.6.15-10.15.1.ppc64le.rpm python3-curses-3.6.15-10.15.1.ppc64le.rpm python3-dbm-3.6.15-10.15.1.ppc64le.rpm python3-devel-3.6.15-10.15.1.ppc64le.rpm python3-doc-3.6.15-10.15.1.ppc64le.rpm python3-doc-devhelp-3.6.15-10.15.1.ppc64le.rpm python3-idle-3.6.15-10.15.1.ppc64le.rpm python3-testsuite-3.6.15-10.15.1.ppc64le.rpm python3-tk-3.6.15-10.15.1.ppc64le.rpm python3-tools-3.6.15-10.15.1.ppc64le.rpm libpython3_6m1_0-3.6.15-10.15.1.aarch64.rpm python3-3.6.15-10.15.1.aarch64.rpm python3-base-3.6.15-10.15.1.aarch64.rpm python3-curses-3.6.15-10.15.1.aarch64.rpm python3-dbm-3.6.15-10.15.1.aarch64.rpm python3-devel-3.6.15-10.15.1.aarch64.rpm python3-doc-3.6.15-10.15.1.aarch64.rpm python3-doc-devhelp-3.6.15-10.15.1.aarch64.rpm python3-idle-3.6.15-10.15.1.aarch64.rpm python3-testsuite-3.6.15-10.15.1.aarch64.rpm python3-tk-3.6.15-10.15.1.aarch64.rpm python3-tools-3.6.15-10.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-317 moderate SUSE Updates openSUSE-SLE 15.3 This update for wicked fixes the following issues: - Fix device rename issue when done via Yast2 (bsc#1194392) - Prepare RPM packaging for migration of dbus configuration files from /etc to /usr, however this change does not affect SUSE Linux Enterprise 15 Service Pack 3 (bsc#1183407,jsc#SLE-9750) - Parse sysctl files in the correct order - Fix sysctl values for loopback device (bsc#1181163, bsc#1178357) - Add option for dhcp4 to set route pref-src to dhcp IP (bsc#1192353) - Cleanup warnings, time calculations and add dhcp fixes to reduce resource usage (bsc#1188019) - Avoid sysfs attribute read error when the kernel has already deleted the TUN/TAP interface (bsc#1192311) - Fix warning in `ifstatus` about unexpected interface flag combination (bsc#1192164) - Fix `ifstatus` not to show link as "up" when interface is not running - Make firewalld zone assignment permanent (bsc#1189560) - Initial fixes for dracut integration and improved option handling (bsc#1182227) - Fix `nanny` to identify node owner exit condition - Add `ethtool --get-permanent-address` option in the client - Reconnect on unexpected wpa_supplicant restart (bsc#1183495) - Migrate wireless to wpa-supplicant v1 DBus interface (bsc#1156920) - Support multiple wireless networks configurations per interface - Show wireless connection status and scan-results (bsc#1160654) - Fix eap-tls,ttls cetificate handling and fix open vs. shared wep,open,psk,eap-tls,ttls,peap parsing from ifcfg (bsc#1057592) - Updated `man ifcfg-wireless` manual pages wicked-0.6.68-150300.4.5.1.src.rpm wicked-0.6.68-150300.4.5.1.x86_64.rpm wicked-service-0.6.68-150300.4.5.1.x86_64.rpm wicked-0.6.68-150300.4.5.1.s390x.rpm wicked-service-0.6.68-150300.4.5.1.s390x.rpm wicked-0.6.68-150300.4.5.1.ppc64le.rpm wicked-service-0.6.68-150300.4.5.1.ppc64le.rpm wicked-0.6.68-150300.4.5.1.aarch64.rpm wicked-service-0.6.68-150300.4.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-108 important SUSE Updates openSUSE-SLE 15.3 This update for java-1_8_0-ibm fixes the following issues: - Update to Java 8.0 Service Refresh 7 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. (bsc#1194198, bsc#1192052) - CVE-2021-35586: Excessive memory allocation in BMPImageReader. (bsc#1191914) - CVE-2021-35564: Certificates with end dates too far in the future can corrupt keystore. (bsc#1191913) - CVE-2021-35559: Excessive memory allocation in RTFReader. (bsc#1191911) - CVE-2021-35556: Excessive memory allocation in RTFParser. (bsc#1191910) - CVE-2021-35565: Loop in HttpsServer triggered during TLS session close. (bsc#1191909) - CVE-2021-35588: Incomplete validation of inner class references in ClassFileParser. (bsc#1191905) - CVE-2021-2341: Fixed a flaw inside the FtpClient. (bsc#1188564) - CVE-2021-2369: JAR file handling problem containing multiple MANIFEST.MF files. (bsc#1188565) - CVE-2021-2163: Incomplete enforcement of JAR signing disabled algorithms. (bsc#1185055) - CVE-2021-35560: Fixed a vulnerability in the component Deployment. (bsc#1191902) - CVE-2021-35578: Fixed unexpected exception raised during TLS handshake. (bsc#1191904) java-1_8_0-ibm-1.8.0_sr7.0-3.53.1.nosrc.rpm java-1_8_0-ibm-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-32bit-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-alsa-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-demo-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-devel-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-devel-32bit-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-plugin-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-src-1.8.0_sr7.0-3.53.1.x86_64.rpm java-1_8_0-ibm-1.8.0_sr7.0-3.53.1.s390x.rpm java-1_8_0-ibm-demo-1.8.0_sr7.0-3.53.1.s390x.rpm java-1_8_0-ibm-devel-1.8.0_sr7.0-3.53.1.s390x.rpm java-1_8_0-ibm-src-1.8.0_sr7.0-3.53.1.s390x.rpm java-1_8_0-ibm-1.8.0_sr7.0-3.53.1.ppc64le.rpm java-1_8_0-ibm-demo-1.8.0_sr7.0-3.53.1.ppc64le.rpm java-1_8_0-ibm-devel-1.8.0_sr7.0-3.53.1.ppc64le.rpm java-1_8_0-ibm-src-1.8.0_sr7.0-3.53.1.ppc64le.rpm openSUSE-SLE-15.3-2022-58 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 91.4.1 - CVE-2021-4126: OpenPGP signature status doesn't consider additional message content. (bsc#1194215) - CVE-2021-44538: Matrix chat library libolm bundled with Thunderbird vulnerable to a buffer overflow. (bsc#1194020) MozillaThunderbird-91.4.1-8.48.1.src.rpm MozillaThunderbird-91.4.1-8.48.1.x86_64.rpm MozillaThunderbird-translations-common-91.4.1-8.48.1.x86_64.rpm MozillaThunderbird-translations-other-91.4.1-8.48.1.x86_64.rpm MozillaThunderbird-91.4.1-8.48.1.s390x.rpm MozillaThunderbird-translations-common-91.4.1-8.48.1.s390x.rpm MozillaThunderbird-translations-other-91.4.1-8.48.1.s390x.rpm MozillaThunderbird-91.4.1-8.48.1.ppc64le.rpm MozillaThunderbird-translations-common-91.4.1-8.48.1.ppc64le.rpm MozillaThunderbird-translations-other-91.4.1-8.48.1.ppc64le.rpm MozillaThunderbird-91.4.1-8.48.1.aarch64.rpm MozillaThunderbird-translations-common-91.4.1-8.48.1.aarch64.rpm MozillaThunderbird-translations-other-91.4.1-8.48.1.aarch64.rpm openSUSE-SLE-15.3-2022-203 important SUSE Updates openSUSE-SLE 15.3 This update for cloud-init fixes the following issues: - Update to version 21.2 (bsc#1186004) + Add \r\n check for SSH keys in Azure (#889) + Revert "Add support to resize rootfs if using LVM (#721)" (#887) (LP: #1922742) + Add Vultaire as contributor (#881) [Paul Goins] + Azure: adding support for consuming userdata from IMDS (#884) [Anh Vo] + test_upgrade: modify test_upgrade_package to run for more sources (#883) + Fix chef module run failure when chef_license is set (#868) [Ben Hughes] + Azure: Retry net metadata during nic attach for non-timeout errs (#878) [aswinrajamannar] + Azure: Retrieve username and hostname from IMDS (#865) [Thomas Stringer] + Azure: eject the provisioning iso before reporting ready (#861) [Anh Vo] + Use `partprobe` to re-read partition table if available (#856) [Nicolas Bock] (LP: #1920939) + fix error on upgrade caused by new vendordata2 attributes (#869) (LP: #1922739) + add prefer_fqdn_over_hostname config option (#859) [hamalq] (LP: #1921004) + Emit dots on travis to avoid timeout (#867) + doc: Replace remaining references to user-scripts as a config module (#866) [Ryan Harper] + azure: Removing ability to invoke walinuxagent (#799) [Anh Vo] + Add Vultr support (#827) [David Dymko] + Fix unpickle for source paths missing run_dir (#863) [lucasmoura] (LP: #1899299) + sysconfig: use BONDING_MODULE_OPTS on SUSE (#831) [Jens Sandmann] + bringup_static_routes: fix gateway check (#850) [Petr Fedchenkov] + add hamalq user (#860) [hamalq] + Add support to resize rootfs if using LVM (#721) [Eduardo Otubo] (LP: #1799953) + Fix mis-detecting network configuration in initramfs cmdline (#844) (LP: #1919188) + tools/write-ssh-key-fingerprints: do not display empty header/footer (#817) [dermotbradley] + Azure helper: Ensure Azure http handler sleeps between retries (#842) [Johnson Shi] + Fix chef apt source example (#826) [timothegenzmer] + .travis.yml: generate an SSH key before running tests (#848) + write passwords only to serial console, lock down cloud-init-output.log (#847) (LP: #1918303) + Fix apt default integration test (#845) + integration_tests: bump pycloudlib dependency (#846) + Fix stack trace if vendordata_raw contained an array (#837) [eb3095] + archlinux: Fix broken locale logic (#841) [Kristian Klausen] (LP: #1402406) + Integration test for #783 (#832) + integration_tests: mount more paths IN_PLACE (#838) + Fix requiring device-number on EC2 derivatives (#836) (LP: #1917875) + Remove the vi comment from the part-handler example (#835) + net: exclude OVS internal interfaces in get_interfaces (#829) (LP: #1912844) + tox.ini: pass OS_* environment variables to integration tests (#830) + integration_tests: add OpenStack as a platform (#804) + Add flexibility to IMDS api-version (#793) [Thomas Stringer] + Fix the TestApt tests using apt-key on Xenial and Hirsute (#823) [Paride Legovini] (LP: #1916629) + doc: remove duplicate "it" from nocloud.rst (#825) [V.I. Wood] + archlinux: Use hostnamectl to set the transient hostname (#797) [Kristian Klausen] + cc_keys_to_console.py: Add documentation for recently added config key (#824) [dermotbradley] + Update cc_set_hostname documentation (#818) [Toshi Aoyama] From 21.1 + Azure: Support for VMs without ephemeral resource disks. (#800) [Johnson Shi] (LP: #1901011) + cc_keys_to_console: add option to disable key emission (#811) [Michael Hudson-Doyle] (LP: #1915460) + integration_tests: introduce lxd_use_exec mark (#802) + azure: case-insensitive UUID to avoid new IID during kernel upgrade (#798) (LP: #1835584) + stale.yml: don't ask submitters to reopen PRs (#816) + integration_tests: fix use of SSH agent within tox (#815) + integration_tests: add UPGRADE CloudInitSource (#812) + integration_tests: use unique MAC addresses for tests (#813) + Update .gitignore (#814) + Port apt cloud_tests to integration tests (#808) + integration_tests: fix test_gh626 on LXD VMs (#809) + Fix attempting to decode binary data in test_seed_random_data test (#806) + Remove wait argument from tests with session_cloud calls (#805) + Datasource for UpCloud (#743) [Antti Myyrä] + test_gh668: fix failure on LXD VMs (#801) + openstack: read the dynamic metadata group vendor_data2.json (#777) [Andrew Bogott] (LP: #1841104) + includedir in suoders can be prefixed by "arroba" (#783) [Jordi Massaguer Pla] + [VMware] change default max wait time to 15s (#774) [xiaofengw-vmware] + Revert integration test associated with reverted #586 (#784) + Add jordimassaguerpla as contributor (#787) [Jordi Massaguer Pla] + Add Rick Harding to CLA signers (#792) [Rick Harding] + HACKING.rst: add clarifying note to LP CLA process section (#789) + Stop linting cloud_tests (#791) + cloud-tests: update cryptography requirement (#790) [Joshua Powers] + Remove 'remove-raise-on-failure' calls from integration_tests (#788) + Use more cloud defaults in integration tests (#757) + Adding self to cla signers (#776) [Andrew Bogott] + doc: avoid two warnings (#781) [Dan Kenigsberg] + Use proper spelling for Red Hat (#778) [Dan Kenigsberg] + Add antonyc to .github-cla-signers (#747) [Anton Chaporgin] + integration_tests: log image serial if available (#772) + [VMware] Support cloudinit raw data feature (#691) [xiaofengw-vmware] + net: Fix static routes to host in eni renderer (#668) [Pavel Abalikhin] + .travis.yml: don't run cloud_tests in CI (#756) + test_upgrade: add some missing commas (#769) + cc_seed_random: update documentation and fix integration test (#771) (LP: #1911227) + Fix test gh-632 test to only run on NoCloud (#770) (LP: #1911230) + archlinux: fix package upgrade command handling (#768) [Bao Trinh] + integration_tests: add integration test for LP: #1910835 (#761) + Fix regression with handling of IMDS ssh keys (#760) [Thomas Stringer] + integration_tests: log cloud-init version in SUT (#758) + Add ajmyyra as contributor (#742) [Antti Myyrä] + net_convert: add some missing help text (#755) + Missing IPV6_AUTOCONF=no to render sysconfig dhcp6 stateful on RHEL (#753) [Eduardo Otubo] + doc: document missing IPv6 subnet types (#744) [Antti Myyrä] + Add example configuration for datasource `AliYun` (#751) [Xiaoyu Zhong] + integration_tests: add SSH key selection settings (#754) + fix a typo in man page cloud-init.1 (#752) [Amy Chen] + network-config-format-v2.rst: add Netplan Passthrough section (#750) + stale: re-enable post holidays (#749) + integration_tests: port ca_certs tests from cloud_tests (#732) + Azure: Add telemetry for poll IMDS (#741) [Johnson Shi] + doc: move testing section from HACKING to its own doc (#739) + No longer allow integration test failures on travis (#738) + stale: fix error in definition (#740) + integration_tests: set log-cli-level to INFO by default (#737) + PULL_REQUEST_TEMPLATE.md: use backticks around commit message (#736) + stale: disable check for holiday break (#735) + integration_tests: log the path we collect logs into (#733) + .travis.yml: add (most) supported Python versions to CI (#734) + integration_tests: fix IN_PLACE CLOUD_INIT_SOURCE (#731) + cc_ca_certs: add RHEL support (#633) [cawamata] + Azure: only generate config for NICs with addresses (#709) [Thomas Stringer] + doc: fix CloudStack configuration example (#707) [Olivier Lemasle] + integration_tests: restrict test_lxd_bridge appropriately (#730) + Add integration tests for CLI functionality (#729) + Integration test for gh-626 (#728) + Some test_upgrade fixes (#726) + Ensure overriding test vars with env vars works for booleans (#727) + integration_tests: port lxd_bridge test from cloud_tests (#718) + Integration test for gh-632. (#725) + Integration test for gh-671 (#724) + integration-requirements.txt: bump pycloudlib commit (#723) + Drop unnecessary shebang from cmd/main.py (#722) [Eduardo Otubo] + Integration test for LP: #1813396 and #669 (#719) + integration_tests: include timestamp in log output (#720) + integration_tests: add test for LP: #1898997 (#713) + Add integration test for power_state_change module (#717) + Update documentation for network-config-format-v2 (#701) [ggiesen] + sandbox CA Cert tests to not require ca-certificates (#715) [Eduardo Otubo] + Add upgrade integration test (#693) + Integration test for 570 (#712) + Add ability to keep snapshotted images in integration tests (#711) + Integration test for pull #586 (#706) + integration_tests: introduce skipping of tests by OS (#702) + integration_tests: introduce IntegrationInstance.restart (#708) + Add lxd-vm to list of valid integration test platforms (#705) + Adding BOOTPROTO = dhcp to render sysconfig dhcp6 stateful on RHEL (#685) [Eduardo Otubo] + Delete image snapshots created for integration tests (#682) + Parametrize ssh_keys_provided integration test (#700) [lucasmoura] + Drop use_sudo attribute on IntegrationInstance (#694) [lucasmoura] + cc_apt_configure: add riscv64 as a ports arch (#687) [Dimitri John Ledkov] + cla: add xnox (#692) [Dimitri John Ledkov] + Collect logs from integration test runs (#675) From 20.4.1 + Revert "ssh_util: handle non-default AuthorizedKeysFile config (#586)" From 20.4 + tox: avoid tox testenv subsvars for xenial support (#684) + Ensure proper root permissions in integration tests (#664) [James Falcon] + LXD VM support in integration tests (#678) [James Falcon] + Integration test for fallocate falling back to dd (#681) [James Falcon] + .travis.yml: correctly integration test the built .deb (#683) + Ability to hot-attach NICs to preprovisioned VMs before reprovisioning (#613) [aswinrajamannar] + Support configuring SSH host certificates. (#660) [Jonathan Lung] + add integration test for LP: #1900837 (#679) + cc_resizefs on FreeBSD: Fix _can_skip_ufs_resize (#655) [Mina Galić] (LP: #1901958, #1901958) + DataSourceAzure: push dmesg log to KVP (#670) [Anh Vo] + Make mount in place for tests work (#667) [James Falcon] + integration_tests: restore emission of settings to log (#657) + DataSourceAzure: update password for defuser if exists (#671) [Anh Vo] + tox.ini: only select "ci" marked tests for CI runs (#677) + Azure helper: Increase Azure Endpoint HTTP retries (#619) [Johnson Shi] + DataSourceAzure: send failure signal on Azure datasource failure (#594) [Johnson Shi] + test_persistence: simplify VersionIsPoppedFromState (#674) + only run a subset of integration tests in CI (#672) + cli: add + -system param to allow validating system user-data on a machine (#575) + test_persistence: add VersionIsPoppedFromState test (#673) + introduce an upgrade framework and related testing (#659) + add + -no-tty option to gpg (#669) [Till Riedel] (LP: #1813396) + Pin pycloudlib to a working commit (#666) [James Falcon] + DataSourceOpenNebula: exclude SRANDOM from context output (#665) + cloud_tests: add hirsute release definition (#662) + split integration and cloud_tests requirements (#652) + faq.rst: add warning to answer that suggests running `clean` (#661) + Fix stacktrace in DataSourceRbxCloud if no metadata disk is found (#632) [Scott Moser] + Make wakeonlan Network Config v2 setting actually work (#626) [dermotbradley] + HACKING.md: unify network-refactoring namespace (#658) [Mina Galić] + replace usage of dmidecode with kenv on FreeBSD (#621) [Mina Galić] + Prevent timeout on travis integration tests. (#651) [James Falcon] + azure: enable pushing the log to KVP from the last pushed byte (#614) [Moustafa Moustafa] + Fix launch_kwargs bug in integration tests (#654) [James Falcon] + split read_fs_info into linux & freebsd parts (#625) [Mina Galić] + PULL_REQUEST_TEMPLATE.md: expand commit message section (#642) + Make some language improvements in growpart documentation (#649) [Shane Frasier] + Revert ".travis.yml: use a known-working version of lxd (#643)" (#650) + Fix not sourcing default 50-cloud-init ENI file on Debian (#598) [WebSpider] + remove unnecessary reboot from gpart resize (#646) [Mina Galić] + cloudinit: move dmi functions out of util (#622) [Scott Moser] + integration_tests: various launch improvements (#638) + test_lp1886531: don't assume /etc/fstab exists (#639) + Remove Ubuntu restriction from PR template (#648) [James Falcon] + util: fix mounting of vfat on *BSD (#637) [Mina Galić] + conftest: improve docstring for disable_subp_usage (#644) + doc: add example query commands to debug Jinja templates (#645) + Correct documentation and testcase data for some user-data YAML (#618) [dermotbradley] + Hetzner: Fix instance_id / SMBIOS serial comparison (#640) [Markus Schade] + .travis.yml: use a known-working version of lxd (#643) + tools/build-on-freebsd: fix comment explaining purpose of the script (#635) [Mina Galić] + Hetzner: initialize instance_id from system-serial-number (#630) [Markus Schade] (LP: #1885527) + Explicit set IPV6_AUTOCONF and IPV6_FORCE_ACCEPT_RA on static6 (#634) [Eduardo Otubo] + get_interfaces: don't exclude Open vSwitch bridge/bond members (#608) [Lukas Märdian] (LP: #1898997) + Add config modules for controlling IBM PowerVM RMC. (#584) [Aman306] (LP: #1895979) + Update network config docs to clarify MAC address quoting (#623) [dermotbradley] + gentoo: fix hostname rendering when value has a comment (#611) [Manuel Aguilera] + refactor integration testing infrastructure (#610) [James Falcon] + stages: don't reset permissions of cloud-init.log every boot (#624) (LP: #1900837) + docs: Add how to use cloud-localds to boot qemu (#617) [Joshua Powers] + Drop vestigial update_resolve_conf_file function (#620) [Scott Moser] + cc_mounts: correctly fallback to dd if fallocate fails (#585) (LP: #1897099) + .travis.yml: add integration-tests to Travis matrix (#600) + ssh_util: handle non-default AuthorizedKeysFile config (#586) [Eduardo Otubo] + Multiple file fix for AuthorizedKeysFile config (#60) [Eduardo Otubo] + bddeb: new + -packaging-branch argument to pull packaging from branch (#576) [Paride Legovini] + Add more integration tests (#615) [lucasmoura] + DataSourceAzure: write marker file after report ready in preprovisioning (#590) [Johnson Shi] + integration_tests: emit settings to log during setup (#601) + integration_tests: implement citest tests run in Travis (#605) + Add Azure support to integration test framework (#604) [James Falcon] + openstack: consider product_name as valid chassis tag (#580) [Adrian Vladu] (LP: #1895976) + azure: clean up and refactor report_diagnostic_event (#563) [Johnson Shi] + net: add the ability to blacklist network interfaces based on driver during enumeration of physical network devices (#591) [Anh Vo] + integration_tests: don't error on cloud-init failure (#596) + integration_tests: improve cloud-init.log assertions (#593) + conftest.py: remove top-level import of httpretty (#599) + tox.ini: add integration-tests testenv definition (#595) + PULL_REQUEST_TEMPLATE.md: empty checkboxes need a space (#597) + add integration test for LP: #1886531 (#592) + Initial implementation of integration testing infrastructure (#581) [James Falcon] + Fix name of ntp and chrony service on CentOS and RHEL. (#589) [Scott Moser] (LP: #1897915) + Adding a PR template (#587) [James Falcon] + Azure parse_network_config uses fallback cfg when generate IMDS network cfg fails (#549) [Johnson Shi] + features: refresh docs for easier out-of-context reading (#582) + Fix typo in resolv_conf module's description (#578) [Wacław Schiller] + cc_users_groups: minor doc formatting fix (#577) + Fix typo in disk_setup module's description (#579) [Wacław Schiller] + Add vendor-data support to seedfrom parameter for NoCloud and OVF (#570) [Johann Queuniet] + boot.rst: add First Boot Determination section (#568) (LP: #1888858) + opennebula.rst: minor readability improvements (#573) [Mina Galić] + cloudinit: remove unused LOG variables (#574) + create a shutdown_command method in distro classes (#567) [Emmanuel Thomé] + user_data: remove unused constant (#566) + network: Fix type and respect name when rendering vlan in sysconfig. (#541) [Eduardo Otubo] (LP: #1788915, #1826608) + Retrieve SSH keys from IMDS first with OVF as a fallback (#509) [Thomas Stringer] + Add jqueuniet as contributor (#569) [Johann Queuniet] + distros: minor typo fix (#562) + Bump the integration-requirements versioned dependencies (#565) [Paride Legovini] + network-config-format-v1: fix typo in nameserver example (#564) [Stanislas] + Run cloud-init-local.service after the hv_kvp_daemon (#505) [Robert Schweikert] + Add method type hints for Azure helper (#540) [Johnson Shi] + systemd: add Before=shutdown.target when Conflicts=shutdown.target is used (#546) [Paride Legovini] + LXD: detach network from profile before deleting it (#542) [Paride Legovini] (LP: #1776958) + redhat spec: add missing BuildRequires (#552) [Paride Legovini] + util: remove debug statement (#556) [Joshua Powers] + Fix cloud config on chef example (#551) [lucasmoura] From 20.3 + Azure: Add netplan driver filter when using hv_netvsc driver (#539) [James Falcon] (LP: #1830740) + query: do not handle non-decodable non-gzipped content (#543) + DHCP sandboxing failing on noexec mounted /var/tmp (#521) [Eduardo Otubo] + Update the list of valid ssh keys. (#487) [Ole-Martin Bratteng] (LP: #1877869) + cmd: cloud-init query to handle compressed userdata (#516) (LP: #1889938) + Pushing cloud-init log to the KVP (#529) [Moustafa Moustafa] + Add Alpine Linux support. (#535) [dermotbradley] + Detect kernel version before swap file creation (#428) [Eduardo Otubo] + cli: add devel make-mime subcommand (#518) + user-data: only verify mime-types for TYPE_NEEDED and x-shellscript (#511) (LP: #1888822) + DataSourceOracle: retry twice (and document why we retry at all) (#536) + Refactor Azure report ready code (#468) [Johnson Shi] + tox.ini: pin correct version of httpretty in xenial{,-dev} envs (#531) + Support Oracle IMDSv2 API (#528) [James Falcon] + .travis.yml: run a doc build during CI (#534) + doc/rtd/topics/datasources/ovf.rst: fix doc8 errors (#533) + Fix 'Users and Groups' configuration documentation (#530) [sshedi] + cloudinit.distros: update docstrings of add_user and create_user (#527) + Fix headers for device types in network v2 docs (#532) [Caleb Xavier Berger] + Add AlexBaranowski as contributor (#508) [Aleksander Baranowski] + DataSourceOracle: refactor to use only OPC v1 endpoint (#493) + .github/workflows/stale.yml: s/Josh/Rick/ (#526) + Fix a typo in apt pipelining module (#525) [Xiao Liang] + test_util: parametrize devlist tests (#523) [James Falcon] + Recognize LABEL_FATBOOT labels (#513) [James Falcon] (LP: #1841466) + Handle additional identifier for SLES For HPC (#520) [Robert Schweikert] + Revert "test-requirements.txt: pin pytest to <6 (#512)" (#515) + test-requirements.txt: pin pytest to <6 (#512) + Add "tsanghan" as contributor (#504) [tsanghan] + fix brpm building (LP: #1886107) + Adding eandersson as a contributor (#502) [Erik Olof Gunnar Andersson] + azure: disable bouncing hostname when setting hostname fails (#494) [Anh Vo] + VMware: Support parsing DEFAULT-RUN-POST-CUST-SCRIPT (#441) [xiaofengw-vmware] + DataSourceAzure: Use ValueError when JSONDecodeError is not available (#490) [Anh Vo] + cc_ca_certs.py: fix blank line problem when removing CAs and adding new one (#483) [dermotbradley] + freebsd: py37-serial is now py37-pyserial (#492) [Gonéri Le Bouder] + ssh exit with non-zero status on disabled user (#472) [Eduardo Otubo] (LP: #1170059) + cloudinit: remove global disable of pylint W0107 and fix errors (#489) + networking: refactor wait_for_physdevs from cloudinit.net (#466) (LP: #1884626) + HACKING.rst: add pytest.param pytest gotcha (#481) + cloudinit: remove global disable of pylint W0105 and fix errors (#480) + Fix two minor warnings (#475) + test_data: fix faulty patch (#476) + cc_mounts: handle missing fstab (#484) (LP: #1886531) + LXD cloud_tests: support more lxd image formats (#482) [Paride Legovini] + Add update_etc_hosts as default module on *BSD (#479) [Adam Dobrawy] + cloudinit: fix tip-pylint failures and bump pinned pylint version (#478) + Added BirknerAlex as contributor and sorted the file (#477) [Alexander Birkner] + Update list of types of modules in cli.rst [saurabhvartak1982] + tests: use markers to configure disable_subp_usage (#473) + Add mention of vendor-data to no-cloud format documentation (#470) [Landon Kirk] + Fix broken link to OpenStack metadata service docs (#467) [Matt Riedemann] + Disable ec2 mirror for non aws instances (#390) [lucasmoura] (LP: #1456277) + cloud_tests: don't pass + -python-version to read-dependencies (#465) + networking: refactor is_physical from cloudinit.net (#457) (LP: #1884619) + Enable use of the caplog fixture in pytest tests, and add a cc_final_message test using it (#461) + RbxCloud: Add support for FreeBSD (#464) [Adam Dobrawy] + Add schema for cc_chef module (#375) [lucasmoura] (LP: #1858888) + test_util: add (partial) testing for util.mount_cb (#463) + .travis.yml: revert to installing ubuntu-dev-tools (#460) + HACKING.rst: add details of net refactor tracking (#456) + .travis.yml: rationalise installation of dependencies in host (#449) + Add dermotbradley as contributor. (#458) [dermotbradley] + net/networking: remove unused functions/methods (#453) + distros.networking: initial implementation of layout (#391) + cloud-init.service.tmpl: use "rhel" instead of "redhat" (#452) + Change from redhat to rhel in systemd generator tmpl (#450) [Eduardo Otubo] + Hetzner: support reading user-data that is base64 encoded. (#448) [Scott Moser] (LP: #1884071) + HACKING.rst: add strpath gotcha to testing gotchas section (#446) + cc_final_message: don't create directories when writing boot-finished (#445) (LP: #1883903) + .travis.yml: only store new schroot if something has changed (#440) + util: add ensure_dir_exists parameter to write_file (#443) + printing the error stream of the dhclient process before killing it (#369) [Moustafa Moustafa] + Fix link to the MAAS documentation (#442) [Paride Legovini] (LP: #1883666) + RPM build: disable the dynamic mirror URLs when using a proxy (#437) [Paride Legovini] + util: rename write_file's copy_mode parameter to preserve_mode (#439) + .travis.yml: use $TRAVIS_BUILD_DIR for lxd_image caching (#438) + cli.rst: alphabetise devel subcommands and add net-convert to list (#430) + Default to UTF-8 in /var/log/cloud-init.log (#427) [James Falcon] + travis: cache the chroot we use for package builds (#429) + test: fix all flake8 E126 errors (#425) [Joshua Powers] + Fixes KeyError for bridge with no "parameters:" setting (#423) [Brian Candler] (LP: #1879673) + When tools.conf does not exist, running cmd "vmware-toolbox-cmd config get deployPkg enable-custom-scripts", the return code will be EX_UNAVAILABLE(69), on this condition, it should not take it as error. (#413) [chengcheng-chcheng] + Document CloudStack data-server well-known hostname (#399) [Gregor Riepl] + test: move conftest.py to top-level, to cover tests/ also (#414) + Replace cc_chef is_installed with use of subp.is_exe. (#421) [Scott Moser] + Move runparts to subp. (#420) [Scott Moser] + Move subp into its own module. (#416) [Scott Moser] + readme: point at travis-ci.com (#417) [Joshua Powers] + New feature flag functionality and fix includes failing silently (#367) [James Falcon] (LP: #1734939) + Enhance poll imds logging (#365) [Moustafa Moustafa] + test: fix all flake8 E121 and E123 errors (#404) [Joshua Powers] + test: fix all flake8 E241 (#403) [Joshua Powers] + test: ignore flake8 E402 errors in main.py (#402) [Joshua Powers] + cc_grub_dpkg: determine idevs in more robust manner with grub-probe (#358) [Matthew Ruffell] (LP: #1877491) + test: fix all flake8 E741 errors (#401) [Joshua Powers] + tests: add groovy integration tests for ubuntu (#400) + Enable chef_license support for chef infra client (#389) [Bipin Bachhao] + testing: use flake8 again (#392) [Joshua Powers] + enable Puppet, Chef mcollective in default config (#385) [Mina Galić (deprecated: Igor Galić)] (LP: #1880279) + HACKING.rst: introduce .net + > Networking refactor section (#384) + Travis: do not install python3-contextlib2 (dropped dependency) (#388) [Paride Legovini] + HACKING: mention that .github-cla-signers is alpha-sorted (#380) + Add bipinbachhao as contributor (#379) [Bipin Bachhao] + cc_snap: validate that assertions property values are strings (#370) + conftest: implement partial disable_subp_usage (#371) + test_resolv_conf: refresh stale comment (#374) + cc_snap: apply validation to snap.commands properties (#364) + make finding libc platform independent (#366) [Mina Galić (deprecated: Igor Galić)] + doc/rtd/topics/faq: Updates LXD docs links to current site (#368) [TomP] + templater: drop Jinja Python 2 compatibility shim (#353) + cloudinit: minor pylint fixes (#360) + cloudinit: remove unneeded __future__ imports (#362) + migrating momousta lp user to Moustafa-Moustafa GitHub user (#361) [Moustafa Moustafa] + cloud_tests: emit dots on Travis while fetching images (#347) + Add schema to apt configure config (#357) [lucasmoura] (LP: #1858884) + conftest: add docs and tests regarding CiTestCase's subp functionality (#343) + analyze/dump: refactor shared string into variable (#350) + doc: update boot.rst with correct timing of runcmd (#351) + HACKING.rst: change contact info to Rick Harding (#359) [lucasmoura] + HACKING.rst: guide people to add themselves to the CLA file (#349) + HACKING.rst: more unit testing documentation (#354) + .travis.yml: don't run lintian during integration test package builds (#352) + Add test to ensure docs examples are valid cloud-init configs (#355) [James Falcon] (LP: #1876414) + make suse and sles support 127.0.1.1 (#336) [chengcheng-chcheng] + Create tests to validate schema examples (#348) [lucasmoura] (LP: #1876412) + analyze/dump: add support for Amazon Linux 2 log lines (#346) (LP: #1876323) + bsd: upgrade support (#305) [Gonéri Le Bouder] + Add lucasmoura as contributor (#345) [lucasmoura] + Add "therealfalcon" as contributor (#344) [James Falcon] + Adapt the package building scripts to use Python 3 (#231) [Paride Legovini] + DataSourceEc2: use metadata's NIC ordering to determine route-metrics (#342) (LP: #1876312) + .travis.yml: introduce caching (#329) + cc_locale: introduce schema (#335) + doc/rtd/conf.py: bump copyright year to 2020 (#341) + yum_add_repo: Add Centos to the supported distro list (#340) - Fix unit test fail in TestGetPackageMirrorInfo::test_substitution. - Add patch from upstream to remove python2 compatibility so cloud-init builds fine in Tumbleweed with a recent Jinja2 version. This patch is only applied in TW. cloud-init-21.2-8.51.1.src.rpm cloud-init-21.2-8.51.1.x86_64.rpm cloud-init-config-suse-21.2-8.51.1.x86_64.rpm cloud-init-doc-21.2-8.51.1.x86_64.rpm cloud-init-21.2-8.51.1.s390x.rpm cloud-init-config-suse-21.2-8.51.1.s390x.rpm cloud-init-doc-21.2-8.51.1.s390x.rpm cloud-init-21.2-8.51.1.ppc64le.rpm cloud-init-config-suse-21.2-8.51.1.ppc64le.rpm cloud-init-doc-21.2-8.51.1.ppc64le.rpm cloud-init-21.2-8.51.1.aarch64.rpm cloud-init-config-suse-21.2-8.51.1.aarch64.rpm cloud-init-doc-21.2-8.51.1.aarch64.rpm openSUSE-SLE-15.3-2022-131 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated - Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573) You can reenable via systemctl setting /proc/sys/kernel/unprivileged_bpf_disabled to 0. (kernel.unprivileged_bpf_disabled = 0) The following security bugs were fixed: - CVE-2021-45485: Fixed an information leak because of certain use of a hash table which use IPv6 source addresses. (bsc#1194094) - CVE-2021-45486: Fixed an information leak because the hash table is very small in net/ipv4/route.c. (bnc#1194087). - CVE-2021-4001: Fixed a race condition when the EBPF map is frozen. (bsc#1192990) - CVE-2021-28715: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by do not queueing unlimited number of packages. (bsc#1193442) - CVE-2021-28714: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by fixing rx queue stall detection. (bsc#1193442) - CVE-2021-28713: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening hvc_xen against event channel storms. (bsc#1193440) - CVE-2021-28712: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening netfront against event channel storms. (bsc#1193440) - CVE-2021-28711: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening blkfront against event channel storms. (bsc#1193440) - CVE-2020-24504: Fixed an uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers that may have allowed an authenticated user to potentially enable denial of service via local access. (bnc#1182404) - CVE-2021-43975: Fixed a flaw in hw_atl_utils_fw_rpc_wait that could allow an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value. (bnc#1192845) - CVE-2021-43976: Fixed a flaw that could allow an attacker (who can connect a crafted USB device) to cause a denial of service. (bnc#1192847) - CVE-2021-4002: Added a missing TLB flush that could lead to leak or corruption of data in hugetlbfs. (bsc#1192946) - CVE-2020-27820: Fixed a vulnerability where a use-after-frees in nouveau's postclose() handler could happen if removing device. (bnc#1179599) The following non-security bugs were fixed: - ACPI: battery: Accept charges over the design capacity as full (git-fixes). - ACPI: PMIC: Fix intel_pmic_regs_handler() read accesses (git-fixes). - ACPICA: Avoid evaluating methods too early during system resume (git-fixes). - Add SMB 2 support for getting and setting SACLs (bsc#1192606). - Add to supported.conf: fs/smbfs_common/cifs_arc4 fs/smbfs_common/cifs_md4 - ALSA: ctxfi: Fix out-of-range access (git-fixes). - ALSA: gus: fix null pointer dereference on pointer block (git-fixes). - ALSA: hda: hdac_ext_stream: fix potential locking issues (git-fixes). - ALSA: hda: hdac_stream: fix potential locking issue in snd_hdac_stream_assign() (git-fixes). - ALSA: hda/realtek: Add a quirk for Acer Spin SP513-54N (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS UX550VE (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PC70HS (git-fixes). - ALSA: hda/realtek: Add quirk for HP EliteBook 840 G7 mute LED (git-fixes). - ALSA: ISA: not for M68K (git-fixes). - ALSA: synth: missing check for possible NULL after the call to kstrdup (git-fixes). - ALSA: timer: Fix use-after-free problem (git-fixes). - ALSA: timer: Unconditionally unlink slave instances, too (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 400 (git-fixes). - ARM: 8970/1: decompressor: increase tag size (git-fixes). - ARM: 8974/1: use SPARSMEM_STATIC when SPARSEMEM is enabled (git-fixes) - ARM: 8986/1: hw_breakpoint: Do not invoke overflow handler on uaccess watchpoints (git-fixes) - ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT (git-fixes) - ARM: 9019/1: kprobes: Avoid fortify_panic() when copying optprobe (git-fixes) - ARM: 9046/1: decompressor: Do not clear SCTLR.nTLSMD for ARMv7+ cores (git-fixes) - ARM: 9064/1: hw_breakpoint: Do not directly check the event's (git-fixes) - ARM: 9071/1: uprobes: Do not hook on thumb instructions (git-fixes) - ARM: 9081/1: fix gcc-10 thumb2-kernel regression (git-fixes) - ARM: 9091/1: Revert "mm: qsd8x50: Fix incorrect permission faults" (git-fixes) - ARM: 9133/1: mm: proc-macros: ensure *_tlb_fns are 4B aligned (git-fixes) - ARM: 9134/1: remove duplicate memcpy() definition (git-fixes) - ARM: 9139/1: kprobes: fix arch_init_kprobes() prototype (git-fixes) - ARM: 9141/1: only warn about XIP address when not compile testing (git-fixes) - ARM: 9155/1: fix early early_iounmap() (git-fixes) - ARM: at91: pm: add missing put_device() call in at91_pm_sram_init() (git-fixes) - ARM: at91: pm: of_node_put() after its usage (git-fixes) - ARM: at91: pm: use proper master clock register offset (git-fixes) - ARM: bcm: Select ARM_TIMER_SP804 for ARCH_BCM_NSP (git-fixes) - ARM: dts sunxi: Relax a bit the CMA pool allocation range (git-fixes) - ARM: dts: am335x-pocketbeagle: Fix mmc0 Write Protect (git-fixes) - ARM: dts: am335x: align ti,pindir-d0-out-d1-in property with dt-shema (git-fixes) - ARM: dts: am437x-idk-evm: Fix incorrect OPP node names (git-fixes) - ARM: dts: am437x-l4: fix typo in can@0 node (git-fixes) - ARM: dts: armada-38x: fix NETA lockup when repeatedly switching speeds (git-fixes) - ARM: dts: armada388-helios4: assign pinctrl to each fan (git-fixes) - ARM: dts: armada388-helios4: assign pinctrl to LEDs (git-fixes) - ARM: dts: aspeed: s2600wf: Fix VGA memory region location (git-fixes) - ARM: dts: aspeed: tiogapass: Remove vuart (git-fixes) - ARM: dts: at91-sama5d27_som1: fix phy address to 7 (git-fixes) - ARM: dts: at91: add pinctrl-{names, 0} for all gpios (git-fixes) - ARM: dts: at91: at91sam9rl: fix ADC triggers (git-fixes) - ARM: dts: at91: sama5d2_ptc_ek: fix sdmmc0 node description (git-fixes) - ARM: dts: at91: sama5d2_ptc_ek: fix vbus pin (git-fixes) - ARM: dts: at91: sama5d2_xplained: classd: pull-down the R1 and R3 lines (git-fixes) - ARM: dts: at91: sama5d2: fix CAN message ram offset and size (git-fixes) - ARM: dts: at91: sama5d2: map securam as device (git-fixes) - ARM: dts: at91: sama5d3_xplained: add pincontrol for USB Host (git-fixes) - ARM: dts: at91: sama5d4_xplained: add pincontrol for USB Host (git-fixes) - ARM: dts: at91: sama5d4: fix pinctrl muxing (git-fixes) - ARM: dts: at91: tse850: the emaclt;->phy interface is rmii (git-fixes) - ARM: dts: bcm: HR2: Fix PPI interrupt types (git-fixes) - ARM: dts: bcm: HR2: Fixed QSPI compatible string (git-fixes) - ARM: dts: bcm2835-rpi-zero-w: Fix led polarity (git-fixes) - ARM: dts: BCM5301X: Add interrupt properties to GPIO node (git-fixes) - ARM: dts: BCM5301X: Fix I2C controller interrupt (git-fixes) - ARM: dts: BCM5301X: Fixed QSPI compatible string (git-fixes) - ARM: dts: colibri-imx6ull: limit SDIO clock to 25MHz (git-fixes) - ARM: dts: Configure missing thermal interrupt for 4430 (git-fixes) - ARM: dts: dra76x: Fix mmc3 max-frequency (git-fixes) - ARM: dts: dra76x: m_can: fix order of clocks (git-fixes) - ARM: dts: dra7xx-clocks: Fixup IPU1 mux clock parent source (git-fixes) - ARM: dts: exynos: correct fuel gauge interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct MUIC interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Arndale (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Artik 5 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Monk (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Odroid X/U3 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Odroid XU3 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Rinato (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on SMDK5250 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Snow (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Spring (git-fixes) - ARM: dts: exynos: Fix GPIO polarity for thr GalaxyS3 CM36651 sensor's bus (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid HC1 (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid XU/XU3 (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid XU4 (git-fixes) - ARM: dts: exynos: fix roles of USB 3.0 ports on Odroid XU (git-fixes) - ARM: dts: exynos: fix USB 3.0 pins supply being turned off on Odroid (git-fixes) - ARM: dts: exynos: fix USB 3.0 VBUS control and over-current pins on (git-fixes) - ARM: dts: Fix dcan driver probe failed on am437x platform (git-fixes) - ARM: dts: Fix duovero smsc interrupt for suspend (git-fixes) - ARM: dts: gemini-rut1xx: remove duplicate ethernet node (git-fixes) - ARM: dts: gose: Fix ports node name for adv7180 (git-fixes) - ARM: dts: gose: Fix ports node name for adv7612 (git-fixes) - ARM: dts: imx: emcon-avari: Fix nxp,pca8574 #gpio-cells (git-fixes) - ARM: dts: imx: Fix USB host power regulator polarity on M53Menlo (git-fixes) - ARM: dts: imx: Swap M53Menlo pinctrl_power_button/pinctrl_power_out (git-fixes) - ARM: dts: imx27-phytec-phycard-s-rdk: Fix the I2C1 pinctrl entries (git-fixes) - ARM: dts: imx50-evk: Fix the chip select 1 IOMUX (git-fixes) - ARM: dts: imx6: pbab01: Set vmmc supply for both SD interfaces (git-fixes) - ARM: dts: imx6: phycore-som: fix arm and soc minimum voltage (git-fixes) - ARM: dts: imx6: phycore-som: fix emmc supply (git-fixes) - ARM: dts: imx6: Use gpc for FEC interrupt controller to fix wake on LAN (git-fixes) - ARM: dts: imx6dl-colibri-eval-v3: fix sram compatible properties (git-fixes). - ARM: dts: imx6dl-yapp4: Fix RGMII connection to QCA8334 switch (git-fixes) - ARM: dts: imx6dl-yapp4: Fix Ursa board Ethernet connection (git-fixes) - ARM: dts: imx6q-dhcom: Add gpios pinctrl for i2c bus recovery (git-fixes) - ARM: dts: imx6q-dhcom: Add PU,VDD1P1,VDD2P5 regulators (git-fixes) - ARM: dts: imx6q-dhcom: Fix ethernet plugin detection problems (git-fixes) - ARM: dts: imx6q-dhcom: Fix ethernet reset time properties (git-fixes) - ARM: dts: imx6qdl-gw52xx: fix duplicate regulator naming (git-fixes) - ARM: dts: imx6qdl-gw551x: Do not use 'simple-audio-card,dai-link' (git-fixes) - ARM: dts: imx6qdl-gw551x: fix audio SSI (git-fixes) - ARM: dts: imx6qdl-icore: Fix OTG_ID pin and sdcard detect (git-fixes) - ARM: dts: imx6qdl-kontron-samx6i: fix i2c_lcd/cam default status (git-fixes) - ARM: dts: imx6qdl-kontron-samx6i: fix I2C_PM scl pin (git-fixes) - ARM: dts: imx6qdl-sr-som: Increase the PHY reset duration to 10ms (git-fixes) - ARM: dts: imx6qdl-udoo: fix rgmii phy-mode for ksz9031 phy (git-fixes) - ARM: dts: imx6sl: fix rng node (git-fixes) - ARM: dts: imx6sx-sabreauto: Fix the phy-mode on fec2 (git-fixes) - ARM: dts: imx6sx-sdb: Fix the phy-mode on fec2 (git-fixes) - ARM: dts: imx6sx: Add missing UART RTS/CTS pins mux (git-fixes) - ARM: dts: imx6sx: fix the pad QSPI1B_SCLK mux mode for uart3 (git-fixes) - ARM: dts: imx6sx: Improve UART pins macro defines (git-fixes) - ARM: dts: imx7-colibri: Fix frequency for sd/mmc (git-fixes) - ARM: dts: imx7-colibri: fix muxing of usbc_det pin (git-fixes) - ARM: dts: imx7-colibri: prepare module device tree for FlexCAN (git-fixes) - ARM: dts: imx7d-meerkat96: Fix the 'tuning-step' property (git-fixes) - ARM: dts: imx7d-pico: Fix the 'tuning-step' property (git-fixes) - ARM: dts: imx7d: Correct speed grading fuse settings (git-fixes) - ARM: dts: imx7d: fix opp-supported-hw (git-fixes) - ARM: dts: imx7ulp: Correct gpio ranges (git-fixes) - ARM: dts: logicpd-som-lv-baseboard: Fix broken audio (git-fixes) - ARM: dts: logicpd-som-lv-baseboard: Fix missing video (git-fixes) - ARM: dts: logicpd-torpedo-baseboard: Fix broken audio (git-fixes) - ARM: dts: lpc32xx: Revert set default clock rate of HCLK PLL (git-fixes) - ARM: dts: ls1021a: fix QuadSPI-memory reg range (git-fixes) - ARM: dts: ls1021a: Restore MDIO compatible to gianfar (git-fixes) - ARM: dts: meson: fix PHY deassert timing requirements (git-fixes) - ARM: dts: meson8: remove two invalid interrupt lines from the GPU (git-fixes) - ARM: dts: meson8: Use a higher default GPU clock frequency (git-fixes) - ARM: dts: meson8b: ec100: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: meson8b: mxq: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: meson8b: odroidc1: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: mt7623: add missing pause for switchport (git-fixes) - ARM: dts: N900: fix onenand timings (git-fixes). - ARM: dts: NSP: Correct FA2 mailbox node (git-fixes) - ARM: dts: NSP: Disable PL330 by default, add dma-coherent property (git-fixes) - ARM: dts: NSP: Fixed QSPI compatible string (git-fixes) - ARM: dts: omap3-gta04a4: accelerometer irq fix (git-fixes) - ARM: dts: omap3430-sdp: Fix NAND device node (git-fixes) - ARM: dts: owl-s500: Fix incorrect PPI interrupt specifiers (git-fixes) - ARM: dts: oxnas: Fix clear-mask property (git-fixes) - ARM: dts: pandaboard: fix pinmux for gpio user button of Pandaboard (git-fixes) - ARM: dts: qcom: apq8064: Use 27MHz PXO clock as DSI PLL reference (git-fixes) - ARM: dts: qcom: msm8974: Add xo_board reference clock to DSI0 PHY (git-fixes) - ARM: dts: r7s9210: Remove bogus clock-names from OSTM nodes (git-fixes) - ARM: dts: r8a73a4: Add missing CMT1 interrupts (git-fixes) - ARM: dts: r8a7740: Add missing extal2 to CPG node (git-fixes) - ARM: dts: r8a7779, marzen: Fix DU clock names (git-fixes) - ARM: dts: Remove non-existent i2c1 from 98dx3236 (git-fixes) - ARM: dts: renesas: Fix IOMMU device node names (git-fixes) - ARM: dts: s5pv210: Set keep-power-in-suspend for SDHCI1 on Aries (git-fixes) - ARM: dts: socfpga: Align L2 cache-controller nodename with dtschema (git-fixes) - ARM: dts: socfpga: fix register entry for timer3 on Arria10 (git-fixes) - ARM: dts: stm32: fix a typo for DAC io-channel-cells on stm32f429 (git-fixes) - ARM: dts: stm32: fix a typo for DAC io-channel-cells on stm32h743 (git-fixes) - ARM: dts: sun6i: a31-hummingbird: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun7i: a20: bananapro: Fix ethernet phy-mode (git-fixes) - ARM: dts: sun7i: bananapi-m1-plus: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun7i: bananapi: Enable RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun7i: cubietruck: Enable RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun7i: pcduino3-nano: enable RGMII RX/TX delay on PHY (git-fixes) - ARM: dts: sun8i-a83t-tbs-a711: Fix USB OTG mode detection (git-fixes) - ARM: dts: sun8i-h2-plus-bananapi-m2-zero: Fix led polarity (git-fixes) - ARM: dts: sun8i: a83t: Enable both RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun8i: h3: orangepi-plus2e: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-berry: Fix dcdc1 regulator (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-ultra: Fix dcdc1 regulator (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-ultra: Fix ethernet node (git-fixes) - ARM: dts: sun8i: r40: Move AHCI device node based on address order (git-fixes) - ARM: dts: sun8i: v3s: fix GIC node memory range (git-fixes) - ARM: dts: sun8i: v40: bananapi-m2-berry: Fix ethernet node (git-fixes) - ARM: dts: sun9i: Enable both RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sunxi: bananapi-m2-plus-v1.2: Fix CPU supply voltages (git-fixes) - ARM: dts: sunxi: bananapi-m2-plus: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sunxi: Fix DE2 clocks register range (git-fixes) - ARM: dts: turris-omnia: add comphy handle to eth2 (git-fixes) - ARM: dts: turris-omnia: add SFP node (git-fixes) - ARM: dts: turris-omnia: configure LED[2]/INTn pin as interrupt pin (git-fixes) - ARM: dts: turris-omnia: describe switch interrupt (git-fixes) - ARM: dts: turris-omnia: enable HW buffer management (git-fixes) - ARM: dts: turris-omnia: fix hardware buffer management (git-fixes) - ARM: dts: uniphier: Change phy-mode to RGMII-ID to enable delay pins (git-fixes) - ARM: dts: uniphier: Set SCSSI clock and reset IDs for each channel (git-fixes). - ARM: dts: vf610-zii-dev-rev-b: Remove #address-cells and #size-cells (git-fixes) - ARM: dts: vfxxx: Add syscon compatible with OCOTP (git-fixes) - ARM: exynos: add missing of_node_put for loop iteration (git-fixes) - ARM: exynos: MCPM: Restore big.LITTLE cpuidle support (git-fixes) - ARM: footbridge: fix PCI interrupt mapping (git-fixes) - ARM: imx: add missing clk_disable_unprepare() (git-fixes) - ARM: imx: add missing iounmap() (git-fixes) - ARM: imx: build suspend-imx6.S with arm instruction set (git-fixes) - ARM: imx: fix missing 3rd argument in macro imx_mmdc_perf_init (git-fixes) - ARM: imx5: add missing put_device() call in imx_suspend_alloc_ocram() (git-fixes) - ARM: imx6: disable the GIC CPU interface before calling stby-poweroff (git-fixes) - ARM: mvebu: drop pointless check for coherency_base (git-fixes) - ARM: OMAP2+: Fix legacy mode dss_reset (git-fixes) - ARM: OMAP2+: omap_device: fix idling of devices during probe (git-fixes) - ARM: OMAP2+: pm33xx-core: Make am43xx_get_rtc_base_addr static (git-fixes) - ARM: p2v: fix handling of LPAE translation in BE mode (git-fixes) - ARM: s3c: irq-s3c24xx: Fix return value check for s3c24xx_init_intc() (git-fixes) - ARM: s3c24xx: fix missing system reset (git-fixes) - ARM: s3c24xx: fix mmc gpio lookup tables (git-fixes) - ARM: samsung: do not build plat/pm-common for Exynos (git-fixes) - ARM: samsung: fix PM debug build with DEBUG_LL but !MMU (git-fixes) - ARM: socfpga: PM: add missing put_device() call in socfpga_setup_ocram_self_refresh() (git-fixes) - ASoC: DAPM: Cover regression by kctl change notification fix (git-fixes). - ASoC: nau8824: Add DMI quirk mechanism for active-high jack-detect (git-fixes). - ASoC: qdsp6: q6routing: Conditionally reset FrontEnd Mixer (git-fixes). - ASoC: SOF: Intel: hda-dai: fix potential locking issue (git-fixes). - ASoC: topology: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ath: dfs_pattern_detector: Fix possible null-pointer dereference in channel_detector_create() (git-fixes). - ath10k: fix invalid dma_addr_t token assignment (git-fixes). - ath10k: high latency fixes for beacon buffer (git-fixes). - Bbluetooth: btusb: Add another Bluetooth part for Realtek 8852AE (bsc#1193655). - bfq: Limit number of requests consumed by each cgroup (bsc#1184318). - bfq: Store full bitmap depth in bfq_data (bsc#1184318). - bfq: Track number of allocated requests in bfq_entity (bsc#1184318). - block: Fix use-after-free issue accessing struct io_cq (bsc#1193042). - block: Provide blk_mq_sched_get_icq() (bsc#1184318). - Bluetooth: Add additional Bluetooth part for Realtek 8852AE (bsc#1193655). - Bluetooth: btrtl: Refine the ic_id_table for clearer and more regular (bsc#1193655). - Bluetooth: btusb: Add the more support IDs for Realtek RTL8822CE (bsc#1193655). - Bluetooth: btusb: Add the new support ID for Realtek RTL8852A (bsc#1193655). - Bluetooth: btusb: btrtl: Add support for RTL8852A (bsc#1193655). - Bluetooth: fix use-after-free error in lock_sock_nested() (git-fixes). - bnxt_en: reject indirect blk offload when hw-tc-offload is off (jsc#SLE-8372 bsc#1153275). - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (git-fixes). - bpf, arm: Fix register clobbering in div/mod implementation (git-fixes) - bpf, s390: Fix potential memory leak about jit_data (git-fixes). - bpf, x86: Fix "no previous prototype" warning (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Cyberbook T116 tablet (git-fixes). - btrfs: do not ignore error from btrfs_next_leaf() when inserting checksums (bsc#1193002). - btrfs: fix fsync failure and transaction abort after writes to prealloc extents (bsc#1193002). - btrfs: fix lost inode on log replay after mix of fsync, rename and inode eviction (bsc#1192998). - btrfs: fix race causing unnecessary inode logging during link and rename (bsc#1192998). - btrfs: make checksum item extension more efficient (bsc#1193002). - cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (git-fixes). - cifs use true,false for bool variable (bsc#1164565). - cifs_atomic_open(): fix double-put on late allocation failure (bsc#1192606). - cifs_debug: use %pd instead of messing with ->d_name (bsc#1192606). - cifs: add a debug macro that prints \\server\share for errors (bsc#1164565). - cifs: add a function to get a cached dir based on its dentry (bsc#1192606). - cifs: add a helper to find an existing readable handle to a file (bsc#1154355). - cifs: add a timestamp to track when the lease of the cached dir was taken (bsc#1192606). - cifs: add an smb3_fs_context to cifs_sb (bsc#1192606). - cifs: add FALLOC_FL_INSERT_RANGE support (bsc#1192606). - cifs: add files to host new mount api (bsc#1192606). - cifs: add fs_context param to parsing helpers (bsc#1192606). - cifs: Add get_security_type_str function to return sec type (bsc#1192606). - cifs: add initial reconfigure support (bsc#1192606). - cifs: add missing mount option to /proc/mounts (bsc#1164565). - cifs: add missing parsing of backupuid (bsc#1192606). - cifs: Add missing sentinel to smb3_fs_parameters (bsc#1192606). - cifs: add mount parameter tcpnodelay (bsc#1192606). - cifs: add multichannel mount options and data structs (bsc#1192606). - cifs: add new debugging macro cifs_server_dbg (bsc#1164565). - cifs: Add new mount parameter "acdirmax" to allow caching directory metadata (bsc#1192606). - cifs: Add new parameter "acregmax" for distinct file and directory metadata timeout (bsc#1192606). - cifs: add NULL check for ses->tcon_ipc (bsc#1178270). - cifs: add passthrough for smb2 setinfo (bsc#1164565). - cifs: add server param (bsc#1192606). - cifs: add shutdown support (bsc#1192606). - cifs: add smb2 POSIX info level (bsc#1164565). - cifs: add SMB2_open() arg to return POSIX data (bsc#1164565). - cifs: add SMB3 change notification support (bsc#1164565). - cifs: add support for FALLOC_FL_COLLAPSE_RANGE (bsc#1192606). - cifs: add support for fallocate mode 0 for non-sparse files (bsc#1164565). - cifs: add support for flock (bsc#1164565). - cifs: Add support for setting owner info, dos attributes, and create time (bsc#1164565). - cifs: Add tracepoints for errors on flush or fsync (bsc#1164565). - cifs: Add witness information to debug data dump (bsc#1192606). - cifs: add witness mount option and data structs (bsc#1192606). - cifs: added WARN_ON for all the count decrements (bsc#1192606). - cifs: Adjust indentation in smb2_open_file (bsc#1164565). - cifs: Adjust key sizes and key generation routines for AES256 encryption (bsc#1192606). - cifs: allocate buffer in the caller of build_path_from_dentry() (bsc#1192606). - cifs: Allocate crypto structures on the fly for calculating signatures of incoming packets (bsc#1192606). - cifs: Allocate encryption header through kmalloc (bsc#1192606). - cifs: allow chmod to set mode bits using special sid (bsc#1164565). - cifs: allow syscalls to be restarted in __smb_send_rqst() (bsc#1176956). - cifs: allow unlock flock and OFD lock across fork (bsc#1192606). - cifs: Always update signing key of first channel (bsc#1192606). - cifs: ask for more credit on async read/write code paths (bsc#1192606). - cifs: Assign boolean values to a bool variable (bsc#1192606). - cifs: Avoid doing network I/O while holding cache lock (bsc#1164565). - cifs: Avoid error pointer dereference (bsc#1192606). - cifs: avoid extra calls in posix_info_parse (bsc#1192606). - cifs: Avoid field over-reading memcpy() (bsc#1192606). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: avoid using MID 0xFFFF (bnc#1151927 5.3.8). - cifs: call wake_up(server->response_q) inside of cifs_reconnect() (bsc#1164565). - cifs: change confusing field serverName (to ip_addr) (bsc#1192606). - cifs: change format of CIFS_FULL_KEY_DUMP ioctl (bsc#1192606). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: Change SIDs in ACEs while transferring file ownership (bsc#1192606). - cifs: check all path components in resolved dfs target (bsc#1181710). - cifs: check new file size when extending file by fallocate (bsc#1192606). - cifs: check pointer before freeing (bsc#1183534). - cifs: check the timestamp for the cached dirent when deciding on revalidate (bsc#1192606). - cifs: cifs_md4 convert to SPDX identifier (bsc#1192606). - cifs: cifspdu.h: Replace one-element array with flexible-array member (bsc#1192606). - cifs: cifspdu.h: Replace zero-length array with flexible-array member (bsc#1192606). - cifs: cifsssmb: remove redundant assignment to variable ret (bsc#1164565). - cifs: clarify comment about timestamp granularity for old servers (bsc#1192606). - cifs: clarify hostname vs ip address in /proc/fs/cifs/DebugData (bsc#1192606). - cifs: Clarify SMB1 code for delete (bsc#1192606). - cifs: Clarify SMB1 code for POSIX Create (bsc#1192606). - cifs: Clarify SMB1 code for POSIX delete file (bsc#1192606). - cifs: Clarify SMB1 code for POSIX Lock (bsc#1192606). - cifs: Clarify SMB1 code for rename open file (bsc#1192606). - cifs: Clarify SMB1 code for SetFileSize (bsc#1192606). - cifs: clarify SMB1 code for UnixCreateHardLink (bsc#1192606). - cifs: Clarify SMB1 code for UnixCreateSymLink (bsc#1192606). - cifs: Clarify SMB1 code for UnixSetPathInfo (bsc#1192606). - cifs: Clean up DFS referral cache (bsc#1164565). - cifs: cleanup a few le16 vs. le32 uses in cifsacl.c (bsc#1192606). - cifs: cleanup misc.c (bsc#1192606). - cifs: clear PF_MEMALLOC before exiting demultiplex thread (bsc#1192606). - cifs: Close cached root handle only if it had a lease (bsc#1164565). - cifs: Close open handle after interrupted close (bsc#1164565). - cifs: close the shared root handle on tree disconnect (bsc#1164565). - cifs: compute full_path already in cifs_readdir() (bsc#1192606). - cifs: connect individual channel servers to primary channel server (bsc#1192606). - cifs: connect: style: Simplify bool comparison (bsc#1192606). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: constify path argument of ->make_node() (bsc#1192606). - cifs: constify pathname arguments in a bunch of helpers (bsc#1192606). - cifs: Constify static struct genl_ops (bsc#1192606). - cifs: convert list_for_each to entry variant (bsc#1192606, jsc#SLE-20042). - cifs: convert list_for_each to entry variant in cifs_debug.c (bsc#1192606). - cifs: convert list_for_each to entry variant in smb2misc.c (bsc#1192606). - cifs: convert revalidate of directories to using directory metadata cache timeout (bsc#1192606). - cifs: convert to use be32_add_cpu() (bsc#1192606). - cifs: Convert to use the fallthrough macro (bsc#1192606). - cifs: correct comments explaining internal semaphore usage in the module (bsc#1192606). - cifs: correct four aliased mount parms to allow use of previous names (bsc#1192606). - cifs: create a helper function to parse the query-directory response buffer (bsc#1164565). - cifs: create a helper to find a writeable handle by path name (bsc#1154355). - cifs: create a MD4 module and switch cifs.ko to use it (bsc#1192606). - cifs: Create a new shared file holding smb2 pdu definitions (bsc#1192606). - cifs: create sd context must be a multiple of 8 (bsc#1192606). - cifs: Deal with some warnings from W=1 (bsc#1192606). - cifs: Delete a stray unlock in cifs_swn_reconnect() (bsc#1192606). - cifs: delete duplicated words in header files (bsc#1192606). - cifs: detect dead connections only when echoes are enabled (bsc#1192606). - cifs: Display local UID details for SMB sessions in DebugData (bsc#1192606). - cifs: do d_move in rename (bsc#1164565). - cifs: do not allow changing posix_paths during remount (bsc#1192606). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not create a temp nls in cifs_setup_ipc (bsc#1192606). - cifs: do not disable noperm if multiuser mount option is not provided (bsc#1192606). - cifs: Do not display RDMA transport on reconnect (bsc#1164565). - cifs: do not duplicate fscache cookie for secondary channels (bsc#1192606). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: do not ignore the SYNC flags in getattr (bsc#1164565). - cifs: do not leak -EAGAIN for stat() during reconnect (bsc#1164565). - cifs: Do not leak EDEADLK to dgetents64 for STATUS_USER_SESSION_DELETED (bsc#1192606). - cifs: Do not miss cancelled OPEN responses (bsc#1164565). - cifs: do not negotiate session if session already exists (bsc#1192606). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not share tcons with DFS (bsc#1178270). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: do not use 'pre:' for MODULE_SOFTDEP (bsc#1164565). - cifs: Do not use iov_iter::type directly (bsc#1192606). - cifs: Do not use the original cruid when following DFS links for multiuser mounts (bsc#1192606). - cifs: document and cleanup dfs mount (bsc#1178270). - cifs: dump channel info in DebugData (bsc#1192606). - cifs: dump Security Type info in DebugData (bsc#1192606). - cifs: dump the session id and keys also for SMB2 sessions (bsc#1192606). - cifs: enable change notification for SMB2.1 dialect (bsc#1164565). - cifs: enable extended stats by default (bsc#1192606). - cifs: Enable sticky bit with cifsacl mount option (bsc#1192606). - cifs: ensure correct super block for DFS reconnect (bsc#1178270). - cifs: escape spaces in share names (bsc#1192606). - cifs: export supported mount options via new mount_params /proc file (bsc#1192606). - cifs: fail i/o on soft mounts if sessionsetup errors out (bsc#1164565). - cifs: fiemap: do not return EINVAL if get nothing (bsc#1192606). - cifs: fix a comment for the timeouts when sending echos (bsc#1164565). - cifs: fix a memleak with modefromsid (bsc#1192606). - cifs: fix a sign extension bug (bsc#1192606). - cifs: fix a white space issue in cifs_get_inode_info() (bsc#1164565). - cifs: fix allocation size on newly created files (bsc#1192606). - cifs: Fix an error pointer dereference in cifs_mount() (bsc#1178270). - cifs: Fix atime update check vs mtime (bsc#1164565). - cifs: Fix bug which the return value by asynchronous read is error (bsc#1192606). - cifs: Fix cached_fid refcnt leak in open_shroot (bsc#1192606). - cifs: fix channel signing (bsc#1192606). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix check of tcon dfs in smb1 (bsc#1178270). - cifs: Fix chmod with modefromsid when an older ACE already exists (bsc#1192606). - cifs: fix chown and chgrp when idsfromsid mount option enabled (bsc#1192606). - cifs: Fix cifsacl ACE mask for group and others (bsc#1192606). - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs (bnc#1151927 5.3.10). - cifs: fix credit accounting for extra channel (bsc#1192606). - cifs: fix dereference on ses before it is null checked (bsc#1164565). - cifs: fix dfs domain referrals (bsc#1192606). - cifs: fix DFS failover (bsc#1192606). - cifs: fix DFS mount with cifsacl/modefromsid (bsc#1178270). - cifs: fix dfs-links (bsc#1192606). - cifs: fix doc warnings in cifs_dfs_ref.c (bsc#1192606). - cifs: Fix double add page to memcg when cifs_readpages (bsc#1192606). - cifs: fix double free error on share and prefix (bsc#1178270). - cifs: Fix fall-through warnings for Clang (bsc#1192606). - cifs: fix fallocate when trying to allocate a hole (bsc#1192606). - cifs: fix gcc warning in sid_to_id (bsc#1192606). - cifs: fix handling of escaped ',' in the password mount argument (bsc#1192606). - cifs: Fix in error types returned for out-of-credit situations (bsc#1192606). - cifs: Fix incomplete memory allocation on setxattr path (bsc#1179211). - cifs: Fix inconsistent indenting (bsc#1192606). - cifs: Fix inconsistent IS_ERR and PTR_ERR (bsc#1192606). - cifs: fix incorrect check for null pointer in header_assemble (bsc#1192606). - cifs: fix incorrect kernel doc comments (bsc#1192606). - cifs: fix interrupted close commands (git-fixes). - cifs: fix ipv6 formating in cifs_ses_add_channel (bsc#1192606). - cifs: fix leak in cifs_smb3_do_mount() ctx (bsc#1192606). - cifs: Fix leak when handling lease break for cached root fid (bsc#1176242). - cifs: fix leaked reference on requeued write (bsc#1178270). - cifs: Fix lookup of root ses in DFS referral cache (bsc#1164565). - cifs: Fix lookup of SMB connections on multichannel (bsc#1192606). - cifs: fix max ea value size (bnc#1151927 5.3.4). - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1164565). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - cifs: fix memory leak of smb3_fs_context_dup::server_hostname (bsc#1192606). - cifs: fix minor typos in comments and log messages (bsc#1192606). - cifs: Fix missed free operations (bnc#1151927 5.3.8). - cifs: fix missing null session check in mount (bsc#1192606). - cifs: fix missing spinlock around update to ses->status (bsc#1192606). - cifs: fix misspellings using codespell tool (bsc#1192606). - cifs: fix mode bits from dir listing when mounted with modefromsid (bsc#1164565). - cifs: Fix mode output in debugging statements (bsc#1164565). - cifs: fix mount option display for sec=krb5i (bsc#1161907). - cifs: Fix mount options set in automount (bsc#1164565). - cifs: fix mounts to subdirectories of target (bsc#1192606). - cifs: fix nodfs mount option (bsc#1181710). - cifs: fix NULL dereference in match_prepath (bsc#1164565). - cifs: fix NULL dereference in smb2_check_message() (bsc#1192606). - cifs: Fix null pointer check in cifs_read (bsc#1192606). - cifs: Fix NULL pointer dereference in mid callback (bsc#1164565). - cifs: Fix NULL-pointer dereference in smb2_push_mandatory_locks (bnc#1151927 5.3.16). - cifs: Fix oplock handling for SMB 2.1+ protocols (bnc#1151927 5.3.4). - cifs: fix out-of-bound memory access when calling smb3_notify() at mount point (bsc#1192606). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: fix possible uninitialized access and race on iface_list (bsc#1192606). - cifs: Fix potential deadlock when updating vol in cifs_reconnect() (bsc#1164565). - cifs: fix potential mismatch of UNC paths (bsc#1164565). - cifs: Fix potential softlockups while refreshing DFS cache (bsc#1164565). - cifs: fix potential use-after-free bugs (bsc#1192606, jsc#SLE-20042). - cifs: fix potential use-after-free in cifs_echo_request() (bsc#1139944). - cifs: Fix preauth hash corruption (git-fixes). - cifs: fix print of hdr_flags in dfscache_proc_show() (bsc#1192606, jsc#SLE-20042). - cifs: fix reference leak for tlink (bsc#1192606). - cifs: fix regression when mounting shares with prefix paths (bsc#1192606). - cifs: fix rename() by ensuring source handle opened with DELETE bit (bsc#1164565). - cifs: Fix resource leak (bsc#1192606). - cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1164565). - cifs: Fix retry mid list corruption on reconnects (bnc#1151927 5.3.10). - cifs: Fix return value in __update_cache_entry (bsc#1164565). - cifs: fix rsize/wsize to be negotiated values (bsc#1192606). - cifs: fix SMB1 error path in cifs_get_file_info_unix (bsc#1192606). - cifs: Fix SMB2 oplock break processing (bsc#1154355 bnc#1151927 5.3.16). - cifs: fix soft mounts hanging in the reconnect code (bsc#1164565). - cifs: fix soft mounts hanging in the reconnect code (bsc#1164565). - cifs: Fix some error pointers handling detected by static checker (bsc#1192606). - cifs: Fix spelling of 'security' (bsc#1192606). - cifs: fix string declarations and assignments in tracepoints (bsc#1192606). - cifs: Fix support for remount when not changing rsize/wsize (bsc#1192606). - cifs: Fix task struct use-after-free on reconnect (bsc#1164565). - cifs: fix the out of range assignment to bit fields in parse_server_interfaces (bsc#1192606). - cifs: Fix the target file was deleted when rename failed (bsc#1192606). - cifs: fix trivial typo (bsc#1192606). - cifs: fix uninitialised lease_key in open_shroot() (bsc#1178270). - cifs: fix uninitialized variable in smb3_fs_context_parse_param (bsc#1192606). - cifs: fix unitialized variable poential problem with network I/O cache lock patch (bsc#1164565). - cifs: Fix unix perm bits to cifsacl conversion for "other" bits (bsc#1192606). - cifs: fix unneeded null check (bsc#1192606). - cifs: fix use after free in cifs_smb3_do_mount() (bsc#1192606). - cifs: Fix use after free of file info structures (bnc#1151927 5.3.8). - cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1164565). - cifs: fix wrong release in sess_alloc_buffer() failed path (bsc#1192606). - cifs: for compound requests, use open handle if possible (bsc#1192606). - cifs: Force reval dentry if LOOKUP_REVAL flag is set (bnc#1151927 5.3.7). - cifs: Force revalidate inode when dentry is stale (bnc#1151927 5.3.7). - cifs: fork arc4 and create a separate module for it for cifs and other users (bsc#1192606). - cifs: get mode bits from special sid on stat (bsc#1164565). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: get rid of cifs_sb->mountdata (bsc#1192606). - cifs: Get rid of kstrdup_const()'d paths (bsc#1164565). - cifs: get rid of unused parameter in reconn_setup_dfs_targets() (bsc#1178270). - cifs: Grab a reference for the dentry of the cached directory during the lifetime of the cache (bsc#1192606). - cifs: Gracefully handle QueryInfo errors during open (bnc#1151927 5.3.7). - cifs: handle -EINTR in cifs_setattr (bsc#1192606). - cifs: handle "guest" mount parameter (bsc#1192606). - cifs: handle "nolease" option for vers=1.0 (bsc#1192606). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: handle empty list of targets in cifs_reconnect() (bsc#1178270). - cifs: handle hostnames that resolve to same ip in failover (bsc#1178270). - cifs: handle prefix paths in reconnect (bsc#1164565). - cifs: handle reconnect of tcon when there is no cached dfs referral (bsc#1192606). - cifs: handle RESP_GET_DFS_REFERRAL.PathConsumed in reconnect (bsc#1178270). - cifs: Handle witness client move notification (bsc#1192606). - cifs: have ->mkdir() handle race with another client sanely (bsc#1192606). - cifs: have cifs_fattr_to_inode() refuse to change type on live inode (bsc#1192606). - cifs: Identify a connection by a conn_id (bsc#1192606). - cifs: If a corrupted DACL is returned by the server, bail out (bsc#1192606). - cifs: ignore auto and noauto options if given (bsc#1192606). - cifs: ignore cached share root handle closing errors (bsc#1166780). - cifs: improve fallocate emulation (bsc#1192606). - cifs: improve read performance for page size 64KB cache=strict vers=2.1+ (bsc#1192606). - cifs: In the new mount api we get the full devname as source= (bsc#1192606). - cifs: Increment num_remote_opens stats counter even in case of smb2_query_dir_first (bsc#1192606). - cifs: Initialize filesystem timestamp ranges (bsc#1164565). - cifs: introduce cifs_ses_mark_for_reconnect() helper (bsc#1192606). - cifs: introduce helper for finding referral server (bsc#1181710). - cifs: Introduce helpers for finding TCP connection (bsc#1164565). - cifs: introduce new helper for cifs_reconnect() (bsc#1192606, jsc#SLE-20042). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: log mount errors using cifs_errorf() (bsc#1192606). - cifs: log warning message (once) if out of disk space (bsc#1164565). - cifs: make build_path_from_dentry() return const char * (bsc#1192606). - cifs: make const array static, makes object smaller (bsc#1192606). - cifs: Make extract_hostname function public (bsc#1192606). - cifs: Make extract_sharename function public (bsc#1192606). - cifs: make fs_context error logging wrapper (bsc#1192606). - cifs: make locking consistent around the server session status (bsc#1192606). - cifs: make multichannel warning more visible (bsc#1192606). - cifs: Make SMB2_notify_init static (bsc#1164565). - cifs: make sure we do not overflow the max EA buffer size (bsc#1164565). - cifs: make use of cap_unix(ses) in cifs_reconnect_tcon() (bsc#1164565). - cifs: map STATUS_ACCOUNT_LOCKED_OUT to -EACCES (bsc#1192606). - cifs: merge __{cifs,smb2}_reconnect[_tcon]() into cifs_tree_connect() (bsc#1178270). - cifs: Merge is_path_valid() into get_normalized_path() (bsc#1164565). - cifs: minor fix to two debug messages (bsc#1192606). - cifs: minor kernel style fixes for comments (bsc#1192606). - cifs: minor simplification to smb2_is_network_name_deleted (bsc#1192606). - cifs: minor update to comments around the cifs_tcp_ses_lock mutex (bsc#1192606). - cifs: minor updates to Kconfig (bsc#1192606). - cifs: misc: Use array_size() in if-statement controlling expression (bsc#1192606). - cifs: missed ref-counting smb session in find (bsc#1192606). - cifs: missing null check for newinode pointer (bsc#1192606). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: modefromsid: make room for 4 ACE (bsc#1164565). - cifs: modefromsid: write mode ACE first (bsc#1164565). - cifs: move [brw]size from cifs_sb to cifs_sb->ctx (bsc#1192606). - cifs: move cache mount options to fs_context.ch (bsc#1192606). - cifs: move cifs_cleanup_volume_info[_content] to fs_context.c (bsc#1192606). - cifs: move cifs_parse_devname to fs_context.c (bsc#1192606). - cifs: move cifsFileInfo_put logic into a work-queue (bsc#1154355). - cifs: move debug print out of spinlock (bsc#1192606). - cifs: Move more definitions into the shared area (bsc#1192606). - cifs: move NEGOTIATE_PROTOCOL definitions out into the common area (bsc#1192606). - cifs: move security mount options into fs_context.ch (bsc#1192606). - cifs: move SMB FSCTL definitions to common code (bsc#1192606). - cifs: move smb version mount options into fs_context.c (bsc#1192606). - cifs: Move SMB2_Create definitions to the shared area (bsc#1192606). - cifs: move some variables off the stack in smb2_ioctl_query_info (bsc#1192606). - cifs: move the check for nohandlecache into open_shroot (bsc#1192606). - cifs: move the enum for cifs parameters into fs_context.h (bsc#1192606). - cifs: move update of flags into a separate function (bsc#1192606). - cifs: multichannel: always zero struct cifs_io_parms (bsc#1192606). - cifs: multichannel: move channel selection above transport layer (bsc#1192606). - cifs: multichannel: move channel selection in function (bsc#1192606). - cifs: multichannel: try to rebind when reconnecting a channel (bsc#1192606). - cifs: multichannel: use pointer for binding channel (bsc#1192606). - cifs: mute -Wunused-const-variable message (bnc#1151927 5.3.9). - cifs: New optype for session operations (bsc#1181507). - cifs: nosharesock should be set on new server (bsc#1192606). - cifs: nosharesock should not share socket with future sessions (bsc#1192606). - cifs: On cifs_reconnect, resolve the hostname again (bsc#1192606). - cifs: only update prefix path of DFS links in cifs_tree_connect() (bsc#1178270). - cifs: only write 64kb at a time when fallocating a small region of a file (bsc#1192606). - cifs: Optimize readdir on reparse points (bsc#1164565). - cifs: pass a path to open_shroot and check if it is the root or not (bsc#1192606). - cifs: pass the dentry instead of the inode down to the revalidation check functions (bsc#1192606). - cifs: plumb smb2 POSIX dir enumeration (bsc#1164565). - cifs: populate server_hostname for extra channels (bsc#1192606). - cifs: potential unintitliazed error code in cifs_getattr() (bsc#1164565). - cifs: prepare SMB2_Flush to be usable in compounds (bsc#1154355). - cifs: prepare SMB2_query_directory to be used with compounding (bsc#1164565). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: prevent truncation from long to int in wait_for_free_credits (bsc#1192606). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: Print the address and port we are connecting to in generic_ip_connect() (bsc#1192606). - cifs: print warning mounting with vers=1.0 (bsc#1164565). - cifs: properly invalidate cached root handle when closing it (bsc#1192606). - cifs: Properly process SMB3 lease breaks (bsc#1164565). - cifs: protect session channel fields with chan_lock (bsc#1192606). - cifs: protect srv_count with cifs_tcp_ses_lock (bsc#1192606). - cifs: protect updating server->dstaddr with a spinlock (bsc#1192606). - cifs: Re-indent cifs_swn_reconnect() (bsc#1192606). - cifs: reduce number of referral requests in DFS link lookups (bsc#1178270). - cifs: reduce stack use in smb2_compound_op (bsc#1192606). - cifs: refactor cifs_get_inode_info() (bsc#1164565). - cifs: refactor create_sd_buf() and and avoid corrupting the buffer (bsc#1192606). - cifs: Reformat DebugData and index connections by conn_id (bsc#1192606). - cifs: Register generic netlink family (bsc#1192606). Update configs with CONFIG_SWN_UPCALL unset. - cifs: release lock earlier in dequeue_mid error case (bsc#1192606). - cifs: remove [gu]id/backup[gu]id/file_mode/dir_mode from cifs_sb (bsc#1192606). - cifs: remove actimeo from cifs_sb (bsc#1192606). - cifs: remove bogus debug code (bsc#1179427). - cifs: remove ctx argument from cifs_setup_cifs_sb (bsc#1192606). - cifs: remove duplicated prototype (bsc#1192606). - cifs: remove old dead code (bsc#1192606). - cifs: remove pathname for file from SPDX header (bsc#1192606). - cifs: remove redundant assignment to pointer pneg_ctxt (bsc#1164565). - cifs: remove redundant assignment to variable rc (bsc#1164565). - cifs: remove redundant initialization of variable rc (bsc#1192606). - cifs: remove redundant initialization of variable rc (bsc#1192606). - cifs: Remove repeated struct declaration (bsc#1192606). - cifs: Remove set but not used variable 'capabilities' (bsc#1164565). - cifs: remove set but not used variable 'server' (bsc#1164565). - cifs: remove set but not used variables 'cinode' and 'netfid' (bsc#1164565). - cifs: remove set but not used variables (bsc#1164565). - cifs: remove some minor warnings pointed out by kernel test robot (bsc#1192606). - cifs: remove the devname argument to cifs_compose_mount_options (bsc#1192606). - cifs: remove the retry in cifs_poxis_lock_set (bsc#1192606). - cifs: Remove the superfluous break (bsc#1192606). - cifs: remove two cases where rc is set unnecessarily in sid_to_id (bsc#1192606). - cifs: remove unnecessary copies of tcon->crfid.fid (bsc#1192606). - cifs: Remove unnecessary struct declaration (bsc#1192606). - cifs: remove unneeded variable in smb3_fs_context_dup (bsc#1192606). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: remove unused variable 'server' (bsc#1192606). - cifs: remove unused variable 'sid_user' (bsc#1164565). - cifs: remove unused variable (bsc#1164565). - cifs: Remove useless variable (bsc#1192606). - cifs: remove various function description warnings (bsc#1192606). - cifs: rename a variable in SendReceive() (bsc#1164565). - cifs: rename cifs_common to smbfs_common (bsc#1192606). - cifs: rename dup_vol to smb3_fs_context_dup and move it into fs_context.c (bsc#1192606). - cifs: rename posix create rsp (bsc#1164565). - cifs: rename reconn_inval_dfs_target() (bsc#1178270). - cifs: rename smb_vol as smb3_fs_context and move it to fs_context.h (bsc#1192606). - cifs: rename the *_shroot* functions to *_cached_dir* (bsc#1192606). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1177440). - cifs: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1164565). - cifs: Retain old ACEs when converting between mode bits and ACL (bsc#1192606). - cifs: retry lookup and readdir when EAGAIN is returned (bsc#1192606). - cifs: return cached_fid from open_shroot (bsc#1192606). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: Return directly after a failed build_path_from_dentry() in cifs_do_create() (bsc#1164565). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs: Return the error from crypt_message when enc/dec key not found (bsc#1179426). - cifs: returning mount parm processing errors correctly (bsc#1192606). - cifs: revalidate mapping when we open files for SMB1 POSIX (bsc#1192606). - cifs: Send witness register and unregister commands to userspace daemon (bsc#1192606). - cifs: Send witness register messages to userspace daemon in echo task (bsc#1192606). - cifs: send workstation name during ntlmssp session setup (bsc#1192606). - cifs: set a minimum of 120s for next dns resolution (bsc#1192606). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - cifs: Set CIFS_MOUNT_USE_PREFIX_PATH flag on setting cifs_sb->prepath (bsc#1192606). - cifs: set correct max-buffer-size for smb2_ioctl_init() (bsc#1164565). - cifs: set server->cipher_type to AES-128-CCM for SMB3.0 (bsc#1192606). - cifs: set up next DFS target before generic_ip_connect() (bsc#1178270). - cifs: Set witness notification handler for messages from userspace daemon (bsc#1192606). - cifs: Silently ignore unknown oplock break handle (bsc#1192606). - cifs: Simplify bool comparison (bsc#1192606). - cifs: simplify handling of cifs_sb/ctx->local_nls (bsc#1192606). - cifs: Simplify reconnect code when dfs upcall is enabled (bsc#1192606). - cifs: simplify SWN code with dummy funcs instead of ifdefs (bsc#1192606). - cifs: smb1: Try failing back to SetFileInfo if SetPathInfo fails (bsc#1192606). - cifs: smb2pdu.h: Replace zero-length array with flexible-array member (bsc#1192606). - cifs: smbd: Add messages on RDMA session destroy and reconnection (bsc#1164565). - cifs: smbd: Calculate the correct maximum packet size for segmented SMBDirect send/receive (bsc#1192606). - cifs: smbd: Check and extend sender credits in interrupt context (bsc#1192606). - cifs: smbd: Check send queue size before posting a send (bsc#1192606). - cifs: smbd: Do not schedule work to send immediate packet on every receive (bsc#1192606). - cifs: smbd: Invalidate and deregister memory registration on re-send for direct I/O (bsc#1164565). - cifs: smbd: Merge code to track pending packets (bsc#1192606). - cifs: smbd: Only queue work for error recovery on memory registration (bsc#1164565). - cifs: smbd: Properly process errors on ib_post_send (bsc#1192606). - cifs: smbd: Return -EAGAIN when transport is reconnecting (bsc#1164565). - cifs: smbd: Return -ECONNABORTED when trasnport is not in connected state (bsc#1164565). - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE (bsc#1164565). - cifs: smbd: Update receive credits before sending and deal with credits roll back on failure before sending (bsc#1192606). - cifs: sort interface list by speed (bsc#1192606). - cifs: Spelling s/EACCESS/EACCES/ (bsc#1192606). - cifs: split out dfs code from cifs_reconnect() (bsc#1192606, jsc#SLE-20042). - cifs: Standardize logging output (bsc#1192606). - cifs: store a pointer to the root dentry in cifs_sb_info once we have completed mounting the share (bsc#1192606). - cifs: style: replace one-element array with flexible-array (bsc#1192606). - cifs: support nested dfs links over reconnect (bsc#1192606, jsc#SLE-20042). - cifs: support share failover when remounting (bsc#1192606, jsc#SLE-20042). - cifs: switch build_path_from_dentry() to using dentry_path_raw() (bsc#1192606). - cifs: switch servers depending on binding state (bsc#1192606). - cifs: switch to new mount api (bsc#1192606). - cifs: To match file servers, make sure the server hostname matches (bsc#1192606). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: try harder to open new channels (bsc#1192606). - cifs: try opening channels after mounting (bsc#1192606). - cifs: uncomplicate printing the iocharset parameter (bsc#1192606). - cifs: Unlock on errors in cifs_swn_reconnect() (bsc#1192606). - cifs: update ctime and mtime during truncate (bsc#1192606). - cifs: update FSCTL definitions (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update mnt_cifs_flags during reconfigure (bsc#1192606). - cifs: update new ACE pointer after populate_new_aces (bsc#1192606). - cifs: update super_operations to show_devname (bsc#1192606). - cifs: Use #define in cifs_dbg (bsc#1164565). - cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a panic (bnc#1151927 5.3.7). - cifs: Use common error handling code in smb2_ioctl_query_info() (bsc#1164565). - cifs: use compounding for open and first query-dir for readdir() (bsc#1164565). - cifs: use discard iterator to discard unneeded network data more efficiently (bsc#1192606). - cifs: use echo_interval even when connection not ready (bsc#1192606). - cifs: use existing handle for compound_op(OP_SET_INFO) when possible (bsc#1154355). - cifs: use helpers when parsing uid/gid mount options and validate them (bsc#1192606). - cifs: Use memdup_user() rather than duplicating its implementation (bsc#1164565). - cifs: use mod_delayed_work() for server->reconnect if already queued (bsc#1164565). - cifs: use PTR_ERR_OR_ZERO() to simplify code (bsc#1164565). - cifs: use SPDX-Licence-Identifier (bsc#1192606). - cifs: use the expiry output of dns_query to schedule next resolution (bsc#1192606). - cifs: use true,false for bool variable (bsc#1164565). - cifs: warn and fail if trying to use rootfs without the config option (bsc#1192606). - cifs: Warn less noisily on default mount (bsc#1192606). - cifs: we do not allow changing username/password/unc/... during remount (bsc#1192606). - cifs/smb3: Fix data inconsistent when punch hole (bsc#1176544). - cifs/smb3: Fix data inconsistent when zero file range (bsc#1176536). - cifs`: handle ERRBaduid for SMB1 (bsc#1192606). - clk: imx: imx6ul: Move csi_sel mux to correct base register (git-fixes). - clk: ingenic: Fix bugs with divided dividers (git-fixes). - config: refresh BPF configs (jsc#SLE-22574) The SUSE-commit 9a413cc7eb56 ("config: disable unprivileged BPF by default (jsc#SLE-22573)") inherited from SLE15-SP2 puts the BPF config into the wrong place due to SLE15-SP3 additionally backported b24abcff918a ("bpf, kconfig: Add consolidated menu entry for bpf with core options"), and leads to duplicate CONFIG_BPF_UNPRIV_DEFAULT_OFF entires; this commit remove those BPF config. Also, disable unprivileged BPF for armv7hl, which did not inherit the config change from SLE15-SP2. - constraints: Build aarch64 on recent ARMv8.1 builders. Request asimdrdm feature which is available only on recent ARMv8.1 CPUs. This should prevent scheduling the kernel on an older slower builder. - Convert trailing spaces and periods in path components (bsc#1179424). - crypto: ecc - fix CRYPTO_DEFAULT_RNG dependency (git-fixes). - crypto: pcrypt - Delay write to padata->info (git-fixes). - crypto: s5p-sss - Add error handling in s5p_aes_probe() (git-fixes). - cxgb4: fix eeprom len when diagnostics not implemented (git-fixes). - dm raid: remove unnecessary discard limits for raid0 and raid10 (bsc#1192320). - dm: fix deadlock when swapping to encrypted device (bsc#1186332). - dmaengine: at_xdmac: fix AT_XDMAC_CC_PERID() macro (git-fixes). - dmaengine: dmaengine_desc_callback_valid(): Check for `callback_result` (git-fixes). - do_cifs_create(): do not set ->i_mode of something we had not created (bsc#1192606). - drm: panel-orientation-quirks: Add quirk for Aya Neo 2021 (git-fixes). - drm: panel-orientation-quirks: Add quirk for GPD Win3 (git-fixes). - drm: panel-orientation-quirks: Add quirk for KD Kurio Smart C15200 2-in-1 (git-fixes). - drm: panel-orientation-quirks: Add quirk for the Samsung Galaxy Book 10.6 (git-fixes). - drm: panel-orientation-quirks: Update the Lenovo Ideapad D330 quirk (v2) (git-fixes). - drm/amd/display: Set plane update flags for all planes in reset (git-fixes). - drm/amdgpu: fix set scaling mode Full/Full aspect/Center not works on vga and dvi connectors (git-fixes). - drm/msm: Do hw_init() before capturing GPU state (git-fixes). - drm/msm/a6xx: Allocate enough space for GMU registers (git-fixes). - drm/nouveau: hdmigv100.c: fix corrupted HDMI Vendor InfoFrame (git-fixes). - drm/nouveau/acr: fix a couple NULL vs IS_ERR() checks (git-fixes). - drm/nouveau/svm: Fix refcount leak bug and missing check against null bug (git-fixes). - drm/panel-orientation-quirks: add Valve Steam Deck (git-fixes). - drm/pl111: Actually fix CONFIG_VEXPRESS_CONFIG depends (git-fixes). - drm/plane-helper: fix uninitialized variable reference (git-fixes). - drm/vc4: fix error code in vc4_create_object() (git-fixes). - drop superfluous empty lines - e1000e: Separate TGP board type from SPT (bsc#1192874). - EDAC/amd64: Handle three rank interleaving mode (bsc#1152489). - elfcore: correct reference to CONFIG_UML (git-fixes). - elfcore: fix building with clang (bsc#1169514). - ethtool: fix ethtool msg len calculation for pause stats (jsc#SLE-15075). - firmware: qcom_scm: Mark string array const (git-fixes). - fuse: release pipe buf after last use (bsc#1193318). - gve: Add netif_set_xps_queue call (bsc#1176940). - gve: Add rx buffer pagecnt bias (bsc#1176940). - gve: Allow pageflips on larger pages (bsc#1176940). - gve: Do lazy cleanup in TX path (git-fixes). - gve: DQO: avoid unused variable warnings (bsc#1176940). - gve: Switch to use napi_complete_done (git-fixes). - gve: Track RX buffer allocation failures (bsc#1176940). - hwmon: (k10temp) Add additional missing Zen2 and Zen3 APUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Add support for yellow carp (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Add support for Zen3 CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Create common functions and macros for Zen CPU families (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Define SVI telemetry and current factors for Zen2 CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Do not show Tdie for all Zen/Zen2/Zen3 CPU/APU (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) make some symbols static (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Remove residues of current and voltage (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Remove support for displaying voltage and current on Zen CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Reorganize and simplify temperature support detection (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Rework the temperature offset calculation (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) support Zen3 APUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Swap Tdie and Tctl on Family 17h CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Update documentation and add temp2_input info (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Update driver documentation (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Zen3 Ryzen Desktop CPUs support (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - i2c: cbus-gpio: set atomic transfer callback (git-fixes). - i2c: stm32f7: flush TX FIFO upon transfer errors (git-fixes). - i2c: stm32f7: recover the bus on access timeout (git-fixes). - i2c: stm32f7: stop dma transfer in case of NACK (git-fixes). - i2c: xlr: Fix a resource leak in the error handling path of 'xlr_i2c_probe()' (git-fixes). - i40e: Fix changing previously set num_queue_pairs for PFs (git-fixes). - i40e: Fix correct max_pkt_size on VF RX queue (git-fixes). - i40e: Fix creation of first queue by omitting it if is not power of two (git-fixes). - i40e: Fix display error code in dmesg (git-fixes). - i40e: Fix failed opcode appearing if handling messages from VF (git-fixes). - i40e: Fix NULL ptr dereference on VSI filter sync (git-fixes). - i40e: Fix ping is lost after configuring ADq on VF (git-fixes). - i40e: Fix pre-set max number of queues for VF (git-fixes). - i40e: Fix warning message and call stack during rmmod i40e driver (git-fixes). - iavf: check for null in iavf_fix_features (git-fixes). - iavf: do not clear a lock we do not hold (git-fixes). - iavf: Fix failure to exit out from last all-multicast mode (git-fixes). - iavf: Fix for setting queues to 0 (jsc#SLE-12877). - iavf: Fix for the false positive ASQ/ARQ errors while issuing VF reset (git-fixes). - iavf: Fix reporting when setting descriptor count (git-fixes). - iavf: Fix return of set the new channel count (jsc#SLE-12877). - iavf: free q_vectors before queues in iavf_disable_vf (git-fixes). - iavf: prevent accidental free of filter structure (git-fixes). - iavf: Prevent changing static ITR values if adaptive moderation is on (git-fixes). - iavf: Restore VLAN filters after link down (git-fixes). - iavf: validate pointers (git-fixes). - ibmvnic: drop bad optimization in reuse_rx_pools() (bsc#1193349 ltc#195568). - ibmvnic: drop bad optimization in reuse_tx_pools() (bsc#1193349 ltc#195568). - ice: avoid bpf_prog refcount underflow (jsc#SLE-7926). - ice: avoid bpf_prog refcount underflow (jsc#SLE-7926). - ice: Delete always true check of PF pointer (git-fixes). - ice: Fix not stopping Tx queues for VFs (jsc#SLE-7926). - ice: Fix VF true promiscuous mode (jsc#SLE-12878). - ice: fix vsi->txq_map sizing (jsc#SLE-7926). - ice: ignore dropped packets during init (git-fixes). - ice: Remove toggling of antispoof for VF trusted promiscuous mode (jsc#SLE-12878). - igb: fix netpoll exit with traffic (git-fixes). - igc: Remove _I_PHY_ID checking (bsc#1193169). - igc: Remove phy->type checking (bsc#1193169). - iio: imu: st_lsm6dsx: Avoid potential array overflow in st_lsm6dsx_set_odr() (git-fixes). - Input: iforce - fix control-message timeout (git-fixes). - iommu: Check if group is NULL before remove device (git-fixes). - iommu/amd: Relocate GAMSup check to early_enable_iommus (git-fixes). - iommu/amd: Remove iommu_init_ga() (git-fixes). - iommu/mediatek: Fix out-of-range warning with clang (git-fixes). - iommu/vt-d: Consolidate duplicate cache invaliation code (git-fixes). - iommu/vt-d: Fix incomplete cache flush in intel_pasid_tear_down_entry() (git-fixes). - iommu/vt-d: Update the virtual command related registers (git-fixes). - ipmi: Disable some operations during a panic (git-fixes). - kABI: dm: fix deadlock when swapping to encrypted device (bsc#1186332). - kabi: hide changes to struct uv_info (git-fixes). - kernel-obs-build: include the preferred kernel parameters Currently the Open Build Service hardcodes the kernel boot parameters globally. Recently functionality was added to control the parameters by the kernel-obs-build package, so make use of that. parameters here will overwrite what is used by OBS otherwise. - kernel-obs-build: inform build service about virtio-serial Inform the build worker code that this kernel supports virtio-serial, which improves performance and relability of logging. - kernel-obs-build: remove duplicated/unused parameters lbs=0 - this parameters is just giving "unused parameter" and it looks like I can not find any version that implemented this. rd.driver.pre=binfmt_misc is not needed when setup_obs is used, it alread loads the kernel module. quiet and panic=1 will now be also always added by OBS, so we do not have to set it here anymore. - kernel-source.spec: install-kernel-tools also required on 15.4 - lib/xz: Avoid overlapping memcpy() with invalid input with in-place decompression (git-fixes). - lib/xz: Validate the value before assigning it to an enum variable (git-fixes). - libata: fix checking of DMA state (git-fixes). - linux/parser.h: add include guards (bsc#1192606). - lpfc: Reintroduce old IRQ probe logic (bsc#1183897). - md: add md_submit_discard_bio() for submitting discard bio (bsc#1192320). - md: fix a lock order reversal in md_alloc (git-fixes). - md/raid10: extend r10bio devs to raid disks (bsc#1192320). - md/raid10: improve discard request for far layout (bsc#1192320). - md/raid10: improve raid10 discard request (bsc#1192320). - md/raid10: initialize r10_bio->read_slot before use (bsc#1192320). - md/raid10: pull the code that wait for blocked dev into one function (bsc#1192320). - md/raid10: Remove unnecessary rcu_dereference in raid10_handle_discard (bsc#1192320). - mdio: aspeed: Fix "Link is Down" issue (bsc#1176447). - media: imx: set a media_device bus_info string (git-fixes). - media: ipu3-imgu: imgu_fmt: Handle properly try (git-fixes). - media: ipu3-imgu: VIDIOC_QUERYCAP: Fix bus_info (git-fixes). - media: ir-kbd-i2c: improve responsiveness of hauppauge zilog receivers (git-fixes). - media: mceusb: return without resubmitting URB in case of -EPROTO error (git-fixes). - media: mt9p031: Fix corrupted frame after restarting stream (git-fixes). - media: netup_unidvb: handle interrupt properly according to the firmware (git-fixes). - media: rcar-csi2: Add checking to rcsi2_start_receiver() (git-fixes). - media: s5p-mfc: fix possible null-pointer dereference in s5p_mfc_probe() (git-fixes). - media: stm32: Potential NULL pointer dereference in dcmi_irq_thread() (git-fixes). - media: usb: dvd-usb: fix uninit-value bug in dibusb_read_eeprom_byte() (git-fixes). - media: uvcvideo: Return -EIO for control errors (git-fixes). - media: uvcvideo: Set capability in s_param (git-fixes). - media: uvcvideo: Set unique vdev name based in type (git-fixes). - memstick: r592: Fix a UAF bug when removing the driver (git-fixes). - MM: reclaim mustn't enter FS for swap-over-NFS (bsc#1191876). - mmc: dw_mmc: Dont wait for DRTO on Write RSP error (git-fixes). - mmc: winbond: do not build on M68K (git-fixes). - mtd: core: do not remove debugfs directory if device is in use (git-fixes). - mwifiex: Properly initialize private structure on interface type changes (git-fixes). - mwifiex: Read a PCI register after writing the TX ring write pointer (git-fixes). - mwifiex: Run SET_BSS_MODE when changing from P2P to STATION vif-type (git-fixes). - mwl8k: Fix use-after-free in mwl8k_fw_state_machine() (git-fixes). - net: asix: fix uninit value bugs (git-fixes). - net: bnx2x: fix variable dereferenced before check (git-fixes). - net: bridge: fix under estimation in br_get_linkxstats_size() (bsc#1176447). - net: cdc_ncm: Allow for dwNtbOutMaxSize to be unset or zero (git-fixes). - net: delete redundant function declaration (git-fixes). - net: hns3: change affinity_mask to numa node range (bsc#1154353). - net: hns3: fix misuse vf id and vport id in some logs (bsc#1154353). - net: hns3: remove check VF uc mac exist when set by PF (bsc#1154353). - net: hso: fix control-request directions (git-fixes). - net: hso: fix muxed tty registration (git-fixes). - net: linkwatch: fix failure to restore device state across suspend/resume (bsc#1192511). - net: mana: Allow setting the number of queues while the NIC is down (jsc#SLE-18779, bsc#1185726). - net: mana: Fix memory leak in mana_hwc_create_wq (jsc#SLE-18779, bsc#1185726). - net: mana: Fix spelling mistake "calledd" -> "called" (jsc#SLE-18779, bsc#1185726). - net: mana: Fix the netdev_err()'s vPort argument in mana_init_port() (jsc#SLE-18779, bsc#1185726). - net: mana: Improve the HWC error handling (jsc#SLE-18779, bsc#1185726). - net: mana: Support hibernation and kexec (jsc#SLE-18779, bsc#1185726). - net: mana: Use kcalloc() instead of kzalloc() (jsc#SLE-18779, bsc#1185726). - net: pegasus: fix uninit-value in get_interrupt_interval (git-fixes). - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (git-fixes). - net: stmmac: add EHL 2.5Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL PSE0 PSE1 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL RGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL SGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add TGL SGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: create dwmac-intel.c to contain all Intel platform (bsc#1192691). - net: stmmac: pci: Add HAPS support using GMAC5 (bsc#1192691). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (git-fixes). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (git-fixes). - net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (git-fixes). - net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() (git-fixes). - net/mlx5: E-Switch, return error if encap isn't supported (jsc#SLE-15172). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (git-fixes). - net/sched: sch_ets: do not peek at classes beyond 'nbands' (bsc#1176774). - netfilter: ctnetlink: do not erase error code with EINVAL (bsc#1176447). - netfilter: ctnetlink: fix filtering with CTA_TUPLE_REPLY (bsc#1176447). - netfilter: flowtable: fix IPv6 tunnel addr match (bsc#1176447). - NFC: add NCI_UNREG flag to eliminate the race (git-fixes). - NFC: pn533: Fix double free when pn533_fill_fragment_skbs() fails (git-fixes). - NFC: reorder the logic in nfc_{un,}register_device (git-fixes). - NFC: reorganize the functions in nci_request (git-fixes). - nfp: checking parameter process for rx-usecs/tx-usecs is invalid (git-fixes). - nfp: Fix memory leak in nfp_cpp_area_cache_add() (git-fixes). - NFS: Do not set NFS_INO_DATA_INVAL_DEFER and NFS_INO_INVALID_DATA (git-fixes). - NFS: do not take i_rwsem for swap IO (bsc#1191876). - NFS: Fix deadlocks in nfs_scan_commit_list() (git-fixes). - NFS: Fix up commit deadlocks (git-fixes). - NFS: move generic_write_checks() call from nfs_file_direct_write() to nfs_file_write() (bsc#1191876). - nfsd: do not alloc under spinlock in rpc_parse_scope_id (git-fixes). - nfsd: fix error handling of register_pernet_subsys() in init_nfsd() (git-fixes). - nfsd4: Handle the NFSv4 READDIR 'dircount' hint being zero (git-fixes). - NFSv4: Fix a regression in nfs_set_open_stateid_locked() (git-fixes). - nvme-multipath: Skip not ready namespaces when revalidating paths (bsc#1191793 bsc#1192507 bsc#1192969). - nvme-pci: add NO APST quirk for Kioxia device (git-fixes). - objtool: Support Clang non-section symbols in ORC generation (bsc#1169514). - PCI: Add PCI_EXP_DEVCTL_PAYLOAD_* macros (git-fixes). - PCI: Mark Atheros QCA6174 to avoid bus reset (git-fixes). - PCI/MSI: Deal with devices lying about their MSI mask capability (git-fixes). - perf: Correctly handle failed perf_get_aux_event() (git-fixes). - perf/x86/intel: Fix unchecked MSR access error caused by VLBR_EVENT (git-fixes). - perf/x86/intel/uncore: Fix Intel ICX IIO event constraints (git-fixes). - perf/x86/intel/uncore: Fix M2M event umask for Ice Lake server (git-fixes). - perf/x86/intel/uncore: Fix the scale of the IMC free-running events (git-fixes). - perf/x86/intel/uncore: Support extra IMC channel on Ice Lake server (git-fixes). - perf/x86/vlbr: Add c->flags to vlbr event constraints (git-fixes). - platform/x86: hp_accel: Fix an error handling path in 'lis3lv02d_probe()' (git-fixes). - platform/x86: wmi: do not fail if disabling fails (git-fixes). - PM: hibernate: Get block device exclusively in swsusp_check() (git-fixes). - PM: hibernate: use correct mode for swsusp_close() (git-fixes). - pnfs/flexfiles: Fix misplaced barrier in nfs4_ff_layout_prepare_ds (git-fixes). - powerpc: fix unbalanced node refcount in check_kvm_guest() (jsc#SLE-15869 jsc#SLE-16321 git-fixes). - powerpc/iommu: Report the correct most efficient DMA mask for PCI devices (git-fixes). - powerpc/paravirt: correct preempt debug splat in vcpu_is_preempted() (bsc#1181148 ltc#190702 git-fixes). - powerpc/paravirt: vcpu_is_preempted() commentary (bsc#1181148 ltc#190702 git-fixes). - powerpc/perf: Fix cycles/instructions as PM_CYC/PM_INST_CMPL in power10 (jsc#SLE-13513 git-fixes). - powerpc/pseries: Move some PAPR paravirt functions to their own file (bsc#1181148 ltc#190702 git-fixes). - powerpc/watchdog: Avoid holding wd_smp_lock over printk and smp_send_nmi_ipi (bsc#1187541 ltc#192129). - powerpc/watchdog: Fix missed watchdog reset due to memory ordering race (bsc#1187541 ltc#192129). - powerpc/watchdog: Fix wd_smp_last_reset_tb reporting (bsc#1187541 ltc#192129). - powerpc/watchdog: read TB close to where it is used (bsc#1187541 ltc#192129). - powerpc/watchdog: tighten non-atomic read-modify-write access (bsc#1187541 ltc#192129). - printk: Remove printk.h inclusion in percpu.h (bsc#1192987). - qede: validate non LSO skb length (git-fixes). - r8152: limit the RX buffer size of RTL8153A for USB 2.0 (git-fixes). - r8169: Add device 10ec:8162 to driver r8169 (git-fixes). - RDMA/bnxt_re: Update statistics counter name (jsc#SLE-16649). - recordmcount.pl: fix typo in s390 mcount regex (bsc#1192267). - recordmcount.pl: look for jgnop instruction as well as bcrl on s390 (bsc#1192267). - reset: socfpga: add empty driver allowing consumers to probe (git-fixes). - ring-buffer: Protect ring_buffer_reset() from reentrancy (bsc#1179960). - rpm/*.spec.in: use buildroot macro instead of env variable The RPM_BUILD_ROOT variable is considered deprecated over a buildroot macro. future proof the spec files. - rpm/kernel-binary.spec.in: do not strip vmlinux again (bsc#1193306) After usrmerge, vmlinux file is not named vmlinux-lt;version>, but simply vmlinux. And this is not reflected in STRIP_KEEP_SYMTAB we set. So fix this by removing the dash... - rpm/kernel-obs-build.spec.in: move to zstd for the initrd Newer distros have capability to decompress zstd, which provides a 2-5% better compression ratio at very similar cpu overhead. Plus this tests the zstd codepaths now as well. - rt2x00: do not mark device gone on EPROTO errors during start (git-fixes). - rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() (bsc#1154353 bnc#1151927 5.3.9). - s390: mm: Fix secure storage access exception handling (git-fixes). - s390/bpf: Fix branch shortening during codegen pass (bsc#1193993). - s390/uv: fully validate the VMA before calling follow_page() (git-fixes). - scsi: iscsi: Adjust iface sysfs attr detection (git-fixes). - scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO (bsc#1189126). - scsi: mpi3mr: Fix duplicate device entries when scanning through sysfs (git-fixes). - scsi: mpt3sas: Fix kernel panic during drive powercycle test (git-fixes). - scsi: mpt3sas: Fix system going into read-only mode (git-fixes). - scsi: pm80xx: Do not call scsi_remove_host() in pm8001_alloc() (git-fixes). - scsi: qla2xxx: Fix gnl list corruption (git-fixes). - scsi: qla2xxx: Relogin during fabric disturbance (git-fixes). - scsi: qla2xxx: Turn off target reset during issue_lip (git-fixes). - serial: 8250_pci: Fix ACCES entries in pci_serial_quirks array (git-fixes). - serial: 8250_pci: rewrite pericom_do_set_divisor() (git-fixes). - serial: 8250: Fix RTS modem control while in rs485 mode (git-fixes). - serial: core: fix transmit-buffer reset and memleak (git-fixes). - smb2: clarify rc initialization in smb2_reconnect (bsc#1192606). - smb2: fix use-after-free in smb2_ioctl_query_info() (bsc#1192606). - smb3: add additional null check in SMB2_ioctl (bsc#1192606). - smb3: add additional null check in SMB2_open (bsc#1192606). - smb3: add additional null check in SMB2_tcon (bsc#1192606). - smb3: add additional null check in SMB311_posix_mkdir (bsc#1192606). - smb3: Add debug message for new file creation with idsfromsid mount option (bsc#1192606). - smb3: add debug messages for closing unmatched open (bsc#1164565). - smb3: add defines for new crypto algorithms (bsc#1192606). - smb3: Add defines for new information level, FileIdInformation (bsc#1164565). - smb3: add defines for new signing negotiate context (bsc#1192606). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: add dynamic trace points for socket connection (bsc#1192606). - smb3: add dynamic tracepoints for flush and close (bsc#1164565). - smb3: add indatalen that can be a non-zero value to calculation of credit charge in smb2 ioctl (bsc#1192606). - smb3: add missing flag definitions (bsc#1164565). - smb3: Add missing reparse tags (bsc#1164565). - smb3: add missing worker function for SMB3 change notify (bsc#1164565). - smb3: add mount option to allow forced caching of read only share (bsc#1164565). - smb3: add mount option to allow RW caching of share accessed by only 1 client (bsc#1164565). - smb3: Add new compression flags (bsc#1192606). - smb3: Add new info level for query directory (bsc#1192606). - smb3: add new module load parm enable_gcm_256 (bsc#1192606). - smb3: add new module load parm require_gcm_256 (bsc#1192606). - smb3: Add new parm "nodelete" (bsc#1192606). - smb3: add one more dynamic tracepoint missing from strict fsync path (bsc#1164565). - smb3: add rasize mount parameter to improve readahead performance (bsc#1192606). - smb3: add some missing definitions from MS-FSCC (bsc#1192606). - smb3: add some more descriptive messages about share when mounting cache=ro (bsc#1164565). - smb3: Add support for getting and setting SACLs (bsc#1192606). - smb3: Add support for lookup with posix extensions query info (bsc#1192606). - smb3: Add support for negotiating signing algorithm (bsc#1192606). - smb3: Add support for query info using posix extensions (level 100) (bsc#1192606). - smb3: add support for recognizing WSL reparse tags (bsc#1192606). - smb3: Add support for SMB311 query info (non-compounded) (bsc#1192606). - smb3: add support for stat of WSL reparse points for special file types (bsc#1192606). - smb3: add support for using info level for posix extensions query (bsc#1192606). - smb3: Add tracepoints for new compound posix query info (bsc#1192606). - smb3: Additional compression structures (bsc#1192606). - smb3: allow decryption keys to be dumped by admin for debugging (bsc#1164565). - smb3: allow disabling requesting leases (bnc#1151927 5.3.4). - smb3: allow dumping GCM256 keys to improve debugging of encrypted shares (bsc#1192606). - smb3: allow dumping keys for multiuser mounts (bsc#1192606). - smb3: allow parallelizing decryption of reads (bsc#1164565). - smb3: allow skipping signature verification for perf sensitive configurations (bsc#1164565). - smb3: allow uid and gid owners to be set on create with idsfromsid mount option (bsc#1192606). - smb3: avoid confusing warning message on mount to Azure (bsc#1192606). - smb3: Avoid Mid pending list corruption (bsc#1192606). - smb3: Backup intent flag missing from some more ops (bsc#1164565). - smb3: Call cifs reconnect from demultiplex thread (bsc#1192606). - smb3: change noisy error message to FYI (bsc#1192606). - smb3: cleanup some recent endian errors spotted by updated sparse (bsc#1164565). - smb3: correct server pointer dereferencing check to be more consistent (bsc#1192606). - smb3: correct smb3 ACL security descriptor (bsc#1192606). - smb3: default to minimum of two channels when multichannel specified (bsc#1192606). - smb3: display max smb3 requests in flight at any one time (bsc#1164565). - smb3: do not attempt multichannel to server which does not support it (bsc#1192606). - smb3: do not error on fsync when readonly (bsc#1192606). - smb3: do not fail if no encryption required but server does not support it (bsc#1192606). - smb3: do not log warning message if server does not populate salt (bsc#1192606). - smb3: do not setup the fscache_super_cookie until fsinfo initialized (bsc#1192606). - smb3: do not try to cache root directory if dir leases not supported (bsc#1192606). - smb3: dump in_send and num_waiters stats counters by default (bsc#1164565). - smb3: enable negotiating stronger encryption by default (bsc#1192606). - smb3: enable offload of decryption of large reads via mount option (bsc#1164565). - smb3: enable swap on SMB3 mounts (bsc#1192606). - smb3: extend fscache mount volume coherency check (bsc#1192606). - smb3: fix access denied on change notify request to some servers (bsc#1192606). - smb3: fix cached file size problems in duplicate extents (reflink) (bsc#1192606). - smb3: Fix crash in SMB2_open_init due to uninitialized field in compounding path (bsc#1164565). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smb3: fix default permissions on new files when mounting with modefromsid (bsc#1164565). - smb3: Fix ids returned in POSIX query dir (bsc#1192606). - smb3: fix incorrect number of credits when ioctl MaxOutputResponse > 64K (bsc#1192606). - smb3: fix leak in "open on server" perf counter (bnc#1151927 5.3.4). - smb3: Fix mkdir when idsfromsid configured on mount (bsc#1192606). - smb3: fix mode passed in on create for modetosid mount option (bsc#1164565). - smb3: fix mount failure to some servers when compression enabled (bsc#1192606). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: fix performance regression with setting mtime (bsc#1164565). - smb3: Fix persistent handles reconnect (bnc#1151927 5.3.11). - smb3: fix posix extensions mount option (bsc#1192606). - smb3: fix possible access to uninitialized pointer to DACL (bsc#1192606). - smb3: fix potential null dereference in decrypt offload (bsc#1164565). - smb3: fix problem with null cifs super block with previous patch (bsc#1164565). - smb3: fix readpage for large swap cache (bsc#1192606). - smb3: fix refcount underflow warning on unmount when no directory leases (bsc#1164565). - smb3: Fix regression in time handling (bsc#1164565). - smb3: fix signing verification of large reads (bsc#1154355). - smb3: fix stat when special device file and mounted with modefromsid (bsc#1192606). - smb3: fix typo in compression flag (bsc#1192606). - smb3: fix typo in header file (bsc#1192606). - smb3: fix typo in mount options displayed in /proc/mounts (bsc#1192606). - smb3: fix uninitialized value for port in witness protocol move (bsc#1192606). - smb3: fix unmount hang in open_shroot (bnc#1151927 5.3.4). - smb3: fix unneeded error message on change notify (bsc#1192606). - smb3: Handle error case during offload read path (bsc#1192606). - smb3: Honor 'handletimeout' flag for multiuser mounts (bsc#1176558). - smb3: Honor 'posix' flag for multiuser mounts (bsc#1176559). - smb3: Honor 'seal' flag for multiuser mounts (bsc#1176545). - smb3: Honor lease disabling for multiuser mounts (git-fixes). - smb3: Honor persistent/resilient handle flags for multiuser mounts (bsc#1176546). - smb3: if max_channels set to more than one channel request multichannel (bsc#1192606). - smb3: improve check for when we send the security descriptor context on create (bsc#1164565). - smb3: improve handling of share deleted (and share recreated) (bsc#1154355). - smb3: incorrect file id in requests compounded with open (bsc#1192606). - smb3: Incorrect size for netname negotiate context (bsc#1154355). - smb3: limit noisy error (bsc#1192606). - smb3: log warning if CSC policy conflicts with cache mount option (bsc#1164565). - smb3: Minor cleanup of protocol definitions (bsc#1192606). - smb3: minor update to compression header definitions (bsc#1192606). - smb3: missing ACL related flags (bsc#1164565). - smb3: negotiate current dialect (SMB3.1.1) when version 3 or greater requested (bsc#1192606). - smb3: only offload decryption of read responses if multiple requests (bsc#1164565). - smb3: pass mode bits into create calls (bsc#1164565). - smb3: prevent races updating CurrentMid (bsc#1192606). - smb3: print warning if server does not support requested encryption type (bsc#1192606). - smb3: print warning once if posix context returned on open (bsc#1164565). - smb3: query attributes on file close (bsc#1164565). - smb3: rc uninitialized in one fallocate path (bsc#1192606). - smb3: remind users that witness protocol is experimental (bsc#1192606). - smb3: remove confusing dmesg when mounting with encryption ("seal") (bsc#1164565). - smb3: remove confusing mount warning when no SPNEGO info on negprot rsp (bsc#1192606). - smb3: remove dead code for non compounded posix query info (bsc#1192606). - smb3: remove noisy debug message and minor cleanup (bsc#1164565). - smb3: remove overly noisy debug line in signing errors (bsc#1192606). - smb3: remove static checker warning (bsc#1192606). - smb3: remove trivial dfs compile warning (bsc#1192606, jsc#SLE-20042). - smb3: remove two unused variables (bsc#1192606). - smb3: remove unused flag passed into close functions (bsc#1164565). - smb3: rename nonces used for GCM and CCM encryption (bsc#1192606). - smb3: Resolve data corruption of TCP server info fields (bsc#1192606). - smb3: set COMPOUND_FID to FileID field of subsequent compound request (bsc#1192606). - smb3: set gcm256 when requested (bsc#1192606). - smb3: smbdirect support can be configured by default (bsc#1192606). - smb3: update comments clarifying SPNEGO info in negprot response (bsc#1192606). - smb3: update protocol header definitions based to include new flags (bsc#1192606). - smb3: update structures for new compression protocol definitions (bsc#1192606). - smb3: use SMB2_SIGNATURE_SIZE define (bsc#1192606). - smb3: warn on confusing error scenario with sec=krb5 (bsc#1176548). - smb3: when mounting with multichannel include it in requested capabilities (bsc#1192606). - smbdirect: missing rc checks while waiting for rdma events (bsc#1192606). - soc/tegra: Fix an error handling path in tegra_powergate_power_up() (git-fixes). - soc/tegra: pmc: Fix imbalanced clock disabling in error code path (git-fixes). - spi: bcm-qspi: Fix missing clk_disable_unprepare() on error in bcm_qspi_probe() (git-fixes). - spi: spl022: fix Microwire full duplex mode (git-fixes). - SUNRPC: improve 'swap' handling: scheduling and PF_MEMALLOC (bsc#1191876). - SUNRPC: remove scheduling boost for "SWAPPER" tasks (bsc#1191876). - SUNRPC/auth: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC/call_alloc: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC/xprt: async tasks mustn't block waiting for memory (bsc#1191876). - supported.conf: add pwm-rockchip References: jsc#SLE-22615 - swiotlb: avoid double free (git-fixes). - swiotlb: Fix the type of index (git-fixes). - TCON Reconnect during STATUS_NETWORK_NAME_DELETED (bsc#1192606). - tlb: mmu_gather: add tlb_flush_*_range APIs - tracing: Add length protection to histogram string copies (git-fixes). - tracing: Change STR_VAR_MAX_LEN (git-fixes). - tracing: Check pid filtering when creating events (git-fixes). - tracing: Fix pid filtering when triggers are attached (git-fixes). - tracing: use %ps format string to print symbols (git-fixes). - tracing/histogram: Do not copy the fixed-size char array field over the field size (git-fixes). - tty: hvc: replace BUG_ON() with negative return value (git-fixes). - tty: serial: msm_serial: Deactivate RX DMA for polling support (git-fixes). - tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc (git-fixes). - usb-storage: Add compatibility quirk flags for iODD 2531/2541 (git-fixes). - usb: chipidea: ci_hdrc_imx: fix potential error pointer dereference in probe (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for elapsed frames (git-fixes). - usb: dwc2: hcd_queue: Fix use of floating point literal (git-fixes). - usb: host: ohci-tmio: check return value after calling platform_get_resource() (git-fixes). - usb: musb: tusb6010: check return value after calling platform_get_resource() (git-fixes). - usb: serial: option: add Fibocom FM101-GL variants (git-fixes). - usb: serial: option: add Telit LE910S1 0x9200 composition (git-fixes). - usb: typec: fusb302: Fix masking of comparator and bc_lvl interrupts (git-fixes). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (git-fixes). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (git-fixes). - usb: xhci: Enable runtime-pm by default on AMD Yellow Carp platform (git-fixes). - vfs: do not parse forbidden flags (bsc#1192606). - x86/amd_nb: Add AMD family 19h model 50h PCI ids (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - x86/cpu: Fix migration safety with X86_BUG_NULL_SEL (bsc#1152489). - x86/efi: Restore Firmware IDT before calling ExitBootServices() (git-fixes). - x86/entry: Add a fence for kernel entry SWAPGS in paranoid_entry() (bsc#1178134). - x86/mpx: Disable MPX for 32-bit userland (bsc#1193139). - x86/pkey: Fix undefined behaviour with PKRU_WD_BIT (bsc#1152489). - x86/pvh: add prototype for xen_pvh_init() (git-fixes). - x86/sev: Allow #VC exceptions on the VC2 stack (git-fixes). - x86/sev: Fix SEV-ES INS/OUTS instructions for word, dword, and qword (bsc#1178134). - x86/sev: Fix stack type check in vc_switch_off_ist() (git-fixes). - x86/xen: Add xenpv_restore_regs_and_return_to_usermode() (bsc#1152489). - x86/Xen: swap NX determination and GDT setup on BSP (git-fixes). - xen: sync include/xen/interface/io/ring.h with Xen's newest version (git-fixes). - xen/blkfront: do not take local copy of a request from the ring page (git-fixes). - xen/blkfront: do not trust the backend response data blindly (git-fixes). - xen/blkfront: read response from backend only once (git-fixes). - xen/netfront: disentangle tx_skb_freelist (git-fixes). - xen/netfront: do not read data from request on the ring page (git-fixes). - xen/netfront: do not trust the backend response data blindly (git-fixes). - xen/netfront: read response from backend only once (git-fixes). - xen/privcmd: fix error handling in mmap-resource processing (git-fixes). - xen/pvh: add missing prototype to header (git-fixes). - xen/x86: fix PV trap handling on secondary processors (git-fixes). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (git-fixes). - xhci: Fix USB 3.1 enumeration issues by increasing roothub power-on-good delay (git-fixes). - zram: fix return value on writeback_store (git-fixes). - zram: off by one in read_block_state() (git-fixes). cluster-md-kmp-default-5.3.18-59.40.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True dlm-kmp-default-5.3.18-59.40.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True gfs2-kmp-default-5.3.18-59.40.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True kernel-debug-5.3.18-59.40.1.nosrc.rpm True kernel-debug-5.3.18-59.40.1.x86_64.rpm True kernel-debug-devel-5.3.18-59.40.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-59.40.1.x86_64.rpm True kernel-default-5.3.18-59.40.1.nosrc.rpm True kernel-default-5.3.18-59.40.1.x86_64.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.src.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-59.40.1.18.25.1.x86_64.rpm True kernel-default-devel-5.3.18-59.40.1.x86_64.rpm True kernel-default-extra-5.3.18-59.40.1.x86_64.rpm True kernel-default-livepatch-5.3.18-59.40.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-59.40.1.x86_64.rpm True kernel-default-optional-5.3.18-59.40.1.x86_64.rpm True kernel-devel-5.3.18-59.40.1.noarch.rpm True kernel-docs-5.3.18-59.40.1.noarch.rpm True kernel-docs-5.3.18-59.40.1.nosrc.rpm True kernel-docs-html-5.3.18-59.40.1.noarch.rpm True kernel-kvmsmall-5.3.18-59.40.1.nosrc.rpm True kernel-kvmsmall-5.3.18-59.40.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-59.40.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.40.1.x86_64.rpm True kernel-macros-5.3.18-59.40.1.noarch.rpm True kernel-obs-build-5.3.18-59.40.1.src.rpm True kernel-obs-build-5.3.18-59.40.1.x86_64.rpm True kernel-obs-qa-5.3.18-59.40.1.src.rpm True kernel-obs-qa-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-5.3.18-59.40.1.nosrc.rpm True kernel-preempt-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-devel-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-extra-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.40.1.x86_64.rpm True kernel-preempt-optional-5.3.18-59.40.1.x86_64.rpm True kernel-source-5.3.18-59.40.1.noarch.rpm True kernel-source-5.3.18-59.40.1.src.rpm True kernel-source-vanilla-5.3.18-59.40.1.noarch.rpm True kernel-syms-5.3.18-59.40.1.src.rpm True kernel-syms-5.3.18-59.40.1.x86_64.rpm True kselftests-kmp-default-5.3.18-59.40.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-59.40.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-59.40.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-59.40.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-59.40.1.s390x.rpm True dlm-kmp-default-5.3.18-59.40.1.s390x.rpm True gfs2-kmp-default-5.3.18-59.40.1.s390x.rpm True kernel-default-5.3.18-59.40.1.s390x.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-59.40.1.18.25.1.s390x.rpm True kernel-default-devel-5.3.18-59.40.1.s390x.rpm True kernel-default-extra-5.3.18-59.40.1.s390x.rpm True kernel-default-livepatch-5.3.18-59.40.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-59.40.1.s390x.rpm True kernel-default-optional-5.3.18-59.40.1.s390x.rpm True kernel-obs-build-5.3.18-59.40.1.s390x.rpm True kernel-obs-qa-5.3.18-59.40.1.s390x.rpm True kernel-syms-5.3.18-59.40.1.s390x.rpm True kernel-zfcpdump-5.3.18-59.40.1.nosrc.rpm True kernel-zfcpdump-5.3.18-59.40.1.s390x.rpm True kselftests-kmp-default-5.3.18-59.40.1.s390x.rpm True ocfs2-kmp-default-5.3.18-59.40.1.s390x.rpm True reiserfs-kmp-default-5.3.18-59.40.1.s390x.rpm True cluster-md-kmp-default-5.3.18-59.40.1.ppc64le.rpm True dlm-kmp-default-5.3.18-59.40.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-59.40.1.ppc64le.rpm True kernel-debug-5.3.18-59.40.1.ppc64le.rpm True kernel-debug-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-default-5.3.18-59.40.1.ppc64le.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-59.40.1.18.25.1.ppc64le.rpm True kernel-default-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-default-extra-5.3.18-59.40.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-59.40.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-default-optional-5.3.18-59.40.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-59.40.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-59.40.1.ppc64le.rpm True kernel-obs-build-5.3.18-59.40.1.ppc64le.rpm True kernel-obs-qa-5.3.18-59.40.1.ppc64le.rpm True kernel-syms-5.3.18-59.40.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-59.40.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-59.40.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-59.40.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-59.40.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True dlm-kmp-default-5.3.18-59.40.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True dtb-aarch64-5.3.18-59.40.1.src.rpm True dtb-al-5.3.18-59.40.1.aarch64.rpm True dtb-allwinner-5.3.18-59.40.1.aarch64.rpm True dtb-altera-5.3.18-59.40.1.aarch64.rpm True dtb-amd-5.3.18-59.40.1.aarch64.rpm True dtb-amlogic-5.3.18-59.40.1.aarch64.rpm True dtb-apm-5.3.18-59.40.1.aarch64.rpm True dtb-arm-5.3.18-59.40.1.aarch64.rpm True dtb-broadcom-5.3.18-59.40.1.aarch64.rpm True dtb-cavium-5.3.18-59.40.1.aarch64.rpm True dtb-exynos-5.3.18-59.40.1.aarch64.rpm True dtb-freescale-5.3.18-59.40.1.aarch64.rpm True dtb-hisilicon-5.3.18-59.40.1.aarch64.rpm True dtb-lg-5.3.18-59.40.1.aarch64.rpm True dtb-marvell-5.3.18-59.40.1.aarch64.rpm True dtb-mediatek-5.3.18-59.40.1.aarch64.rpm True dtb-nvidia-5.3.18-59.40.1.aarch64.rpm True dtb-qcom-5.3.18-59.40.1.aarch64.rpm True dtb-renesas-5.3.18-59.40.1.aarch64.rpm True dtb-rockchip-5.3.18-59.40.1.aarch64.rpm True dtb-socionext-5.3.18-59.40.1.aarch64.rpm True dtb-sprd-5.3.18-59.40.1.aarch64.rpm True dtb-xilinx-5.3.18-59.40.1.aarch64.rpm True dtb-zte-5.3.18-59.40.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True gfs2-kmp-default-5.3.18-59.40.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-5.3.18-59.40.1.nosrc.rpm True kernel-64kb-devel-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-extra-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-59.40.1.aarch64.rpm True kernel-64kb-optional-5.3.18-59.40.1.aarch64.rpm True kernel-default-5.3.18-59.40.1.aarch64.rpm True kernel-default-base-5.3.18-59.40.1.18.25.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-59.40.1.18.25.1.aarch64.rpm True kernel-default-devel-5.3.18-59.40.1.aarch64.rpm True kernel-default-extra-5.3.18-59.40.1.aarch64.rpm True kernel-default-livepatch-5.3.18-59.40.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-59.40.1.aarch64.rpm True kernel-default-optional-5.3.18-59.40.1.aarch64.rpm True kernel-obs-build-5.3.18-59.40.1.aarch64.rpm True kernel-obs-qa-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-devel-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-extra-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-59.40.1.aarch64.rpm True kernel-preempt-optional-5.3.18-59.40.1.aarch64.rpm True kernel-syms-5.3.18-59.40.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True kselftests-kmp-default-5.3.18-59.40.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-59.40.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-59.40.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-59.40.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-59.40.1.aarch64.rpm True openSUSE-SLE-15.3-2022-56 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2021-45485: Fixed an information leak because of certain use of a hash table which use IPv6 source addresses. (bsc#1194094) - CVE-2021-45486: Fixed an information leak because the hash table is very small in net/ipv4/route.c. (bnc#1194087). - CVE-2021-4001: Fixed a race condition when the EBPF map is frozen. (bsc#1192990) - CVE-2021-28715: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by do not queueing unlimited number of packages. (bsc#1193442) - CVE-2021-28714: Fixed an issue where a guest could force Linux netback driver to hog large amounts of kernel memory by fixing rx queue stall detection. (bsc#1193442) - CVE-2021-28713: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening hvc_xen against event channel storms. (bsc#1193440) - CVE-2021-28712: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening netfront against event channel storms. (bsc#1193440) - CVE-2021-28711: Fixed a rogue backends that could cause DoS of guests via high frequency events by hardening blkfront against event channel storms. (bsc#1193440) - CVE-2020-24504: Fixed an uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers that may have allowed an authenticated user to potentially enable denial of service via local access. (bnc#1182404) - CVE-2021-43975: Fixed a flaw in hw_atl_utils_fw_rpc_wait that could allow an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value. (bnc#1192845) - CVE-2021-43976: Fixed a flaw that could allow an attacker (who can connect a crafted USB device) to cause a denial of service. (bnc#1192847) - CVE-2021-4002: Added a missing TLB flush that could lead to leak or corruption of data in hugetlbfs. (bsc#1192946) - CVE-2020-27820: Fixed a vulnerability where a use-after-frees in nouveau's postclose() handler could happen if removing device. (bnc#1179599) - CVE-2021-33098: Fixed a potential denial of service in Intel(R) Ethernet ixgbe driver due to improper input validation. (bnc#1192877) The following non-security bugs were fixed: - ACPI: battery: Accept charges over the design capacity as full (git-fixes). - ACPI: PMIC: Fix intel_pmic_regs_handler() read accesses (git-fixes). - ACPICA: Avoid evaluating methods too early during system resume (git-fixes). - ALSA: ctxfi: Fix out-of-range access (git-fixes). - ALSA: gus: fix null pointer dereference on pointer block (git-fixes). - ALSA: hda: hdac_ext_stream: fix potential locking issues (git-fixes). - ALSA: hda: hdac_stream: fix potential locking issue in snd_hdac_stream_assign() (git-fixes). - ALSA: hda/realtek: Add a quirk for Acer Spin SP513-54N (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS UX550VE (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PC70HS (git-fixes). - ALSA: hda/realtek: Add quirk for HP EliteBook 840 G7 mute LED (git-fixes). - ALSA: ISA: not for M68K (git-fixes). - ALSA: synth: missing check for possible NULL after the call to kstrdup (git-fixes). - ALSA: timer: Fix use-after-free problem (git-fixes). - ALSA: timer: Unconditionally unlink slave instances, too (git-fixes). - ALSA: usb-audio: Add registration quirk for JBL Quantum 400 (git-fixes). - ARM: 8970/1: decompressor: increase tag size (git-fixes). - ARM: 8974/1: use SPARSMEM_STATIC when SPARSEMEM is enabled (git-fixes) - ARM: 8986/1: hw_breakpoint: Do not invoke overflow handler on uaccess watchpoints (git-fixes) - ARM: 9007/1: l2c: fix prefetch bits init in L2X0_AUX_CTRL using DT (git-fixes) - ARM: 9019/1: kprobes: Avoid fortify_panic() when copying optprobe (git-fixes) - ARM: 9046/1: decompressor: Do not clear SCTLR.nTLSMD for ARMv7+ cores (git-fixes) - ARM: 9064/1: hw_breakpoint: Do not directly check the event's (git-fixes) - ARM: 9071/1: uprobes: Do not hook on thumb instructions (git-fixes) - ARM: 9081/1: fix gcc-10 thumb2-kernel regression (git-fixes) - ARM: 9091/1: Revert "mm: qsd8x50: Fix incorrect permission faults" (git-fixes) - ARM: 9133/1: mm: proc-macros: ensure *_tlb_fns are 4B aligned (git-fixes) - ARM: 9134/1: remove duplicate memcpy() definition (git-fixes) - ARM: 9139/1: kprobes: fix arch_init_kprobes() prototype (git-fixes) - ARM: 9141/1: only warn about XIP address when not compile testing (git-fixes) - ARM: 9155/1: fix early early_iounmap() (git-fixes) - ARM: at91: pm: add missing put_device() call in at91_pm_sram_init() (git-fixes) - ARM: at91: pm: of_node_put() after its usage (git-fixes) - ARM: at91: pm: use proper master clock register offset (git-fixes) - ARM: bcm: Select ARM_TIMER_SP804 for ARCH_BCM_NSP (git-fixes) - ARM: dts sunxi: Relax a bit the CMA pool allocation range (git-fixes) - ARM: dts: am335x-pocketbeagle: Fix mmc0 Write Protect (git-fixes) - ARM: dts: am335x: align ti,pindir-d0-out-d1-in property with dt-shema (git-fixes) - ARM: dts: am437x-idk-evm: Fix incorrect OPP node names (git-fixes) - ARM: dts: am437x-l4: fix typo in can@0 node (git-fixes) - ARM: dts: armada-38x: fix NETA lockup when repeatedly switching speeds (git-fixes) - ARM: dts: armada388-helios4: assign pinctrl to each fan (git-fixes) - ARM: dts: armada388-helios4: assign pinctrl to LEDs (git-fixes) - ARM: dts: aspeed: s2600wf: Fix VGA memory region location (git-fixes) - ARM: dts: aspeed: tiogapass: Remove vuart (git-fixes) - ARM: dts: at91-sama5d27_som1: fix phy address to 7 (git-fixes) - ARM: dts: at91: add pinctrl-{names, 0} for all gpios (git-fixes) - ARM: dts: at91: at91sam9rl: fix ADC triggers (git-fixes) - ARM: dts: at91: sama5d2_ptc_ek: fix sdmmc0 node description (git-fixes) - ARM: dts: at91: sama5d2_ptc_ek: fix vbus pin (git-fixes) - ARM: dts: at91: sama5d2_xplained: classd: pull-down the R1 and R3 lines (git-fixes) - ARM: dts: at91: sama5d2: fix CAN message ram offset and size (git-fixes) - ARM: dts: at91: sama5d2: map securam as device (git-fixes) - ARM: dts: at91: sama5d3_xplained: add pincontrol for USB Host (git-fixes) - ARM: dts: at91: sama5d4_xplained: add pincontrol for USB Host (git-fixes) - ARM: dts: at91: sama5d4: fix pinctrl muxing (git-fixes) - ARM: dts: at91: tse850: the emaclt;->phy interface is rmii (git-fixes) - ARM: dts: bcm: HR2: Fix PPI interrupt types (git-fixes) - ARM: dts: bcm: HR2: Fixed QSPI compatible string (git-fixes) - ARM: dts: bcm2835-rpi-zero-w: Fix led polarity (git-fixes) - ARM: dts: BCM5301X: Add interrupt properties to GPIO node (git-fixes) - ARM: dts: BCM5301X: Fix I2C controller interrupt (git-fixes) - ARM: dts: BCM5301X: Fixed QSPI compatible string (git-fixes) - ARM: dts: colibri-imx6ull: limit SDIO clock to 25MHz (git-fixes) - ARM: dts: Configure missing thermal interrupt for 4430 (git-fixes) - ARM: dts: dra76x: Fix mmc3 max-frequency (git-fixes) - ARM: dts: dra76x: m_can: fix order of clocks (git-fixes) - ARM: dts: dra7xx-clocks: Fixup IPU1 mux clock parent source (git-fixes) - ARM: dts: exynos: correct fuel gauge interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct MUIC interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Arndale (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Artik 5 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Midas (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Monk (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Odroid X/U3 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Odroid XU3 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Rinato (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on SMDK5250 (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Snow (git-fixes) - ARM: dts: exynos: correct PMIC interrupt trigger level on Spring (git-fixes) - ARM: dts: exynos: Fix GPIO polarity for thr GalaxyS3 CM36651 sensor's bus (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid HC1 (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid XU/XU3 (git-fixes) - ARM: dts: exynos: fix PWM LED max brightness on Odroid XU4 (git-fixes) - ARM: dts: exynos: fix roles of USB 3.0 ports on Odroid XU (git-fixes) - ARM: dts: exynos: fix USB 3.0 pins supply being turned off on Odroid (git-fixes) - ARM: dts: exynos: fix USB 3.0 VBUS control and over-current pins on (git-fixes) - ARM: dts: Fix dcan driver probe failed on am437x platform (git-fixes) - ARM: dts: Fix duovero smsc interrupt for suspend (git-fixes) - ARM: dts: gemini-rut1xx: remove duplicate ethernet node (git-fixes) - ARM: dts: gose: Fix ports node name for adv7180 (git-fixes) - ARM: dts: gose: Fix ports node name for adv7612 (git-fixes) - ARM: dts: imx: emcon-avari: Fix nxp,pca8574 #gpio-cells (git-fixes) - ARM: dts: imx: Fix USB host power regulator polarity on M53Menlo (git-fixes) - ARM: dts: imx: Swap M53Menlo pinctrl_power_button/pinctrl_power_out (git-fixes) - ARM: dts: imx27-phytec-phycard-s-rdk: Fix the I2C1 pinctrl entries (git-fixes) - ARM: dts: imx50-evk: Fix the chip select 1 IOMUX (git-fixes) - ARM: dts: imx6: pbab01: Set vmmc supply for both SD interfaces (git-fixes) - ARM: dts: imx6: phycore-som: fix arm and soc minimum voltage (git-fixes) - ARM: dts: imx6: phycore-som: fix emmc supply (git-fixes) - ARM: dts: imx6: Use gpc for FEC interrupt controller to fix wake on LAN (git-fixes) - ARM: dts: imx6dl-colibri-eval-v3: fix sram compatible properties (git-fixes). - ARM: dts: imx6dl-yapp4: Fix RGMII connection to QCA8334 switch (git-fixes) - ARM: dts: imx6dl-yapp4: Fix Ursa board Ethernet connection (git-fixes) - ARM: dts: imx6q-dhcom: Add gpios pinctrl for i2c bus recovery (git-fixes) - ARM: dts: imx6q-dhcom: Add PU,VDD1P1,VDD2P5 regulators (git-fixes) - ARM: dts: imx6q-dhcom: Fix ethernet plugin detection problems (git-fixes) - ARM: dts: imx6q-dhcom: Fix ethernet reset time properties (git-fixes) - ARM: dts: imx6qdl-gw52xx: fix duplicate regulator naming (git-fixes) - ARM: dts: imx6qdl-gw551x: Do not use 'simple-audio-card,dai-link' (git-fixes) - ARM: dts: imx6qdl-gw551x: fix audio SSI (git-fixes) - ARM: dts: imx6qdl-icore: Fix OTG_ID pin and sdcard detect (git-fixes) - ARM: dts: imx6qdl-kontron-samx6i: fix i2c_lcd/cam default status (git-fixes) - ARM: dts: imx6qdl-kontron-samx6i: fix I2C_PM scl pin (git-fixes) - ARM: dts: imx6qdl-sr-som: Increase the PHY reset duration to 10ms (git-fixes) - ARM: dts: imx6qdl-udoo: fix rgmii phy-mode for ksz9031 phy (git-fixes) - ARM: dts: imx6sl: fix rng node (git-fixes) - ARM: dts: imx6sx-sabreauto: Fix the phy-mode on fec2 (git-fixes) - ARM: dts: imx6sx-sdb: Fix the phy-mode on fec2 (git-fixes) - ARM: dts: imx6sx: Add missing UART RTS/CTS pins mux (git-fixes) - ARM: dts: imx6sx: fix the pad QSPI1B_SCLK mux mode for uart3 (git-fixes) - ARM: dts: imx6sx: Improve UART pins macro defines (git-fixes) - ARM: dts: imx7-colibri: Fix frequency for sd/mmc (git-fixes) - ARM: dts: imx7-colibri: fix muxing of usbc_det pin (git-fixes) - ARM: dts: imx7-colibri: prepare module device tree for FlexCAN (git-fixes) - ARM: dts: imx7d-meerkat96: Fix the 'tuning-step' property (git-fixes) - ARM: dts: imx7d-pico: Fix the 'tuning-step' property (git-fixes) - ARM: dts: imx7d: Correct speed grading fuse settings (git-fixes) - ARM: dts: imx7d: fix opp-supported-hw (git-fixes) - ARM: dts: imx7ulp: Correct gpio ranges (git-fixes) - ARM: dts: logicpd-som-lv-baseboard: Fix broken audio (git-fixes) - ARM: dts: logicpd-som-lv-baseboard: Fix missing video (git-fixes) - ARM: dts: logicpd-torpedo-baseboard: Fix broken audio (git-fixes) - ARM: dts: lpc32xx: Revert set default clock rate of HCLK PLL (git-fixes) - ARM: dts: ls1021a: fix QuadSPI-memory reg range (git-fixes) - ARM: dts: ls1021a: Restore MDIO compatible to gianfar (git-fixes) - ARM: dts: meson: fix PHY deassert timing requirements (git-fixes) - ARM: dts: meson8: remove two invalid interrupt lines from the GPU (git-fixes) - ARM: dts: meson8: Use a higher default GPU clock frequency (git-fixes) - ARM: dts: meson8b: ec100: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: meson8b: mxq: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: meson8b: odroidc1: Fix the pwm regulator supply properties (git-fixes) - ARM: dts: mt7623: add missing pause for switchport (git-fixes) - ARM: dts: N900: fix onenand timings (git-fixes). - ARM: dts: NSP: Correct FA2 mailbox node (git-fixes) - ARM: dts: NSP: Disable PL330 by default, add dma-coherent property (git-fixes) - ARM: dts: NSP: Fixed QSPI compatible string (git-fixes) - ARM: dts: omap3-gta04a4: accelerometer irq fix (git-fixes) - ARM: dts: omap3430-sdp: Fix NAND device node (git-fixes) - ARM: dts: owl-s500: Fix incorrect PPI interrupt specifiers (git-fixes) - ARM: dts: oxnas: Fix clear-mask property (git-fixes) - ARM: dts: pandaboard: fix pinmux for gpio user button of Pandaboard (git-fixes) - ARM: dts: qcom: apq8064: Use 27MHz PXO clock as DSI PLL reference (git-fixes) - ARM: dts: qcom: msm8974: Add xo_board reference clock to DSI0 PHY (git-fixes) - ARM: dts: r7s9210: Remove bogus clock-names from OSTM nodes (git-fixes) - ARM: dts: r8a73a4: Add missing CMT1 interrupts (git-fixes) - ARM: dts: r8a7740: Add missing extal2 to CPG node (git-fixes) - ARM: dts: r8a7779, marzen: Fix DU clock names (git-fixes) - ARM: dts: Remove non-existent i2c1 from 98dx3236 (git-fixes) - ARM: dts: renesas: Fix IOMMU device node names (git-fixes) - ARM: dts: s5pv210: Set keep-power-in-suspend for SDHCI1 on Aries (git-fixes) - ARM: dts: socfpga: Align L2 cache-controller nodename with dtschema (git-fixes) - ARM: dts: socfpga: fix register entry for timer3 on Arria10 (git-fixes) - ARM: dts: stm32: fix a typo for DAC io-channel-cells on stm32f429 (git-fixes) - ARM: dts: stm32: fix a typo for DAC io-channel-cells on stm32h743 (git-fixes) - ARM: dts: sun6i: a31-hummingbird: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun7i: a20: bananapro: Fix ethernet phy-mode (git-fixes) - ARM: dts: sun7i: bananapi-m1-plus: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun7i: bananapi: Enable RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun7i: cubietruck: Enable RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun7i: pcduino3-nano: enable RGMII RX/TX delay on PHY (git-fixes) - ARM: dts: sun8i-a83t-tbs-a711: Fix USB OTG mode detection (git-fixes) - ARM: dts: sun8i-h2-plus-bananapi-m2-zero: Fix led polarity (git-fixes) - ARM: dts: sun8i: a83t: Enable both RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sun8i: h3: orangepi-plus2e: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-berry: Fix dcdc1 regulator (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-ultra: Fix dcdc1 regulator (git-fixes) - ARM: dts: sun8i: r40: bananapi-m2-ultra: Fix ethernet node (git-fixes) - ARM: dts: sun8i: r40: Move AHCI device node based on address order (git-fixes) - ARM: dts: sun8i: v3s: fix GIC node memory range (git-fixes) - ARM: dts: sun8i: v40: bananapi-m2-berry: Fix ethernet node (git-fixes) - ARM: dts: sun9i: Enable both RGMII RX/TX delay on Ethernet PHY (git-fixes) - ARM: dts: sunxi: bananapi-m2-plus-v1.2: Fix CPU supply voltages (git-fixes) - ARM: dts: sunxi: bananapi-m2-plus: Enable RGMII RX/TX delay on (git-fixes) - ARM: dts: sunxi: Fix DE2 clocks register range (git-fixes) - ARM: dts: turris-omnia: add comphy handle to eth2 (git-fixes) - ARM: dts: turris-omnia: add SFP node (git-fixes) - ARM: dts: turris-omnia: configure LED[2]/INTn pin as interrupt pin (git-fixes) - ARM: dts: turris-omnia: describe switch interrupt (git-fixes) - ARM: dts: turris-omnia: enable HW buffer management (git-fixes) - ARM: dts: turris-omnia: fix hardware buffer management (git-fixes) - ARM: dts: uniphier: Change phy-mode to RGMII-ID to enable delay pins (git-fixes) - ARM: dts: uniphier: Set SCSSI clock and reset IDs for each channel (git-fixes). - ARM: dts: vf610-zii-dev-rev-b: Remove #address-cells and #size-cells (git-fixes) - ARM: dts: vfxxx: Add syscon compatible with OCOTP (git-fixes) - ARM: exynos: add missing of_node_put for loop iteration (git-fixes) - ARM: exynos: MCPM: Restore big.LITTLE cpuidle support (git-fixes) - ARM: footbridge: fix PCI interrupt mapping (git-fixes) - ARM: imx: add missing clk_disable_unprepare() (git-fixes) - ARM: imx: add missing iounmap() (git-fixes) - ARM: imx: build suspend-imx6.S with arm instruction set (git-fixes) - ARM: imx: fix missing 3rd argument in macro imx_mmdc_perf_init (git-fixes) - ARM: imx5: add missing put_device() call in imx_suspend_alloc_ocram() (git-fixes) - ARM: imx6: disable the GIC CPU interface before calling stby-poweroff (git-fixes) - ARM: mvebu: drop pointless check for coherency_base (git-fixes) - ARM: OMAP2+: Fix legacy mode dss_reset (git-fixes) - ARM: OMAP2+: omap_device: fix idling of devices during probe (git-fixes) - ARM: OMAP2+: pm33xx-core: Make am43xx_get_rtc_base_addr static (git-fixes) - ARM: p2v: fix handling of LPAE translation in BE mode (git-fixes) - ARM: s3c: irq-s3c24xx: Fix return value check for s3c24xx_init_intc() (git-fixes) - ARM: s3c24xx: fix missing system reset (git-fixes) - ARM: s3c24xx: fix mmc gpio lookup tables (git-fixes) - ARM: samsung: do not build plat/pm-common for Exynos (git-fixes) - ARM: samsung: fix PM debug build with DEBUG_LL but !MMU (git-fixes) - ARM: socfpga: PM: add missing put_device() call in socfpga_setup_ocram_self_refresh() (git-fixes) - ASoC: DAPM: Cover regression by kctl change notification fix (git-fixes). - ASoC: nau8824: Add DMI quirk mechanism for active-high jack-detect (git-fixes). - ASoC: qdsp6: q6routing: Conditionally reset FrontEnd Mixer (git-fixes). - ASoC: SOF: Intel: hda-dai: fix potential locking issue (git-fixes). - ASoC: topology: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ath: dfs_pattern_detector: Fix possible null-pointer dereference in channel_detector_create() (git-fixes). - ath10k: fix invalid dma_addr_t token assignment (git-fixes). - ath10k: high latency fixes for beacon buffer (git-fixes). - bfq: Limit number of requests consumed by each cgroup (bsc#1184318). - bfq: Store full bitmap depth in bfq_data (bsc#1184318). - bfq: Track number of allocated requests in bfq_entity (bsc#1184318). - block: Fix use-after-free issue accessing struct io_cq (bsc#1193042). - block: Provide blk_mq_sched_get_icq() (bsc#1184318). - Bluetooth: Add additional Bluetooth part for Realtek 8852AE (bsc#1193655). - Bluetooth: btrtl: Refine the ic_id_table for clearer and more regular (bsc#1193655). - Bluetooth: btusb: Add another Bluetooth part for Realtek 8852AE (bsc#1193655). - Bluetooth: btusb: Add the more support IDs for Realtek RTL8822CE (bsc#1193655). - Bluetooth: btusb: Add the new support ID for Realtek RTL8852A (bsc#1193655). - Bluetooth: btusb: btrtl: Add support for RTL8852A (bsc#1193655). - Bluetooth: fix use-after-free error in lock_sock_nested() (git-fixes). - bnxt_en: reject indirect blk offload when hw-tc-offload is off (jsc#SLE-8372 bsc#1153275). - bonding: Fix a use-after-free problem when bond_sysfs_slave_add() failed (git-fixes). - bpf, arm: Fix register clobbering in div/mod implementation (git-fixes) - bpf, s390: Fix potential memory leak about jit_data (git-fixes). - bpf, x86: Fix "no previous prototype" warning (git-fixes). - brcmfmac: Add DMI nvram filename quirk for Cyberbook T116 tablet (git-fixes). - btrfs: do not ignore error from btrfs_next_leaf() when inserting checksums (bsc#1193002). - btrfs: fix fsync failure and transaction abort after writes to prealloc extents (bsc#1193002). - btrfs: fix lost inode on log replay after mix of fsync, rename and inode eviction (bsc#1192998). - btrfs: fix race causing unnecessary inode logging during link and rename (bsc#1192998). - btrfs: make checksum item extension more efficient (bsc#1193002). - cfg80211: call cfg80211_stop_ap when switch from P2P_GO type (git-fixes). - cifs: add a debug macro that prints \\server\share for errors (bsc#1164565). - cifs: add a function to get a cached dir based on its dentry (bsc#1192606). - cifs: add a helper to find an existing readable handle to a file (bsc#1154355). - cifs: add a timestamp to track when the lease of the cached dir was taken (bsc#1192606). - cifs: add an smb3_fs_context to cifs_sb (bsc#1192606). - cifs: add FALLOC_FL_INSERT_RANGE support (bsc#1192606). - cifs: add files to host new mount api (bsc#1192606). - cifs: add fs_context param to parsing helpers (bsc#1192606). - cifs: Add get_security_type_str function to return sec type (bsc#1192606). - cifs: add initial reconfigure support (bsc#1192606). - cifs: add missing mount option to /proc/mounts (bsc#1164565). - cifs: add missing parsing of backupuid (bsc#1192606). - cifs: Add missing sentinel to smb3_fs_parameters (bsc#1192606). - cifs: add mount parameter tcpnodelay (bsc#1192606). - cifs: add multichannel mount options and data structs (bsc#1192606). - cifs: add new debugging macro cifs_server_dbg (bsc#1164565). - cifs: Add new mount parameter "acdirmax" to allow caching directory metadata (bsc#1192606). - cifs: Add new parameter "acregmax" for distinct file and directory metadata timeout (bsc#1192606). - cifs: add NULL check for ses->tcon_ipc (bsc#1178270). - cifs: add passthrough for smb2 setinfo (bsc#1164565). - cifs: add server param (bsc#1192606). - cifs: add shutdown support (bsc#1192606). - cifs: add smb2 POSIX info level (bsc#1164565). - cifs: add SMB2_open() arg to return POSIX data (bsc#1164565). - cifs: add SMB3 change notification support (bsc#1164565). - cifs: add support for FALLOC_FL_COLLAPSE_RANGE (bsc#1192606). - cifs: add support for fallocate mode 0 for non-sparse files (bsc#1164565). - cifs: add support for flock (bsc#1164565). - cifs: Add support for setting owner info, dos attributes, and create time (bsc#1164565). - cifs: Add tracepoints for errors on flush or fsync (bsc#1164565). - cifs: Add witness information to debug data dump (bsc#1192606). - cifs: add witness mount option and data structs (bsc#1192606). - cifs: added WARN_ON for all the count decrements (bsc#1192606). - cifs: Adjust indentation in smb2_open_file (bsc#1164565). - cifs: Adjust key sizes and key generation routines for AES256 encryption (bsc#1192606). - cifs: allocate buffer in the caller of build_path_from_dentry() (bsc#1192606). - cifs: Allocate crypto structures on the fly for calculating signatures of incoming packets (bsc#1192606). - cifs: Allocate encryption header through kmalloc (bsc#1192606). - cifs: allow chmod to set mode bits using special sid (bsc#1164565). - cifs: allow syscalls to be restarted in __smb_send_rqst() (bsc#1176956). - cifs: allow unlock flock and OFD lock across fork (bsc#1192606). - cifs: Always update signing key of first channel (bsc#1192606). - cifs: ask for more credit on async read/write code paths (bsc#1192606). - cifs: Assign boolean values to a bool variable (bsc#1192606). - cifs: Avoid doing network I/O while holding cache lock (bsc#1164565). - cifs: Avoid error pointer dereference (bsc#1192606). - cifs: avoid extra calls in posix_info_parse (bsc#1192606). - cifs: Avoid field over-reading memcpy() (bsc#1192606). - cifs: avoid starvation when refreshing dfs cache (bsc#1185902). - cifs: avoid using MID 0xFFFF (bnc#1151927 5.3.8). - cifs: call wake_up(server->response_q) inside of cifs_reconnect() (bsc#1164565). - cifs: change confusing field serverName (to ip_addr) (bsc#1192606). - cifs: change format of CIFS_FULL_KEY_DUMP ioctl (bsc#1192606). - cifs: change noisy error message to FYI (bsc#1181507). - cifs: Change SIDs in ACEs while transferring file ownership (bsc#1192606). - cifs: check all path components in resolved dfs target (bsc#1181710). - cifs: check new file size when extending file by fallocate (bsc#1192606). - cifs: check pointer before freeing (bsc#1183534). - cifs: check the timestamp for the cached dirent when deciding on revalidate (bsc#1192606). - cifs: cifs_md4 convert to SPDX identifier (bsc#1192606). - cifs: cifspdu.h: Replace one-element array with flexible-array member (bsc#1192606). - cifs: cifspdu.h: Replace zero-length array with flexible-array member (bsc#1192606). - cifs: cifsssmb: remove redundant assignment to variable ret (bsc#1164565). - cifs: clarify comment about timestamp granularity for old servers (bsc#1192606). - cifs: clarify hostname vs ip address in /proc/fs/cifs/DebugData (bsc#1192606). - cifs: Clarify SMB1 code for delete (bsc#1192606). - cifs: Clarify SMB1 code for POSIX Create (bsc#1192606). - cifs: Clarify SMB1 code for POSIX delete file (bsc#1192606). - cifs: Clarify SMB1 code for POSIX Lock (bsc#1192606). - cifs: Clarify SMB1 code for rename open file (bsc#1192606). - cifs: Clarify SMB1 code for SetFileSize (bsc#1192606). - cifs: clarify SMB1 code for UnixCreateHardLink (bsc#1192606). - cifs: Clarify SMB1 code for UnixCreateSymLink (bsc#1192606). - cifs: Clarify SMB1 code for UnixSetPathInfo (bsc#1192606). - cifs: Clean up DFS referral cache (bsc#1164565). - cifs: cleanup a few le16 vs. le32 uses in cifsacl.c (bsc#1192606). - cifs: cleanup misc.c (bsc#1192606). - cifs: clear PF_MEMALLOC before exiting demultiplex thread (bsc#1192606). - cifs: Close cached root handle only if it had a lease (bsc#1164565). - cifs: Close open handle after interrupted close (bsc#1164565). - cifs: close the shared root handle on tree disconnect (bsc#1164565). - cifs: compute full_path already in cifs_readdir() (bsc#1192606). - cifs: connect individual channel servers to primary channel server (bsc#1192606). - cifs: connect: style: Simplify bool comparison (bsc#1192606). - cifs: constify get_normalized_path() properly (bsc#1185902). - cifs: constify path argument of ->make_node() (bsc#1192606). - cifs: constify pathname arguments in a bunch of helpers (bsc#1192606). - cifs: Constify static struct genl_ops (bsc#1192606). - cifs: convert list_for_each to entry variant (bsc#1192606, jsc#SLE-20042). - cifs: convert list_for_each to entry variant in cifs_debug.c (bsc#1192606). - cifs: convert list_for_each to entry variant in smb2misc.c (bsc#1192606). - cifs: convert revalidate of directories to using directory metadata cache timeout (bsc#1192606). - cifs: convert to use be32_add_cpu() (bsc#1192606). - cifs: Convert to use the fallthrough macro (bsc#1192606). - cifs: correct comments explaining internal semaphore usage in the module (bsc#1192606). - cifs: correct four aliased mount parms to allow use of previous names (bsc#1192606). - cifs: create a helper function to parse the query-directory response buffer (bsc#1164565). - cifs: create a helper to find a writeable handle by path name (bsc#1154355). - cifs: create a MD4 module and switch cifs.ko to use it (bsc#1192606). - cifs: Create a new shared file holding smb2 pdu definitions (bsc#1192606). - cifs: create sd context must be a multiple of 8 (bsc#1192606). - cifs: Deal with some warnings from W=1 (bsc#1192606). - cifs: Delete a stray unlock in cifs_swn_reconnect() (bsc#1192606). - cifs: delete duplicated words in header files (bsc#1192606). - cifs: detect dead connections only when echoes are enabled (bsc#1192606). - cifs: Display local UID details for SMB sessions in DebugData (bsc#1192606). - cifs: do d_move in rename (bsc#1164565). - cifs: do not allow changing posix_paths during remount (bsc#1192606). - cifs: do not cargo-cult strndup() (bsc#1185902). - cifs: do not create a temp nls in cifs_setup_ipc (bsc#1192606). - cifs: do not disable noperm if multiuser mount option is not provided (bsc#1192606). - cifs: Do not display RDMA transport on reconnect (bsc#1164565). - cifs: do not duplicate fscache cookie for secondary channels (bsc#1192606). - cifs: do not fail __smb_send_rqst if non-fatal signals are pending (git-fixes). - cifs: do not ignore the SYNC flags in getattr (bsc#1164565). - cifs: do not leak -EAGAIN for stat() during reconnect (bsc#1164565). - cifs: Do not leak EDEADLK to dgetents64 for STATUS_USER_SESSION_DELETED (bsc#1192606). - cifs: Do not miss cancelled OPEN responses (bsc#1164565). - cifs: do not negotiate session if session already exists (bsc#1192606). - cifs: do not send close in compound create+close requests (bsc#1181507). - cifs: do not send tree disconnect to ipc shares (bsc#1185902). - cifs: do not set ->i_mode of something we had not created (bsc#1192606). - cifs: do not share tcons with DFS (bsc#1178270). - cifs: do not share tcp servers with dfs mounts (bsc#1185902). - cifs: do not share tcp sessions of dfs connections (bsc#1185902). - cifs: do not use 'pre:' for MODULE_SOFTDEP (bsc#1164565). - cifs: Do not use iov_iter::type directly (bsc#1192606). - cifs: Do not use the original cruid when following DFS links for multiuser mounts (bsc#1192606). - cifs: document and cleanup dfs mount (bsc#1178270). - cifs: dump channel info in DebugData (bsc#1192606). - cifs: dump Security Type info in DebugData (bsc#1192606). - cifs: dump the session id and keys also for SMB2 sessions (bsc#1192606). - cifs: enable change notification for SMB2.1 dialect (bsc#1164565). - cifs: enable extended stats by default (bsc#1192606). - cifs: Enable sticky bit with cifsacl mount option (bsc#1192606). - cifs: ensure correct super block for DFS reconnect (bsc#1178270). - cifs: escape spaces in share names (bsc#1192606). - cifs: export supported mount options via new mount_params /proc file (bsc#1192606). - cifs: fail i/o on soft mounts if sessionsetup errors out (bsc#1164565). - cifs: fiemap: do not return EINVAL if get nothing (bsc#1192606). - cifs: fix a comment for the timeouts when sending echos (bsc#1164565). - cifs: fix a memleak with modefromsid (bsc#1192606). - cifs: fix a sign extension bug (bsc#1192606). - cifs: fix a white space issue in cifs_get_inode_info() (bsc#1164565). - cifs: fix allocation size on newly created files (bsc#1192606). - cifs: Fix an error pointer dereference in cifs_mount() (bsc#1178270). - cifs: Fix atime update check vs mtime (bsc#1164565). - cifs: Fix bug which the return value by asynchronous read is error (bsc#1192606). - cifs: Fix cached_fid refcnt leak in open_shroot (bsc#1192606). - cifs: fix channel signing (bsc#1192606). - cifs: fix check of dfs interlinks (bsc#1185902). - cifs: fix check of tcon dfs in smb1 (bsc#1178270). - cifs: Fix chmod with modefromsid when an older ACE already exists (bsc#1192606). - cifs: fix chown and chgrp when idsfromsid mount option enabled (bsc#1192606). - cifs: Fix cifsacl ACE mask for group and others (bsc#1192606). - cifs: Fix cifsInodeInfo lock_sem deadlock when reconnect occurs (bnc#1151927 5.3.10). - cifs: fix credit accounting for extra channel (bsc#1192606). - cifs: Fix data inconsistent when punch hole (bsc#1176544). - cifs: Fix data inconsistent when zero file range (bsc#1176536). - cifs: fix dereference on ses before it is null checked (bsc#1164565). - cifs: fix dfs domain referrals (bsc#1192606). - cifs: fix DFS failover (bsc#1192606). - cifs: fix DFS mount with cifsacl/modefromsid (bsc#1178270). - cifs: fix dfs-links (bsc#1192606). - cifs: fix doc warnings in cifs_dfs_ref.c (bsc#1192606). - cifs: Fix double add page to memcg when cifs_readpages (bsc#1192606). - cifs: fix double free error on share and prefix (bsc#1178270). - cifs: fix double-put on late allocation failure (bsc#1192606). - cifs: Fix fall-through warnings for Clang (bsc#1192606). - cifs: fix fallocate when trying to allocate a hole (bsc#1192606). - cifs: fix gcc warning in sid_to_id (bsc#1192606). - cifs: fix handling of escaped ',' in the password mount argument (bsc#1192606). - cifs: Fix in error types returned for out-of-credit situations (bsc#1192606). - cifs: Fix incomplete memory allocation on setxattr path (bsc#1179211). - cifs: Fix inconsistent indenting (bsc#1192606). - cifs: Fix inconsistent IS_ERR and PTR_ERR (bsc#1192606). - cifs: fix incorrect check for null pointer in header_assemble (bsc#1192606). - cifs: fix incorrect kernel doc comments (bsc#1192606). - cifs: fix interrupted close commands (git-fixes). - cifs: fix ipv6 formating in cifs_ses_add_channel (bsc#1192606). - cifs: fix leak in cifs_smb3_do_mount() ctx (bsc#1192606). - cifs: Fix leak when handling lease break for cached root fid (bsc#1176242). - cifs: fix leaked reference on requeued write (bsc#1178270). - cifs: Fix lookup of root ses in DFS referral cache (bsc#1164565). - cifs: Fix lookup of SMB connections on multichannel (bsc#1192606). - cifs: fix max ea value size (bnc#1151927 5.3.4). - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1164565). - cifs: fix memory leak in smb2_copychunk_range (git-fixes). - cifs: fix memory leak of smb3_fs_context_dup::server_hostname (bsc#1192606). - cifs: fix minor typos in comments and log messages (bsc#1192606). - cifs: Fix missed free operations (bnc#1151927 5.3.8). - cifs: fix missing null session check in mount (bsc#1192606). - cifs: fix missing spinlock around update to ses->status (bsc#1192606). - cifs: fix misspellings using codespell tool (bsc#1192606). - cifs: fix mode bits from dir listing when mounted with modefromsid (bsc#1164565). - cifs: Fix mode output in debugging statements (bsc#1164565). - cifs: fix mount option display for sec=krb5i (bsc#1161907). - cifs: Fix mount options set in automount (bsc#1164565). - cifs: fix mounts to subdirectories of target (bsc#1192606). - cifs: fix nodfs mount option (bsc#1181710). - cifs: fix NULL dereference in match_prepath (bsc#1164565). - cifs: fix NULL dereference in smb2_check_message() (bsc#1192606). - cifs: Fix null pointer check in cifs_read (bsc#1192606). - cifs: Fix NULL pointer dereference in mid callback (bsc#1164565). - cifs: Fix NULL-pointer dereference in smb2_push_mandatory_locks (bnc#1151927 5.3.16). - cifs: Fix oplock handling for SMB 2.1+ protocols (bnc#1151927 5.3.4). - cifs: fix out-of-bound memory access when calling smb3_notify() at mount point (bsc#1192606). - cifs: fix path comparison and hash calc (bsc#1185902). - cifs: fix possible uninitialized access and race on iface_list (bsc#1192606). - cifs: Fix potential deadlock when updating vol in cifs_reconnect() (bsc#1164565). - cifs: fix potential mismatch of UNC paths (bsc#1164565). - cifs: Fix potential softlockups while refreshing DFS cache (bsc#1164565). - cifs: fix potential use-after-free bugs (bsc#1192606, jsc#SLE-20042). - cifs: fix potential use-after-free in cifs_echo_request() (bsc#1139944). - cifs: Fix preauth hash corruption (git-fixes). - cifs: fix print of hdr_flags in dfscache_proc_show() (bsc#1192606, jsc#SLE-20042). - cifs: fix reference leak for tlink (bsc#1192606). - cifs: fix regression when mounting shares with prefix paths (bsc#1192606). - cifs: fix rename() by ensuring source handle opened with DELETE bit (bsc#1164565). - cifs: Fix resource leak (bsc#1192606). - cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1164565). - cifs: Fix retry mid list corruption on reconnects (bnc#1151927 5.3.10). - cifs: Fix return value in __update_cache_entry (bsc#1164565). - cifs: fix rsize/wsize to be negotiated values (bsc#1192606). - cifs: fix SMB1 error path in cifs_get_file_info_unix (bsc#1192606). - cifs: Fix SMB2 oplock break processing (bsc#1154355 bnc#1151927 5.3.16). - cifs: fix soft mounts hanging in the reconnect code (bsc#1164565). - cifs: fix soft mounts hanging in the reconnect code (bsc#1164565). - cifs: Fix some error pointers handling detected by static checker (bsc#1192606). - cifs: Fix spelling of 'security' (bsc#1192606). - cifs: fix string declarations and assignments in tracepoints (bsc#1192606). - cifs: Fix support for remount when not changing rsize/wsize (bsc#1192606). - cifs: Fix task struct use-after-free on reconnect (bsc#1164565). - cifs: fix the out of range assignment to bit fields in parse_server_interfaces (bsc#1192606). - cifs: Fix the target file was deleted when rename failed (bsc#1192606). - cifs: fix trivial typo (bsc#1192606). - cifs: fix uninitialised lease_key in open_shroot() (bsc#1178270). - cifs: fix uninitialized variable in smb3_fs_context_parse_param (bsc#1192606). - cifs: fix unitialized variable poential problem with network I/O cache lock patch (bsc#1164565). - cifs: Fix unix perm bits to cifsacl conversion for "other" bits (bsc#1192606). - cifs: fix unneeded null check (bsc#1192606). - cifs: fix use after free in cifs_smb3_do_mount() (bsc#1192606). - cifs: Fix use after free of file info structures (bnc#1151927 5.3.8). - cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1164565). - cifs: fix wrong release in sess_alloc_buffer() failed path (bsc#1192606). - cifs: for compound requests, use open handle if possible (bsc#1192606). - cifs: Force reval dentry if LOOKUP_REVAL flag is set (bnc#1151927 5.3.7). - cifs: Force revalidate inode when dentry is stale (bnc#1151927 5.3.7). - cifs: fork arc4 and create a separate module for it for cifs and other users (bsc#1192606). - cifs: get mode bits from special sid on stat (bsc#1164565). - cifs: get rid of @noreq param in __dfs_cache_find() (bsc#1185902). - cifs: get rid of cifs_sb->mountdata (bsc#1192606). - cifs: Get rid of kstrdup_const()'d paths (bsc#1164565). - cifs: get rid of unused parameter in reconn_setup_dfs_targets() (bsc#1178270). - cifs: Grab a reference for the dentry of the cached directory during the lifetime of the cache (bsc#1192606). - cifs: Gracefully handle QueryInfo errors during open (bnc#1151927 5.3.7). - cifs: handle -EINTR in cifs_setattr (bsc#1192606). - cifs: handle "guest" mount parameter (bsc#1192606). - cifs: handle "nolease" option for vers=1.0 (bsc#1192606). - cifs: handle different charsets in dfs cache (bsc#1185902). - cifs: handle empty list of targets in cifs_reconnect() (bsc#1178270). - cifs: handle ERRBaduid for SMB1 (bsc#1192606). - cifs: handle hostnames that resolve to same ip in failover (bsc#1178270). - cifs: handle prefix paths in reconnect (bsc#1164565). - cifs: handle reconnect of tcon when there is no cached dfs referral (bsc#1192606). - cifs: handle RESP_GET_DFS_REFERRAL.PathConsumed in reconnect (bsc#1178270). - cifs: Handle witness client move notification (bsc#1192606). - cifs: have ->mkdir() handle race with another client sanely (bsc#1192606). - cifs: have cifs_fattr_to_inode() refuse to change type on live inode (bsc#1192606). - cifs: Identify a connection by a conn_id (bsc#1192606). - cifs: If a corrupted DACL is returned by the server, bail out (bsc#1192606). - cifs: ignore auto and noauto options if given (bsc#1192606). - cifs: ignore cached share root handle closing errors (bsc#1166780). - cifs: improve fallocate emulation (bsc#1192606). - cifs: improve read performance for page size 64KB cache=strict vers=2.1+ (bsc#1192606). - cifs: In the new mount api we get the full devname as source= (bsc#1192606). - cifs: Increment num_remote_opens stats counter even in case of smb2_query_dir_first (bsc#1192606). - cifs: Initialize filesystem timestamp ranges (bsc#1164565). - cifs: introduce cifs_ses_mark_for_reconnect() helper (bsc#1192606). - cifs: introduce helper for finding referral server (bsc#1181710). - cifs: Introduce helpers for finding TCP connection (bsc#1164565). - cifs: introduce new helper for cifs_reconnect() (bsc#1192606, jsc#SLE-20042). - cifs: keep referral server sessions alive (bsc#1185902). - cifs: log mount errors using cifs_errorf() (bsc#1192606). - cifs: log warning message (once) if out of disk space (bsc#1164565). - cifs: make build_path_from_dentry() return const char * (bsc#1192606). - cifs: make const array static, makes object smaller (bsc#1192606). - cifs: Make extract_hostname function public (bsc#1192606). - cifs: Make extract_sharename function public (bsc#1192606). - cifs: make fs_context error logging wrapper (bsc#1192606). - cifs: make locking consistent around the server session status (bsc#1192606). - cifs: make multichannel warning more visible (bsc#1192606). - cifs: Make SMB2_notify_init static (bsc#1164565). - cifs: make sure we do not overflow the max EA buffer size (bsc#1164565). - cifs: make use of cap_unix(ses) in cifs_reconnect_tcon() (bsc#1164565). - cifs: map STATUS_ACCOUNT_LOCKED_OUT to -EACCES (bsc#1192606). - cifs: merge __{cifs,smb2}_reconnect[_tcon]() into cifs_tree_connect() (bsc#1178270). - cifs: Merge is_path_valid() into get_normalized_path() (bsc#1164565). - cifs: minor fix to two debug messages (bsc#1192606). - cifs: minor kernel style fixes for comments (bsc#1192606). - cifs: minor simplification to smb2_is_network_name_deleted (bsc#1192606). - cifs: minor update to comments around the cifs_tcp_ses_lock mutex (bsc#1192606). - cifs: minor updates to Kconfig (bsc#1192606). - cifs: misc: Use array_size() in if-statement controlling expression (bsc#1192606). - cifs: missed ref-counting smb session in find (bsc#1192606). - cifs: missing null check for newinode pointer (bsc#1192606). - cifs: missing null pointer check in cifs_mount (bsc#1185902). - cifs: modefromsid: make room for 4 ACE (bsc#1164565). - cifs: modefromsid: write mode ACE first (bsc#1164565). - cifs: move [brw]size from cifs_sb to cifs_sb->ctx (bsc#1192606). - cifs: move cache mount options to fs_context.ch (bsc#1192606). - cifs: move cifs_cleanup_volume_info[_content] to fs_context.c (bsc#1192606). - cifs: move cifs_parse_devname to fs_context.c (bsc#1192606). - cifs: move cifsFileInfo_put logic into a work-queue (bsc#1154355). - cifs: move debug print out of spinlock (bsc#1192606). - cifs: Move more definitions into the shared area (bsc#1192606). - cifs: move NEGOTIATE_PROTOCOL definitions out into the common area (bsc#1192606). - cifs: move security mount options into fs_context.ch (bsc#1192606). - cifs: move SMB FSCTL definitions to common code (bsc#1192606). - cifs: move smb version mount options into fs_context.c (bsc#1192606). - cifs: Move SMB2_Create definitions to the shared area (bsc#1192606). - cifs: move some variables off the stack in smb2_ioctl_query_info (bsc#1192606). - cifs: move the check for nohandlecache into open_shroot (bsc#1192606). - cifs: move the enum for cifs parameters into fs_context.h (bsc#1192606). - cifs: move update of flags into a separate function (bsc#1192606). - cifs: multichannel: always zero struct cifs_io_parms (bsc#1192606). - cifs: multichannel: move channel selection above transport layer (bsc#1192606). - cifs: multichannel: move channel selection in function (bsc#1192606). - cifs: multichannel: try to rebind when reconnecting a channel (bsc#1192606). - cifs: multichannel: use pointer for binding channel (bsc#1192606). - cifs: mute -Wunused-const-variable message (bnc#1151927 5.3.9). - cifs: New optype for session operations (bsc#1181507). - cifs: nosharesock should be set on new server (bsc#1192606). - cifs: nosharesock should not share socket with future sessions (bsc#1192606). - cifs: On cifs_reconnect, resolve the hostname again (bsc#1192606). - cifs: only update prefix path of DFS links in cifs_tree_connect() (bsc#1178270). - cifs: only write 64kb at a time when fallocating a small region of a file (bsc#1192606). - cifs: Optimize readdir on reparse points (bsc#1164565). - cifs: pass a path to open_shroot and check if it is the root or not (bsc#1192606). - cifs: pass the dentry instead of the inode down to the revalidation check functions (bsc#1192606). - cifs: plumb smb2 POSIX dir enumeration (bsc#1164565). - cifs: populate server_hostname for extra channels (bsc#1192606). - cifs: potential unintitliazed error code in cifs_getattr() (bsc#1164565). - cifs: prepare SMB2_Flush to be usable in compounds (bsc#1154355). - cifs: prepare SMB2_query_directory to be used with compounding (bsc#1164565). - cifs: prevent NULL deref in cifs_compose_mount_options() (bsc#1185902). - cifs: prevent truncation from long to int in wait_for_free_credits (bsc#1192606). - cifs: print MIDs in decimal notation (bsc#1181507). - cifs: Print the address and port we are connecting to in generic_ip_connect() (bsc#1192606). - cifs: print warning mounting with vers=1.0 (bsc#1164565). - cifs: properly invalidate cached root handle when closing it (bsc#1192606). - cifs: Properly process SMB3 lease breaks (bsc#1164565). - cifs: protect session channel fields with chan_lock (bsc#1192606). - cifs: protect srv_count with cifs_tcp_ses_lock (bsc#1192606). - cifs: protect updating server->dstaddr with a spinlock (bsc#1192606). - cifs: Re-indent cifs_swn_reconnect() (bsc#1192606). - cifs: reduce number of referral requests in DFS link lookups (bsc#1178270). - cifs: reduce stack use in smb2_compound_op (bsc#1192606). - cifs: refactor cifs_get_inode_info() (bsc#1164565). - cifs: refactor create_sd_buf() and and avoid corrupting the buffer (bsc#1192606). - cifs: Reformat DebugData and index connections by conn_id (bsc#1192606). - cifs: Register generic netlink family (bsc#1192606). Update configs with CONFIG_SWN_UPCALL unset. - cifs: release lock earlier in dequeue_mid error case (bsc#1192606). - cifs: remove [gu]id/backup[gu]id/file_mode/dir_mode from cifs_sb (bsc#1192606). - cifs: remove actimeo from cifs_sb (bsc#1192606). - cifs: remove bogus debug code (bsc#1179427). - cifs: remove ctx argument from cifs_setup_cifs_sb (bsc#1192606). - cifs: remove duplicated prototype (bsc#1192606). - cifs: remove old dead code (bsc#1192606). - cifs: remove pathname for file from SPDX header (bsc#1192606). - cifs: remove redundant assignment to pointer pneg_ctxt (bsc#1164565). - cifs: remove redundant assignment to variable rc (bsc#1164565). - cifs: remove redundant initialization of variable rc (bsc#1192606). - cifs: remove redundant initialization of variable rc (bsc#1192606). - cifs: Remove repeated struct declaration (bsc#1192606). - cifs: Remove set but not used variable 'capabilities' (bsc#1164565). - cifs: remove set but not used variable 'server' (bsc#1164565). - cifs: remove set but not used variables 'cinode' and 'netfid' (bsc#1164565). - cifs: remove set but not used variables (bsc#1164565). - cifs: remove some minor warnings pointed out by kernel test robot (bsc#1192606). - cifs: remove the devname argument to cifs_compose_mount_options (bsc#1192606). - cifs: remove the retry in cifs_poxis_lock_set (bsc#1192606). - cifs: Remove the superfluous break (bsc#1192606). - cifs: remove two cases where rc is set unnecessarily in sid_to_id (bsc#1192606). - cifs: remove unnecessary copies of tcon->crfid.fid (bsc#1192606). - cifs: Remove unnecessary struct declaration (bsc#1192606). - cifs: remove unneeded variable in smb3_fs_context_dup (bsc#1192606). - cifs: Remove unused inline function is_sysvol_or_netlogon() (bsc#1185902). - cifs: remove unused variable 'server' (bsc#1192606). - cifs: remove unused variable 'sid_user' (bsc#1164565). - cifs: remove unused variable (bsc#1164565). - cifs: Remove useless variable (bsc#1192606). - cifs: remove various function description warnings (bsc#1192606). - cifs: rename a variable in SendReceive() (bsc#1164565). - cifs: rename cifs_common to smbfs_common (bsc#1192606). - cifs: rename dup_vol to smb3_fs_context_dup and move it into fs_context.c (bsc#1192606). - cifs: rename posix create rsp (bsc#1164565). - cifs: rename reconn_inval_dfs_target() (bsc#1178270). - cifs: rename smb_vol as smb3_fs_context and move it to fs_context.h (bsc#1192606). - cifs: rename the *_shroot* functions to *_cached_dir* (bsc#1192606). - cifs: report error instead of invalid when revalidating a dentry fails (bsc#1177440). - cifs: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1164565). - cifs: Retain old ACEs when converting between mode bits and ACL (bsc#1192606). - cifs: retry lookup and readdir when EAGAIN is returned (bsc#1192606). - cifs: return cached_fid from open_shroot (bsc#1192606). - cifs: Return correct error code from smb2_get_enc_key (git-fixes). - cifs: Return directly after a failed build_path_from_dentry() in cifs_do_create() (bsc#1164565). - cifs: return proper error code in statfs(2) (bsc#1181507). - cifs: Return the error from crypt_message when enc/dec key not found (bsc#1179426). - cifs: returning mount parm processing errors correctly (bsc#1192606). - cifs: revalidate mapping when we open files for SMB1 POSIX (bsc#1192606). - cifs: Send witness register and unregister commands to userspace daemon (bsc#1192606). - cifs: Send witness register messages to userspace daemon in echo task (bsc#1192606). - cifs: send workstation name during ntlmssp session setup (bsc#1192606). - cifs: set a minimum of 120s for next dns resolution (bsc#1192606). - cifs: set a minimum of 2 minutes for refreshing dfs cache (bsc#1185902). - cifs: Set CIFS_MOUNT_USE_PREFIX_PATH flag on setting cifs_sb->prepath (bsc#1192606). - cifs: set correct max-buffer-size for smb2_ioctl_init() (bsc#1164565). - cifs: set server->cipher_type to AES-128-CCM for SMB3.0 (bsc#1192606). - cifs: set up next DFS target before generic_ip_connect() (bsc#1178270). - cifs: Set witness notification handler for messages from userspace daemon (bsc#1192606). - cifs: Silently ignore unknown oplock break handle (bsc#1192606). - cifs: Simplify bool comparison (bsc#1192606). - cifs: simplify handling of cifs_sb/ctx->local_nls (bsc#1192606). - cifs: Simplify reconnect code when dfs upcall is enabled (bsc#1192606). - cifs: simplify SWN code with dummy funcs instead of ifdefs (bsc#1192606). - cifs: smb1: Try failing back to SetFileInfo if SetPathInfo fails (bsc#1192606). - cifs: smb2pdu.h: Replace zero-length array with flexible-array member (bsc#1192606). - cifs: smbd: Add messages on RDMA session destroy and reconnection (bsc#1164565). - cifs: smbd: Calculate the correct maximum packet size for segmented SMBDirect send/receive (bsc#1192606). - cifs: smbd: Check and extend sender credits in interrupt context (bsc#1192606). - cifs: smbd: Check send queue size before posting a send (bsc#1192606). - cifs: smbd: Do not schedule work to send immediate packet on every receive (bsc#1192606). - cifs: smbd: Invalidate and deregister memory registration on re-send for direct I/O (bsc#1164565). - cifs: smbd: Merge code to track pending packets (bsc#1192606). - cifs: smbd: Only queue work for error recovery on memory registration (bsc#1164565). - cifs: smbd: Properly process errors on ib_post_send (bsc#1192606). - cifs: smbd: Return -EAGAIN when transport is reconnecting (bsc#1164565). - cifs: smbd: Return -ECONNABORTED when trasnport is not in connected state (bsc#1164565). - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE (bsc#1164565). - cifs: smbd: Update receive credits before sending and deal with credits roll back on failure before sending (bsc#1192606). - cifs: sort interface list by speed (bsc#1192606). - cifs: Spelling s/EACCESS/EACCES/ (bsc#1192606). - cifs: split out dfs code from cifs_reconnect() (bsc#1192606, jsc#SLE-20042). - cifs: Standardize logging output (bsc#1192606). - cifs: store a pointer to the root dentry in cifs_sb_info once we have completed mounting the share (bsc#1192606). - cifs: style: replace one-element array with flexible-array (bsc#1192606). - cifs: support nested dfs links over reconnect (bsc#1192606, jsc#SLE-20042). - cifs: support share failover when remounting (bsc#1192606, jsc#SLE-20042). - cifs: switch build_path_from_dentry() to using dentry_path_raw() (bsc#1192606). - cifs: switch servers depending on binding state (bsc#1192606). - cifs: switch to new mount api (bsc#1192606). - cifs: To match file servers, make sure the server hostname matches (bsc#1192606). - cifs: Tracepoints and logs for tracing credit changes (bsc#1181507). - cifs: try harder to open new channels (bsc#1192606). - cifs: try opening channels after mounting (bsc#1192606). - cifs: uncomplicate printing the iocharset parameter (bsc#1192606). - cifs: Unlock on errors in cifs_swn_reconnect() (bsc#1192606). - cifs: update ctime and mtime during truncate (bsc#1192606). - cifs: update FSCTL definitions (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal module version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update internal version number (bsc#1192606). - cifs: update mnt_cifs_flags during reconfigure (bsc#1192606). - cifs: update new ACE pointer after populate_new_aces (bsc#1192606). - cifs: update super_operations to show_devname (bsc#1192606). - cifs: Use #define in cifs_dbg (bsc#1164565). - cifs: use %pd instead of messing with ->d_name (bsc#1192606). - cifs: use cifsInodeInfo->open_file_lock while iterating to avoid a panic (bnc#1151927 5.3.7). - cifs: Use common error handling code in smb2_ioctl_query_info() (bsc#1164565). - cifs: use compounding for open and first query-dir for readdir() (bsc#1164565). - cifs: use discard iterator to discard unneeded network data more efficiently (bsc#1192606). - cifs: use echo_interval even when connection not ready (bsc#1192606). - cifs: use existing handle for compound_op(OP_SET_INFO) when possible (bsc#1154355). - cifs: use helpers when parsing uid/gid mount options and validate them (bsc#1192606). - cifs: Use memdup_user() rather than duplicating its implementation (bsc#1164565). - cifs: use mod_delayed_work() for server->reconnect if already queued (bsc#1164565). - cifs: use PTR_ERR_OR_ZERO() to simplify code (bsc#1164565). - cifs: use SPDX-Licence-Identifier (bsc#1192606). - cifs: use the expiry output of dns_query to schedule next resolution (bsc#1192606). - cifs: use true,false for bool variable (bsc#1164565). - cifs: use true,false for bool variable (bsc#1164565). - cifs: warn and fail if trying to use rootfs without the config option (bsc#1192606). - cifs: Warn less noisily on default mount (bsc#1192606). - cifs: we do not allow changing username/password/unc/... during remount (bsc#1192606). - clk: imx: imx6ul: Move csi_sel mux to correct base register (git-fixes). - clk: ingenic: Fix bugs with divided dividers (git-fixes). - crypto: ecc - fix CRYPTO_DEFAULT_RNG dependency (git-fixes). - crypto: pcrypt - Delay write to padata->info (git-fixes). - crypto: s5p-sss - Add error handling in s5p_aes_probe() (git-fixes). - cxgb4: fix eeprom len when diagnostics not implemented (git-fixes). - dm: fix deadlock when swapping to encrypted device (bsc#1186332). - dm: remove unnecessary discard limits for raid0 and raid10 (bsc#1192320). - dmaengine: at_xdmac: fix AT_XDMAC_CC_PERID() macro (git-fixes). - dmaengine: dmaengine_desc_callback_valid(): Check for `callback_result` (git-fixes). - drm: panel-orientation-quirks: Add quirk for Aya Neo 2021 (git-fixes). - drm: panel-orientation-quirks: Add quirk for GPD Win3 (git-fixes). - drm: panel-orientation-quirks: Add quirk for KD Kurio Smart C15200 2-in-1 (git-fixes). - drm: panel-orientation-quirks: Add quirk for the Samsung Galaxy Book 10.6 (git-fixes). - drm: panel-orientation-quirks: Update the Lenovo Ideapad D330 quirk (v2) (git-fixes). - drm/amd/display: Set plane update flags for all planes in reset (git-fixes). - drm/amdgpu: fix set scaling mode Full/Full aspect/Center not works on vga and dvi connectors (git-fixes). - drm/msm: Do hw_init() before capturing GPU state (git-fixes). - drm/msm/a6xx: Allocate enough space for GMU registers (git-fixes). - drm/nouveau: hdmigv100.c: fix corrupted HDMI Vendor InfoFrame (git-fixes). - drm/nouveau/acr: fix a couple NULL vs IS_ERR() checks (git-fixes). - drm/nouveau/svm: Fix refcount leak bug and missing check against null bug (git-fixes). - drm/panel-orientation-quirks: add Valve Steam Deck (git-fixes). - drm/pl111: Actually fix CONFIG_VEXPRESS_CONFIG depends (git-fixes). - drm/plane-helper: fix uninitialized variable reference (git-fixes). - drm/vc4: fix error code in vc4_create_object() (git-fixes). - e1000e: Separate TGP board type from SPT (bsc#1192874). - EDAC/amd64: Handle three rank interleaving mode (bsc#1152489). - elfcore: correct reference to CONFIG_UML (git-fixes). - elfcore: fix building with clang (bsc#1169514). - ethtool: fix ethtool msg len calculation for pause stats (jsc#SLE-15075). - firmware: qcom_scm: Mark string array const (git-fixes). - fuse: release pipe buf after last use (bsc#1193318). - gve: Add netif_set_xps_queue call (bsc#1176940). - gve: Add rx buffer pagecnt bias (bsc#1176940). - gve: Allow pageflips on larger pages (bsc#1176940). - gve: Do lazy cleanup in TX path (git-fixes). - gve: DQO: avoid unused variable warnings (bsc#1176940). - gve: Switch to use napi_complete_done (git-fixes). - gve: Track RX buffer allocation failures (bsc#1176940). - hwmon: (k10temp) Add additional missing Zen2 and Zen3 APUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Add support for yellow carp (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Add support for Zen3 CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Create common functions and macros for Zen CPU families (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Define SVI telemetry and current factors for Zen2 CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Do not show Tdie for all Zen/Zen2/Zen3 CPU/APU (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) make some symbols static (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Remove residues of current and voltage (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Remove support for displaying voltage and current on Zen CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Reorganize and simplify temperature support detection (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Rework the temperature offset calculation (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) support Zen3 APUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Swap Tdie and Tctl on Family 17h CPUs (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Update documentation and add temp2_input info (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Update driver documentation (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - hwmon: (k10temp) Zen3 Ryzen Desktop CPUs support (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - i2c: cbus-gpio: set atomic transfer callback (git-fixes). - i2c: stm32f7: flush TX FIFO upon transfer errors (git-fixes). - i2c: stm32f7: recover the bus on access timeout (git-fixes). - i2c: stm32f7: stop dma transfer in case of NACK (git-fixes). - i2c: xlr: Fix a resource leak in the error handling path of 'xlr_i2c_probe()' (git-fixes). - i40e: Fix changing previously set num_queue_pairs for PFs (git-fixes). - i40e: Fix correct max_pkt_size on VF RX queue (git-fixes). - i40e: Fix creation of first queue by omitting it if is not power of two (git-fixes). - i40e: Fix display error code in dmesg (git-fixes). - i40e: Fix failed opcode appearing if handling messages from VF (git-fixes). - i40e: Fix NULL ptr dereference on VSI filter sync (git-fixes). - i40e: Fix ping is lost after configuring ADq on VF (git-fixes). - i40e: Fix pre-set max number of queues for VF (git-fixes). - i40e: Fix warning message and call stack during rmmod i40e driver (git-fixes). - iavf: check for null in iavf_fix_features (git-fixes). - iavf: do not clear a lock we do not hold (git-fixes). - iavf: Fix failure to exit out from last all-multicast mode (git-fixes). - iavf: Fix for setting queues to 0 (jsc#SLE-12877). - iavf: Fix for the false positive ASQ/ARQ errors while issuing VF reset (git-fixes). - iavf: Fix reporting when setting descriptor count (git-fixes). - iavf: Fix return of set the new channel count (jsc#SLE-12877). - iavf: free q_vectors before queues in iavf_disable_vf (git-fixes). - iavf: prevent accidental free of filter structure (git-fixes). - iavf: Prevent changing static ITR values if adaptive moderation is on (git-fixes). - iavf: Restore VLAN filters after link down (git-fixes). - iavf: validate pointers (git-fixes). - ibmvnic: drop bad optimization in reuse_rx_pools() (bsc#1193349 ltc#195568). - ibmvnic: drop bad optimization in reuse_tx_pools() (bsc#1193349 ltc#195568). - ice: avoid bpf_prog refcount underflow (jsc#SLE-7926). - ice: avoid bpf_prog refcount underflow (jsc#SLE-7926). - ice: Delete always true check of PF pointer (git-fixes). - ice: Fix not stopping Tx queues for VFs (jsc#SLE-7926). - ice: Fix VF true promiscuous mode (jsc#SLE-12878). - ice: fix vsi->txq_map sizing (jsc#SLE-7926). - ice: ignore dropped packets during init (git-fixes). - ice: Remove toggling of antispoof for VF trusted promiscuous mode (jsc#SLE-12878). - igb: fix netpoll exit with traffic (git-fixes). - igc: Remove _I_PHY_ID checking (bsc#1193169). - igc: Remove phy->type checking (bsc#1193169). - iio: imu: st_lsm6dsx: Avoid potential array overflow in st_lsm6dsx_set_odr() (git-fixes). - Input: iforce - fix control-message timeout (git-fixes). - iommu: Check if group is NULL before remove device (git-fixes). - iommu/amd: Relocate GAMSup check to early_enable_iommus (git-fixes). - iommu/amd: Remove iommu_init_ga() (git-fixes). - iommu/mediatek: Fix out-of-range warning with clang (git-fixes). - iommu/vt-d: Consolidate duplicate cache invaliation code (git-fixes). - iommu/vt-d: Fix incomplete cache flush in intel_pasid_tear_down_entry() (git-fixes). - iommu/vt-d: Update the virtual command related registers (git-fixes). - ipmi: Disable some operations during a panic (git-fixes). - kABI: dm: fix deadlock when swapping to encrypted device (bsc#1186332). - kabi: hide changes to struct uv_info (git-fixes). - lib/xz: Avoid overlapping memcpy() with invalid input with in-place decompression (git-fixes). - lib/xz: Validate the value before assigning it to an enum variable (git-fixes). - libata: fix checking of DMA state (git-fixes). - linux/parser.h: add include guards (bsc#1192606). - lpfc: Reintroduce old IRQ probe logic (bsc#1183897). - md: add md_submit_discard_bio() for submitting discard bio (bsc#1192320). - md: extend r10bio devs to raid disks (bsc#1192320). - md: fix a lock order reversal in md_alloc (git-fixes). - md: improve discard request for far layout (bsc#1192320). - md: improve raid10 discard request (bsc#1192320). - md: initialize r10_bio->read_slot before use (bsc#1192320). - md: pull the code that wait for blocked dev into one function (bsc#1192320). - md: Remove unnecessary rcu_dereference in raid10_handle_discard (bsc#1192320). - mdio: aspeed: Fix "Link is Down" issue (bsc#1176447). - media: imx: set a media_device bus_info string (git-fixes). - media: ipu3-imgu: imgu_fmt: Handle properly try (git-fixes). - media: ipu3-imgu: VIDIOC_QUERYCAP: Fix bus_info (git-fixes). - media: ir-kbd-i2c: improve responsiveness of hauppauge zilog receivers (git-fixes). - media: mceusb: return without resubmitting URB in case of -EPROTO error (git-fixes). - media: mt9p031: Fix corrupted frame after restarting stream (git-fixes). - media: netup_unidvb: handle interrupt properly according to the firmware (git-fixes). - media: rcar-csi2: Add checking to rcsi2_start_receiver() (git-fixes). - media: s5p-mfc: fix possible null-pointer dereference in s5p_mfc_probe() (git-fixes). - media: stm32: Potential NULL pointer dereference in dcmi_irq_thread() (git-fixes). - media: usb: dvd-usb: fix uninit-value bug in dibusb_read_eeprom_byte() (git-fixes). - media: uvcvideo: Return -EIO for control errors (git-fixes). - media: uvcvideo: Set capability in s_param (git-fixes). - media: uvcvideo: Set unique vdev name based in type (git-fixes). - memstick: r592: Fix a UAF bug when removing the driver (git-fixes). - MM: reclaim mustn't enter FS for swap-over-NFS (bsc#1191876). - mmc: dw_mmc: Dont wait for DRTO on Write RSP error (git-fixes). - mmc: winbond: do not build on M68K (git-fixes). - mtd: core: do not remove debugfs directory if device is in use (git-fixes). - mwifiex: Properly initialize private structure on interface type changes (git-fixes). - mwifiex: Read a PCI register after writing the TX ring write pointer (git-fixes). - mwifiex: Run SET_BSS_MODE when changing from P2P to STATION vif-type (git-fixes). - mwl8k: Fix use-after-free in mwl8k_fw_state_machine() (git-fixes). - net: asix: fix uninit value bugs (git-fixes). - net: bnx2x: fix variable dereferenced before check (git-fixes). - net: bridge: fix under estimation in br_get_linkxstats_size() (bsc#1176447). - net: cdc_ncm: Allow for dwNtbOutMaxSize to be unset or zero (git-fixes). - net: delete redundant function declaration (git-fixes). - net: hns3: change affinity_mask to numa node range (bsc#1154353). - net: hns3: fix misuse vf id and vport id in some logs (bsc#1154353). - net: hns3: remove check VF uc mac exist when set by PF (bsc#1154353). - net: hso: fix control-request directions (git-fixes). - net: hso: fix muxed tty registration (git-fixes). - net: linkwatch: fix failure to restore device state across suspend/resume (bsc#1192511). - net: mana: Allow setting the number of queues while the NIC is down (jsc#SLE-18779, bsc#1185726). - net: mana: Fix memory leak in mana_hwc_create_wq (jsc#SLE-18779, bsc#1185726). - net: mana: Fix spelling mistake "calledd" -> "called" (jsc#SLE-18779, bsc#1185726). - net: mana: Fix the netdev_err()'s vPort argument in mana_init_port() (jsc#SLE-18779, bsc#1185726). - net: mana: Improve the HWC error handling (jsc#SLE-18779, bsc#1185726). - net: mana: Support hibernation and kexec (jsc#SLE-18779, bsc#1185726). - net: mana: Use kcalloc() instead of kzalloc() (jsc#SLE-18779, bsc#1185726). - net: pegasus: fix uninit-value in get_interrupt_interval (git-fixes). - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() (git-fixes). - net: stmmac: add EHL 2.5Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL PSE0 PSE1 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL RGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add EHL SGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: add TGL SGMII 1Gbps PCI info and PCI ID (bsc#1192691). - net: stmmac: create dwmac-intel.c to contain all Intel platform (bsc#1192691). - net: stmmac: pci: Add HAPS support using GMAC5 (bsc#1192691). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (git-fixes). - net: usb: lan78xx: lan78xx_phy_init(): use PHY_POLL instead of "0" if no IRQ is available (git-fixes). - net: usb: Merge cpu_to_le32s + memcpy to put_unaligned_le32 (git-fixes). - net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() (git-fixes). - net/mlx5: E-Switch, return error if encap isn't supported (jsc#SLE-15172). - net/mlx5e: reset XPS on error flow if netdev isn't registered yet (git-fixes). - net/sched: sch_ets: do not peek at classes beyond 'nbands' (bsc#1176774). - netfilter: ctnetlink: do not erase error code with EINVAL (bsc#1176447). - netfilter: ctnetlink: fix filtering with CTA_TUPLE_REPLY (bsc#1176447). - netfilter: flowtable: fix IPv6 tunnel addr match (bsc#1176447). - NFC: add NCI_UNREG flag to eliminate the race (git-fixes). - NFC: pn533: Fix double free when pn533_fill_fragment_skbs() fails (git-fixes). - NFC: reorder the logic in nfc_{un,}register_device (git-fixes). - NFC: reorganize the functions in nci_request (git-fixes). - nfp: checking parameter process for rx-usecs/tx-usecs is invalid (git-fixes). - nfp: Fix memory leak in nfp_cpp_area_cache_add() (git-fixes). - NFS: do not alloc under spinlock in rpc_parse_scope_id (git-fixes). - NFS: Do not set NFS_INO_DATA_INVAL_DEFER and NFS_INO_INVALID_DATA (git-fixes). - NFS: do not take i_rwsem for swap IO (bsc#1191876). - NFS: Fix a regression in nfs_set_open_stateid_locked() (git-fixes). - NFS: Fix deadlocks in nfs_scan_commit_list() (git-fixes). - NFS: fix error handling of register_pernet_subsys() in init_nfsd() (git-fixes). - NFS: Fix up commit deadlocks (git-fixes). - NFS: Handle the NFSv4 READDIR 'dircount' hint being zero (git-fixes). - NFS: move generic_write_checks() call from nfs_file_direct_write() to nfs_file_write() (bsc#1191876). - nvme: add NO APST quirk for Kioxia device (git-fixes). - nvme: Skip not ready namespaces when revalidating paths (bsc#1191793 bsc#1192507 bsc#1192969). - objtool: Support Clang non-section symbols in ORC generation (bsc#1169514). - Pass consistent param->type to fs_parse() (bsc#1192606). [ ematsumiya: - drop the case fs_param_is_fd - leave .has_value in fs_parse_result so it does not break kabi - still set .has_value in fs_parse() for real kabi compatibility ] - PCI: Add PCI_EXP_DEVCTL_PAYLOAD_* macros (git-fixes). - PCI: Mark Atheros QCA6174 to avoid bus reset (git-fixes). - PCI/MSI: Deal with devices lying about their MSI mask capability (git-fixes). - perf: Correctly handle failed perf_get_aux_event() (git-fixes). - perf/x86/intel: Fix unchecked MSR access error caused by VLBR_EVENT (git-fixes). - perf/x86/intel/uncore: Fix Intel ICX IIO event constraints (git-fixes). - perf/x86/intel/uncore: Fix M2M event umask for Ice Lake server (git-fixes). - perf/x86/intel/uncore: Fix the scale of the IMC free-running events (git-fixes). - perf/x86/intel/uncore: Support extra IMC channel on Ice Lake server (git-fixes). - perf/x86/vlbr: Add c->flags to vlbr event constraints (git-fixes). - platform/x86: hp_accel: Fix an error handling path in 'lis3lv02d_probe()' (git-fixes). - platform/x86: wmi: do not fail if disabling fails (git-fixes). - PM: hibernate: Get block device exclusively in swsusp_check() (git-fixes). - PM: hibernate: use correct mode for swsusp_close() (git-fixes). - pnfs/flexfiles: Fix misplaced barrier in nfs4_ff_layout_prepare_ds (git-fixes). - powerpc: fix unbalanced node refcount in check_kvm_guest() (jsc#SLE-15869 jsc#SLE-16321 git-fixes). - powerpc/iommu: Report the correct most efficient DMA mask for PCI devices (git-fixes). - powerpc/paravirt: correct preempt debug splat in vcpu_is_preempted() (bsc#1181148 ltc#190702 git-fixes). - powerpc/paravirt: vcpu_is_preempted() commentary (bsc#1181148 ltc#190702 git-fixes). - powerpc/perf: Fix cycles/instructions as PM_CYC/PM_INST_CMPL in power10 (jsc#SLE-13513 git-fixes). - powerpc/pseries: Move some PAPR paravirt functions to their own file (bsc#1181148 ltc#190702 git-fixes). - powerpc/watchdog: Avoid holding wd_smp_lock over printk and smp_send_nmi_ipi (bsc#1187541 ltc#192129). - powerpc/watchdog: Fix missed watchdog reset due to memory ordering race (bsc#1187541 ltc#192129). - powerpc/watchdog: Fix wd_smp_last_reset_tb reporting (bsc#1187541 ltc#192129). - powerpc/watchdog: read TB close to where it is used (bsc#1187541 ltc#192129). - powerpc/watchdog: tighten non-atomic read-modify-write access (bsc#1187541 ltc#192129). - printk: Remove printk.h inclusion in percpu.h (bsc#1192987). - qede: validate non LSO skb length (git-fixes). - r8152: limit the RX buffer size of RTL8153A for USB 2.0 (git-fixes). - r8169: Add device 10ec:8162 to driver r8169 (git-fixes). - RDMA/bnxt_re: Update statistics counter name (jsc#SLE-16649). - recordmcount.pl: fix typo in s390 mcount regex (bsc#1192267). - recordmcount.pl: look for jgnop instruction as well as bcrl on s390 (bsc#1192267). - reset: socfpga: add empty driver allowing consumers to probe (git-fixes). - ring-buffer: Protect ring_buffer_reset() from reentrancy (bsc#1179960). - rpm/*.spec.in: use buildroot macro instead of env variable The RPM_BUILD_ROOT variable is considered deprecated over a buildroot macro. future proof the spec files. - rpm/kernel-binary.spec.in: do not strip vmlinux again (bsc#1193306) After usrmerge, vmlinux file is not named vmlinux-lt;version>, but simply vmlinux. And this is not reflected in STRIP_KEEP_SYMTAB we set. So fix this by removing the dash... - rpm/kernel-obs-build.spec.in: move to zstd for the initrd Newer distros have capability to decompress zstd, which provides a 2-5% better compression ratio at very similar cpu overhead. Plus this tests the zstd codepaths now as well. - rt2x00: do not mark device gone on EPROTO errors during start (git-fixes). - rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() (bsc#1154353 bnc#1151927 5.3.9). - s390: mm: Fix secure storage access exception handling (git-fixes). - s390/bpf: Fix branch shortening during codegen pass (bsc#1193993). - s390/uv: fully validate the VMA before calling follow_page() (git-fixes). - scsi: iscsi: Adjust iface sysfs attr detection (git-fixes). - scsi: lpfc: Add additional debugfs support for CMF (bsc#1194266). - scsi: lpfc: Adjust CMF total bytes and rxmonitor (bsc#1194266). - scsi: lpfc: Cap CMF read bytes to MBPI (bsc#1194266). - scsi: lpfc: Change return code on I/Os received during link bounce (bsc#1194266). - scsi: lpfc: Fix leaked lpfc_dmabuf mbox allocations with NPIV (bsc#1194266). - scsi: lpfc: Fix lpfc_force_rscn ndlp kref imbalance (bsc#1194266). - scsi: lpfc: Fix non-recovery of remote ports following an unsolicited LOGO (bsc#1189126). - scsi: lpfc: Fix NPIV port deletion crash (bsc#1194266). - scsi: lpfc: Trigger SLI4 firmware dump before doing driver cleanup (bsc#1194266). - scsi: lpfc: Update lpfc version to 14.0.0.4 (bsc#1194266). - scsi: mpi3mr: Fix duplicate device entries when scanning through sysfs (git-fixes). - scsi: mpt3sas: Fix kernel panic during drive powercycle test (git-fixes). - scsi: mpt3sas: Fix system going into read-only mode (git-fixes). - scsi: pm80xx: Do not call scsi_remove_host() in pm8001_alloc() (git-fixes). - scsi: qla2xxx: edif: Fix app start delay (git-fixes). - scsi: qla2xxx: edif: Fix app start fail (git-fixes). - scsi: qla2xxx: edif: Fix EDIF bsg (git-fixes). - scsi: qla2xxx: edif: Fix off by one bug in qla_edif_app_getfcinfo() (git-fixes). - scsi: qla2xxx: edif: Flush stale events and msgs on session down (git-fixes). - scsi: qla2xxx: edif: Increase ELS payload (git-fixes). - scsi: qla2xxx: Fix gnl list corruption (git-fixes). - scsi: qla2xxx: Fix mailbox direction flags in qla2xxx_get_adapter_id() (git-fixes). - scsi: qla2xxx: Format log strings only if needed (git-fixes). - scsi: qla2xxx: Relogin during fabric disturbance (git-fixes). - scsi: qla2xxx: Turn off target reset during issue_lip (git-fixes). - serial: 8250_pci: Fix ACCES entries in pci_serial_quirks array (git-fixes). - serial: 8250_pci: rewrite pericom_do_set_divisor() (git-fixes). - serial: 8250: Fix RTS modem control while in rs485 mode (git-fixes). - serial: core: fix transmit-buffer reset and memleak (git-fixes). - smb2: clarify rc initialization in smb2_reconnect (bsc#1192606). - smb2: fix use-after-free in smb2_ioctl_query_info() (bsc#1192606). - smb3: add additional null check in SMB2_ioctl (bsc#1192606). - smb3: add additional null check in SMB2_open (bsc#1192606). - smb3: add additional null check in SMB2_tcon (bsc#1192606). - smb3: add additional null check in SMB311_posix_mkdir (bsc#1192606). - smb3: Add debug message for new file creation with idsfromsid mount option (bsc#1192606). - smb3: add debug messages for closing unmatched open (bsc#1164565). - smb3: add defines for new crypto algorithms (bsc#1192606). - smb3: Add defines for new information level, FileIdInformation (bsc#1164565). - smb3: add defines for new signing negotiate context (bsc#1192606). - smb3: add dynamic trace point to trace when credits obtained (bsc#1181507). - smb3: add dynamic trace points for socket connection (bsc#1192606). - smb3: add dynamic tracepoints for flush and close (bsc#1164565). - smb3: add indatalen that can be a non-zero value to calculation of credit charge in smb2 ioctl (bsc#1192606). - smb3: add missing flag definitions (bsc#1164565). - smb3: Add missing reparse tags (bsc#1164565). - smb3: add missing worker function for SMB3 change notify (bsc#1164565). - smb3: add mount option to allow forced caching of read only share (bsc#1164565). - smb3: add mount option to allow RW caching of share accessed by only 1 client (bsc#1164565). - smb3: Add new compression flags (bsc#1192606). - smb3: Add new info level for query directory (bsc#1192606). - smb3: add new module load parm enable_gcm_256 (bsc#1192606). - smb3: add new module load parm require_gcm_256 (bsc#1192606). - smb3: Add new parm "nodelete" (bsc#1192606). - smb3: add one more dynamic tracepoint missing from strict fsync path (bsc#1164565). - smb3: add rasize mount parameter to improve readahead performance (bsc#1192606). - smb3: add some missing definitions from MS-FSCC (bsc#1192606). - smb3: add some more descriptive messages about share when mounting cache=ro (bsc#1164565). - smb3: Add support for getting and setting SACLs (bsc#1192606). - smb3: Add support for lookup with posix extensions query info (bsc#1192606). - smb3: Add support for negotiating signing algorithm (bsc#1192606). - smb3: Add support for query info using posix extensions (level 100) (bsc#1192606). - smb3: add support for recognizing WSL reparse tags (bsc#1192606). - smb3: Add support for SMB311 query info (non-compounded) (bsc#1192606). - smb3: add support for stat of WSL reparse points for special file types (bsc#1192606). - smb3: add support for using info level for posix extensions query (bsc#1192606). - smb3: Add tracepoints for new compound posix query info (bsc#1192606). - smb3: Additional compression structures (bsc#1192606). - smb3: allow decryption keys to be dumped by admin for debugging (bsc#1164565). - smb3: allow disabling requesting leases (bnc#1151927 5.3.4). - smb3: allow dumping GCM256 keys to improve debugging of encrypted shares (bsc#1192606). - smb3: allow dumping keys for multiuser mounts (bsc#1192606). - smb3: allow parallelizing decryption of reads (bsc#1164565). - smb3: allow skipping signature verification for perf sensitive configurations (bsc#1164565). - smb3: allow uid and gid owners to be set on create with idsfromsid mount option (bsc#1192606). - smb3: avoid confusing warning message on mount to Azure (bsc#1192606). - smb3: Avoid Mid pending list corruption (bsc#1192606). - smb3: Backup intent flag missing from some more ops (bsc#1164565). - smb3: Call cifs reconnect from demultiplex thread (bsc#1192606). - smb3: change noisy error message to FYI (bsc#1192606). - smb3: cleanup some recent endian errors spotted by updated sparse (bsc#1164565). - smb3: correct server pointer dereferencing check to be more consistent (bsc#1192606). - smb3: correct smb3 ACL security descriptor (bsc#1192606). - smb3: default to minimum of two channels when multichannel specified (bsc#1192606). - smb3: display max smb3 requests in flight at any one time (bsc#1164565). - smb3: do not attempt multichannel to server which does not support it (bsc#1192606). - smb3: do not error on fsync when readonly (bsc#1192606). - smb3: do not fail if no encryption required but server does not support it (bsc#1192606). - smb3: do not log warning message if server does not populate salt (bsc#1192606). - smb3: do not setup the fscache_super_cookie until fsinfo initialized (bsc#1192606). - smb3: do not try to cache root directory if dir leases not supported (bsc#1192606). - smb3: dump in_send and num_waiters stats counters by default (bsc#1164565). - smb3: enable negotiating stronger encryption by default (bsc#1192606). - smb3: enable offload of decryption of large reads via mount option (bsc#1164565). - smb3: enable swap on SMB3 mounts (bsc#1192606). - smb3: extend fscache mount volume coherency check (bsc#1192606). - smb3: fix access denied on change notify request to some servers (bsc#1192606). - smb3: fix cached file size problems in duplicate extents (reflink) (bsc#1192606). - smb3: Fix crash in SMB2_open_init due to uninitialized field in compounding path (bsc#1164565). - smb3: fix crediting for compounding when only one request in flight (bsc#1181507). - smb3: fix default permissions on new files when mounting with modefromsid (bsc#1164565). - smb3: Fix ids returned in POSIX query dir (bsc#1192606). - smb3: fix incorrect number of credits when ioctl MaxOutputResponse > 64K (bsc#1192606). - smb3: fix leak in "open on server" perf counter (bnc#1151927 5.3.4). - smb3: Fix mkdir when idsfromsid configured on mount (bsc#1192606). - smb3: fix mode passed in on create for modetosid mount option (bsc#1164565). - smb3: fix mount failure to some servers when compression enabled (bsc#1192606). - smb3: Fix out-of-bounds bug in SMB2_negotiate() (bsc#1183540). - smb3: fix performance regression with setting mtime (bsc#1164565). - smb3: Fix persistent handles reconnect (bnc#1151927 5.3.11). - smb3: fix posix extensions mount option (bsc#1192606). - smb3: fix possible access to uninitialized pointer to DACL (bsc#1192606). - smb3: fix potential null dereference in decrypt offload (bsc#1164565). - smb3: fix problem with null cifs super block with previous patch (bsc#1164565). - smb3: fix readpage for large swap cache (bsc#1192606). - smb3: fix refcount underflow warning on unmount when no directory leases (bsc#1164565). - smb3: Fix regression in time handling (bsc#1164565). - smb3: fix signing verification of large reads (bsc#1154355). - smb3: fix stat when special device file and mounted with modefromsid (bsc#1192606). - smb3: fix typo in compression flag (bsc#1192606). - smb3: fix typo in header file (bsc#1192606). - smb3: fix typo in mount options displayed in /proc/mounts (bsc#1192606). - smb3: fix uninitialized value for port in witness protocol move (bsc#1192606). - smb3: fix unmount hang in open_shroot (bnc#1151927 5.3.4). - smb3: fix unneeded error message on change notify (bsc#1192606). - smb3: Handle error case during offload read path (bsc#1192606). - smb3: Honor 'handletimeout' flag for multiuser mounts (bsc#1176558). - smb3: Honor 'posix' flag for multiuser mounts (bsc#1176559). - smb3: Honor 'seal' flag for multiuser mounts (bsc#1176545). - smb3: Honor lease disabling for multiuser mounts (git-fixes). - smb3: Honor persistent/resilient handle flags for multiuser mounts (bsc#1176546). - smb3: if max_channels set to more than one channel request multichannel (bsc#1192606). - smb3: improve check for when we send the security descriptor context on create (bsc#1164565). - smb3: improve handling of share deleted (and share recreated) (bsc#1154355). - smb3: incorrect file id in requests compounded with open (bsc#1192606). - smb3: Incorrect size for netname negotiate context (bsc#1154355). - smb3: limit noisy error (bsc#1192606). - smb3: log warning if CSC policy conflicts with cache mount option (bsc#1164565). - smb3: Minor cleanup of protocol definitions (bsc#1192606). - smb3: minor update to compression header definitions (bsc#1192606). - smb3: missing ACL related flags (bsc#1164565). - smb3: negotiate current dialect (SMB3.1.1) when version 3 or greater requested (bsc#1192606). - smb3: only offload decryption of read responses if multiple requests (bsc#1164565). - smb3: pass mode bits into create calls (bsc#1164565). - smb3: prevent races updating CurrentMid (bsc#1192606). - smb3: print warning if server does not support requested encryption type (bsc#1192606). - smb3: print warning once if posix context returned on open (bsc#1164565). - smb3: query attributes on file close (bsc#1164565). - smb3: rc uninitialized in one fallocate path (bsc#1192606). - smb3: remind users that witness protocol is experimental (bsc#1192606). - smb3: remove confusing dmesg when mounting with encryption ("seal") (bsc#1164565). - smb3: remove confusing mount warning when no SPNEGO info on negprot rsp (bsc#1192606). - smb3: remove dead code for non compounded posix query info (bsc#1192606). - smb3: remove noisy debug message and minor cleanup (bsc#1164565). - smb3: remove overly noisy debug line in signing errors (bsc#1192606). - smb3: remove static checker warning (bsc#1192606). - smb3: remove trivial dfs compile warning (bsc#1192606, jsc#SLE-20042). - smb3: remove two unused variables (bsc#1192606). - smb3: remove unused flag passed into close functions (bsc#1164565). - smb3: rename nonces used for GCM and CCM encryption (bsc#1192606). - smb3: Resolve data corruption of TCP server info fields (bsc#1192606). - smb3: set COMPOUND_FID to FileID field of subsequent compound request (bsc#1192606). - smb3: set gcm256 when requested (bsc#1192606). - smb3: smbdirect support can be configured by default (bsc#1192606). - smb3: update comments clarifying SPNEGO info in negprot response (bsc#1192606). - smb3: update protocol header definitions based to include new flags (bsc#1192606). - smb3: update structures for new compression protocol definitions (bsc#1192606). - smb3: use SMB2_SIGNATURE_SIZE define (bsc#1192606). - smb3: warn on confusing error scenario with sec=krb5 (bsc#1176548). - smb3: when mounting with multichannel include it in requested capabilities (bsc#1192606). - smbdirect: missing rc checks while waiting for rdma events (bsc#1192606). - soc/tegra: Fix an error handling path in tegra_powergate_power_up() (git-fixes). - soc/tegra: pmc: Fix imbalanced clock disabling in error code path (git-fixes). - spi: bcm-qspi: Fix missing clk_disable_unprepare() on error in bcm_qspi_probe() (git-fixes). - spi: spl022: fix Microwire full duplex mode (git-fixes). - SUNRPC: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC: async tasks mustn't block waiting for memory (bsc#1191876). - SUNRPC: improve 'swap' handling: scheduling and PF_MEMALLOC (bsc#1191876). - SUNRPC: remove scheduling boost for "SWAPPER" tasks (bsc#1191876). - supported.conf: add pwm-rockchip References: jsc#SLE-22615 - swiotlb-xen: avoid double free (git-fixes). - swiotlb: Fix the type of index (git-fixes). - TCON Reconnect during STATUS_NETWORK_NAME_DELETED (bsc#1192606). - tlb: mmu_gather: add tlb_flush_*_range APIs - tracing: Add length protection to histogram string copies (git-fixes). - tracing: Change STR_VAR_MAX_LEN (git-fixes). - tracing: Check pid filtering when creating events (git-fixes). - tracing: Fix pid filtering when triggers are attached (git-fixes). - tracing: use %ps format string to print symbols (git-fixes). - tracing/histogram: Do not copy the fixed-size char array field over the field size (git-fixes). - tty: hvc: replace BUG_ON() with negative return value (git-fixes). - tty: serial: msm_serial: Deactivate RX DMA for polling support (git-fixes). - tty: tty_buffer: Fix the softlockup issue in flush_to_ldisc (git-fixes). - update structure definitions from updated protocol documentation (bsc#1192606). - usb: Add compatibility quirk flags for iODD 2531/2541 (git-fixes). - usb: chipidea: ci_hdrc_imx: fix potential error pointer dereference in probe (git-fixes). - usb: dwc2: gadget: Fix ISOC flow for elapsed frames (git-fixes). - usb: dwc2: hcd_queue: Fix use of floating point literal (git-fixes). - usb: host: ohci-tmio: check return value after calling platform_get_resource() (git-fixes). - usb: musb: tusb6010: check return value after calling platform_get_resource() (git-fixes). - usb: serial: option: add Fibocom FM101-GL variants (git-fixes). - usb: serial: option: add Telit LE910S1 0x9200 composition (git-fixes). - usb: typec: fusb302: Fix masking of comparator and bc_lvl interrupts (git-fixes). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (git-fixes). - usb: typec: tcpm: Wait in SNK_DEBOUNCED until disconnect (git-fixes). - usb: xhci: Enable runtime-pm by default on AMD Yellow Carp platform (git-fixes). - vfs: do not parse forbidden flags (bsc#1192606). - wireguard: allowedips: add missing __rcu annotation to satisfy sparse (git-fixes). - wireguard: device: reset peer src endpoint when netns exits (git-fixes). - wireguard: ratelimiter: use kvcalloc() instead of kvzalloc() (git-fixes). - wireguard: receive: drop handshakes if queue lock is contended (git-fixes). - wireguard: receive: use ring buffer for incoming handshakes (git-fixes). - wireguard: selftests: actually test for routing loops (git-fixes). - wireguard: selftests: increase default dmesg log size (git-fixes). - x86/amd_nb: Add AMD family 19h model 50h PCI ids (jsc#SLE-17823 jsc#SLE-23139 jsc#ECO-3666). - x86/cpu: Fix migration safety with X86_BUG_NULL_SEL (bsc#1152489). - x86/efi: Restore Firmware IDT before calling ExitBootServices() (git-fixes). - x86/entry: Add a fence for kernel entry SWAPGS in paranoid_entry() (bsc#1178134). - x86/mpx: Disable MPX for 32-bit userland (bsc#1193139). - x86/pkey: Fix undefined behaviour with PKRU_WD_BIT (bsc#1152489). - x86/pvh: add prototype for xen_pvh_init() (git-fixes). - x86/sev: Allow #VC exceptions on the VC2 stack (git-fixes). - x86/sev: Fix SEV-ES INS/OUTS instructions for word, dword, and qword (bsc#1178134). - x86/sev: Fix stack type check in vc_switch_off_ist() (git-fixes). - x86/xen: Add xenpv_restore_regs_and_return_to_usermode() (bsc#1152489). - x86/Xen: swap NX determination and GDT setup on BSP (git-fixes). - xen: sync include/xen/interface/io/ring.h with Xen's newest version (git-fixes). - xen/blkfront: do not take local copy of a request from the ring page (git-fixes). - xen/blkfront: do not trust the backend response data blindly (git-fixes). - xen/blkfront: read response from backend only once (git-fixes). - xen/netfront: disentangle tx_skb_freelist (git-fixes). - xen/netfront: do not read data from request on the ring page (git-fixes). - xen/netfront: do not trust the backend response data blindly (git-fixes). - xen/netfront: read response from backend only once (git-fixes). - xen/privcmd: fix error handling in mmap-resource processing (git-fixes). - xen/pvh: add missing prototype to header (git-fixes). - xen/x86: fix PV trap handling on secondary processors (git-fixes). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (bsc#1192569). - xhci: Fix commad ring abort, write all 64 bits to CRCR register (git-fixes). - xhci: Fix USB 3.1 enumeration issues by increasing roothub power-on-good delay (git-fixes). - zram: fix return value on writeback_store (git-fixes). - zram: off by one in read_block_state() (git-fixes). cluster-md-kmp-azure-5.3.18-38.34.1.x86_64.rpm True dlm-kmp-azure-5.3.18-38.34.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-38.34.1.x86_64.rpm True kernel-azure-5.3.18-38.34.1.nosrc.rpm True kernel-azure-5.3.18-38.34.1.x86_64.rpm True kernel-azure-devel-5.3.18-38.34.1.x86_64.rpm True kernel-azure-extra-5.3.18-38.34.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-38.34.1.x86_64.rpm True kernel-azure-optional-5.3.18-38.34.1.x86_64.rpm True kernel-devel-azure-5.3.18-38.34.1.noarch.rpm True kernel-source-azure-5.3.18-38.34.1.noarch.rpm True kernel-source-azure-5.3.18-38.34.1.src.rpm True kernel-syms-azure-5.3.18-38.34.1.src.rpm True kernel-syms-azure-5.3.18-38.34.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-38.34.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-38.34.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-38.34.1.x86_64.rpm True openSUSE-SLE-15.3-2022-93 important SUSE Updates openSUSE-SLE 15.3 This update for openssl-1_1 fixes the following issues: - Add RSA_get0_pss_params() accessor that is used by nodejs16 and provide openssl-has-RSA_get0_pss_params (bsc#1192489) libopenssl-1_1-devel-1.1.1d-11.38.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1d-11.38.1.x86_64.rpm libopenssl1_1-1.1.1d-11.38.1.x86_64.rpm libopenssl1_1-32bit-1.1.1d-11.38.1.x86_64.rpm libopenssl1_1-hmac-1.1.1d-11.38.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1d-11.38.1.x86_64.rpm openssl-1_1-1.1.1d-11.38.1.src.rpm openssl-1_1-1.1.1d-11.38.1.x86_64.rpm openssl-1_1-doc-1.1.1d-11.38.1.noarch.rpm libopenssl-1_1-devel-1.1.1d-11.38.1.s390x.rpm libopenssl1_1-1.1.1d-11.38.1.s390x.rpm libopenssl1_1-hmac-1.1.1d-11.38.1.s390x.rpm openssl-1_1-1.1.1d-11.38.1.s390x.rpm libopenssl-1_1-devel-1.1.1d-11.38.1.ppc64le.rpm libopenssl1_1-1.1.1d-11.38.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1d-11.38.1.ppc64le.rpm openssl-1_1-1.1.1d-11.38.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1d-11.38.1.aarch64.rpm libopenssl1_1-1.1.1d-11.38.1.aarch64.rpm libopenssl1_1-hmac-1.1.1d-11.38.1.aarch64.rpm openssl-1_1-1.1.1d-11.38.1.aarch64.rpm openSUSE-SLE-15.3-2022-43 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-3997: Fixed an uncontrolled recursion in systemd's systemd-tmpfiles which could cause a minor denial of service. (bsc#1194178) libsystemd0-246.16-7.33.1.x86_64.rpm True libsystemd0-32bit-246.16-7.33.1.x86_64.rpm True libudev-devel-246.16-7.33.1.x86_64.rpm True libudev-devel-32bit-246.16-7.33.1.x86_64.rpm True libudev1-246.16-7.33.1.x86_64.rpm True libudev1-32bit-246.16-7.33.1.x86_64.rpm True nss-myhostname-246.16-7.33.1.x86_64.rpm True nss-myhostname-32bit-246.16-7.33.1.x86_64.rpm True nss-mymachines-246.16-7.33.1.x86_64.rpm True nss-mymachines-32bit-246.16-7.33.1.x86_64.rpm True nss-resolve-246.16-7.33.1.x86_64.rpm True nss-systemd-246.16-7.33.1.x86_64.rpm True systemd-246.16-7.33.1.src.rpm True systemd-246.16-7.33.1.x86_64.rpm True systemd-32bit-246.16-7.33.1.x86_64.rpm True systemd-container-246.16-7.33.1.x86_64.rpm True systemd-coredump-246.16-7.33.1.x86_64.rpm True systemd-devel-246.16-7.33.1.x86_64.rpm True systemd-doc-246.16-7.33.1.x86_64.rpm True systemd-journal-remote-246.16-7.33.1.x86_64.rpm True systemd-lang-246.16-7.33.1.noarch.rpm True systemd-logger-246.16-7.33.1.x86_64.rpm True systemd-network-246.16-7.33.1.x86_64.rpm True systemd-sysvinit-246.16-7.33.1.x86_64.rpm True udev-246.16-7.33.1.x86_64.rpm True libsystemd0-246.16-7.33.1.s390x.rpm True libudev-devel-246.16-7.33.1.s390x.rpm True libudev1-246.16-7.33.1.s390x.rpm True nss-myhostname-246.16-7.33.1.s390x.rpm True nss-mymachines-246.16-7.33.1.s390x.rpm True nss-resolve-246.16-7.33.1.s390x.rpm True nss-systemd-246.16-7.33.1.s390x.rpm True systemd-246.16-7.33.1.s390x.rpm True systemd-container-246.16-7.33.1.s390x.rpm True systemd-coredump-246.16-7.33.1.s390x.rpm True systemd-devel-246.16-7.33.1.s390x.rpm True systemd-doc-246.16-7.33.1.s390x.rpm True systemd-journal-remote-246.16-7.33.1.s390x.rpm True systemd-logger-246.16-7.33.1.s390x.rpm True systemd-network-246.16-7.33.1.s390x.rpm True systemd-sysvinit-246.16-7.33.1.s390x.rpm True udev-246.16-7.33.1.s390x.rpm True libsystemd0-246.16-7.33.1.ppc64le.rpm True libudev-devel-246.16-7.33.1.ppc64le.rpm True libudev1-246.16-7.33.1.ppc64le.rpm True nss-myhostname-246.16-7.33.1.ppc64le.rpm True nss-mymachines-246.16-7.33.1.ppc64le.rpm True nss-resolve-246.16-7.33.1.ppc64le.rpm True nss-systemd-246.16-7.33.1.ppc64le.rpm True systemd-246.16-7.33.1.ppc64le.rpm True systemd-container-246.16-7.33.1.ppc64le.rpm True systemd-coredump-246.16-7.33.1.ppc64le.rpm True systemd-devel-246.16-7.33.1.ppc64le.rpm True systemd-doc-246.16-7.33.1.ppc64le.rpm True systemd-journal-remote-246.16-7.33.1.ppc64le.rpm True systemd-logger-246.16-7.33.1.ppc64le.rpm True systemd-network-246.16-7.33.1.ppc64le.rpm True systemd-sysvinit-246.16-7.33.1.ppc64le.rpm True udev-246.16-7.33.1.ppc64le.rpm True libsystemd0-246.16-7.33.1.aarch64.rpm True libudev-devel-246.16-7.33.1.aarch64.rpm True libudev1-246.16-7.33.1.aarch64.rpm True nss-myhostname-246.16-7.33.1.aarch64.rpm True nss-mymachines-246.16-7.33.1.aarch64.rpm True nss-resolve-246.16-7.33.1.aarch64.rpm True nss-systemd-246.16-7.33.1.aarch64.rpm True systemd-246.16-7.33.1.aarch64.rpm True systemd-container-246.16-7.33.1.aarch64.rpm True systemd-coredump-246.16-7.33.1.aarch64.rpm True systemd-devel-246.16-7.33.1.aarch64.rpm True systemd-doc-246.16-7.33.1.aarch64.rpm True systemd-journal-remote-246.16-7.33.1.aarch64.rpm True systemd-logger-246.16-7.33.1.aarch64.rpm True systemd-network-246.16-7.33.1.aarch64.rpm True systemd-sysvinit-246.16-7.33.1.aarch64.rpm True udev-246.16-7.33.1.aarch64.rpm True openSUSE-SLE-15.3-2022-69 low SUSE Updates openSUSE-SLE 15.3 This update for libmspack fixes the following issues: - CVE-2018-18586: Fixed directory traversal in chmextract by adding anti "../" and leading slash protection (bsc#1113040). libmspack-0.6-3.14.1.src.rpm libmspack-devel-0.6-3.14.1.x86_64.rpm libmspack0-0.6-3.14.1.x86_64.rpm libmspack0-32bit-0.6-3.14.1.x86_64.rpm mspack-tools-0.6-3.14.1.x86_64.rpm libmspack-devel-0.6-3.14.1.s390x.rpm libmspack0-0.6-3.14.1.s390x.rpm mspack-tools-0.6-3.14.1.s390x.rpm libmspack-devel-0.6-3.14.1.ppc64le.rpm libmspack0-0.6-3.14.1.ppc64le.rpm mspack-tools-0.6-3.14.1.ppc64le.rpm libmspack-devel-0.6-3.14.1.aarch64.rpm libmspack0-0.6-3.14.1.aarch64.rpm mspack-tools-0.6-3.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-62 important SUSE Updates openSUSE-SLE 15.3 This update for openexr fixes the following issues: - CVE-2021-45942: Fixed heap-based buffer overflow in Imf_3_1:LineCompositeTask:execute. (bsc#1194333) libIlmImf-2_2-23-2.2.1-3.41.1.x86_64.rpm libIlmImf-2_2-23-32bit-2.2.1-3.41.1.x86_64.rpm libIlmImfUtil-2_2-23-2.2.1-3.41.1.x86_64.rpm libIlmImfUtil-2_2-23-32bit-2.2.1-3.41.1.x86_64.rpm openexr-2.2.1-3.41.1.src.rpm openexr-2.2.1-3.41.1.x86_64.rpm openexr-devel-2.2.1-3.41.1.x86_64.rpm openexr-doc-2.2.1-3.41.1.x86_64.rpm libIlmImf-2_2-23-2.2.1-3.41.1.s390x.rpm libIlmImfUtil-2_2-23-2.2.1-3.41.1.s390x.rpm openexr-2.2.1-3.41.1.s390x.rpm openexr-devel-2.2.1-3.41.1.s390x.rpm openexr-doc-2.2.1-3.41.1.s390x.rpm libIlmImf-2_2-23-2.2.1-3.41.1.ppc64le.rpm libIlmImfUtil-2_2-23-2.2.1-3.41.1.ppc64le.rpm openexr-2.2.1-3.41.1.ppc64le.rpm openexr-devel-2.2.1-3.41.1.ppc64le.rpm openexr-doc-2.2.1-3.41.1.ppc64le.rpm libIlmImf-2_2-23-2.2.1-3.41.1.aarch64.rpm libIlmImfUtil-2_2-23-2.2.1-3.41.1.aarch64.rpm openexr-2.2.1-3.41.1.aarch64.rpm openexr-devel-2.2.1-3.41.1.aarch64.rpm openexr-doc-2.2.1-3.41.1.aarch64.rpm openSUSE-SLE-15.3-2022-182 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: - Update to version 2.34.3 (bsc#1194019). - CVE-2021-30887: Fixed logic issue allowing unexpectedly unenforced Content Security Policy when processing maliciously crafted web content. - CVE-2021-30890: Fixed logic issue allowing universal cross site scripting when processing maliciously crafted web content. libjavascriptcoregtk-4_0-18-2.34.3-23.3.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.34.3-23.3.x86_64.rpm libwebkit2gtk-4_0-37-2.34.3-23.3.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.34.3-23.3.x86_64.rpm libwebkit2gtk3-lang-2.34.3-23.3.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3.x86_64.rpm typelib-1_0-WebKit2-4_0-2.34.3-23.3.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3.x86_64.rpm webkit-jsc-4-2.34.3-23.3.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.34.3-23.3.x86_64.rpm webkit2gtk3-2.34.3-23.3.src.rpm webkit2gtk3-devel-2.34.3-23.3.x86_64.rpm webkit2gtk3-minibrowser-2.34.3-23.3.x86_64.rpm libjavascriptcoregtk-4_0-18-2.34.3-23.3.s390x.rpm libwebkit2gtk-4_0-37-2.34.3-23.3.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3.s390x.rpm typelib-1_0-WebKit2-4_0-2.34.3-23.3.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3.s390x.rpm webkit-jsc-4-2.34.3-23.3.s390x.rpm webkit2gtk-4_0-injected-bundles-2.34.3-23.3.s390x.rpm webkit2gtk3-devel-2.34.3-23.3.s390x.rpm webkit2gtk3-minibrowser-2.34.3-23.3.s390x.rpm libjavascriptcoregtk-4_0-18-2.34.3-23.3.ppc64le.rpm libwebkit2gtk-4_0-37-2.34.3-23.3.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.34.3-23.3.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3.ppc64le.rpm webkit-jsc-4-2.34.3-23.3.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.34.3-23.3.ppc64le.rpm webkit2gtk3-devel-2.34.3-23.3.ppc64le.rpm webkit2gtk3-minibrowser-2.34.3-23.3.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.34.3-23.3.aarch64.rpm libwebkit2gtk-4_0-37-2.34.3-23.3.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.34.3-23.3.aarch64.rpm typelib-1_0-WebKit2-4_0-2.34.3-23.3.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.3-23.3.aarch64.rpm webkit-jsc-4-2.34.3-23.3.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.34.3-23.3.aarch64.rpm webkit2gtk3-devel-2.34.3-23.3.aarch64.rpm webkit2gtk3-minibrowser-2.34.3-23.3.aarch64.rpm openSUSE-SLE-15.3-2022-188 moderate SUSE Updates openSUSE-SLE 15.3 This update for hunspell fixes the following issues: - Fix myspell english dictionary not being installed (bsc#1193627) hunspell-1.6.2-3.8.1.src.rpm hunspell-1.6.2-3.8.1.x86_64.rpm hunspell-devel-1.6.2-3.8.1.x86_64.rpm hunspell-devel-32bit-1.6.2-3.8.1.x86_64.rpm hunspell-tools-1.6.2-3.8.1.x86_64.rpm libhunspell-1_6-0-1.6.2-3.8.1.x86_64.rpm libhunspell-1_6-0-32bit-1.6.2-3.8.1.x86_64.rpm hunspell-1.6.2-3.8.1.s390x.rpm hunspell-devel-1.6.2-3.8.1.s390x.rpm hunspell-tools-1.6.2-3.8.1.s390x.rpm libhunspell-1_6-0-1.6.2-3.8.1.s390x.rpm hunspell-1.6.2-3.8.1.ppc64le.rpm hunspell-devel-1.6.2-3.8.1.ppc64le.rpm hunspell-tools-1.6.2-3.8.1.ppc64le.rpm libhunspell-1_6-0-1.6.2-3.8.1.ppc64le.rpm hunspell-1.6.2-3.8.1.aarch64.rpm hunspell-devel-1.6.2-3.8.1.aarch64.rpm hunspell-tools-1.6.2-3.8.1.aarch64.rpm libhunspell-1_6-0-1.6.2-3.8.1.aarch64.rpm openSUSE-SLE-15.3-2022-98 moderate SUSE Updates openSUSE-SLE 15.3 This update for xdg-desktop-portal-gtk fixes the following issues: - Fix regression that makes some dialogs disappear after one second (bsc#1194102) xdg-desktop-portal-gtk-1.8.0-3.9.1.src.rpm xdg-desktop-portal-gtk-1.8.0-3.9.1.x86_64.rpm xdg-desktop-portal-gtk-lang-1.8.0-3.9.1.noarch.rpm xdg-desktop-portal-gtk-1.8.0-3.9.1.s390x.rpm xdg-desktop-portal-gtk-1.8.0-3.9.1.ppc64le.rpm xdg-desktop-portal-gtk-1.8.0-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-117 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: Rust is shipped in version 1.57.0. Please see: https://blog.rust-lang.org/2021/12/02/Rust-1.57.0.html for more information. cargo-1.57.0-21.13.1.x86_64.rpm cargo1.57-1.57.0-7.3.1.x86_64.rpm rust-1.57.0-21.13.1.src.rpm rust-1.57.0-21.13.1.x86_64.rpm rust1.57-1.57.0-7.3.1.src.rpm rust1.57-1.57.0-7.3.1.x86_64.rpm cargo-1.57.0-21.13.1.s390x.rpm cargo1.57-1.57.0-7.3.1.s390x.rpm rust-1.57.0-21.13.1.s390x.rpm rust1.57-1.57.0-7.3.1.s390x.rpm cargo-1.57.0-21.13.1.ppc64le.rpm cargo1.57-1.57.0-7.3.1.ppc64le.rpm rust-1.57.0-21.13.1.ppc64le.rpm rust1.57-1.57.0-7.3.1.ppc64le.rpm cargo-1.57.0-21.13.1.aarch64.rpm cargo1.57-1.57.0-7.3.1.aarch64.rpm rust-1.57.0-21.13.1.aarch64.rpm rust1.57-1.57.0-7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-64 moderate SUSE Updates openSUSE-SLE 15.3 This update for python39-pip fixes the following issues: - CVE-2021-3572: Fixed incorrect handling of unicode separators in git references (bsc#1186819). python39-pip-20.2.4-7.8.1.noarch.rpm python39-pip-20.2.4-7.8.1.src.rpm openSUSE-SLE-15.3-2022-140 important SUSE Updates openSUSE-SLE 15.3 This update for grafana fixes the following issues: - CVE-2021-39226: Fixed snapshot authentication bypass (bsc#1191454) - CVE-2021-43813: Fixed markdown path traversal (bsc#1193688) grafana-7.5.12-3.18.1.src.rpm grafana-7.5.12-3.18.1.x86_64.rpm grafana-7.5.12-3.18.1.s390x.rpm grafana-7.5.12-3.18.1.ppc64le.rpm grafana-7.5.12-3.18.1.aarch64.rpm openSUSE-SLE-15.3-2022-207 moderate SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - Add support for livepatches on x86_64 for SUSE Linux Enterprise 15 SP4 (jsc#SLE-20049). glibc-2.31-9.9.1.src.rpm glibc-2.31-9.9.1.x86_64.rpm glibc-32bit-2.31-9.9.1.x86_64.rpm glibc-devel-2.31-9.9.1.x86_64.rpm glibc-devel-32bit-2.31-9.9.1.x86_64.rpm glibc-devel-static-2.31-9.9.1.x86_64.rpm glibc-devel-static-32bit-2.31-9.9.1.x86_64.rpm glibc-extra-2.31-9.9.1.x86_64.rpm glibc-html-2.31-9.9.1.noarch.rpm glibc-i18ndata-2.31-9.9.1.noarch.rpm glibc-info-2.31-9.9.1.noarch.rpm glibc-lang-2.31-9.9.1.noarch.rpm glibc-locale-2.31-9.9.1.x86_64.rpm glibc-locale-base-2.31-9.9.1.x86_64.rpm glibc-locale-base-32bit-2.31-9.9.1.x86_64.rpm glibc-profile-2.31-9.9.1.x86_64.rpm glibc-profile-32bit-2.31-9.9.1.x86_64.rpm glibc-utils-2.31-9.9.1.x86_64.rpm glibc-utils-32bit-2.31-9.9.1.x86_64.rpm glibc-utils-src-2.31-9.9.1.src.rpm nscd-2.31-9.9.1.x86_64.rpm glibc-2.31-9.9.1.s390x.rpm glibc-devel-2.31-9.9.1.s390x.rpm glibc-devel-static-2.31-9.9.1.s390x.rpm glibc-extra-2.31-9.9.1.s390x.rpm glibc-locale-2.31-9.9.1.s390x.rpm glibc-locale-base-2.31-9.9.1.s390x.rpm glibc-profile-2.31-9.9.1.s390x.rpm glibc-utils-2.31-9.9.1.s390x.rpm nscd-2.31-9.9.1.s390x.rpm glibc-2.31-9.9.1.ppc64le.rpm glibc-devel-2.31-9.9.1.ppc64le.rpm glibc-devel-static-2.31-9.9.1.ppc64le.rpm glibc-extra-2.31-9.9.1.ppc64le.rpm glibc-locale-2.31-9.9.1.ppc64le.rpm glibc-locale-base-2.31-9.9.1.ppc64le.rpm glibc-profile-2.31-9.9.1.ppc64le.rpm glibc-utils-2.31-9.9.1.ppc64le.rpm nscd-2.31-9.9.1.ppc64le.rpm glibc-2.31-9.9.1.aarch64.rpm glibc-devel-2.31-9.9.1.aarch64.rpm glibc-devel-static-2.31-9.9.1.aarch64.rpm glibc-extra-2.31-9.9.1.aarch64.rpm glibc-locale-2.31-9.9.1.aarch64.rpm glibc-locale-base-2.31-9.9.1.aarch64.rpm glibc-profile-2.31-9.9.1.aarch64.rpm glibc-utils-2.31-9.9.1.aarch64.rpm nscd-2.31-9.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-87 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: Update to go1.16.13 (bsc#1182345) - it includes fixes to the compiler, linker, runtime, and the net/http package. * x/net/http2: `http.Server.WriteTimeout` does not fire if the http2 stream's window is out of space. * runtime/race: building for iOS, but linking in object file built for macOS * runtime: race detector `SIGABRT` or `SIGSEGV` on macOS Monterey * runtime: mallocs cause "base outside usable address space" panic when running on iOS 14 * cmd/link: does not set section type of `.init_array` correctly * cmd/link: support more load commands on `Mach-O` * cmd/compile: internal compiler error: `Op...LECall and OpDereference have mismatched mem` go1.16-1.16.13-1.40.1.src.rpm go1.16-1.16.13-1.40.1.x86_64.rpm go1.16-doc-1.16.13-1.40.1.x86_64.rpm go1.16-race-1.16.13-1.40.1.x86_64.rpm go1.16-1.16.13-1.40.1.s390x.rpm go1.16-doc-1.16.13-1.40.1.s390x.rpm go1.16-1.16.13-1.40.1.ppc64le.rpm go1.16-doc-1.16.13-1.40.1.ppc64le.rpm go1.16-1.16.13-1.40.1.aarch64.rpm go1.16-doc-1.16.13-1.40.1.aarch64.rpm go1.16-race-1.16.13-1.40.1.aarch64.rpm openSUSE-SLE-15.3-2022-88 moderate SUSE Updates openSUSE-SLE 15.3 This update for ghostscript fixes the following issues: - CVE-2021-45944: Fixed use-after-free in sampled_data_sample (bsc#1194303) - CVE-2021-45949: Fixed heap-based buffer overflow in sampled_data_finish (bsc#1194304) ghostscript-9.52-161.1.src.rpm ghostscript-9.52-161.1.x86_64.rpm ghostscript-devel-9.52-161.1.x86_64.rpm ghostscript-x11-9.52-161.1.x86_64.rpm ghostscript-9.52-161.1.s390x.rpm ghostscript-devel-9.52-161.1.s390x.rpm ghostscript-x11-9.52-161.1.s390x.rpm ghostscript-9.52-161.1.ppc64le.rpm ghostscript-devel-9.52-161.1.ppc64le.rpm ghostscript-x11-9.52-161.1.ppc64le.rpm ghostscript-9.52-161.1.aarch64.rpm ghostscript-devel-9.52-161.1.aarch64.rpm ghostscript-x11-9.52-161.1.aarch64.rpm openSUSE-SLE-15.3-2022-100 moderate SUSE Updates openSUSE-SLE 15.3 This update for hwdata fixes the following issues: - Update hwdata from version 0.353 to 0.355 which includes updated pci, usb and vendor ids (bsc#1194338) hwdata-0.355-3.39.1.noarch.rpm hwdata-0.355-3.39.1.src.rpm openSUSE-SLE-15.3-2022-95 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Add support for simplefb (bsc#1193532). grub2-2.04-22.9.1.src.rpm grub2-2.04-22.9.1.x86_64.rpm grub2-arm64-efi-2.04-22.9.1.noarch.rpm grub2-arm64-efi-debug-2.04-22.9.1.noarch.rpm grub2-branding-upstream-2.04-22.9.1.x86_64.rpm grub2-i386-pc-2.04-22.9.1.noarch.rpm grub2-i386-pc-debug-2.04-22.9.1.noarch.rpm grub2-powerpc-ieee1275-2.04-22.9.1.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-22.9.1.noarch.rpm grub2-snapper-plugin-2.04-22.9.1.noarch.rpm grub2-systemd-sleep-plugin-2.04-22.9.1.noarch.rpm grub2-x86_64-efi-2.04-22.9.1.noarch.rpm grub2-x86_64-efi-debug-2.04-22.9.1.noarch.rpm grub2-x86_64-xen-2.04-22.9.1.noarch.rpm grub2-2.04-22.9.1.s390x.rpm grub2-branding-upstream-2.04-22.9.1.s390x.rpm grub2-s390x-emu-2.04-22.9.1.s390x.rpm grub2-s390x-emu-debug-2.04-22.9.1.s390x.rpm grub2-2.04-22.9.1.ppc64le.rpm grub2-branding-upstream-2.04-22.9.1.ppc64le.rpm grub2-2.04-22.9.1.aarch64.rpm grub2-branding-upstream-2.04-22.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-78 moderate SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: Update to go1.17.6 released 2022-01-06. (bsc#1190649) - It includes fixes to the compiler, linker, runtime, and the crypto/x509, net/http, and reflect packages. * go#50165 crypto/x509: error parsing large ASN.1 identifiers * go#50073 runtime: race detector `SIGABRT` or `SIGSEGV` on macOS Monterey * go#49961 reflect: segmentation violation while using html/template * go#49921 x/net/http2: `http.Server.WriteTimeout` does not fire if the http2 stream's window is out of space. * go#49413 cmd/compile: internal compiler error: `Op...LECall and OpDereference have mismatched mem` * go#48116 runtime: mallocs cause `base outside usable address space` panic when running on iOS 14 go1.17-1.17.6-1.17.1.i586.rpm go1.17-1.17.6-1.17.1.src.rpm go1.17-doc-1.17.6-1.17.1.i586.rpm go1.17-1.17.6-1.17.1.x86_64.rpm go1.17-doc-1.17.6-1.17.1.x86_64.rpm go1.17-race-1.17.6-1.17.1.x86_64.rpm go1.17-1.17.6-1.17.1.s390x.rpm go1.17-doc-1.17.6-1.17.1.s390x.rpm go1.17-1.17.6-1.17.1.ppc64le.rpm go1.17-doc-1.17.6-1.17.1.ppc64le.rpm go1.17-1.17.6-1.17.1.aarch64.rpm go1.17-doc-1.17.6-1.17.1.aarch64.rpm go1.17-race-1.17.6-1.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-324 moderate SUSE Updates openSUSE-SLE 15.3 This update for supportutils-plugin-cloud-init fixes the following issues: - This plugin adds functionality to the supportconfig tool, making it include logs and status of systemd services relating to cloud-init in the supportconfig tarballs. (jsc#SLE-19069, jsc#SLE-20508) supportutils-plugin-cloud-init-1.0-3.3.1.noarch.rpm supportutils-plugin-cloud-init-1.0-3.3.1.src.rpm openSUSE-SLE-15.3-2022-97 important SUSE Updates openSUSE-SLE 15.3 This update for log4j12 fixes the following issues: - Fix 'chainsaw' executable (bsc#1193184) log4j12-1.2.17-4.6.1.noarch.rpm log4j12-1.2.17-4.6.1.src.rpm log4j12-javadoc-1.2.17-4.6.1.noarch.rpm log4j12-manual-1.2.17-4.6.1.noarch.rpm openSUSE-SLE-15.3-2022-209 moderate SUSE Updates openSUSE-SLE 15.3 This update for opencl-headers fixes the following issues: Update opencl-headers from 2.2+git.20170617 to version 2.2+git.20211214 (bsc#1193617) - Add definitions for cl_arm_protected_memory_allocation - Update headers for cl_intel_unified_shared_memory - Add provisional command-buffer extension - Rename cl_intel_thread_local_exec to cl_intel_exec_by_local_thread - Fix API suffix version macros for semaphore extensions command definitions - If change the include path destination when run cmake configure with `DCMAKE_INSTALL_INCLUDEDIR`, the .cmake generated still point to hardcoded path `include`. this fix it - Add external memory, external semaphore, and semaphore provisional extensions - Fix condition for warning 4201 pop - Update extension headers for cl_intel_device_attribute_query - Update extension headers for cl_intel_sharing_format_query - Add support for cl_khr_integer_dot_product v2 - Update headers for cl_khr_integer_dot_product - Add cl_khr_pci_bus_info and cl_khr_suggested_local_work_size - Add missing 'stdint.h' include to 'CL/cl.h' - Disable failing CI configs - Fixes for usage of macro CL_API_ENTRY - cl_intel_command_queue_families extension - Update default OpenCL version in README - Replace uses of CL_EXT_{PRE,SUF}FIX* with CL_API_{PRE,SUF}FIX* - Do not include cl_gl_ext.h from opencl.h - Move cl_khr_gl_event to cl_gl.h - Add testing for cl_d3d10.h, cl_d3d11.h, and cl_dx9_media_sharing.h - Add definitions for cl_arm_import_memory_android_hardware_buffer v1.1.0 - Add support for user-supplied prefix/suffix in function declarations - Move cl_icd_layer.h from OpenCL-ICD-Loader to OpenCL-Headers. - Add definitions for cl_arm_controlled_kernel_termination - Add definitions for cl_arm_scheduling_controls v0.3.0 - Remove unused CL_EXTENSION_WEAK_LINK definition - Move Intel extensions into common files - Add definitions for cl_arm_scheduling_controls v0.2.0 - Update apt package list in CI before running cmake - Re-enable format string warning in CI - Use PRId64 and PRIu64 when printing 64-bit values - Fix test format string warnings - Fix origin argument names for rect functions - Enable GitHub Actions for pull requests - Added definitions for cl_img_generate_mipmap. - Added missing define for cl_img_use_gralloc_ptr. - Use the alignment attribute under Integrity OS. - Comprehensive CMake Package Config support - Added definitions for cl_img_mem_properties. - Switch the default version for the OpenCL headers to OpenCL 3.0 - Re-enable anonymous unions by default - Avoid anon structs when MSVC uses /Za - Update APIs and enums for cl_intel_unified_shared_memory for rev Q - Header changes for cl_intel_mem_force_host_memory - Add definitions for cl_ext_cxx_for_opencl - Add definitions for cl_arm_scheduling_controls - Add cl_intel_create_buffer_with_properties and cl_intel_mem_channel_property extensions - Add cl_api prefix for clSetContextDestructorCallback - Update ICD dispatch table with clSetContextDestructorCallback - Deprecate clSetProgramReleaseCallback - Add CL_DEVICE_LATEST_CONFORMANCE_VERSION_PASSED - Add clSetContextDestructorCallback - Introduce cl_properties type - Switch device enqueue boolean query to capabilities query - Fix build of dependent software with clang - Add APIs and enums for cl_intel_unified_shared_memory - Add cl_khr_device_uuid definitions - Add cl_half.h header - Add tokens for cl_amd_device_attribute_query - Add Windows CI using Travis - Update headers for OpenCL 3.0 - Add cl_khr_extended_versioning macro - Synchronize experimental enum etc with cl.xml - Include the DirectX sharing headers from CL/cl_icd.h. - Add missing error code CL_CONTEXT_TERMINATED_KHR - Change license to Apache 2.0 - Add enum value for `cl_khronos_vendor_id` - Experimental enum cl_khronos_vendor_id - Experimental enums for language queries - Add experimental enum CL_COMMAND_SVM_MIGRATE_MEM - Move two subgroup queries from cl_kernel_info to cl_kernel_sub_group_info - Add experimental enums - Add CL_IMPORT_DMA_BUF_DATA_CONSISTENCY_WITH_HOST_ARM definition - Add tests and Travis CI config - Add definitions for cl_arm_import_memory_android_hardware_buffer - Add version guards to ICD declarations - Add cl_khr_extended_versioning definitions - Add API function pointer and ICD dispatch table definitions - Add definitions for cl_arm_job_slot_selection - Fix _cl_image_desc for OpenCL 1.2 compatibility - Simplify the definition of deprecation prefixes/suffixes - Added suffixed enums for cl_khr_image2d_from_buffer - Drop __attribute__((aligned(X))) from cl_X defs - Small typo fix for pfn_notify - Use __vector instead of vector to fix altivec builds - Fix clCreateFromGLBuffer error code result type - Fixed w4201 triggering with MSVC in /W4 /Za builds - Add suffixed enums for cl_khr_mipmap_image - Remove all Apple specific content from headers - Add enums for cl_arm_get_core_id - Rename CL_IMPORT_TYPE_SECURE_ARM - Add CL_DEVICE_DOUBLE_FP_CONFIG - Remove CL_DEVICE_HALF_FP_CONFIG - Unified Headers and added clSetCommandQueueProperty to unified headers - Add cl_khr_il_program to OpenCL 1.2 and 2.0 headers - Add cl_khr_create_command_queue - Use correctly rounded decimal mathematical constants - Shorten CL_DBL_MAX for Visual Studio to fix token overflow - Anon structs supported in C11 opencl-headers-2.2+git.20211214-3.3.1.noarch.rpm opencl-headers-2.2+git.20211214-3.3.1.src.rpm openSUSE-SLE-15.3-2022-375 moderate SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Update to version 3.6.1: - CVE-2021-4185: RTMPT dissector infinite loop (bsc#1194166) - CVE-2021-4184: BitTorrent DHT dissector infinite loop (bsc#1194167) - CVE-2021-4183: pcapng file parser crash (bsc#1194168) - CVE-2021-4182: RFC 7468 file parser infinite loop (bsc#1194169) - CVE-2021-4181: Sysdig Event dissector crash (bsc#1194170) - CVE-2021-4190: Kafka dissector infinite loop (bsc#1194171) - Support for Shared Memory Communications (SMC) (jsc#SLE-18727) libvirt-7.1.0-150300.6.23.1.src.rpm libvirt-7.1.0-150300.6.23.1.x86_64.rpm libvirt-admin-7.1.0-150300.6.23.1.x86_64.rpm libvirt-bash-completion-7.1.0-150300.6.23.1.noarch.rpm libvirt-client-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-150300.6.23.1.x86_64.rpm libvirt-daemon-xen-7.1.0-150300.6.23.1.x86_64.rpm libvirt-devel-32bit-7.1.0-150300.6.23.1.x86_64.rpm libvirt-devel-7.1.0-150300.6.23.1.x86_64.rpm libvirt-doc-7.1.0-150300.6.23.1.noarch.rpm libvirt-libs-7.1.0-150300.6.23.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-150300.6.23.1.x86_64.rpm libvirt-nss-7.1.0-150300.6.23.1.x86_64.rpm libwireshark15-3.6.1-3.68.1.x86_64.rpm libwiretap12-3.6.1-3.68.1.x86_64.rpm libwsutil13-3.6.1-3.68.1.x86_64.rpm wireshark-3.6.1-3.68.1.src.rpm wireshark-3.6.1-3.68.1.x86_64.rpm wireshark-devel-3.6.1-3.68.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.23.1.x86_64.rpm wireshark-ui-qt-3.6.1-3.68.1.x86_64.rpm libvirt-7.1.0-150300.6.23.1.s390x.rpm libvirt-admin-7.1.0-150300.6.23.1.s390x.rpm libvirt-client-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-config-network-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-hooks-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-lxc-7.1.0-150300.6.23.1.s390x.rpm libvirt-daemon-qemu-7.1.0-150300.6.23.1.s390x.rpm libvirt-devel-7.1.0-150300.6.23.1.s390x.rpm libvirt-libs-7.1.0-150300.6.23.1.s390x.rpm libvirt-lock-sanlock-7.1.0-150300.6.23.1.s390x.rpm libvirt-nss-7.1.0-150300.6.23.1.s390x.rpm libwireshark15-3.6.1-3.68.1.s390x.rpm libwiretap12-3.6.1-3.68.1.s390x.rpm libwsutil13-3.6.1-3.68.1.s390x.rpm wireshark-3.6.1-3.68.1.s390x.rpm wireshark-devel-3.6.1-3.68.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-150300.6.23.1.s390x.rpm wireshark-ui-qt-3.6.1-3.68.1.s390x.rpm libvirt-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-admin-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-client-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-devel-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-libs-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-150300.6.23.1.ppc64le.rpm libvirt-nss-7.1.0-150300.6.23.1.ppc64le.rpm libwireshark15-3.6.1-3.68.1.ppc64le.rpm libwiretap12-3.6.1-3.68.1.ppc64le.rpm libwsutil13-3.6.1-3.68.1.ppc64le.rpm wireshark-3.6.1-3.68.1.ppc64le.rpm wireshark-devel-3.6.1-3.68.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-150300.6.23.1.ppc64le.rpm wireshark-ui-qt-3.6.1-3.68.1.ppc64le.rpm libvirt-7.1.0-150300.6.23.1.aarch64.rpm libvirt-admin-7.1.0-150300.6.23.1.aarch64.rpm libvirt-client-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-150300.6.23.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-150300.6.23.1.aarch64.rpm libvirt-devel-7.1.0-150300.6.23.1.aarch64.rpm libvirt-libs-7.1.0-150300.6.23.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-150300.6.23.1.aarch64.rpm libvirt-nss-7.1.0-150300.6.23.1.aarch64.rpm libwireshark15-3.6.1-3.68.1.aarch64.rpm libwiretap12-3.6.1-3.68.1.aarch64.rpm libwsutil13-3.6.1-3.68.1.aarch64.rpm wireshark-3.6.1-3.68.1.aarch64.rpm wireshark-devel-3.6.1-3.68.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.23.1.aarch64.rpm wireshark-ui-qt-3.6.1-3.68.1.aarch64.rpm openSUSE-SLE-15.3-2022-104 important SUSE Updates openSUSE-SLE 15.3 This update for SDL2 fixes the following issues: - CVE-2020-14409: Fixed Integer Overflow resulting in heap corruption in SDL_BlitCopy in video/SDL_blit_copy.c via a crafted .BMP (bsc#1181202). - CVE-2020-14410: Fixed heap-based buffer over-read in Blit_3or4_to_3or4__inversed_rgb in video/SDL_blit_N.c via a crafted .BMP (bsc#1181201). SDL2-2.0.8-11.3.1.src.rpm libSDL2-2_0-0-2.0.8-11.3.1.x86_64.rpm libSDL2-2_0-0-32bit-2.0.8-11.3.1.x86_64.rpm libSDL2-devel-2.0.8-11.3.1.x86_64.rpm libSDL2-devel-32bit-2.0.8-11.3.1.x86_64.rpm libSDL2-2_0-0-2.0.8-11.3.1.s390x.rpm libSDL2-devel-2.0.8-11.3.1.s390x.rpm libSDL2-2_0-0-2.0.8-11.3.1.ppc64le.rpm libSDL2-devel-2.0.8-11.3.1.ppc64le.rpm libSDL2-2_0-0-2.0.8-11.3.1.aarch64.rpm libSDL2-devel-2.0.8-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-99 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-samba-client fixes the following issues: - With latest versions of samba (>=4.15.0) calling 'net ads lookup' with '-U%' fails; (bsc#1193533) yast2-samba-client-4.3.4-3.6.1.noarch.rpm yast2-samba-client-4.3.4-3.6.1.src.rpm openSUSE-SLE-15.3-2022-144 moderate SUSE Updates openSUSE-SLE 15.3 This update for cryptsetup fixes the following issues: - CVE-2021-4122: Fixed possible attacks against data confidentiality through LUKS2 online reencryption extension crash recovery (bsc#1194469). cryptsetup-2.3.7-150300.3.5.1.src.rpm cryptsetup-2.3.7-150300.3.5.1.x86_64.rpm cryptsetup-lang-2.3.7-150300.3.5.1.noarch.rpm libcryptsetup-devel-2.3.7-150300.3.5.1.x86_64.rpm libcryptsetup12-2.3.7-150300.3.5.1.x86_64.rpm libcryptsetup12-32bit-2.3.7-150300.3.5.1.x86_64.rpm libcryptsetup12-hmac-2.3.7-150300.3.5.1.x86_64.rpm libcryptsetup12-hmac-32bit-2.3.7-150300.3.5.1.x86_64.rpm cryptsetup-2.3.7-150300.3.5.1.s390x.rpm libcryptsetup-devel-2.3.7-150300.3.5.1.s390x.rpm libcryptsetup12-2.3.7-150300.3.5.1.s390x.rpm libcryptsetup12-hmac-2.3.7-150300.3.5.1.s390x.rpm cryptsetup-2.3.7-150300.3.5.1.ppc64le.rpm libcryptsetup-devel-2.3.7-150300.3.5.1.ppc64le.rpm libcryptsetup12-2.3.7-150300.3.5.1.ppc64le.rpm libcryptsetup12-hmac-2.3.7-150300.3.5.1.ppc64le.rpm cryptsetup-2.3.7-150300.3.5.1.aarch64.rpm libcryptsetup-devel-2.3.7-150300.3.5.1.aarch64.rpm libcryptsetup12-2.3.7-150300.3.5.1.aarch64.rpm libcryptsetup12-hmac-2.3.7-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-190 important SUSE Updates openSUSE-SLE 15.3 This update for polkit fixes the following issues: - CVE-2021-4034: Fixed a local privilege escalation in pkexec (bsc#1194568). libpolkit0-0.116-3.6.1.x86_64.rpm libpolkit0-32bit-0.116-3.6.1.x86_64.rpm polkit-0.116-3.6.1.src.rpm polkit-0.116-3.6.1.x86_64.rpm polkit-devel-0.116-3.6.1.x86_64.rpm polkit-doc-0.116-3.6.1.noarch.rpm typelib-1_0-Polkit-1_0-0.116-3.6.1.x86_64.rpm libpolkit0-0.116-3.6.1.s390x.rpm polkit-0.116-3.6.1.s390x.rpm polkit-devel-0.116-3.6.1.s390x.rpm typelib-1_0-Polkit-1_0-0.116-3.6.1.s390x.rpm libpolkit0-0.116-3.6.1.ppc64le.rpm polkit-0.116-3.6.1.ppc64le.rpm polkit-devel-0.116-3.6.1.ppc64le.rpm typelib-1_0-Polkit-1_0-0.116-3.6.1.ppc64le.rpm libpolkit0-0.116-3.6.1.aarch64.rpm polkit-0.116-3.6.1.aarch64.rpm polkit-devel-0.116-3.6.1.aarch64.rpm typelib-1_0-Polkit-1_0-0.116-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-196 moderate SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fixed an issue when the required data is not collected during run of 'dbginfo.sh' (bsc#1193462) - Replace problematic commands with additional ones in 'dbginfo.sh' (bsc#1193462) - Added fixes to 'dbginfo.sh' for stabilzation of data collection (bsc#1193461) libekmfweb1-2.15.1-8.11.1.s390x.rpm libekmfweb1-devel-2.15.1-8.11.1.s390x.rpm osasnmpd-2.15.1-8.11.1.s390x.rpm s390-tools-2.15.1-8.11.1.s390x.rpm s390-tools-2.15.1-8.11.1.src.rpm s390-tools-hmcdrvfs-2.15.1-8.11.1.s390x.rpm s390-tools-zdsfs-2.15.1-8.11.1.s390x.rpm openSUSE-SLE-15.3-2022-228 moderate SUSE Updates openSUSE-SLE 15.3 This update for boost fixes the following issues: - Fix compilation errors (bsc#1194522) boost-1.66.0-12.3.1.src.rpm boost-base-1.66.0-12.3.1.src.rpm boost-license1_66_0-1.66.0-12.3.1.noarch.rpm boost_1_66-doc-html-1.66.0-12.3.1.noarch.rpm boost_1_66-doc-pdf-1.66.0-12.3.1.noarch.rpm boost_1_66-jam-1.66.0-12.3.1.x86_64.rpm boost_1_66-quickbook-1.66.0-12.3.1.x86_64.rpm libboost_atomic1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_atomic1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_atomic1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_chrono1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_chrono1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_container1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_container1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_container1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_context1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_context1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_context1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_coroutine1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_coroutine1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_coroutine1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_date_time1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_date_time1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_date_time1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_fiber1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_fiber1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_fiber1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_filesystem1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_filesystem1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_filesystem1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_graph1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_graph1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_graph1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_graph_parallel1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_graph_parallel1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_graph_parallel1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_headers1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_iostreams1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_iostreams1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_iostreams1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_locale1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_locale1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_locale1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_log1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_log1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_math1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_math1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_math1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_mpi1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_mpi1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_mpi1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_mpi_python-py2_7-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_mpi_python-py2_7-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_mpi_python-py3-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_mpi_python-py3-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_numpy-py2_7-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_numpy-py2_7-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_numpy-py3-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_numpy-py3-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_program_options1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_program_options1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_program_options1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_python-py2_7-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_python-py2_7-1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_python-py2_7-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_python-py3-1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_python-py3-1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_python-py3-1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_random1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_random1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_random1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_regex1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_regex1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_regex1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_serialization1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_serialization1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_serialization1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_signals1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_signals1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_signals1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_stacktrace1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_stacktrace1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_stacktrace1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_system1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_system1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_system1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_test1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_test1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_test1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_thread1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_thread1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_thread1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_timer1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_timer1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_type_erasure1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_type_erasure1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_type_erasure1_66_0-devel-1.66.0-12.3.1.x86_64.rpm libboost_wave1_66_0-1.66.0-12.3.1.x86_64.rpm libboost_wave1_66_0-32bit-1.66.0-12.3.1.x86_64.rpm libboost_wave1_66_0-devel-1.66.0-12.3.1.x86_64.rpm python2-boost_parallel_mpi1_66_0-1.66.0-12.3.1.x86_64.rpm python3-boost_parallel_mpi1_66_0-1.66.0-12.3.1.x86_64.rpm boost_1_66-jam-1.66.0-12.3.1.s390x.rpm boost_1_66-quickbook-1.66.0-12.3.1.s390x.rpm libboost_atomic1_66_0-1.66.0-12.3.1.s390x.rpm libboost_atomic1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_chrono1_66_0-1.66.0-12.3.1.s390x.rpm libboost_chrono1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_container1_66_0-1.66.0-12.3.1.s390x.rpm libboost_container1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_date_time1_66_0-1.66.0-12.3.1.s390x.rpm libboost_date_time1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_filesystem1_66_0-1.66.0-12.3.1.s390x.rpm libboost_filesystem1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_graph1_66_0-1.66.0-12.3.1.s390x.rpm libboost_graph1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_graph_parallel1_66_0-1.66.0-12.3.1.s390x.rpm libboost_graph_parallel1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_headers1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_iostreams1_66_0-1.66.0-12.3.1.s390x.rpm libboost_iostreams1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_locale1_66_0-1.66.0-12.3.1.s390x.rpm libboost_locale1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_log1_66_0-1.66.0-12.3.1.s390x.rpm libboost_log1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_math1_66_0-1.66.0-12.3.1.s390x.rpm libboost_math1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_mpi1_66_0-1.66.0-12.3.1.s390x.rpm libboost_mpi1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_mpi_python-py2_7-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_mpi_python-py2_7-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_mpi_python-py3-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_mpi_python-py3-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_numpy-py2_7-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_numpy-py2_7-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_numpy-py3-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_numpy-py3-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_program_options1_66_0-1.66.0-12.3.1.s390x.rpm libboost_program_options1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_python-py2_7-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_python-py2_7-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_python-py3-1_66_0-1.66.0-12.3.1.s390x.rpm libboost_python-py3-1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_random1_66_0-1.66.0-12.3.1.s390x.rpm libboost_random1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_regex1_66_0-1.66.0-12.3.1.s390x.rpm libboost_regex1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_serialization1_66_0-1.66.0-12.3.1.s390x.rpm libboost_serialization1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_signals1_66_0-1.66.0-12.3.1.s390x.rpm libboost_signals1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_stacktrace1_66_0-1.66.0-12.3.1.s390x.rpm libboost_stacktrace1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_system1_66_0-1.66.0-12.3.1.s390x.rpm libboost_system1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_test1_66_0-1.66.0-12.3.1.s390x.rpm libboost_test1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_thread1_66_0-1.66.0-12.3.1.s390x.rpm libboost_thread1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_timer1_66_0-1.66.0-12.3.1.s390x.rpm libboost_timer1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_type_erasure1_66_0-1.66.0-12.3.1.s390x.rpm libboost_type_erasure1_66_0-devel-1.66.0-12.3.1.s390x.rpm libboost_wave1_66_0-1.66.0-12.3.1.s390x.rpm libboost_wave1_66_0-devel-1.66.0-12.3.1.s390x.rpm python2-boost_parallel_mpi1_66_0-1.66.0-12.3.1.s390x.rpm python3-boost_parallel_mpi1_66_0-1.66.0-12.3.1.s390x.rpm boost_1_66-jam-1.66.0-12.3.1.ppc64le.rpm boost_1_66-quickbook-1.66.0-12.3.1.ppc64le.rpm libboost_atomic1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_atomic1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_chrono1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_chrono1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_container1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_container1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_context1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_context1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_coroutine1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_coroutine1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_date_time1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_date_time1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_fiber1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_fiber1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_filesystem1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_filesystem1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_graph1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_graph1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_graph_parallel1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_graph_parallel1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_headers1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_iostreams1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_iostreams1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_locale1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_locale1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_log1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_log1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_math1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_math1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_mpi1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_mpi1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_mpi_python-py2_7-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_mpi_python-py2_7-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_mpi_python-py3-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_mpi_python-py3-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_numpy-py2_7-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_numpy-py2_7-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_numpy-py3-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_numpy-py3-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_program_options1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_program_options1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_python-py2_7-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_python-py2_7-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_python-py3-1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_python-py3-1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_random1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_random1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_regex1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_regex1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_serialization1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_serialization1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_signals1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_signals1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_stacktrace1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_stacktrace1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_system1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_system1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_test1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_test1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_thread1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_thread1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_timer1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_timer1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_type_erasure1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_type_erasure1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm libboost_wave1_66_0-1.66.0-12.3.1.ppc64le.rpm libboost_wave1_66_0-devel-1.66.0-12.3.1.ppc64le.rpm python2-boost_parallel_mpi1_66_0-1.66.0-12.3.1.ppc64le.rpm python3-boost_parallel_mpi1_66_0-1.66.0-12.3.1.ppc64le.rpm boost_1_66-jam-1.66.0-12.3.1.aarch64.rpm boost_1_66-quickbook-1.66.0-12.3.1.aarch64.rpm libboost_atomic1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_atomic1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_chrono1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_chrono1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_container1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_container1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_context1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_context1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_coroutine1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_coroutine1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_date_time1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_date_time1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_fiber1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_fiber1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_filesystem1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_filesystem1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_graph1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_graph1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_graph_parallel1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_graph_parallel1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_headers1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_iostreams1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_iostreams1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_locale1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_locale1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_log1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_log1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_math1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_math1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_mpi1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_mpi1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_mpi_python-py2_7-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_mpi_python-py2_7-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_mpi_python-py3-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_mpi_python-py3-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_numpy-py2_7-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_numpy-py2_7-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_numpy-py3-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_numpy-py3-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_program_options1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_program_options1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_python-py2_7-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_python-py2_7-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_python-py3-1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_python-py3-1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_random1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_random1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_regex1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_regex1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_serialization1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_serialization1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_signals1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_signals1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_stacktrace1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_stacktrace1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_system1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_system1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_test1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_test1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_thread1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_thread1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_timer1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_timer1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_type_erasure1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_type_erasure1_66_0-devel-1.66.0-12.3.1.aarch64.rpm libboost_wave1_66_0-1.66.0-12.3.1.aarch64.rpm libboost_wave1_66_0-devel-1.66.0-12.3.1.aarch64.rpm python2-boost_parallel_mpi1_66_0-1.66.0-12.3.1.aarch64.rpm python3-boost_parallel_mpi1_66_0-1.66.0-12.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-125 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Update dependency and requirement of util-linux-systemd (bsc#1194162) - Improve SSL CA certificate bundle detection (bsc#1175892) dracut-049.1+suse.224.gd285ddd8-3.51.1.src.rpm dracut-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-extra-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-fips-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-ima-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-tools-049.1+suse.224.gd285ddd8-3.51.1.x86_64.rpm dracut-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-extra-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-fips-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-ima-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-tools-049.1+suse.224.gd285ddd8-3.51.1.s390x.rpm dracut-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-extra-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-fips-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-ima-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-tools-049.1+suse.224.gd285ddd8-3.51.1.ppc64le.rpm dracut-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm dracut-extra-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm dracut-fips-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm dracut-ima-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm dracut-tools-049.1+suse.224.gd285ddd8-3.51.1.aarch64.rpm openSUSE-SLE-15.3-2022-92 important SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - Fix config parameters in specfile (bsc#1194593) rsyslog-8.2106.0-4.16.1.src.rpm rsyslog-8.2106.0-4.16.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-4.16.1.x86_64.rpm rsyslog-doc-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-relp-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-4.16.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-4.16.1.x86_64.rpm rsyslog-8.2106.0-4.16.1.s390x.rpm rsyslog-diag-tools-8.2106.0-4.16.1.s390x.rpm rsyslog-doc-8.2106.0-4.16.1.s390x.rpm rsyslog-module-dbi-8.2106.0-4.16.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-4.16.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-4.16.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-4.16.1.s390x.rpm rsyslog-module-gtls-8.2106.0-4.16.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-4.16.1.s390x.rpm rsyslog-module-mysql-8.2106.0-4.16.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-4.16.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-4.16.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-4.16.1.s390x.rpm rsyslog-module-ossl-8.2106.0-4.16.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-4.16.1.s390x.rpm rsyslog-module-relp-8.2106.0-4.16.1.s390x.rpm rsyslog-module-snmp-8.2106.0-4.16.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-4.16.1.s390x.rpm rsyslog-8.2106.0-4.16.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-4.16.1.ppc64le.rpm rsyslog-doc-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-4.16.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-4.16.1.ppc64le.rpm rsyslog-8.2106.0-4.16.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-4.16.1.aarch64.rpm rsyslog-doc-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-relp-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-4.16.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-4.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-136 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: - CVE-2021-4140: Fixed iframe sandbox bypass with XSLT (bsc#1194547). - CVE-2022-22737: Fixed race condition when playing audio files (bsc#1194547). - CVE-2022-22738: Fixed heap-buffer-overflow in blendGaussianBlur (bsc#1194547). - CVE-2022-22739: Fixed missing throttling on external protocol launch dialog (bsc#1194547). - CVE-2022-22740: Fixed use-after-free of ChannelEventQueue::mOwner (bsc#1194547). - CVE-2022-22741: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22742: Fixed out-of-bounds memory access when inserting text in edit mode (bsc#1194547). - CVE-2022-22743: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22744: Fixed possible command injection via the 'Copy as curl' feature in DevTools (bsc#1194547). - CVE-2022-22745: Fixed leaking cross-origin URLs through securitypolicyviolation event (bsc#1194547). - CVE-2022-22746: Fixed calling into reportValidity could have lead to fullscreen window spoof (bsc#1194547). - CVE-2022-22747: Fixed crash when handling empty pkcs7 sequence(bsc#1194547). - CVE-2022-22748: Fixed spoofed origin on external protocol launch dialog (bsc#1194547). - CVE-2022-22751: Fixed memory safety bugs (bsc#1194547). MozillaFirefox-91.5.0-152.12.1.src.rpm MozillaFirefox-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-branding-upstream-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-devel-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-translations-common-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-translations-other-91.5.0-152.12.1.x86_64.rpm MozillaFirefox-91.5.0-152.12.1.s390x.rpm MozillaFirefox-branding-upstream-91.5.0-152.12.1.s390x.rpm MozillaFirefox-devel-91.5.0-152.12.1.s390x.rpm MozillaFirefox-translations-common-91.5.0-152.12.1.s390x.rpm MozillaFirefox-translations-other-91.5.0-152.12.1.s390x.rpm MozillaFirefox-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-devel-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-translations-common-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-translations-other-91.5.0-152.12.1.ppc64le.rpm MozillaFirefox-91.5.0-152.12.1.aarch64.rpm MozillaFirefox-branding-upstream-91.5.0-152.12.1.aarch64.rpm MozillaFirefox-devel-91.5.0-152.12.1.aarch64.rpm MozillaFirefox-translations-common-91.5.0-152.12.1.aarch64.rpm MozillaFirefox-translations-other-91.5.0-152.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-184 important SUSE Updates openSUSE-SLE 15.3 This update for json-c fixes the following issues: - CVE-2020-12762: Fixed integer overflow and out-of-bounds write. (bsc#1171479) json-c-0.13-3.3.1.src.rpm libjson-c-devel-0.13-3.3.1.x86_64.rpm libjson-c-doc-0.13-3.3.1.noarch.rpm libjson-c3-0.13-3.3.1.x86_64.rpm libjson-c3-32bit-0.13-3.3.1.x86_64.rpm libjson-c-devel-0.13-3.3.1.s390x.rpm libjson-c3-0.13-3.3.1.s390x.rpm libjson-c-devel-0.13-3.3.1.ppc64le.rpm libjson-c3-0.13-3.3.1.ppc64le.rpm libjson-c-devel-0.13-3.3.1.aarch64.rpm libjson-c3-0.13-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-113 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2021-44531: Fixed improper handling of URI Subject Alternative Names (bsc#1194511). - CVE-2021-44532: Fixed certificate Verification Bypass via String Injection (bsc#1194512). - CVE-2021-44533: Fixed incorrect handling of certificate subject and issuer fields (bsc#1194513). - CVE-2022-21824: Fixed prototype pollution via console.table properties (bsc#1194514). nodejs12-12.22.9-4.25.1.src.rpm nodejs12-12.22.9-4.25.1.x86_64.rpm nodejs12-devel-12.22.9-4.25.1.x86_64.rpm nodejs12-docs-12.22.9-4.25.1.noarch.rpm npm12-12.22.9-4.25.1.x86_64.rpm nodejs12-12.22.9-4.25.1.s390x.rpm nodejs12-devel-12.22.9-4.25.1.s390x.rpm npm12-12.22.9-4.25.1.s390x.rpm nodejs12-12.22.9-4.25.1.ppc64le.rpm nodejs12-devel-12.22.9-4.25.1.ppc64le.rpm npm12-12.22.9-4.25.1.ppc64le.rpm nodejs12-12.22.9-4.25.1.aarch64.rpm nodejs12-devel-12.22.9-4.25.1.aarch64.rpm npm12-12.22.9-4.25.1.aarch64.rpm openSUSE-SLE-15.3-2022-112 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2021-44531: Fixed improper handling of URI Subject Alternative Names (bsc#1194511). - CVE-2021-44532: Fixed certificate Verification Bypass via String Injection (bsc#1194512). - CVE-2021-44533: Fixed incorrect handling of certificate subject and issuer fields (bsc#1194513). - CVE-2022-21824: Fixed prototype pollution via console.table properties (bsc#1194514). nodejs14-14.18.3-15.24.1.src.rpm nodejs14-14.18.3-15.24.1.x86_64.rpm nodejs14-devel-14.18.3-15.24.1.x86_64.rpm nodejs14-docs-14.18.3-15.24.1.noarch.rpm npm14-14.18.3-15.24.1.x86_64.rpm nodejs14-14.18.3-15.24.1.s390x.rpm nodejs14-devel-14.18.3-15.24.1.s390x.rpm npm14-14.18.3-15.24.1.s390x.rpm nodejs14-14.18.3-15.24.1.ppc64le.rpm nodejs14-devel-14.18.3-15.24.1.ppc64le.rpm npm14-14.18.3-15.24.1.ppc64le.rpm nodejs14-14.18.3-15.24.1.aarch64.rpm nodejs14-devel-14.18.3-15.24.1.aarch64.rpm npm14-14.18.3-15.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-147 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-format_spec_file fixes the following issues: obs-service-format_spec_file: Update obs-service-format_spec_file from version 20191114 to version 20211115: - Sync license identifiers from SPDX (spdx.org). (jsc#SLE-18915) - Be more wary on usage of macros in Tags - Do not Cache Source.* but only Source[0-9]* - Stop pretending we can guess what the spec file is for - Avoid deep recursion in merge_comments - Allow to override date - Split out final comments in description - Make a special exception for short %p* snippets - Also split Conflict headers - Keep the old require sorting - Improve the performance of reorder_tags - Fix merge_comments - Do not split %if and section start - Support multiline copyrights (for Firefox) - Simplify how to calculate the `base_package` - Split tag values of certain tags - Be careful with macros that appear between tags - Replace SPDX mapper with an advanced version - Fix merging empty sections - Allow before lines to commented tags - Keep comments close to the original line - Review some deltas in the test suites that are acceptable for now - Parse more into the description - basically everything for now - Fix Release tag - Add an empty line before each section - Reorder tags that are below each other - Fix whitespace - Add test cases for spec-file cleaner (with current output) - Use perltidy like Cavil - Remove patch_license - old helper script for mass migration - Only parse Provides in Header section - Trim all trailing whitespace - including \r - Fix copyright year to 2012 in the test cases - Fetch licenses from JSON and remove + variants - Fetch exceptions from JSON - prepare_spec handle the case where License/Group are in a if/else/endif rpmlint: - Rebuild rpmlint with the new obs-service-format_spec_file. rpmlint-mini: - BuildRequires `python-rpm-macros` since the `py3_ver` macro is now considered obsolete in `python3-base`. obs-service-format_spec_file-20211115-3.9.4.noarch.rpm obs-service-format_spec_file-20211115-3.9.4.src.rpm rpmlint-1.10-7.32.3.noarch.rpm rpmlint-1.10-7.32.3.src.rpm openSUSE-SLE-15.3-2022-135 important SUSE Updates openSUSE-SLE 15.3 This update for busybox fixes the following issues: - CVE-2011-5325: Fixed tar directory traversal (bsc#951562). - CVE-2015-9261: Fixed segfalts and application crashes in huft_build (bsc#1102912). - CVE-2016-2147: Fixed out of bounds write (heap) due to integer underflow in udhcpc (bsc#970663). - CVE-2016-2148: Fixed heap-based buffer overflow in OPTION_6RD parsing (bsc#970662). - CVE-2016-6301: Fixed NTP server denial of service flaw (bsc#991940). - CVE-2017-15873: Fixed integer overflow in get_next_block function in archival/libarchive/decompress_bunzip2.c (bsc#1064976). - CVE-2017-15874: Fixed integer underflow in archival/libarchive/decompress_unlzma.c (bsc#1064978). - CVE-2017-16544: Fixed Insufficient sanitization of filenames when autocompleting (bsc#1069412). - CVE-2018-1000500 : Fixed missing SSL certificate validation in wget (bsc#1099263). - CVE-2018-1000517: Fixed heap-based buffer overflow in the retrieve_file_data() (bsc#1099260). - CVE-2018-20679: Fixed out of bounds read in udhcp (bsc#1121426). - CVE-2019-5747: Fixed out of bounds read in udhcp components (bsc#1121428). - CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data (bsc#1184522). - CVE-2021-42373: Fixed NULL pointer dereference in man leading to DoS when a section name is supplied but no page argument is given (bsc#1192869). - CVE-2021-42374: Fixed out-of-bounds heap read in unlzma leading to information leak and DoS when crafted LZMA-compressed input is decompressed (bsc#1192869). - CVE-2021-42375: Fixed incorrect handling of a special element in ash leading to DoS when processing a crafted shell command, due to the shell mistaking specific characters for reserved characters (bsc#1192869). - CVE-2021-42376: Fixed NULL pointer dereference in hush leading to DoS when processing a crafted shell command (bsc#1192869). - CVE-2021-42377: Fixed attacker-controlled pointer free in hush leading to DoS and possible code execution when processing a crafted shell command (bsc#1192869). - CVE-2021-42378: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the getvar_i function (bsc#1192869). - CVE-2021-42379: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the next_input_file function (bsc#1192869). - CVE-2021-42380: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the clrvar function (bsc#1192869). - CVE-2021-42381: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the hash_init function (bsc#1192869). - CVE-2021-42382: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the getvar_s function (bsc#1192869). - CVE-2021-42383: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the evaluate function (bsc#1192869). - CVE-2021-42384: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the handle_special function (bsc#1192869). - CVE-2021-42385: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the evaluate function (bsc#1192869). - CVE-2021-42386: Fixed use-after-free in awk leading to DoS and possibly code execution when processing a crafted awk pattern in the nvalloc function (bsc#1192869). busybox-1.34.1-4.9.1.src.rpm busybox-1.34.1-4.9.1.x86_64.rpm busybox-static-1.34.1-4.9.1.x86_64.rpm busybox-1.34.1-4.9.1.s390x.rpm busybox-static-1.34.1-4.9.1.s390x.rpm busybox-1.34.1-4.9.1.ppc64le.rpm busybox-static-1.34.1-4.9.1.ppc64le.rpm busybox-1.34.1-4.9.1.aarch64.rpm busybox-static-1.34.1-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-124 moderate SUSE Updates openSUSE-SLE 15.3 This update for shared-mime-info fixes the following issues: - Fix nautilus not launching applications because all applications are not detected as executable program but as shared library (bsc#1191630) shared-mime-info-1.12-3.3.1.src.rpm shared-mime-info-1.12-3.3.1.x86_64.rpm shared-mime-info-lang-1.12-3.3.1.noarch.rpm shared-mime-info-1.12-3.3.1.s390x.rpm shared-mime-info-1.12-3.3.1.ppc64le.rpm shared-mime-info-1.12-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-123 important SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - Always create fetchmail group, even if the user is already present, as a leftover from Leap 15.2 upgrade. This may happen also if user is messing with groups/users directly or upgrading from even an older fetchmail versions (bsc#1194203) fetchmail-6.4.22-20.23.1.src.rpm fetchmail-6.4.22-20.23.1.x86_64.rpm fetchmailconf-6.4.22-20.23.1.x86_64.rpm fetchmail-6.4.22-20.23.1.s390x.rpm fetchmailconf-6.4.22-20.23.1.s390x.rpm fetchmail-6.4.22-20.23.1.ppc64le.rpm fetchmailconf-6.4.22-20.23.1.ppc64le.rpm fetchmail-6.4.22-20.23.1.aarch64.rpm fetchmailconf-6.4.22-20.23.1.aarch64.rpm openSUSE-SLE-15.3-2022-105 important SUSE Updates openSUSE-SLE 15.3 This update for libqb fixes the following issues: - Fix occasional Pacemaker commandline tool failures and interrupted system calls (bsc#1193737, bsc#1193912) doxygen2man-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb-2.0.2+20201203.def947e-3.3.1.src.rpm libqb-devel-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb-devel-32bit-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb-tests-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb-tools-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb100-2.0.2+20201203.def947e-3.3.1.x86_64.rpm libqb100-32bit-2.0.2+20201203.def947e-3.3.1.x86_64.rpm doxygen2man-2.0.2+20201203.def947e-3.3.1.s390x.rpm libqb-devel-2.0.2+20201203.def947e-3.3.1.s390x.rpm libqb-tests-2.0.2+20201203.def947e-3.3.1.s390x.rpm libqb-tools-2.0.2+20201203.def947e-3.3.1.s390x.rpm libqb100-2.0.2+20201203.def947e-3.3.1.s390x.rpm doxygen2man-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm libqb-devel-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm libqb-tests-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm libqb-tools-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm libqb100-2.0.2+20201203.def947e-3.3.1.ppc64le.rpm doxygen2man-2.0.2+20201203.def947e-3.3.1.aarch64.rpm libqb-devel-2.0.2+20201203.def947e-3.3.1.aarch64.rpm libqb-tests-2.0.2+20201203.def947e-3.3.1.aarch64.rpm libqb-tools-2.0.2+20201203.def947e-3.3.1.aarch64.rpm libqb100-2.0.2+20201203.def947e-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-227 moderate SUSE Updates openSUSE-SLE 15.3 This update for git fixes the following issues: - update to 2.34.1 (bsc#1193722): * "git grep" looking in a blob that has non-UTF8 payload was completely broken when linked with certain versions of PCREv2 library in the latest release. * "git pull" with any strategy when the other side is behind us should succeed as it is a no-op, but doesn't. * An earlier change in 2.34.0 caused JGit application (that abused GIT_EDITOR mechanism when invoking "git config") to get stuck with a SIGTTOU signal; it has been reverted. * An earlier change that broke .gitignore matching has been reverted. * SubmittingPatches document gained a syntactically incorrect mark-up, which has been corrected. - git 2.33.0: * "git send-email" learned the "--sendmail-cmd" command line option and the "sendemail.sendmailCmd" configuration variable, which is a more sensible approach than the current way of repurposing the "smtp-server" that is meant to name the server to instead name the command to talk to the server. * The userdiff pattern for C# learned the token "record". * "git rev-list" learns to omit the "commit <object-name>" header lines from the output with the `--no-commit-header` option. * "git worktree add --lock" learned to record why the worktree is locked with a custom message. * internal improvements including performance optimizations * a number of bug fixes - git 2.32.0: * ".gitattributes", ".gitignore", and ".mailmap" files that are symbolic links are ignored * "git apply --3way" used to first attempt a straight application, and only fell back to the 3-way merge algorithm when the straight application failed. Starting with this version, the command will first try the 3-way merge algorithm and only when it fails (either resulting with conflict or the base versions of blobs are missing), falls back to the usual patch application. * "git stash show" can now show the untracked part of the stash * Improved "git repack" strategy * http code can now unlock a certificate with a cached password respectively. * "git clone --reject-shallow" option fails the clone as soon as we notice that we are cloning from a shallow repository. * "gitweb" learned "e-mail privacy" feature * Multiple improvements to output and configuration options * Bug fixes and developer visible fixes git-2.34.1-10.9.1.src.rpm git-2.34.1-10.9.1.x86_64.rpm git-arch-2.34.1-10.9.1.x86_64.rpm git-core-2.34.1-10.9.1.x86_64.rpm git-credential-gnome-keyring-2.34.1-10.9.1.x86_64.rpm git-credential-libsecret-2.34.1-10.9.1.x86_64.rpm git-cvs-2.34.1-10.9.1.x86_64.rpm git-daemon-2.34.1-10.9.1.x86_64.rpm git-doc-2.34.1-10.9.1.noarch.rpm git-email-2.34.1-10.9.1.x86_64.rpm git-gui-2.34.1-10.9.1.x86_64.rpm git-p4-2.34.1-10.9.1.x86_64.rpm git-svn-2.34.1-10.9.1.x86_64.rpm git-web-2.34.1-10.9.1.x86_64.rpm gitk-2.34.1-10.9.1.x86_64.rpm perl-Git-2.34.1-10.9.1.x86_64.rpm git-2.34.1-10.9.1.s390x.rpm git-arch-2.34.1-10.9.1.s390x.rpm git-core-2.34.1-10.9.1.s390x.rpm git-credential-gnome-keyring-2.34.1-10.9.1.s390x.rpm git-credential-libsecret-2.34.1-10.9.1.s390x.rpm git-cvs-2.34.1-10.9.1.s390x.rpm git-daemon-2.34.1-10.9.1.s390x.rpm git-email-2.34.1-10.9.1.s390x.rpm git-gui-2.34.1-10.9.1.s390x.rpm git-p4-2.34.1-10.9.1.s390x.rpm git-svn-2.34.1-10.9.1.s390x.rpm git-web-2.34.1-10.9.1.s390x.rpm gitk-2.34.1-10.9.1.s390x.rpm perl-Git-2.34.1-10.9.1.s390x.rpm git-2.34.1-10.9.1.ppc64le.rpm git-arch-2.34.1-10.9.1.ppc64le.rpm git-core-2.34.1-10.9.1.ppc64le.rpm git-credential-gnome-keyring-2.34.1-10.9.1.ppc64le.rpm git-credential-libsecret-2.34.1-10.9.1.ppc64le.rpm git-cvs-2.34.1-10.9.1.ppc64le.rpm git-daemon-2.34.1-10.9.1.ppc64le.rpm git-email-2.34.1-10.9.1.ppc64le.rpm git-gui-2.34.1-10.9.1.ppc64le.rpm git-p4-2.34.1-10.9.1.ppc64le.rpm git-svn-2.34.1-10.9.1.ppc64le.rpm git-web-2.34.1-10.9.1.ppc64le.rpm gitk-2.34.1-10.9.1.ppc64le.rpm perl-Git-2.34.1-10.9.1.ppc64le.rpm git-2.34.1-10.9.1.aarch64.rpm git-arch-2.34.1-10.9.1.aarch64.rpm git-core-2.34.1-10.9.1.aarch64.rpm git-credential-gnome-keyring-2.34.1-10.9.1.aarch64.rpm git-credential-libsecret-2.34.1-10.9.1.aarch64.rpm git-cvs-2.34.1-10.9.1.aarch64.rpm git-daemon-2.34.1-10.9.1.aarch64.rpm git-email-2.34.1-10.9.1.aarch64.rpm git-gui-2.34.1-10.9.1.aarch64.rpm git-p4-2.34.1-10.9.1.aarch64.rpm git-svn-2.34.1-10.9.1.aarch64.rpm git-web-2.34.1-10.9.1.aarch64.rpm gitk-2.34.1-10.9.1.aarch64.rpm perl-Git-2.34.1-10.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-222 moderate SUSE Updates openSUSE-SLE 15.3 This update for xrdp fixes the following issues: - Fix crash in xrdp-fate318398-change-expired-password.patch (bsc#1187258) libpainter0-0.9.13.1-4.12.1.x86_64.rpm librfxencode0-0.9.13.1-4.12.1.x86_64.rpm xrdp-0.9.13.1-4.12.1.src.rpm xrdp-0.9.13.1-4.12.1.x86_64.rpm xrdp-devel-0.9.13.1-4.12.1.x86_64.rpm libpainter0-0.9.13.1-4.12.1.s390x.rpm librfxencode0-0.9.13.1-4.12.1.s390x.rpm xrdp-0.9.13.1-4.12.1.s390x.rpm xrdp-devel-0.9.13.1-4.12.1.s390x.rpm libpainter0-0.9.13.1-4.12.1.ppc64le.rpm librfxencode0-0.9.13.1-4.12.1.ppc64le.rpm xrdp-0.9.13.1-4.12.1.ppc64le.rpm xrdp-devel-0.9.13.1-4.12.1.ppc64le.rpm libpainter0-0.9.13.1-4.12.1.aarch64.rpm librfxencode0-0.9.13.1-4.12.1.aarch64.rpm xrdp-0.9.13.1-4.12.1.aarch64.rpm xrdp-devel-0.9.13.1-4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-220 important SUSE Updates openSUSE-SLE 15.3 This update for saptune fixes the following issues: - Fix LVM slave devices not to be excluded when they are valid block devices (bsc#1194299) - Fix 'not compliant' state for energy_perf_bias on PowerPC systems and suppress misleading error message regarding missing 'mokutil' (bsc#1193435) - Remove the dependency to 'mokutil' by relying on sysfs to detect a secure boot environment (bsc#1193435) - Fix problem with command `saptune revert all`, if the saptune service was stopped between the two commands `apply` and `revert all` - Fix `saptune service enablestart|disablestop` to always perform both actions and no longer stop working, if the service is already started|stopped (bsc#1193241) - Fix support support for AWS x1e instances (bsc#1192029) - Support /etc/fstab entries with 4 instead of 6 fields and change error handling from 'panic' to error log messages (bsc#1193580) - Enhance documentation in man page 'saptune.8' with the entry 'configured Note' and some more descriptions of the entries from `saptune service status` (bsc#1192697) - Fix block device settings (e.g. NRREQ) for multipath devices (bsc#1193576) - Fix `saptune verify` command to report a non existing sysctl or sys parameter as 'not available on the system'. An additional warning is displayed to raise attention to typos in the parameter name. - Fix `saptune status` command to accurately report the unit state (bsc#1194334) - Added a hint to the man page and some additional log messages as the PowerPC systems (hardware architecture 'ppc64le') don't support files in '/sys/class/dmi' saptune-3.0.2-8.22.2.src.rpm saptune-3.0.2-8.22.2.x86_64.rpm saptune-3.0.2-8.22.2.ppc64le.rpm openSUSE-SLE-15.3-2022-141 moderate SUSE Updates openSUSE-SLE 15.3 This update for permissions fixes the following issues: - Update to version 20181225: setuid bit for cockpit session binary (bsc#1169614). permissions-20181225-23.12.1.src.rpm permissions-20181225-23.12.1.x86_64.rpm permissions-zypp-plugin-20181225-23.12.1.noarch.rpm permissions-20181225-23.12.1.s390x.rpm permissions-20181225-23.12.1.ppc64le.rpm permissions-20181225-23.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-134 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-numpy fixes the following issues: - CVE-2021-33430: Fixed buffer overflow that could lead to DoS in PyArray_NewFromDescr_int function of ctors.c (bsc#1193913). - CVE-2021-41496: Fixed buffer overflow that could lead to DoS in array_from_pyobj function of fortranobject.c (bsc#1193907). python-numpy-1.17.3-10.1.src.rpm python-numpy_1_17_3-gnu-hpc-1.17.3-10.1.src.rpm python3-numpy-1.17.3-10.1.x86_64.rpm python3-numpy-devel-1.17.3-10.1.x86_64.rpm python3-numpy-gnu-hpc-1.17.3-10.1.x86_64.rpm python3-numpy-gnu-hpc-devel-1.17.3-10.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-10.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-10.1.x86_64.rpm python3-numpy-1.17.3-10.1.s390x.rpm python3-numpy-devel-1.17.3-10.1.s390x.rpm python3-numpy-gnu-hpc-1.17.3-10.1.s390x.rpm python3-numpy-gnu-hpc-devel-1.17.3-10.1.s390x.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-10.1.s390x.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-10.1.s390x.rpm python3-numpy-1.17.3-10.1.ppc64le.rpm python3-numpy-devel-1.17.3-10.1.ppc64le.rpm python3-numpy-gnu-hpc-1.17.3-10.1.ppc64le.rpm python3-numpy-gnu-hpc-devel-1.17.3-10.1.ppc64le.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-10.1.ppc64le.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-10.1.ppc64le.rpm python3-numpy-1.17.3-10.1.aarch64.rpm python3-numpy-devel-1.17.3-10.1.aarch64.rpm python3-numpy-gnu-hpc-1.17.3-10.1.aarch64.rpm python3-numpy-gnu-hpc-devel-1.17.3-10.1.aarch64.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-10.1.aarch64.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-10.1.aarch64.rpm openSUSE-SLE-15.3-2022-177 low SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2021-20196: Fixed null pointer dereference that may lead to guest crash (bsc#1181361). qemu-5.2.0-150300.109.2.src.rpm qemu-5.2.0-150300.109.2.x86_64.rpm qemu-arm-5.2.0-150300.109.2.x86_64.rpm qemu-audio-alsa-5.2.0-150300.109.2.x86_64.rpm qemu-audio-pa-5.2.0-150300.109.2.x86_64.rpm qemu-audio-spice-5.2.0-150300.109.2.x86_64.rpm qemu-block-curl-5.2.0-150300.109.2.x86_64.rpm qemu-block-dmg-5.2.0-150300.109.2.x86_64.rpm qemu-block-gluster-5.2.0-150300.109.2.x86_64.rpm qemu-block-iscsi-5.2.0-150300.109.2.x86_64.rpm qemu-block-nfs-5.2.0-150300.109.2.x86_64.rpm qemu-block-rbd-5.2.0-150300.109.2.x86_64.rpm qemu-block-ssh-5.2.0-150300.109.2.x86_64.rpm qemu-chardev-baum-5.2.0-150300.109.2.x86_64.rpm qemu-chardev-spice-5.2.0-150300.109.2.x86_64.rpm qemu-extra-5.2.0-150300.109.2.x86_64.rpm qemu-guest-agent-5.2.0-150300.109.2.x86_64.rpm qemu-hw-display-qxl-5.2.0-150300.109.2.x86_64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.109.2.x86_64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.109.2.x86_64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.109.2.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.109.2.x86_64.rpm qemu-hw-usb-redirect-5.2.0-150300.109.2.x86_64.rpm qemu-hw-usb-smartcard-5.2.0-150300.109.2.x86_64.rpm qemu-ipxe-1.0.0+-150300.109.2.noarch.rpm qemu-ivshmem-tools-5.2.0-150300.109.2.x86_64.rpm qemu-ksm-5.2.0-150300.109.2.x86_64.rpm qemu-kvm-5.2.0-150300.109.2.x86_64.rpm qemu-lang-5.2.0-150300.109.2.x86_64.rpm qemu-linux-user-5.2.0-150300.109.2.src.rpm qemu-linux-user-5.2.0-150300.109.2.x86_64.rpm qemu-microvm-5.2.0-150300.109.2.noarch.rpm qemu-ppc-5.2.0-150300.109.2.x86_64.rpm qemu-s390x-5.2.0-150300.109.2.x86_64.rpm qemu-seabios-1.14.0_0_g155821a-150300.109.2.noarch.rpm qemu-sgabios-8-150300.109.2.noarch.rpm qemu-skiboot-5.2.0-150300.109.2.noarch.rpm qemu-testsuite-5.2.0-150300.109.4.src.rpm qemu-testsuite-5.2.0-150300.109.4.x86_64.rpm qemu-tools-5.2.0-150300.109.2.x86_64.rpm qemu-ui-curses-5.2.0-150300.109.2.x86_64.rpm qemu-ui-gtk-5.2.0-150300.109.2.x86_64.rpm qemu-ui-opengl-5.2.0-150300.109.2.x86_64.rpm qemu-ui-spice-app-5.2.0-150300.109.2.x86_64.rpm qemu-ui-spice-core-5.2.0-150300.109.2.x86_64.rpm qemu-vgabios-1.14.0_0_g155821a-150300.109.2.noarch.rpm qemu-vhost-user-gpu-5.2.0-150300.109.2.x86_64.rpm qemu-x86-5.2.0-150300.109.2.x86_64.rpm qemu-5.2.0-150300.109.2.s390x.rpm qemu-arm-5.2.0-150300.109.2.s390x.rpm qemu-audio-alsa-5.2.0-150300.109.2.s390x.rpm qemu-audio-pa-5.2.0-150300.109.2.s390x.rpm qemu-audio-spice-5.2.0-150300.109.2.s390x.rpm qemu-block-curl-5.2.0-150300.109.2.s390x.rpm qemu-block-dmg-5.2.0-150300.109.2.s390x.rpm qemu-block-gluster-5.2.0-150300.109.2.s390x.rpm qemu-block-iscsi-5.2.0-150300.109.2.s390x.rpm qemu-block-nfs-5.2.0-150300.109.2.s390x.rpm qemu-block-rbd-5.2.0-150300.109.2.s390x.rpm qemu-block-ssh-5.2.0-150300.109.2.s390x.rpm qemu-chardev-baum-5.2.0-150300.109.2.s390x.rpm qemu-chardev-spice-5.2.0-150300.109.2.s390x.rpm qemu-extra-5.2.0-150300.109.2.s390x.rpm qemu-guest-agent-5.2.0-150300.109.2.s390x.rpm qemu-hw-display-qxl-5.2.0-150300.109.2.s390x.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.109.2.s390x.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.109.2.s390x.rpm qemu-hw-display-virtio-vga-5.2.0-150300.109.2.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.109.2.s390x.rpm qemu-hw-usb-redirect-5.2.0-150300.109.2.s390x.rpm qemu-hw-usb-smartcard-5.2.0-150300.109.2.s390x.rpm qemu-ivshmem-tools-5.2.0-150300.109.2.s390x.rpm qemu-ksm-5.2.0-150300.109.2.s390x.rpm qemu-kvm-5.2.0-150300.109.2.s390x.rpm qemu-lang-5.2.0-150300.109.2.s390x.rpm qemu-linux-user-5.2.0-150300.109.2.s390x.rpm qemu-ppc-5.2.0-150300.109.2.s390x.rpm qemu-s390x-5.2.0-150300.109.2.s390x.rpm qemu-testsuite-5.2.0-150300.109.4.s390x.rpm qemu-tools-5.2.0-150300.109.2.s390x.rpm qemu-ui-curses-5.2.0-150300.109.2.s390x.rpm qemu-ui-gtk-5.2.0-150300.109.2.s390x.rpm qemu-ui-opengl-5.2.0-150300.109.2.s390x.rpm qemu-ui-spice-app-5.2.0-150300.109.2.s390x.rpm qemu-ui-spice-core-5.2.0-150300.109.2.s390x.rpm qemu-vhost-user-gpu-5.2.0-150300.109.2.s390x.rpm qemu-x86-5.2.0-150300.109.2.s390x.rpm qemu-5.2.0-150300.109.2.ppc64le.rpm qemu-arm-5.2.0-150300.109.2.ppc64le.rpm qemu-audio-alsa-5.2.0-150300.109.2.ppc64le.rpm qemu-audio-pa-5.2.0-150300.109.2.ppc64le.rpm qemu-audio-spice-5.2.0-150300.109.2.ppc64le.rpm qemu-block-curl-5.2.0-150300.109.2.ppc64le.rpm qemu-block-dmg-5.2.0-150300.109.2.ppc64le.rpm qemu-block-gluster-5.2.0-150300.109.2.ppc64le.rpm qemu-block-iscsi-5.2.0-150300.109.2.ppc64le.rpm qemu-block-nfs-5.2.0-150300.109.2.ppc64le.rpm qemu-block-rbd-5.2.0-150300.109.2.ppc64le.rpm qemu-block-ssh-5.2.0-150300.109.2.ppc64le.rpm qemu-chardev-baum-5.2.0-150300.109.2.ppc64le.rpm qemu-chardev-spice-5.2.0-150300.109.2.ppc64le.rpm qemu-extra-5.2.0-150300.109.2.ppc64le.rpm qemu-guest-agent-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-display-qxl-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-display-virtio-vga-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-usb-redirect-5.2.0-150300.109.2.ppc64le.rpm qemu-hw-usb-smartcard-5.2.0-150300.109.2.ppc64le.rpm qemu-ivshmem-tools-5.2.0-150300.109.2.ppc64le.rpm qemu-ksm-5.2.0-150300.109.2.ppc64le.rpm qemu-lang-5.2.0-150300.109.2.ppc64le.rpm qemu-linux-user-5.2.0-150300.109.2.ppc64le.rpm qemu-ppc-5.2.0-150300.109.2.ppc64le.rpm qemu-s390x-5.2.0-150300.109.2.ppc64le.rpm qemu-testsuite-5.2.0-150300.109.4.ppc64le.rpm qemu-tools-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-curses-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-gtk-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-opengl-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-spice-app-5.2.0-150300.109.2.ppc64le.rpm qemu-ui-spice-core-5.2.0-150300.109.2.ppc64le.rpm qemu-vhost-user-gpu-5.2.0-150300.109.2.ppc64le.rpm qemu-x86-5.2.0-150300.109.2.ppc64le.rpm qemu-5.2.0-150300.109.2.aarch64.rpm qemu-arm-5.2.0-150300.109.2.aarch64.rpm qemu-audio-alsa-5.2.0-150300.109.2.aarch64.rpm qemu-audio-pa-5.2.0-150300.109.2.aarch64.rpm qemu-audio-spice-5.2.0-150300.109.2.aarch64.rpm qemu-block-curl-5.2.0-150300.109.2.aarch64.rpm qemu-block-dmg-5.2.0-150300.109.2.aarch64.rpm qemu-block-gluster-5.2.0-150300.109.2.aarch64.rpm qemu-block-iscsi-5.2.0-150300.109.2.aarch64.rpm qemu-block-nfs-5.2.0-150300.109.2.aarch64.rpm qemu-block-rbd-5.2.0-150300.109.2.aarch64.rpm qemu-block-ssh-5.2.0-150300.109.2.aarch64.rpm qemu-chardev-baum-5.2.0-150300.109.2.aarch64.rpm qemu-chardev-spice-5.2.0-150300.109.2.aarch64.rpm qemu-extra-5.2.0-150300.109.2.aarch64.rpm qemu-guest-agent-5.2.0-150300.109.2.aarch64.rpm qemu-hw-display-qxl-5.2.0-150300.109.2.aarch64.rpm qemu-hw-display-virtio-gpu-5.2.0-150300.109.2.aarch64.rpm qemu-hw-display-virtio-gpu-pci-5.2.0-150300.109.2.aarch64.rpm qemu-hw-display-virtio-vga-5.2.0-150300.109.2.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-5.2.0-150300.109.2.aarch64.rpm qemu-hw-usb-redirect-5.2.0-150300.109.2.aarch64.rpm qemu-hw-usb-smartcard-5.2.0-150300.109.2.aarch64.rpm qemu-ivshmem-tools-5.2.0-150300.109.2.aarch64.rpm qemu-ksm-5.2.0-150300.109.2.aarch64.rpm qemu-lang-5.2.0-150300.109.2.aarch64.rpm qemu-linux-user-5.2.0-150300.109.2.aarch64.rpm qemu-ppc-5.2.0-150300.109.2.aarch64.rpm qemu-s390x-5.2.0-150300.109.2.aarch64.rpm qemu-testsuite-5.2.0-150300.109.4.aarch64.rpm qemu-tools-5.2.0-150300.109.2.aarch64.rpm qemu-ui-curses-5.2.0-150300.109.2.aarch64.rpm qemu-ui-gtk-5.2.0-150300.109.2.aarch64.rpm qemu-ui-opengl-5.2.0-150300.109.2.aarch64.rpm qemu-ui-spice-app-5.2.0-150300.109.2.aarch64.rpm qemu-ui-spice-core-5.2.0-150300.109.2.aarch64.rpm qemu-vhost-user-gpu-5.2.0-150300.109.2.aarch64.rpm qemu-x86-5.2.0-150300.109.2.aarch64.rpm openSUSE-SLE-15.3-2022-210 low SUSE Updates openSUSE-SLE 15.3 This update for qemu fixes the following issues: - CVE-2020-13253: Fixed an OOB access that could crash the guest resulting in DoS (bsc#1172033) - CVE-2021-20196: Fixed null pointer dereference that may lead to guest crash (bsc#1181361). qemu-4.2.1-11.34.2.src.rpm qemu-s390-4.2.1-11.34.2.x86_64.rpm qemu-s390-4.2.1-11.34.2.s390x.rpm qemu-s390-4.2.1-11.34.2.ppc64le.rpm qemu-s390-4.2.1-11.34.2.aarch64.rpm openSUSE-SLE-15.3-2022-111 important SUSE Updates openSUSE-SLE 15.3 This update for virglrenderer fixes the following issues: - CVE-2022-0175: Fixed missing initialization of res->ptr (bsc#1194601). libvirglrenderer0-0.6.0-4.6.1.x86_64.rpm virglrenderer-0.6.0-4.6.1.src.rpm virglrenderer-devel-0.6.0-4.6.1.x86_64.rpm virglrenderer-test-server-0.6.0-4.6.1.x86_64.rpm libvirglrenderer0-0.6.0-4.6.1.s390x.rpm virglrenderer-devel-0.6.0-4.6.1.s390x.rpm virglrenderer-test-server-0.6.0-4.6.1.s390x.rpm libvirglrenderer0-0.6.0-4.6.1.ppc64le.rpm virglrenderer-devel-0.6.0-4.6.1.ppc64le.rpm virglrenderer-test-server-0.6.0-4.6.1.ppc64le.rpm libvirglrenderer0-0.6.0-4.6.1.aarch64.rpm virglrenderer-devel-0.6.0-4.6.1.aarch64.rpm virglrenderer-test-server-0.6.0-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-193 moderate SUSE Updates openSUSE-SLE 15.3 This update for librtas fixes the following issues: - librtasevent: Fix memory page address print issue. (bsc#1193846) - Add '-ffat-lto-objects' to avoid ppc64le build error librtas-2.0.2-7.3.1.src.rpm librtas-devel-2.0.2-7.3.1.ppc64le.rpm librtas-devel-static-2.0.2-7.3.1.ppc64le.rpm librtas-doc-2.0.2-7.3.1.ppc64le.rpm librtas-doc-2.0.2-7.3.1.src.rpm librtas2-2.0.2-7.3.1.ppc64le.rpm openSUSE-SLE-15.3-2022-153 moderate SUSE Updates openSUSE-SLE 15.3 This update for enchant fixes the following issues: - Add missing closing parentheses for packageand Supplements. (bsc#1089434) enchant-2-backend-aspell-2.2.5-4.6.1.x86_64.rpm enchant-2-backend-hunspell-2.2.5-4.6.1.x86_64.rpm enchant-2-backend-voikko-2.2.5-4.6.1.x86_64.rpm enchant-2-backend-voikko-32bit-2.2.5-4.6.1.x86_64.rpm enchant-2.2.5-4.6.1.src.rpm enchant-data-2.2.5-4.6.1.x86_64.rpm enchant-devel-2.2.5-4.6.1.x86_64.rpm enchant-tools-2.2.5-4.6.1.x86_64.rpm libenchant-2-2-2.2.5-4.6.1.x86_64.rpm libenchant-2-2-32bit-2.2.5-4.6.1.x86_64.rpm enchant-2-backend-aspell-2.2.5-4.6.1.s390x.rpm enchant-2-backend-hunspell-2.2.5-4.6.1.s390x.rpm enchant-2-backend-voikko-2.2.5-4.6.1.s390x.rpm enchant-data-2.2.5-4.6.1.s390x.rpm enchant-devel-2.2.5-4.6.1.s390x.rpm enchant-tools-2.2.5-4.6.1.s390x.rpm libenchant-2-2-2.2.5-4.6.1.s390x.rpm enchant-2-backend-aspell-2.2.5-4.6.1.ppc64le.rpm enchant-2-backend-hunspell-2.2.5-4.6.1.ppc64le.rpm enchant-2-backend-voikko-2.2.5-4.6.1.ppc64le.rpm enchant-data-2.2.5-4.6.1.ppc64le.rpm enchant-devel-2.2.5-4.6.1.ppc64le.rpm enchant-tools-2.2.5-4.6.1.ppc64le.rpm libenchant-2-2-2.2.5-4.6.1.ppc64le.rpm enchant-2-backend-aspell-2.2.5-4.6.1.aarch64.rpm enchant-2-backend-hunspell-2.2.5-4.6.1.aarch64.rpm enchant-2-backend-voikko-2.2.5-4.6.1.aarch64.rpm enchant-data-2.2.5-4.6.1.aarch64.rpm enchant-devel-2.2.5-4.6.1.aarch64.rpm enchant-tools-2.2.5-4.6.1.aarch64.rpm libenchant-2-2-2.2.5-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-383 moderate SUSE Updates openSUSE-SLE 15.3 This update for cyrus-sasl fixes the following issues: - Fixed an issue when in postfix 'sasl' authentication with password fails. (bsc#1194265) - Add config parameter '--with-dblib=gdbm' - Avoid converting of '/etc/sasldb2 by every update. Convert '/etc/sasldb2' only if it is a Berkeley DB. cyrus-sasl-2.1.27-150300.4.3.1.src.rpm cyrus-sasl-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.src.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-crammd5-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-crammd5-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-devel-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-devel-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-digestmd5-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-gs2-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-gssapi-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-gssapi-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-ldap-auxprop-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-ntlm-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-otp-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-otp-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-plain-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-plain-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.src.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.src.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-scram-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-sqlauxprop-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.3.1.x86_64.rpm libsasl2-3-2.1.27-150300.4.3.1.x86_64.rpm libsasl2-3-32bit-2.1.27-150300.4.3.1.x86_64.rpm cyrus-sasl-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-crammd5-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-devel-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-gs2-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-gssapi-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-ntlm-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-otp-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-plain-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-scram-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.3.1.s390x.rpm libsasl2-3-2.1.27-150300.4.3.1.s390x.rpm cyrus-sasl-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-crammd5-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-devel-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-gs2-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-gssapi-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-ntlm-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-otp-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-plain-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-scram-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.3.1.ppc64le.rpm libsasl2-3-2.1.27-150300.4.3.1.ppc64le.rpm cyrus-sasl-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-crammd5-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-devel-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-digestmd5-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-gs2-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-gssapi-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-ntlm-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-otp-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-plain-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-bdb-scram-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-crammd5-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-devel-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-digestmd5-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-gs2-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-gssapi-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-ldap-auxprop-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-ldap-auxprop-bdb-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-ntlm-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-otp-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-plain-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-saslauthd-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-saslauthd-bdb-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-scram-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-sqlauxprop-2.1.27-150300.4.3.1.aarch64.rpm cyrus-sasl-sqlauxprop-bdb-2.1.27-150300.4.3.1.aarch64.rpm libsasl2-3-2.1.27-150300.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-312 moderate SUSE Updates openSUSE-SLE 15.3 This update for rrdtool fixes the following issues: - Remove umask usage as it creates issues and it's not thread safe. (bsc#1189375) librrd8-1.7.0-6.3.1.x86_64.rpm lua-rrdtool-1.7.0-6.3.1.x86_64.rpm perl-rrdtool-1.7.0-6.3.1.x86_64.rpm python3-rrdtool-1.7.0-6.3.1.x86_64.rpm rrdtool-1.7.0-6.3.1.src.rpm rrdtool-1.7.0-6.3.1.x86_64.rpm rrdtool-cached-1.7.0-6.3.1.x86_64.rpm rrdtool-devel-1.7.0-6.3.1.x86_64.rpm rrdtool-doc-1.7.0-6.3.1.x86_64.rpm ruby-rrdtool-1.7.0-6.3.1.x86_64.rpm tcl-rrdtool-1.7.0-6.3.1.x86_64.rpm librrd8-1.7.0-6.3.1.s390x.rpm lua-rrdtool-1.7.0-6.3.1.s390x.rpm perl-rrdtool-1.7.0-6.3.1.s390x.rpm python3-rrdtool-1.7.0-6.3.1.s390x.rpm rrdtool-1.7.0-6.3.1.s390x.rpm rrdtool-cached-1.7.0-6.3.1.s390x.rpm rrdtool-devel-1.7.0-6.3.1.s390x.rpm rrdtool-doc-1.7.0-6.3.1.s390x.rpm ruby-rrdtool-1.7.0-6.3.1.s390x.rpm tcl-rrdtool-1.7.0-6.3.1.s390x.rpm librrd8-1.7.0-6.3.1.ppc64le.rpm lua-rrdtool-1.7.0-6.3.1.ppc64le.rpm perl-rrdtool-1.7.0-6.3.1.ppc64le.rpm python3-rrdtool-1.7.0-6.3.1.ppc64le.rpm rrdtool-1.7.0-6.3.1.ppc64le.rpm rrdtool-cached-1.7.0-6.3.1.ppc64le.rpm rrdtool-devel-1.7.0-6.3.1.ppc64le.rpm rrdtool-doc-1.7.0-6.3.1.ppc64le.rpm ruby-rrdtool-1.7.0-6.3.1.ppc64le.rpm tcl-rrdtool-1.7.0-6.3.1.ppc64le.rpm librrd8-1.7.0-6.3.1.aarch64.rpm lua-rrdtool-1.7.0-6.3.1.aarch64.rpm perl-rrdtool-1.7.0-6.3.1.aarch64.rpm python3-rrdtool-1.7.0-6.3.1.aarch64.rpm rrdtool-1.7.0-6.3.1.aarch64.rpm rrdtool-cached-1.7.0-6.3.1.aarch64.rpm rrdtool-devel-1.7.0-6.3.1.aarch64.rpm rrdtool-doc-1.7.0-6.3.1.aarch64.rpm ruby-rrdtool-1.7.0-6.3.1.aarch64.rpm tcl-rrdtool-1.7.0-6.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-537 low SUSE Updates openSUSE-SLE 15.3 This update for yast2-dhcp-server fixes the following issues: - Fix DNS zone creation by fixing a maintained DNS zone check. yast2-dhcp-server-4.3.2-150300.3.3.1.noarch.rpm yast2-dhcp-server-4.3.2-150300.3.3.1.src.rpm openSUSE-SLE-15.3-2022-106 important SUSE Updates openSUSE-SLE 15.3 This update for jawn fixes the following issues: - CVE-2022-21653: Fixed DoS caused by a hash collision in SimpleFacade and MutableFacade (bsc#1194358). jawn-0.14.1-3.3.1.src.rpm jawn-ast-0.14.1-3.3.1.noarch.rpm jawn-json4s-0.14.1-3.3.1.noarch.rpm jawn-parser-0.14.1-3.3.1.noarch.rpm jawn-util-0.14.1-3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-158 important SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Follow up changes to (jsc#PCT-130, bsc#1182026) + Fix executable name for AHB service/timer + Update manpage for BYOS instance registration cloud-regionsrv-client-9.3.1-6.57.1.noarch.rpm cloud-regionsrv-client-9.3.1-6.57.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.57.1.noarch.rpm cloud-regionsrv-client-plugin-azure-1.0.1-6.57.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-6.57.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.57.1.noarch.rpm openSUSE-SLE-15.3-2022-150 important SUSE Updates openSUSE-SLE 15.3 This update for aide fixes the following issues: - CVE-2021-45417: Fix a bufferoverflow in base64 functions (bsc#1194735) aide-0.16-24.1.src.rpm aide-0.16-24.1.x86_64.rpm aide-test-0.16-24.1.x86_64.rpm aide-0.16-24.1.s390x.rpm aide-test-0.16-24.1.s390x.rpm aide-0.16-24.1.ppc64le.rpm aide-test-0.16-24.1.ppc64le.rpm aide-0.16-24.1.aarch64.rpm aide-test-0.16-24.1.aarch64.rpm openSUSE-SLE-15.3-2022-283 critical SUSE Updates openSUSE-SLE 15.3 - CVE-2021-44141: Information leak via symlinks of existance of files or directories outside of the exported share; (bso#14911); (bsc#1193690); - CVE-2021-44142: Out-of-bounds heap read/write vulnerability in VFS module vfs_fruit allows code execution; (bso#14914); (bsc#1194859); - CVE-2022-0336: Samba AD users with permission to write to an account can impersonate arbitrary services; (bso#14950); (bsc#1195048); samba was updated to 4.15.4 (jsc#SLE-23329); * Duplicate SMB file_ids leading to Windows client cache poisoning; (bso#14928); * Failed to parse NTLMv2_RESPONSE length 95 - Buffer Size Error - NT_STATUS_BUFFER_TOO_SMALL; (bso#14932); * kill_tcp_connections does not work; (bso#14934); * Can't connect to Windows shares not requiring authentication using KDE/Gnome; (bso#14935); * smbclient -L doesn't set "client max protocol" to NT1 before calling the "Reconnecting with SMB1 for workgroup listing" path; (bso#14939); * Cross device copy of the crossrename module always fails; (bso#14940); * symlinkat function from VFS cap module always fails with an error; (bso#14941); * Fix possible fsp pointer deference; (bso#14942); * Missing pop_sec_ctx() in error path inside close_directory(); (bso#14944); * "smbd --build-options" no longer works without an smb.conf file; (bso#14945); Samba was updated to version 4.15.3 + CVE-2021-43566: Symlink race error can allow directory creation outside of the exported share; (bsc#1139519); + CVE-2021-20316: Symlink race error can allow metadata read and modify outside of the exported share; (bsc#1191227); - Reorganize libs packages. Split samba-libs into samba-client-libs, samba-libs, samba-winbind-libs and samba-ad-dc-libs, merging samba public libraries depending on internal samba libraries into these packages as there were dependency problems everytime one of these public libraries changed its version (bsc#1192684). The devel packages are merged into samba-devel. - Rename package samba-core-devel to samba-devel - Update the symlink create by samba-dsdb-modules to private samba ldb modules following libldb2 changes from /usr/lib64/ldb/samba to /usr/lib64/ldb2/modules/ldb/samba krb5 was updated to 1.16.3 to 1.19.2 * Fix a denial of service attack against the KDC encrypted challenge code; (CVE-2021-36222); * Fix a memory leak when gss_inquire_cred() is called without a credential handle. Changes from 1.19.1: * Fix a linking issue with Samba. * Better support multiple pkinit_identities values by checking whether certificates can be loaded for each value. Changes from 1.19 Administrator experience * When a client keytab is present, the GSSAPI krb5 mech will refresh credentials even if the current credentials were acquired manually. * It is now harder to accidentally delete the K/M entry from a KDB. Developer experience * gss_acquire_cred_from() now supports the "password" and "verify" options, allowing credentials to be acquired via password and verified using a keytab key. * When an application accepts a GSS security context, the new GSS_C_CHANNEL_BOUND_FLAG will be set if the initiator and acceptor both provided matching channel bindings. * Added the GSS_KRB5_NT_X509_CERT name type, allowing S4U2Self requests to identify the desired client principal by certificate. * PKINIT certauth modules can now cause the hw-authent flag to be set in issued tickets. * The krb5_init_creds_step() API will now issue the same password expiration warnings as krb5_get_init_creds_password(). Protocol evolution * Added client and KDC support for Microsoft's Resource-Based Constrained Delegation, which allows cross-realm S4U2Proxy requests. A third-party database module is required for KDC support. * kadmin/admin is now the preferred server principal name for kadmin connections, and the host-based form is no longer created by default. The client will still try the host-based form as a fallback. * Added client and server support for Microsoft's KERB_AP_OPTIONS_CBT extension, which causes channel bindings to be required for the initiator if the acceptor provided them. The client will send this option if the client_aware_gss_bindings profile option is set. User experience * kinit will now issue a warning if the des3-cbc-sha1 encryption type is used in the reply. This encryption type will be deprecated and removed in future releases. * Added kvno flags --out-cache, --no-store, and --cached-only (inspired by Heimdal's kgetcred). Changes from 1.18.3 * Fix a denial of service vulnerability when decoding Kerberos protocol messages. * Fix a locking issue with the LMDB KDB module which could cause KDC and kadmind processes to lose access to the database. * Fix an assertion failure when libgssapi_krb5 is repeatedly loaded and unloaded while libkrb5support remains loaded. Changes from 1.18.2 * Fix a SPNEGO regression where an acceptor using the default credential would improperly filter mechanisms, causing a negotiation failure. * Fix a bug where the KDC would fail to issue tickets if the local krbtgt principal's first key has a single-DES enctype. * Add stub functions to allow old versions of OpenSSL libcrypto to link against libkrb5. * Fix a NegoEx bug where the client name and delegated credential might not be reported. Changes from 1.18.1 * Fix a crash when qualifying short hostnames when the system has no primary DNS domain. * Fix a regression when an application imports "service@" as a GSS host-based name for its acceptor credential handle. * Fix KDC enforcement of auth indicators when they are modified by the KDB module. * Fix removal of require_auth string attributes when the LDAP KDB module is used. * Fix a compile error when building with musl libc on Linux. * Fix a compile error when building with gcc 4.x. * Change the KDC constrained delegation precedence order for consistency with Windows KDCs. Changes from 1.18 Administrator experience: * Remove support for single-DES encryption types. * Change the replay cache format to be more efficient and robust. Replay cache filenames using the new format end with ".rcache2" by default. * setuid programs will automatically ignore environment variables that normally affect krb5 API functions, even if the caller does not use krb5_init_secure_context(). * Add an "enforce_ok_as_delegate" krb5.conf relation to disable credential forwarding during GSSAPI authentication unless the KDC sets the ok-as-delegate bit in the service ticket. * Use the permitted_enctypes krb5.conf setting as the default value for default_tkt_enctypes and default_tgs_enctypes. Developer experience: * Implement krb5_cc_remove_cred() for all credential cache types. * Add the krb5_pac_get_client_info() API to get the client account name from a PAC. Protocol evolution: * Add KDC support for S4U2Self requests where the user is identified by X.509 certificate. (Requires support for certificate lookup from a third-party KDB module.) * Remove support for an old ("draft 9") variant of PKINIT. * Add support for Microsoft NegoEx. (Requires one or more third-party GSS modules implementing NegoEx mechanisms.) User experience: * Add support for "dns_canonicalize_hostname=fallback", causing host-based principal names to be tried first without DNS canonicalization, and again with DNS canonicalization if the un-canonicalized server is not found. * Expand single-component hostnames in host-based principal names when DNS canonicalization is not used, adding the system's first DNS search path as a suffix. Add a "qualify_shortname" krb5.conf relation to override this suffix or disable expansion. * Honor the transited-policy-checked ticket flag on application servers, eliminating the requirement to configure capaths on servers in some scenarios. Code quality: * The libkrb5 serialization code (used to export and import krb5 GSS security contexts) has been simplified and made type-safe. * The libkrb5 code for creating KRB-PRIV, KRB-SAFE, and KRB-CRED messages has been revised to conform to current coding practices. * The test suite has been modified to work with macOS System Integrity Protection enabled. * The test suite incorporates soft-pkcs11 so that PKINIT PKCS11 support can always be tested. Changes from 1.17.1 * Fix a bug preventing "addprinc -randkey -kvno" from working in kadmin. * Fix a bug preventing time skew correction from working when a KCM credential cache is used. Changes from 1.17: Administrator experience: * A new Kerberos database module using the Lightning Memory-Mapped Database library (LMDB) has been added. The LMDB KDB module should be more performant and more robust than the DB2 module, and may become the default module for new databases in a future release. * "kdb5_util dump" will no longer dump policy entries when specific principal names are requested. Developer experience: * The new krb5_get_etype_info() API can be used to retrieve enctype, salt, and string-to-key parameters from the KDC for a client principal. * The new GSS_KRB5_NT_ENTERPRISE_NAME name type allows enterprise principal names to be used with GSS-API functions. * KDC and kadmind modules which call com_err() will now write to the log file in a format more consistent with other log messages. * Programs which use large numbers of memory credential caches should perform better. Protocol evolution: * The SPAKE pre-authentication mechanism is now supported. This mechanism protects against password dictionary attacks without requiring any additional infrastructure such as certificates. SPAKE is enabled by default on clients, but must be manually enabled on the KDC for this release. * PKINIT freshness tokens are now supported. Freshness tokens can protect against scenarios where an attacker uses temporary access to a smart card to generate authentication requests for the future. * Password change operations now prefer TCP over UDP, to avoid spurious error messages about replays when a response packet is dropped. * The KDC now supports cross-realm S4U2Self requests when used with a third-party KDB module such as Samba's. The client code for cross-realm S4U2Self requests is also now more robust. User experience: * The new ktutil addent -f flag can be used to fetch salt information from the KDC for password-based keys. * The new kdestroy -p option can be used to destroy a credential cache within a collection by client principal name. * The Kerberos man page has been restored, and documents the environment variables that affect programs using the Kerberos library. Code quality: * Python test scripts now use Python 3. * Python test scripts now display markers in verbose output, making it easier to find where a failure occurred within the scripts. * The Windows build system has been simplified and updated to work with more recent versions of Visual Studio. A large volume of unused Windows-specific code has been removed. Visual Studio 2013 or later is now required. - Build with full Cyrus SASL support. Negotiating SASL credentials with an EXTERNAL bind mechanism requires interaction. Kerberos provides its own interaction function that skips all interaction, thus preventing the mechanism from working. ldb was updated to version 2.4.1 (jsc#SLE-23329); - Release 2.4.1 + Corrected python behaviour for 'in' for LDAP attributes contained as part of ldb.Message; (bso#14845); + Fix memory handling in ldb.msg_diff; (bso#14836); - Release 2.4.0 + pyldb: Fix Message.items() for a message containing elements + pyldb: Add test for Message.items() + tests: Use ldbsearch '--scope instead of '-s' + Change page size of guidindexpackv1.ldb + Use a 1MiB lmdb so the test also passes on aarch64 CentOS stream + attrib_handler casefold: simplify space dropping + fix ldb_comparison_fold off-by-one overrun + CVE-2020-27840: pytests: move Dn.validate test to ldb + CVE-2020-27840 ldb_dn: avoid head corruption in ldb_dn_explode + CVE-2021-20277 ldb/attrib_handlers casefold: stay in bounds + CVE-2021-20277 ldb tests: ldb_match tests with extra spaces + improve comments for ldb_module_connect_backend() + test/ldb_tdb: correct introductory comments + ldb.h: remove undefined async_ctx function signatures + correct comments in attrib_handers val_to_int64 + dn tests use cmocka print functions + ldb_match: remove redundant check + add tests for ldb_wildcard_compare + ldb_match: trailing chunk must match end of string + pyldb: catch potential overflow error in py_timestring + ldb: remove some 'if PY3's in tests talloc was updated to 2.3.3: + various bugfixes + python: Ensure reference counts are properly incremented + Change pytalloc source to LGPL + Upgrade waf to 2.0.18 to fix a cross-compilation issue; (bso#13846). tdb was updated to version 1.4.4: + various bugfixes tevent was updated to version 0.11.0: + Add custom tag to events + Add event trace api sssd was updated to: - Fix tests test_copy_ccache & test_copy_keytab for later versions of krb5 - Update the private ldb modules installation following libldb2 changes from /usr/lib64/ldb/samba to /usr/lib64/ldb2/modules/ldb/samba apparmor was updated to: - Cater for changes to ldb packaging to allow parallel installation with libldb (bsc#1192684). - add profile for samba-bgqd (bsc#1191532). apache2-mod_apparmor-2.13.6-150300.3.11.2.x86_64.rpm apparmor-2.13.6-150300.3.11.2.src.rpm apparmor-abstractions-2.13.6-150300.3.11.2.noarch.rpm apparmor-docs-2.13.6-150300.3.11.2.noarch.rpm apparmor-parser-2.13.6-150300.3.11.2.x86_64.rpm apparmor-parser-lang-2.13.6-150300.3.11.2.noarch.rpm apparmor-profiles-2.13.6-150300.3.11.2.noarch.rpm apparmor-utils-2.13.6-150300.3.11.2.noarch.rpm apparmor-utils-lang-2.13.6-150300.3.11.2.noarch.rpm ctdb-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm ctdb-pcp-pmda-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm krb5-1.19.2-150300.8.3.2.src.rpm krb5-1.19.2-150300.8.3.2.x86_64.rpm krb5-32bit-1.19.2-150300.8.3.2.x86_64.rpm krb5-client-1.19.2-150300.8.3.2.x86_64.rpm krb5-devel-1.19.2-150300.8.3.2.x86_64.rpm krb5-devel-32bit-1.19.2-150300.8.3.2.x86_64.rpm krb5-mini-1.19.2-150300.8.3.2.src.rpm krb5-mini-1.19.2-150300.8.3.2.x86_64.rpm krb5-mini-devel-1.19.2-150300.8.3.2.x86_64.rpm krb5-plugin-kdb-ldap-1.19.2-150300.8.3.2.x86_64.rpm krb5-plugin-preauth-otp-1.19.2-150300.8.3.2.x86_64.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.8.3.2.x86_64.rpm krb5-plugin-preauth-spake-1.19.2-150300.8.3.2.x86_64.rpm krb5-server-1.19.2-150300.8.3.2.x86_64.rpm ldb-2.4.1-150300.3.10.1.src.rpm ldb-tools-2.4.1-150300.3.10.1.x86_64.rpm libapparmor-2.13.6-150300.3.11.1.src.rpm libapparmor-devel-2.13.6-150300.3.11.1.x86_64.rpm libapparmor1-2.13.6-150300.3.11.1.x86_64.rpm libapparmor1-32bit-2.13.6-150300.3.11.1.x86_64.rpm libipa_hbac-devel-1.16.1-150300.23.17.3.x86_64.rpm libipa_hbac0-1.16.1-150300.23.17.3.x86_64.rpm libldb-devel-2.4.1-150300.3.10.1.x86_64.rpm libldb2-2.4.1-150300.3.10.1.x86_64.rpm libldb2-32bit-2.4.1-150300.3.10.1.x86_64.rpm libnfsidmap-sss-1.16.1-150300.23.17.3.x86_64.rpm libsamba-policy-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm libsamba-policy-python3-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm libsamba-policy0-python3-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm libsamba-policy0-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm libsss_certmap-devel-1.16.1-150300.23.17.3.x86_64.rpm libsss_certmap0-1.16.1-150300.23.17.3.x86_64.rpm libsss_idmap-devel-1.16.1-150300.23.17.3.x86_64.rpm libsss_idmap0-1.16.1-150300.23.17.3.x86_64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.17.3.x86_64.rpm libsss_nss_idmap0-1.16.1-150300.23.17.3.x86_64.rpm libsss_simpleifp-devel-1.16.1-150300.23.17.3.x86_64.rpm libsss_simpleifp0-1.16.1-150300.23.17.3.x86_64.rpm libtalloc-devel-2.3.3-150300.3.3.2.x86_64.rpm libtalloc2-2.3.3-150300.3.3.2.x86_64.rpm libtalloc2-32bit-2.3.3-150300.3.3.2.x86_64.rpm libtdb-devel-1.4.4-150300.3.3.2.x86_64.rpm libtdb1-1.4.4-150300.3.3.2.x86_64.rpm libtdb1-32bit-1.4.4-150300.3.3.2.x86_64.rpm libtevent-devel-0.11.0-150300.3.3.2.x86_64.rpm libtevent0-0.11.0-150300.3.3.2.x86_64.rpm libtevent0-32bit-0.11.0-150300.3.3.2.x86_64.rpm pam_apparmor-2.13.6-150300.3.11.2.x86_64.rpm pam_apparmor-32bit-2.13.6-150300.3.11.2.x86_64.rpm perl-apparmor-2.13.6-150300.3.11.2.x86_64.rpm python3-apparmor-2.13.6-150300.3.11.2.x86_64.rpm python3-ipa_hbac-1.16.1-150300.23.17.3.x86_64.rpm python3-ldb-2.4.1-150300.3.10.1.x86_64.rpm python3-ldb-32bit-2.4.1-150300.3.10.1.x86_64.rpm python3-ldb-devel-2.4.1-150300.3.10.1.x86_64.rpm python3-sss-murmur-1.16.1-150300.23.17.3.x86_64.rpm python3-sss_nss_idmap-1.16.1-150300.23.17.3.x86_64.rpm python3-sssd-config-1.16.1-150300.23.17.3.x86_64.rpm python3-talloc-2.3.3-150300.3.3.2.x86_64.rpm python3-talloc-32bit-2.3.3-150300.3.3.2.x86_64.rpm python3-talloc-devel-2.3.3-150300.3.3.2.x86_64.rpm python3-tdb-1.4.4-150300.3.3.2.x86_64.rpm python3-tdb-32bit-1.4.4-150300.3.3.2.x86_64.rpm python3-tevent-0.11.0-150300.3.3.2.x86_64.rpm python3-tevent-32bit-0.11.0-150300.3.3.2.x86_64.rpm ruby-apparmor-2.13.6-150300.3.11.2.x86_64.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.src.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ad-dc-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ad-dc-libs-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ad-dc-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ceph-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-client-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-client-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-client-libs-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-client-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-devel-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-doc-4.15.4+git.324.8332acf1a63-150300.3.25.3.noarch.rpm samba-dsdb-modules-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-gpupdate-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-ldb-ldap-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-libs-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-libs-python3-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-libs-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-test-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-tool-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-winbind-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-winbind-libs-32bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm samba-winbind-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.x86_64.rpm sssd-1.16.1-150300.23.17.3.src.rpm sssd-1.16.1-150300.23.17.3.x86_64.rpm sssd-ad-1.16.1-150300.23.17.3.x86_64.rpm sssd-common-1.16.1-150300.23.17.3.x86_64.rpm sssd-dbus-1.16.1-150300.23.17.3.x86_64.rpm sssd-ipa-1.16.1-150300.23.17.3.x86_64.rpm sssd-krb5-1.16.1-150300.23.17.3.x86_64.rpm sssd-krb5-common-1.16.1-150300.23.17.3.x86_64.rpm sssd-ldap-1.16.1-150300.23.17.3.x86_64.rpm sssd-proxy-1.16.1-150300.23.17.3.x86_64.rpm sssd-tools-1.16.1-150300.23.17.3.x86_64.rpm sssd-wbclient-1.16.1-150300.23.17.3.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.17.3.x86_64.rpm sssd-winbind-idmap-1.16.1-150300.23.17.3.x86_64.rpm talloc-2.3.3-150300.3.3.2.src.rpm talloc-man-2.3.3-150300.3.3.1.src.rpm talloc-man-2.3.3-150300.3.3.1.x86_64.rpm tdb-1.4.4-150300.3.3.2.src.rpm tdb-tools-1.4.4-150300.3.3.2.x86_64.rpm tevent-0.11.0-150300.3.3.2.src.rpm tevent-man-0.11.0-150300.3.3.1.src.rpm tevent-man-0.11.0-150300.3.3.1.x86_64.rpm apache2-mod_apparmor-2.13.6-150300.3.11.2.s390x.rpm apparmor-parser-2.13.6-150300.3.11.2.s390x.rpm ctdb-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm ctdb-pcp-pmda-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm krb5-1.19.2-150300.8.3.2.s390x.rpm krb5-client-1.19.2-150300.8.3.2.s390x.rpm krb5-devel-1.19.2-150300.8.3.2.s390x.rpm krb5-mini-1.19.2-150300.8.3.2.s390x.rpm krb5-mini-devel-1.19.2-150300.8.3.2.s390x.rpm krb5-plugin-kdb-ldap-1.19.2-150300.8.3.2.s390x.rpm krb5-plugin-preauth-otp-1.19.2-150300.8.3.2.s390x.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.8.3.2.s390x.rpm krb5-plugin-preauth-spake-1.19.2-150300.8.3.2.s390x.rpm krb5-server-1.19.2-150300.8.3.2.s390x.rpm ldb-tools-2.4.1-150300.3.10.1.s390x.rpm libapparmor-devel-2.13.6-150300.3.11.1.s390x.rpm libapparmor1-2.13.6-150300.3.11.1.s390x.rpm libipa_hbac-devel-1.16.1-150300.23.17.3.s390x.rpm libipa_hbac0-1.16.1-150300.23.17.3.s390x.rpm libldb-devel-2.4.1-150300.3.10.1.s390x.rpm libldb2-2.4.1-150300.3.10.1.s390x.rpm libnfsidmap-sss-1.16.1-150300.23.17.3.s390x.rpm libsamba-policy-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm libsamba-policy-python3-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm libsamba-policy0-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm libsss_certmap-devel-1.16.1-150300.23.17.3.s390x.rpm libsss_certmap0-1.16.1-150300.23.17.3.s390x.rpm libsss_idmap-devel-1.16.1-150300.23.17.3.s390x.rpm libsss_idmap0-1.16.1-150300.23.17.3.s390x.rpm libsss_nss_idmap-devel-1.16.1-150300.23.17.3.s390x.rpm libsss_nss_idmap0-1.16.1-150300.23.17.3.s390x.rpm libsss_simpleifp-devel-1.16.1-150300.23.17.3.s390x.rpm libsss_simpleifp0-1.16.1-150300.23.17.3.s390x.rpm libtalloc-devel-2.3.3-150300.3.3.2.s390x.rpm libtalloc2-2.3.3-150300.3.3.2.s390x.rpm libtdb-devel-1.4.4-150300.3.3.2.s390x.rpm libtdb1-1.4.4-150300.3.3.2.s390x.rpm libtevent-devel-0.11.0-150300.3.3.2.s390x.rpm libtevent0-0.11.0-150300.3.3.2.s390x.rpm pam_apparmor-2.13.6-150300.3.11.2.s390x.rpm perl-apparmor-2.13.6-150300.3.11.2.s390x.rpm python3-apparmor-2.13.6-150300.3.11.2.s390x.rpm python3-ipa_hbac-1.16.1-150300.23.17.3.s390x.rpm python3-ldb-2.4.1-150300.3.10.1.s390x.rpm python3-ldb-devel-2.4.1-150300.3.10.1.s390x.rpm python3-sss-murmur-1.16.1-150300.23.17.3.s390x.rpm python3-sss_nss_idmap-1.16.1-150300.23.17.3.s390x.rpm python3-sssd-config-1.16.1-150300.23.17.3.s390x.rpm python3-talloc-2.3.3-150300.3.3.2.s390x.rpm python3-talloc-devel-2.3.3-150300.3.3.2.s390x.rpm python3-tdb-1.4.4-150300.3.3.2.s390x.rpm python3-tevent-0.11.0-150300.3.3.2.s390x.rpm ruby-apparmor-2.13.6-150300.3.11.2.s390x.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-ad-dc-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-ad-dc-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-client-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-client-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-dsdb-modules-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-gpupdate-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-ldb-ldap-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-libs-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-test-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-tool-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-winbind-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm samba-winbind-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.s390x.rpm sssd-1.16.1-150300.23.17.3.s390x.rpm sssd-ad-1.16.1-150300.23.17.3.s390x.rpm sssd-common-1.16.1-150300.23.17.3.s390x.rpm sssd-dbus-1.16.1-150300.23.17.3.s390x.rpm sssd-ipa-1.16.1-150300.23.17.3.s390x.rpm sssd-krb5-1.16.1-150300.23.17.3.s390x.rpm sssd-krb5-common-1.16.1-150300.23.17.3.s390x.rpm sssd-ldap-1.16.1-150300.23.17.3.s390x.rpm sssd-proxy-1.16.1-150300.23.17.3.s390x.rpm sssd-tools-1.16.1-150300.23.17.3.s390x.rpm sssd-wbclient-1.16.1-150300.23.17.3.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.17.3.s390x.rpm sssd-winbind-idmap-1.16.1-150300.23.17.3.s390x.rpm talloc-man-2.3.3-150300.3.3.1.s390x.rpm tdb-tools-1.4.4-150300.3.3.2.s390x.rpm tevent-man-0.11.0-150300.3.3.1.s390x.rpm apache2-mod_apparmor-2.13.6-150300.3.11.2.ppc64le.rpm apparmor-parser-2.13.6-150300.3.11.2.ppc64le.rpm ctdb-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm ctdb-pcp-pmda-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm krb5-1.19.2-150300.8.3.2.ppc64le.rpm krb5-client-1.19.2-150300.8.3.2.ppc64le.rpm krb5-devel-1.19.2-150300.8.3.2.ppc64le.rpm krb5-mini-1.19.2-150300.8.3.2.ppc64le.rpm krb5-mini-devel-1.19.2-150300.8.3.2.ppc64le.rpm krb5-plugin-kdb-ldap-1.19.2-150300.8.3.2.ppc64le.rpm krb5-plugin-preauth-otp-1.19.2-150300.8.3.2.ppc64le.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.8.3.2.ppc64le.rpm krb5-plugin-preauth-spake-1.19.2-150300.8.3.2.ppc64le.rpm krb5-server-1.19.2-150300.8.3.2.ppc64le.rpm ldb-tools-2.4.1-150300.3.10.1.ppc64le.rpm libapparmor-devel-2.13.6-150300.3.11.1.ppc64le.rpm libapparmor1-2.13.6-150300.3.11.1.ppc64le.rpm libipa_hbac-devel-1.16.1-150300.23.17.3.ppc64le.rpm libipa_hbac0-1.16.1-150300.23.17.3.ppc64le.rpm libldb-devel-2.4.1-150300.3.10.1.ppc64le.rpm libldb2-2.4.1-150300.3.10.1.ppc64le.rpm libnfsidmap-sss-1.16.1-150300.23.17.3.ppc64le.rpm libsamba-policy-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm libsamba-policy-python3-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm libsamba-policy0-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm libsss_certmap-devel-1.16.1-150300.23.17.3.ppc64le.rpm libsss_certmap0-1.16.1-150300.23.17.3.ppc64le.rpm libsss_idmap-devel-1.16.1-150300.23.17.3.ppc64le.rpm libsss_idmap0-1.16.1-150300.23.17.3.ppc64le.rpm libsss_nss_idmap-devel-1.16.1-150300.23.17.3.ppc64le.rpm libsss_nss_idmap0-1.16.1-150300.23.17.3.ppc64le.rpm libsss_simpleifp-devel-1.16.1-150300.23.17.3.ppc64le.rpm libsss_simpleifp0-1.16.1-150300.23.17.3.ppc64le.rpm libtalloc-devel-2.3.3-150300.3.3.2.ppc64le.rpm libtalloc2-2.3.3-150300.3.3.2.ppc64le.rpm libtdb-devel-1.4.4-150300.3.3.2.ppc64le.rpm libtdb1-1.4.4-150300.3.3.2.ppc64le.rpm libtevent-devel-0.11.0-150300.3.3.2.ppc64le.rpm libtevent0-0.11.0-150300.3.3.2.ppc64le.rpm pam_apparmor-2.13.6-150300.3.11.2.ppc64le.rpm perl-apparmor-2.13.6-150300.3.11.2.ppc64le.rpm python3-apparmor-2.13.6-150300.3.11.2.ppc64le.rpm python3-ipa_hbac-1.16.1-150300.23.17.3.ppc64le.rpm python3-ldb-2.4.1-150300.3.10.1.ppc64le.rpm python3-ldb-devel-2.4.1-150300.3.10.1.ppc64le.rpm python3-sss-murmur-1.16.1-150300.23.17.3.ppc64le.rpm python3-sss_nss_idmap-1.16.1-150300.23.17.3.ppc64le.rpm python3-sssd-config-1.16.1-150300.23.17.3.ppc64le.rpm python3-talloc-2.3.3-150300.3.3.2.ppc64le.rpm python3-talloc-devel-2.3.3-150300.3.3.2.ppc64le.rpm python3-tdb-1.4.4-150300.3.3.2.ppc64le.rpm python3-tevent-0.11.0-150300.3.3.2.ppc64le.rpm ruby-apparmor-2.13.6-150300.3.11.2.ppc64le.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-ad-dc-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-ad-dc-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-client-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-client-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-dsdb-modules-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-gpupdate-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-ldb-ldap-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-libs-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-test-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-tool-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-winbind-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm samba-winbind-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.ppc64le.rpm sssd-1.16.1-150300.23.17.3.ppc64le.rpm sssd-ad-1.16.1-150300.23.17.3.ppc64le.rpm sssd-common-1.16.1-150300.23.17.3.ppc64le.rpm sssd-dbus-1.16.1-150300.23.17.3.ppc64le.rpm sssd-ipa-1.16.1-150300.23.17.3.ppc64le.rpm sssd-krb5-1.16.1-150300.23.17.3.ppc64le.rpm sssd-krb5-common-1.16.1-150300.23.17.3.ppc64le.rpm sssd-ldap-1.16.1-150300.23.17.3.ppc64le.rpm sssd-proxy-1.16.1-150300.23.17.3.ppc64le.rpm sssd-tools-1.16.1-150300.23.17.3.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.17.3.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.17.3.ppc64le.rpm sssd-winbind-idmap-1.16.1-150300.23.17.3.ppc64le.rpm talloc-man-2.3.3-150300.3.3.1.ppc64le.rpm tdb-tools-1.4.4-150300.3.3.2.ppc64le.rpm tevent-man-0.11.0-150300.3.3.1.ppc64le.rpm apache2-mod_apparmor-2.13.6-150300.3.11.2.aarch64.rpm apparmor-parser-2.13.6-150300.3.11.2.aarch64.rpm ctdb-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm ctdb-pcp-pmda-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm krb5-1.19.2-150300.8.3.2.aarch64.rpm krb5-client-1.19.2-150300.8.3.2.aarch64.rpm krb5-devel-1.19.2-150300.8.3.2.aarch64.rpm krb5-mini-1.19.2-150300.8.3.2.aarch64.rpm krb5-mini-devel-1.19.2-150300.8.3.2.aarch64.rpm krb5-plugin-kdb-ldap-1.19.2-150300.8.3.2.aarch64.rpm krb5-plugin-preauth-otp-1.19.2-150300.8.3.2.aarch64.rpm krb5-plugin-preauth-pkinit-1.19.2-150300.8.3.2.aarch64.rpm krb5-plugin-preauth-spake-1.19.2-150300.8.3.2.aarch64.rpm krb5-server-1.19.2-150300.8.3.2.aarch64.rpm ldb-tools-2.4.1-150300.3.10.1.aarch64.rpm libapparmor-devel-2.13.6-150300.3.11.1.aarch64.rpm libapparmor1-2.13.6-150300.3.11.1.aarch64.rpm libipa_hbac-devel-1.16.1-150300.23.17.3.aarch64.rpm libipa_hbac0-1.16.1-150300.23.17.3.aarch64.rpm libldb-devel-2.4.1-150300.3.10.1.aarch64.rpm libldb2-2.4.1-150300.3.10.1.aarch64.rpm libnfsidmap-sss-1.16.1-150300.23.17.3.aarch64.rpm libsamba-policy-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm libsamba-policy-python3-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm libsamba-policy0-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm libsamba-policy0-python3-64bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64_ilp32.rpm libsss_certmap-devel-1.16.1-150300.23.17.3.aarch64.rpm libsss_certmap0-1.16.1-150300.23.17.3.aarch64.rpm libsss_idmap-devel-1.16.1-150300.23.17.3.aarch64.rpm libsss_idmap0-1.16.1-150300.23.17.3.aarch64.rpm libsss_nss_idmap-devel-1.16.1-150300.23.17.3.aarch64.rpm libsss_nss_idmap0-1.16.1-150300.23.17.3.aarch64.rpm libsss_simpleifp-devel-1.16.1-150300.23.17.3.aarch64.rpm libsss_simpleifp0-1.16.1-150300.23.17.3.aarch64.rpm libtalloc-devel-2.3.3-150300.3.3.2.aarch64.rpm libtalloc2-2.3.3-150300.3.3.2.aarch64.rpm libtdb-devel-1.4.4-150300.3.3.2.aarch64.rpm libtdb1-1.4.4-150300.3.3.2.aarch64.rpm libtevent-devel-0.11.0-150300.3.3.2.aarch64.rpm libtevent0-0.11.0-150300.3.3.2.aarch64.rpm pam_apparmor-2.13.6-150300.3.11.2.aarch64.rpm perl-apparmor-2.13.6-150300.3.11.2.aarch64.rpm python3-apparmor-2.13.6-150300.3.11.2.aarch64.rpm python3-ipa_hbac-1.16.1-150300.23.17.3.aarch64.rpm python3-ldb-2.4.1-150300.3.10.1.aarch64.rpm python3-ldb-devel-2.4.1-150300.3.10.1.aarch64.rpm python3-sss-murmur-1.16.1-150300.23.17.3.aarch64.rpm python3-sss_nss_idmap-1.16.1-150300.23.17.3.aarch64.rpm python3-sssd-config-1.16.1-150300.23.17.3.aarch64.rpm python3-talloc-2.3.3-150300.3.3.2.aarch64.rpm python3-talloc-devel-2.3.3-150300.3.3.2.aarch64.rpm python3-tdb-1.4.4-150300.3.3.2.aarch64.rpm python3-tevent-0.11.0-150300.3.3.2.aarch64.rpm ruby-apparmor-2.13.6-150300.3.11.2.aarch64.rpm samba-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-ad-dc-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-ad-dc-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-ceph-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-client-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-client-64bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64_ilp32.rpm samba-client-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-devel-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-dsdb-modules-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-gpupdate-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-ldb-ldap-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-libs-64bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64_ilp32.rpm samba-libs-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-libs-python3-64bit-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64_ilp32.rpm samba-python3-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-test-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-tool-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-winbind-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm samba-winbind-libs-4.15.4+git.324.8332acf1a63-150300.3.25.3.aarch64.rpm sssd-1.16.1-150300.23.17.3.aarch64.rpm sssd-ad-1.16.1-150300.23.17.3.aarch64.rpm sssd-common-1.16.1-150300.23.17.3.aarch64.rpm sssd-dbus-1.16.1-150300.23.17.3.aarch64.rpm sssd-ipa-1.16.1-150300.23.17.3.aarch64.rpm sssd-krb5-1.16.1-150300.23.17.3.aarch64.rpm sssd-krb5-common-1.16.1-150300.23.17.3.aarch64.rpm sssd-ldap-1.16.1-150300.23.17.3.aarch64.rpm sssd-proxy-1.16.1-150300.23.17.3.aarch64.rpm sssd-tools-1.16.1-150300.23.17.3.aarch64.rpm sssd-wbclient-1.16.1-150300.23.17.3.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.17.3.aarch64.rpm sssd-winbind-idmap-1.16.1-150300.23.17.3.aarch64.rpm talloc-man-2.3.3-150300.3.3.1.aarch64.rpm tdb-tools-1.4.4-150300.3.3.2.aarch64.rpm tevent-man-0.11.0-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-151 moderate SUSE Updates openSUSE-SLE 15.3 This update for bind fixes the following issues: - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver performance (bsc#1192146). bind-9.16.6-150300.22.13.1.src.rpm bind-9.16.6-150300.22.13.1.x86_64.rpm bind-chrootenv-9.16.6-150300.22.13.1.x86_64.rpm bind-devel-9.16.6-150300.22.13.1.x86_64.rpm bind-doc-9.16.6-150300.22.13.1.noarch.rpm bind-utils-9.16.6-150300.22.13.1.x86_64.rpm libbind9-1600-9.16.6-150300.22.13.1.x86_64.rpm libdns1605-9.16.6-150300.22.13.1.x86_64.rpm libirs-devel-9.16.6-150300.22.13.1.x86_64.rpm libirs1601-9.16.6-150300.22.13.1.x86_64.rpm libisc1606-9.16.6-150300.22.13.1.x86_64.rpm libisccc1600-9.16.6-150300.22.13.1.x86_64.rpm libisccfg1600-9.16.6-150300.22.13.1.x86_64.rpm libns1604-9.16.6-150300.22.13.1.x86_64.rpm python3-bind-9.16.6-150300.22.13.1.noarch.rpm bind-9.16.6-150300.22.13.1.s390x.rpm bind-chrootenv-9.16.6-150300.22.13.1.s390x.rpm bind-devel-9.16.6-150300.22.13.1.s390x.rpm bind-utils-9.16.6-150300.22.13.1.s390x.rpm libbind9-1600-9.16.6-150300.22.13.1.s390x.rpm libdns1605-9.16.6-150300.22.13.1.s390x.rpm libirs-devel-9.16.6-150300.22.13.1.s390x.rpm libirs1601-9.16.6-150300.22.13.1.s390x.rpm libisc1606-9.16.6-150300.22.13.1.s390x.rpm libisccc1600-9.16.6-150300.22.13.1.s390x.rpm libisccfg1600-9.16.6-150300.22.13.1.s390x.rpm libns1604-9.16.6-150300.22.13.1.s390x.rpm bind-9.16.6-150300.22.13.1.ppc64le.rpm bind-chrootenv-9.16.6-150300.22.13.1.ppc64le.rpm bind-devel-9.16.6-150300.22.13.1.ppc64le.rpm bind-utils-9.16.6-150300.22.13.1.ppc64le.rpm libbind9-1600-9.16.6-150300.22.13.1.ppc64le.rpm libdns1605-9.16.6-150300.22.13.1.ppc64le.rpm libirs-devel-9.16.6-150300.22.13.1.ppc64le.rpm libirs1601-9.16.6-150300.22.13.1.ppc64le.rpm libisc1606-9.16.6-150300.22.13.1.ppc64le.rpm libisccc1600-9.16.6-150300.22.13.1.ppc64le.rpm libisccfg1600-9.16.6-150300.22.13.1.ppc64le.rpm libns1604-9.16.6-150300.22.13.1.ppc64le.rpm bind-9.16.6-150300.22.13.1.aarch64.rpm bind-chrootenv-9.16.6-150300.22.13.1.aarch64.rpm bind-devel-9.16.6-150300.22.13.1.aarch64.rpm bind-utils-9.16.6-150300.22.13.1.aarch64.rpm libbind9-1600-9.16.6-150300.22.13.1.aarch64.rpm libdns1605-9.16.6-150300.22.13.1.aarch64.rpm libirs-devel-9.16.6-150300.22.13.1.aarch64.rpm libirs1601-9.16.6-150300.22.13.1.aarch64.rpm libisc1606-9.16.6-150300.22.13.1.aarch64.rpm libisccc1600-9.16.6-150300.22.13.1.aarch64.rpm libisccfg1600-9.16.6-150300.22.13.1.aarch64.rpm libns1604-9.16.6-150300.22.13.1.aarch64.rpm openSUSE-SLE-15.3-2022-493 important SUSE Updates openSUSE-SLE 15.3 This update for clamav fixes the following issues: - CVE-2022-20698: Fixed invalid pointer read allowing denial of service crash. (bsc#1194731) clamav-0.103.5-3.35.1.src.rpm clamav-0.103.5-3.35.1.x86_64.rpm clamav-devel-0.103.5-3.35.1.x86_64.rpm libclamav9-0.103.5-3.35.1.x86_64.rpm libfreshclam2-0.103.5-3.35.1.x86_64.rpm clamav-0.103.5-3.35.1.s390x.rpm clamav-devel-0.103.5-3.35.1.s390x.rpm libclamav9-0.103.5-3.35.1.s390x.rpm libfreshclam2-0.103.5-3.35.1.s390x.rpm clamav-0.103.5-3.35.1.ppc64le.rpm clamav-devel-0.103.5-3.35.1.ppc64le.rpm libclamav9-0.103.5-3.35.1.ppc64le.rpm libfreshclam2-0.103.5-3.35.1.ppc64le.rpm clamav-0.103.5-3.35.1.aarch64.rpm clamav-devel-0.103.5-3.35.1.aarch64.rpm libclamav9-0.103.5-3.35.1.aarch64.rpm libfreshclam2-0.103.5-3.35.1.aarch64.rpm openSUSE-SLE-15.3-2022-155 low SUSE Updates openSUSE-SLE 15.3 This update for ibus-table-zhuyin fixes the following issues: - Disable installation by default to allow the end user to choose whether to install or not (jsc#SLE-3872) ibus-table-zhuyin-1.2.0.20090831-3.3.1.noarch.rpm ibus-table-zhuyin-1.2.0.20090831-3.3.1.src.rpm openSUSE-SLE-15.3-2022-199 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - CVE-2021-4140: Fixed Iframe sandbox bypass with XSLT (bsc#1194547). - CVE-2022-22737: Fixed race condition when playing audio files (bsc#1194547). - CVE-2022-22738: Fixed heap-buffer-overflow in blendGaussianBlur (bsc#1194547). - CVE-2022-22739: Fixed missing throttling on external protocol launch dialog (bsc#1194547). - CVE-2022-22740: Fixed use-after-free of ChannelEventQueue::mOwner (bsc#1194547). - CVE-2022-22741: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22742: Fixed out-of-bounds memory access when inserting text in edit mode (bsc#1194547). - CVE-2022-22743: Fixed browser window spoof using fullscreen mode (bsc#1194547). - CVE-2022-22744: Fixed possible command injection via the 'Copy as curl' feature in DevTools (bsc#1194547). - CVE-2022-22745: Fixed leaking cross-origin URLs through securitypolicyviolation event (bsc#1194547). - CVE-2022-22746: Fixed calling into reportValidity could have lead to fullscreen window spoof (bsc#1194547). - CVE-2022-22747: Fixed crash when handling empty pkcs7 sequence(bsc#1194547). - CVE-2022-22748: Fixed spoofed origin on external protocol launch dialog (bsc#1194547). - CVE-2022-22751: Fixed memory safety bugs (bsc#1194547). MozillaThunderbird-91.5.0-8.51.1.src.rpm MozillaThunderbird-91.5.0-8.51.1.x86_64.rpm MozillaThunderbird-translations-common-91.5.0-8.51.1.x86_64.rpm MozillaThunderbird-translations-other-91.5.0-8.51.1.x86_64.rpm MozillaThunderbird-91.5.0-8.51.1.s390x.rpm MozillaThunderbird-translations-common-91.5.0-8.51.1.s390x.rpm MozillaThunderbird-translations-other-91.5.0-8.51.1.s390x.rpm MozillaThunderbird-91.5.0-8.51.1.ppc64le.rpm MozillaThunderbird-translations-common-91.5.0-8.51.1.ppc64le.rpm MozillaThunderbird-translations-other-91.5.0-8.51.1.ppc64le.rpm MozillaThunderbird-91.5.0-8.51.1.aarch64.rpm MozillaThunderbird-translations-common-91.5.0-8.51.1.aarch64.rpm MozillaThunderbird-translations-other-91.5.0-8.51.1.aarch64.rpm openSUSE-SLE-15.3-2022-149 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.56 fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::remove_dir_all (bsc#1194767). cargo1.56-1.56.1-150300.7.6.1.x86_64.rpm rust1.56-1.56.1-150300.7.6.1.src.rpm rust1.56-1.56.1-150300.7.6.1.x86_64.rpm cargo1.56-1.56.1-150300.7.6.1.s390x.rpm rust1.56-1.56.1-150300.7.6.1.s390x.rpm cargo1.56-1.56.1-150300.7.6.1.ppc64le.rpm rust1.56-1.56.1-150300.7.6.1.ppc64le.rpm cargo1.56-1.56.1-150300.7.6.1.aarch64.rpm rust1.56-1.56.1-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-146 moderate SUSE Updates openSUSE-SLE 15.3 This update for nodejs16 fixes the following issues: NodeJS 16 is shipped in version 16.13.2. For complete list of changes since 15.x, please see https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V16.md#16.0.0 nodejs16-16.13.2-150300.7.3.1.src.rpm nodejs16-16.13.2-150300.7.3.1.x86_64.rpm nodejs16-devel-16.13.2-150300.7.3.1.x86_64.rpm nodejs16-docs-16.13.2-150300.7.3.1.noarch.rpm npm16-16.13.2-150300.7.3.1.x86_64.rpm nodejs16-16.13.2-150300.7.3.1.s390x.rpm nodejs16-devel-16.13.2-150300.7.3.1.s390x.rpm npm16-16.13.2-150300.7.3.1.s390x.rpm nodejs16-16.13.2-150300.7.3.1.ppc64le.rpm nodejs16-devel-16.13.2-150300.7.3.1.ppc64le.rpm npm16-16.13.2-150300.7.3.1.ppc64le.rpm nodejs16-16.13.2-150300.7.3.1.aarch64.rpm nodejs16-devel-16.13.2-150300.7.3.1.aarch64.rpm npm16-16.13.2-150300.7.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-178 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - CVE-2021-45960: Fixed left shift in the storeAtts function in xmlparse.c that can lead to realloc misbehavior (bsc#1194251). - CVE-2021-46143: Fixed integer overflow in m_groupSize in doProlog (bsc#1194362). - CVE-2022-22822: Fixed integer overflow in addBinding in xmlparse.c (bsc#1194474). - CVE-2022-22823: Fixed integer overflow in build_model in xmlparse.c (bsc#1194476). - CVE-2022-22824: Fixed integer overflow in defineAttribute in xmlparse.c (bsc#1194477). - CVE-2022-22825: Fixed integer overflow in lookup in xmlparse.c (bsc#1194478). - CVE-2022-22826: Fixed integer overflow in nextScaffoldPart in xmlparse.c (bsc#1194479). - CVE-2022-22827: Fixed integer overflow in storeAtts in xmlparse.c (bsc#1194480). expat-2.2.5-3.9.1.src.rpm expat-2.2.5-3.9.1.x86_64.rpm libexpat-devel-2.2.5-3.9.1.x86_64.rpm libexpat-devel-32bit-2.2.5-3.9.1.x86_64.rpm libexpat1-2.2.5-3.9.1.x86_64.rpm libexpat1-32bit-2.2.5-3.9.1.x86_64.rpm expat-2.2.5-3.9.1.s390x.rpm libexpat-devel-2.2.5-3.9.1.s390x.rpm libexpat1-2.2.5-3.9.1.s390x.rpm expat-2.2.5-3.9.1.ppc64le.rpm libexpat-devel-2.2.5-3.9.1.ppc64le.rpm libexpat1-2.2.5-3.9.1.ppc64le.rpm expat-2.2.5-3.9.1.aarch64.rpm libexpat-devel-2.2.5-3.9.1.aarch64.rpm libexpat1-2.2.5-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-157 important SUSE Updates openSUSE-SLE 15.3 This update for zxing-cpp fixes the following issues: - CVE-2021-28021: Fixed buffer overflow vulnerability in function stbi__extend_receive in stb_image.h via a crafted JPEG file. (bsc#1191743). - CVE-2021-42715: Fixed buffer overflow in stb_image PNM loader (bsc#1191942). - CVE-2021-42716: Fixed denial of service in stb_image HDR loader when reading crafted HDR files (bsc#1191944). libZXing1-1.2.0-9.7.1.x86_64.rpm zxing-cpp-1.2.0-9.7.1.src.rpm zxing-cpp-devel-1.2.0-9.7.1.x86_64.rpm libZXing1-1.2.0-9.7.1.s390x.rpm zxing-cpp-devel-1.2.0-9.7.1.s390x.rpm libZXing1-1.2.0-9.7.1.ppc64le.rpm zxing-cpp-devel-1.2.0-9.7.1.ppc64le.rpm libZXing1-1.2.0-9.7.1.aarch64.rpm zxing-cpp-devel-1.2.0-9.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-171 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.55 fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::remove_dir_all (bsc#1194767). cargo1.55-1.55.0-150300.7.6.1.x86_64.rpm rust1.55-1.55.0-150300.7.6.1.src.rpm rust1.55-1.55.0-150300.7.6.1.x86_64.rpm cargo1.55-1.55.0-150300.7.6.1.s390x.rpm rust1.55-1.55.0-150300.7.6.1.s390x.rpm cargo1.55-1.55.0-150300.7.6.1.ppc64le.rpm rust1.55-1.55.0-150300.7.6.1.ppc64le.rpm cargo1.55-1.55.0-150300.7.6.1.aarch64.rpm rust1.55-1.55.0-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-176 important SUSE Updates openSUSE-SLE 15.3 This update for unbound fixes the following issues: - CVE-2019-25031: Fixed configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack (bsc#1185382). - CVE-2019-25032: Fixed integer overflow in the regional allocator via regional_alloc (bsc#1185383). - CVE-2019-25033: Fixed integer overflow in the regional allocator via the ALIGN_UP macro (bsc#1185384). - CVE-2019-25034: Fixed integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write (bsc#1185385). - CVE-2019-25035: Fixed out-of-bounds write in sldns_bget_token_par (bsc#1185386). - CVE-2019-25036: Fixed assertion failure and denial of service in synth_cname (bsc#1185387). - CVE-2019-25037: Fixed assertion failure and denial of service in dname_pkt_copy via an invalid packet (bsc#1185388). - CVE-2019-25038: Fixed integer overflow in a size calculation in dnscrypt/dnscrypt.c (bsc#1185389). - CVE-2019-25039: Fixed integer overflow in a size calculation in respip/respip.c (bsc#1185390). - CVE-2019-25040: Fixed infinite loop via a compressed name in dname_pkt_copy (bsc#1185391). - CVE-2019-25041: Fixed assertion failure via a compressed name in dname_pkt_copy (bsc#1185392). - CVE-2019-25042: Fixed out-of-bounds write via a compressed name in rdata_copy (bsc#1185393). - CVE-2020-28935: Fixed symbolic link traversal when writing PID file (bsc#1179191). libunbound2-1.6.8-10.6.1.x86_64.rpm unbound-1.6.8-10.6.1.src.rpm unbound-1.6.8-10.6.1.x86_64.rpm unbound-anchor-1.6.8-10.6.1.x86_64.rpm unbound-devel-1.6.8-10.6.1.x86_64.rpm unbound-munin-1.6.8-10.6.1.noarch.rpm unbound-python-1.6.8-10.6.1.x86_64.rpm libunbound2-1.6.8-10.6.1.s390x.rpm unbound-1.6.8-10.6.1.s390x.rpm unbound-anchor-1.6.8-10.6.1.s390x.rpm unbound-devel-1.6.8-10.6.1.s390x.rpm unbound-python-1.6.8-10.6.1.s390x.rpm libunbound2-1.6.8-10.6.1.ppc64le.rpm unbound-1.6.8-10.6.1.ppc64le.rpm unbound-anchor-1.6.8-10.6.1.ppc64le.rpm unbound-devel-1.6.8-10.6.1.ppc64le.rpm unbound-python-1.6.8-10.6.1.ppc64le.rpm libunbound2-1.6.8-10.6.1.aarch64.rpm unbound-1.6.8-10.6.1.aarch64.rpm unbound-anchor-1.6.8-10.6.1.aarch64.rpm unbound-devel-1.6.8-10.6.1.aarch64.rpm unbound-python-1.6.8-10.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-319 moderate SUSE Updates openSUSE-SLE 15.3 This update for cargo-packaging, rustup, sccache fixes the following issues: rustup, cargo-packaging and sccache were added to the Development Tools Module. - rustup version 1.24.3~git0.ce5817a9. - cargo-packaging version 1.0.0~git6.d878e38. - sccache version 0.2.15~git1.22a176c. cargo-packaging-1.0.0~git6.d878e38-150300.7.3.1.noarch.rpm cargo-packaging-1.0.0~git6.d878e38-150300.7.3.1.src.rpm rustup-1.24.3~git1.0a74fef5-150300.7.6.1.src.rpm rustup-1.24.3~git1.0a74fef5-150300.7.6.1.x86_64.rpm sccache-0.2.15~git0.6b6d2f7-150300.7.6.1.src.rpm sccache-0.2.15~git0.6b6d2f7-150300.7.6.1.x86_64.rpm rustup-1.24.3~git1.0a74fef5-150300.7.6.1.aarch64.rpm sccache-0.2.15~git0.6b6d2f7-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-170 important SUSE Updates openSUSE-SLE 15.3 This update for python3-azuremetadata fixes the following issues: - Version 5.1.5 (bsc#1194663) + Handle lsblk output format change. The json data now contains "mountpoints" instead of "mountpoint" + Use versions endpoint to list the available versions + Add bypass proxy + Update way to check classic vms - Fix provides directive (bsc#1175609, bsc#1175610) + The provides directive must set a version or update does not work as expected python3-azuremetadata-5.1.5-1.23.1.noarch.rpm python3-azuremetadata-5.1.5-1.23.1.src.rpm openSUSE-SLE-15.3-2022-685 important SUSE Updates openSUSE-SLE 15.3 This update for clingo, python-Sphinx_4_2_0, python-sphinxcontrib-applehelp, python-sphinxcontrib-devhelp, python-sphinxcontrib-htmlhelp, python-sphinxcontrib-jsmath, python-sphinxcontrib-qthelp, python-sphinxcontrib-serializinghtml, spack fixes the following issues: - added python-cffi as Requires (bsc#1193712) - create a sub lib package - fix some build errors, remove unwanted files - update to version 5.5.0 - clingo is used by default for spack version earlier than 0.17 (jsc#SLE-22137) - first release for SUSE (from fedora spec) spack-0.17.1-150300.5.8.2.noarch.rpm spack-0.17.1-150300.5.8.2.src.rpm spack-0.17.1-150300.5.8.3.src.rpm spack-info-0.17.1-150300.5.8.3.noarch.rpm spack-man-0.17.1-150300.5.8.3.noarch.rpm spack-recipes-0.17.1-150300.5.8.2.noarch.rpm openSUSE-SLE-15.3-2022-175 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust1.57 fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::remove_dir_all (bsc#1194767). cargo1.57-1.57.0-150300.7.7.1.x86_64.rpm rust1.57-1.57.0-150300.7.7.1.src.rpm rust1.57-1.57.0-150300.7.7.1.x86_64.rpm cargo1.57-1.57.0-150300.7.7.1.s390x.rpm rust1.57-1.57.0-150300.7.7.1.s390x.rpm cargo1.57-1.57.0-150300.7.7.1.ppc64le.rpm rust1.57-1.57.0-150300.7.7.1.ppc64le.rpm cargo1.57-1.57.0-150300.7.7.1.aarch64.rpm rust1.57-1.57.0-150300.7.7.1.aarch64.rpm openSUSE-SLE-15.3-2022-226 important SUSE Updates openSUSE-SLE 15.3 This update for log4j12 fixes the following issues: - CVE-2022-23307: Fix deserialization issue by removing the chainsaw sub-package. (bsc#1194844) - CVE-2022-23305: Fix SQL injection by removing src/main/java/org/apache/log4j/jdbc/JDBCAppender.java. (bsc#1194843) - CVE-2022-23302: Fix remote code execution by removing src/main/java/org/apache/log4j/net/JMSSink.java. (bsc#1194842) log4j12-1.2.17-4.9.1.noarch.rpm log4j12-1.2.17-4.9.1.src.rpm log4j12-javadoc-1.2.17-4.9.1.noarch.rpm log4j12-manual-1.2.17-4.9.1.noarch.rpm openSUSE-SLE-15.3-2022-334 moderate SUSE Updates openSUSE-SLE 15.3 This update for containerd, docker fixes the following issues: - CVE-2021-41089: Fixed "cp" can chmod host files (bsc#1191015). - CVE-2021-41091: Fixed flaw that could lead to data directory traversal in moby (bsc#1191434). - CVE-2021-41092: Fixed exposed user credentials with a misconfigured configuration file (bsc#1191334). - CVE-2021-41103: Fixed file access to local users in containerd (bsc#1191121). - CVE-2021-41190: Fixed OCI manifest and index parsing confusion (bsc#1193273). Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.4.12-60.1.src.rpm containerd-1.4.12-60.1.x86_64.rpm containerd-ctr-1.4.12-60.1.x86_64.rpm docker-20.10.12_ce-159.1.src.rpm docker-20.10.12_ce-159.1.x86_64.rpm docker-bash-completion-20.10.12_ce-159.1.noarch.rpm docker-fish-completion-20.10.12_ce-159.1.noarch.rpm docker-kubic-20.10.12_ce-159.1.src.rpm docker-kubic-20.10.12_ce-159.1.x86_64.rpm docker-kubic-bash-completion-20.10.12_ce-159.1.noarch.rpm docker-kubic-fish-completion-20.10.12_ce-159.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.12_ce-159.1.x86_64.rpm docker-kubic-zsh-completion-20.10.12_ce-159.1.noarch.rpm docker-zsh-completion-20.10.12_ce-159.1.noarch.rpm containerd-1.4.12-60.1.s390x.rpm containerd-ctr-1.4.12-60.1.s390x.rpm docker-20.10.12_ce-159.1.s390x.rpm docker-kubic-20.10.12_ce-159.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.12_ce-159.1.s390x.rpm containerd-1.4.12-60.1.ppc64le.rpm containerd-ctr-1.4.12-60.1.ppc64le.rpm docker-20.10.12_ce-159.1.ppc64le.rpm docker-kubic-20.10.12_ce-159.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.12_ce-159.1.ppc64le.rpm containerd-1.4.12-60.1.aarch64.rpm containerd-ctr-1.4.12-60.1.aarch64.rpm docker-20.10.12_ce-159.1.aarch64.rpm docker-kubic-20.10.12_ce-159.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.12_ce-159.1.aarch64.rpm openSUSE-SLE-15.3-2022-198 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2022-0322: Fixed a denial of service in SCTP sctp_addto_chunk (bsc#1194985). - CVE-2021-4197: Fixed a cgroup issue where lower privileged processes could write to fds of lower privileged ones that could lead to privilege escalation (bsc#1194302). - CVE-2021-46283: nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and general protection fault) because of the missing initialization for nft_set_elem_expr_alloc. A local user can set a netfilter table expression in their own namespace (bnc#1194518). - CVE-2021-4135: Fixed an information leak in the nsim_bpf_map_alloc function (bsc#1193927). - CVE-2021-4202: Fixed a race condition during NFC device remove which could lead to a use-after-free memory corruption (bsc#1194529) - CVE-2021-4083: A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allowed a local user to crash the system or escalate their privileges on the system. This flaw affects Linux kernel versions prior to 5.16-rc4 (bnc#1193727). - CVE-2021-4149: Fixed a locking condition in btrfs which could lead to system deadlocks (bsc#1194001). - CVE-2021-45485: In the IPv6 implementation in net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses (bnc#1194094). - CVE-2021-45486: In the IPv4 implementation in net/ipv4/route.c has an information leak because the hash table is very small (bnc#1194087). The following non-security bugs were fixed: - ACPI: APD: Check for NULL pointer after calling devm_ioremap() (git-fixes). - ACPI: Add stubs for wakeup handler functions (git-fixes). - ACPI: scan: Create platform device for BCM4752 and LNV4752 ACPI nodes (git-fixes). - ALSA: PCM: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: ctl: Fix copy of updated id with element read/write (git-fixes). - ALSA: drivers: opl3: Fix incorrect use of vp->state (git-fixes). - ALSA: hda/hdmi: Disable silent stream on GLK (git-fixes). - ALSA: hda/realtek - Add headset Mic support for Lenovo ALC897 platform (git-fixes). - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Master after reboot from Windows (git-fixes). - ALSA: hda/realtek: Add a quirk for HP OMEN 15 mute LED (git-fixes). - ALSA: hda/realtek: Add quirk for ASRock NUC Box 1100 (git-fixes). - ALSA: hda/realtek: Amp init fixup for HP ZBook 15 G6 (git-fixes). - ALSA: hda/realtek: Fix quirk for Clevo NJ51CU (git-fixes). - ALSA: hda/realtek: Fix quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek: Fixes HP Spectre x360 15-eb1xxx speakers (git-fixes). - ALSA: hda/realtek: Headset fixup for Clevo NH77HJQ (git-fixes). - ALSA: hda: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: hda: Make proper use of timecounter (git-fixes). - ALSA: jack: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: jack: Check the return value of kstrdup() (git-fixes). - ALSA: oss: fix compile error when OSS_DEBUG is enabled (git-fixes). - ALSA: pcm: oss: Fix negative period/buffer sizes (git-fixes). - ALSA: pcm: oss: Handle missing errors in snd_pcm_oss_change_params*() (git-fixes). - ALSA: pcm: oss: Limit the period size to 16MB (git-fixes). - ALSA: usb-audio: Drop superfluous '0' in Presonus Studio 1810c's ID (git-fixes). - ALSA: usb-audio: Line6 HX-Stomp XL USB_ID for 48k-fixed quirk (git-fixes). - ASoC: codecs: wcd934x: handle channel mappping list correctly (git-fixes). - ASoC: codecs: wcd934x: return correct value from mixer put (git-fixes). - ASoC: codecs: wcd934x: return error code correctly from hw_params (git-fixes). - ASoC: codecs: wsa881x: fix return values from kcontrol put (git-fixes). - ASoC: cs42l42: Correct configuring of switch inversion from ts-inv (git-fixes). - ASoC: cs42l42: Disable regulators if probe fails (git-fixes). - ASoC: cs42l42: Use device_property API instead of of_property (git-fixes). - ASoC: fsl_asrc: refine the check of available clock divider (git-fixes). - ASoC: fsl_mqs: fix MODULE_ALIAS (git-fixes). - ASoC: mediatek: Check for error clk pointer (git-fixes). - ASoC: meson: aiu: Move AIU_I2S_MISC hold setting to aiu-fifo-i2s (git-fixes). - ASoC: meson: aiu: fifo: Add missing dma_coerce_mask_and_coherent() (git-fixes). - ASoC: qdsp6: q6routing: Fix return value from msm_routing_put_audio_mixer (git-fixes). - ASoC: rt5663: Handle device_property_read_u32_array error codes (git-fixes). - ASoC: samsung: idma: Check of ioremap return value (git-fixes). - ASoC: soc-core: fix null-ptr-deref in snd_soc_del_component_unlocked() (git-fixes). - ASoC: sunxi: fix a sound binding broken reference (git-fixes). - ASoC: tegra: Fix kcontrol put callback in ADMAIF (git-fixes). - ASoC: tegra: Fix kcontrol put callback in AHUB (git-fixes). - ASoC: tegra: Fix kcontrol put callback in DMIC (git-fixes). - ASoC: tegra: Fix kcontrol put callback in DSPK (git-fixes). - ASoC: tegra: Fix kcontrol put callback in I2S (git-fixes). - ASoC: tegra: Fix wrong value type in ADMAIF (git-fixes). - ASoC: tegra: Fix wrong value type in DMIC (git-fixes). - ASoC: tegra: Fix wrong value type in DSPK (git-fixes). - ASoC: tegra: Fix wrong value type in I2S (git-fixes). - ASoC: uniphier: drop selecting non-existing SND_SOC_UNIPHIER_AIO_DMA (git-fixes). - Add cherry-picked IDs for qemu fw_cfg patches - Bluetooth: L2CAP: Fix using wrong mode (git-fixes). - Bluetooth: bfusb: fix division by zero in send path (git-fixes). - Bluetooth: btmtksdio: fix resume failure (git-fixes). - Bluetooth: btusb: fix memory leak in btusb_mtk_submit_wmt_recv_urb() (git-fixes). - Bluetooth: cmtp: fix possible panic when cmtp_init_sockets() fails (git-fixes). - Bluetooth: hci_bcm: Check for error irq (git-fixes). - Bluetooth: hci_qca: Stop IBS timer during BT OFF (git-fixes). - Bluetooth: stop proccessing malicious adv data (git-fixes). - Documentation: ACPI: Fix data node reference documentation (git-fixes). - Documentation: dmaengine: Correctly describe dmatest with channel unset (git-fixes). - Documentation: refer to config RANDOMIZE_BASE for kernel address-space randomization (git-fixes). - HID: add USB_HID dependancy to hid-chicony (git-fixes). - HID: add USB_HID dependancy to hid-prodikeys (git-fixes). - HID: asus: Add depends on USB_HID to HID_ASUS Kconfig option (git-fixes). - HID: bigbenff: prevent null pointer dereference (git-fixes). - HID: google: add eel USB id (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_frame_init_v1_buttonpad (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_get_str_desc (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_huion_init (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_init (git-fixes). - HID: quirks: Add quirk for the Microsoft Surface 3 type-cover (git-fixes). - Input: appletouch - initialize work before device registration (git-fixes). - Input: atmel_mxt_ts - fix double free in mxt_read_info_block (git-fixes). - Input: elantech - fix stack out of bound access in elantech_change_report_id() (git-fixes). - Input: i8042 - add deferred probe support (bsc#1190256). - Input: i8042 - enable deferred probe quirk for ASUS UM325UA (bsc#1190256). - Input: max8925_onkey - do not mark comment as kernel-doc (git-fixes). - Input: spaceball - fix parsing of movement data packets (git-fixes). - Input: ti_am335x_tsc - fix STEPCONFIG setup for Z2 (git-fixes). - Input: ti_am335x_tsc - set ADCREFM for X configuration (git-fixes). - Move upstreamed patches into sorted section - NFC: st21nfca: Fix memory leak in device probe and remove (git-fixes). - NFSD: Fix zero-length NFSv3 WRITEs (git-fixes). - NFSv42: Do not fail clone() unless the OP_CLONE operation failed (git-fixes). - NFSv42: Fix pagecache invalidation after COPY/CLONE (git-fixes). - PCI/ACPI: Fix acpi_pci_osc_control_set() kernel-doc comment (git-fixes). - PCI/MSI: Clear PCI_MSIX_FLAGS_MASKALL on error (git-fixes). - PCI/MSI: Fix pci_irq_vector()/pci_irq_get_affinity() (git-fixes). - PCI/MSI: Mask MSI-X vectors only on success (git-fixes). - PCI: cadence: Add cdns_plat_pcie_probe() missing return (git-fixes). - PCI: dwc: Do not remap invalid res (git-fixes). - PCI: mvebu: Check for errors from pci_bridge_emul_init() call (git-fixes). - PCI: mvebu: Do not modify PCI IO type bits in conf_write (git-fixes). - PCI: mvebu: Fix support for DEVCAP2, DEVCTL2 and LNKCTL2 registers on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_EXP_DEVCTL on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_EXP_RTSTA on emulated bridge (git-fixes). - PCI: pci-bridge-emul: Properly mark reserved PCIe bits in PCI config space (git-fixes). - PCI: pci-bridge-emul: Set PCI_STATUS_CAP_LIST for PCIe device (git-fixes). - PCI: pciehp: Fix infinite loop in IRQ handler upon power fault (git-fixes). - PCI: xgene: Fix IB window setup (git-fixes). - PM: runtime: Defer suspending suppliers (git-fixes). - PM: sleep: Do not assume that "mem" is always present (git-fixes). - RDMA/hns: Replace kfree() with kvfree() (jsc#SLE-14777). - Revert "PM: sleep: Do not assume that "mem" is always present" (git-fixes). - Revert "USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk set" (git-fixes). - Revert "net/mlx5: Add retry mechanism to the command entry index allocation" (jsc#SLE-15172). - USB: Fix "slab-out-of-bounds Write" bug in usb_hcd_poll_rh_status (git-fixes). - USB: NO_LPM quirk Lenovo Powered USB-C Travel Hub (git-fixes). - USB: NO_LPM quirk Lenovo USB-C to Ethernet Adapher(RTL8153-04) (git-fixes). - USB: cdc-acm: fix break reporting (git-fixes). - USB: cdc-acm: fix racy tty buffer accesses (git-fixes). - USB: chipidea: fix interrupt deadlock (git-fixes). - USB: core: Fix bug in resuming hub's handling of wakeup requests (git-fixes). - USB: gadget: bRequestType is a bitfield, not a enum (git-fixes). - USB: gadget: detect too-big endpoint 0 requests (git-fixes). - USB: gadget: zero allocate endpoint 0 buffers (git-fixes). - USB: serial: cp210x: fix CP2105 GPIO registration (git-fixes). - USB: serial: option: add Telit FN990 compositions (git-fixes). - Update patches.suse/tpm-fix-potential-NULL-pointer-access-in-tpm_del_cha.patch (git-fixes bsc#1193660 ltc#195634). - Updated mpi3mr entry in supported.conf (bsc#1194578 jsc#SLE-18120) Moving this driver into the "supported" package. - amd/display: downgrade validation failure log level (git-fixes). - ata: ahci: Add Green Sardine vendor ID as board_ahci_mobile (git-fixes). - atlantic: Fix buff_ring OOB in aq_ring_rx_clean (git-fixes). - ax25: NPD bug when detaching AX25 device (git-fixes). - backlight: qcom-wled: Fix off-by-one maximum with default num_strings (git-fixes). - backlight: qcom-wled: Override default length with qcom,enabled-strings (git-fixes). - backlight: qcom-wled: Pass number of elements to read to read_u32_array (git-fixes). - backlight: qcom-wled: Validate enabled string indices in DT (git-fixes). - batman-adv: mcast: do not send link-local multicast to mcast routers (git-fixes). - blk-cgroup: synchronize blkg creation against policy deactivation (bsc#1194584). - block/scsi-ioctl: Fix kernel-infoleak in scsi_put_cdrom_generic_arg() (git-fixes). - block: fix ioprio_get(IOPRIO_WHO_PGRP) vs setuid(2) (bsc#1194586). - can: gs_usb: fix use of uninitialized variable, detach device on reception of invalid USB data (git-fixes). - can: gs_usb: gs_can_start_xmit(): zero-initialize hf->{flags,reserved} (git-fixes). - can: kvaser_usb: get CAN clock frequency from device (git-fixes). - can: sja1000: fix use after free in ems_pcmcia_add_card() (git-fixes). - can: softing: softing_startstop(): fix set but not used variable warning (git-fixes). - can: softing_cs: softingcs_probe(): fix memleak on registration failure (git-fixes). - can: usb_8dev: remove unused member echo_skb from struct usb_8dev_priv (git-fixes). - can: xilinx_can: xcan_probe(): check for error irq (git-fixes). - char/mwave: Adjust io port register size (git-fixes). - clk: Do not parent clks until the parent is fully registered (git-fixes). - clk: Gemini: fix struct name in kernel-doc (git-fixes). - clk: bcm-2835: Pick the closest clock rate (git-fixes). - clk: bcm-2835: Remove rounding up the dividers (git-fixes). - clk: imx8mn: Fix imx8mn_clko1_sels (git-fixes). - clk: imx: pllv1: fix kernel-doc notation for struct clk_pllv1 (git-fixes). - clk: qcom: gcc-msm8996: Drop (again) gcc_aggre1_pnoc_ahb_clk (git-fixes). - clk: qcom: regmap-mux: fix parent clock lookup (git-fixes). - clk: stm32: Fix ltdc's clock turn off by clk_disable_unused() after system enter shell (git-fixes). - crypto: caam - replace this_cpu_ptr with raw_cpu_ptr (git-fixes). - crypto: mxs-dcp - Use sg_mapping_iter to copy data (git-fixes). - crypto: omap-sham - clear dma flags only after omap_sham_update_dma_stop() (git-fixes). - crypto: qat - do not ignore errors from enable_vf2pf_comms() (git-fixes). - crypto: qat - fix reuse of completion variable (git-fixes). - crypto: qat - handle both source of interrupt in VF ISR (git-fixes). - crypto: qce - fix uaf on qce_ahash_register_one (git-fixes). - crypto: stm32/crc32 - Fix kernel BUG triggered in probe() (git-fixes). - crypto: stm32/cryp - fix double pm exit (git-fixes). - crypto: stm32/cryp - fix lrw chaining mode (git-fixes). - crypto: stm32/cryp - fix xts and race condition in crypto_engine requests (git-fixes). - debugfs: lockdown: Allow reading debugfs files that are not world readable (bsc#1193328 ltc#195566). - device property: Fix documentation for FWNODE_GRAPH_DEVICE_DISABLED (git-fixes). - dm crypt: document encrypted keyring key option (git-fixes). - dm writecache: add "cleaner" and "max_age" to Documentation (git-fixes). - dm writecache: advance the number of arguments when reporting max_age (git-fixes). - dm writecache: fix performance degradation in ssd mode (git-fixes). - dm writecache: flush origin device when writing and cache is full (git-fixes). - dma_fence_array: Fix PENDING_ERROR leak in dma_fence_array_signaled() (git-fixes). - dmaengine: at_xdmac: Do not start transactions at tx_submit level (git-fixes). - dmaengine: at_xdmac: Fix at_xdmac_lld struct definition (git-fixes). - dmaengine: at_xdmac: Fix concurrency over xfers_list (git-fixes). - dmaengine: at_xdmac: Fix lld view setting (git-fixes). - dmaengine: at_xdmac: Print debug message after realeasing the lock (git-fixes). - dmaengine: bestcomm: fix system boot lockups (git-fixes). - dmaengine: idxd: add module parameter to force disable of SVA (bsc#1192931). - dmaengine: idxd: enable SVA feature for IOMMU (bsc#1192931). - dmaengine: pxa/mmp: stop referencing config->slave_id (git-fixes). - dmaengine: st_fdma: fix MODULE_ALIAS (git-fixes). - drm/amd/amdgpu: Increase HWIP_MAX_INSTANCE to 10 (git-fixes). - drm/amd/display: Fix for the no Audio bug with Tiled Displays (git-fixes). - drm/amd/display: Update bounding box states (v2) (git-fixes). - drm/amd/display: Update number of DCN3 clock states (git-fixes). - drm/amd/display: add connector type check for CRC source set (git-fixes). - drm/amd/display: dcn20_resource_construct reduce scope of FPU enabled (git-fixes). - drm/amd/display: fix incorrect CM/TF programming sequence in dwb (git-fixes). - drm/amd/display: fix missing writeback disablement if plane is removed (git-fixes). - drm/amdgpu: Fix a NULL pointer dereference in amdgpu_connector_lcd_native_mode() (git-fixes). - drm/amdgpu: Fix a printing message (git-fixes). - drm/amdgpu: Fix amdgpu_ras_eeprom_init() (git-fixes). - drm/amdgpu: correct register access for RLC_JUMP_TABLE_RESTORE (git-fixes). - drm/amdgpu: revert "Add autodump debugfs node for gpu reset v8" (git-fixes). - drm/amdkfd: Account for SH/SE count when setting up cu masks (git-fixes). - drm/amdkfd: Check for null pointer after calling kmemdup (git-fixes). - drm/ast: potential dereference of null pointer (git-fixes). - drm/atomic: Check new_crtc_state->active to determine if CRTC needs disable in self refresh mode (git-fixes). - drm/bridge: analogix_dp: Make PSR-exit block less (git-fixes). - drm/bridge: display-connector: fix an uninitialized pointer in probe() (git-fixes). - drm/bridge: nwl-dsi: Avoid potential multiplication overflow on 32-bit (git-fixes). - drm/bridge: ti-sn65dsi86: Set max register for regmap (git-fixes). - drm/display: fix possible null-pointer dereference in dcn10_set_clock() (git-fixes). - drm/exynos: Always initialize mapping in exynos_drm_register_dma() (git-fixes). - drm/i915/fb: Fix rounding error in subsampled plane size calculation (git-fixes). - drm/i915: Avoid bitwise vs logical OR warning in snb_wm_latency_quirk() (git-fixes). - drm/mediatek: Check plane visibility in atomic_update (git-fixes). - drm/msm/dpu: fix safe status debugfs file (git-fixes). - drm/msm/dsi: Fix DSI and DSI PHY regulator config from SDM660 (git-fixes). - drm/msm/dsi: set default num_data_lanes (git-fixes). - drm/msm/mdp5: fix cursor-related warnings (git-fixes). - drm/msm: mdp4: drop vblank get/put from prepare/complete_commit (git-fixes). - drm/msm: prevent NULL dereference in msm_gpu_crashstate_capture() (git-fixes). - drm/panel: innolux-p079zca: Delete panel on attach() failure (git-fixes). - drm/panel: kingdisplay-kd097d04: Delete panel on attach() failure (git-fixes). - drm/radeon/radeon_kms: Fix a NULL pointer dereference in radeon_driver_open_kms() (git-fixes). - drm/rockchip: dsi: Disable PLL clock on bind error (git-fixes). - drm/rockchip: dsi: Fix unbalanced clock on probe error (git-fixes). - drm/rockchip: dsi: Hold pm-runtime across bind/unbind (git-fixes). - drm/rockchip: dsi: Reconfigure hardware on resume() (git-fixes). - drm/sun4i: dw-hdmi: Fix missing put_device() call in sun8i_hdmi_phy_get (git-fixes). - drm/sun4i: fix unmet dependency on RESET_CONTROLLER for PHY_SUN6I_MIPI_DPHY (git-fixes). - drm/syncobj: Deal with signalled fences in drm_syncobj_find_fence (git-fixes). - drm/tegra: vic: Fix DMA API misuse (git-fixes). - drm/vboxvideo: fix a NULL vs IS_ERR() check (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered up during bind (git-fixes). - drm/vc4: hdmi: Set HD_CTL_WHOLSMP and HD_CTL_CHALIGN_SET (git-fixes). - drm/vc4: hdmi: Set a default HSM rate (git-fixes). - drm: fix null-ptr-deref in drm_dev_init_release() (git-fixes). - drm: xlnx: zynqmp: release reset to DP controller before accessing DP registers (git-fixes). - drm: xlnx: zynqmp_dpsub: Call pm_runtime_get_sync before setting pixel clock (git-fixes). - eeprom: idt_89hpesx: Put fwnode in matching case during ->probe() (git-fixes). - eeprom: idt_89hpesx: Restore printing the unsupported fwnode name (git-fixes). - ext4: Avoid trim error on fs with small groups (bsc#1191271). - ext4: fix lazy initialization next schedule time computation in more granular unit (bsc#1194580). - fget: clarify and improve __fget_files() implementation (bsc#1193727). - firmware: Update Kconfig help text for Google firmware (git-fixes). - firmware: arm_scmi: pm: Propagate return value to caller (git-fixes). - firmware: arm_scpi: Fix string overflow in SCPI genpd driver (git-fixes). - firmware: qcom_scm: Fix error retval in __qcom_scm_is_call_available() (git-fixes). - firmware: qemu_fw_cfg: fix NULL-pointer deref on duplicate entries (git-fixes). - firmware: qemu_fw_cfg: fix kobject leak in probe error path (git-fixes). - firmware: qemu_fw_cfg: fix sysfs information leak (git-fixes). - firmware: raspberrypi: Fix a leak in 'rpi_firmware_get()' (git-fixes). - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (git-fixes). - firmware: tegra: Fix error application of sizeof() to pointer (git-fixes). - firmware: tegra: Reduce stack usage (git-fixes). - firmware_loader: fix pre-allocated buf built-in firmware use (git-fixes). - floppy: Fix hang in watchdog when disk is ejected (git-fixes). - flow_offload: return EOPNOTSUPP for the unsupported mpls action type (bsc#1154353). - fuse: Pass correct lend value to filemap_write_and_wait_range() (bsc#1194953). - gpiolib: acpi: Make set-debounce-timeout failures non fatal (git-fixes). - gpu: host1x: Add back arm_iommu_detach_device() (git-fixes). - hwmon: (lm90) Add basic support for TI TMP461 (git-fixes). - hwmon: (lm90) Add max6654 support to lm90 driver (git-fixes). - hwmon: (lm90) Do not report 'busy' status bit as alarm (git-fixes). - hwmon: (lm90) Drop critical attribute support for MAX6654 (git-fixes). - hwmon: (lm90) Fix usage of CONFIG2 register in detect function (git-fixes). - hwmon: (lm90) Introduce flag indicating extended temperature support (git-fixes). - i2c: rk3x: Handle a spurious start completion interrupt flag (git-fixes). - i2c: validate user data in compat ioctl (git-fixes). - i3c: fix incorrect address slot lookup on 64-bit (git-fixes). - i3c: master: dw: check return of dw_i3c_master_get_free_pos() (git-fixes). - i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (git-fixes). - i40e: Fix for displaying message regarding NVM version (git-fixes). - i40e: Fix incorrect netdev's real number of RX/TX queues (git-fixes). - i40e: Fix to not show opcode msg on unsuccessful VF MAC change (git-fixes). - i40e: fix use-after-free in i40e_sync_filters_subtask() (git-fixes). - iavf: Fix limit of total number of queues to active queues of VF (git-fixes). - iavf: restore MSI state on reset (git-fixes). - ieee802154: atusb: fix uninit value in atusb_set_extended_addr (git-fixes). - ieee802154: fix error return code in ieee802154_llsec_getparams() (git-fixes). - ieee802154: fix error return code in ieee802154_add_iface() (git-fixes). - ieee802154: hwsim: Fix memory leak in hwsim_add_one (git-fixes). - ieee802154: hwsim: Fix possible memory leak in hwsim_subscribe_all_others (git-fixes). - ieee802154: hwsim: avoid possible crash in hwsim_del_edge_nl() (git-fixes). - ieee802154: hwsim: fix GPF in hwsim_set_edge_lqi (git-fixes). - igb: Fix removal of unicast MAC filters of VFs (git-fixes). - igbvf: fix double free in `igbvf_probe` (git-fixes). - igc: Fix typo in i225 LTR functions (jsc#SLE-13533). - iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove (git-fixes). - iio: ad7768-1: Call iio_trigger_notify_done() on error (git-fixes). - iio: adc: axp20x_adc: fix charging current reporting on AXP22x (git-fixes). - iio: at91-sama5d2: Fix incorrect sign extension (git-fixes). - iio: dln2-adc: Fix lockdep complaint (git-fixes). - iio: dln2: Check return value of devm_iio_trigger_register() (git-fixes). - iio: itg3200: Call iio_trigger_notify_done() on error (git-fixes). - iio: kxsd9: Do not return error code in trigger handler (git-fixes). - iio: ltr501: Do not return error code in trigger handler (git-fixes). - iio: mma8452: Fix trigger reference couting (git-fixes). - iio: stk3310: Do not return error code in interrupt handler (git-fixes). - iio: trigger: Fix reference counting (git-fixes). - iio: trigger: stm32-timer: fix MODULE_ALIAS (git-fixes). - ionic: Initialize the 'lif->dbid_inuse' bitmap (bsc#1167773). - isofs: Fix out of bound access for corrupted isofs image (bsc#1194591). - iwlwifi: fw: correctly limit to monitor dump (git-fixes). - iwlwifi: mvm: Fix scan channel flags settings (git-fixes). - iwlwifi: mvm: Use div_s64 instead of do_div in iwl_mvm_ftm_rtt_smoothing() (git-fixes). - iwlwifi: mvm: avoid static queue number aliasing (git-fixes). - iwlwifi: mvm: disable RX-diversity in powersave (git-fixes). - iwlwifi: mvm: fix 32-bit build in FTM (git-fixes). - iwlwifi: mvm: fix access to BSS elements (git-fixes). - iwlwifi: mvm: test roc running status bits before removing the sta (git-fixes). - iwlwifi: pcie: free RBs during configure (git-fixes). - ixgbe: set X550 MDIO speed before talking to PHY (git-fixes). - kmod: make request_module() return an error when autoloading is disabled (git-fixes). - kobject: Restore old behaviour of kobject_del(NULL) (git-fixes). - kobject_uevent: remove warning in init_uevent_argv() (git-fixes). - kprobes: Limit max data_size of the kretprobe instances (bsc#1193669). - libata: add horkage for ASMedia 1092 (git-fixes). - libata: if T_LENGTH is zero, dma direction should be DMA_NONE (git-fixes). - livepatch: Avoid CPU hogging with cond_resched (bsc#1071995). - lockdown: Allow unprivileged users to see lockdown status (git-fixes). - mISDN: change function names to avoid conflicts (git-fixes). - mac80211: Fix monitor MTU limit so that A-MSDUs get through (git-fixes). - mac80211: agg-tx: do not schedule_and_wake_txq() under sta->lock (git-fixes). - mac80211: do not access the IV when it was stripped (git-fixes). - mac80211: fix lookup when adding AddBA extension element (git-fixes). - mac80211: fix regression in SSN handling of addba tx (git-fixes). - mac80211: initialize variable have_higher_than_11mbit (git-fixes). - mac80211: mark TX-during-stop for TX in in_reconfig (git-fixes). - mac80211: send ADDBA requests using the tid/queue of the aggregation session (git-fixes). - mac80211: track only QoS data frames for admission control (git-fixes). - mac80211: validate extended element ID is present (git-fixes). - mailbox: hi3660: convert struct comments to kernel-doc notation (git-fixes). - media: Revert "media: uvcvideo: Set unique vdev name based in type" (bsc#1193255). - media: aspeed: Update signal status immediately to ensure sane hw state (git-fixes). - media: aspeed: fix mode-detect always time out at 2nd run (git-fixes). - media: cpia2: fix control-message timeouts (git-fixes). - media: dib0700: fix undefined behavior in tuner shutdown (git-fixes). - media: dib8000: Fix a memleak in dib8000_init() (git-fixes). - media: dmxdev: fix UAF when dvb_register_device() fails (git-fixes). - media: dw2102: Fix use after free (git-fixes). - media: em28xx: fix control-message timeouts (git-fixes). - media: em28xx: fix memory leak in em28xx_init_dev (git-fixes). - media: flexcop-usb: fix control-message timeouts (git-fixes). - media: hantro: Fix probe func error path (git-fixes). - media: i2c: imx274: fix trivial typo expsoure/exposure (git-fixes). - media: i2c: imx274: fix trivial typo obainted/obtained (git-fixes). - media: imx-pxp: Initialize the spinlock prior to using it (git-fixes). - media: mceusb: fix control-message timeouts (git-fixes). - media: msi001: fix possible null-ptr-deref in msi001_probe() (git-fixes). - media: mtk-vcodec: call v4l2_m2m_ctx_release first when file is released (git-fixes). - media: pvrusb2: fix control-message timeouts (git-fixes). - media: rcar-csi2: Correct the selection of hsfreqrange (git-fixes). - media: rcar-csi2: Optimize the selection PHTW register (git-fixes). - media: redrat3: fix control-message timeouts (git-fixes). - media: s2255: fix control-message timeouts (git-fixes). - media: saa7146: mxb: Fix a NULL pointer dereference in mxb_attach() (git-fixes). - media: si2157: Fix "warm" tuner state detection (git-fixes). - media: si470x-i2c: fix possible memory leak in si470x_i2c_probe() (git-fixes). - media: stk1160: fix control-message timeouts (git-fixes). - media: streamzap: remove unnecessary ir_raw_event_reset and handle (git-fixes). - media: uvcvideo: fix division by zero at stream start (git-fixes). - media: venus: core: Fix a resource leak in the error handling path of 'venus_probe()' (git-fixes). - memblock: ensure there is no overflow in memblock_overlaps_region() (git-fixes). - memory: emif: Remove bogus debugfs error handling (git-fixes). - mfd: intel-lpss: Fix too early PM enablement in the ACPI ->probe() (git-fixes). - misc: fastrpc: Add missing lock before accessing find_vma() (git-fixes). - misc: fastrpc: fix improper packet size calculation (git-fixes). - misc: lattice-ecp3-config: Fix task hung when firmware load failed (git-fixes). - mmc: meson-mx-sdio: add IRQ check (git-fixes). - mmc: sdhci-esdhc-imx: clear the buffer_read_ready to reset standard tuning circuit (git-fixes). - mmc: sdhci-esdhc-imx: disable CMDQ support (git-fixes). - mmc: sdhci-pci: Add PCI ID for Intel ADL (git-fixes). - mmc: sdhci-tegra: Fix switch to HS400ES mode (git-fixes). - move to "mainline soon" section: - patches.suse/0001-mmc-moxart_remove-Fix-UAF.patch - moxart: fix potential use-after-free on remove path (bsc#1194516). - mt76: mt7915: fix NULL pointer dereference in mt7915_get_phy_mode (git-fixes). - mt76: mt7915: fix an off-by-one bound check (git-fixes). - mtd: rawnand: fsmc: Fix timing computation (git-fixes). - mtd: rawnand: fsmc: Take instruction delay into account (git-fixes). - mtd: rawnand: mpc5121: Remove unused variable in ads5121_select_chip() (git-fixes). - mtd: spi-nor: hisi-sfc: Remove excessive clk_disable_unprepare() (git-fixes). - mwifiex: Fix possible ABBA deadlock (git-fixes). - mwifiex: Try waking the firmware until we get an interrupt (git-fixes). - net/mlx5: DR, Fix NULL vs IS_ERR checking in dr_domain_init_resources (jsc#SLE-8464). - net/mlx5: Set command entry semaphore up once got index free (jsc#SLE-15172). - net/mlx5e: Fix wrong features assignment in case of error (git-fixes). - net/mlx5e: Wrap the tx reporter dump callback to extract the sq (jsc#SLE-15172). - net/sched: fq_pie: prevent dismantle issue (jsc#SLE-15172). - net/sched: sch_ets: do not remove idle classes from the round-robin list (bsc#1176774). - net: create netdev->dev_addr assignment helpers (git-fixes). - net: ena: Fix error handling when calculating max IO queues number (bsc#1154492). - net: ena: Fix undefined state when tx request id is out of bounds (bsc#1154492). - net: ena: Fix wrong rx request id by resetting device (git-fixes). - net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (jsc#SLE-14777). - net: usb: lan78xx: add Allied Telesis AT29M2-AF (git-fixes). - net: usb: pegasus: Do not drop long Ethernet frames (git-fixes). - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (bsc#1176447). - nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done (git-fixes). - nfc: fix segfault in nfc_genl_dump_devices_done (git-fixes). - nfsd: Fix nsfd startup race (again) (git-fixes). - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (bsc#1176447). - nvme-tcp: block BH in sk state_change sk callback (git-fixes). - nvme-tcp: can't set sk_user_data without write_lock (git-fixes). - nvme-tcp: check sgl supported by target (git-fixes). - nvme-tcp: do not update queue count when failing to set io queues (git-fixes). - nvme-tcp: fix a NULL deref when receiving a 0-length r2t PDU (git-fixes). - nvme-tcp: fix crash triggered with a dataless request submission (git-fixes). - nvme-tcp: fix error codes in nvme_tcp_setup_ctrl() (git-fixes). - nvme-tcp: fix io_work priority inversion (git-fixes). - nvme-tcp: fix possible data corruption with bio merges (git-fixes). - nvme-tcp: fix possible req->offset corruption (git-fixes). - nvme-tcp: fix wrong setting of request iov_iter (git-fixes). - nvme-tcp: get rid of unused helper function (git-fixes). - nvme-tcp: pair send_mutex init with destroy (git-fixes). - nvme-tcp: pass multipage bvec to request iov_iter (git-fixes). - nvme-tcp: remove incorrect Kconfig dep in BLK_DEV_NVME (git-fixes). - pcmcia: fix setting of kthread task states (git-fixes). - pcmcia: rsrc_nonstatic: Fix a NULL pointer dereference in __nonstatic_find_io_region() (git-fixes). - pcmcia: rsrc_nonstatic: Fix a NULL pointer dereference in nonstatic_find_mem_region() (git-fixes). - pcnet32: Use pci_resource_len to validate PCI resource (git-fixes). - pinctrl: mediatek: fix global-out-of-bounds issue (git-fixes). - pinctrl: qcom: spmi-gpio: correct parent irqspec translation (git-fixes). - pinctrl: stm32: consider the GPIO offset to expose all the GPIO lines (git-fixes). - pinctrl: stm32: use valid pin identifier in stm32_pinctrl_resume() (git-fixes). - pipe: increase minimum default pipe size to 2 pages (bsc#1194587). - platform/x86: apple-gmux: use resource_size() with res (git-fixes). - platform/x86: thinkpad_acpi: Fix WWAN device disabled issue after S3 deep (git-fixes). - power: reset: ltc2952: Fix use of floating point literals (git-fixes). - power: supply: core: Break capacity loop (git-fixes). - power: supply: max17042_battery: Clear status bits in interrupt handler (git-fixes). - powerpc/64s: fix program check interrupt emergency stack path (bsc#1156395). - powerpc/fadump: Fix inaccurate CPU state info in vmcore generated with panic (bsc#1193901 ltc#194976). - powerpc/perf: Fix PMU callbacks to clear pending PMI before resetting an overflown PMC (bsc#1156395). - powerpc/perf: Fix data source encodings for L2.1 and L3.1 accesses (bsc#1065729). - powerpc/prom_init: Fix improper check of prom_getprop() (bsc#1065729). - powerpc/pseries/cpuhp: cache node corrections (bsc#1065729). - powerpc/pseries/cpuhp: delete add/remove_by_count code (bsc#1065729). - powerpc/pseries/mobility: ignore ibm, platform-facilities updates (bsc#1065729). - powerpc/traps: do not enable irqs in _exception (bsc#1065729). - powerpc/xive: Add missing null check after calling kmalloc (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc: add interrupt_cond_local_irq_enable helper (bsc#1065729). - powerpc: handle kdump appropriately with crash_kexec_post_notifiers option (bsc#1193901 ltc#194976). - pwm: mxs: Do not modify HW state in .probe() after the PWM chip was registered (git-fixes). - pwm: tiecap: Drop .free() callback (git-fixes). - qlcnic: potential dereference null pointer of rx_queue->page_ring (git-fixes). - quota: check block number when reading the block in quota file (bsc#1194589). - quota: correct error number in free_dqentry() (bsc#1194590). - random: fix data race on crng init time (git-fixes). - random: fix data race on crng_node_pool (git-fixes). - regmap: Call regmap_debugfs_exit() prior to _init() (git-fixes). - rndis_host: support Hytera digital radios (git-fixes). - rpmsg: core: Clean up resources on announce_create failure (git-fixes). - rtl8xxxu: Fix the handling of TX A-MPDU aggregation (git-fixes). - rtlwifi: rtl8192cu: Fix WARNING when calling local_irq_restore() with interrupts enabled (git-fixes). - rtw88: use read_poll_timeout instead of fixed sleep (git-fixes). - rtw88: wow: build wow function only if CONFIG_PM is on (git-fixes). - rtw88: wow: fix size access error of probe request (git-fixes). - sata: nv: fix debug format string mismatch (git-fixes). - scsi: lpfc: Add additional debugfs support for CMF (bsc#1194266). - scsi: lpfc: Adjust CMF total bytes and rxmonitor (bsc#1194266). - scsi: lpfc: Cap CMF read bytes to MBPI (bsc#1194266). - scsi: lpfc: Change return code on I/Os received during link bounce (bsc#1194266). - scsi: lpfc: Fix NPIV port deletion crash (bsc#1194266). - scsi: lpfc: Fix leaked lpfc_dmabuf mbox allocations with NPIV (bsc#1194266). - scsi: lpfc: Fix lpfc_force_rscn ndlp kref imbalance (bsc#1194266). - scsi: lpfc: Trigger SLI4 firmware dump before doing driver cleanup (bsc#1194266). - scsi: lpfc: Update lpfc version to 14.0.0.4 (bsc#1194266). - scsi: qla2xxx: Fix mailbox direction flags in qla2xxx_get_adapter_id() (git-fixes). - scsi: qla2xxx: Format log strings only if needed (git-fixes). - scsi: qla2xxx: edif: Fix EDIF bsg (git-fixes). - scsi: qla2xxx: edif: Fix app start delay (git-fixes). - scsi: qla2xxx: edif: Fix app start fail (git-fixes). - scsi: qla2xxx: edif: Fix off by one bug in qla_edif_app_getfcinfo() (git-fixes). - scsi: qla2xxx: edif: Flush stale events and msgs on session down (git-fixes). - scsi: qla2xxx: edif: Increase ELS payload (git-fixes). - select: Fix indefinitely sleeping task in poll_schedule_timeout() (bsc#1194027). - selftests: KVM: Explicitly use movq to read xmm registers (git-fixes). - selinux: fix potential memleak in selinux_add_opt() (git-fixes). - seq_buf: Fix overflow in seq_buf_putmem_hex() (git-fixes). - seq_buf: Make trace_seq_putmem_hex() support data longer than 8 (git-fixes). - serial: pl011: Add ACPI SBSA UART match id (git-fixes). - serial: tty: uartlite: fix console setup (git-fixes). - sfc: Check null pointer of rx_queue->page_ring (git-fixes). - sfc: The RX page_ring is optional (git-fixes). - sfc: falcon: Check null pointer of rx_queue->page_ring (git-fixes). - sfc_ef100: potential dereference of null pointer (jsc#SLE-16683). - shmem: shmem_writepage() split unlikely i915 THP (git-fixes). - slimbus: qcom: fix potential NULL dereference in qcom_slim_prg_slew() (git-fixes). - soc/tegra: fuse: Fix bitwise vs. logical OR warning (git-fixes). - soc: fsl: dpaa2-console: free buffer before returning from dpaa2_console_read (git-fixes). - soc: fsl: dpio: rename the enqueue descriptor variable (git-fixes). - soc: fsl: dpio: replace smp_processor_id with raw_smp_processor_id (git-fixes). - soc: fsl: dpio: use an explicit NULL instead of 0 (git-fixes). - soc: fsl: dpio: use the combined functions to protect critical zone (git-fixes). - spi: change clk_disable_unprepare to clk_unprepare (git-fixes). - spi: spi-meson-spifc: Add missing pm_runtime_disable() in meson_spifc_probe (git-fixes). - spi: spi-rspi: Drop redeclaring ret variable in qspi_transfer_in() (git-fixes). - staging: emxx_udc: Fix passing of NULL to dma_alloc_coherent() (git-fixes). - staging: fbtft: Do not spam logs when probe is deferred (git-fixes). - staging: fbtft: Rectify GPIO handling (git-fixes). - staging: fieldbus: anybuss: jump to correct label in an error path (git-fixes). - staging: ks7010: select CRYPTO_HASH/CRYPTO_MICHAEL_MIC (git-fixes). - staging: rtl8192e: return error code from rtllib_softmac_init() (git-fixes). - staging: rtl8192e: rtllib_module: fix error handle case in alloc_rtllib() (git-fixes). - staging: wlan-ng: Avoid bitwise vs logical OR warning in hfa384x_usb_throttlefn() (git-fixes). - string.h: fix incompatibility between FORTIFY_SOURCE and KASAN (git-fixes). - thermal/drivers/imx8mm: Enable ADC when enabling monitor (git-fixes). - thermal/drivers/int340x: Do not set a wrong tcc offset on resume (git-fixes). - thermal: core: Reset previous low and high trip during thermal zone init (git-fixes). - tpm: add request_locality before write TPM_INT_ENABLE (git-fixes). - tpm: fix potential NULL pointer access in tpm_del_char_device (git-fixes). - tracing/kprobes: 'nmissed' not showed correctly for kretprobe (git-fixes). - tracing/uprobes: Check the return value of kstrdup() for tu->filename (git-fixes). - tracing: Add test for user space strings when filtering on string pointers (git-fixes). - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (git-fixes). - tty: max310x: fix flexible_array.cocci warnings (git-fixes). - tty: serial: atmel: Call dma_async_issue_pending() (git-fixes). - tty: serial: atmel: Check return code of dmaengine_submit() (git-fixes). - tty: serial: earlycon dependency (git-fixes). - tty: serial: qcom_geni_serial: Drop __init from qcom_geni_console_setup (git-fixes). - tty: serial: uartlite: allow 64 bit address (git-fixes). - tty: synclink_gt: rename a conflicting function name (git-fixes). - udf: Fix crash after seekdir (bsc#1194592). - uio: uio_dmem_genirq: Catch the Exception (git-fixes). - usb: core: config: fix validation of wMaxPacketValue entries (git-fixes). - usb: core: config: using bit mask instead of individual bits (git-fixes). - usb: dwc2: check return value after calling platform_get_resource() (git-fixes). - usb: dwc3: gadget: Continue to process pending requests (git-fixes). - usb: dwc3: gadget: Ignore EP queue requests during bus reset (git-fixes). - usb: dwc3: gadget: Reclaim extra TRBs after request completion (git-fixes). - usb: dwc3: pci: Enable dis_uX_susphy_quirk for Intel Merrifield (git-fixes). - usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression (git-fixes). - usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based one (git-fixes). - usb: dwc3: ulpi: fix checkpatch warning (git-fixes). - usb: ftdi-elan: fix memory leak on device disconnect (git-fixes). - usb: gadget: composite: Allow bMaxPower=0 if self-powered (git-fixes). - usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear (git-fixes). - usb: gadget: u_ether: fix race in setting MAC address in setup phase (git-fixes). - usb: mtu3: add memory barrier before set GPD's HWO (git-fixes). - usb: mtu3: fix interval value for intr and isoc (git-fixes). - usb: mtu3: fix list_head check warning (git-fixes). - usb: mtu3: set interval of FS intr and isoc endpoint (git-fixes). - usb: typec: tcpm: handle SRC_STARTUP state if cc changes (git-fixes). - usb: xhci: Extend support for runtime power management for AMD's Yellow carp (git-fixes). - usermodehelper: reset umask to default before executing user process (git-fixes). - vfs: check fd has read access in kernel_read_file_from_fd() (bsc#1194888). - video: backlight: Drop maximum brightness override for brightness zero (git-fixes). - watchdog: Fix OMAP watchdog early handling (git-fixes). - watchdog: f71808e_wdt: fix inaccurate report in WDIOC_GETTIMEOUT (git-fixes). - wcn36xx: Fix missing frame timestamp for beacon/probe-resp (git-fixes). - wcn36xx: Indicate beacon not connection loss on MISSED_BEACON_IND (git-fixes). - wcn36xx: Release DMA channel descriptor allocations (git-fixes). - wcn36xx: handle connection loss indication (git-fixes). - wireguard: allowedips: add missing __rcu annotation to satisfy sparse (git-fixes). - wireguard: device: reset peer src endpoint when netns exits (git-fixes). - wireguard: ratelimiter: use kvcalloc() instead of kvzalloc() (git-fixes). - wireguard: receive: drop handshakes if queue lock is contended (git-fixes). - wireguard: receive: use ring buffer for incoming handshakes (git-fixes). - wireguard: selftests: actually test for routing loops (git-fixes). - wireguard: selftests: increase default dmesg log size (git-fixes). - wireless: iwlwifi: Fix a double free in iwl_txq_dyn_alloc_dma (git-fixes). - x86/platform/uv: Add more to secondary CPU kdump info (bsc#1194493). - xhci: Fresco FL1100 controller should not have BROKEN_MSI quirk set (git-fixes). - xhci: Remove CONFIG_USB_DEFAULT_PERSIST to prevent xHCI from runtime suspending (git-fixes). - xhci: avoid race between disable slot command and host runtime suspend (git-fixes). - xhci: fix unsafe memory usage in xhci tracing (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.43.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.43.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-5.3.18-150300.59.43.1.nosrc.rpm True kernel-default-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.src.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.43.1.150300.18.27.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.43.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.43.1.noarch.rpm True kernel-docs-5.3.18-150300.59.43.1.noarch.rpm True kernel-docs-5.3.18-150300.59.43.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.43.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.43.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.43.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.43.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.43.1.src.rpm True kernel-obs-build-5.3.18-150300.59.43.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.43.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.43.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.43.1.x86_64.rpm True kernel-source-5.3.18-150300.59.43.1.noarch.rpm True kernel-source-5.3.18-150300.59.43.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.43.1.noarch.rpm True kernel-syms-5.3.18-150300.59.43.1.src.rpm True kernel-syms-5.3.18-150300.59.43.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.43.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.43.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.43.1.150300.18.27.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.43.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.43.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.43.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.s390x.rpm True kernel-syms-5.3.18-150300.59.43.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.43.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.43.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.43.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.43.1.150300.18.27.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.43.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.43.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.43.1.src.rpm True dtb-al-5.3.18-150300.59.43.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.43.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.43.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.43.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.43.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.43.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.43.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.43.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.43.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.43.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.43.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.43.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.43.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.43.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.43.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.43.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.43.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.43.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.43.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.43.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.43.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.43.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.43.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.43.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.43.1.150300.18.27.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.43.1.150300.18.27.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.43.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.43.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.43.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.43.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.43.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.43.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.43.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.43.1.aarch64.rpm True openSUSE-SLE-15.3-2022-169 important SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0185: Incorrect param length parsing in legacy_parse_param which could have led to a local privilege escalation (bsc#1194517). - CVE-2022-0322: Fixed a denial of service in SCTP sctp_addto_chunk (bsc#1194985). - CVE-2021-4197: Fixed a cgroup issue where lower privileged processes could write to fds of lower privileged ones that could lead to privilege escalation (bsc#1194302). - CVE-2021-46283: nf_tables_newset in net/netfilter/nf_tables_api.c in the Linux kernel allowed local users to cause a denial of service (NULL pointer dereference and general protection fault) because of the missing initialization for nft_set_elem_expr_alloc. A local user can set a netfilter table expression in their own namespace (bnc#1194518). - CVE-2021-4135: Fixed an information leak in the nsim_bpf_map_alloc function (bsc#1193927). - CVE-2021-4202: Fixed a race condition during NFC device remove which could lead to a use-after-free memory corruption (bsc#1194529) - CVE-2021-4083: A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allowed a local user to crash the system or escalate their privileges on the system. (bnc#1193727). - CVE-2021-4149: Fixed a locking condition in btrfs which could lead to system deadlocks (bsc#1194001). - CVE-2021-45485: In the IPv6 implementation net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses (bnc#1194094). - CVE-2021-45486: In the IPv4 implementation net/ipv4/route.c has an information leak because the hash table is very small (bnc#1194087). The following non-security bugs were fixed: - ACPI: APD: Check for NULL pointer after calling devm_ioremap() (git-fixes). - ACPI: Add stubs for wakeup handler functions (git-fixes). - ACPI: scan: Create platform device for BCM4752 and LNV4752 ACPI nodes (git-fixes). - ALSA: PCM: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: ctl: Fix copy of updated id with element read/write (git-fixes). - ALSA: drivers: opl3: Fix incorrect use of vp->state (git-fixes). - ALSA: hda/hdmi: Disable silent stream on GLK (git-fixes). - ALSA: hda/realtek - Add headset Mic support for Lenovo ALC897 platform (git-fixes). - ALSA: hda/realtek - Fix silent output on Gigabyte X570 Aorus Master after reboot from Windows (git-fixes). - ALSA: hda/realtek: Add a quirk for HP OMEN 15 mute LED (git-fixes). - ALSA: hda/realtek: Add quirk for ASRock NUC Box 1100 (git-fixes). - ALSA: hda/realtek: Amp init fixup for HP ZBook 15 G6 (git-fixes). - ALSA: hda/realtek: Fix quirk for Clevo NJ51CU (git-fixes). - ALSA: hda/realtek: Fix quirk for TongFang PHxTxX1 (git-fixes). - ALSA: hda/realtek: Fixes HP Spectre x360 15-eb1xxx speakers (git-fixes). - ALSA: hda/realtek: Headset fixup for Clevo NH77HJQ (git-fixes). - ALSA: hda: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: hda: Make proper use of timecounter (git-fixes). - ALSA: jack: Add missing rwsem around snd_ctl_remove() calls (git-fixes). - ALSA: jack: Check the return value of kstrdup() (git-fixes). - ALSA: oss: fix compile error when OSS_DEBUG is enabled (git-fixes). - ALSA: pcm: oss: Fix negative period/buffer sizes (git-fixes). - ALSA: pcm: oss: Handle missing errors in snd_pcm_oss_change_params*() (git-fixes). - ALSA: pcm: oss: Limit the period size to 16MB (git-fixes). - ALSA: usb-audio: Drop superfluous '0' in Presonus Studio 1810c's ID (git-fixes). - ALSA: usb-audio: Line6 HX-Stomp XL USB_ID for 48k-fixed quirk (git-fixes). - ASoC: codecs: wcd934x: handle channel mappping list correctly (git-fixes). - ASoC: codecs: wcd934x: return correct value from mixer put (git-fixes). - ASoC: codecs: wcd934x: return error code correctly from hw_params (git-fixes). - ASoC: codecs: wsa881x: fix return values from kcontrol put (git-fixes). - ASoC: cs42l42: Correct configuring of switch inversion from ts-inv (git-fixes). - ASoC: cs42l42: Disable regulators if probe fails (git-fixes). - ASoC: cs42l42: Use device_property API instead of of_property (git-fixes). - ASoC: fsl_asrc: refine the check of available clock divider (git-fixes). - ASoC: fsl_mqs: fix MODULE_ALIAS (git-fixes). - ASoC: mediatek: Check for error clk pointer (git-fixes). - ASoC: meson: aiu: Move AIU_I2S_MISC hold setting to aiu-fifo-i2s (git-fixes). - ASoC: meson: aiu: fifo: Add missing dma_coerce_mask_and_coherent() (git-fixes). - ASoC: qdsp6: q6routing: Fix return value from msm_routing_put_audio_mixer (git-fixes). - ASoC: rt5663: Handle device_property_read_u32_array error codes (git-fixes). - ASoC: samsung: idma: Check of ioremap return value (git-fixes). - ASoC: soc-core: fix null-ptr-deref in snd_soc_del_component_unlocked() (git-fixes). - ASoC: sunxi: fix a sound binding broken reference (git-fixes). - ASoC: tegra: Fix kcontrol put callback in ADMAIF (git-fixes). - ASoC: tegra: Fix kcontrol put callback in AHUB (git-fixes). - ASoC: tegra: Fix kcontrol put callback in DMIC (git-fixes). - ASoC: tegra: Fix kcontrol put callback in DSPK (git-fixes). - ASoC: tegra: Fix kcontrol put callback in I2S (git-fixes). - ASoC: tegra: Fix wrong value type in ADMAIF (git-fixes). - ASoC: tegra: Fix wrong value type in DMIC (git-fixes). - ASoC: tegra: Fix wrong value type in DSPK (git-fixes). - ASoC: tegra: Fix wrong value type in I2S (git-fixes). - ASoC: uniphier: drop selecting non-existing SND_SOC_UNIPHIER_AIO_DMA (git-fixes). - Add cherry-picked IDs for qemu fw_cfg patches - Bluetooth: L2CAP: Fix using wrong mode (git-fixes). - Bluetooth: bfusb: fix division by zero in send path (git-fixes). - Bluetooth: btmtksdio: fix resume failure (git-fixes). - Bluetooth: btusb: fix memory leak in btusb_mtk_submit_wmt_recv_urb() (git-fixes). - Bluetooth: cmtp: fix possible panic when cmtp_init_sockets() fails (git-fixes). - Bluetooth: hci_bcm: Check for error irq (git-fixes). - Bluetooth: hci_qca: Stop IBS timer during BT OFF (git-fixes). - Bluetooth: stop proccessing malicious adv data (git-fixes). - Documentation: ACPI: Fix data node reference documentation (git-fixes). - Documentation: dmaengine: Correctly describe dmatest with channel unset (git-fixes). - Documentation: refer to config RANDOMIZE_BASE for kernel address-space randomization (git-fixes). - HID: add USB_HID dependancy to hid-chicony (git-fixes). - HID: add USB_HID dependancy to hid-prodikeys (git-fixes). - HID: asus: Add depends on USB_HID to HID_ASUS Kconfig option (git-fixes). - HID: bigbenff: prevent null pointer dereference (git-fixes). - HID: google: add eel USB id (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_frame_init_v1_buttonpad (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_get_str_desc (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_huion_init (git-fixes). - HID: hid-uclogic-params: Invalid parameter check in uclogic_params_init (git-fixes). - HID: quirks: Add quirk for the Microsoft Surface 3 type-cover (git-fixes). - Input: appletouch - initialize work before device registration (git-fixes). - Input: atmel_mxt_ts - fix double free in mxt_read_info_block (git-fixes). - Input: elantech - fix stack out of bound access in elantech_change_report_id() (git-fixes). - Input: i8042 - add deferred probe support (bsc#1190256). - Input: i8042 - enable deferred probe quirk for ASUS UM325UA (bsc#1190256). - Input: max8925_onkey - do not mark comment as kernel-doc (git-fixes). - Input: spaceball - fix parsing of movement data packets (git-fixes). - Input: ti_am335x_tsc - fix STEPCONFIG setup for Z2 (git-fixes). - Input: ti_am335x_tsc - set ADCREFM for X configuration (git-fixes). - Move upstreamed patches into sorted section - NFC: st21nfca: Fix memory leak in device probe and remove (git-fixes). - NFSD: Fix zero-length NFSv3 WRITEs (git-fixes). - NFSv42: Do not fail clone() unless the OP_CLONE operation failed (git-fixes). - NFSv42: Fix pagecache invalidation after COPY/CLONE (git-fixes). - PCI/ACPI: Fix acpi_pci_osc_control_set() kernel-doc comment (git-fixes). - PCI/MSI: Clear PCI_MSIX_FLAGS_MASKALL on error (git-fixes). - PCI/MSI: Fix pci_irq_vector()/pci_irq_get_affinity() (git-fixes). - PCI/MSI: Mask MSI-X vectors only on success (git-fixes). - PCI: cadence: Add cdns_plat_pcie_probe() missing return (git-fixes). - PCI: dwc: Do not remap invalid res (git-fixes). - PCI: mvebu: Check for errors from pci_bridge_emul_init() call (git-fixes). - PCI: mvebu: Do not modify PCI IO type bits in conf_write (git-fixes). - PCI: mvebu: Fix support for DEVCAP2, DEVCTL2 and LNKCTL2 registers on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_EXP_DEVCTL on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_EXP_RTSTA on emulated bridge (git-fixes). - PCI: pci-bridge-emul: Properly mark reserved PCIe bits in PCI config space (git-fixes). - PCI: pci-bridge-emul: Set PCI_STATUS_CAP_LIST for PCIe device (git-fixes). - PCI: pciehp: Fix infinite loop in IRQ handler upon power fault (git-fixes). - PCI: xgene: Fix IB window setup (git-fixes). - PM: runtime: Defer suspending suppliers (git-fixes). - PM: sleep: Do not assume that "mem" is always present (git-fixes). - RDMA/hns: Replace kfree() with kvfree() (jsc#SLE-14777). - Rename colliding patches before the next SLE15-SP2 -> SLE15-SP3 merge - Rename colliding patches before the next cve/linux-5.3 -> SLE15-SP3 merge - Revert "PM: sleep: Do not assume that "mem" is always present" (git-fixes). - Revert "USB: xhci: fix U1/U2 handling for hardware with XHCI_INTEL_HOST quirk set" (git-fixes). - Revert "net/mlx5: Add retry mechanism to the command entry index allocation" (jsc#SLE-15172). - USB: Fix "slab-out-of-bounds Write" bug in usb_hcd_poll_rh_status (git-fixes). - USB: NO_LPM quirk Lenovo Powered USB-C Travel Hub (git-fixes). - USB: NO_LPM quirk Lenovo USB-C to Ethernet Adapher(RTL8153-04) (git-fixes). - USB: cdc-acm: fix break reporting (git-fixes). - USB: cdc-acm: fix racy tty buffer accesses (git-fixes). - USB: chipidea: fix interrupt deadlock (git-fixes). - USB: core: Fix bug in resuming hub's handling of wakeup requests (git-fixes). - USB: gadget: bRequestType is a bitfield, not a enum (git-fixes). - USB: gadget: detect too-big endpoint 0 requests (git-fixes). - USB: gadget: zero allocate endpoint 0 buffers (git-fixes). - USB: serial: cp210x: fix CP2105 GPIO registration (git-fixes). - USB: serial: option: add Telit FN990 compositions (git-fixes). - Update patches.suse/tpm-fix-potential-NULL-pointer-access-in-tpm_del_cha.patch (git-fixes bsc#1193660 ltc#195634). - Updated mpi3mr entry in supported.conf (bsc#1194578 jsc#SLE-18120) Moving this driver into the "supported" package. - amd/display: downgrade validation failure log level (git-fixes). - ata: ahci: Add Green Sardine vendor ID as board_ahci_mobile (git-fixes). - atlantic: Fix buff_ring OOB in aq_ring_rx_clean (git-fixes). - ax25: NPD bug when detaching AX25 device (git-fixes). - backlight: qcom-wled: Fix off-by-one maximum with default num_strings (git-fixes). - backlight: qcom-wled: Override default length with qcom,enabled-strings (git-fixes). - backlight: qcom-wled: Pass number of elements to read to read_u32_array (git-fixes). - backlight: qcom-wled: Validate enabled string indices in DT (git-fixes). - batman-adv: mcast: do not send link-local multicast to mcast routers (git-fixes). - blk-cgroup: synchronize blkg creation against policy deactivation (bsc#1194584). - block/scsi-ioctl: Fix kernel-infoleak in scsi_put_cdrom_generic_arg() (git-fixes). - block: fix ioprio_get(IOPRIO_WHO_PGRP) vs setuid(2) (bsc#1194586). - can: gs_usb: fix use of uninitialized variable, detach device on reception of invalid USB data (git-fixes). - can: gs_usb: gs_can_start_xmit(): zero-initialize hf->{flags,reserved} (git-fixes). - can: kvaser_usb: get CAN clock frequency from device (git-fixes). - can: sja1000: fix use after free in ems_pcmcia_add_card() (git-fixes). - can: softing: softing_startstop(): fix set but not used variable warning (git-fixes). - can: softing_cs: softingcs_probe(): fix memleak on registration failure (git-fixes). - can: usb_8dev: remove unused member echo_skb from struct usb_8dev_priv (git-fixes). - can: xilinx_can: xcan_probe(): check for error irq (git-fixes). - char/mwave: Adjust io port register size (git-fixes). - clk: Do not parent clks until the parent is fully registered (git-fixes). - clk: Gemini: fix struct name in kernel-doc (git-fixes). - clk: bcm-2835: Pick the closest clock rate (git-fixes). - clk: bcm-2835: Remove rounding up the dividers (git-fixes). - clk: imx8mn: Fix imx8mn_clko1_sels (git-fixes). - clk: imx: pllv1: fix kernel-doc notation for struct clk_pllv1 (git-fixes). - clk: qcom: gcc-msm8996: Drop (again) gcc_aggre1_pnoc_ahb_clk (git-fixes). - clk: qcom: regmap-mux: fix parent clock lookup (git-fixes). - clk: stm32: Fix ltdc's clock turn off by clk_disable_unused() after system enter shell (git-fixes). - crypto: caam - replace this_cpu_ptr with raw_cpu_ptr (git-fixes). - crypto: mxs-dcp - Use sg_mapping_iter to copy data (git-fixes). - crypto: omap-sham - clear dma flags only after omap_sham_update_dma_stop() (git-fixes). - crypto: qat - do not ignore errors from enable_vf2pf_comms() (git-fixes). - crypto: qat - fix reuse of completion variable (git-fixes). - crypto: qat - handle both source of interrupt in VF ISR (git-fixes). - crypto: qce - fix uaf on qce_ahash_register_one (git-fixes). - crypto: stm32/crc32 - Fix kernel BUG triggered in probe() (git-fixes). - crypto: stm32/cryp - fix double pm exit (git-fixes). - crypto: stm32/cryp - fix lrw chaining mode (git-fixes). - crypto: stm32/cryp - fix xts and race condition in crypto_engine requests (git-fixes). - debugfs: lockdown: Allow reading debugfs files that are not world readable (bsc#1193328 ltc#195566). - device property: Fix documentation for FWNODE_GRAPH_DEVICE_DISABLED (git-fixes). - dm crypt: document encrypted keyring key option (git-fixes). - dm writecache: add "cleaner" and "max_age" to Documentation (git-fixes). - dm writecache: advance the number of arguments when reporting max_age (git-fixes). - dm writecache: fix performance degradation in ssd mode (git-fixes). - dm writecache: flush origin device when writing and cache is full (git-fixes). - dma_fence_array: Fix PENDING_ERROR leak in dma_fence_array_signaled() (git-fixes). - dmaengine: at_xdmac: Do not start transactions at tx_submit level (git-fixes). - dmaengine: at_xdmac: Fix at_xdmac_lld struct definition (git-fixes). - dmaengine: at_xdmac: Fix concurrency over xfers_list (git-fixes). - dmaengine: at_xdmac: Fix lld view setting (git-fixes). - dmaengine: at_xdmac: Print debug message after realeasing the lock (git-fixes). - dmaengine: bestcomm: fix system boot lockups (git-fixes). - dmaengine: idxd: add module parameter to force disable of SVA (bsc#1192931). - dmaengine: idxd: enable SVA feature for IOMMU (bsc#1192931). - dmaengine: pxa/mmp: stop referencing config->slave_id (git-fixes). - dmaengine: st_fdma: fix MODULE_ALIAS (git-fixes). - drm/amd/amdgpu: Increase HWIP_MAX_INSTANCE to 10 (git-fixes). - drm/amd/display: Fix for the no Audio bug with Tiled Displays (git-fixes). - drm/amd/display: Update bounding box states (v2) (git-fixes). - drm/amd/display: Update number of DCN3 clock states (git-fixes). - drm/amd/display: add connector type check for CRC source set (git-fixes). - drm/amd/display: dcn20_resource_construct reduce scope of FPU enabled (git-fixes). - drm/amd/display: fix incorrect CM/TF programming sequence in dwb (git-fixes). - drm/amd/display: fix missing writeback disablement if plane is removed (git-fixes). - drm/amdgpu: Fix a NULL pointer dereference in amdgpu_connector_lcd_native_mode() (git-fixes). - drm/amdgpu: Fix a printing message (git-fixes). - drm/amdgpu: Fix amdgpu_ras_eeprom_init() (git-fixes). - drm/amdgpu: correct register access for RLC_JUMP_TABLE_RESTORE (git-fixes). - drm/amdgpu: revert "Add autodump debugfs node for gpu reset v8" (git-fixes). - drm/amdkfd: Account for SH/SE count when setting up cu masks (git-fixes). - drm/amdkfd: Check for null pointer after calling kmemdup (git-fixes). - drm/ast: potential dereference of null pointer (git-fixes). - drm/atomic: Check new_crtc_state->active to determine if CRTC needs disable in self refresh mode (git-fixes). - drm/bridge: analogix_dp: Make PSR-exit block less (git-fixes). - drm/bridge: display-connector: fix an uninitialized pointer in probe() (git-fixes). - drm/bridge: nwl-dsi: Avoid potential multiplication overflow on 32-bit (git-fixes). - drm/bridge: ti-sn65dsi86: Set max register for regmap (git-fixes). - drm/display: fix possible null-pointer dereference in dcn10_set_clock() (git-fixes). - drm/exynos: Always initialize mapping in exynos_drm_register_dma() (git-fixes). - drm/i915/fb: Fix rounding error in subsampled plane size calculation (git-fixes). - drm/i915: Avoid bitwise vs logical OR warning in snb_wm_latency_quirk() (git-fixes). - drm/mediatek: Check plane visibility in atomic_update (git-fixes). - drm/msm/dpu: fix safe status debugfs file (git-fixes). - drm/msm/dsi: Fix DSI and DSI PHY regulator config from SDM660 (git-fixes). - drm/msm/dsi: set default num_data_lanes (git-fixes). - drm/msm/mdp5: fix cursor-related warnings (git-fixes). - drm/msm: mdp4: drop vblank get/put from prepare/complete_commit (git-fixes). - drm/msm: prevent NULL dereference in msm_gpu_crashstate_capture() (git-fixes). - drm/panel: innolux-p079zca: Delete panel on attach() failure (git-fixes). - drm/panel: kingdisplay-kd097d04: Delete panel on attach() failure (git-fixes). - drm/radeon/radeon_kms: Fix a NULL pointer dereference in radeon_driver_open_kms() (git-fixes). - drm/rockchip: dsi: Disable PLL clock on bind error (git-fixes). - drm/rockchip: dsi: Fix unbalanced clock on probe error (git-fixes). - drm/rockchip: dsi: Hold pm-runtime across bind/unbind (git-fixes). - drm/rockchip: dsi: Reconfigure hardware on resume() (git-fixes). - drm/sun4i: dw-hdmi: Fix missing put_device() call in sun8i_hdmi_phy_get (git-fixes). - drm/sun4i: fix unmet dependency on RESET_CONTROLLER for PHY_SUN6I_MIPI_DPHY (git-fixes). - drm/syncobj: Deal with signalled fences in drm_syncobj_find_fence (git-fixes). - drm/tegra: vic: Fix DMA API misuse (git-fixes). - drm/vboxvideo: fix a NULL vs IS_ERR() check (git-fixes). - drm/vc4: hdmi: Make sure the controller is powered up during bind (git-fixes). - drm/vc4: hdmi: Set HD_CTL_WHOLSMP and HD_CTL_CHALIGN_SET (git-fixes). - drm/vc4: hdmi: Set a default HSM rate (git-fixes). - drm: fix null-ptr-deref in drm_dev_init_release() (git-fixes). - drm: xlnx: zynqmp: release reset to DP controller before accessing DP registers (git-fixes). - drm: xlnx: zynqmp_dpsub: Call pm_runtime_get_sync before setting pixel clock (git-fixes). - eeprom: idt_89hpesx: Put fwnode in matching case during ->probe() (git-fixes). - eeprom: idt_89hpesx: Restore printing the unsupported fwnode name (git-fixes). - ext4: Avoid trim error on fs with small groups (bsc#1191271). - ext4: fix lazy initialization next schedule time computation in more granular unit (bsc#1194580). - fget: clarify and improve __fget_files() implementation (bsc#1193727). - firmware: Update Kconfig help text for Google firmware (git-fixes). - firmware: arm_scmi: pm: Propagate return value to caller (git-fixes). - firmware: arm_scpi: Fix string overflow in SCPI genpd driver (git-fixes). - firmware: qcom_scm: Fix error retval in __qcom_scm_is_call_available() (git-fixes). - firmware: qemu_fw_cfg: fix NULL-pointer deref on duplicate entries (git-fixes). - firmware: qemu_fw_cfg: fix kobject leak in probe error path (git-fixes). - firmware: qemu_fw_cfg: fix sysfs information leak (git-fixes). - firmware: raspberrypi: Fix a leak in 'rpi_firmware_get()' (git-fixes). - firmware: smccc: Fix check for ARCH_SOC_ID not implemented (git-fixes). - firmware: tegra: Fix error application of sizeof() to pointer (git-fixes). - firmware: tegra: Reduce stack usage (git-fixes). - firmware_loader: fix pre-allocated buf built-in firmware use (git-fixes). - floppy: Fix hang in watchdog when disk is ejected (git-fixes). - flow_offload: return EOPNOTSUPP for the unsupported mpls action type (bsc#1154353). - fuse: Pass correct lend value to filemap_write_and_wait_range() (bsc#1194953). - gpiolib: acpi: Make set-debounce-timeout failures non fatal (git-fixes). - gpu: host1x: Add back arm_iommu_detach_device() (git-fixes). - hwmon: (lm90) Add basic support for TI TMP461 (git-fixes). - hwmon: (lm90) Add max6654 support to lm90 driver (git-fixes). - hwmon: (lm90) Do not report 'busy' status bit as alarm (git-fixes). - hwmon: (lm90) Drop critical attribute support for MAX6654 (git-fixes). - hwmon: (lm90) Fix usage of CONFIG2 register in detect function (git-fixes). - hwmon: (lm90) Introduce flag indicating extended temperature support (git-fixes). - i2c: rk3x: Handle a spurious start completion interrupt flag (git-fixes). - i2c: validate user data in compat ioctl (git-fixes). - i3c: fix incorrect address slot lookup on 64-bit (git-fixes). - i3c: master: dw: check return of dw_i3c_master_get_free_pos() (git-fixes). - i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc (git-fixes). - i40e: Fix for displaying message regarding NVM version (git-fixes). - i40e: Fix incorrect netdev's real number of RX/TX queues (git-fixes). - i40e: Fix to not show opcode msg on unsuccessful VF MAC change (git-fixes). - i40e: fix use-after-free in i40e_sync_filters_subtask() (git-fixes). - iavf: Fix limit of total number of queues to active queues of VF (git-fixes). - iavf: restore MSI state on reset (git-fixes). - ieee802154: atusb: fix uninit value in atusb_set_extended_addr (git-fixes). - ieee802154: fix error return code in ieee802154_llsec_getparams() (git-fixes). - ieee802154: fix error return code in ieee802154_add_iface() (git-fixes). - ieee802154: hwsim: Fix memory leak in hwsim_add_one (git-fixes). - ieee802154: hwsim: Fix possible memory leak in hwsim_subscribe_all_others (git-fixes). - ieee802154: hwsim: avoid possible crash in hwsim_del_edge_nl() (git-fixes). - ieee802154: hwsim: fix GPF in hwsim_set_edge_lqi (git-fixes). - igb: Fix removal of unicast MAC filters of VFs (git-fixes). - igbvf: fix double free in `igbvf_probe` (git-fixes). - igc: Fix typo in i225 LTR functions (jsc#SLE-13533). - iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove (git-fixes). - iio: ad7768-1: Call iio_trigger_notify_done() on error (git-fixes). - iio: adc: axp20x_adc: fix charging current reporting on AXP22x (git-fixes). - iio: at91-sama5d2: Fix incorrect sign extension (git-fixes). - iio: dln2-adc: Fix lockdep complaint (git-fixes). - iio: dln2: Check return value of devm_iio_trigger_register() (git-fixes). - iio: itg3200: Call iio_trigger_notify_done() on error (git-fixes). - iio: kxsd9: Do not return error code in trigger handler (git-fixes). - iio: ltr501: Do not return error code in trigger handler (git-fixes). - iio: mma8452: Fix trigger reference couting (git-fixes). - iio: stk3310: Do not return error code in interrupt handler (git-fixes). - iio: trigger: Fix reference counting (git-fixes). - iio: trigger: stm32-timer: fix MODULE_ALIAS (git-fixes). - ionic: Initialize the 'lif->dbid_inuse' bitmap (bsc#1167773). - isofs: Fix out of bound access for corrupted isofs image (bsc#1194591). - iwlwifi: fw: correctly limit to monitor dump (git-fixes). - iwlwifi: mvm: Fix scan channel flags settings (git-fixes). - iwlwifi: mvm: Use div_s64 instead of do_div in iwl_mvm_ftm_rtt_smoothing() (git-fixes). - iwlwifi: mvm: avoid static queue number aliasing (git-fixes). - iwlwifi: mvm: disable RX-diversity in powersave (git-fixes). - iwlwifi: mvm: fix 32-bit build in FTM (git-fixes). - iwlwifi: mvm: fix access to BSS elements (git-fixes). - iwlwifi: mvm: test roc running status bits before removing the sta (git-fixes). - iwlwifi: pcie: free RBs during configure (git-fixes). - ixgbe: set X550 MDIO speed before talking to PHY (git-fixes). - kmod: make request_module() return an error when autoloading is disabled (git-fixes). - kobject: Restore old behaviour of kobject_del(NULL) (git-fixes). - kobject_uevent: remove warning in init_uevent_argv() (git-fixes). - kprobes: Limit max data_size of the kretprobe instances (bsc#1193669). - libata: add horkage for ASMedia 1092 (git-fixes). - libata: if T_LENGTH is zero, dma direction should be DMA_NONE (git-fixes). - livepatch: Avoid CPU hogging with cond_resched (bsc#1071995). - lockdown: Allow unprivileged users to see lockdown status (git-fixes). - mISDN: change function names to avoid conflicts (git-fixes). - mac80211: Fix monitor MTU limit so that A-MSDUs get through (git-fixes). - mac80211: agg-tx: do not schedule_and_wake_txq() under sta->lock (git-fixes). - mac80211: do not access the IV when it was stripped (git-fixes). - mac80211: fix lookup when adding AddBA extension element (git-fixes). - mac80211: fix regression in SSN handling of addba tx (git-fixes). - mac80211: initialize variable have_higher_than_11mbit (git-fixes). - mac80211: mark TX-during-stop for TX in in_reconfig (git-fixes). - mac80211: send ADDBA requests using the tid/queue of the aggregation session (git-fixes). - mac80211: track only QoS data frames for admission control (git-fixes). - mac80211: validate extended element ID is present (git-fixes). - mailbox: hi3660: convert struct comments to kernel-doc notation (git-fixes). - media: Revert "media: uvcvideo: Set unique vdev name based in type" (bsc#1193255). - media: aspeed: Update signal status immediately to ensure sane hw state (git-fixes). - media: aspeed: fix mode-detect always time out at 2nd run (git-fixes). - media: cpia2: fix control-message timeouts (git-fixes). - media: dib0700: fix undefined behavior in tuner shutdown (git-fixes). - media: dib8000: Fix a memleak in dib8000_init() (git-fixes). - media: dmxdev: fix UAF when dvb_register_device() fails (git-fixes). - media: dw2102: Fix use after free (git-fixes). - media: em28xx: fix control-message timeouts (git-fixes). - media: em28xx: fix memory leak in em28xx_init_dev (git-fixes). - media: flexcop-usb: fix control-message timeouts (git-fixes). - media: hantro: Fix probe func error path (git-fixes). - media: i2c: imx274: fix trivial typo expsoure/exposure (git-fixes). - media: i2c: imx274: fix trivial typo obainted/obtained (git-fixes). - media: imx-pxp: Initialize the spinlock prior to using it (git-fixes). - media: mceusb: fix control-message timeouts (git-fixes). - media: msi001: fix possible null-ptr-deref in msi001_probe() (git-fixes). - media: mtk-vcodec: call v4l2_m2m_ctx_release first when file is released (git-fixes). - media: pvrusb2: fix control-message timeouts (git-fixes). - media: rcar-csi2: Correct the selection of hsfreqrange (git-fixes). - media: rcar-csi2: Optimize the selection PHTW register (git-fixes). - media: redrat3: fix control-message timeouts (git-fixes). - media: s2255: fix control-message timeouts (git-fixes). - media: saa7146: mxb: Fix a NULL pointer dereference in mxb_attach() (git-fixes). - media: si2157: Fix "warm" tuner state detection (git-fixes). - media: si470x-i2c: fix possible memory leak in si470x_i2c_probe() (git-fixes). - media: stk1160: fix control-message timeouts (git-fixes). - media: streamzap: remove unnecessary ir_raw_event_reset and handle (git-fixes). - media: uvcvideo: fix division by zero at stream start (git-fixes). - media: venus: core: Fix a resource leak in the error handling path of 'venus_probe()' (git-fixes). - memblock: ensure there is no overflow in memblock_overlaps_region() (git-fixes). - memory: emif: Remove bogus debugfs error handling (git-fixes). - mfd: intel-lpss: Fix too early PM enablement in the ACPI ->probe() (git-fixes). - misc: fastrpc: Add missing lock before accessing find_vma() (git-fixes). - misc: fastrpc: fix improper packet size calculation (git-fixes). - misc: lattice-ecp3-config: Fix task hung when firmware load failed (git-fixes). - mmc: meson-mx-sdio: add IRQ check (git-fixes). - mmc: sdhci-esdhc-imx: clear the buffer_read_ready to reset standard tuning circuit (git-fixes). - mmc: sdhci-esdhc-imx: disable CMDQ support (git-fixes). - mmc: sdhci-pci: Add PCI ID for Intel ADL (git-fixes). - mmc: sdhci-tegra: Fix switch to HS400ES mode (git-fixes). - moxart: fix potential use-after-free on remove path (bsc#1194516). - mt76: mt7915: fix NULL pointer dereference in mt7915_get_phy_mode (git-fixes). - mt76: mt7915: fix an off-by-one bound check (git-fixes). - mtd: rawnand: fsmc: Fix timing computation (git-fixes). - mtd: rawnand: fsmc: Take instruction delay into account (git-fixes). - mtd: rawnand: mpc5121: Remove unused variable in ads5121_select_chip() (git-fixes). - mtd: spi-nor: hisi-sfc: Remove excessive clk_disable_unprepare() (git-fixes). - mwifiex: Fix possible ABBA deadlock (git-fixes). - mwifiex: Try waking the firmware until we get an interrupt (git-fixes). - net/mlx5: DR, Fix NULL vs IS_ERR checking in dr_domain_init_resources (jsc#SLE-8464). - net/mlx5: Set command entry semaphore up once got index free (jsc#SLE-15172). - net/mlx5e: Fix wrong features assignment in case of error (git-fixes). - net/mlx5e: Wrap the tx reporter dump callback to extract the sq (jsc#SLE-15172). - net/sched: fq_pie: prevent dismantle issue (jsc#SLE-15172). - net/sched: sch_ets: do not remove idle classes from the round-robin list (bsc#1176774). - net: create netdev->dev_addr assignment helpers (git-fixes). - net: ena: Fix error handling when calculating max IO queues number (bsc#1154492). - net: ena: Fix undefined state when tx request id is out of bounds (bsc#1154492). - net: ena: Fix wrong rx request id by resetting device (git-fixes). - net: hns3: fix use-after-free bug in hclgevf_send_mbx_msg (jsc#SLE-14777). - net: usb: lan78xx: add Allied Telesis AT29M2-AF (git-fixes). - net: usb: pegasus: Do not drop long Ethernet frames (git-fixes). - netfilter: nft_set_pipapo: allocate pcpu scratch maps on clone (bsc#1176447). - nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done (git-fixes). - nfc: fix segfault in nfc_genl_dump_devices_done (git-fixes). - nfsd: Fix nsfd startup race (again) (git-fixes). - nft_set_pipapo: Fix bucket load in AVX2 lookup routine for six 8-bit groups (bsc#1176447). - nvme-tcp: block BH in sk state_change sk callback (git-fixes). - nvme-tcp: can't set sk_user_data without write_lock (git-fixes). - nvme-tcp: check sgl supported by target (git-fixes). - nvme-tcp: do not update queue count when failing to set io queues (git-fixes). - nvme-tcp: fix a NULL deref when receiving a 0-length r2t PDU (git-fixes). - nvme-tcp: fix crash triggered with a dataless request submission (git-fixes). - nvme-tcp: fix error codes in nvme_tcp_setup_ctrl() (git-fixes). - nvme-tcp: fix io_work priority inversion (git-fixes). - nvme-tcp: fix possible data corruption with bio merges (git-fixes). - nvme-tcp: fix possible req->offset corruption (git-fixes). - nvme-tcp: fix wrong setting of request iov_iter (git-fixes). - nvme-tcp: get rid of unused helper function (git-fixes). - nvme-tcp: pair send_mutex init with destroy (git-fixes). - nvme-tcp: pass multipage bvec to request iov_iter (git-fixes). - nvme-tcp: remove incorrect Kconfig dep in BLK_DEV_NVME (git-fixes). - pcmcia: fix setting of kthread task states (git-fixes). - pcmcia: rsrc_nonstatic: Fix a NULL pointer dereference in __nonstatic_find_io_region() (git-fixes). - pcmcia: rsrc_nonstatic: Fix a NULL pointer dereference in nonstatic_find_mem_region() (git-fixes). - pcnet32: Use pci_resource_len to validate PCI resource (git-fixes). - pinctrl: mediatek: fix global-out-of-bounds issue (git-fixes). - pinctrl: qcom: spmi-gpio: correct parent irqspec translation (git-fixes). - pinctrl: stm32: consider the GPIO offset to expose all the GPIO lines (git-fixes). - pinctrl: stm32: use valid pin identifier in stm32_pinctrl_resume() (git-fixes). - pipe: increase minimum default pipe size to 2 pages (bsc#1194587). - platform/x86: apple-gmux: use resource_size() with res (git-fixes). - platform/x86: thinkpad_acpi: Fix WWAN device disabled issue after S3 deep (git-fixes). - power: reset: ltc2952: Fix use of floating point literals (git-fixes). - power: supply: core: Break capacity loop (git-fixes). - power: supply: max17042_battery: Clear status bits in interrupt handler (git-fixes). - powerpc/64s: fix program check interrupt emergency stack path (bsc#1156395). - powerpc/fadump: Fix inaccurate CPU state info in vmcore generated with panic (bsc#1193901 ltc#194976). - powerpc/perf: Fix PMU callbacks to clear pending PMI before resetting an overflown PMC (bsc#1156395). - powerpc/perf: Fix data source encodings for L2.1 and L3.1 accesses (bsc#1065729). - powerpc/prom_init: Fix improper check of prom_getprop() (bsc#1065729). - powerpc/pseries/cpuhp: cache node corrections (bsc#1065729). - powerpc/pseries/cpuhp: delete add/remove_by_count code (bsc#1065729). - powerpc/pseries/mobility: ignore ibm, platform-facilities updates (bsc#1065729). - powerpc/traps: do not enable irqs in _exception (bsc#1065729). - powerpc/xive: Add missing null check after calling kmalloc (bsc#1177437 ltc#188522 jsc#SLE-13294 git-fixes). - powerpc: add interrupt_cond_local_irq_enable helper (bsc#1065729). - powerpc: handle kdump appropriately with crash_kexec_post_notifiers option (bsc#1193901 ltc#194976). - pwm: mxs: Do not modify HW state in .probe() after the PWM chip was registered (git-fixes). - pwm: tiecap: Drop .free() callback (git-fixes). - qlcnic: potential dereference null pointer of rx_queue->page_ring (git-fixes). - quota: check block number when reading the block in quota file (bsc#1194589). - quota: correct error number in free_dqentry() (bsc#1194590). - random: fix data race on crng init time (git-fixes). - random: fix data race on crng_node_pool (git-fixes). - regmap: Call regmap_debugfs_exit() prior to _init() (git-fixes). - rndis_host: support Hytera digital radios (git-fixes). - rpmsg: core: Clean up resources on announce_create failure (git-fixes). - rtl8xxxu: Fix the handling of TX A-MPDU aggregation (git-fixes). - rtlwifi: rtl8192cu: Fix WARNING when calling local_irq_restore() with interrupts enabled (git-fixes). - rtw88: use read_poll_timeout instead of fixed sleep (git-fixes). - rtw88: wow: build wow function only if CONFIG_PM is on (git-fixes). - rtw88: wow: fix size access error of probe request (git-fixes). - sata: nv: fix debug format string mismatch (git-fixes). - select: Fix indefinitely sleeping task in poll_schedule_timeout() (bsc#1194027). - selftests: KVM: Explicitly use movq to read xmm registers (git-fixes). - selinux: fix potential memleak in selinux_add_opt() (git-fixes). - seq_buf: Fix overflow in seq_buf_putmem_hex() (git-fixes). - seq_buf: Make trace_seq_putmem_hex() support data longer than 8 (git-fixes). - serial: pl011: Add ACPI SBSA UART match id (git-fixes). - serial: tty: uartlite: fix console setup (git-fixes). - sfc: Check null pointer of rx_queue->page_ring (git-fixes). - sfc: The RX page_ring is optional (git-fixes). - sfc: falcon: Check null pointer of rx_queue->page_ring (git-fixes). - sfc_ef100: potential dereference of null pointer (jsc#SLE-16683). - shmem: shmem_writepage() split unlikely i915 THP (git-fixes). - slimbus: qcom: fix potential NULL dereference in qcom_slim_prg_slew() (git-fixes). - soc/tegra: fuse: Fix bitwise vs. logical OR warning (git-fixes). - soc: fsl: dpaa2-console: free buffer before returning from dpaa2_console_read (git-fixes). - soc: fsl: dpio: rename the enqueue descriptor variable (git-fixes). - soc: fsl: dpio: replace smp_processor_id with raw_smp_processor_id (git-fixes). - soc: fsl: dpio: use an explicit NULL instead of 0 (git-fixes). - soc: fsl: dpio: use the combined functions to protect critical zone (git-fixes). - spi: change clk_disable_unprepare to clk_unprepare (git-fixes). - spi: spi-meson-spifc: Add missing pm_runtime_disable() in meson_spifc_probe (git-fixes). - spi: spi-rspi: Drop redeclaring ret variable in qspi_transfer_in() (git-fixes). - staging: emxx_udc: Fix passing of NULL to dma_alloc_coherent() (git-fixes). - staging: fbtft: Do not spam logs when probe is deferred (git-fixes). - staging: fbtft: Rectify GPIO handling (git-fixes). - staging: fieldbus: anybuss: jump to correct label in an error path (git-fixes). - staging: ks7010: select CRYPTO_HASH/CRYPTO_MICHAEL_MIC (git-fixes). - staging: rtl8192e: return error code from rtllib_softmac_init() (git-fixes). - staging: rtl8192e: rtllib_module: fix error handle case in alloc_rtllib() (git-fixes). - staging: wlan-ng: Avoid bitwise vs logical OR warning in hfa384x_usb_throttlefn() (git-fixes). - string.h: fix incompatibility between FORTIFY_SOURCE and KASAN (git-fixes). - thermal/drivers/imx8mm: Enable ADC when enabling monitor (git-fixes). - thermal/drivers/int340x: Do not set a wrong tcc offset on resume (git-fixes). - thermal: core: Reset previous low and high trip during thermal zone init (git-fixes). - tpm: add request_locality before write TPM_INT_ENABLE (git-fixes). - tpm: fix potential NULL pointer access in tpm_del_char_device (git-fixes). - tracing/kprobes: 'nmissed' not showed correctly for kretprobe (git-fixes). - tracing/uprobes: Check the return value of kstrdup() for tu->filename (git-fixes). - tracing: Add test for user space strings when filtering on string pointers (git-fixes). - tracing: Fix check for trace_percpu_buffer validity in get_trace_buf() (git-fixes). - tty: max310x: fix flexible_array.cocci warnings (git-fixes). - tty: serial: atmel: Call dma_async_issue_pending() (git-fixes). - tty: serial: atmel: Check return code of dmaengine_submit() (git-fixes). - tty: serial: earlycon dependency (git-fixes). - tty: serial: qcom_geni_serial: Drop __init from qcom_geni_console_setup (git-fixes). - tty: serial: uartlite: allow 64 bit address (git-fixes). - tty: synclink_gt: rename a conflicting function name (git-fixes). - udf: Fix crash after seekdir (bsc#1194592). - uio: uio_dmem_genirq: Catch the Exception (git-fixes). - usb: core: config: fix validation of wMaxPacketValue entries (git-fixes). - usb: core: config: using bit mask instead of individual bits (git-fixes). - usb: dwc2: check return value after calling platform_get_resource() (git-fixes). - usb: dwc3: gadget: Continue to process pending requests (git-fixes). - usb: dwc3: gadget: Ignore EP queue requests during bus reset (git-fixes). - usb: dwc3: gadget: Reclaim extra TRBs after request completion (git-fixes). - usb: dwc3: pci: Enable dis_uX_susphy_quirk for Intel Merrifield (git-fixes). - usb: dwc3: ulpi: Fix USB2.0 HS/FS/LS PHY suspend regression (git-fixes). - usb: dwc3: ulpi: Replace CPU-based busyloop with Protocol-based one (git-fixes). - usb: dwc3: ulpi: fix checkpatch warning (git-fixes). - usb: ftdi-elan: fix memory leak on device disconnect (git-fixes). - usb: gadget: composite: Allow bMaxPower=0 if self-powered (git-fixes). - usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear (git-fixes). - usb: gadget: u_ether: fix race in setting MAC address in setup phase (git-fixes). - usb: mtu3: add memory barrier before set GPD's HWO (git-fixes). - usb: mtu3: fix interval value for intr and isoc (git-fixes). - usb: mtu3: fix list_head check warning (git-fixes). - usb: mtu3: set interval of FS intr and isoc endpoint (git-fixes). - usb: typec: tcpm: handle SRC_STARTUP state if cc changes (git-fixes). - usb: xhci: Extend support for runtime power management for AMD's Yellow carp (git-fixes). - usermodehelper: reset umask to default before executing user process (git-fixes). - vfs: check fd has read access in kernel_read_file_from_fd() (bsc#1194888). - video: backlight: Drop maximum brightness override for brightness zero (git-fixes). - watchdog: Fix OMAP watchdog early handling (git-fixes). - watchdog: f71808e_wdt: fix inaccurate report in WDIOC_GETTIMEOUT (git-fixes). - wcn36xx: Fix missing frame timestamp for beacon/probe-resp (git-fixes). - wcn36xx: Indicate beacon not connection loss on MISSED_BEACON_IND (git-fixes). - wcn36xx: Release DMA channel descriptor allocations (git-fixes). - wcn36xx: handle connection loss indication (git-fixes). - wireless: iwlwifi: Fix a double free in iwl_txq_dyn_alloc_dma (git-fixes). - x86/platform/uv: Add more to secondary CPU kdump info (bsc#1194493). - xhci: Fresco FL1100 controller should not have BROKEN_MSI quirk set (git-fixes). - xhci: Remove CONFIG_USB_DEFAULT_PERSIST to prevent xHCI from runtime suspending (git-fixes). - xhci: avoid race between disable slot command and host runtime suspend (git-fixes). - xhci: fix unsafe memory usage in xhci tracing (git-fixes). cluster-md-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-5.3.18-150300.38.37.1.nosrc.rpm True kernel-azure-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.37.1.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.37.1.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.37.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.37.1.noarch.rpm True kernel-source-azure-5.3.18-150300.38.37.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.37.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.37.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.37.1.x86_64.rpm True openSUSE-SLE-15.3-2022-164 moderate SUSE Updates openSUSE-SLE 15.3 This update for post-build-checks-malwarescan fixes the following issues: - Allow using 1.5GB RAM per thread to avoid OOM conditions (bsc#1194857) post-build-checks-malwarescan-0.1-3.22.1.noarch.rpm post-build-checks-malwarescan-0.1-3.22.1.src.rpm openSUSE-SLE-15.3-2022-487 moderate SUSE Updates openSUSE-SLE 15.3 This update for transactional-update fixes the following issues: - Version 3.6.2 - Bind mount root file system snapshot on itself, this makes the temporary directory in '/tmp' unnecessary; also fixes to return the correct snapshot's working directory via API call. (bsc#1188110) - Use separate mount namespace for transactional-update; this should fix several applications that fail to run if a mount point has the 'unbindable' mount flag set - Version 3.6.1 - Fix rsyncing '/etc' into the running system with '--drop-if-no-change'. (bsc#1192242) - Version 3.6.0 - Simplify mount hierarchy by just using a single slave bind mount as the root of the update environment; this may avoid the error messages of failed unmounts. (bsc#1191945) - Version 3.5.7 Various fixes affecting Salt support: - t-u: Don't squash stderr messages into stdout - t-u: Correctly handle case when the snapshot has been deleted due to using --drop-if-no-change: Don't show reboot messages and avoid an awk error message. (bsc#1191475) - tukit: Make inotify handler less sensitive / ignore more directories (bsc#1191475) - Version 3.5.6 - tukit: Add S/390 bootloader support (bsc#1189807) - t-u: support purge-kernels with t-u patch (bsc#1190788) - Version 3.5.5 - t-u: Use tukit for SUSEConnect call (bsc#1190574) Correctly registers repositories - Version 3.5.4 - tukit: Fix resolved support (bsc#1190383) - Version 3.5.3 - t-u: Purge kernels as part of package operations Required for live patching support (bsc#1189728) - Version 3.5.2 - tukit: Fix overlay syncing errors with SELinux (bsc#1188648) - Don't print message for `shell` with --quiet - Version 3.5.1 - t-u: Disable status file generation by default The new experimental `status` command requires the availability of /etc/YaST2/control.xml, which is not present on all systems. Hide the creation of the corresponding status file behind a new EXPERIMENTAL_STATUS option to try out this functionality. - Increase library version - Version 3.5.0 - Add alias setDiscardIfUnchanged for setDiscard. The old method name wasn't really clear and will be removed if we should have an API break in the future - Replace 'mkinitrd' with direct dracut call. (bsc#1186213) - tukit: Add configuration file support (/etc/tukit.conf) - Allow users to configure additional bind mounts (see /usr/etc/tukit.conf for an example and limitations). (bsc#1188322) - Add 'transactional-update status' call. This is a POC for obtaining a hash of a system to verify its integrity. - Internal bugfixes / optimizations - Version 3.4.0 - Apply 'SElinux' context on '/etc' in transaction. (bsc#1185625, bsc#1185766, bsc#1186842, bsc#1186775) - Implement inotify handling in C instead of Bash; this makes the --drop-if-no-change option work on SLE Micro. (bsc#1184529) - Use `tukit call` for up, dup and patch to allow resuming an update after zypper updated itself in the snapshot. (bsc#1185226) - Fix obsolete output type messages in 'initrd'. (bsc#1177149) - Make different base snapshot warning more visible. (bsc#1185224) - Version 3.3.0 - Add support for more package managers by bind mounting their directories - Support snapshots without dedicated overlay [bsc#1183539], (bsc#1183539) - Link RPM database correctly with older zypper versions (bsc#1183521) - Don't discard manual changes in fstab (bsc#1183856, bsc#1192302) dracut-transactional-update-3.6.2-150300.3.3.1.noarch.rpm libtukit-devel-3.6.2-150300.3.3.1.x86_64.rpm libtukit0-3.6.2-150300.3.3.1.x86_64.rpm transactional-update-3.6.2-150300.3.3.1.src.rpm transactional-update-3.6.2-150300.3.3.1.x86_64.rpm transactional-update-zypp-config-3.6.2-150300.3.3.1.noarch.rpm tukit-3.6.2-150300.3.3.1.x86_64.rpm libtukit-devel-3.6.2-150300.3.3.1.s390x.rpm libtukit0-3.6.2-150300.3.3.1.s390x.rpm transactional-update-3.6.2-150300.3.3.1.s390x.rpm tukit-3.6.2-150300.3.3.1.s390x.rpm libtukit-devel-3.6.2-150300.3.3.1.ppc64le.rpm libtukit0-3.6.2-150300.3.3.1.ppc64le.rpm transactional-update-3.6.2-150300.3.3.1.ppc64le.rpm tukit-3.6.2-150300.3.3.1.ppc64le.rpm libtukit-devel-3.6.2-150300.3.3.1.aarch64.rpm libtukit0-3.6.2-150300.3.3.1.aarch64.rpm transactional-update-3.6.2-150300.3.3.1.aarch64.rpm tukit-3.6.2-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-491 moderate SUSE Updates openSUSE-SLE 15.3 This update for rust fixes the following issues: - CVE-2022-21658: Fixed race condition in std::fs::remove_dir_all (bsc#1194767). cargo-doc-1.53.0-22.1.noarch.rpm rust-1.53.0-22.1.src.rpm rust-analysis-1.53.0-22.1.x86_64.rpm rust-doc-1.53.0-22.1.x86_64.rpm rust-src-1.53.0-22.1.noarch.rpm rust-analysis-1.53.0-22.1.aarch64.rpm rust-doc-1.53.0-22.1.aarch64.rpm openSUSE-SLE-15.3-2022-492 important SUSE Updates openSUSE-SLE 15.3 This update for strongswan fixes the following issues: - CVE-2021-45079: Fixed authentication bypass in EAP authentication. (bsc#1194471) strongswan-5.8.2-11.24.1.src.rpm strongswan-5.8.2-11.24.1.x86_64.rpm strongswan-doc-5.8.2-11.24.1.noarch.rpm strongswan-hmac-5.8.2-11.24.1.x86_64.rpm strongswan-ipsec-5.8.2-11.24.1.x86_64.rpm strongswan-libs0-5.8.2-11.24.1.x86_64.rpm strongswan-mysql-5.8.2-11.24.1.x86_64.rpm strongswan-nm-5.8.2-11.24.1.x86_64.rpm strongswan-sqlite-5.8.2-11.24.1.x86_64.rpm strongswan-5.8.2-11.24.1.s390x.rpm strongswan-hmac-5.8.2-11.24.1.s390x.rpm strongswan-ipsec-5.8.2-11.24.1.s390x.rpm strongswan-libs0-5.8.2-11.24.1.s390x.rpm strongswan-mysql-5.8.2-11.24.1.s390x.rpm strongswan-nm-5.8.2-11.24.1.s390x.rpm strongswan-sqlite-5.8.2-11.24.1.s390x.rpm strongswan-5.8.2-11.24.1.ppc64le.rpm strongswan-hmac-5.8.2-11.24.1.ppc64le.rpm strongswan-ipsec-5.8.2-11.24.1.ppc64le.rpm strongswan-libs0-5.8.2-11.24.1.ppc64le.rpm strongswan-mysql-5.8.2-11.24.1.ppc64le.rpm strongswan-nm-5.8.2-11.24.1.ppc64le.rpm strongswan-sqlite-5.8.2-11.24.1.ppc64le.rpm strongswan-5.8.2-11.24.1.aarch64.rpm strongswan-hmac-5.8.2-11.24.1.aarch64.rpm strongswan-ipsec-5.8.2-11.24.1.aarch64.rpm strongswan-libs0-5.8.2-11.24.1.aarch64.rpm strongswan-mysql-5.8.2-11.24.1.aarch64.rpm strongswan-nm-5.8.2-11.24.1.aarch64.rpm strongswan-sqlite-5.8.2-11.24.1.aarch64.rpm openSUSE-SLE-15.3-2022-386 moderate SUSE Updates openSUSE-SLE 15.3 This update for autoyast2 fixes the following issues: - Fix handling of add-on signature settings (bsc#1194881). - Properly merge the autoupgrade workflow when using the online medium (bsc#1192437, bsc#1194440). autoyast2-4.3.96-150300.3.35.1.noarch.rpm autoyast2-4.3.96-150300.3.35.1.src.rpm autoyast2-installation-4.3.96-150300.3.35.1.noarch.rpm openSUSE-SLE-15.3-2022-336 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-add-on fixes the following issues: - Restore the repo unexpanded URL to get it properly saved in the /etc/zypp/repos.d file (bsc#972046, bsc#1194851). yast2-add-on-4.3.10-150300.3.8.1.noarch.rpm yast2-add-on-4.3.10-150300.3.8.1.src.rpm openSUSE-SLE-15.3-2022-333 important SUSE Updates openSUSE-SLE 15.3 This update for xen fixes the following issues: - CVE-2022-23033: Fixed guest_physmap_remove_page not removing the p2m mappings. (XSA-393) (bsc#1194576) - CVE-2022-23034: Fixed possible DoS by a PV guest Xen while unmapping a grant. (XSA-394) (bsc#1194581) - CVE-2022-23035: Fixed insufficient cleanup of passed-through device IRQs. (XSA-395) (bsc#1194588) xen-4.14.3_06-150300.3.18.2.src.rpm True xen-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-devel-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-doc-html-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-libs-32bit-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-libs-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-tools-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-tools-domU-4.14.3_06-150300.3.18.2.x86_64.rpm True xen-tools-xendomains-wait-disk-4.14.3_06-150300.3.18.2.noarch.rpm True xen-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-devel-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-doc-html-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-libs-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-tools-4.14.3_06-150300.3.18.2.aarch64.rpm True xen-tools-domU-4.14.3_06-150300.3.18.2.aarch64.rpm True openSUSE-SLE-15.3-2022-214 important SUSE Updates openSUSE-SLE 15.3 This update for log4j fixes the following issues: - CVE-2022-23307: Fixed deserialization flaw in the chainsaw component of log4j leading to malicious code execution. (bsc#1194844) - CVE-2022-23305: Fixed SQL injection when application is configured to use JDBCAppender. (bsc#1194843) - CVE-2022-23302: Fixed remote code execution when application is configured to use JMSSink. (bsc#1194842) log4j-1.2.17-5.9.1.src.rpm log4j-manual-1.2.17-5.9.1.noarch.rpm openSUSE-SLE-15.3-2022-282 low SUSE Updates openSUSE-SLE 15.3 This is a relogin-suggested test update for SUSE:SLE-15-SP2:Update update-test-relogin-suggested-5.1-33.2.x86_64.rpm True update-test-relogin-suggested-5.1-33.2.s390x.rpm True update-test-relogin-suggested-5.1-33.2.ppc64le.rpm True update-test-relogin-suggested-5.1-33.2.aarch64.rpm True openSUSE-SLE-15.3-2022-274 low SUSE Updates openSUSE-SLE 15.3 This is a affects-package-manager test update for SUSE:SLE-15-SP2:Update update-test-affects-package-manager-5.1-33.2.x86_64.rpm True update-test-affects-package-manager-5.1-33.2.s390x.rpm True update-test-affects-package-manager-5.1-33.2.ppc64le.rpm True update-test-affects-package-manager-5.1-33.2.aarch64.rpm True openSUSE-SLE-15.3-2022-275 low SUSE Updates openSUSE-SLE 15.3 This is a retracted test update for SUSE:SLE-15-SP2:Update update-test-retracted-5.1-33.2.x86_64.rpm update-test-retracted-5.1-33.2.s390x.rpm update-test-retracted-5.1-33.2.ppc64le.rpm update-test-retracted-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-276 low SUSE Updates openSUSE-SLE 15.3 This is a optional test update for SUSE:SLE-15-SP2:Update update-test-optional-5.1-33.2.x86_64.rpm update-test-optional-5.1-33.2.s390x.rpm update-test-optional-5.1-33.2.ppc64le.rpm update-test-optional-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-277 important SUSE Updates openSUSE-SLE 15.3 This is a security test update for SUSE:SLE-15-SP2:Update update-test-security-5.1-33.2.x86_64.rpm update-test-security-5.1-33.2.s390x.rpm update-test-security-5.1-33.2.ppc64le.rpm update-test-security-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-278 low SUSE Updates openSUSE-SLE 15.3 This is a trivial test update for SUSE:SLE-15-SP2:Update update-test-trivial-5.1-33.2.src.rpm update-test-trivial-5.1-33.2.x86_64.rpm update-test-trivial-5.1-33.2.s390x.rpm update-test-trivial-5.1-33.2.ppc64le.rpm update-test-trivial-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-279 low SUSE Updates openSUSE-SLE 15.3 This is a feature test update for SUSE:SLE-15-SP2:Update update-test-feature-5.1-33.2.x86_64.rpm update-test-feature-5.1-33.2.s390x.rpm update-test-feature-5.1-33.2.ppc64le.rpm update-test-feature-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-280 low SUSE Updates openSUSE-SLE 15.3 This is a reboot-needed test update for SUSE:SLE-15-SP2:Update update-test-reboot-needed-5.1-33.2.x86_64.rpm True update-test-reboot-needed-5.1-33.2.s390x.rpm True update-test-reboot-needed-5.1-33.2.ppc64le.rpm True update-test-reboot-needed-5.1-33.2.aarch64.rpm True openSUSE-SLE-15.3-2022-281 low SUSE Updates openSUSE-SLE 15.3 This is a interactive test update for SUSE:SLE-15-SP2:Update Is this message visible? update-test-interactive-5.1-33.2.x86_64.rpm update-test-interactive-5.1-33.2.s390x.rpm update-test-interactive-5.1-33.2.ppc64le.rpm update-test-interactive-5.1-33.2.aarch64.rpm openSUSE-SLE-15.3-2022-476 moderate SUSE Updates openSUSE-SLE 15.3 This update for nfs-utils fixes the following issues: - If an error or warning message is produced before closeall() is called, mountd doesn't work. (bsc#1194661) nfs-client-2.1.1-10.21.1.x86_64.rpm nfs-doc-2.1.1-10.21.1.x86_64.rpm nfs-kernel-server-2.1.1-10.21.1.x86_64.rpm nfs-utils-2.1.1-10.21.1.src.rpm nfs-client-2.1.1-10.21.1.s390x.rpm nfs-doc-2.1.1-10.21.1.s390x.rpm nfs-kernel-server-2.1.1-10.21.1.s390x.rpm nfs-client-2.1.1-10.21.1.ppc64le.rpm nfs-doc-2.1.1-10.21.1.ppc64le.rpm nfs-kernel-server-2.1.1-10.21.1.ppc64le.rpm nfs-client-2.1.1-10.21.1.aarch64.rpm nfs-doc-2.1.1-10.21.1.aarch64.rpm nfs-kernel-server-2.1.1-10.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-302 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint, rpmlint-mini, obs-service-format_spec_file fixes the following issues: obs-service-format_spec_file: - Synchronize the license identifiers from SPDX (spdx.org). (jsc#SLE-18915) rpmlint: - Accept any license ending with a '+' as indicated in the SPDX syntax. (bsc#1195085) - Remove licenses ending with '+' from the valid license array - Rebuild rpmlint with the new obs-service-format_spec_file. rpmlint-mini: - Rebuild rpmlint-mini with the new obs-service-format_spec_file and rpmlint. obs-service-format_spec_file-20211115-3.11.1.noarch.rpm obs-service-format_spec_file-20211115-3.11.1.src.rpm rpmlint-1.10-7.35.1.noarch.rpm rpmlint-1.10-7.35.1.src.rpm openSUSE-SLE-15.3-2022-330 important SUSE Updates openSUSE-SLE 15.3 This update for glibc fixes the following issues: - CVE-2021-3999: Fixed incorrect errno in getcwd (bsc#1194640) - CVE-2022-23219: Fixed buffer overflow in sunrpc clnt_create for "unix" (bsc#1194768) - CVE-2022-23218: Fixed buffer overflow in sunrpc svcunix_create (bsc#1194770) Features added: - IBM Power 10 string operation improvements (bsc#1194785, jsc#SLE-18195) glibc-2.31-150300.9.12.1.src.rpm glibc-2.31-150300.9.12.1.x86_64.rpm glibc-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-devel-2.31-150300.9.12.1.x86_64.rpm glibc-devel-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-devel-static-2.31-150300.9.12.1.x86_64.rpm glibc-devel-static-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-extra-2.31-150300.9.12.1.x86_64.rpm glibc-html-2.31-150300.9.12.1.noarch.rpm glibc-i18ndata-2.31-150300.9.12.1.noarch.rpm glibc-info-2.31-150300.9.12.1.noarch.rpm glibc-lang-2.31-150300.9.12.1.noarch.rpm glibc-locale-2.31-150300.9.12.1.x86_64.rpm glibc-locale-base-2.31-150300.9.12.1.x86_64.rpm glibc-locale-base-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-profile-2.31-150300.9.12.1.x86_64.rpm glibc-profile-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-utils-2.31-150300.9.12.1.x86_64.rpm glibc-utils-32bit-2.31-150300.9.12.1.x86_64.rpm glibc-utils-src-2.31-150300.9.12.1.src.rpm nscd-2.31-150300.9.12.1.x86_64.rpm glibc-2.31-150300.9.12.1.s390x.rpm glibc-devel-2.31-150300.9.12.1.s390x.rpm glibc-devel-static-2.31-150300.9.12.1.s390x.rpm glibc-extra-2.31-150300.9.12.1.s390x.rpm glibc-locale-2.31-150300.9.12.1.s390x.rpm glibc-locale-base-2.31-150300.9.12.1.s390x.rpm glibc-profile-2.31-150300.9.12.1.s390x.rpm glibc-utils-2.31-150300.9.12.1.s390x.rpm nscd-2.31-150300.9.12.1.s390x.rpm glibc-2.31-150300.9.12.1.ppc64le.rpm glibc-devel-2.31-150300.9.12.1.ppc64le.rpm glibc-devel-static-2.31-150300.9.12.1.ppc64le.rpm glibc-extra-2.31-150300.9.12.1.ppc64le.rpm glibc-locale-2.31-150300.9.12.1.ppc64le.rpm glibc-locale-base-2.31-150300.9.12.1.ppc64le.rpm glibc-profile-2.31-150300.9.12.1.ppc64le.rpm glibc-utils-2.31-150300.9.12.1.ppc64le.rpm nscd-2.31-150300.9.12.1.ppc64le.rpm glibc-2.31-150300.9.12.1.aarch64.rpm glibc-devel-2.31-150300.9.12.1.aarch64.rpm glibc-devel-static-2.31-150300.9.12.1.aarch64.rpm glibc-extra-2.31-150300.9.12.1.aarch64.rpm glibc-locale-2.31-150300.9.12.1.aarch64.rpm glibc-locale-base-2.31-150300.9.12.1.aarch64.rpm glibc-profile-2.31-150300.9.12.1.aarch64.rpm glibc-utils-2.31-150300.9.12.1.aarch64.rpm nscd-2.31-150300.9.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-339 moderate SUSE Updates openSUSE-SLE 15.3 This update for google-droid-fonts fixes the following issue: - Add sources DroidSansFallback.ttf DroidSansFallbackFull.ttf DroidSansMono.ttf: Merge the latest modification from Android project (bsc#1190886). google-droid-fonts-20121204-3.3.1.noarch.rpm google-droid-fonts-20121204-3.3.1.src.rpm openSUSE-SLE-15.3-2022-217 moderate SUSE Updates openSUSE-SLE 15.3 This update for rubygem-asciidoctor fixes the following issues: - Fix a changelog entry by removing a control character that caused issues with createrepo ruby2.5-rubygem-asciidoctor-testsuite-1.5.6.1-3.3.1.x86_64.rpm rubygem-asciidoctor-1.5.6.1-3.3.1.src.rpm ruby2.5-rubygem-asciidoctor-testsuite-1.5.6.1-3.3.1.s390x.rpm ruby2.5-rubygem-asciidoctor-testsuite-1.5.6.1-3.3.1.ppc64le.rpm ruby2.5-rubygem-asciidoctor-testsuite-1.5.6.1-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-316 moderate SUSE Updates openSUSE-SLE 15.3 This update for vino fixes the following issues: - Remove telepathy dbus service because telepathy is disabled (bsc#1177663) vino-3.22.0-11.3.1.src.rpm vino-3.22.0-11.3.1.x86_64.rpm vino-lang-3.22.0-11.3.1.noarch.rpm vino-3.22.0-11.3.1.s390x.rpm vino-3.22.0-11.3.1.ppc64le.rpm vino-3.22.0-11.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-604 low SUSE Updates openSUSE-SLE 15.3 This update for rsyslog fixes the following issues: - update config example in remote.conf to match upstream documentation (bsc#1194669) rsyslog-8.2106.0-4.22.1.src.rpm rsyslog-8.2106.0-4.22.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-4.22.1.x86_64.rpm rsyslog-doc-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-relp-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-4.22.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-4.22.1.x86_64.rpm rsyslog-8.2106.0-4.22.1.s390x.rpm rsyslog-diag-tools-8.2106.0-4.22.1.s390x.rpm rsyslog-doc-8.2106.0-4.22.1.s390x.rpm rsyslog-module-dbi-8.2106.0-4.22.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-4.22.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-4.22.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-4.22.1.s390x.rpm rsyslog-module-gtls-8.2106.0-4.22.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-4.22.1.s390x.rpm rsyslog-module-mysql-8.2106.0-4.22.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-4.22.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-4.22.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-4.22.1.s390x.rpm rsyslog-module-ossl-8.2106.0-4.22.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-4.22.1.s390x.rpm rsyslog-module-relp-8.2106.0-4.22.1.s390x.rpm rsyslog-module-snmp-8.2106.0-4.22.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-4.22.1.s390x.rpm rsyslog-8.2106.0-4.22.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-4.22.1.ppc64le.rpm rsyslog-doc-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-4.22.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-4.22.1.ppc64le.rpm rsyslog-8.2106.0-4.22.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-4.22.1.aarch64.rpm rsyslog-doc-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-relp-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-4.22.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-4.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-526 moderate SUSE Updates openSUSE-SLE 15.3 This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container fixes the following issues: - Update to version 0.49.0 Release notes https://github.com/kubevirt/kubevirt/releases/tag/v0.49.0 - Drop kubevirt-psp-caasp.yaml - Install curl and lsscsi (needed for testing) - Symlink UEFI firmware with AMD SEV support - Install tar package to enable kubectl cp ... - Make a "fixed appliance" for libguestfs - Explicitly install libguestfs{,-devel} and supermin kubevirt-0.49.0-150300.8.10.1.src.rpm kubevirt-container-disk-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-manifests-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-tests-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-api-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-controller-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-handler-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-launcher-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virt-operator-0.49.0-150300.8.10.1.x86_64.rpm kubevirt-virtctl-0.49.0-150300.8.10.1.x86_64.rpm obs-service-kubevirt_containers_meta-0.49.0-150300.8.10.1.x86_64.rpm openSUSE-SLE-15.3-2022-353 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd-rpm-macros fixes the following issues: - Bump version to 10 - %sysusers_create_inline was wrongly marked as deprecated - %sysusers_create can be useful in certain cases and won't go away until we'll move to file triggers. So don't mark it as deprecated too systemd-rpm-macros-10-7.24.1.noarch.rpm systemd-rpm-macros-10-7.24.1.src.rpm openSUSE-SLE-15.3-2022-322 moderate SUSE Updates openSUSE-SLE 15.3 This update for dracut fixes the following issues: - Fix(network): consistent use of "$gw" for gateway (bsc#1192685) - Fix(install): handle builtin modules (bsc#1194716) dracut-049.1+suse.228.g07676562-3.54.1.src.rpm dracut-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-extra-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-fips-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-ima-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-tools-049.1+suse.228.g07676562-3.54.1.x86_64.rpm dracut-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-extra-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-fips-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-ima-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-tools-049.1+suse.228.g07676562-3.54.1.s390x.rpm dracut-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-extra-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-fips-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-ima-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-tools-049.1+suse.228.g07676562-3.54.1.ppc64le.rpm dracut-049.1+suse.228.g07676562-3.54.1.aarch64.rpm dracut-extra-049.1+suse.228.g07676562-3.54.1.aarch64.rpm dracut-fips-049.1+suse.228.g07676562-3.54.1.aarch64.rpm dracut-ima-049.1+suse.228.g07676562-3.54.1.aarch64.rpm dracut-tools-049.1+suse.228.g07676562-3.54.1.aarch64.rpm openSUSE-SLE-15.3-2022-335 moderate SUSE Updates openSUSE-SLE 15.3 This update for coreutils fixes the following issues: - Add "fuse.portal" as a dummy file system (used in flatpak implementations) (bsc#1189152). coreutils-8.32-150300.3.5.1.src.rpm coreutils-8.32-150300.3.5.1.x86_64.rpm coreutils-doc-8.32-150300.3.5.1.noarch.rpm coreutils-lang-8.32-150300.3.5.1.noarch.rpm coreutils-single-8.32-150300.3.5.1.src.rpm coreutils-single-8.32-150300.3.5.1.x86_64.rpm coreutils-testsuite-8.32-150300.3.5.1.src.rpm coreutils-testsuite-8.32-150300.3.5.1.x86_64.rpm coreutils-8.32-150300.3.5.1.s390x.rpm coreutils-single-8.32-150300.3.5.1.s390x.rpm coreutils-testsuite-8.32-150300.3.5.1.s390x.rpm coreutils-8.32-150300.3.5.1.ppc64le.rpm coreutils-single-8.32-150300.3.5.1.ppc64le.rpm coreutils-testsuite-8.32-150300.3.5.1.ppc64le.rpm coreutils-8.32-150300.3.5.1.aarch64.rpm coreutils-single-8.32-150300.3.5.1.aarch64.rpm coreutils-testsuite-8.32-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-545 moderate SUSE Updates openSUSE-SLE 15.3 This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer, libnbd, nbdkit fixes the following issues: - Update to version 1.43.0 Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.43.0 - Update to version 1.42.0 Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.42.0 - Detect SLE15 SP4 build environment - Update to version 1.41.0 Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.41.0 - Update to version 1.40.0 Release notes https://github.com/kubevirt/containerized-data-importer/releases/tag/v1.40.0 - Install util-linux package (provides blockdev) - Update to version 1.29.4: * Remove deprecated nbdkit-streaming-plugin * Added retry-request-filter, an alternative, more lightweight, filter with different trade-offs for nbdkit-retry-filter. * cc: Document how to create OCaml plugin scripts * cc: Add binding for .cleanup * docs: Document NBDKIT_VERSION_* macros containerized-data-importer-1.43.0-150300.8.6.3.src.rpm containerized-data-importer-api-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-cloner-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-controller-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-importer-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-manifests-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-operator-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-uploadproxy-1.43.0-150300.8.6.3.x86_64.rpm containerized-data-importer-uploadserver-1.43.0-150300.8.6.3.x86_64.rpm libnbd-1.9.3-150300.8.6.1.src.rpm libnbd-1.9.3-150300.8.6.1.x86_64.rpm libnbd-bash-completion-1.9.3-150300.8.6.1.noarch.rpm libnbd-devel-1.9.3-150300.8.6.1.x86_64.rpm libnbd0-1.9.3-150300.8.6.1.x86_64.rpm nbdfuse-1.9.3-150300.8.6.1.x86_64.rpm nbdkit-1.29.4-150300.8.6.1.src.rpm nbdkit-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-bash-completion-1.29.4-150300.8.6.1.noarch.rpm nbdkit-basic-filters-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-basic-plugins-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-curl-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-devel-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-example-plugins-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-gzip-filter-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-nbd-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-python-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-server-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-ssh-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-tar-filter-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-tmpdisk-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-vddk-plugin-1.29.4-150300.8.6.1.x86_64.rpm nbdkit-xz-filter-1.29.4-150300.8.6.1.x86_64.rpm obs-service-cdi_containers_meta-1.43.0-150300.8.6.3.x86_64.rpm libnbd-1.9.3-150300.8.6.1.s390x.rpm libnbd-devel-1.9.3-150300.8.6.1.s390x.rpm libnbd0-1.9.3-150300.8.6.1.s390x.rpm nbdfuse-1.9.3-150300.8.6.1.s390x.rpm nbdkit-1.29.4-150300.8.6.1.s390x.rpm nbdkit-basic-filters-1.29.4-150300.8.6.1.s390x.rpm nbdkit-basic-plugins-1.29.4-150300.8.6.1.s390x.rpm nbdkit-curl-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-devel-1.29.4-150300.8.6.1.s390x.rpm nbdkit-example-plugins-1.29.4-150300.8.6.1.s390x.rpm nbdkit-gzip-filter-1.29.4-150300.8.6.1.s390x.rpm nbdkit-nbd-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-python-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-server-1.29.4-150300.8.6.1.s390x.rpm nbdkit-ssh-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-tar-filter-1.29.4-150300.8.6.1.s390x.rpm nbdkit-tmpdisk-plugin-1.29.4-150300.8.6.1.s390x.rpm nbdkit-xz-filter-1.29.4-150300.8.6.1.s390x.rpm libnbd-1.9.3-150300.8.6.1.ppc64le.rpm libnbd-devel-1.9.3-150300.8.6.1.ppc64le.rpm libnbd0-1.9.3-150300.8.6.1.ppc64le.rpm nbdfuse-1.9.3-150300.8.6.1.ppc64le.rpm nbdkit-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-basic-filters-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-basic-plugins-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-curl-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-devel-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-example-plugins-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-gzip-filter-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-nbd-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-python-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-server-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-ssh-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-tar-filter-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-tmpdisk-plugin-1.29.4-150300.8.6.1.ppc64le.rpm nbdkit-xz-filter-1.29.4-150300.8.6.1.ppc64le.rpm libnbd-1.9.3-150300.8.6.1.aarch64.rpm libnbd-devel-1.9.3-150300.8.6.1.aarch64.rpm libnbd0-1.9.3-150300.8.6.1.aarch64.rpm nbdfuse-1.9.3-150300.8.6.1.aarch64.rpm nbdkit-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-basic-filters-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-basic-plugins-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-curl-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-devel-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-example-plugins-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-gzip-filter-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-nbd-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-python-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-server-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-ssh-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-tar-filter-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-tmpdisk-plugin-1.29.4-150300.8.6.1.aarch64.rpm nbdkit-xz-filter-1.29.4-150300.8.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-546 important SUSE Updates openSUSE-SLE 15.3 This update for monitoring-plugins fixes the following issues: the patch just reverts the problem, if you get more than 64K on stdout - recommend syslog for monitoring-plugins-log, as people probably want to analize logs generated by (r)syslog or journald check_snmp will segfaults at line 489 if number of lines returned by SNMPD is greater than number of defined thresholds - Remove unneeded build requirement on "syslog" - Remove unneeded BuildRequires on python-devel (bsc#1191011) - Call gettextize with --no-changelog to make package build reproducible (bsc#1047218) - Update to 2.3.1: Enhancements * check_curl: Add an option to verify the peer certificate and host using the system CA's Fixes * check_curl: fixed help, usage and errors for TLS 1.3 * check_curl: fixed a potential buffer overflow in url buffer * check_dns: split multiple IP addresses passed in one -a argument * check_curl: added string_statuscode function for printing HTTP/1.1 and HTTP/2 correctly * check_curl: fix crash if http header contains leading spaces * check_curl: display a specific human-readable error message where possible * check_pgsql: Using snprintf which honors the buffers size and guarantees null termination. * check_snmp: put the "c" (to mark a counter) after the perfdata value * check_http: Increase regexp limit * check_http: make -C obvious * check_curl: Increase regexp limit (to 1024 as in check_http) * check_curl: make -C obvious (from check_http) - Update to 2.3 (final): Enhancements * check_dns: allow 'expected address' (-a) to be specified in CIDR notation (IPv4 only). * check_dns: allow for IPv6 RDNS * check_dns: Accept CIDR * check_dns: allow unsorted addresses * check_dns: allow forcing complete match of all addresses * check_apt: add --only-critical switch * check_apt: add -l/--list option to print packages * check_file_age: add range checking * check_file_age: enable to test for maximum file size * check_apt: adding packages-warning option * check_load: Adding top consuming processes option * check_http: Adding Proxy-Authorization and extra headers * check_snmp: make calcualtion of timeout value in help output more clear * check_uptime: new plugin for checking uptime to see how long the system is running * check_curl: check_http replacement based on libcurl * check_http: Allow user to specify HTTP method after proxy CONNECT * check_http: Add new flag --show-body/-B to print body * check_cluster: Added data argument validation * check_icmp: Add IPv6 support * check_icmp: Automatically detect IP protocol * check_icmp: emit error if multiple protocol version * check_disk: add support to display inodes usage in perfdata * check_hpjd: Added -D option to disable warning on 'out of paper' * check_http: support the --show-body/-B flag when --expect is used * check_mysql: allow mariadbclient to be used * check_tcp: add --sni * check_dns: detect unreachable dns service in nslookup output Fixes * Fix regression where check_dhcp was rereading response in a tight loop * check_dns: fix error detection on sles nslookup * check_disk_smb: fix timeout issue * check_swap: repaired -n behaviour * check_icmp: Correctly set address_family on lookup * check_icmp: Do not overwrite -4,-6 on lookup * check_smtp: initializes n before it is used * check_dns: fix typo in parameter description * check_by_ssh: fix child process leak on timeouts * check_mysql: Allow sockets to be specified to -H * check_procs: improve command examples for 'at least' processes * check_disk: include -P switch in help * check_mailq: restore accidentially removed options - change version to 2.3~alpha.$date.$commit changes summarized * detect unreachable dns service in nslookup output * check_curl: host_name may be null * update test parameter according to check_http * check_curl: use CURLOPT_RESOLVE to fix connecting to the right ip * workaround for issue #1550 - better use "ping -4" instead of "ping" if supported * Use size_t instead of int when calling sysctl(3) * check_tcp: add --sni * Fix timeout_interval declarations * check_curl: NSS, parse more date formats from certificate (in -C cert check) * check_curl: more tolerant CN= parsing when checking certificates (hit on Centos 8) * setting no_body to TRUE when we have a HEAD request * some LIBCURL_VERSION checks around HTTP/2 feature * added --http-version option to check_curl to choose HTTP * improved curlhelp_parse_statusline to handle both HTTP/1.x and HTTP/2 * check_curl: updates embedded picohttpparser to newest git version * setting progname of check_curl plugin to check_curl (at least for now) * Allow mariadbclient to be used for check_mysql * fix maxfd being zero * include -P switch in help * check_swap: repaired "-n" behaviour * improve command examples for 'at least' processes * check_mysql: Allow sockets to be specified to -H * Adding packages-warning option to check_apt plugin * Adding print top consuming processes option to check_load * check_snmp: make calcualtion of timeout value in help output more clear * [check_disk] add support to display inodes usage in perfdata * check_by_ssh: fix child process leak on timeouts * check_icmp: Add IPv6 support * check_dns: fix typo in parameter description * Also support the --show-body/-B flag when --expect is used * check_dns: improve support for checking multiple addresses * check_hpjd: Added -D option to disable warning on 'out of paper' * check_icmp: Do not overwrite -4,-6 on lookup * check_icmp: emit error if multiple protocol version * check_icmp: move opts string into a variable * check_cluster.c: Added data argument validation. * check_icmp: Correctly set address_family on lookup * check_icmp: process protocol version args first * check_icmp: Add IPv6 support - drop explicit attr in filelist for check_host and check_rta_multi as they are symlinks to check_icmp - add new subpackage monitoring-plugins-uptime - include upstream fixes for check_swap - simply fix the plugin name in the comment - improve the output if the swap has zero size - use unknown exit code for help/version in plugins - updated context in - monitoring-plugins-mysql should also provide monitoring-plugins-mysql_query - Provide/Obsolete nagios-plugins in old version for better compatibility and to allow dist upgrade (bsc#1114483) freeradius-client-1.1.7-3.2.1.src.rpm freeradius-client-1.1.7-3.2.1.x86_64.rpm freeradius-client-devel-1.1.7-3.2.1.x86_64.rpm freeradius-client-libs-1.1.7-3.2.1.x86_64.rpm monitoring-plugins-2.3.1-3.9.2.src.rpm monitoring-plugins-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-all-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-breeze-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-by_ssh-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-cluster-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-common-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-cups-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dbi-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dbi-mysql-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dbi-pgsql-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dbi-sqlite3-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dhcp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dig-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-disk-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-disk_smb-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dns-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-dummy-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-extras-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-file_age-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-flexlm-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-fping-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-hpjd-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-http-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-icmp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ide_smart-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ifoperstatus-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ifstatus-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ircd-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ldap-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-load-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-log-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-mailq-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-mrtg-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-mrtgtraf-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-mysql-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-nagios-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-nt-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ntp_peer-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ntp_time-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-nwstat-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-oracle-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-overcr-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-pgsql-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ping-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-procs-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-radius-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-real-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-rpc-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-sensors-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-smtp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-snmp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ssh-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-swap-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-tcp-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-time-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-ups-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-users-2.3.1-3.9.2.x86_64.rpm monitoring-plugins-wave-2.3.1-3.9.2.x86_64.rpm perl-Crypt-DES-2.07-3.2.1.src.rpm perl-Crypt-DES-2.07-3.2.1.x86_64.rpm perl-Crypt-Rijndael-1.13-3.2.1.src.rpm perl-Crypt-Rijndael-1.13-3.2.1.x86_64.rpm perl-Net-SNMP-6.0.1-3.2.1.noarch.rpm perl-Net-SNMP-6.0.1-3.2.1.src.rpm freeradius-client-1.1.7-3.2.1.s390x.rpm freeradius-client-devel-1.1.7-3.2.1.s390x.rpm freeradius-client-libs-1.1.7-3.2.1.s390x.rpm monitoring-plugins-2.3.1-3.9.2.s390x.rpm monitoring-plugins-all-2.3.1-3.9.2.s390x.rpm monitoring-plugins-breeze-2.3.1-3.9.2.s390x.rpm monitoring-plugins-by_ssh-2.3.1-3.9.2.s390x.rpm monitoring-plugins-cluster-2.3.1-3.9.2.s390x.rpm monitoring-plugins-common-2.3.1-3.9.2.s390x.rpm monitoring-plugins-cups-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dbi-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dbi-mysql-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dbi-pgsql-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dbi-sqlite3-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dhcp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dig-2.3.1-3.9.2.s390x.rpm monitoring-plugins-disk-2.3.1-3.9.2.s390x.rpm monitoring-plugins-disk_smb-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dns-2.3.1-3.9.2.s390x.rpm monitoring-plugins-dummy-2.3.1-3.9.2.s390x.rpm monitoring-plugins-extras-2.3.1-3.9.2.s390x.rpm monitoring-plugins-file_age-2.3.1-3.9.2.s390x.rpm monitoring-plugins-flexlm-2.3.1-3.9.2.s390x.rpm monitoring-plugins-fping-2.3.1-3.9.2.s390x.rpm monitoring-plugins-hpjd-2.3.1-3.9.2.s390x.rpm monitoring-plugins-http-2.3.1-3.9.2.s390x.rpm monitoring-plugins-icmp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ide_smart-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ifoperstatus-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ifstatus-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ircd-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ldap-2.3.1-3.9.2.s390x.rpm monitoring-plugins-load-2.3.1-3.9.2.s390x.rpm monitoring-plugins-log-2.3.1-3.9.2.s390x.rpm monitoring-plugins-mailq-2.3.1-3.9.2.s390x.rpm monitoring-plugins-mrtg-2.3.1-3.9.2.s390x.rpm monitoring-plugins-mrtgtraf-2.3.1-3.9.2.s390x.rpm monitoring-plugins-mysql-2.3.1-3.9.2.s390x.rpm monitoring-plugins-nagios-2.3.1-3.9.2.s390x.rpm monitoring-plugins-nt-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ntp_peer-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ntp_time-2.3.1-3.9.2.s390x.rpm monitoring-plugins-nwstat-2.3.1-3.9.2.s390x.rpm monitoring-plugins-oracle-2.3.1-3.9.2.s390x.rpm monitoring-plugins-overcr-2.3.1-3.9.2.s390x.rpm monitoring-plugins-pgsql-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ping-2.3.1-3.9.2.s390x.rpm monitoring-plugins-procs-2.3.1-3.9.2.s390x.rpm monitoring-plugins-radius-2.3.1-3.9.2.s390x.rpm monitoring-plugins-real-2.3.1-3.9.2.s390x.rpm monitoring-plugins-rpc-2.3.1-3.9.2.s390x.rpm monitoring-plugins-smtp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-snmp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ssh-2.3.1-3.9.2.s390x.rpm monitoring-plugins-swap-2.3.1-3.9.2.s390x.rpm monitoring-plugins-tcp-2.3.1-3.9.2.s390x.rpm monitoring-plugins-time-2.3.1-3.9.2.s390x.rpm monitoring-plugins-ups-2.3.1-3.9.2.s390x.rpm monitoring-plugins-users-2.3.1-3.9.2.s390x.rpm monitoring-plugins-wave-2.3.1-3.9.2.s390x.rpm perl-Crypt-DES-2.07-3.2.1.s390x.rpm perl-Crypt-Rijndael-1.13-3.2.1.s390x.rpm freeradius-client-1.1.7-3.2.1.ppc64le.rpm freeradius-client-devel-1.1.7-3.2.1.ppc64le.rpm freeradius-client-libs-1.1.7-3.2.1.ppc64le.rpm monitoring-plugins-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-all-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-breeze-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-by_ssh-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-cluster-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-common-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-cups-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dbi-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dbi-mysql-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dbi-pgsql-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dbi-sqlite3-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dhcp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dig-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-disk-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-disk_smb-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dns-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-dummy-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-extras-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-file_age-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-flexlm-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-fping-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-hpjd-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-http-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-icmp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ide_smart-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ifoperstatus-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ifstatus-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ircd-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ldap-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-load-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-log-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-mailq-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-mrtg-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-mrtgtraf-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-mysql-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-nagios-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-nt-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ntp_peer-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ntp_time-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-nwstat-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-oracle-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-overcr-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-pgsql-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ping-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-procs-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-radius-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-real-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-rpc-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-sensors-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-smtp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-snmp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ssh-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-swap-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-tcp-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-time-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-ups-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-users-2.3.1-3.9.2.ppc64le.rpm monitoring-plugins-wave-2.3.1-3.9.2.ppc64le.rpm perl-Crypt-DES-2.07-3.2.1.ppc64le.rpm perl-Crypt-Rijndael-1.13-3.2.1.ppc64le.rpm freeradius-client-1.1.7-3.2.1.aarch64.rpm freeradius-client-devel-1.1.7-3.2.1.aarch64.rpm freeradius-client-libs-1.1.7-3.2.1.aarch64.rpm monitoring-plugins-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-all-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-breeze-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-by_ssh-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-cluster-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-common-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-cups-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dbi-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dbi-mysql-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dbi-pgsql-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dbi-sqlite3-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dhcp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dig-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-disk-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-disk_smb-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dns-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-dummy-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-extras-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-file_age-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-flexlm-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-fping-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-hpjd-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-http-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-icmp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ide_smart-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ifoperstatus-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ifstatus-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ircd-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ldap-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-load-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-log-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-mailq-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-mrtg-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-mrtgtraf-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-mysql-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-nagios-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-nt-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ntp_peer-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ntp_time-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-nwstat-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-oracle-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-overcr-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-pgsql-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ping-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-procs-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-radius-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-real-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-rpc-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-sensors-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-smtp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-snmp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ssh-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-swap-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-tcp-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-time-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-ups-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-users-2.3.1-3.9.2.aarch64.rpm monitoring-plugins-wave-2.3.1-3.9.2.aarch64.rpm perl-Crypt-DES-2.07-3.2.1.aarch64.rpm perl-Crypt-Rijndael-1.13-3.2.1.aarch64.rpm openSUSE-SLE-15.3-2022-480 important SUSE Updates openSUSE-SLE 15.3 This update for tiff fixes the following issues: - CVE-2017-17095: Fixed DoS in tools/pal2rgb.c in pal2rgb (bsc#1071031). - CVE-2019-17546: Fixed integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image (bsc#1154365). - CVE-2020-19131: Fixed buffer overflow in tiffcrop that may cause DoS via the invertImage() function (bsc#1190312). - CVE-2020-35521: Fixed memory allocation failure in tif_read.c (bsc#1182808). - CVE-2020-35522: Fixed memory allocation failure in tif_pixarlog.c (bsc#1182809). - CVE-2020-35523: Fixed integer overflow in tif_getimage.c (bsc#1182811). - CVE-2020-35524: Fixed heap-based buffer overflow in TIFF2PDF tool (bsc#1182812). - CVE-2022-22844: Fixed out-of-bounds read in _TIFFmemcpy in tif_unix.c (bsc#1194539). libtiff-devel-32bit-4.0.9-45.5.1.x86_64.rpm libtiff-devel-4.0.9-45.5.1.x86_64.rpm libtiff5-32bit-4.0.9-45.5.1.x86_64.rpm libtiff5-4.0.9-45.5.1.x86_64.rpm tiff-4.0.9-45.5.1.src.rpm tiff-4.0.9-45.5.1.x86_64.rpm libtiff-devel-4.0.9-45.5.1.s390x.rpm libtiff5-4.0.9-45.5.1.s390x.rpm tiff-4.0.9-45.5.1.s390x.rpm libtiff-devel-4.0.9-45.5.1.ppc64le.rpm libtiff5-4.0.9-45.5.1.ppc64le.rpm tiff-4.0.9-45.5.1.ppc64le.rpm libtiff-devel-4.0.9-45.5.1.aarch64.rpm libtiff5-4.0.9-45.5.1.aarch64.rpm tiff-4.0.9-45.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-498 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - CVE-2022-23852: Fixed signed integer overflow in XML_GetBuffer (bsc#1195054). - CVE-2022-23990: Fixed integer overflow in the doProlog function (bsc#1195217). expat-2.2.5-3.12.1.src.rpm expat-2.2.5-3.12.1.x86_64.rpm libexpat-devel-2.2.5-3.12.1.x86_64.rpm libexpat-devel-32bit-2.2.5-3.12.1.x86_64.rpm libexpat1-2.2.5-3.12.1.x86_64.rpm libexpat1-32bit-2.2.5-3.12.1.x86_64.rpm expat-2.2.5-3.12.1.s390x.rpm libexpat-devel-2.2.5-3.12.1.s390x.rpm libexpat1-2.2.5-3.12.1.s390x.rpm expat-2.2.5-3.12.1.ppc64le.rpm libexpat-devel-2.2.5-3.12.1.ppc64le.rpm libexpat1-2.2.5-3.12.1.ppc64le.rpm expat-2.2.5-3.12.1.aarch64.rpm libexpat-devel-2.2.5-3.12.1.aarch64.rpm libexpat1-2.2.5-3.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-520 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpm fixes the following issues: - Revert unwanted /usr/bin/python to /usr/bin/python2 change we got with the update to 4.14.3 (bsc#1194968) python-rpm-4.14.3-150300.46.1.src.rpm python2-rpm-4.14.3-150300.46.1.x86_64.rpm python3-rpm-4.14.3-150300.46.1.x86_64.rpm rpm-32bit-4.14.3-150300.46.1.x86_64.rpm rpm-4.14.3-150300.46.1.src.rpm rpm-4.14.3-150300.46.1.x86_64.rpm rpm-build-4.14.3-150300.46.1.x86_64.rpm rpm-devel-4.14.3-150300.46.1.x86_64.rpm rpm-ndb-32bit-4.14.3-150300.46.1.x86_64.rpm rpm-ndb-4.14.3-150300.46.1.src.rpm rpm-ndb-4.14.3-150300.46.1.x86_64.rpm python2-rpm-4.14.3-150300.46.1.s390x.rpm python3-rpm-4.14.3-150300.46.1.s390x.rpm rpm-4.14.3-150300.46.1.s390x.rpm rpm-build-4.14.3-150300.46.1.s390x.rpm rpm-devel-4.14.3-150300.46.1.s390x.rpm rpm-ndb-4.14.3-150300.46.1.s390x.rpm python2-rpm-4.14.3-150300.46.1.ppc64le.rpm python3-rpm-4.14.3-150300.46.1.ppc64le.rpm rpm-4.14.3-150300.46.1.ppc64le.rpm rpm-build-4.14.3-150300.46.1.ppc64le.rpm rpm-devel-4.14.3-150300.46.1.ppc64le.rpm rpm-ndb-4.14.3-150300.46.1.ppc64le.rpm python2-rpm-4.14.3-150300.46.1.aarch64.rpm python3-rpm-4.14.3-150300.46.1.aarch64.rpm rpm-4.14.3-150300.46.1.aarch64.rpm rpm-build-4.14.3-150300.46.1.aarch64.rpm rpm-devel-4.14.3-150300.46.1.aarch64.rpm rpm-ndb-4.14.3-150300.46.1.aarch64.rpm openSUSE-SLE-15.3-2022-273 important SUSE Updates openSUSE-SLE 15.3 This update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent contains the following fixes: Changes in google-guest-agent: - Update to version 20211116.00 (bsc#1193257, bsc#1193258) * dont duplicate logs (#146) * Add WantedBy network dependencies to google-guest-agent service (#136) * dont try dhcpv6 when not needed (#145) * Integration tests: instance setup (#143) * Integration test: test create and remove google user (#128) * handle comm errors in script runner (#140) * enforce script ordering (#138) * enable ipv6 on secondary interfaces (#133) - from version 20211103.00 * Integration tests: instance setup (#143) - from version 20211027.00 * Integration test: test create and remove google user (#128) - Update to version 20211019.00 * handle comm errors in script runner (#140) - from version 20211015.00 * enforce script ordering (#138) - from version 20211014.00 * enable ipv6 on secondary interfaces (#133) - from version 20211013.00 * dont open ssh tempfile exclusively (#137) - from version 20211011.00 * correct linux startup script order (#135) * Emit sshable attribute (#123) - from version 20210908.1 * restore line (#127) - from version 20210908.00 * New integ test (#124) - from version 20210901.00 * support enable-oslogin-sk key (#120) * match script logging to guest agent (#125) - from version 20210804.00 * Debug logging (#122) - Refresh patches for new version * dont_overwrite_ifcfg.patch - Build with go1.15 for reproducible build results (bsc#1102408) - Update to version 20210707.00 * Use IP address for calling the metadata server. (#116) - from version 20210629.00 * use IP for MDS (#115) - Update to version 20210603.00 * systemd-notify in agentInit (#113) * dont check status (#112) - from version 20210524.00 * more granular service restarts (#111) - from version 20210414.00 * (no functional changes) Changes in google-guest-configs: - Add missing pkg-config dependency to BuildRequires for SLE-12 - Install modprobe configuration files into /etc again on SLE-15-SP2 and older since that's stil the default location on these distributions - Probe udev directory using the "udevdir" pkg-config variable on SLE-15-SP2 and older since the variable got renamed to "udev_dir" in later versions - Remove redundant pkgconfig(udev) from BuildRequires for SLE-12 - Update to version 20211116.00 (bsc#1193257, bsc#1193258) * GCE supports up to 24 NVMe local SSDs, but the regex in the PROGRAM field only looks for the last digit of the given string causing issues when there are >= 10 local SSDs. Changed REGEX to get the last number of the string instead to support the up to 24 local SSDs. (#30) * chmod+x google_nvme_id on EL (#31) - Fix duplicate installation of google_optimize_local_ssd and google_set_multiqueue - Install google_nvme_id into /usr/lib/udev (bsc#1192652, bsc#1192653) - Update to version 20210916.00 * Revert "dont set IP in etc/hosts; remove rsyslog (#26)" (#28) - from version 20210831.00 * restore rsyslog (#27) - from version 20210830.00 * Fix NVMe partition names (#25) - from version 20210824.00 * dont set IP in etc/hosts; remove rsyslog (#26) * update OWNERS - Use %_modprobedir for modprobe.d files (out of /etc) - Use %_sysctldir for sysctl.d files (out of /etc) - Update to version 20210702.00 * use grep for hostname check (#23) - from version 20210629.00 * address set_hostname vuln (#22) - from version 20210324.00 * dracut.conf wants spaces around values (#19) Changes in google-guest-oslogin: - Update to version 20211013.00 (bsc#1193257, bsc#1193258) * remove deprecated binary (#79) - from version 20211001.00 * no message if no groups (#78) - from version 20210907.00 * use sigaction for signals (#76) - from version 20210906.00 * include cstdlib for exit (#75) * catch SIGPIPE in authorized_keys (#73) - from version 20210805.00 * fix double free in ParseJsonToKey (#70) - from version 20210804.00 * fix packaging for authorized_keys_sk (#68) * add authorized_keys_sk (#66) - Add google_authorized_keys_sk to %files section - Remove google_oslogin_control from %files section Changes in google-osconfig-agent: - Update to version 20211117.00 (bsc#1193257, bsc#1193258) * Add retry logic for RegisterAgent (#404) - from version 20211111.01 * e2e_test: drop ubuntu 1604 image as its EOL (#403) - from version 20211111.00 * e2e_test: move to V1 api for OSPolicies (#397) - from version 20211102.00 * Fix context logging and fix label names (#400) - from version 20211028.00 * Add cloudops example for gcloud (#399) - Update to version 20211021.00 * Added patch report logging for Zypper. (#395) - from version 20211012.00 * Replace deprecated instance filters with the new filters (#394) - from version 20211006.00 * Added patch report log messages for Yum and Apt (#392) - from version 20210930.00 * Config: Add package info caching (#391) - from version 20210928.00 * Fixed the runWithPty function to set ctty to child's filedesc (#389) - from version 20210927.00 * e2e_tests: fix a test output mismatch (#390) - from version 20210924.00 * Fix some e2e test failures (#388) - from version 20210923.02 * Correctly check for folder existance in package upgrade (#387) - from version 20210923.01 * ReportInventory: Fix bug in deb/rpm inventory, reduce calls to append (#386) - from version 20210923.00 * Deprecate old config directory in favor of new cache directory (#385) - from version 20210922.02 * Fix rpm/deb package formating for inventory reporting (#384) - from version 20210922.01 * Add centos stream rocky linux and available package tests (#383) - from version 20210922.00 * Add more info logs, actually cleanup unmanaged repos (#382) - from version 20210901.00 * Add E2E tests for Windows Application (#379) * Return lower-case package name (#377) * Update Terraform scripts for multi-project deployments tutorial. (#378) - from version 20210811.00 * Support Windows Application Inventory (#371) - from version 20210723.00 * Send basic inventory with RegisterAgent (#373) - from version 20210722.1 * e2e_tests: move to manually generated osconfig library (#372) - from version 20210722.00 * Create OWNERS file for examples directory (#368) - from version 20210719.00 * Update Zypper patch info parsing (#370) - Build with go1.15 for reproducible build results (bsc#1102408) - Update to version 20210712.1 * Skip getting patch info when no patches are found. (#369) - from version 20210712.00 * Add Terraform scripts for multi-project deployments (#367) - from version 20210709.00 * Add examples/Terraform directory. (#366) - from version 20210707.00 * Fix bug in printing packages to update, return error for zypper patch (#365) - from version 20210629.00 * Add CloudOps examples for CentOS (#364) - Update to version 20210621.00 * chore: Fixing a comment. (#363) - from version 20210617.00 * Use exec.CommandContext so that canceling the context also kills any running processes (#362) - from version 20210608.1 * e2e_tests: point to official osconfig client library (#359) - from version 20210608.00 * e2e_tests: deflake tests (#358) - from version 20210607.00 * Fix build on some architectures (#357) - from version 20210603.00 * Create win-validation-powershell.yaml (#356) - from version 20210602.00 * Agent efficiency improvements/bugfixes/logging updates (#355) * e2e_tests: add tests for ExecResource output (#354) - from version 20210525.00 * Run fieldalignment on all structs (#353) - from version 20210521.00 * Config Task: add error message and ExecResource output recording (#350) * e2e_tests: remove Windows server 1909 and add server 20h2 (#352) * Added a method for logging structured data (#349) google-guest-agent-20211116.00-1.23.1.src.rpm google-guest-agent-20211116.00-1.23.1.x86_64.rpm google-guest-configs-20211116.00-1.16.1.noarch.rpm google-guest-configs-20211116.00-1.16.1.src.rpm google-guest-oslogin-20211013.00-1.24.1.src.rpm google-guest-oslogin-20211013.00-1.24.1.x86_64.rpm google-osconfig-agent-20211117.00-1.14.1.src.rpm google-osconfig-agent-20211117.00-1.14.1.x86_64.rpm google-guest-agent-20211116.00-1.23.1.s390x.rpm google-guest-oslogin-20211013.00-1.24.1.s390x.rpm google-osconfig-agent-20211117.00-1.14.1.s390x.rpm google-guest-agent-20211116.00-1.23.1.ppc64le.rpm google-guest-oslogin-20211013.00-1.24.1.ppc64le.rpm google-osconfig-agent-20211117.00-1.14.1.ppc64le.rpm google-guest-agent-20211116.00-1.23.1.aarch64.rpm google-guest-oslogin-20211013.00-1.24.1.aarch64.rpm google-osconfig-agent-20211117.00-1.14.1.aarch64.rpm openSUSE-SLE-15.3-2022-533 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-kiwi fixes the following issues: This version upgrade includes several fixes: - Ensure backward compatibility on deprecated methods This commit ensures backward compatibility for deprecated config bash script utilities. (bsc#1195229) * Fixed regression in compression detection. (bsc#1192975) * index.rst: Change title (bsc#1189294#c2) * suggested in bsc#1189294#c2 for more clarity * change has been discussed with and approved by main author (Marcus S.) * Care for different snapper template locations. (bsc#1192940) * Do not force dracut into a compression setting * Fixed secure boot fallback setup Make sure MokManager gets copied. The name and location of the mok manager is distribution specific in the same way as the shim loader. Thus we need to apply a similar concept for looking it up. (bsc#1187515) * Allow creation of LUKS system with empty key To support cloud platforms better we should allow the creation of an initial(insecure) LUKS encrypted image with an empty passphrase/keyfile. (bsc#1187461, bsc#1187460) * Delete obsolete 'ddb.adapterType' patching When building a vmdk image with pvscsi as adapter type, kiwi implicitly changed the adapter_type from pvscsi to lsilogic because qemu only knows lsilogic. At the end kiwi patched the adapter type in the descriptor of the vmdk header back to pvscsi. That patching seems to be wrong according to information from users and VMware support. This commit deletes the descriptor patching and only leaves the pvscsi setting in the guest configuration(vmx). bsc#1180539) * Make dracut version check more robust The check_dracut_module_versions_compatible_to_kiwi() runtime check calls the package manager from the host and reads the package database from the image root. Doing this requires the package database in the image to be compatible with the package manager on the host. However this cannot be guarenteed and it is more robust to chroot into the image root and call the package manager from there. However, this change also comes with the cost that it's required to have a package manager available in the image root tree. Therefore along with the chroot based call, eventual exceptions from the call are now catched and leads to a debug message in the log file but will not lead the runtime check to fail. I consider the cases without a package database inside of the image to be less critical than the incompatibility issue between the host tooling and the package database in the image. (bsc#1185937) * Fixed setup of repository architecture Unfortunately the architecture reported by uname is not necessarily the same name as used in the repository metadata. Therefore it was not a good idea to set the architecture and manage the name via a mapping table. It also has turned out that repo arch names are distro specific which causes more complexity on an eventual mapping table. In the end this commit changes the way how the repository architecture is setup in a way that we only set the architecture if a name was explicitly specified such that the user keeps full control over it without any mapping magic included (bsc#1185287) * Do not apply default subcommand for derivate containers This commit does not apply the default subcommand for derivate containers. (bsc#1184823) * Added openssl to the core requires openssl is used in kiwi to construct a password hash if the plaintext password feature for user settings is used. (bsc#1184128) dracut-kiwi-lib-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-live-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-oem-dump-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-oem-repart-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-overlay-9.24.16-3.44.1.x86_64.rpm kiwi-man-pages-9.24.16-3.44.1.x86_64.rpm kiwi-pxeboot-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-bootloaders-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-containers-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-core-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-disk-images-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-filesystems-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-image-validation-9.24.16-3.44.1.x86_64.rpm kiwi-systemdeps-iso-media-9.24.16-3.44.1.x86_64.rpm kiwi-tools-9.24.16-3.44.1.x86_64.rpm python-kiwi-9.24.16-3.44.1.src.rpm python3-kiwi-9.24.16-3.44.1.x86_64.rpm dracut-kiwi-lib-9.24.16-3.44.1.s390x.rpm dracut-kiwi-live-9.24.16-3.44.1.s390x.rpm dracut-kiwi-oem-dump-9.24.16-3.44.1.s390x.rpm dracut-kiwi-oem-repart-9.24.16-3.44.1.s390x.rpm dracut-kiwi-overlay-9.24.16-3.44.1.s390x.rpm kiwi-man-pages-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-bootloaders-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-containers-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-core-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-disk-images-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-filesystems-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-image-validation-9.24.16-3.44.1.s390x.rpm kiwi-systemdeps-iso-media-9.24.16-3.44.1.s390x.rpm kiwi-tools-9.24.16-3.44.1.s390x.rpm python3-kiwi-9.24.16-3.44.1.s390x.rpm dracut-kiwi-lib-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-live-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-oem-dump-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-oem-repart-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-overlay-9.24.16-3.44.1.ppc64le.rpm kiwi-man-pages-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-bootloaders-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-containers-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-core-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-disk-images-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-filesystems-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-image-validation-9.24.16-3.44.1.ppc64le.rpm kiwi-systemdeps-iso-media-9.24.16-3.44.1.ppc64le.rpm kiwi-tools-9.24.16-3.44.1.ppc64le.rpm python3-kiwi-9.24.16-3.44.1.ppc64le.rpm dracut-kiwi-lib-9.24.16-3.44.1.aarch64.rpm dracut-kiwi-live-9.24.16-3.44.1.aarch64.rpm dracut-kiwi-oem-dump-9.24.16-3.44.1.aarch64.rpm dracut-kiwi-oem-repart-9.24.16-3.44.1.aarch64.rpm dracut-kiwi-overlay-9.24.16-3.44.1.aarch64.rpm kiwi-man-pages-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-bootloaders-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-containers-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-core-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-disk-images-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-filesystems-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-image-validation-9.24.16-3.44.1.aarch64.rpm kiwi-systemdeps-iso-media-9.24.16-3.44.1.aarch64.rpm kiwi-tools-9.24.16-3.44.1.aarch64.rpm python3-kiwi-9.24.16-3.44.1.aarch64.rpm openSUSE-SLE-15.3-2022-376 moderate SUSE Updates openSUSE-SLE 15.3 This update for libqb fixes the following issues: - IPC server: avoid temporary channel priority loss (bsc#1188212). libqb-1.0.3+20190326.a521604-3.6.1.src.rpm libqb20-1.0.3+20190326.a521604-3.6.1.x86_64.rpm libqb20-32bit-1.0.3+20190326.a521604-3.6.1.x86_64.rpm libqb20-1.0.3+20190326.a521604-3.6.1.s390x.rpm libqb20-1.0.3+20190326.a521604-3.6.1.ppc64le.rpm libqb20-1.0.3+20190326.a521604-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-513 moderate SUSE Updates openSUSE-SLE 15.3 This update for grub2 fixes the following issues: - Fix wrong default entry when booting snapshot (bsc#1159205). - Improve support for SLE Micro 5.1 on s390x (bsc#1190395). grub2-2.04-150300.22.12.2.src.rpm grub2-2.04-150300.22.12.2.x86_64.rpm grub2-arm64-efi-2.04-150300.22.12.2.noarch.rpm grub2-arm64-efi-debug-2.04-150300.22.12.2.noarch.rpm grub2-branding-upstream-2.04-150300.22.12.2.x86_64.rpm grub2-i386-pc-2.04-150300.22.12.2.noarch.rpm grub2-i386-pc-debug-2.04-150300.22.12.2.noarch.rpm grub2-powerpc-ieee1275-2.04-150300.22.12.2.noarch.rpm grub2-powerpc-ieee1275-debug-2.04-150300.22.12.2.noarch.rpm grub2-snapper-plugin-2.04-150300.22.12.2.noarch.rpm grub2-systemd-sleep-plugin-2.04-150300.22.12.2.noarch.rpm grub2-x86_64-efi-2.04-150300.22.12.2.noarch.rpm grub2-x86_64-efi-debug-2.04-150300.22.12.2.noarch.rpm grub2-x86_64-xen-2.04-150300.22.12.2.noarch.rpm grub2-2.04-150300.22.12.2.s390x.rpm grub2-branding-upstream-2.04-150300.22.12.2.s390x.rpm grub2-s390x-emu-2.04-150300.22.12.2.s390x.rpm grub2-s390x-emu-debug-2.04-150300.22.12.2.s390x.rpm grub2-2.04-150300.22.12.2.ppc64le.rpm grub2-branding-upstream-2.04-150300.22.12.2.ppc64le.rpm grub2-2.04-150300.22.12.2.aarch64.rpm grub2-branding-upstream-2.04-150300.22.12.2.aarch64.rpm openSUSE-SLE-15.3-2022-523 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - systemctl: exit with 1 if no unit files found (bsc#1193841). - add rules for virtual devices (bsc#1193759). - enforce "none" for loop devices (bsc#1193759). systemd-234-24.105.1.src.rpm True systemd-bash-completion-234-24.105.1.noarch.rpm True openSUSE-SLE-15.3-2022-343 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - disable DNSSEC until the following issue is solved: https://github.com/systemd/systemd/issues/10579 - disable fallback DNS servers and fail when no DNS server info could be obtained from the links. - DNSSEC support requires openssl therefore document this build dependency in systemd-network sub-package. - Improve warning messages (bsc#1193086). libsystemd0-246.16-150300.7.36.1.x86_64.rpm True libsystemd0-32bit-246.16-150300.7.36.1.x86_64.rpm True libudev-devel-246.16-150300.7.36.1.x86_64.rpm True libudev-devel-32bit-246.16-150300.7.36.1.x86_64.rpm True libudev1-246.16-150300.7.36.1.x86_64.rpm True libudev1-32bit-246.16-150300.7.36.1.x86_64.rpm True nss-myhostname-246.16-150300.7.36.1.x86_64.rpm True nss-myhostname-32bit-246.16-150300.7.36.1.x86_64.rpm True nss-mymachines-246.16-150300.7.36.1.x86_64.rpm True nss-mymachines-32bit-246.16-150300.7.36.1.x86_64.rpm True nss-resolve-246.16-150300.7.36.1.x86_64.rpm True nss-systemd-246.16-150300.7.36.1.x86_64.rpm True systemd-246.16-150300.7.36.1.src.rpm True systemd-246.16-150300.7.36.1.x86_64.rpm True systemd-32bit-246.16-150300.7.36.1.x86_64.rpm True systemd-container-246.16-150300.7.36.1.x86_64.rpm True systemd-coredump-246.16-150300.7.36.1.x86_64.rpm True systemd-devel-246.16-150300.7.36.1.x86_64.rpm True systemd-doc-246.16-150300.7.36.1.x86_64.rpm True systemd-journal-remote-246.16-150300.7.36.1.x86_64.rpm True systemd-lang-246.16-150300.7.36.1.noarch.rpm True systemd-logger-246.16-150300.7.36.1.x86_64.rpm True systemd-network-246.16-150300.7.36.1.x86_64.rpm True systemd-sysvinit-246.16-150300.7.36.1.x86_64.rpm True udev-246.16-150300.7.36.1.x86_64.rpm True libsystemd0-246.16-150300.7.36.1.s390x.rpm True libudev-devel-246.16-150300.7.36.1.s390x.rpm True libudev1-246.16-150300.7.36.1.s390x.rpm True nss-myhostname-246.16-150300.7.36.1.s390x.rpm True nss-mymachines-246.16-150300.7.36.1.s390x.rpm True nss-resolve-246.16-150300.7.36.1.s390x.rpm True nss-systemd-246.16-150300.7.36.1.s390x.rpm True systemd-246.16-150300.7.36.1.s390x.rpm True systemd-container-246.16-150300.7.36.1.s390x.rpm True systemd-coredump-246.16-150300.7.36.1.s390x.rpm True systemd-devel-246.16-150300.7.36.1.s390x.rpm True systemd-doc-246.16-150300.7.36.1.s390x.rpm True systemd-journal-remote-246.16-150300.7.36.1.s390x.rpm True systemd-logger-246.16-150300.7.36.1.s390x.rpm True systemd-network-246.16-150300.7.36.1.s390x.rpm True systemd-sysvinit-246.16-150300.7.36.1.s390x.rpm True udev-246.16-150300.7.36.1.s390x.rpm True libsystemd0-246.16-150300.7.36.1.ppc64le.rpm True libudev-devel-246.16-150300.7.36.1.ppc64le.rpm True libudev1-246.16-150300.7.36.1.ppc64le.rpm True nss-myhostname-246.16-150300.7.36.1.ppc64le.rpm True nss-mymachines-246.16-150300.7.36.1.ppc64le.rpm True nss-resolve-246.16-150300.7.36.1.ppc64le.rpm True nss-systemd-246.16-150300.7.36.1.ppc64le.rpm True systemd-246.16-150300.7.36.1.ppc64le.rpm True systemd-container-246.16-150300.7.36.1.ppc64le.rpm True systemd-coredump-246.16-150300.7.36.1.ppc64le.rpm True systemd-devel-246.16-150300.7.36.1.ppc64le.rpm True systemd-doc-246.16-150300.7.36.1.ppc64le.rpm True systemd-journal-remote-246.16-150300.7.36.1.ppc64le.rpm True systemd-logger-246.16-150300.7.36.1.ppc64le.rpm True systemd-network-246.16-150300.7.36.1.ppc64le.rpm True systemd-sysvinit-246.16-150300.7.36.1.ppc64le.rpm True udev-246.16-150300.7.36.1.ppc64le.rpm True libsystemd0-246.16-150300.7.36.1.aarch64.rpm True libudev-devel-246.16-150300.7.36.1.aarch64.rpm True libudev1-246.16-150300.7.36.1.aarch64.rpm True nss-myhostname-246.16-150300.7.36.1.aarch64.rpm True nss-mymachines-246.16-150300.7.36.1.aarch64.rpm True nss-resolve-246.16-150300.7.36.1.aarch64.rpm True nss-systemd-246.16-150300.7.36.1.aarch64.rpm True systemd-246.16-150300.7.36.1.aarch64.rpm True systemd-container-246.16-150300.7.36.1.aarch64.rpm True systemd-coredump-246.16-150300.7.36.1.aarch64.rpm True systemd-devel-246.16-150300.7.36.1.aarch64.rpm True systemd-doc-246.16-150300.7.36.1.aarch64.rpm True systemd-journal-remote-246.16-150300.7.36.1.aarch64.rpm True systemd-logger-246.16-150300.7.36.1.aarch64.rpm True systemd-network-246.16-150300.7.36.1.aarch64.rpm True systemd-sysvinit-246.16-150300.7.36.1.aarch64.rpm True udev-246.16-150300.7.36.1.aarch64.rpm True openSUSE-SLE-15.3-2022-340 moderate SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various a regression bugfix. The following non-security bugs were fixed: - drm/radeon: fix error handling in radeon_driver_open_kms that could lead to non-booting systems with Radeon cards (bsc#1195142). cluster-md-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.46.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.46.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-5.3.18-150300.59.46.1.nosrc.rpm True kernel-default-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.src.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.46.1.150300.18.29.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.46.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.46.1.noarch.rpm True kernel-docs-5.3.18-150300.59.46.1.noarch.rpm True kernel-docs-5.3.18-150300.59.46.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.46.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.46.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.46.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.46.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.46.1.src.rpm True kernel-obs-build-5.3.18-150300.59.46.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.46.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.46.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.46.1.x86_64.rpm True kernel-source-5.3.18-150300.59.46.1.noarch.rpm True kernel-source-5.3.18-150300.59.46.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.46.1.noarch.rpm True kernel-syms-5.3.18-150300.59.46.1.src.rpm True kernel-syms-5.3.18-150300.59.46.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.46.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.46.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.46.1.150300.18.29.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.46.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.46.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.46.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.s390x.rpm True kernel-syms-5.3.18-150300.59.46.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.46.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.46.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.46.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.46.1.150300.18.29.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.46.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.46.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.46.1.src.rpm True dtb-al-5.3.18-150300.59.46.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.46.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.46.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.46.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.46.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.46.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.46.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.46.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.46.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.46.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.46.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.46.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.46.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.46.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.46.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.46.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.46.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.46.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.46.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.46.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.46.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.46.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.46.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.46.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.46.1.150300.18.29.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.46.1.150300.18.29.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.46.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.46.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.46.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.46.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.46.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.46.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.46.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.46.1.aarch64.rpm True openSUSE-SLE-15.3-2022-321 moderate SUSE Updates openSUSE-SLE 15.3 This update for go fixes the following issues: - Update the go wrapper package to switch to the current stable go1.17 (bsc#1190649) - Add golang Provides for RH/Fedora compatibility go-1.17-3.20.1.src.rpm go-1.17-3.20.1.x86_64.rpm go-doc-1.17-3.20.1.x86_64.rpm go-race-1.17-3.20.1.x86_64.rpm go-1.17-3.20.1.s390x.rpm go-doc-1.17-3.20.1.s390x.rpm go-1.17-3.20.1.ppc64le.rpm go-doc-1.17-3.20.1.ppc64le.rpm go-1.17-3.20.1.aarch64.rpm go-doc-1.17-3.20.1.aarch64.rpm go-race-1.17-3.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-366 critical SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP1 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195254). - CVE-2022-0330: Fixed flush TLBs before releasing backing store (bsc#1194880). - CVE-2021-45486: Fixed an information leak because the hash table is very small in net/ipv4/route.c (bnc#1194087). - CVE-2021-45095: Fixed refcount leak in pep_sock_accept in net/phonet/pep.c (bnc#1193867). - CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem, that could have occured because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object (bnc#1193767). - CVE-2021-43976: Fixed a flaw that could allow an attacker (who can connect a crafted USB device) to cause a denial of service. (bnc#1192847) - CVE-2021-43975: Fixed a flaw in hw_atl_utils_fw_rpc_wait that could allow an attacker (who can introduce a crafted device) to trigger an out-of-bounds write via a crafted length value. (bsc#1192845) - CVE-2021-4202: Fixed NFC race condition by adding NCI_UNREG flag (bsc#1194529). - CVE-2021-4197: Use cgroup open-time credentials for process migraton perm checks (bsc#1194302). - CVE-2021-4159: Fixed kernel ptr leak vulnerability via BPF in coerce_reg_to_size (bsc#1194227). - CVE-2021-4149: Fixed btrfs unlock newly allocated extent buffer after error (bsc#1194001). - CVE-2021-4135: Fixed zero-initialize memory inside netdevsim for new map's value in function nsim_bpf_map_alloc (bsc#1193927). - CVE-2021-4083: Fixed a read-after-free memory flaw inside the garbage collection for Unix domain socket file handlers when users call close() and fget() simultaneouslyand can potentially trigger a race condition (bnc#1193727). - CVE-2021-4002: Fixed incorrect TLBs flush in hugetlbfs after huge_pmd_unshare (bsc#1192946). - CVE-2021-39657: Fixed out of bounds read due to a missing bounds check in ufshcd_eh_device_reset_handler of ufshcd.c. This could lead to local information disclosure with System execution privileges needed (bnc#1193864). - CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a race condition in gadget_dev_desc_UDC_show of configfs.c. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1193861). - CVE-2021-3564: Fixed double-free memory corruption in the Linux kernel HCI device initialization subsystem that could have been used by attaching malicious HCI TTY Bluetooth devices. A local user could use this flaw to crash the system (bnc#1186207). - CVE-2021-33098: Fixed a potential denial of service in Intel(R) Ethernet ixgbe driver due to improper input validation. (bsc#1192877) - CVE-2021-28715: Fixed issue with xen/netback to do not queue unlimited number of packages (XSA-392) (bsc#1193442). - CVE-2021-28714: Fixed issue with xen/netback to handle rx queue stall detection (XSA-392) (bsc#1193442). - CVE-2021-28713: Fixed issue with xen/console to harden hvc_xen against event channel storms (XSA-391) (bsc#1193440). - CVE-2021-28712: Fixed issue with xen/netfront to harden netfront against event channel storms (XSA-391) (bsc#1193440). - CVE-2021-28711: Fixed issue with xen/blkfront to harden blkfront against event channel storms (XSA-391) (bsc#1193440). - CVE-2021-0935: Fixed possible out of bounds write in ip6_xmit of ip6_output.c due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192032). - CVE-2021-0920: Fixed a local privilege escalation due to an use after free bug in unix_gc (bsc#1193731). - CVE-2020-27820: Fixed a vulnerability where a use-after-frees in nouveau's postclose() handler could happen if removing device (bsc#1179599). - CVE-2019-15126: Fixed a vulnerability in Broadcom and Cypress Wi-Fi chips, used in RPi family of devices aka "Kr00k". (bsc#1167162) - CVE-2018-25020: Fixed an overflow in the BPF subsystem due to a mishandling of a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions. This affects kernel/bpf/core.c and net/core/filter.c (bnc#1193575). The following non-security bugs were fixed: - Bluetooth: fix the erroneous flush_work() order (git-fixes). - Build: Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731). - ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241 bsc#1195166). - IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241). - elfcore: fix building with clang (bsc#1169514). - hv_netvsc: Set needed_headroom according to VF (bsc#1193506). - ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241 bsc#1195166). - kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740). - kernel-binary.spec.in Stop templating the scriptlets for subpackages (bsc#1190358). - kernel-binary.spec.in: add zstd to BuildRequires if used - kernel-binary.spec.in: make sure zstd is supported by kmod if used - kernel-binary.spec: Check for no kernel signing certificates. Also remove unused variable. - kernel-binary.spec: Define $image as rpm macro (bsc#1189841). - kernel-binary.spec: Do not fail silently when KMP is empty (bsc#1190358). Copy the code from kernel-module-subpackage that deals with empty KMPs. - kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167). - kernel-binary.spec: Fix kernel-default-base scriptlets after packaging merge. - kernel-binary.spec: Require dwarves for kernel-binary-devel when BTF is enabled (jsc#SLE-17288). - kernel-binary.spec: suse-kernel-rpm-scriptlets required for uninstall as well. - kernel-cert-subpackage: Fix certificate location in scriptlets (bsc#1189841). - kernel-source.spec: install-kernel-tools also required on 15.4 - kernel-spec-macros: Since rpm 4.17 %verbose is unusable (bsc#1191229). The semantic changed in an incompatible way so invoking the macro now causes a build failure. - kprobes: Limit max data_size of the kretprobe instances (bsc#1193669). - livepatch: Avoid CPU hogging with cond_resched (bsc#1071995). - memstick: rtsx_usb_ms: fix UAF (bsc#1194516). - moxart: fix potential use-after-free on remove path (bsc#1194516). - net, xdp: Introduce xdp_init_buff utility routine (bsc#1193506). - net, xdp: Introduce xdp_prepare_buff utility routine (bsc#1193506). - net: Using proper atomic helper (bsc#1186222). - net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241). - net: mana: Add RX fencing (bsc#1193506). - net: mana: Add XDP support (bsc#1193506). - net: mana: Allow setting the number of queues while the NIC is down (bsc#1193506). - net: mana: Fix spelling mistake "calledd" -> "called" (bsc#1193506). - net: mana: Fix the netdev_err()'s vPort argument in mana_init_port() (bsc#1193506). - net: mana: Improve the HWC error handling (bsc#1193506). - net: mana: Support hibernation and kexec (bsc#1193506). - net: mana: Use kcalloc() instead of kzalloc() (bsc#1193506). - objtool: Support Clang non-section symbols in ORC generation (bsc#1169514). - post.sh: detect /usr mountpoint too - recordmcount.pl: fix typo in s390 mcount regex (bsc#1192267). - recordmcount.pl: look for jgnop instruction as well as bcrl on s390 (bsc#1192267). - rpm/kernel-binary.spec.in: Use kmod-zstd provide. This makes it possible to use kmod with ZSTD support on non-Tumbleweed. - rpm/kernel-binary.spec.in: avoid conflicting suse-release suse-release had arbitrary values in staging, we can't use it for dependencies. The filesystem one has to be enough (boo#1184804). - rpm/kernel-binary.spec.in: do not strip vmlinux again (bsc#1193306). - rpm/kernel-binary.spec: Use only non-empty certificates. - rpm/kernel-obs-build.spec.in: make builds reproducible (bsc#1189305). - rpm/kernel-source.rpmlintrc: ignore new include/config files. - rpm/kernel-source.spec.in: do some more for vanilla_only. - rpm: Abolish image suffix (bsc#1189841). - rpm: Abolish scritplet templating (bsc#1189841). Outsource kernel-binary and KMP scriptlets to suse-module-tools. - rpm: Define $certs as rpm macro (bsc#1189841). - rpm: Fold kernel-devel and kernel-source scriptlets into spec files (bsc#1189841). - rpm: fix kmp install path - rpm: use _rpmmacrodir (boo#1191384) - tty: hvc: replace BUG_ON() with negative return value. - vfs: check fd has read access in kernel_read_file_from_fd() (bsc#1194888). - x86/xen: Mark cpu_bringup_and_idle() as dead_end_function (bsc#1169514). - xen/blkfront: do not take local copy of a request from the ring page (git-fixes). - xen/blkfront: do not trust the backend response data blindly (git-fixes). - xen/blkfront: read response from backend only once (git-fixes). - xen/netfront: disentangle tx_skb_freelist (git-fixes). - xen/netfront: do not read data from request on the ring page (git-fixes). - xen/netfront: do not trust the backend response data blindly (git-fixes). - xen/netfront: read response from backend only once (git-fixes). - xen: sync include/xen/interface/io/ring.h with Xen's newest version (git-fixes). - xfrm: fix MTU regression (bsc#1185377, bsc#1194048). kernel-debug-4.12.14-197.105.1.nosrc.rpm True kernel-debug-base-4.12.14-197.105.1.x86_64.rpm True kernel-default-4.12.14-197.105.1.nosrc.rpm True kernel-kvmsmall-4.12.14-197.105.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-197.105.1.x86_64.rpm True kernel-vanilla-4.12.14-197.105.1.nosrc.rpm True kernel-vanilla-4.12.14-197.105.1.x86_64.rpm True kernel-vanilla-base-4.12.14-197.105.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-197.105.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.105.1.x86_64.rpm True kernel-default-man-4.12.14-197.105.1.s390x.rpm True kernel-vanilla-4.12.14-197.105.1.s390x.rpm True kernel-vanilla-base-4.12.14-197.105.1.s390x.rpm True kernel-vanilla-devel-4.12.14-197.105.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.105.1.s390x.rpm True kernel-zfcpdump-4.12.14-197.105.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-197.105.1.s390x.rpm True kernel-debug-base-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.105.1.ppc64le.rpm True kernel-vanilla-4.12.14-197.105.1.aarch64.rpm True kernel-vanilla-base-4.12.14-197.105.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-197.105.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-197.105.1.aarch64.rpm True openSUSE-SLE-15.3-2022-363 critical SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195254). - CVE-2022-0330: Fixed flush TLBs before releasing backing store (bsc#1194880). - CVE-2022-0286: Fixed null pointer dereference in bond_ipsec_add_sa() that may have lead to local denial of service (bnc#1195371). - CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065). - CVE-2021-45095: Fixed refcount leak in pep_sock_accept in net/phonet/pep.c (bnc#1193867). - CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem, that could have occured because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object (bnc#1193767). - CVE-2021-39657: Fixed out of bounds read due to a missing bounds check in ufshcd_eh_device_reset_handler of ufshcd.c. This could lead to local information disclosure with System execution privileges needed (bnc#1193864). - CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a race condition in gadget_dev_desc_UDC_show of configfs.c. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1193861). - CVE-2021-22600: Fixed double free bug in packet_set_ring() in net/packet/af_packet.c that could have been exploited by a local user through crafted syscalls to escalate privileges or deny service (bnc#1195184). - CVE-2020-28097: Fixed out-of-bounds read in vgacon subsystem that mishandled software scrollback (bnc#1187723). - CVE-2021-4159: Fixed kernel ptr leak vulnerability via BPF in coerce_reg_to_size (bsc#1194227). The following security references were added to already fixed issues: - CVE-2021-39685: Fixed USB gadget buffer overflow caused by too large endpoint 0 requests (bsc#1193802). The following non-security bugs were fixed: - ACPI: battery: Add the ThinkPad "Not Charging" quirk (git-fixes). - ACPICA: Executer: Fix the REFCLASS_REFOF case in acpi_ex_opcode_1A_0T_1R() (git-fixes). - ACPICA: Fix wrong interpretation of PCC address (git-fixes). - ACPICA: Hardware: Do not flush CPU cache when entering S4 and S5 (git-fixes). - ACPICA: Utilities: Avoid deleting the same object twice in a row (git-fixes). - ACPICA: actypes.h: Expand the ACPI_ACCESS_ definitions (git-fixes). - ALSA: seq: Set upper limit of processed events (git-fixes). - ASoC: mediatek: mt8173: fix device_node leak (git-fixes). - Bluetooth: Fix debugfs entry leak in hci_register_dev() (git-fixes). - Documentation: fix firewire.rst ABI file path error (git-fixes). - HID: apple: Do not reset quirks when the Fn key is not found (git-fixes). - HID: quirks: Allow inverting the absolute X/Y values (git-fixes). - HID: uhid: Fix worker destroying device without any protection (git-fixes). - HID: wacom: Reset expected and received contact counts at the same time (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 88SE9125 SATA controller (git-fixes). - RDMA/core: Clean up cq pool mechanism (jsc#SLE-15176). - RDMA/rxe: Remove the unnecessary variable (jsc#SLE-15176). - ar5523: Fix null-ptr-deref with unexpected WDCMSG_TARGET_START reply (git-fixes). - arm64: Kconfig: add a choice for endianness (jsc#SLE-23432). - asix: fix wrong return value in asix_check_host_enable() (git-fixes). - ata: pata_platform: Fix a NULL pointer dereference in __pata_platform_probe() (git-fixes). - ath10k: Fix tx hanging (git-fixes). - ath9k: Fix out-of-bound memcpy in ath9k_hif_usb_rx_stream (git-fixes). - batman-adv: allow netlink usage in unprivileged containers (git-fixes). - btrfs: tree-checker: Add EXTENT_ITEM and METADATA_ITEM check (bsc#1195009). - btrfs: tree-checker: annotate all error branches as unlikely (bsc#1195009). - btrfs: tree-checker: check for BTRFS_BLOCK_FLAG_FULL_BACKREF being set improperly (bsc#1195009). - cgroup/cpuset: Fix a partition bug with hotplug (bsc#1194291). - clk: si5341: Fix clock HW provider cleanup (git-fixes). - crypto: qat - fix undetected PFVF timeout in ACK loop (git-fixes). - drm/amdgpu: fixup bad vram size on gmc v8 (git-fixes). - drm/bridge: megachips: Ensure both bridges are probed before registration (git-fixes). - drm/etnaviv: limit submit sizes (git-fixes). - drm/etnaviv: relax submit size limits (git-fixes). - drm/lima: fix warning when CONFIG_DEBUG_SG=y & CONFIG_DMA_API_DEBUG=y (git-fixes). - drm/msm/dpu: invalid parameter check in dpu_setup_dspp_pcc (git-fixes). - drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable (git-fixes). - drm/msm/hdmi: Fix missing put_device() call in msm_hdmi_get_phy (git-fixes). - drm/msm: Fix wrong size calculation (git-fixes). - drm/nouveau/kms/nv04: use vzalloc for nv04_display (git-fixes). - drm/nouveau/pmu/gm200-: avoid touching PMU outside of DEVINIT/PREOS/ACR (git-fixes). - drm/radeon: fix error handling in radeon_driver_open_kms (git-fixes). - drm: panel-orientation-quirks: Add quirk for the Lenovo Yoga Book X91F/L (git-fixes). - ext4: set csum seed in tmp inode while migrating to extents (bsc#1195267). - floppy: Add max size check for user space request (git-fixes). - gpio: aspeed: Convert aspeed_gpio.lock to raw_spinlock (git-fixes). - gpiolib: acpi: Do not set the IRQ type if the IRQ is already in use (git-fixes). - hv_netvsc: Set needed_headroom according to VF (bsc#1193506). - hwmom: (lm90) Fix citical alarm status for MAX6680/MAX6681 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6646/6647/6649 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6654 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6680 (git-fixes). - hwmon: (lm90) Reduce maximum conversion rate for G781 (git-fixes). - i2c: designware-pci: Fix to change data types of hcnt and lcnt parameters (git-fixes). - i2c: i801: Do not silently correct invalid transfer size (git-fixes). - i2c: mpc: Correct I2C reset procedure (git-fixes). - ibmvnic: Allow extra failures before disabling (bsc#1195073 ltc#195713). - ibmvnic: Update driver return codes (bsc#1195293 ltc#196198). - ibmvnic: do not spin in tasklet (bsc#1195073 ltc#195713). - ibmvnic: init ->running_cap_crqs early (bsc#1195073 ltc#195713). - ibmvnic: remove unused ->wait_capability (bsc#1195073 ltc#195713). - ibmvnic: remove unused defines (bsc#1195293 ltc#196198). - igc: Fix TX timestamp support for non-MSI-X platforms (bsc#1160634). - iwlwifi: fix leaks/bad data after failed firmware load (git-fixes). - iwlwifi: mvm: Fix calculation of frame length (git-fixes). - iwlwifi: mvm: Increase the scan timeout guard to 30 seconds (git-fixes). - iwlwifi: mvm: synchronize with FW after multicast commands (git-fixes). - iwlwifi: remove module loading failure message (git-fixes). - lib82596: Fix IRQ check in sni_82596_probe (git-fixes). - lightnvm: Remove lightnvm implemenation (bsc#1191881). - mac80211: allow non-standard VHT MCS-10/11 (git-fixes). - media: b2c2: Add missing check in flexcop_pci_isr: (git-fixes). - media: coda/imx-vdoa: Handle dma_set_coherent_mask error codes (git-fixes). - media: igorplugusb: receiver overflow should be reported (git-fixes). - media: m920x: do not use stack on USB reads (git-fixes). - media: saa7146: hexium_gemini: Fix a NULL pointer dereference in hexium_attach() (git-fixes). - media: saa7146: hexium_orion: Fix a NULL pointer dereference in hexium_attach() (git-fixes). - media: uvcvideo: Increase UVC_CTRL_CONTROL_TIMEOUT to 5 seconds (git-fixes). - mlxsw: Only advertise link modes supported by both driver and device (bsc#1154488). - mmc: core: Fixup storing of OCR for MMC_QUIRK_NONSTD_SDIO (git-fixes). - mtd: nand: bbt: Fix corner case in bad block table handling (git-fixes). - mtd: rawnand: gpmi: Add ERR007117 protection for nfc_apply_timings (git-fixes). - mtd: rawnand: gpmi: Remove explicit default gpmi clock setting for i.MX6 (git-fixes). - net, xdp: Introduce xdp_init_buff utility routine (bsc#1193506). - net, xdp: Introduce xdp_prepare_buff utility routine (bsc#1193506). - net/mlx5: DR, Proper handling of unsupported Connect-X6DX SW steering (jsc#SLE-8464). - net/mlx5: E-Switch, fix changing vf VLANID (jsc#SLE-15172). - net/mlx5e: Protect encap route dev from concurrent release (jsc#SLE-8464). - net: allow retransmitting a TCP packet if original is still in queue (bsc#1188605 bsc#1187428). - net: bonding: fix bond_xmit_broadcast return value error bug (bsc#1176447). - net: bridge: vlan: fix memory leak in __allowed_ingress (bsc#1176447). - net: bridge: vlan: fix single net device option dumping (bsc#1176447). - net: mana: Add RX fencing (bsc#1193506). - net: mana: Add XDP support (bsc#1193506). - net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc (bsc#1183405). - net: sched: add barrier to ensure correct ordering for lockless qdisc (bsc#1183405). - net: sched: avoid unnecessary seqcount operation for lockless qdisc (bsc#1183405). - net: sched: fix packet stuck problem for lockless qdisc (bsc#1183405). - net: sched: fix tx action reschedule issue with stopped queue (bsc#1183405). - net: sched: fix tx action rescheduling issue during deactivation (bsc#1183405). - net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1183405). - net: sfp: fix high power modules without diagnostic monitoring (bsc#1154353). - netdevsim: set .owner to THIS_MODULE (bsc#1154353). - nfc: llcp: fix NULL error pointer dereference on sendmsg() after failed bind() (git-fixes). - nvme: add 'iopolicy' module parameter (bsc#1177599 bsc#1193096). - phy: uniphier-usb3ss: fix unintended writing zeros to PHY register (git-fixes). - phylib: fix potential use-after-free (git-fixes). - pinctrl: bcm2835: Add support for wake-up interrupts (git-fixes). - pinctrl: bcm2835: Match BCM7211 compatible string (git-fixes). - powerpc/book3s64/radix: make tlb_single_page_flush_ceiling a debugfs entry (bsc#1195183 ltc#193865). - regulator: qcom_smd: Align probe function with rpmh-regulator (git-fixes). - rsi: Fix use-after-free in rsi_rx_done_handler() (git-fixes). - sched/fair: Fix detection of per-CPU kthreads waking a task (git fixes (sched/fair)). - sched/numa: Fix is_core_idle() (git fixes (sched/numa)). - scripts/dtc: dtx_diff: remove broken example from help text (git-fixes). - serial: 8250: of: Fix mapped region size when using reg-offset property (git-fixes). - serial: Fix incorrect rs485 polarity on uart open (git-fixes). - serial: amba-pl011: do not request memory region twice (git-fixes). - serial: core: Keep mctrl register state and cached copy in sync (git-fixes). - serial: pl010: Drop CR register reset on set_termios (git-fixes). - serial: stm32: fix software flow control transfer (git-fixes). - supported.conf: mark rtw88 modules as supported (jsc#SLE-22690) - tty: n_gsm: fix SW flow control encoding/handling (git-fixes). - ucsi_ccg: Check DEV_INT bit only when starting CCG4 (git-fixes). - usb: common: ulpi: Fix crash in ulpi_match() (git-fixes). - usb: gadget: f_fs: Use stream_open() for endpoint files (git-fixes). - usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_SUPER_PLUS (git-fixes). - usb: hub: Add delay for SuperSpeed hub resume to let links transit to U0 (git-fixes). - usb: roles: fix include/linux/usb/role.h compile issue (git-fixes). - usb: typec: tcpm: Do not disconnect while receiving VBUS off (git-fixes). - usb: uhci: add aspeed ast2600 uhci support (git-fixes). - vfio/iommu_type1: replace kfree with kvfree (git-fixes). - video: hyperv_fb: Fix validation of screen resolution (git-fixes). - vxlan: fix error return code in __vxlan_dev_create() (bsc#1154353). - workqueue: Fix unbind_workers() VS wq_worker_running() race (bsc#1195062). - x86/gpu: Reserve stolen memory for first integrated Intel GPU (git-fixes). - xfrm: fix MTU regression (bsc#1185377, bsc#1194048). cluster-md-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True dlm-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True gfs2-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-5.3.18-150300.38.40.4.nosrc.rpm True kernel-azure-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-devel-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-extra-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-livepatch-devel-5.3.18-150300.38.40.4.x86_64.rpm True kernel-azure-optional-5.3.18-150300.38.40.4.x86_64.rpm True kernel-devel-azure-5.3.18-150300.38.40.4.noarch.rpm True kernel-source-azure-5.3.18-150300.38.40.4.noarch.rpm True kernel-source-azure-5.3.18-150300.38.40.4.src.rpm True kernel-syms-azure-5.3.18-150300.38.40.1.src.rpm True kernel-syms-azure-5.3.18-150300.38.40.1.x86_64.rpm True kselftests-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True ocfs2-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True reiserfs-kmp-azure-5.3.18-150300.38.40.4.x86_64.rpm True openSUSE-SLE-15.3-2022-548 moderate SUSE Updates openSUSE-SLE 15.3 This update for blog fixes the following issues: - Update to version 2.26 * On s390/x and PPC64 gcc misses unused arg0 - Update to version 2.24 * Avoid install errror due missed directory - Update to version 2.22 * Avoid KillMode=none for newer systemd version as well as rework the systemd unit files of blog (bsc#1186506) - Move to /usr for UsrMerge (bsc#1191057) - Update to version 2.21 * Merge pull request #4 from samueldr/fix/makefile Fixup Makefile for better build system support * Silent new gcc compiler blog-2.26-150300.4.3.1.src.rpm blog-2.26-150300.4.3.1.x86_64.rpm blog-devel-2.26-150300.4.3.1.x86_64.rpm blog-plymouth-2.26-150300.4.3.1.x86_64.rpm libblogger2-2.26-150300.4.3.1.x86_64.rpm blog-2.26-150300.4.3.1.s390x.rpm blog-devel-2.26-150300.4.3.1.s390x.rpm blog-plymouth-2.26-150300.4.3.1.s390x.rpm libblogger2-2.26-150300.4.3.1.s390x.rpm blog-2.26-150300.4.3.1.ppc64le.rpm blog-devel-2.26-150300.4.3.1.ppc64le.rpm blog-plymouth-2.26-150300.4.3.1.ppc64le.rpm libblogger2-2.26-150300.4.3.1.ppc64le.rpm blog-2.26-150300.4.3.1.aarch64.rpm blog-devel-2.26-150300.4.3.1.aarch64.rpm blog-plymouth-2.26-150300.4.3.1.aarch64.rpm libblogger2-2.26-150300.4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-674 moderate SUSE Updates openSUSE-SLE 15.3 This update for yast2-network fixes the following issues: - Don't crash at the end of installation when storing wifi configuration for NetworkManager. (bsc#1187512) augeas-1.10.1-3.5.1.src.rpm augeas-1.10.1-3.5.1.x86_64.rpm augeas-devel-1.10.1-3.5.1.x86_64.rpm augeas-devel-32bit-1.10.1-3.5.1.x86_64.rpm augeas-lense-tests-1.10.1-3.5.1.x86_64.rpm augeas-lenses-1.10.1-3.5.1.x86_64.rpm libaugeas0-1.10.1-3.5.1.x86_64.rpm libaugeas0-32bit-1.10.1-3.5.1.x86_64.rpm yast2-network-4.3.81-150300.3.25.1.noarch.rpm yast2-network-4.3.81-150300.3.25.1.src.rpm augeas-1.10.1-3.5.1.s390x.rpm augeas-devel-1.10.1-3.5.1.s390x.rpm augeas-lense-tests-1.10.1-3.5.1.s390x.rpm augeas-lenses-1.10.1-3.5.1.s390x.rpm libaugeas0-1.10.1-3.5.1.s390x.rpm augeas-1.10.1-3.5.1.ppc64le.rpm augeas-devel-1.10.1-3.5.1.ppc64le.rpm augeas-lense-tests-1.10.1-3.5.1.ppc64le.rpm augeas-lenses-1.10.1-3.5.1.ppc64le.rpm libaugeas0-1.10.1-3.5.1.ppc64le.rpm augeas-1.10.1-3.5.1.aarch64.rpm augeas-devel-1.10.1-3.5.1.aarch64.rpm augeas-lense-tests-1.10.1-3.5.1.aarch64.rpm augeas-lenses-1.10.1-3.5.1.aarch64.rpm libaugeas0-1.10.1-3.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-388 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-datrie fixes the following issues: - Make build reproducible. (bsc#1041090) python-datrie-0.7.1-4.3.1.src.rpm python2-datrie-0.7.1-4.3.1.x86_64.rpm python3-datrie-0.7.1-4.3.1.x86_64.rpm python2-datrie-0.7.1-4.3.1.s390x.rpm python3-datrie-0.7.1-4.3.1.s390x.rpm python2-datrie-0.7.1-4.3.1.ppc64le.rpm python3-datrie-0.7.1-4.3.1.ppc64le.rpm python2-datrie-0.7.1-4.3.1.aarch64.rpm python3-datrie-0.7.1-4.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-439 important SUSE Updates openSUSE-SLE 15.3 This update for release-notes-sles fixes the following issues: - 15.3.20220202 (tracked in bsc#933411) - Added kernel parameter changes (bsc#1195107) - Added note about IBM Power10 support (bsc#1192121) - Added note about deprecating XFS V4 (jsc#SLE-22663) - Updated note about unixODBC drivers in production (jsc#SLE-20555) - Added note about RTL8821CE support (jsc#SLE-22690) - Updated KillMode=none note (bsc#1193843) release-notes-sles-15.3.20220202-150300.3.20.1.noarch.rpm release-notes-sles-15.3.20220202-150300.3.20.1.src.rpm openSUSE-SLE-15.3-2022-352 moderate SUSE Updates openSUSE-SLE 15.3 This update for release-notes-ha fixes the following issues: - 15.3.20220202 (tracked in bsc#933411) - Added note about pingd deprecation (jsc#DOCTEAM-62) - Added note about python-cluster-preflight-check deprecation (jsc#SLE-22898) - Removed mention of SES (bsc#1188305) - Updated links (bsc#1187664) release-notes-ha-15.3.20220202-150300.3.3.1.noarch.rpm release-notes-ha-15.3.20220202-150300.3.3.1.src.rpm openSUSE-SLE-15.3-2022-378 moderate SUSE Updates openSUSE-SLE 15.3 This update for pacemaker fixes the following issues: - attrd: check election status upon loss of a voter to prevent unexpected pending (bsc#1191676) libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.src.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm pacemaker-cts-2.0.5+20201202.ba59be712-150300.4.16.1.noarch.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.16.1.x86_64.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.16.1.s390x.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.16.1.ppc64le.rpm libpacemaker-devel-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm libpacemaker3-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm pacemaker-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm pacemaker-cli-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm pacemaker-remote-2.0.5+20201202.ba59be712-150300.4.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-584 moderate SUSE Updates openSUSE-SLE 15.3 This update for salt fixes the following issues: - Fix inspector module export function (bsc#1097531) - Add all ssh kwargs to sanitize_kwargs method - Wipe NOTIFY_SOCKET from env in cmdmod (bsc#1193357) - Don't check for cached pillar errors on state.apply (bsc#1190781) - Simplify "transactional_update" module to not use SSH wrapper and allow more flexible execution - Add "--no-return-event" option to salt-call to prevent sending return event back to master. - Make "state.highstate" to acts on concurrent flag. python3-salt-3002.2-150300.53.7.2.x86_64.rpm True salt-3002.2-150300.53.7.2.src.rpm True salt-3002.2-150300.53.7.2.x86_64.rpm True salt-api-3002.2-150300.53.7.2.x86_64.rpm True salt-bash-completion-3002.2-150300.53.7.2.noarch.rpm True salt-cloud-3002.2-150300.53.7.2.x86_64.rpm True salt-doc-3002.2-150300.53.7.2.x86_64.rpm True salt-fish-completion-3002.2-150300.53.7.2.noarch.rpm True salt-master-3002.2-150300.53.7.2.x86_64.rpm True salt-minion-3002.2-150300.53.7.2.x86_64.rpm True salt-proxy-3002.2-150300.53.7.2.x86_64.rpm True salt-ssh-3002.2-150300.53.7.2.x86_64.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.7.2.x86_64.rpm True salt-syndic-3002.2-150300.53.7.2.x86_64.rpm True salt-transactional-update-3002.2-150300.53.7.2.x86_64.rpm True salt-zsh-completion-3002.2-150300.53.7.2.noarch.rpm True python3-salt-3002.2-150300.53.7.2.s390x.rpm True salt-3002.2-150300.53.7.2.s390x.rpm True salt-api-3002.2-150300.53.7.2.s390x.rpm True salt-cloud-3002.2-150300.53.7.2.s390x.rpm True salt-doc-3002.2-150300.53.7.2.s390x.rpm True salt-master-3002.2-150300.53.7.2.s390x.rpm True salt-minion-3002.2-150300.53.7.2.s390x.rpm True salt-proxy-3002.2-150300.53.7.2.s390x.rpm True salt-ssh-3002.2-150300.53.7.2.s390x.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.7.2.s390x.rpm True salt-syndic-3002.2-150300.53.7.2.s390x.rpm True salt-transactional-update-3002.2-150300.53.7.2.s390x.rpm True python3-salt-3002.2-150300.53.7.2.ppc64le.rpm True salt-3002.2-150300.53.7.2.ppc64le.rpm True salt-api-3002.2-150300.53.7.2.ppc64le.rpm True salt-cloud-3002.2-150300.53.7.2.ppc64le.rpm True salt-doc-3002.2-150300.53.7.2.ppc64le.rpm True salt-master-3002.2-150300.53.7.2.ppc64le.rpm True salt-minion-3002.2-150300.53.7.2.ppc64le.rpm True salt-proxy-3002.2-150300.53.7.2.ppc64le.rpm True salt-ssh-3002.2-150300.53.7.2.ppc64le.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.7.2.ppc64le.rpm True salt-syndic-3002.2-150300.53.7.2.ppc64le.rpm True salt-transactional-update-3002.2-150300.53.7.2.ppc64le.rpm True python3-salt-3002.2-150300.53.7.2.aarch64.rpm True salt-3002.2-150300.53.7.2.aarch64.rpm True salt-api-3002.2-150300.53.7.2.aarch64.rpm True salt-cloud-3002.2-150300.53.7.2.aarch64.rpm True salt-doc-3002.2-150300.53.7.2.aarch64.rpm True salt-master-3002.2-150300.53.7.2.aarch64.rpm True salt-minion-3002.2-150300.53.7.2.aarch64.rpm True salt-proxy-3002.2-150300.53.7.2.aarch64.rpm True salt-ssh-3002.2-150300.53.7.2.aarch64.rpm True salt-standalone-formulas-configuration-3002.2-150300.53.7.2.aarch64.rpm True salt-syndic-3002.2-150300.53.7.2.aarch64.rpm True salt-transactional-update-3002.2-150300.53.7.2.aarch64.rpm True openSUSE-SLE-15.3-2022-527 moderate SUSE Updates openSUSE-SLE 15.3 This update for bcm43xx-firmware fixes the following issues: - Introduce firmware file for Raspberry Pi 400's bluetooth. (bsc#1195451) bcm43xx-firmware-20180314-150300.23.5.1.noarch.rpm bcm43xx-firmware-20180314-150300.23.5.1.src.rpm openSUSE-SLE-15.3-2022-522 moderate SUSE Updates openSUSE-SLE 15.3 This update for fetchmail fixes the following issues: - Restore autoprobe functionality (bsc#1193894) fetchmail-6.4.22-20.26.1.src.rpm fetchmail-6.4.22-20.26.1.x86_64.rpm fetchmailconf-6.4.22-20.26.1.x86_64.rpm fetchmail-6.4.22-20.26.1.s390x.rpm fetchmailconf-6.4.22-20.26.1.s390x.rpm fetchmail-6.4.22-20.26.1.ppc64le.rpm fetchmailconf-6.4.22-20.26.1.ppc64le.rpm fetchmail-6.4.22-20.26.1.aarch64.rpm fetchmailconf-6.4.22-20.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-344 moderate SUSE Updates openSUSE-SLE 15.3 This update for obs-service-kiwi_metainfo_helper fixes the following issues: - Generate OS_VERSION based on os-release VERSION (bsc#1195061). - Add test suite obs-service-kiwi_metainfo_helper-0.5-1.15.1.noarch.rpm obs-service-kiwi_metainfo_helper-0.5-1.15.1.src.rpm openSUSE-SLE-15.3-2022-479 important SUSE Updates openSUSE-SLE 15.3 This update for virglrenderer fixes the following issues: - CVE-2022-0135: Fixed out-of-bonds write in read_transfer_data() (bsc#1195389). libvirglrenderer0-0.6.0-4.9.1.x86_64.rpm virglrenderer-0.6.0-4.9.1.src.rpm virglrenderer-devel-0.6.0-4.9.1.x86_64.rpm virglrenderer-test-server-0.6.0-4.9.1.x86_64.rpm libvirglrenderer0-0.6.0-4.9.1.s390x.rpm virglrenderer-devel-0.6.0-4.9.1.s390x.rpm virglrenderer-test-server-0.6.0-4.9.1.s390x.rpm libvirglrenderer0-0.6.0-4.9.1.ppc64le.rpm virglrenderer-devel-0.6.0-4.9.1.ppc64le.rpm virglrenderer-test-server-0.6.0-4.9.1.ppc64le.rpm libvirglrenderer0-0.6.0-4.9.1.aarch64.rpm virglrenderer-devel-0.6.0-4.9.1.aarch64.rpm virglrenderer-test-server-0.6.0-4.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-519 moderate SUSE Updates openSUSE-SLE 15.3 This update for sysstat fixes the following issues: - Fix possible segfault (bsc#1194679). sysstat-12.0.2-3.33.1.src.rpm sysstat-12.0.2-3.33.1.x86_64.rpm sysstat-isag-12.0.2-3.33.1.x86_64.rpm sysstat-12.0.2-3.33.1.s390x.rpm sysstat-isag-12.0.2-3.33.1.s390x.rpm sysstat-12.0.2-3.33.1.ppc64le.rpm sysstat-isag-12.0.2-3.33.1.ppc64le.rpm sysstat-12.0.2-3.33.1.aarch64.rpm sysstat-isag-12.0.2-3.33.1.aarch64.rpm openSUSE-SLE-15.3-2022-595 moderate SUSE Updates openSUSE-SLE 15.3 This update fixes the following issues: ansible: - Require python macros for building mgr-cfg: - Version 4.2.6-1 * Do not build python 2 package for SLE15SP4 and higher - Version 4.2.5-1 * do not build python 2 package for SLE15 - Version 4.2.4-1 * Fix python selinux package name depending on build target (bsc#1193600) mgr-custom-info: - Version 4.2.3-1 * require python macros for building mgr-osad: - Version 4.2.7-1 * Do not build python 2 package for SLE15SP4 and higher * require python macros for building mgr-push: - Version 4.2.4-1 * Do not build python 2 package for SLE15SP4 and higher mgr-virtualization: - Version 4.2.3-1 * Do not build python 2 package for SLE15SP4 and higher * require python macros for building rhnlib: - Version 4.2.5-1 * do not build python 2 package for SLE15 spacecmd: - Version 4.2.15-1 * require python macros for building spacewalk-client-tools: - Version 4.2.16-1 * do not build python 2 package for SLE15 * require python macros for building spacewalk-koan: - Version 4.2.5-1 * Do not build python 2 package for SLE15SP4 and higher spacewalk-oscap: - Version 4.2.3-1 * Do not build python 2 package for SLE15SP4 and higher * require python macros for building spacewalk-remote-utils: - Version 4.2.2-1 * require python macros for building suseRegisterInfo: - Version 4.2.5-1 * require python macros for building * Do not build python 2 package for SLE15 and higher uyuni-common-libs: - Version 4.2.6-1 * Read modularity data from DISTTAG tag as fallback (bsc#1192487) * require python macros for building zypp-plugin-spacewalk: - 1.0.11 * require python macros for building ansible-2.9.21-1.10.1.noarch.rpm ansible-2.9.21-1.10.1.src.rpm ansible-doc-2.9.21-1.10.1.noarch.rpm ansible-test-2.9.21-1.10.1.noarch.rpm python2-rhnlib-4.2.5-3.31.1.noarch.rpm python3-rhnlib-4.2.5-3.31.1.noarch.rpm rhnlib-4.2.5-3.31.1.src.rpm spacecmd-4.2.15-3.74.1.noarch.rpm spacecmd-4.2.15-3.74.1.src.rpm openSUSE-SLE-15.3-2022-652 moderate SUSE Updates openSUSE-SLE 15.3 This update for raspberrypi-eeprom fixes the following issues: Update to version 2021.04.29 (bsc#1194950) - Use upstream version schema (year.month.day) instead of arbitrary 0.0 - Add support for NVMe to the bootloader with a new NVMe boot mode - Add support for [cm4] and [pi400] config conditionals filters - TFTP - reply to duplicate ACKS - Skip rendering of HDMI diagnostics display for the first 8 seconds unless an error occurs - Add support for the BCM2711 XHCI controller - BOOT_ORDER 0x5 - Add XHCI protocol layer fixes for non-VLI controllers - Avoid USB MSD timeout of there is only one device - Fix recovery.bin error handler so that the LED error pattern is still displayed even if HDMI or SDRAM fail - Fix GPIO expander reset issue on some Pi4B 1.1 to 1.3 boards - Fix regression for GPIO expander reset change which caused PMIC reset to get card out of 1V8 mode to be missed - Timeout USB MSD commands and move to the next boot mode if a device stops responding - Add support for booting from the BCM2711 XHCI controller which is the USB-C socket on Pi 4B / Pi 400 and the type A sockets on Compute Module 4 IO board - Validate SDRAM in recovery mode raspberrypi-eeprom-2021.04.29-150300.3.3.1.noarch.rpm raspberrypi-eeprom-2021.04.29-150300.3.3.1.src.rpm raspberrypi-eeprom-firmware-2021.04.29-150300.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-525 moderate SUSE Updates openSUSE-SLE 15.3 This update for polkit fixes the following issues: - CVE-2021-4115: Fixed a denial of service via file descriptor leak (bsc#1195542). libpolkit0-0.116-3.9.1.x86_64.rpm libpolkit0-32bit-0.116-3.9.1.x86_64.rpm polkit-0.116-3.9.1.src.rpm polkit-0.116-3.9.1.x86_64.rpm polkit-devel-0.116-3.9.1.x86_64.rpm polkit-doc-0.116-3.9.1.noarch.rpm typelib-1_0-Polkit-1_0-0.116-3.9.1.x86_64.rpm libpolkit0-0.116-3.9.1.s390x.rpm polkit-0.116-3.9.1.s390x.rpm polkit-devel-0.116-3.9.1.s390x.rpm typelib-1_0-Polkit-1_0-0.116-3.9.1.s390x.rpm libpolkit0-0.116-3.9.1.ppc64le.rpm polkit-0.116-3.9.1.ppc64le.rpm polkit-devel-0.116-3.9.1.ppc64le.rpm typelib-1_0-Polkit-1_0-0.116-3.9.1.ppc64le.rpm libpolkit0-0.116-3.9.1.aarch64.rpm polkit-0.116-3.9.1.aarch64.rpm polkit-devel-0.116-3.9.1.aarch64.rpm typelib-1_0-Polkit-1_0-0.116-3.9.1.aarch64.rpm openSUSE-SLE-15.3-2022-675 moderate SUSE Updates openSUSE-SLE 15.3 This update for ldns fixes the following issues: - CVE-2020-19860: Fixed heap-based out of bounds read when verifying a zone file (bsc#1195057). - CVE-2020-19861: Fixed heap-based out of bounds read in ldns_nsec3_salt_data() (bsc#1195058). ldns-1.7.0-4.6.1.src.rpm ldns-1.7.0-4.6.1.x86_64.rpm ldns-devel-1.7.0-4.6.1.x86_64.rpm libldns2-1.7.0-4.6.1.x86_64.rpm perl-DNS-LDNS-1.7.0-4.6.1.x86_64.rpm python3-ldns-1.7.0-4.6.1.x86_64.rpm ldns-1.7.0-4.6.1.s390x.rpm ldns-devel-1.7.0-4.6.1.s390x.rpm libldns2-1.7.0-4.6.1.s390x.rpm perl-DNS-LDNS-1.7.0-4.6.1.s390x.rpm python3-ldns-1.7.0-4.6.1.s390x.rpm ldns-1.7.0-4.6.1.ppc64le.rpm ldns-devel-1.7.0-4.6.1.ppc64le.rpm libldns2-1.7.0-4.6.1.ppc64le.rpm perl-DNS-LDNS-1.7.0-4.6.1.ppc64le.rpm python3-ldns-1.7.0-4.6.1.ppc64le.rpm ldns-1.7.0-4.6.1.aarch64.rpm ldns-devel-1.7.0-4.6.1.aarch64.rpm libldns2-1.7.0-4.6.1.aarch64.rpm perl-DNS-LDNS-1.7.0-4.6.1.aarch64.rpm python3-ldns-1.7.0-4.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-370 critical SUSE Updates openSUSE-SLE 15.3 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-0435: Fixed remote stack overflow in net/tipc module that validate domain record count on input (bsc#1195254). - CVE-2022-0330: Fixed flush TLBs before releasing backing store (bsc#1194880). - CVE-2022-0286: Fixed null pointer dereference in bond_ipsec_add_sa() that may have lead to local denial of service (bnc#1195371). - CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065). - CVE-2021-45095: Fixed refcount leak in pep_sock_accept in net/phonet/pep.c (bnc#1193867). - CVE-2021-44733: Fixed a use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem, that could have occured because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object (bnc#1193767). - CVE-2021-39685: Fixed USB gadget buffer overflow caused by too large endpoint 0 requests (bsc#1193802). - CVE-2021-39657: Fixed out of bounds read due to a missing bounds check in ufshcd_eh_device_reset_handler of ufshcd.c. This could lead to local information disclosure with System execution privileges needed (bnc#1193864). - CVE-2021-39648: Fixed possible disclosure of kernel heap memory due to a race condition in gadget_dev_desc_UDC_show of configfs.c. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1193861). - CVE-2021-22600: Fixed double free bug in packet_set_ring() in net/packet/af_packet.c that could have been exploited by a local user through crafted syscalls to escalate privileges or deny service (bnc#1195184). - CVE-2020-28097: Fixed out-of-bounds read in vgacon subsystem that mishandled software scrollback (bnc#1187723). The following non-security bugs were fixed: - ACPI: battery: Add the ThinkPad "Not Charging" quirk (git-fixes). - ACPICA: Executer: Fix the REFCLASS_REFOF case in acpi_ex_opcode_1A_0T_1R() (git-fixes). - ACPICA: Fix wrong interpretation of PCC address (git-fixes). - ACPICA: Hardware: Do not flush CPU cache when entering S4 and S5 (git-fixes). - ACPICA: Utilities: Avoid deleting the same object twice in a row (git-fixes). - ACPICA: actypes.h: Expand the ACPI_ACCESS_ definitions (git-fixes). - ALSA: seq: Set upper limit of processed events (git-fixes). - ALSA: usb-audio: Correct quirk for VF0770 (git-fixes). - ALSA: usb-audio: initialize variables that could ignore errors (git-fixes). - ASoC: cpcap: Check for NULL pointer after calling of_get_child_by_name (git-fixes). - ASoC: fsl: Add missing error handling in pcm030_fabric_probe (git-fixes). - ASoC: max9759: fix underflow in speaker_gain_control_put() (git-fixes). - ASoC: mediatek: mt8173: fix device_node leak (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Make buffer bytes multiple of period bytes (git-fixes). - Bluetooth: Fix debugfs entry leak in hci_register_dev() (git-fixes). - Bluetooth: refactor malicious adv data check (git-fixes). - Documentation: fix firewire.rst ABI file path error (git-fixes). - HID: apple: Do not reset quirks when the Fn key is not found (git-fixes). - HID: quirks: Allow inverting the absolute X/Y values (git-fixes). - HID: uhid: Fix worker destroying device without any protection (git-fixes). - HID: wacom: Reset expected and received contact counts at the same time (git-fixes). - IB/cm: Avoid a loop when device has 255 ports (git-fixes) - IB/hfi1: Fix error return code in parse_platform_config() (git-fixes) - IB/hfi1: Use kzalloc() for mmu_rb_handler allocation (git-fixes) - IB/isert: Fix a use after free in isert_connect_request (git-fixes) - IB/mlx4: Separate tunnel and wire bufs parameters (git-fixes) - IB/mlx5: Add missing error code (git-fixes) - IB/mlx5: Add mutex destroy call to cap_mask_mutex mutex (git-fixes) - IB/mlx5: Fix error unwinding when set_has_smi_cap fails (git-fixes) - IB/mlx5: Return appropriate error code instead of ENOMEM (git-fixes) - IB/umad: Return EIO in case of when device disassociated (git-fixes) - IB/umad: Return EPOLLERR in case of when device disassociated (git-fixes) - Input: wm97xx: Simplify resource management (git-fixes). - NFS: Ensure the server had an up to date ctime before renaming (git-fixes). - NFSv4: Handle case where the lookup of a directory fails (git-fixes). - NFSv4: nfs_atomic_open() can race when looking up a non-regular file (git-fixes). - PCI: Add function 1 DMA alias quirk for Marvell 88SE9125 SATA controller (git-fixes). - PM: wakeup: simplify the output logic of pm_show_wakelocks() (git-fixes). - RDMA/addr: Be strict with gid size (git-fixes) - RDMA/bnxt_re: Fix a double free in bnxt_qplib_alloc_res (git-fixes) - RDMA/bnxt_re: Fix error return code in bnxt_qplib_cq_process_terminal() (git-fixes) - RDMA/bnxt_re: Set queue pair state when being queried (git-fixes) - RDMA/cm: Fix an attempt to use non-valid pointer when cleaning timewait (git-fixes) - RDMA/core: Clean up cq pool mechanism (jsc#SLE-15176). - RDMA/core: Do not access cm_id after its destruction (git-fixes) - RDMA/core: Do not indicate device ready when device enablement fails (git-fixes) - RDMA/core: Fix corrupted SL on passive side (git-fixes) - RDMA/core: Unify RoCE check and re-factor code (git-fixes) - RDMA/cxgb4: Fix adapter LE hash errors while destroying ipv6 listening server (git-fixes) - RDMA/cxgb4: Fix the reported max_recv_sge value (git-fixes) - RDMA/cxgb4: Validate the number of CQEs (git-fixes) - RDMA/cxgb4: add missing qpid increment (git-fixes) - RDMA/hns: Add a check for current state before modifying QP (git-fixes) - RDMA/hns: Remove the portn field in UD SQ WQE (git-fixes) - RDMA/hns: Remove unnecessary access right set during INIT2INIT (git-fixes) - RDMA/i40iw: Address an mmap handler exploit in i40iw (git-fixes) - RDMA/i40iw: Fix error unwinding when i40iw_hmc_sd_one fails (git-fixes) - RDMA/mlx5: Fix corruption of reg_pages in mlx5_ib_rereg_user_mr() (git-fixes) - RDMA/mlx5: Fix potential race between destroy and CQE poll (git-fixes) - RDMA/mlx5: Fix query DCT via DEVX (git-fixes) - RDMA/mlx5: Fix type warning of sizeof in __mlx5_ib_alloc_counters() (git-fixes) - RDMA/mlx5: Fix wrong free of blue flame register on error (git-fixes) - RDMA/mlx5: Issue FW command to destroy SRQ on reentry (git-fixes) - RDMA/mlx5: Recover from fatal event in dual port mode (git-fixes) - RDMA/mlx5: Use the correct obj_id upon DEVX TIR creation (git-fixes) - RDMA/ocrdma: Fix use after free in ocrdma_dealloc_ucontext_pd() (git-fixes) - RDMA/rxe: Clear all QP fields if creation failed (git-fixes) - RDMA/rxe: Compute PSN windows correctly (git-fixes) - RDMA/rxe: Correct skb on loopback path (git-fixes) - RDMA/rxe: Fix coding error in rxe_rcv_mcast_pkt (git-fixes) - RDMA/rxe: Fix coding error in rxe_recv.c (git-fixes) - RDMA/rxe: Fix missing kconfig dependency on CRYPTO (git-fixes) - RDMA/rxe: Remove the unnecessary variable (jsc#SLE-15176). - RDMA/rxe: Remove useless code in rxe_recv.c (git-fixes) - RDMA/siw: Fix a use after free in siw_alloc_mr (git-fixes) - RDMA/siw: Fix calculation of tx_valid_cpus size (git-fixes) - RDMA/siw: Fix handling of zero-sized Read and Receive Queues. (git-fixes) - RDMA/siw: Properly check send and receive CQ pointers (git-fixes) - RDMA/usnic: Fix memleak in find_free_vf_and_create_qp_grp (git-fixes) - RDMA/uverbs: Fix a NULL vs IS_ERR() bug (git-fixes) - RDMA/uverbs: Tidy input validation of ib_uverbs_rereg_mr() (git-fixes) - RMDA/sw: Do not allow drivers using dma_virt_ops on highmem configs (git-fixes) - USB: core: Fix hang in usb_kill_urb by adding memory barriers (git-fixes). - USB: serial: mos7840: fix probe error handling (git-fixes). - ar5523: Fix null-ptr-deref with unexpected WDCMSG_TARGET_START reply (git-fixes). - arm64: Kconfig: add a choice for endianness (jsc#SLE-23432). - asix: fix wrong return value in asix_check_host_enable() (git-fixes). - ata: pata_platform: Fix a NULL pointer dereference in __pata_platform_probe() (git-fixes). - ath10k: Fix tx hanging (git-fixes). - ath9k: Fix out-of-bound memcpy in ath9k_hif_usb_rx_stream (git-fixes). - batman-adv: allow netlink usage in unprivileged containers (git-fixes). - blk-cgroup: fix missing put device in error path from blkg_conf_pref() (bsc#1195481). - blk-mq: introduce blk_mq_set_request_complete (git-fixes). - bpf: Verifer, adjust_scalar_min_max_vals to always call update_reg_bounds() (bsc#1194227). - btrfs: tree-checker: Add EXTENT_ITEM and METADATA_ITEM check (bsc#1195009). - btrfs: tree-checker: annotate all error branches as unlikely (bsc#1195009). - btrfs: tree-checker: check for BTRFS_BLOCK_FLAG_FULL_BACKREF being set improperly (bsc#1195009). - cgroup/cpuset: Fix a partition bug with hotplug (bsc#1194291). - clk: si5341: Fix clock HW provider cleanup (git-fixes). - crypto: qat - fix undetected PFVF timeout in ACK loop (git-fixes). - dma-buf: heaps: Fix potential spectre v1 gadget (git-fixes). - drm/amdgpu: fixup bad vram size on gmc v8 (git-fixes). - drm/bridge: megachips: Ensure both bridges are probed before registration (git-fixes). - drm/etnaviv: limit submit sizes (git-fixes). - drm/etnaviv: relax submit size limits (git-fixes). - drm/i915/overlay: Prevent divide by zero bugs in scaling (git-fixes). - drm/lima: fix warning when CONFIG_DEBUG_SG=y & CONFIG_DMA_API_DEBUG=y (git-fixes). - drm/msm/dpu: invalid parameter check in dpu_setup_dspp_pcc (git-fixes). - drm/msm/dsi: Fix missing put_device() call in dsi_get_phy (git-fixes). - drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable (git-fixes). - drm/msm/hdmi: Fix missing put_device() call in msm_hdmi_get_phy (git-fixes). - drm/msm: Fix wrong size calculation (git-fixes). - drm/nouveau/kms/nv04: use vzalloc for nv04_display (git-fixes). - drm/nouveau/pmu/gm200-: avoid touching PMU outside of DEVINIT/PREOS/ACR (git-fixes). - drm/nouveau: fix off by one in BIOS boundary checking (git-fixes). - drm: panel-orientation-quirks: Add quirk for the Lenovo Yoga Book X91F/L (git-fixes). - ext4: fix an use-after-free issue about data=journal writeback mode (bsc#1195482). - ext4: make sure quota gets properly shutdown on error (bsc#1195480). - ext4: set csum seed in tmp inode while migrating to extents (bsc#1195267). - floppy: Add max size check for user space request (git-fixes). - fsnotify: fix fsnotify hooks in pseudo filesystems (bsc#1195479). - fsnotify: invalidate dcache before IN_DELETE event (bsc#1195478). - gpio: aspeed: Convert aspeed_gpio.lock to raw_spinlock (git-fixes). - gpiolib: acpi: Do not set the IRQ type if the IRQ is already in use (git-fixes). - hv_netvsc: Set needed_headroom according to VF (bsc#1193506). - hwmom: (lm90) Fix citical alarm status for MAX6680/MAX6681 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6646/6647/6649 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6654 (git-fixes). - hwmon: (lm90) Mark alert as broken for MAX6680 (git-fixes). - hwmon: (lm90) Reduce maximum conversion rate for G781 (git-fixes). - i2c: designware-pci: Fix to change data types of hcnt and lcnt parameters (git-fixes). - i2c: i801: Do not silently correct invalid transfer size (git-fixes). - i2c: mpc: Correct I2C reset procedure (git-fixes). - i40iw: Add support to make destroy QP synchronous (git-fixes) - ibmvnic: Allow extra failures before disabling (bsc#1195073 ltc#195713). - ibmvnic: Update driver return codes (bsc#1195293 ltc#196198). - ibmvnic: do not spin in tasklet (bsc#1195073 ltc#195713). - ibmvnic: init ->running_cap_crqs early (bsc#1195073 ltc#195713). - ibmvnic: remove unused ->wait_capability (bsc#1195073 ltc#195713). - ibmvnic: remove unused defines (bsc#1195293 ltc#196198). - igc: Fix TX timestamp support for non-MSI-X platforms (bsc#1160634). - iwlwifi: fix leaks/bad data after failed firmware load (git-fixes). - iwlwifi: mvm: Fix calculation of frame length (git-fixes). - iwlwifi: mvm: Increase the scan timeout guard to 30 seconds (git-fixes). - iwlwifi: mvm: synchronize with FW after multicast commands (git-fixes). - iwlwifi: remove module loading failure message (git-fixes). - lib82596: Fix IRQ check in sni_82596_probe (git-fixes). - lightnvm: Remove lightnvm implemenation (bsc#1191881). - mac80211: allow non-standard VHT MCS-10/11 (git-fixes). - media: b2c2: Add missing check in flexcop_pci_isr: (git-fixes). - media: coda/imx-vdoa: Handle dma_set_coherent_mask error codes (git-fixes). - media: igorplugusb: receiver overflow should be reported (git-fixes). - media: m920x: do not use stack on USB reads (git-fixes). - media: saa7146: hexium_gemini: Fix a NULL pointer dereference in hexium_attach() (git-fixes). - media: saa7146: hexium_orion: Fix a NULL pointer dereference in hexium_attach() (git-fixes). - media: uvcvideo: Increase UVC_CTRL_CONTROL_TIMEOUT to 5 seconds (git-fixes). - mlxsw: Only advertise link modes supported by both driver and device (bsc#1154488). - mmc: core: Fixup storing of OCR for MMC_QUIRK_NONSTD_SDIO (git-fixes). - mtd: nand: bbt: Fix corner case in bad block table handling (git-fixes). - mtd: rawnand: gpmi: Add ERR007117 protection for nfc_apply_timings (git-fixes). - mtd: rawnand: gpmi: Remove explicit default gpmi clock setting for i.MX6 (git-fixes). - net, xdp: Introduce xdp_init_buff utility routine (bsc#1193506). - net, xdp: Introduce xdp_prepare_buff utility routine (bsc#1193506). - net/mlx5: DR, Proper handling of unsupported Connect-X6DX SW steering (jsc#SLE-8464). - net/mlx5: E-Switch, fix changing vf VLANID (jsc#SLE-15172). - net/mlx5e: Protect encap route dev from concurrent release (jsc#SLE-8464). - net: allow retransmitting a TCP packet if original is still in queue (bsc#1188605 bsc#1187428). - net: bonding: fix bond_xmit_broadcast return value error bug (bsc#1176447). - net: bridge: vlan: fix memory leak in __allowed_ingress (bsc#1176447). - net: bridge: vlan: fix single net device option dumping (bsc#1176447). - net: mana: Add RX fencing (bsc#1193506). - net: mana: Add XDP support (bsc#1193506). - net: sch_generic: aviod concurrent reset and enqueue op for lockless qdisc (bsc#1183405). - net: sched: add barrier to ensure correct ordering for lockless qdisc (bsc#1183405). - net: sched: avoid unnecessary seqcount operation for lockless qdisc (bsc#1183405). - net: sched: fix packet stuck problem for lockless qdisc (bsc#1183405). - net: sched: fix tx action reschedule issue with stopped queue (bsc#1183405). - net: sched: fix tx action rescheduling issue during deactivation (bsc#1183405). - net: sched: replaced invalid qdisc tree flush helper in qdisc_replace (bsc#1183405). - net: sfp: fix high power modules without diagnostic monitoring (bsc#1154353). - netdevsim: set .owner to THIS_MODULE (bsc#1154353). - nfc: llcp: fix NULL error pointer dereference on sendmsg() after failed bind() (git-fixes). - nvme-core: use list_add_tail_rcu instead of list_add_tail for nvme_init_ns_head (git-fixes). - nvme-fabrics: avoid double completions in nvmf_fail_nonready_command (git-fixes). - nvme-fabrics: ignore invalid fast_io_fail_tmo values (git-fixes). - nvme-fabrics: remove superfluous nvmf_host_put in nvmf_parse_options (git-fixes). - nvme-tcp: fix data digest pointer calculation (git-fixes). - nvme-tcp: fix incorrect h2cdata pdu offset accounting (git-fixes). - nvme-tcp: fix memory leak when freeing a queue (git-fixes). - nvme-tcp: fix possible use-after-completion (git-fixes). - nvme-tcp: validate R2T PDU in nvme_tcp_handle_r2t() (git-fixes). - nvme: add 'iopolicy' module parameter (bsc#1177599 bsc#1193096). - nvme: fix use after free when disconnecting a reconnecting ctrl (git-fixes). - nvme: introduce a nvme_host_path_error helper (git-fixes). - nvme: refactor ns->ctrl by request (git-fixes). - phy: uniphier-usb3ss: fix unintended writing zeros to PHY register (git-fixes). - phylib: fix potential use-after-free (git-fixes). - pinctrl: bcm2835: Add support for wake-up interrupts (git-fixes). - pinctrl: bcm2835: Match BCM7211 compatible string (git-fixes). - pinctrl: intel: Fix a glitch when updating IRQ flags on a preconfigured line (git-fixes). - pinctrl: intel: fix unexpected interrupt (git-fixes). - powerpc/book3s64/radix: make tlb_single_page_flush_ceiling a debugfs entry (bsc#1195183 ltc#193865). - powerpc/perf: Fix power_pmu_disable to call clear_pmi_irq_pending only if PMI is pending (bsc#1156395). - regulator: qcom_smd: Align probe function with rpmh-regulator (git-fixes). - rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev (git-fixes). - rpmsg: char: Fix race between the release of rpmsg_eptdev and cdev (git-fixes). - rsi: Fix use-after-free in rsi_rx_done_handler() (git-fixes). - sched/fair: Fix detection of per-CPU kthreads waking a task (git fixes (sched/fair)). - sched/numa: Fix is_core_idle() (git fixes (sched/numa)). - scripts/dtc: dtx_diff: remove broken example from help text (git-fixes). - scripts/dtc: only append to HOST_EXTRACFLAGS instead of overwriting (git-fixes). - serial: 8250: of: Fix mapped region size when using reg-offset property (git-fixes). - serial: Fix incorrect rs485 polarity on uart open (git-fixes). - serial: amba-pl011: do not request memory region twice (git-fixes). - serial: core: Keep mctrl register state and cached copy in sync (git-fixes). - serial: pl010: Drop CR register reset on set_termios (git-fixes). - serial: stm32: fix software flow control transfer (git-fixes). - spi: bcm-qspi: check for valid cs before applying chip select (git-fixes). - spi: mediatek: Avoid NULL pointer crash in interrupt (git-fixes). - spi: meson-spicc: add IRQ check in meson_spicc_probe (git-fixes). - supported.conf: mark rtw88 modules as supported (jsc#SLE-22690) - tty: Add support for Brainboxes UC cards (git-fixes). - tty: n_gsm: fix SW flow control encoding/handling (git-fixes). - ucsi_ccg: Check DEV_INT bit only when starting CCG4 (git-fixes). - udf: Fix NULL ptr deref when converting from inline format (bsc#1195476). - udf: Restore i_lenAlloc when inode expansion fails (bsc#1195477). - usb-storage: Add unusual-devs entry for VL817 USB-SATA bridge (git-fixes). - usb: common: ulpi: Fix crash in ulpi_match() (git-fixes). - usb: gadget: f_fs: Use stream_open() for endpoint files (git-fixes). - usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_SUPER_PLUS (git-fixes). - usb: hub: Add delay for SuperSpeed hub resume to let links transit to U0 (git-fixes). - usb: roles: fix include/linux/usb/role.h compile issue (git-fixes). - usb: typec: tcpm: Do not disconnect while receiving VBUS off (git-fixes). - usb: uhci: add aspeed ast2600 uhci support (git-fixes). - vfio/iommu_type1: replace kfree with kvfree (git-fixes). - video: hyperv_fb: Fix validation of screen resolution (git-fixes). - vxlan: fix error return code in __vxlan_dev_create() (bsc#1154353). - workqueue: Fix unbind_workers() VS wq_worker_running() race (bsc#1195062). - x86/gpu: Reserve stolen memory for first integrated Intel GPU (git-fixes). - xfrm: fix MTU regression (bsc#1185377, bsc#1194048). - xhci-pci: Allow host runtime PM as default for Intel Alpine Ridge LP (git-fixes). cluster-md-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True dlm-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True gfs2-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True kernel-debug-5.3.18-150300.59.49.1.nosrc.rpm True kernel-debug-5.3.18-150300.59.49.1.x86_64.rpm True kernel-debug-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-5.3.18-150300.59.49.1.nosrc.rpm True kernel-default-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.src.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.x86_64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.49.1.150300.18.31.1.x86_64.rpm True kernel-default-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-extra-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-livepatch-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-default-optional-5.3.18-150300.59.49.1.x86_64.rpm True kernel-devel-5.3.18-150300.59.49.1.noarch.rpm True kernel-docs-5.3.18-150300.59.49.1.noarch.rpm True kernel-docs-5.3.18-150300.59.49.1.nosrc.rpm True kernel-docs-html-5.3.18-150300.59.49.1.noarch.rpm True kernel-kvmsmall-5.3.18-150300.59.49.1.nosrc.rpm True kernel-kvmsmall-5.3.18-150300.59.49.1.x86_64.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-macros-5.3.18-150300.59.49.1.noarch.rpm True kernel-obs-build-5.3.18-150300.59.49.1.src.rpm True kernel-obs-build-5.3.18-150300.59.49.1.x86_64.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.src.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.49.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.49.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.49.1.x86_64.rpm True kernel-source-5.3.18-150300.59.49.1.noarch.rpm True kernel-source-5.3.18-150300.59.49.1.src.rpm True kernel-source-vanilla-5.3.18-150300.59.49.1.noarch.rpm True kernel-syms-5.3.18-150300.59.49.1.src.rpm True kernel-syms-5.3.18-150300.59.49.1.x86_64.rpm True kselftests-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True ocfs2-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True reiserfs-kmp-default-5.3.18-150300.59.49.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.49.1.x86_64.rpm True cluster-md-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True dlm-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True gfs2-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.s390x.rpm True kernel-default-base-rebuild-5.3.18-150300.59.49.1.150300.18.31.1.s390x.rpm True kernel-default-devel-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-extra-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-livepatch-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.49.1.s390x.rpm True kernel-default-optional-5.3.18-150300.59.49.1.s390x.rpm True kernel-obs-build-5.3.18-150300.59.49.1.s390x.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.s390x.rpm True kernel-syms-5.3.18-150300.59.49.1.s390x.rpm True kernel-zfcpdump-5.3.18-150300.59.49.1.nosrc.rpm True kernel-zfcpdump-5.3.18-150300.59.49.1.s390x.rpm True kselftests-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True ocfs2-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True reiserfs-kmp-default-5.3.18-150300.59.49.1.s390x.rpm True cluster-md-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True dlm-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True gfs2-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-debug-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-debug-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.ppc64le.rpm True kernel-default-base-rebuild-5.3.18-150300.59.49.1.150300.18.31.1.ppc64le.rpm True kernel-default-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-extra-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-livepatch-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-default-optional-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-kvmsmall-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-kvmsmall-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-obs-build-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.ppc64le.rpm True kernel-syms-5.3.18-150300.59.49.1.ppc64le.rpm True kselftests-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True ocfs2-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True reiserfs-kmp-default-5.3.18-150300.59.49.1.ppc64le.rpm True cluster-md-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True cluster-md-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True dlm-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True dlm-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.49.1.src.rpm True dtb-al-5.3.18-150300.59.49.1.aarch64.rpm True dtb-allwinner-5.3.18-150300.59.49.1.aarch64.rpm True dtb-altera-5.3.18-150300.59.49.1.aarch64.rpm True dtb-amd-5.3.18-150300.59.49.1.aarch64.rpm True dtb-amlogic-5.3.18-150300.59.49.1.aarch64.rpm True dtb-apm-5.3.18-150300.59.49.1.aarch64.rpm True dtb-arm-5.3.18-150300.59.49.1.aarch64.rpm True dtb-broadcom-5.3.18-150300.59.49.1.aarch64.rpm True dtb-cavium-5.3.18-150300.59.49.1.aarch64.rpm True dtb-exynos-5.3.18-150300.59.49.1.aarch64.rpm True dtb-freescale-5.3.18-150300.59.49.1.aarch64.rpm True dtb-hisilicon-5.3.18-150300.59.49.1.aarch64.rpm True dtb-lg-5.3.18-150300.59.49.1.aarch64.rpm True dtb-marvell-5.3.18-150300.59.49.1.aarch64.rpm True dtb-mediatek-5.3.18-150300.59.49.1.aarch64.rpm True dtb-nvidia-5.3.18-150300.59.49.1.aarch64.rpm True dtb-qcom-5.3.18-150300.59.49.1.aarch64.rpm True dtb-renesas-5.3.18-150300.59.49.1.aarch64.rpm True dtb-rockchip-5.3.18-150300.59.49.1.aarch64.rpm True dtb-socionext-5.3.18-150300.59.49.1.aarch64.rpm True dtb-sprd-5.3.18-150300.59.49.1.aarch64.rpm True dtb-xilinx-5.3.18-150300.59.49.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.49.1.aarch64.rpm True gfs2-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True gfs2-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-5.3.18-150300.59.49.1.nosrc.rpm True kernel-64kb-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-extra-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-64kb-optional-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-base-5.3.18-150300.59.49.1.150300.18.31.1.aarch64.rpm True kernel-default-base-rebuild-5.3.18-150300.59.49.1.150300.18.31.1.aarch64.rpm True kernel-default-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-extra-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-livepatch-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-livepatch-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-default-optional-5.3.18-150300.59.49.1.aarch64.rpm True kernel-obs-build-5.3.18-150300.59.49.1.aarch64.rpm True kernel-obs-qa-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.49.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.49.1.aarch64.rpm True kernel-syms-5.3.18-150300.59.49.1.aarch64.rpm True kselftests-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True kselftests-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True ocfs2-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True ocfs2-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True reiserfs-kmp-64kb-5.3.18-150300.59.49.1.aarch64.rpm True reiserfs-kmp-default-5.3.18-150300.59.49.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.49.1.aarch64.rpm True openSUSE-SLE-15.3-2022-539 moderate SUSE Updates openSUSE-SLE 15.3 This update for systemd fixes the following issues: - CVE-2021-3997: Fixed an uncontrolled recursion in systemd's systemd-tmpfiles (bsc#1194178). The following non-security bugs were fixed: - udev/net_id: don't generate slot based names if multiple devices might claim the same slot (bsc#1192637) - localectl: don't omit keymaps files that are symlinks (bsc#1191826) libsystemd0-246.16-150300.7.39.1.x86_64.rpm libsystemd0-32bit-246.16-150300.7.39.1.x86_64.rpm libudev-devel-246.16-150300.7.39.1.x86_64.rpm libudev-devel-32bit-246.16-150300.7.39.1.x86_64.rpm libudev1-246.16-150300.7.39.1.x86_64.rpm libudev1-32bit-246.16-150300.7.39.1.x86_64.rpm nss-myhostname-246.16-150300.7.39.1.x86_64.rpm nss-myhostname-32bit-246.16-150300.7.39.1.x86_64.rpm nss-mymachines-246.16-150300.7.39.1.x86_64.rpm nss-mymachines-32bit-246.16-150300.7.39.1.x86_64.rpm nss-resolve-246.16-150300.7.39.1.x86_64.rpm nss-systemd-246.16-150300.7.39.1.x86_64.rpm systemd-246.16-150300.7.39.1.src.rpm systemd-246.16-150300.7.39.1.x86_64.rpm systemd-32bit-246.16-150300.7.39.1.x86_64.rpm systemd-container-246.16-150300.7.39.1.x86_64.rpm systemd-coredump-246.16-150300.7.39.1.x86_64.rpm systemd-devel-246.16-150300.7.39.1.x86_64.rpm systemd-doc-246.16-150300.7.39.1.x86_64.rpm systemd-journal-remote-246.16-150300.7.39.1.x86_64.rpm systemd-lang-246.16-150300.7.39.1.noarch.rpm systemd-logger-246.16-150300.7.39.1.x86_64.rpm systemd-network-246.16-150300.7.39.1.x86_64.rpm systemd-sysvinit-246.16-150300.7.39.1.x86_64.rpm udev-246.16-150300.7.39.1.x86_64.rpm libsystemd0-246.16-150300.7.39.1.s390x.rpm libudev-devel-246.16-150300.7.39.1.s390x.rpm libudev1-246.16-150300.7.39.1.s390x.rpm nss-myhostname-246.16-150300.7.39.1.s390x.rpm nss-mymachines-246.16-150300.7.39.1.s390x.rpm nss-resolve-246.16-150300.7.39.1.s390x.rpm nss-systemd-246.16-150300.7.39.1.s390x.rpm systemd-246.16-150300.7.39.1.s390x.rpm systemd-container-246.16-150300.7.39.1.s390x.rpm systemd-coredump-246.16-150300.7.39.1.s390x.rpm systemd-devel-246.16-150300.7.39.1.s390x.rpm systemd-doc-246.16-150300.7.39.1.s390x.rpm systemd-journal-remote-246.16-150300.7.39.1.s390x.rpm systemd-logger-246.16-150300.7.39.1.s390x.rpm systemd-network-246.16-150300.7.39.1.s390x.rpm systemd-sysvinit-246.16-150300.7.39.1.s390x.rpm udev-246.16-150300.7.39.1.s390x.rpm libsystemd0-246.16-150300.7.39.1.ppc64le.rpm libudev-devel-246.16-150300.7.39.1.ppc64le.rpm libudev1-246.16-150300.7.39.1.ppc64le.rpm nss-myhostname-246.16-150300.7.39.1.ppc64le.rpm nss-mymachines-246.16-150300.7.39.1.ppc64le.rpm nss-resolve-246.16-150300.7.39.1.ppc64le.rpm nss-systemd-246.16-150300.7.39.1.ppc64le.rpm systemd-246.16-150300.7.39.1.ppc64le.rpm systemd-container-246.16-150300.7.39.1.ppc64le.rpm systemd-coredump-246.16-150300.7.39.1.ppc64le.rpm systemd-devel-246.16-150300.7.39.1.ppc64le.rpm systemd-doc-246.16-150300.7.39.1.ppc64le.rpm systemd-journal-remote-246.16-150300.7.39.1.ppc64le.rpm systemd-logger-246.16-150300.7.39.1.ppc64le.rpm systemd-network-246.16-150300.7.39.1.ppc64le.rpm systemd-sysvinit-246.16-150300.7.39.1.ppc64le.rpm udev-246.16-150300.7.39.1.ppc64le.rpm libsystemd0-246.16-150300.7.39.1.aarch64.rpm libudev-devel-246.16-150300.7.39.1.aarch64.rpm libudev1-246.16-150300.7.39.1.aarch64.rpm nss-myhostname-246.16-150300.7.39.1.aarch64.rpm nss-mymachines-246.16-150300.7.39.1.aarch64.rpm nss-resolve-246.16-150300.7.39.1.aarch64.rpm nss-systemd-246.16-150300.7.39.1.aarch64.rpm systemd-246.16-150300.7.39.1.aarch64.rpm systemd-container-246.16-150300.7.39.1.aarch64.rpm systemd-coredump-246.16-150300.7.39.1.aarch64.rpm systemd-devel-246.16-150300.7.39.1.aarch64.rpm systemd-doc-246.16-150300.7.39.1.aarch64.rpm systemd-journal-remote-246.16-150300.7.39.1.aarch64.rpm systemd-logger-246.16-150300.7.39.1.aarch64.rpm systemd-network-246.16-150300.7.39.1.aarch64.rpm systemd-sysvinit-246.16-150300.7.39.1.aarch64.rpm udev-246.16-150300.7.39.1.aarch64.rpm openSUSE-SLE-15.3-2022-540 moderate SUSE Updates openSUSE-SLE 15.3 This update for ImageMagick fixes the following issues: - CVE-2022-0284: Fixed heap buffer overread in GetPixelAlpha() in MagickCore/pixel-accessor.h (bsc#1195563). ImageMagick-7.0.7.34-10.21.1.src.rpm ImageMagick-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-config-7-upstream-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-devel-32bit-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-devel-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-doc-7.0.7.34-10.21.1.noarch.rpm ImageMagick-extra-7.0.7.34-10.21.1.x86_64.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-10.21.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.21.1.x86_64.rpm libMagick++-devel-32bit-7.0.7.34-10.21.1.x86_64.rpm libMagick++-devel-7.0.7.34-10.21.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-10.21.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.21.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-10.21.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.21.1.x86_64.rpm perl-PerlMagick-7.0.7.34-10.21.1.x86_64.rpm ImageMagick-7.0.7.34-10.21.1.s390x.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.21.1.s390x.rpm ImageMagick-config-7-upstream-7.0.7.34-10.21.1.s390x.rpm ImageMagick-devel-7.0.7.34-10.21.1.s390x.rpm ImageMagick-extra-7.0.7.34-10.21.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.21.1.s390x.rpm libMagick++-devel-7.0.7.34-10.21.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.21.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.21.1.s390x.rpm perl-PerlMagick-7.0.7.34-10.21.1.s390x.rpm ImageMagick-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-config-7-upstream-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-devel-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-extra-7.0.7.34-10.21.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.21.1.ppc64le.rpm libMagick++-devel-7.0.7.34-10.21.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.21.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.21.1.ppc64le.rpm perl-PerlMagick-7.0.7.34-10.21.1.ppc64le.rpm ImageMagick-7.0.7.34-10.21.1.aarch64.rpm ImageMagick-config-7-SUSE-7.0.7.34-10.21.1.aarch64.rpm ImageMagick-config-7-upstream-7.0.7.34-10.21.1.aarch64.rpm ImageMagick-devel-7.0.7.34-10.21.1.aarch64.rpm ImageMagick-extra-7.0.7.34-10.21.1.aarch64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-10.21.1.aarch64.rpm libMagick++-devel-7.0.7.34-10.21.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-10.21.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-10.21.1.aarch64.rpm perl-PerlMagick-7.0.7.34-10.21.1.aarch64.rpm openSUSE-SLE-15.3-2022-373 moderate SUSE Updates openSUSE-SLE 15.3 This update for rpmlint fixes the following issues: - Whitelisting `kdenetwork-filesharing`. (bsc#1195548) - Whitelisting of `powerdevil5`. (bsc#1195662) - Whitelisting of `plasma5-disks`. (bsc#1195491) rpmlint-1.10-7.38.1.noarch.rpm rpmlint-1.10-7.38.1.src.rpm openSUSE-SLE-15.3-2022-384 moderate SUSE Updates openSUSE-SLE 15.3 This update for python-python-docs-theme fixes the following issues: - Switch to setup.py based installation for compatibility with old SLE distros. - Update to 2022.1: - Add a configuration for license URL. - Exclude the floating navbar from CHM help. - Make sidebar scrollable and sticky (on modern browsers) - Fix monospace again, on buggy Google Chrome - Add the copyright_url variable in the theme - Improve readability - Remove #searchbox on mobile to fix a layout bug - Fix the appearance of version/language selects - Make the theme responsive - Use default pygments theme - Test Github action to validate the theme against docsbuild scripts. - Add the copy button to pycon3 highlighted code blocks. - Updated the readme, to remind user to install the package in a virtual environment. - Updated the package url, using the GitHub repository instead of docs.python.org - Added license information to the footer of the doc - Fixed typo in the footer - Added information on how to use the package - Fixed code formatting - Fixed code bgcolor and codetextcolor for Sphinx 3.1.0+ python-python-docs-theme-2022.1-150300.3.3.1.src.rpm python3-python-docs-theme-2022.1-150300.3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-716 important SUSE Updates openSUSE-SLE 15.3 This update for wpa_supplicant fixes the following issues: - CVE-2022-23303: Fixed side-channel attacks in SAE (bsc#1194732). - CVE-2022-23304: Fixed side-channel attacks in EAP-pwd (bsc#1194733). wpa_supplicant-2.9-4.33.1.src.rpm wpa_supplicant-2.9-4.33.1.x86_64.rpm wpa_supplicant-gui-2.9-4.33.1.x86_64.rpm wpa_supplicant-2.9-4.33.1.s390x.rpm wpa_supplicant-gui-2.9-4.33.1.s390x.rpm wpa_supplicant-2.9-4.33.1.ppc64le.rpm wpa_supplicant-gui-2.9-4.33.1.ppc64le.rpm wpa_supplicant-2.9-4.33.1.aarch64.rpm wpa_supplicant-gui-2.9-4.33.1.aarch64.rpm openSUSE-SLE-15.3-2022-696 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.6.0 ESR / MFSA 2022-05 (bsc#1195682) - CVE-2022-22753: Privilege Escalation to SYSTEM on Windows via Maintenance Service - CVE-2022-22754: Extensions could have bypassed permission confirmation during update - CVE-2022-22756: Drag and dropping an image could have resulted in the dropped object being an executable - CVE-2022-22759: Sandboxed iframes could have executed script if the parent appended elements - CVE-2022-22760: Cross-Origin responses could be distinguished between script and non-script content-types - CVE-2022-22761: frame-ancestors Content Security Policy directive was not enforced for framed extension pages - CVE-2022-22763: Script Execution during invalid object state - CVE-2022-22764: Memory safety bugs fixed in Firefox 97 and Firefox ESR 91.6 Firefox Extended Support Release 91.5.1 ESR (bsc#1195230) - Fixed an issue that allowed unexpected data to be submitted in some of our search telemetry MozillaFirefox-91.6.0-152.15.1.src.rpm MozillaFirefox-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-branding-upstream-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-devel-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-translations-common-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-translations-other-91.6.0-152.15.1.x86_64.rpm MozillaFirefox-91.6.0-152.15.1.s390x.rpm MozillaFirefox-branding-upstream-91.6.0-152.15.1.s390x.rpm MozillaFirefox-devel-91.6.0-152.15.1.s390x.rpm MozillaFirefox-translations-common-91.6.0-152.15.1.s390x.rpm MozillaFirefox-translations-other-91.6.0-152.15.1.s390x.rpm MozillaFirefox-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-devel-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-translations-common-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-translations-other-91.6.0-152.15.1.ppc64le.rpm MozillaFirefox-91.6.0-152.15.1.aarch64.rpm MozillaFirefox-branding-upstream-91.6.0-152.15.1.aarch64.rpm MozillaFirefox-devel-91.6.0-152.15.1.aarch64.rpm MozillaFirefox-translations-common-91.6.0-152.15.1.aarch64.rpm MozillaFirefox-translations-other-91.6.0-152.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-718 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for duperemove fixes the following issue: Update from version 0.11.beta4 to version 0.11.3 (jsc#SLE-11306) - Increase open file limit. - Create hash database file with 600 permission for improved security. - Read more data per pread, for v2 hashfile format this reduces the overall number of syscalls made which in turns results in better performance. - Fix truncated file handling, eliminating a an infinite loop case. btrfs-extent-same-0.11.3-3.3.1.x86_64.rpm duperemove-0.11.3-3.3.1.src.rpm duperemove-0.11.3-3.3.1.x86_64.rpm btrfs-extent-same-0.11.3-3.3.1.s390x.rpm duperemove-0.11.3-3.3.1.s390x.rpm btrfs-extent-same-0.11.3-3.3.1.ppc64le.rpm duperemove-0.11.3-3.3.1.ppc64le.rpm btrfs-extent-same-0.11.3-3.3.1.aarch64.rpm duperemove-0.11.3-3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-692 moderate SUSE Updates openSUSE-SLE 15.3 This update for filesystem fixes the following issues: - Release ported filesystem to LTSS channels (bsc#1190447). filesystem-15.0-11.5.1.src.rpm filesystem-15.0-11.5.1.x86_64.rpm filesystem-15.0-11.5.1.s390x.rpm filesystem-15.0-11.5.1.ppc64le.rpm filesystem-15.0-11.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-503 important SUSE Updates openSUSE-SLE 15.3 This update for xerces-j2 fixes the following issues: - CVE-2022-23437: Fixed infinite loop within Apache XercesJ xml parser (bsc#1195108). xerces-j2-2.12.0-3.3.1.noarch.rpm xerces-j2-2.12.0-3.3.1.src.rpm xerces-j2-demo-2.12.0-3.3.1.noarch.rpm xerces-j2-javadoc-2.12.0-3.3.1.noarch.rpm openSUSE-SLE-15.3-2022-500 important SUSE Updates openSUSE-SLE 15.3 This update for xerces-j2 fixes the following issues: - CVE-2022-23437: Fixed infinite loop within Apache XercesJ xml parser (bsc#1195108). xerces-j2-2.11.0-4.3.1.src.rpm xerces-j2-scripts-2.11.0-4.3.1.noarch.rpm xerces-j2-xml-apis-2.11.0-4.3.1.noarch.rpm xerces-j2-xml-resolver-2.11.0-4.3.1.noarch.rpm openSUSE-SLE-15.3-2022-499 important SUSE Updates openSUSE-SLE 15.3 This update for python-Twisted fixes the following issues: - CVE-2022-21712: Fixed secret exposure in cross-origin redirects by properly removing sensitive headers when redirecting to a different origin (bsc#1195667). python-Twisted-19.10.0-3.6.1.src.rpm python-Twisted-doc-19.10.0-3.6.1.x86_64.rpm python2-Twisted-19.10.0-3.6.1.x86_64.rpm python3-Twisted-19.10.0-3.6.1.x86_64.rpm python-Twisted-doc-19.10.0-3.6.1.s390x.rpm python2-Twisted-19.10.0-3.6.1.s390x.rpm python3-Twisted-19.10.0-3.6.1.s390x.rpm python-Twisted-doc-19.10.0-3.6.1.ppc64le.rpm python2-Twisted-19.10.0-3.6.1.ppc64le.rpm python3-Twisted-19.10.0-3.6.1.ppc64le.rpm python-Twisted-doc-19.10.0-3.6.1.aarch64.rpm python2-Twisted-19.10.0-3.6.1.aarch64.rpm python3-Twisted-19.10.0-3.6.1.aarch64.rpm openSUSE-SLE-15.3-2022-574 important SUSE Updates openSUSE-SLE 15.3 This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220207 release. - CVE-2021-0146: Fixed a potential security vulnerability in some Intel Processors may allow escalation of privilege (bsc#1192615) - CVE-2021-0127: Intel Processor Breakpoint Control Flow (bsc#1195779) - CVE-2021-0145: Fast store forward predictor - Cross Domain Training (bsc#1195780) - CVE-2021-33120: Out of bounds read for some Intel Atom processors (bsc#1195781) - Security updates for [INTEL-SA-00528](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00528.html) - Security updates for [INTEL-SA-00532](https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00532.html) ucode-intel-20220207-10.1.src.rpm ucode-intel-20220207-10.1.x86_64.rpm openSUSE-SLE-15.3-2022-562 moderate SUSE Updates openSUSE-SLE 15.3 This update for jasper fixes the following issues: - CVE-2021-27845: Fixed divide-by-zery issue in cp_create() (bsc#1188437). jasper-2.0.14-3.22.1.src.rpm jasper-2.0.14-3.22.1.x86_64.rpm libjasper-devel-2.0.14-3.22.1.x86_64.rpm libjasper4-2.0.14-3.22.1.x86_64.rpm libjasper4-32bit-2.0.14-3.22.1.x86_64.rpm jasper-2.0.14-3.22.1.s390x.rpm libjasper-devel-2.0.14-3.22.1.s390x.rpm libjasper4-2.0.14-3.22.1.s390x.rpm jasper-2.0.14-3.22.1.ppc64le.rpm libjasper-devel-2.0.14-3.22.1.ppc64le.rpm libjasper4-2.0.14-3.22.1.ppc64le.rpm jasper-2.0.14-3.22.1.aarch64.rpm libjasper-devel-2.0.14-3.22.1.aarch64.rpm libjasper4-2.0.14-3.22.1.aarch64.rpm openSUSE-SLE-15.3-2022-528 moderate SUSE Updates openSUSE-SLE 15.3 This update for resource-agents fixes the following issues: - Provide a way to manage autofs mounts from within the HA Filesystem Resource Agent script. (jsc#SLE-23739) ldirectord-4.8.0+git30.d0077df0-150300.8.20.1.x86_64.rpm monitoring-plugins-metadata-4.8.0+git30.d0077df0-150300.8.20.1.noarch.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.src.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.x86_64.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.20.1.s390x.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.s390x.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.20.1.ppc64le.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.ppc64le.rpm ldirectord-4.8.0+git30.d0077df0-150300.8.20.1.aarch64.rpm resource-agents-4.8.0+git30.d0077df0-150300.8.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-699 moderate SUSE Updates openSUSE-SLE 15.3 This update for php7 fixes the following issues: - CVE-2017-8923: Fixed denial of service (application crash) when using .= with a long string (zend_string_extend func in Zend/zend_string.h) (bsc#1038980). apache2-mod_php7-7.4.6-3.32.1.x86_64.rpm php7-7.4.6-3.32.1.src.rpm php7-7.4.6-3.32.1.x86_64.rpm php7-bcmath-7.4.6-3.32.1.x86_64.rpm php7-bz2-7.4.6-3.32.1.x86_64.rpm php7-calendar-7.4.6-3.32.1.x86_64.rpm php7-ctype-7.4.6-3.32.1.x86_64.rpm php7-curl-7.4.6-3.32.1.x86_64.rpm php7-dba-7.4.6-3.32.1.x86_64.rpm php7-devel-7.4.6-3.32.1.x86_64.rpm php7-dom-7.4.6-3.32.1.x86_64.rpm php7-embed-7.4.6-3.32.1.x86_64.rpm php7-enchant-7.4.6-3.32.1.x86_64.rpm php7-exif-7.4.6-3.32.1.x86_64.rpm php7-fastcgi-7.4.6-3.32.1.x86_64.rpm php7-fileinfo-7.4.6-3.32.1.x86_64.rpm php7-firebird-7.4.6-3.32.1.x86_64.rpm php7-fpm-7.4.6-3.32.1.x86_64.rpm php7-ftp-7.4.6-3.32.1.x86_64.rpm php7-gd-7.4.6-3.32.1.x86_64.rpm php7-gettext-7.4.6-3.32.1.x86_64.rpm php7-gmp-7.4.6-3.32.1.x86_64.rpm php7-iconv-7.4.6-3.32.1.x86_64.rpm php7-intl-7.4.6-3.32.1.x86_64.rpm php7-json-7.4.6-3.32.1.x86_64.rpm php7-ldap-7.4.6-3.32.1.x86_64.rpm php7-mbstring-7.4.6-3.32.1.x86_64.rpm php7-mysql-7.4.6-3.32.1.x86_64.rpm php7-odbc-7.4.6-3.32.1.x86_64.rpm php7-opcache-7.4.6-3.32.1.x86_64.rpm php7-openssl-7.4.6-3.32.1.x86_64.rpm php7-pcntl-7.4.6-3.32.1.x86_64.rpm php7-pdo-7.4.6-3.32.1.x86_64.rpm php7-pgsql-7.4.6-3.32.1.x86_64.rpm php7-phar-7.4.6-3.32.1.x86_64.rpm php7-posix-7.4.6-3.32.1.x86_64.rpm php7-readline-7.4.6-3.32.1.x86_64.rpm php7-shmop-7.4.6-3.32.1.x86_64.rpm php7-snmp-7.4.6-3.32.1.x86_64.rpm php7-soap-7.4.6-3.32.1.x86_64.rpm php7-sockets-7.4.6-3.32.1.x86_64.rpm php7-sodium-7.4.6-3.32.1.x86_64.rpm php7-sqlite-7.4.6-3.32.1.x86_64.rpm php7-sysvmsg-7.4.6-3.32.1.x86_64.rpm php7-sysvsem-7.4.6-3.32.1.x86_64.rpm php7-sysvshm-7.4.6-3.32.1.x86_64.rpm php7-test-7.4.6-3.32.1.src.rpm php7-test-7.4.6-3.32.1.x86_64.rpm php7-tidy-7.4.6-3.32.1.x86_64.rpm php7-tokenizer-7.4.6-3.32.1.x86_64.rpm php7-xmlreader-7.4.6-3.32.1.x86_64.rpm php7-xmlrpc-7.4.6-3.32.1.x86_64.rpm php7-xmlwriter-7.4.6-3.32.1.x86_64.rpm php7-xsl-7.4.6-3.32.1.x86_64.rpm php7-zip-7.4.6-3.32.1.x86_64.rpm php7-zlib-7.4.6-3.32.1.x86_64.rpm apache2-mod_php7-7.4.6-3.32.1.s390x.rpm php7-7.4.6-3.32.1.s390x.rpm php7-bcmath-7.4.6-3.32.1.s390x.rpm php7-bz2-7.4.6-3.32.1.s390x.rpm php7-calendar-7.4.6-3.32.1.s390x.rpm php7-ctype-7.4.6-3.32.1.s390x.rpm php7-curl-7.4.6-3.32.1.s390x.rpm php7-dba-7.4.6-3.32.1.s390x.rpm php7-devel-7.4.6-3.32.1.s390x.rpm php7-dom-7.4.6-3.32.1.s390x.rpm php7-embed-7.4.6-3.32.1.s390x.rpm php7-enchant-7.4.6-3.32.1.s390x.rpm php7-exif-7.4.6-3.32.1.s390x.rpm php7-fastcgi-7.4.6-3.32.1.s390x.rpm php7-fileinfo-7.4.6-3.32.1.s390x.rpm php7-firebird-7.4.6-3.32.1.s390x.rpm php7-fpm-7.4.6-3.32.1.s390x.rpm php7-ftp-7.4.6-3.32.1.s390x.rpm php7-gd-7.4.6-3.32.1.s390x.rpm php7-gettext-7.4.6-3.32.1.s390x.rpm php7-gmp-7.4.6-3.32.1.s390x.rpm php7-iconv-7.4.6-3.32.1.s390x.rpm php7-intl-7.4.6-3.32.1.s390x.rpm php7-json-7.4.6-3.32.1.s390x.rpm php7-ldap-7.4.6-3.32.1.s390x.rpm php7-mbstring-7.4.6-3.32.1.s390x.rpm php7-mysql-7.4.6-3.32.1.s390x.rpm php7-odbc-7.4.6-3.32.1.s390x.rpm php7-opcache-7.4.6-3.32.1.s390x.rpm php7-openssl-7.4.6-3.32.1.s390x.rpm php7-pcntl-7.4.6-3.32.1.s390x.rpm php7-pdo-7.4.6-3.32.1.s390x.rpm php7-pgsql-7.4.6-3.32.1.s390x.rpm php7-phar-7.4.6-3.32.1.s390x.rpm php7-posix-7.4.6-3.32.1.s390x.rpm php7-readline-7.4.6-3.32.1.s390x.rpm php7-shmop-7.4.6-3.32.1.s390x.rpm php7-snmp-7.4.6-3.32.1.s390x.rpm php7-soap-7.4.6-3.32.1.s390x.rpm php7-sockets-7.4.6-3.32.1.s390x.rpm php7-sodium-7.4.6-3.32.1.s390x.rpm php7-sqlite-7.4.6-3.32.1.s390x.rpm php7-sysvmsg-7.4.6-3.32.1.s390x.rpm php7-sysvsem-7.4.6-3.32.1.s390x.rpm php7-sysvshm-7.4.6-3.32.1.s390x.rpm php7-test-7.4.6-3.32.1.s390x.rpm php7-tidy-7.4.6-3.32.1.s390x.rpm php7-tokenizer-7.4.6-3.32.1.s390x.rpm php7-xmlreader-7.4.6-3.32.1.s390x.rpm php7-xmlrpc-7.4.6-3.32.1.s390x.rpm php7-xmlwriter-7.4.6-3.32.1.s390x.rpm php7-xsl-7.4.6-3.32.1.s390x.rpm php7-zip-7.4.6-3.32.1.s390x.rpm php7-zlib-7.4.6-3.32.1.s390x.rpm apache2-mod_php7-7.4.6-3.32.1.ppc64le.rpm php7-7.4.6-3.32.1.ppc64le.rpm php7-bcmath-7.4.6-3.32.1.ppc64le.rpm php7-bz2-7.4.6-3.32.1.ppc64le.rpm php7-calendar-7.4.6-3.32.1.ppc64le.rpm php7-ctype-7.4.6-3.32.1.ppc64le.rpm php7-curl-7.4.6-3.32.1.ppc64le.rpm php7-dba-7.4.6-3.32.1.ppc64le.rpm php7-devel-7.4.6-3.32.1.ppc64le.rpm php7-dom-7.4.6-3.32.1.ppc64le.rpm php7-embed-7.4.6-3.32.1.ppc64le.rpm php7-enchant-7.4.6-3.32.1.ppc64le.rpm php7-exif-7.4.6-3.32.1.ppc64le.rpm php7-fastcgi-7.4.6-3.32.1.ppc64le.rpm php7-fileinfo-7.4.6-3.32.1.ppc64le.rpm php7-firebird-7.4.6-3.32.1.ppc64le.rpm php7-fpm-7.4.6-3.32.1.ppc64le.rpm php7-ftp-7.4.6-3.32.1.ppc64le.rpm php7-gd-7.4.6-3.32.1.ppc64le.rpm php7-gettext-7.4.6-3.32.1.ppc64le.rpm php7-gmp-7.4.6-3.32.1.ppc64le.rpm php7-iconv-7.4.6-3.32.1.ppc64le.rpm php7-intl-7.4.6-3.32.1.ppc64le.rpm php7-json-7.4.6-3.32.1.ppc64le.rpm php7-ldap-7.4.6-3.32.1.ppc64le.rpm php7-mbstring-7.4.6-3.32.1.ppc64le.rpm php7-mysql-7.4.6-3.32.1.ppc64le.rpm php7-odbc-7.4.6-3.32.1.ppc64le.rpm php7-opcache-7.4.6-3.32.1.ppc64le.rpm php7-openssl-7.4.6-3.32.1.ppc64le.rpm php7-pcntl-7.4.6-3.32.1.ppc64le.rpm php7-pdo-7.4.6-3.32.1.ppc64le.rpm php7-pgsql-7.4.6-3.32.1.ppc64le.rpm php7-phar-7.4.6-3.32.1.ppc64le.rpm php7-posix-7.4.6-3.32.1.ppc64le.rpm php7-readline-7.4.6-3.32.1.ppc64le.rpm php7-shmop-7.4.6-3.32.1.ppc64le.rpm php7-snmp-7.4.6-3.32.1.ppc64le.rpm php7-soap-7.4.6-3.32.1.ppc64le.rpm php7-sockets-7.4.6-3.32.1.ppc64le.rpm php7-sodium-7.4.6-3.32.1.ppc64le.rpm php7-sqlite-7.4.6-3.32.1.ppc64le.rpm php7-sysvmsg-7.4.6-3.32.1.ppc64le.rpm php7-sysvsem-7.4.6-3.32.1.ppc64le.rpm php7-sysvshm-7.4.6-3.32.1.ppc64le.rpm php7-test-7.4.6-3.32.1.ppc64le.rpm php7-tidy-7.4.6-3.32.1.ppc64le.rpm php7-tokenizer-7.4.6-3.32.1.ppc64le.rpm php7-xmlreader-7.4.6-3.32.1.ppc64le.rpm php7-xmlrpc-7.4.6-3.32.1.ppc64le.rpm php7-xmlwriter-7.4.6-3.32.1.ppc64le.rpm php7-xsl-7.4.6-3.32.1.ppc64le.rpm php7-zip-7.4.6-3.32.1.ppc64le.rpm php7-zlib-7.4.6-3.32.1.ppc64le.rpm apache2-mod_php7-7.4.6-3.32.1.aarch64.rpm php7-7.4.6-3.32.1.aarch64.rpm php7-bcmath-7.4.6-3.32.1.aarch64.rpm php7-bz2-7.4.6-3.32.1.aarch64.rpm php7-calendar-7.4.6-3.32.1.aarch64.rpm php7-ctype-7.4.6-3.32.1.aarch64.rpm php7-curl-7.4.6-3.32.1.aarch64.rpm php7-dba-7.4.6-3.32.1.aarch64.rpm php7-devel-7.4.6-3.32.1.aarch64.rpm php7-dom-7.4.6-3.32.1.aarch64.rpm php7-embed-7.4.6-3.32.1.aarch64.rpm php7-enchant-7.4.6-3.32.1.aarch64.rpm php7-exif-7.4.6-3.32.1.aarch64.rpm php7-fastcgi-7.4.6-3.32.1.aarch64.rpm php7-fileinfo-7.4.6-3.32.1.aarch64.rpm php7-firebird-7.4.6-3.32.1.aarch64.rpm php7-fpm-7.4.6-3.32.1.aarch64.rpm php7-ftp-7.4.6-3.32.1.aarch64.rpm php7-gd-7.4.6-3.32.1.aarch64.rpm php7-gettext-7.4.6-3.32.1.aarch64.rpm php7-gmp-7.4.6-3.32.1.aarch64.rpm php7-iconv-7.4.6-3.32.1.aarch64.rpm php7-intl-7.4.6-3.32.1.aarch64.rpm php7-json-7.4.6-3.32.1.aarch64.rpm php7-ldap-7.4.6-3.32.1.aarch64.rpm php7-mbstring-7.4.6-3.32.1.aarch64.rpm php7-mysql-7.4.6-3.32.1.aarch64.rpm php7-odbc-7.4.6-3.32.1.aarch64.rpm php7-opcache-7.4.6-3.32.1.aarch64.rpm php7-openssl-7.4.6-3.32.1.aarch64.rpm php7-pcntl-7.4.6-3.32.1.aarch64.rpm php7-pdo-7.4.6-3.32.1.aarch64.rpm php7-pgsql-7.4.6-3.32.1.aarch64.rpm php7-phar-7.4.6-3.32.1.aarch64.rpm php7-posix-7.4.6-3.32.1.aarch64.rpm php7-readline-7.4.6-3.32.1.aarch64.rpm php7-shmop-7.4.6-3.32.1.aarch64.rpm php7-snmp-7.4.6-3.32.1.aarch64.rpm php7-soap-7.4.6-3.32.1.aarch64.rpm php7-sockets-7.4.6-3.32.1.aarch64.rpm php7-sodium-7.4.6-3.32.1.aarch64.rpm php7-sqlite-7.4.6-3.32.1.aarch64.rpm php7-sysvmsg-7.4.6-3.32.1.aarch64.rpm php7-sysvsem-7.4.6-3.32.1.aarch64.rpm php7-sysvshm-7.4.6-3.32.1.aarch64.rpm php7-test-7.4.6-3.32.1.aarch64.rpm php7-tidy-7.4.6-3.32.1.aarch64.rpm php7-tokenizer-7.4.6-3.32.1.aarch64.rpm php7-xmlreader-7.4.6-3.32.1.aarch64.rpm php7-xmlrpc-7.4.6-3.32.1.aarch64.rpm php7-xmlwriter-7.4.6-3.32.1.aarch64.rpm php7-xsl-7.4.6-3.32.1.aarch64.rpm php7-zip-7.4.6-3.32.1.aarch64.rpm php7-zlib-7.4.6-3.32.1.aarch64.rpm openSUSE-SLE-15.3-2022-681 critical SUSE Updates openSUSE-SLE 15.3 This update for cloud-regionsrv-client fixes the following issues: - Update -addon-azure to 1.0.2 (bsc#1196305) - Fix regression in the cloud-regionsrv-client' with OnDemand images - Update to version 10.0.0 (bsc#1195414, bsc#1195564) - Refactor removes check_registration() function in utils implementation - Only start the registration service for PAYG images - addon-azure sub-package to version 1.0.1 cloud-regionsrv-client-10.0.0-6.62.1.noarch.rpm cloud-regionsrv-client-10.0.0-6.62.1.src.rpm cloud-regionsrv-client-generic-config-1.0.0-6.62.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-6.62.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-6.62.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-6.62.1.noarch.rpm openSUSE-SLE-15.3-2022-687 moderate SUSE Updates openSUSE-SLE 15.3 This update for libvirt fixes the following issues: - libxl: Mark auto-allocated graphics ports to used on reconnect. - libxl: Release all auto-allocated graphics ports. (bsc#1191668) - libxl: Add lock process indicator to saved VM state. (bsc#1191668) - spec: Weaken apparmor-abstractions dependency to Recommends. (bsc#1192119, jsc#SLE-23394) libvirt-7.1.0-150300.6.26.1.src.rpm libvirt-7.1.0-150300.6.26.1.x86_64.rpm libvirt-admin-7.1.0-150300.6.26.1.x86_64.rpm libvirt-bash-completion-7.1.0-150300.6.26.1.noarch.rpm libvirt-client-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-config-network-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-libxl-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-hooks-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-lxc-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-qemu-7.1.0-150300.6.26.1.x86_64.rpm libvirt-daemon-xen-7.1.0-150300.6.26.1.x86_64.rpm libvirt-devel-32bit-7.1.0-150300.6.26.1.x86_64.rpm libvirt-devel-7.1.0-150300.6.26.1.x86_64.rpm libvirt-doc-7.1.0-150300.6.26.1.noarch.rpm libvirt-libs-7.1.0-150300.6.26.1.x86_64.rpm libvirt-lock-sanlock-7.1.0-150300.6.26.1.x86_64.rpm libvirt-nss-7.1.0-150300.6.26.1.x86_64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.26.1.x86_64.rpm libvirt-7.1.0-150300.6.26.1.s390x.rpm libvirt-admin-7.1.0-150300.6.26.1.s390x.rpm libvirt-client-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-config-network-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-network-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-hooks-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-lxc-7.1.0-150300.6.26.1.s390x.rpm libvirt-daemon-qemu-7.1.0-150300.6.26.1.s390x.rpm libvirt-devel-7.1.0-150300.6.26.1.s390x.rpm libvirt-libs-7.1.0-150300.6.26.1.s390x.rpm libvirt-lock-sanlock-7.1.0-150300.6.26.1.s390x.rpm libvirt-nss-7.1.0-150300.6.26.1.s390x.rpm wireshark-plugin-libvirt-7.1.0-150300.6.26.1.s390x.rpm libvirt-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-admin-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-client-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-config-network-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-network-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-hooks-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-lxc-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-daemon-qemu-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-devel-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-libs-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-lock-sanlock-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-nss-7.1.0-150300.6.26.1.ppc64le.rpm wireshark-plugin-libvirt-7.1.0-150300.6.26.1.ppc64le.rpm libvirt-7.1.0-150300.6.26.1.aarch64.rpm libvirt-admin-7.1.0-150300.6.26.1.aarch64.rpm libvirt-client-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-config-network-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-config-nwfilter-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-interface-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-lxc-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-network-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-nodedev-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-nwfilter-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-qemu-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-secret-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-core-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-disk-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-gluster-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-iscsi-direct-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-logical-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-mpath-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-rbd-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-driver-storage-scsi-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-hooks-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-lxc-7.1.0-150300.6.26.1.aarch64.rpm libvirt-daemon-qemu-7.1.0-150300.6.26.1.aarch64.rpm libvirt-devel-7.1.0-150300.6.26.1.aarch64.rpm libvirt-libs-7.1.0-150300.6.26.1.aarch64.rpm libvirt-lock-sanlock-7.1.0-150300.6.26.1.aarch64.rpm libvirt-nss-7.1.0-150300.6.26.1.aarch64.rpm wireshark-plugin-libvirt-7.1.0-150300.6.26.1.aarch64.rpm openSUSE-SLE-15.3-2022-572 moderate SUSE Updates openSUSE-SLE 15.3 This update for psmisc fixes the following issues: - Determine the namespace of a process only once to speed up the parsing of 'fdinfo'. (bsc#1194172) psmisc-23.0-6.19.1.src.rpm psmisc-23.0-6.19.1.x86_64.rpm psmisc-lang-23.0-6.19.1.noarch.rpm psmisc-23.0-6.19.1.s390x.rpm psmisc-23.0-6.19.1.ppc64le.rpm psmisc-23.0-6.19.1.aarch64.rpm openSUSE-SLE-15.3-2022-686 moderate SUSE Updates openSUSE-SLE 15.3 This update for powerpc-utils fixes the following issues: - errinjct: sanitize devspec output of a newline if one is present. (bsc#1194579) - Fix reported online memory in legacy format. (bsc#1191147) - lparstat: report LPAR name from 'lparcfg'. (bsc#1187716) - Install 'smt.state' as config file. (bsc#1195413) powerpc-utils-1.3.9-150300.9.17.1.ppc64le.rpm powerpc-utils-1.3.9-150300.9.17.1.src.rpm openSUSE-SLE-15.3-2022-599 moderate SUSE Updates openSUSE-SLE 15.3 This feature update for golang-github-prometheus-prometheus provides the following changes: Upgrade `golang-github-prometheus-prometheus` from version 2.27.1 to version 2.32.1: (jsc#SLE-22863) - Use `obs-service-go_modules` - Added hardening to systemd service(s). Modified `prometheus.service` (bsc#1181400) - Bugfixes: * Scrape: Fix reporting metrics when sample limit is reached during the report. * Scrape: Ensure that scrape interval and scrape timeout are always set. * TSDB: Expose and fix bug in iterators' Seek() method. * TSDB: Add more size checks when writing individual sections in the index. * PromQL: Make deriv() return zero values for constant series. * TSDB: Fix panic when checkpoint directory is empty. #9687 * TSDB: Fix panic, out of order chunks, and race warning during WAL replay. * UI: Correctly render links for targets with IPv6 addresses that contain a Zone ID. * Promtool: Fix checking of `authorization.credentials_file` and `bearer_token_file` fields. * Uyuni SD: Fix null pointer exception during initialization. * TSDB: Fix queries after a failed snapshot replay. * SD: Fix a panic when the experimental discovery manager receives targets during a reload. * Backfill: Apply rule labels after query labels. * Scrape: Resolve conflicts between multiple exported label prefixes. * Scrape: Restart scrape loops when __scrape_interval__ is changed. * TSDB: Fix memory leak in samples deletion. * UI: Use consistent margin-bottom for all alert kinds. * TSDB: Fix panic on failed snapshot replay. * TSDB: Don't fail snapshot replay with exemplar storage disabled when the snapshot contains exemplars. * TSDB: Don't error on overlapping m-mapped chunks during WAL replay. * promtool rules backfill: Prevent creation of data before the start time. * promtool rules backfill: Do not query after the end time. * Azure SD: Fix panic when no computername is set. * Exemplars: Fix panic when resizing exemplar storage from 0 to a non-zero size. * TSDB: Correctly decrement `prometheus_tsdb_head_active_appenders` when the append has no samples. * promtool rules backfill: Return 1 if backfill was unsuccessful. * promtool rules backfill: Avoid creation of overlapping blocks. * config: Fix a panic when reloading configuration with a null relabel action. * Fix Kubernetes SD failing to discover Ingress in Kubernetes v1.22. * Fix data race in loading write-ahead-log (WAL). * TSDB: align atomically accessed int64 to prevent panic in 32-bit archs. * Log when total symbol size exceeds 2^32 bytes, causing compaction to fail, and skip compaction. * Fix incorrect target_limit reloading of zero value. * Fix head GC and pending readers race condition. * Fix timestamp handling in OpenMetrics parser. * Fix potential duplicate metrics in /federate endpoint when specifying multiple matchers. * Fix server configuration and validation for authentication via client cert. * Allow start and end again as label names in PromQL queries. They were disallowed since the introduction of @ timestamp feature. * HTTP SD: Allow charset specification in Content-Type header. * HTTP SD: Fix handling of disappeared target groups. * Fix incorrect log-level handling after moving to go-kit/log. * UI: In the experimental PromQL editor, fix autocompletion and parsing for special float values and improve series metadata fetching. * TSDB: When merging chunks, split resulting chunks if they would contain more than the maximum of 120 samples. * SD: Fix the computation of the `prometheus_sd_discovered_targets` metric when using multiple service discoveries. - Change: * remote-write: Change default max retry time from 100ms to 5 seconds. * UI: Remove standard PromQL editor in favour of the codemirror-based editor. * Promote `--storage.tsdb.allow-overlapping-blocks` flag to stable. * Promote `--storage.tsdb.retention.size` flag to stable. * UI: Make the new experimental PromQL editor the default. - Features: * Agent: New mode of operation optimized for remote-write only scenarios, without local storage. * Promtool: Add promtool check service-discovery command. * PromQL: Add trigonometric functions and atan2 binary operator. * Remote: Add support for exemplar in the remote write receiver endpoint. * SD: Add PuppetDB service discovery. * SD: Add Uyuni service discovery. * Web: Add support for security-related HTTP headers. * experimental TSDB: Snapshot in-memory chunks on shutdown for faster restarts. * experimental Scrape: Configure scrape interval and scrape timeout via relabeling using `__scrape_interval__` and `__scrape_timeout__` labels respectively. * Scrape: Add scrape_timeout_seconds and scrape_sample_limit metric. * Add Kuma service discovery. * Add present_over_time PromQL function. * Allow configuring exemplar storage via file and make it reloadable. * UI: Allow selecting time range with mouse drag. * promtool: Add feature flags flag `--enable-feature`. * promtool: Add `file_sd` file validation. * Linode SD: Add Linode service discovery. * HTTP SD: Add generic HTTP-based service discovery. * Kubernetes SD: Allow configuring API Server access via a kubeconfig file. * UI: Add exemplar display support to the graphing interface. * Consul SD: Add namespace support for Consul Enterprise. - Enhancements: * Promtool: Improve test output. * Promtool: Use kahan summation for better numerical stability. * Remote-write: Reuse memory for marshalling. * Scrape: Add scrape_body_size_bytes scrape metric behind the `--enable-feature=extra-scrape-metrics` flag. * TSDB: Add windows arm64 support. * TSDB: Optimize query by skipping unneeded sorting in TSDB. * Templates: Support int and uint as datatypes for template formatting. * UI: Prefer rate over rad, delta over deg, and count over cos in autocomplete. * Azure SD: Add proxy_url, follow_redirects, tls_config. * Backfill: Add `--max-block-duration` in promtool `create-blocks-from` rules. * Config: Print human-readable sizes with unit instead of raw numbers. * HTTP: Re-enable HTTP/2. * Kubernetes SD: Warn user if number of endpoints exceeds limit. * OAuth2: Add TLS configuration to token requests. * PromQL: Several optimizations. * PromQL: Make aggregations deterministic in instant queries. * Rules: Add the ability to limit number of alerts or series. * SD: Experimental discovery manager to avoid restarts upon reload. * UI: Debounce timerange setting changes. * Remote Write: Redact remote write URL when used for metric label. * UI: Redact remote write URL and proxy URL passwords in the /config page. * Scrape: Add --scrape.timestamp-tolerance flag to adjust scrape timestamp tolerance when enabled via `--scrape.adjust-timestamps`. * Remote Write: Improve throughput when sending exemplars. * TSDB: Optimise WAL loading by removing extra map and caching min-time * promtool: Speed up checking for duplicate rules. * Scrape: Reduce allocations when parsing the metrics. * docker_sd: Support host network mode * Reduce blocking of outgoing remote write requests from series garbage collection. * Improve write-ahead-log decoding performance. * Improve append performance in TSDB by reducing mutexes usage. * Allow configuring max_samples_per_send for remote write metadata. * Add `__meta_gce_interface_ipv4_<name>` meta label to GCE discovery. * Add `__meta_ec2_availability_zone_id` meta label to EC2 discovery. * Add `__meta_azure_machine_computer_name` meta label to Azure discovery. * Add `__meta_hetzner_hcloud_labelpresent_<labelname>` meta label to Hetzner discovery. * promtool: Add compaction efficiency to promtool tsdb analyze reports. * promtool: Allow configuring max block duration for backfilling via `--max-block-duration` flag. * UI: Add sorting and filtering to flags page. * UI: Improve alerts page rendering performance. * Promtool: Allow silencing output when importing / backfilling data. * Consul SD: Support reading tokens from file. * Rules: Add a new .ExternalURL alert field templating variable, containing the external URL of the Prometheus server. * Scrape: Add experimental body_size_limit scrape configuration setting to limit the allowed response body size for target scrapes. * Kubernetes SD: Add ingress class name label for ingress discovery. * UI: Show a startup screen with progress bar when the TSDB is not ready yet. * SD: Add a target creation failure counter `prometheus_target_sync_failed_total` and improve target creation failure handling. * TSDB: Improve validation of exemplar label set length. * TSDB: Add a prometheus_tsdb_clean_start metric that indicates whether a TSDB lockfile from a previous run still existed upon startup. golang-github-prometheus-prometheus-2.32.1-4.3.2.src.rpm golang-github-prometheus-prometheus-2.32.1-4.3.2.x86_64.rpm golang-github-prometheus-prometheus-2.32.1-4.3.2.s390x.rpm golang-github-prometheus-prometheus-2.32.1-4.3.2.ppc64le.rpm golang-github-prometheus-prometheus-2.32.1-4.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-724 important SUSE Updates openSUSE-SLE 15.3 This update for go1.16 fixes the following issues: - CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838). - CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835). - CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834). The following non-security bugs were fixed: - go#50977 crypto/elliptic: IsOnCurve returns true for invalid field elements - go#50700 math/big: Rat.SetString may consume large amount of RAM and crash - go#50686 cmd/go: do not treat branches with semantic-version names as releases - go#50866 cmd/compile: incorrect use of CMN on arm64 - go#50832 runtime/race: NoRaceMutexPureHappensBefore failures - go#50811 cmd/go: remove bitbucket VCS probing - go#50780 runtime: incorrect frame information in traceback traversal may hang the process. - go#50721 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error - go#50682 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg - go#50645 testing: surprising interaction of subtests with TempDir - go#50585 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch - go#50245 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of "plugin" Package go1.16-1.16.14-1.43.1.src.rpm go1.16-1.16.14-1.43.1.x86_64.rpm go1.16-doc-1.16.14-1.43.1.x86_64.rpm go1.16-race-1.16.14-1.43.1.x86_64.rpm go1.16-1.16.14-1.43.1.s390x.rpm go1.16-doc-1.16.14-1.43.1.s390x.rpm go1.16-1.16.14-1.43.1.ppc64le.rpm go1.16-doc-1.16.14-1.43.1.ppc64le.rpm go1.16-1.16.14-1.43.1.aarch64.rpm go1.16-doc-1.16.14-1.43.1.aarch64.rpm go1.16-race-1.16.14-1.43.1.aarch64.rpm openSUSE-SLE-15.3-2022-723 important SUSE Updates openSUSE-SLE 15.3 This update for go1.17 fixes the following issues: - CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838). - CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835). - CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834). The following non-security bugs were fixed: - go#50978 crypto/elliptic: IsOnCurve returns true for invalid field elements - go#50701 math/big: Rat.SetString may consume large amount of RAM and crash - go#50687 cmd/go: do not treat branches with semantic-version names as releases - go#50942 cmd/asm: "compile: loop" compiler bug? - go#50867 cmd/compile: incorrect use of CMN on arm64 - go#50812 cmd/go: remove bitbucket VCS probing - go#50781 runtime: incorrect frame information in traceback traversal may hang the process. - go#50722 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error - go#50683 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg - go#50586 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch - go#50297 cmd/link: does not set section type of .init_array correctly - go#50246 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of "plugin" Package go1.17-1.17.7-1.20.1.i586.rpm go1.17-1.17.7-1.20.1.src.rpm go1.17-doc-1.17.7-1.20.1.i586.rpm go1.17-1.17.7-1.20.1.x86_64.rpm go1.17-doc-1.17.7-1.20.1.x86_64.rpm go1.17-race-1.17.7-1.20.1.x86_64.rpm go1.17-1.17.7-1.20.1.s390x.rpm go1.17-doc-1.17.7-1.20.1.s390x.rpm go1.17-1.17.7-1.20.1.ppc64le.rpm go1.17-doc-1.17.7-1.20.1.ppc64le.rpm go1.17-1.17.7-1.20.1.aarch64.rpm go1.17-doc-1.17.7-1.20.1.aarch64.rpm go1.17-race-1.17.7-1.20.1.aarch64.rpm openSUSE-SLE-15.3-2022-704 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs8 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). nodejs8-8.17.0-10.19.2.src.rpm nodejs8-8.17.0-10.19.2.x86_64.rpm nodejs8-devel-8.17.0-10.19.2.x86_64.rpm nodejs8-docs-8.17.0-10.19.2.noarch.rpm npm8-8.17.0-10.19.2.x86_64.rpm nodejs8-8.17.0-10.19.2.s390x.rpm nodejs8-devel-8.17.0-10.19.2.s390x.rpm npm8-8.17.0-10.19.2.s390x.rpm nodejs8-8.17.0-10.19.2.ppc64le.rpm nodejs8-devel-8.17.0-10.19.2.ppc64le.rpm npm8-8.17.0-10.19.2.ppc64le.rpm nodejs8-8.17.0-10.19.2.aarch64.rpm nodejs8-devel-8.17.0-10.19.2.aarch64.rpm npm8-8.17.0-10.19.2.aarch64.rpm openSUSE-SLE-15.3-2022-705 important SUSE Updates openSUSE-SLE 15.3 This update for webkit2gtk3 fixes the following issues: Update to version 2.34.6 (bsc#1196133): - CVE-2022-22620: Processing maliciously crafted web content may have lead to arbitrary code execution. Update to version 2.34.5 (bsc#1195735): - CVE-2022-22589: A validation issue was addressed with improved input sanitization. - CVE-2022-22590: A use after free issue was addressed with improved memory management. - CVE-2022-22592: A logic issue was addressed with improved state management. Update to version 2.34.4 (bsc#1195064): - CVE-2021-30934: A buffer overflow issue was addressed with improved memory handling. - CVE-2021-30936: A use after free issue was addressed with improved memory management. - CVE-2021-30951: A use after free issue was addressed with improved memory management. - CVE-2021-30952: An integer overflow was addressed with improved input validation. - CVE-2021-30953: An out-of-bounds read was addressed with improved bounds checking. - CVE-2021-30954: A type confusion issue was addressed with improved memory handling. - CVE-2021-30984: A race condition was addressed with improved state handling. - CVE-2022-22594: A cross-origin issue in the IndexDB API was addressed with improved input validation. The following CVEs were addressed in a previous update: - CVE-2021-45481: Incorrect memory allocation in WebCore::ImageBufferCairoImageSurfaceBackend::create. - CVE-2021-45482: A use-after-free in WebCore::ContainerNode::firstChild. - CVE-2021-45483: A use-after-free in WebCore::Frame::page. libjavascriptcoregtk-4_0-18-2.34.6-29.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.34.6-29.1.x86_64.rpm libwebkit2gtk-4_0-37-2.34.6-29.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.34.6-29.1.x86_64.rpm libwebkit2gtk3-lang-2.34.6-29.1.noarch.rpm typelib-1_0-JavaScriptCore-4_0-2.34.6-29.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.34.6-29.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.6-29.1.x86_64.rpm webkit-jsc-4-2.34.6-29.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.34.6-29.1.x86_64.rpm webkit2gtk3-2.34.6-29.1.src.rpm webkit2gtk3-devel-2.34.6-29.1.x86_64.rpm webkit2gtk3-minibrowser-2.34.6-29.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.34.6-29.1.s390x.rpm libwebkit2gtk-4_0-37-2.34.6-29.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.34.6-29.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.34.6-29.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.6-29.1.s390x.rpm webkit-jsc-4-2.34.6-29.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.34.6-29.1.s390x.rpm webkit2gtk3-devel-2.34.6-29.1.s390x.rpm webkit2gtk3-minibrowser-2.34.6-29.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.34.6-29.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.34.6-29.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.34.6-29.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.34.6-29.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.6-29.1.ppc64le.rpm webkit-jsc-4-2.34.6-29.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.34.6-29.1.ppc64le.rpm webkit2gtk3-devel-2.34.6-29.1.ppc64le.rpm webkit2gtk3-minibrowser-2.34.6-29.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.34.6-29.1.aarch64.rpm libwebkit2gtk-4_0-37-2.34.6-29.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.34.6-29.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.34.6-29.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.34.6-29.1.aarch64.rpm webkit-jsc-4-2.34.6-29.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.34.6-29.1.aarch64.rpm webkit2gtk3-devel-2.34.6-29.1.aarch64.rpm webkit2gtk3-minibrowser-2.34.6-29.1.aarch64.rpm openSUSE-SLE-15.3-2022-657 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs12 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). nodejs12-12.22.10-4.29.3.src.rpm nodejs12-12.22.10-4.29.3.x86_64.rpm nodejs12-devel-12.22.10-4.29.3.x86_64.rpm nodejs12-docs-12.22.10-4.29.3.noarch.rpm npm12-12.22.10-4.29.3.x86_64.rpm nodejs12-12.22.10-4.29.3.s390x.rpm nodejs12-devel-12.22.10-4.29.3.s390x.rpm npm12-12.22.10-4.29.3.s390x.rpm nodejs12-12.22.10-4.29.3.ppc64le.rpm nodejs12-devel-12.22.10-4.29.3.ppc64le.rpm npm12-12.22.10-4.29.3.ppc64le.rpm nodejs12-12.22.10-4.29.3.aarch64.rpm nodejs12-devel-12.22.10-4.29.3.aarch64.rpm npm12-12.22.10-4.29.3.aarch64.rpm openSUSE-SLE-15.3-2022-722 important SUSE Updates openSUSE-SLE 15.3 This update for wireshark fixes the following issues: Update to Wireshark 3.6.2: - CVE-2022-0586: RTMPT dissector infinite loop (bsc#1195866) - CVE-2022-0585: Large loops in multiple dissectors (bsc#1195867) - CVE-2022-0583: PVFS dissector crash (bsc#1195868) - CVE-2022-0582: CSN.1 dissector crash (bsc#1195869) - CVE-2022-0581: CMS dissector crash (bsc#1195870) libwireshark15-3.6.2-3.71.1.x86_64.rpm libwiretap12-3.6.2-3.71.1.x86_64.rpm libwsutil13-3.6.2-3.71.1.x86_64.rpm wireshark-3.6.2-3.71.1.src.rpm wireshark-3.6.2-3.71.1.x86_64.rpm wireshark-devel-3.6.2-3.71.1.x86_64.rpm wireshark-ui-qt-3.6.2-3.71.1.x86_64.rpm libwireshark15-3.6.2-3.71.1.s390x.rpm libwiretap12-3.6.2-3.71.1.s390x.rpm libwsutil13-3.6.2-3.71.1.s390x.rpm wireshark-3.6.2-3.71.1.s390x.rpm wireshark-devel-3.6.2-3.71.1.s390x.rpm wireshark-ui-qt-3.6.2-3.71.1.s390x.rpm libwireshark15-3.6.2-3.71.1.ppc64le.rpm libwiretap12-3.6.2-3.71.1.ppc64le.rpm libwsutil13-3.6.2-3.71.1.ppc64le.rpm wireshark-3.6.2-3.71.1.ppc64le.rpm wireshark-devel-3.6.2-3.71.1.ppc64le.rpm wireshark-ui-qt-3.6.2-3.71.1.ppc64le.rpm libwireshark15-3.6.2-3.71.1.aarch64.rpm libwiretap12-3.6.2-3.71.1.aarch64.rpm libwsutil13-3.6.2-3.71.1.aarch64.rpm wireshark-3.6.2-3.71.1.aarch64.rpm wireshark-devel-3.6.2-3.71.1.aarch64.rpm wireshark-ui-qt-3.6.2-3.71.1.aarch64.rpm openSUSE-SLE-15.3-2022-715 important SUSE Updates openSUSE-SLE 15.3 This update for nodejs14 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). nodejs14-14.19.0-15.27.1.src.rpm nodejs14-14.19.0-15.27.1.x86_64.rpm nodejs14-devel-14.19.0-15.27.1.x86_64.rpm nodejs14-docs-14.19.0-15.27.1.noarch.rpm npm14-14.19.0-15.27.1.x86_64.rpm nodejs14-14.19.0-15.27.1.s390x.rpm nodejs14-devel-14.19.0-15.27.1.s390x.rpm npm14-14.19.0-15.27.1.s390x.rpm nodejs14-14.19.0-15.27.1.ppc64le.rpm nodejs14-devel-14.19.0-15.27.1.ppc64le.rpm npm14-14.19.0-15.27.1.ppc64le.rpm nodejs14-14.19.0-15.27.1.aarch64.rpm nodejs14-devel-14.19.0-15.27.1.aarch64.rpm npm14-14.19.0-15.27.1.aarch64.rpm openSUSE-SLE-15.3-2022-559 important SUSE Updates openSUSE-SLE 15.3 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 91.6.1 / MFSA 2022-07 (bsc#1196072) * CVE-2022-0566 (bmo#1753094) Crafted email could trigger an out-of-bounds write - Mozilla Thunderbird 91.6 / MFSA 2022-06 (bsc#1195682) * CVE-2022-22753 (bmo#1732435) Privilege Escalation to SYSTEM on Windows via Maintenance Service * CVE-2022-22754 (bmo#1750565) Extensions could have bypassed permission confirmation during update * CVE-2022-22756 (bmo#1317873) Drag and dropping an image could have resulted in the dropped object being an executable * CVE-2022-22759 (bmo#1739957) Sandboxed iframes could have executed script if the parent appended elements * CVE-2022-22760 (bmo#1740985, bmo#1748503) Cross-Origin responses could be distinguished between script and non-script content-types * CVE-2022-22761 (bmo#1745566) frame-ancestors Content Security Policy directive was not enforced for framed extension pages * CVE-2022-22763 (bmo#1740534) Script Execution during invalid object state * CVE-2022-22764 (bmo#1742682, bmo#1744165, bmo#1746545, bmo#1748210, bmo#1748279) Memory safety bugs fixed in Thunderbird 91.6 MozillaThunderbird-91.6.1-8.54.1.src.rpm MozillaThunderbird-91.6.1-8.54.1.x86_64.rpm MozillaThunderbird-translations-common-91.6.1-8.54.1.x86_64.rpm MozillaThunderbird-translations-other-91.6.1-8.54.1.x86_64.rpm MozillaThunderbird-91.6.1-8.54.1.s390x.rpm MozillaThunderbird-translations-common-91.6.1-8.54.1.s390x.rpm MozillaThunderbird-translations-other-91.6.1-8.54.1.s390x.rpm MozillaThunderbird-91.6.1-8.54.1.ppc64le.rpm MozillaThunderbird-translations-common-91.6.1-8.54.1.ppc64le.rpm MozillaThunderbird-translations-other-91.6.1-8.54.1.ppc64le.rpm MozillaThunderbird-91.6.1-8.54.1.aarch64.rpm MozillaThunderbird-translations-common-91.6.1-8.54.1.aarch64.rpm MozillaThunderbird-translations-other-91.6.1-8.54.1.aarch64.rpm openSUSE-SLE-15.3-2022-697 important SUSE Updates openSUSE-SLE 15.3 This update for yast2 fixes the following issues: - Do not strip surrounding white space in CDATA XML elements. (bsc#1195910) yast2-4.3.68-150300.3.17.1.src.rpm yast2-4.3.68-150300.3.17.1.x86_64.rpm yast2-logs-4.3.68-150300.3.17.1.x86_64.rpm yast2-4.3.68-150300.3.17.1.s390x.rpm yast2-logs-4.3.68-150300.3.17.1.s390x.rpm yast2-4.3.68-150300.3.17.1.ppc64le.rpm yast2-logs-4.3.68-150300.3.17.1.ppc64le.rpm yast2-4.3.68-150300.3.17.1.aarch64.rpm yast2-logs-4.3.68-150300.3.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-717 moderate SUSE Updates openSUSE-SLE 15.3 This update for gnutls fixes the following issues: - CVE-2021-4209: Fixed null pointer dereference in MD_UPDATE (bsc#1196167). gnutls-3.6.7-14.16.1.src.rpm gnutls-3.6.7-14.16.1.x86_64.rpm gnutls-guile-3.6.7-14.16.1.x86_64.rpm libgnutls-devel-3.6.7-14.16.1.x86_64.rpm libgnutls-devel-32bit-3.6.7-14.16.1.x86_64.rpm libgnutls30-3.6.7-14.16.1.x86_64.rpm libgnutls30-32bit-3.6.7-14.16.1.x86_64.rpm libgnutls30-hmac-3.6.7-14.16.1.x86_64.rpm libgnutls30-hmac-32bit-3.6.7-14.16.1.x86_64.rpm libgnutlsxx-devel-3.6.7-14.16.1.x86_64.rpm libgnutlsxx28-3.6.7-14.16.1.x86_64.rpm gnutls-3.6.7-14.16.1.s390x.rpm gnutls-guile-3.6.7-14.16.1.s390x.rpm libgnutls-devel-3.6.7-14.16.1.s390x.rpm libgnutls30-3.6.7-14.16.1.s390x.rpm libgnutls30-hmac-3.6.7-14.16.1.s390x.rpm libgnutlsxx-devel-3.6.7-14.16.1.s390x.rpm libgnutlsxx28-3.6.7-14.16.1.s390x.rpm gnutls-3.6.7-14.16.1.ppc64le.rpm gnutls-guile-3.6.7-14.16.1.ppc64le.rpm libgnutls-devel-3.6.7-14.16.1.ppc64le.rpm libgnutls30-3.6.7-14.16.1.ppc64le.rpm libgnutls30-hmac-3.6.7-14.16.1.ppc64le.rpm libgnutlsxx-devel-3.6.7-14.16.1.ppc64le.rpm libgnutlsxx28-3.6.7-14.16.1.ppc64le.rpm gnutls-3.6.7-14.16.1.aarch64.rpm gnutls-guile-3.6.7-14.16.1.aarch64.rpm libgnutls-devel-3.6.7-14.16.1.aarch64.rpm libgnutls30-3.6.7-14.16.1.aarch64.rpm libgnutls30-hmac-3.6.7-14.16.1.aarch64.rpm libgnutlsxx-devel-3.6.7-14.16.1.aarch64.rpm libgnutlsxx28-3.6.7-14.16.1.aarch64.rpm openSUSE-SLE-15.3-2022-711 moderate SUSE Updates openSUSE-SLE 15.3 This update for sudo fixes the following issues: - Add support in the LDAP filter for negated users (jsc#SLE-20068) - Restrict use of sudo -U other -l to people who have permission to run commands as that user (bsc#1181703, jsc#SLE-22569) sudo-1.9.5p2-150300.3.3.1.src.rpm sudo-1.9.5p2-150300.3.3.1.x86_64.rpm sudo-devel-1.9.5p2-150300.3.3.1.x86_64.rpm sudo-plugin-python-1.9.5p2-150300.3.3.1.x86_64.rpm sudo-test-1.9.5p2-150300.3.3.1.x86_64.rpm sudo-1.9.5p2-150300.3.3.1.s390x.rpm sudo-devel-1.9.5p2-150300.3.3.1.s390x.rpm sudo-plugin-python-1.9.5p2-150300.3.3.1.s390x.rpm sudo-test-1.9.5p2-150300.3.3.1.s390x.rpm sudo-1.9.5p2-150300.3.3.1.ppc64le.rpm sudo-devel-1.9.5p2-150300.3.3.1.ppc64le.rpm sudo-plugin-python-1.9.5p2-150300.3.3.1.ppc64le.rpm sudo-test-1.9.5p2-150300.3.3.1.ppc64le.rpm sudo-1.9.5p2-150300.3.3.1.aarch64.rpm sudo-devel-1.9.5p2-150300.3.3.1.aarch64.rpm sudo-plugin-python-1.9.5p2-150300.3.3.1.aarch64.rpm sudo-test-1.9.5p2-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.3-2022-731 important SUSE Updates openSUSE-SLE 15.3 This update for mariadb fixes the following issues: - Update to 10.5.15 (bsc#1196016): * 10.5.15: CVE-2021-46665 CVE-2021-46664 CVE-2021-46661 CVE-2021-46668 CVE-2021-46663 * 10.5.14: CVE-2022-24052 CVE-2022-24051 CVE-2022-24050 CVE-2022-24048 CVE-2021-46659, bsc#1195339 - The following issues have already been fixed in this package but weren't previously mentioned in the changes file: CVE-2021-46658, bsc#1195334 CVE-2021-46657, bsc#1195325 libmariadbd-devel-10.5.15-150300.3.15.1.x86_64.rpm libmariadbd19-10.5.15-150300.3.15.1.x86_64.rpm mariadb-10.5.15-150300.3.15.1.src.rpm mariadb-10.5.15-150300.3.15.1.x86_64.rpm mariadb-bench-10.5.15-150300.3.15.1.x86_64.rpm mariadb-client-10.5.15-150300.3.15.1.x86_64.rpm mariadb-errormessages-10.5.15-150300.3.15.1.noarch.rpm mariadb-rpm-macros-10.5.15-150300.3.15.1.x86_64.rpm mariadb-test-10.5.15-150300.3.15.1.x86_64.rpm mariadb-tools-10.5.15-150300.3.15.1.x86_64.rpm libmariadbd-devel-10.5.15-150300.3.15.1.s390x.rpm libmariadbd19-10.5.15-150300.3.15.1.s390x.rpm mariadb-10.5.15-150300.3.15.1.s390x.rpm mariadb-bench-10.5.15-150300.3.15.1.s390x.rpm mariadb-client-10.5.15-150300.3.15.1.s390x.rpm mariadb-rpm-macros-10.5.15-150300.3.15.1.s390x.rpm mariadb-test-10.5.15-150300.3.15.1.s390x.rpm mariadb-tools-10.5.15-150300.3.15.1.s390x.rpm libmariadbd-devel-10.5.15-150300.3.15.1.ppc64le.rpm libmariadbd19-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-bench-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-client-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-rpm-macros-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-test-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-tools-10.5.15-150300.3.15.1.ppc64le.rpm libmariadbd-devel-10.5.15-150300.3.15.1.aarch64.rpm libmariadbd19-10.5.15-150300.3.15.1.aarch64.rpm mariadb-10.5.15-150300.3.15.1.aarch64.rpm mariadb-bench-10.5.15-150300.3.15.1.aarch64.rpm mariadb-client-10.5.15-150300.3.15.1.aarch64.rpm mariadb-rpm-macros-10.5.15-150300.3.15.1.aarch64.rpm mariadb-test-10.5.15-150300.3.15.1.aarch64.rpm mariadb-tools-10.5.15-150300.3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-651 important SUSE Updates openSUSE-SLE 15.3 This update for crmsh fixes the following issues: - Fix SBD not to overwrite SYSCONFIG_SBD and sbd-disk-metadata if input is 'n' during the configuration (bsc#1194870) - Fix help output of `crm cluster crash_test -h` (bsc#1194615) - Fix information message when the user need to change login shell (bsc#1194026) crmsh-4.3.1+20220208.73603501-5.74.1.noarch.rpm crmsh-4.3.1+20220208.73603501-5.74.1.src.rpm crmsh-scripts-4.3.1+20220208.73603501-5.74.1.noarch.rpm crmsh-test-4.3.1+20220208.73603501-5.74.1.noarch.rpm openSUSE-SLE-15.3-2022-580 important SUSE Updates openSUSE-SLE 15.3 This update for s390-tools fixes the following issues: - Fix for issue introduced in version 2.37+ of util-linux that modified the output characters of lsblk, which breaks the parser function (bsc#1196258) - Fix for path resolution failing when a device provides multiple mount points such as, for example, when using btrfs subvolumes, or when mounting the same file system at multiple mount points (bsc#1196257) libekmfweb1-2.15.1-150300.8.14.1.s390x.rpm libekmfweb1-devel-2.15.1-150300.8.14.1.s390x.rpm osasnmpd-2.15.1-150300.8.14.1.s390x.rpm s390-tools-2.15.1-150300.8.14.1.s390x.rpm s390-tools-2.15.1-150300.8.14.1.src.rpm s390-tools-hmcdrvfs-2.15.1-150300.8.14.1.s390x.rpm s390-tools-zdsfs-2.15.1-150300.8.14.1.s390x.rpm openSUSE-SLE-15.3-2022-713 important SUSE Updates openSUSE-SLE 15.3 This update for expat fixes the following issues: - CVE-2022-25236: Fixed possible namespace-separator characters insertion into namespace URIs (bsc#1196025). - CVE-2022-25235: Fixed UTF-8 character validation in a certain context (bsc#1196026). - CVE-2022-25313: Fixed stack exhaustion in build_model() via uncontrolled recursion (bsc#1196168). - CVE-2022-25314: Fixed integer overflow in copyString (bsc#1196169). - CVE-2022-25315: Fixed integer overflow in storeRawNames (bsc#1196171). expat-2.2.5-3.15.1.src.rpm expat-2.2.5-3.15.1.x86_64.rpm libexpat-devel-2.2.5-3.15.1.x86_64.rpm libexpat-devel-32bit-2.2.5-3.15.1.x86_64.rpm libexpat1-2.2.5-3.15.1.x86_64.rpm libexpat1-32bit-2.2.5-3.15.1.x86_64.rpm expat-2.2.5-3.15.1.s390x.rpm libexpat-devel-2.2.5-3.15.1.s390x.rpm libexpat1-2.2.5-3.15.1.s390x.rpm expat-2.2.5-3.15.1.ppc64le.rpm libexpat-devel-2.2.5-3.15.1.ppc64le.rpm libexpat1-2.2.5-3.15.1.ppc64le.rpm expat-2.2.5-3.15.1.aarch64.rpm libexpat-devel-2.2.5-3.15.1.aarch64.rpm libexpat1-2.2.5-3.15.1.aarch64.rpm openSUSE-SLE-15.3-2022-23018 moderate SUSE Updates openSUSE-SLE 15.3 This update for conmon, libcontainers-common, libseccomp, podman fixes the following issues: podman was updated to 3.4.4. Security issues fixed: - fix CVE-2021-41190 [bsc#1193273], opencontainers: OCI manifest and index parsing confusion - fix CVE-2021-4024 [bsc#1193166], podman machine spawns gvproxy with port binded to all IPs - fix CVE-2021-20199 [bsc#1181640], Remote traffic to rootless containers is seen as orginating from localhost - Add: Provides: podman:/usr/bin/podman-remote subpackage for a clearer upgrade path from podman < 3.1.2 Update to version 3.4.4: * Bugfixes - Fixed a bug where the podman exec command would, under some circumstances, print a warning message about failing to move conmon to the appropriate cgroup (#12535). - Fixed a bug where named volumes created as part of container creation (e.g. podman run --volume avolume:/a/mountpoint or similar) would be mounted with incorrect permissions (#12523). - Fixed a bug where the podman-remote create and podman-remote run commands did not properly handle the --entrypoint="" option (to clear the container's entrypoint) (#12521). - Update to version 3.4.3: * Security - This release addresses CVE-2021-4024, where the podman machine command opened the gvproxy API (used to forward ports to podman machine VMs) to the public internet on port 7777. - This release addresses CVE-2021-41190, where incomplete specification of behavior regarding image manifests could lead to inconsistent decoding on different clients. * Features - The --secret type=mount option to podman create and podman run supports a new option, target=, which specifies where in the container the secret will be mounted (#12287). * Bugfixes - Fixed a bug where rootless Podman would occasionally print warning messages about failing to move the pause process to a new cgroup (#12065). - Fixed a bug where the podman run and podman create commands would, when pulling images, still require TLS even with registries set to Insecure via config file (#11933). - Fixed a bug where the podman generate systemd command generated units that depended on multi-user.target, which has been removed from some distributions (#12438). - Fixed a bug where Podman could not run containers with images that had /etc/ as a symlink (#12189). - Fixed a bug where the podman logs -f command would, when using the journald logs backend, exit immediately if the container had previously been restarted (#12263). - Fixed a bug where, in containers on VMs created by podman machine, the host.containers.internal name pointed to the VM, not the host system (#11642). - Fixed a bug where containers and pods created by the podman play kube command in VMs managed by podman machine would not automatically forward ports from the host machine (#12248). - Fixed a bug where podman machine init would fail on OS X when GNU Coreutils was installed (#12329). - Fixed a bug where podman machine start would exit before SSH on the started VM was accepting connections (#11532). - Fixed a bug where the podman run command with signal proxying (--sig-proxy) enabled could print an error if it attempted to send a signal to a container that had just exited (#8086). - Fixed a bug where the podman stats command would not return correct information for containers running Systemd as PID1 (#12400). - Fixed a bug where the podman image save command would fail on OS X when writing the image to STDOUT (#12402). - Fixed a bug where the podman ps command did not properly handle PS arguments which contained whitespace (#12452). - Fixed a bug where the podman-remote wait command could fail to detect that the container exited and return an error under some circumstances (#12457). - Fixed a bug where the Windows MSI installer for podman-remote would break the PATH environment variable by adding an extra " (#11416). * API - The Libpod Play Kube endpoint now also accepts ConfigMap YAML as part of its payload, and will use provided any ConfigMap to configure provided pods and services. - Fixed a bug where the Compat Create endpoint for Containers would not always create the container's working directory if it did not exist (#11842). - Fixed a bug where the Compat Create endpoint for Containers returned an incorrect error message with 404 errors when the requested image was not found (#12315). - Fixed a bug where the Compat Create endpoint for Containers did not properly handle the HostConfig.Mounts field (#12419). - Fixed a bug where the Compat Archive endpoint for Containers did not properly report errors when the operation failed (#12420). - Fixed a bug where the Compat Build endpoint for Images ignored the layers query parameter (for caching intermediate layers from the build) (#12378). - Fixed a bug where the Compat Build endpoint for Images did not report errors in a manner compatible with Docker (#12392). - Fixed a bug where the Compat Build endpoint for Images would fail to build if the context directory was a symlink (#12409). - Fixed a bug where the Compat List endpoint for Images included manifest lists (and not just images) in returned results (#12453). - Update to version 3.4.2: * Fixed a bug where podman tag could not tag manifest lists (#12046). * Fixed a bug where built-in volumes specified by images would not be created correctly under some circumstances. * Fixed a bug where, when using Podman Machine on OS X, containers in pods did not have working port forwarding from the host (#12207). * Fixed a bug where the podman network reload command command on containers using the slirp4netns network mode and the rootlessport port forwarding driver would make an unnecessary attempt to restart rootlessport on containers that did not forward ports. * Fixed a bug where the podman generate kube command would generate YAML including some unnecessary (set to default) fields (e.g. empty SELinux and DNS configuration blocks, and the privileged flag when set to false) (#11995). * Fixed a bug where the podman pod rm command could, if interrupted at the right moment, leave a reference to an already-removed infra container behind (#12034). * Fixed a bug where the podman pod rm command would not remove pods with more than one container if all containers save for the infra container were stopped unless --force was specified (#11713). * Fixed a bug where the --memory flag to podman run and podman create did not accept a limit of 0 (which should specify unlimited memory) (#12002). * Fixed a bug where the remote Podman client's podman build command could attempt to build a Dockerfile in the working directory of the podman system service instance instead of the Dockerfile specified by the user (#12054). * Fixed a bug where the podman logs --tail command could function improperly (printing more output than requested) when the journald log driver was used. * Fixed a bug where containers run using the slirp4netns network mode with IPv6 enabled would not have IPv6 connectivity until several seconds after they started (#11062). * Fixed a bug where some Podman commands could cause an extra dbus-daemon process to be created (#9727). * Fixed a bug where rootless Podman would sometimes print warnings about a failure to move the pause process into a given CGroup (#12065). * Fixed a bug where the checkpointed field in podman inspect on a container was not set to false after a container was restored. * Fixed a bug where the podman system service command would print overly-verbose logs about request IDs (#12181). * Fixed a bug where Podman could, when creating a new container without a name explicitly specified by the user, sometimes use an auto-generated name already in use by another container if multiple containers were being created in parallel (#11735). Update to version 3.4.1: * Bugfixes - Fixed a bug where podman machine init could, under some circumstances, create invalid machine configurations which could not be started (#11824). - Fixed a bug where the podman machine list command would not properly populate some output fields. - Fixed a bug where podman machine rm could leave dangling sockets from the removed machine (#11393). - Fixed a bug where podman run --pids-limit=-1 was not supported (it now sets the PID limit in the container to unlimited) (#11782). - Fixed a bug where podman run and podman attach could throw errors about a closed network connection when STDIN was closed by the client (#11856). - Fixed a bug where the podman stop command could fail when run on a container that had another podman stop command run on it previously. - Fixed a bug where the --sync flag to podman ps was nonfunctional. - Fixed a bug where the Windows and OS X remote clients' podman stats command would fail (#11909). - Fixed a bug where the podman play kube command did not properly handle environment variables whose values contained an = (#11891). - Fixed a bug where the podman generate kube command could generate invalid annotations when run on containers with volumes that use SELinux relabelling (:z or :Z) (#11929). - Fixed a bug where the podman generate kube command would generate YAML including some unnecessary (set to default) fields (e.g. user and group, entrypoint, default protocol for forwarded ports) (#11914, #11915, and #11965). - Fixed a bug where the podman generate kube command could, under some circumstances, generate YAML including an invalid targetPort field for forwarded ports (#11930). - Fixed a bug where rootless Podman's podman info command could, under some circumstances, not read available CGroup controllers (#11931). - Fixed a bug where podman container checkpoint --export would fail to checkpoint any container created with --log-driver=none (#11974). * API - Fixed a bug where the Compat Create endpoint for Containers could panic when no options were passed to a bind mount of tmpfs (#11961). Update to version 3.4.0: * Features - Pods now support init containers! Init containers are containers which run before the rest of the pod starts. There are two types of init containers: "always", which always run before the pod is started, and "once", which only run the first time the pod starts and are subsequently removed. They can be added using the podman create command's --init-ctr option. - Support for init containers has also been added to podman play kube and podman generate kube - init containers contained in Kubernetes YAML will be created as Podman init containers, and YAML generated by Podman will include any init containers created. - The podman play kube command now supports building images. If the --build option is given and a directory with the name of the specified image exists in the current working directory and contains a valid Containerfile or Dockerfile, the image will be built and used for the container. - The podman play kube command now supports a new option, --teardown, which removes any pods and containers created by the given Kubernetes YAML. - The podman generate kube command now generates annotations for SELinux mount options on volume (:z and :Z) that are respected by the podman play kube command. - A new command has been added, podman pod logs, to return logs for all containers in a pod at the same time. - Two new commands have been added, podman volume export (to export a volume to a tar file) and podman volume import) (to populate a volume from a given tar file). - The podman auto-update command now supports simple rollbacks. If a container fails to start after an automatic update, it will be rolled back to the previous image and restarted again. - Pods now share their user namespace by default, and the podman pod create command now supports the --userns option. This allows rootless pods to be created with the --userns=keep-id option. - The podman pod ps command now supports a new filter with its --filter option, until, which returns pods created before a given timestamp. - The podman image scp command has been added. This command allows images to be transferred between different hosts. - The podman stats command supports a new option, --interval, to specify the amount of time before the information is refreshed. - The podman inspect command now includes ports exposed (but not published) by containers (e.g. ports from --expose when --publish-all is not specified). - The podman inspect command now has a new boolean value, Checkpointed, which indicates that a container was stopped as a result of a podman container checkpoint operation. - Volumes created by podman volume create now support setting quotas when run atop XFS. The size and inode options allow the maximum size and maximum number of inodes consumed by a volume to be limited. - The podman info command now outputs information on what log drivers, network drivers, and volume plugins are available for use (#11265). - The podman info command now outputs the current log driver in use, and the variant and codename of the distribution in use. - The parameters of the VM created by podman machine init (amount of disk space, memory, CPUs) can now be set in containers.conf. - The podman machine ls command now shows additional information (CPUs, memory, disk size) about VMs managed by podman machine. - The podman ps command now includes healthcheck status in container state for containers that have healthchecks (#11527). * Changes - The podman build command has a new alias, podman buildx, to improve compatibility with Docker. We have already added support for many docker buildx flags to podman build and aim to continue to do so. - Cases where Podman is run without a user session or a writable temporary files directory will now produce better error messages. - The default log driver has been changed from file to journald. The file driver did not properly support log rotation, so this should lead to a better experience. If journald is not available on the system, Podman will automatically revert to the file. - Podman no longer depends on ip for removing networks (#11403). - The deprecated --macvlan flag to podman network create now warns when it is used. It will be removed entirely in the Podman 4.0 release. - The podman machine start command now prints a message when the VM is successfully started. - The podman stats command can now be used on containers that are paused. - The podman unshare command will now return the exit code of the command that was run in the user namespace (assuming the command was successfully run). - Successful healthchecks will no longer add a healthy line to the system log to reduce log spam. - As a temporary workaround for a lack of shortname prompts in the Podman remote client, VMs created by podman machine now default to only using the docker.io registry. * Bugfixes - Fixed a bug where whitespace in the definition of sysctls (particularly default sysctls specified in containers.conf) would cause them to be parsed incorrectly. - Fixed a bug where the Windows remote client improperly validated volume paths (#10900). - Fixed a bug where the first line of logs from a container run with the journald log driver could be skipped. - Fixed a bug where images created by podman commit did not include ports exposed by the container. - Fixed a bug where the podman auto-update command would ignore the io.containers.autoupdate.authfile label when pulling images (#11171). - Fixed a bug where the --workdir option to podman create and podman run could not be set to a directory where a volume was mounted (#11352). - Fixed a bug where systemd socket-activation did not properly work with systemd-managed Podman containers (#10443). - Fixed a bug where environment variable secrets added to a container were not available to exec sessions launched in the container. - Fixed a bug where rootless containers could fail to start the rootlessport port-forwarding service when XDG_RUNTIME_DIR was set to a long path. - Fixed a bug where arguments to the --systemd option to podman create and podman run were case-sensitive (#11387). - Fixed a bug where the podman manifest rm command would also remove images referenced by the manifest, not just the manifest itself (#11344). - Fixed a bug where the Podman remote client on OS X would not function properly if the TMPDIR environment variable was not set (#11418). - Fixed a bug where the /etc/hosts file was not guaranteed to contain an entry for localhost (this is still not guaranteed if --net=host is used; such containers will exactly match the host's /etc/hosts) (#11411). - Fixed a bug where the podman machine start command could print warnings about unsupported CPU features (#11421). - Fixed a bug where the podman info command could segfault when accessing cgroup information. - Fixed a bug where the podman logs -f command could hang when a container exited (#11461). - Fixed a bug where the podman generate systemd command could not be used on containers that specified a restart policy (#11438). - Fixed a bug where the remote Podman client's podman build command would fail to build containers if the UID and GID on the client were higher than 65536 (#11474). - Fixed a bug where the remote Podman client's podman build command would fail to build containers if the context directory was a symlink (#11732). - Fixed a bug where the --network flag to podman play kube was not properly parsed when a non-bridge network configuration was specified. - Fixed a bug where the podman inspect command could error when the container being inspected was removed as it was being inspected (#11392). - Fixed a bug where the podman play kube command ignored the default pod infra image specified in containers.conf. - Fixed a bug where the --format option to podman inspect was nonfunctional under some circumstances (#8785). - Fixed a bug where the remote Podman client's podman run and podman exec commands could skip a byte of output every 8192 bytes (#11496). - Fixed a bug where the podman stats command would print nonsensical results if the container restarted while it was running (#11469). - Fixed a bug where the remote Podman client would error when STDOUT was redirected on a Windows client (#11444). - Fixed a bug where the podman run command could return 0 when the application in the container exited with 125 (#11540). - Fixed a bug where containers with --restart=always set using the rootlessport port-forwarding service could not be restarted automatically. - Fixed a bug where the --cgroups=split option to podman create and podman run was silently discarded if the container was part of a pod. - Fixed a bug where the podman container runlabel command could fail if the image name given included a tag. - Fixed a bug where Podman could add an extra 127.0.0.1 entry to /etc/hosts under some circumstances (#11596). - Fixed a bug where the remote Podman client's podman untag command did not properly handle tags including a digest (#11557). - Fixed a bug where the --format option to podman ps did not properly support the table argument for tabular output. - Fixed a bug where the --filter option to podman ps did not properly handle filtering by healthcheck status (#11687). - Fixed a bug where the podman run and podman start --attach commands could race when retrieving the exit code of a container that had already been removed resulting in an error (e.g. by an external podman rm -f) (#11633). - Fixed a bug where the podman generate kube command would add default environment variables to generated YAML. - Fixed a bug where the podman generate kube command would add the default CMD from the image to generated YAML (#11672). - Fixed a bug where the podman rm --storage command could fail to remove containers under some circumstances (#11207). - Fixed a bug where the podman machine ssh command could fail when run on Linux (#11731). - Fixed a bug where the podman stop command would error when used on a container that was already stopped (#11740). - Fixed a bug where renaming a container in a pod using the podman rename command, then removing the pod using podman pod rm, could cause Podman to believe the new name of the container was permanently in use, despite the container being removed (#11750). * API - The Libpod Pull endpoint for Images now has a new query parameter, quiet, which (when set to true) suppresses image pull progress reports (#10612). - The Compat Events endpoint now includes several deprecated fields from the Docker v1.21 API for improved compatibility with older clients. - The Compat List and Inspect endpoints for Images now prefix image IDs with sha256: for improved Docker compatibility (#11623). - The Compat Create endpoint for Containers now properly sets defaults for healthcheck-related fields (#11225). - The Compat Create endpoint for Containers now supports volume options provided by the Mounts field (#10831). - The Compat List endpoint for Secrets now supports a new query parameter, filter, which allows returned results to be filtered. - The Compat Auth endpoint now returns the correct response code (500 instead of 400) when logging into a registry fails. - The Version endpoint now includes information about the OCI runtime and Conmon in use (#11227). - Fixed a bug where the X-Registry-Config header was not properly handled, leading to errors when pulling images (#11235). - Fixed a bug where invalid query parameters could cause a null pointer dereference when creating error messages. - Logging of API requests and responses at trace level has been greatly improved, including the addition of an X-Reference-Id header to correlate requests and responses (#10053). Update to version 3.3.1: * Bugfixes - Fixed a bug where unit files created by podman generate systemd could not cleanup shut down containers when stopped by systemctl stop (#11304). - Fixed a bug where podman machine commands would not properly locate the gvproxy binary in some circumstances. - Fixed a bug where containers created as part of a pod using the --pod-id-file option would not join the pod's network namespace (#11303). - Fixed a bug where Podman, when using the systemd cgroups driver, could sometimes leak dbus sessions. - Fixed a bug where the until filter to podman logs and podman events was improperly handled, requiring input to be negated (#11158). - Fixed a bug where rootless containers using CNI networking run on systems using systemd-resolved for DNS would fail to start if resolved symlinked /etc/resolv.conf to an absolute path (#11358). * API - A large number of potential file descriptor leaks from improperly closing client connections have been fixed. Update to version 3.3.0: * Fix network aliases with network id * machine: compute sha256 as we read the image file * machine: check for file exists instead of listing directory * pkg/bindings/images.nTar(): slashify hdr.Name values * Volumes: Only remove from DB if plugin removal succeeds * For compatibility, ignore Content-Type * [v3.3] Bump c/image 5.15.2, buildah v1.22.3 * Implement SD-NOTIFY proxy in conmon * Fix rootless cni dns without systemd stub resolver * fix rootlessport flake * Skip stats test in CGv1 container environments * Fix AVC denials in tests of volume mounts * Restore buildah-bud test requiring new images * Revert ".cirrus.yml: use fresh images for all VMs" * Fix device tests using ls test files * Enhance priv. dev. check * Workaround host availability of /dev/kvm * Skip cgroup-parent test due to frequent flakes * Cirrus: Fix not uploading logformatter html Switch to crun (bsc#1188914) Update to version 3.2.3: * Bump to v3.2.3 * Update release notes for v3.2.3 * vendor containers/common@v0.38.16 * vendor containers/buildah@v1.21.3 * Fix race conditions in rootless cni setup * CNI-in-slirp4netns: fix bind-mount for /run/systemd/resolve/stub-resolv.conf * Make rootless-cni setup more robust * Support uid,gid,mode options for secrets * vendor containers/common@v0.38.15 * [CI:DOCS] podman search: clarify that results depend on implementation * vendor containers/common@v0.38.14 * vendor containers/common@v0.38.13 * [3.2] vendor containers/common@v0.38.12 * Bump README to v3.2.2 * Bump to v3.2.3-dev - Update to version 3.2.2: * Bump to v3.2.2 * fix systemcontext to use correct TMPDIR * Scrub podman commands to use report package * Fix volumes with uid and gid options * Vendor in c/common v0.38.11 * Initial release notes for v3.2.2 * Fix restoring of privileged containers * Fix handling of podman-remote build --device * Add support for podman remote build -f - . * Fix panic condition in cgroups.getAvailableControllers * Fix permissions on initially created named volumes * Fix building static podman-remote * add correct slirp ip to /etc/hosts * disable tty-size exec checks in system tests * Fix resize race with podman exec -it * Fix documentation of the --format option of podman push * Fix systemd-resolved detection. * Health Check is not handled in the compat LibpodToContainerJSON * Do not use inotify for OCICNI * getContainerNetworkInfo: lock netNsCtr before sync * [NO TESTS NEEDED] Create /etc/mtab with the correct ownership * Create the /etc/mtab file if does not exists * [v3.2] cp: do not allow dir->file copying * create: support images with invalid platform * vendor containers/common@v0.38.10 * logs: k8s-file: restore poll sleep * logs: k8s-file: fix spurious error logs * utils: move message from warning to debug * Bump to v3.2.2-dev - Update to version 3.2.1: * Bump to v3.2.1 * Updated release notes for v3.2.1 * Fix network connect race with docker-compose * Revert "Ensure minimum API version is set correctly in tests" * Fall back to string for dockerfile parameter * remote events: fix --stream=false * [CI:DOCS] fix incorrect network remove api doc * remote: always send resize before the container starts * remote events: support labels * remote pull: cancel pull when connection is closed * Fix network prune api docs * Improve systemd-resolved detection * logs: k8s-file: fix race * Fix image prune --filter cmd behavior * Several shell completion fixes * podman-remote build should handle -f option properly * System tests: deal with crun 0.20.1 * Fix build tags for pkg/machine... * Fix pre-checkpointing * container: ignore named hierarchies * [v3.2] vendor containers/common@v0.38.9 * rootless: fix fast join userns path * [v3.2] vendor containers/common@v0.38.7 * [v3.2] vendor containers/common@v0.38.6 * Correct qemu options for Intel macs * Ensure minimum API version is set correctly in tests * Bump to v3.2.1-dev - Update to version 3.2.0: * Bump to v3.2.0 * Fix network create macvlan with subnet option * Final release notes updates for v3.2.0 * add ipv6 nameservers only when the container has ipv6 enabled * Use request context instead of background * [v.3.2] events: support disjunctive filters * System tests: add :Z to volume mounts * generate systemd: make mounts portable * vendor containers/storage@v1.31.3 * vendor containers/common@v0.38.5 * Bump to v3.2.0-dev * Bump to v3.2.0-RC3 * Update release notes for v3.2.0-RC3 * Fix race on podman start --all * Fix race condition in running ls container in a pod * docs: --cert-dir: point to containers-certs.d(5) * Handle hard links in different directories * Improve OCI Runtime error * Handle hard links in remote builds * Podman info add support for status of cgroup controllers * Drop container does not exist on removal to debugf * Downgrade API service routing table logging * add libimage events * docs: generate systemd: XDG_RUNTIME_DIR * Fix problem copying files when container is in host pid namespace * Bump to v3.2.0-dev * Bump to v3.2.0-RC2 * update c/common * Update Cirrus DEST_BRANCH to v3.2 * Updated vendors of c/image, c/storage, Buildah * Initial release notes for v3.2.0-RC2 * Add script for identifying commits in release branches * Add host.containers.internal entry into container's etc/hosts * image prune: remove unused images only with `--all` * podman network reload add rootless support * Use more recent `stale` release... * network tutorial: update with rootless cni changes * [CI:DOCS] Update first line in intro page * Use updated VM images + updated automation tooling * auto-update service: prune images * make vendor * fix system upgrade tests * Print "extracting" only on compressed file * podman image tree: restore previous behavior * fix network restart always test * fix incorrect log driver in podman container image * Add support for cli network prune --filter flag * Move filter parsing to common utils * Bump github.com/containers/storage from 1.30.2 to 1.30.3 * Update nix pin with `make nixpkgs` * [CI:DOCS] hack/bats - new helper for running system tests * fix restart always with slirp4netns * Bump github.com/opencontainers/runc from 1.0.0-rc93 to 1.0.0-rc94 * Bump github.com/coreos/go-systemd/v22 from 22.3.1 to 22.3.2 * Add host.serviceIsRemote to podman info results * Add client disconnect to build handler loop * Remove obsolete skips * Fix podman-remote build --rm=false ... * fix: improved "containers/{name}/wait" endpoint * Bump github.com/containers/storage from 1.30.1 to 1.30.2 * Add envars to the generated systemd unit * fix: use UTC Time Stamps in response JSON * fix container startup for empty pidfile * Kube like pods should share ipc,net,uts by default * fix: compat API "images/get" for multiple images * Revert escaped double dash man page flag syntax * Report Download complete in Compatibility mode * Add documentation on short-names * Bump github.com/docker/docker * Adds support to preserve auto update labels in generate and play kube * [CI:DOCS] Stop conversion of `--` into en dash * Revert Patch to relabel if selinux not enabled * fix per review request * Add support for environment variable secrets * fix pre review request * Fix infinite loop in isPathOnVolume * Add containers.conf information for changing defaults * CI: run rootless tests under ubuntu * Fix wrong macvlan PNG in networking doc. * Add restart-policy to container filters & --filter to podman start * Fixes docker-compose cannot set static ip when use ipam * channel: simplify implementation * build: improve regex for iidfile * Bump github.com/onsi/gomega from 1.11.0 to 1.12.0 * cgroup: fix rootless --cgroup-parent with pods * fix: docker APIv2 `images/get` * codespell cleanup * Minor podmanimage docs updates. * Fix handling of runlabel IMAGE and NAME * Bump to v3.2.0-dev * Bump to v3.2.0-rc1 * rootless: improve automatic range split * podman: set volatile storage flag for --rm containers * Bump github.com/onsi/ginkgo from 1.16.1 to 1.16.2 * Bump github.com/containers/image/v5 from 5.11.1 to 5.12.0 * migrate Podman to containers/common/libimage * Add filepath glob support to --security-opt unmask * Force log_driver to k8s-file for containers in containers * add --mac-address to podman play kube * compat api: Networks must be empty instead of null * System tests: honor $OCI_RUNTIME (for CI) * is this a bug? * system test image: add arm64v8 image * Fix troubleshooting documentation on handling sublemental groups. * Add --all to podman start * Fix variable reference typo. in multi-arch image action * cgroup: always honor --cgroup-parent with cgroupfs * Bump github.com/uber/jaeger-client-go * Don't require tests for github-actions & metadata * Detect if in podman machine virtual vm * Fix multi-arch image workflow typo * [CI:DOCS] Add titles to remote docs (windows) * Remove unused VolumeList* structs * Cirrus: Update F34beta -> F34 * Update container image docs + fix unstable execution * Bump github.com/containers/storage from 1.30.0 to 1.30.1 * TODO complete * Docker returns 'die' status rather then 'died' status * Check if another VM is running on machine start * [CI:DOCS] Improve titles of command HTML pages * system tests: networking: fix another race condition * Use seccomp_profile as default profile if defined in containers.conf * Bump github.com/json-iterator/go from 1.1.10 to 1.1.11 * Vendored * Autoupdate local label functional * System tests: fix two race conditions * Add more documentation on conmon * Allow docker volume create API to pass without name * Cirrus: Update Ubuntu images to 21.04 * Skip blkio-weight test when no kernel BFQ support * rootless: Tell the user what was led to the error, not just what it is * Add troubleshooting advice about the --userns option. * Fix images prune filter until * Fix logic for pushing stable multi-arch images * Fixes generate kube incorrect when bind-mounting "/" and "/root" * libpod/image: unit tests: don't use system's registries.conf.d * runtime: create userns when CAP_SYS_ADMIN is not present * rootless: attempt to copy current mappings first * [CI:DOCS] Restore missing content to manpages * [CI:DOCS] Fix Markdown layout bugs * Fix podman ps --filter ancestor to match exact ImageName/ImageID * Add machine-enabled to containers.conf for machine * Several multi-arch image build/push fixes * Add podman run --timeout option * Parse slirp4netns net options with compat api * Fix rootlesskit port forwarder with custom slirp cidr * Fix removal race condition in ListContainers * Add github-action workflow to build/push multi-arch * rootless: if root is not sub?id raise a debug message * Bump github.com/containers/common from 0.36.0 to 0.37.0 * Add go template shell completion for --format * Add --group-add keep-groups: suplimentary groups into container * Fixes from make codespell * Typo fix to usage text of --compress option * corrupt-image test: fix an oops * Add --noheading flag to all list commands * Bump github.com/containers/storage from 1.29.0 to 1.30.0 * Bump github.com/containers/image/v5 from 5.11.0 to 5.11.1 * [CI:DOCS] Fix Markdown table layout bugs * podman-remote should show podman.sock info * rmi: don't break when the image is missing a manifest * [CI:DOCS] Rewrite --uidmap doc in podman-create.1.md and podman-run.1.md * Add support for CDI device configuration * [CI:DOCS] Add missing dash to verbose option * Bump github.com/uber/jaeger-client-go * Remove an advanced layer diff function * Ensure mount destination is clean, no trailing slash * add it for inspect pidfile * [CI:DOCS] Fix introduction page typo * support pidfile on container restore * fix start it * skip pidfile test on remote * improve document * set pidfile default value int containerconfig * add pidfile in inspection * add pidfile it for container start * skip pidfile it on remote * Modify according to comments * WIP: drop test requirement * runtime: bump required conmon version * runtime: return findConmon to libpod * oci: drop ExecContainerCleanup * oci: use `--full-path` option for conmon * use AttachSocketPath when removing conmon files * hide conmon-pidfile flag on remote mode * Fix possible panic in libpod/image/prune.go * add --ip to podman play kube * add flag autocomplete * add ut * add flag "--pidfile" for podman create/run * Add network bindings tests: remove and list * Fix build with GO111MODULE=off * system tests: build --pull-never: deal with flakes * compose test: diagnose flakes v3 * podman play kube apply correct log driver * Fixes podman-remote save to directories does not work * Bump github.com/rootless-containers/rootlesskit from 0.14.1 to 0.14.2 * Update documentation of podman-run to reflect volume "U" option * Fix flake on failed podman-remote build : try 2 * compose test: ongoing efforts to diagnose flakes * Test that we don't error out on advertised --log-level values * At trace log level, print error text using %+v instead of %v * pkg/errorhandling.JoinErrors: don't throw away context for lone errors * Recognize --log-level=trace * Fix flake on failed podman-remote build * System tests: fix racy podman-inspect * Fixes invalid expression in save command * Bump github.com/containers/common from 0.35.4 to 0.36.0 * Update nix pin with `make nixpkgs` * compose test: try to get useful data from flakes * Remove in-memory state implementation * Fix message about runtime to show only the actual runtime * System tests: setup: better cleanup of stray images * Bump github.com/containers/ocicrypt from 1.1.0 to 1.1.1 * Reflect current state of prune implementation in docs * Do not delete container twice * [CI:DOCS] Correct status code for /pods/create * vendor in containers/storage v1.29.0 * cgroup: do not set cgroup parent when rootless and cgroupfs * Overhaul Makefile binary and release worflows * Reorganize Makefile with sections and guide * Simplify Makefile help target * Don't shell to obtain current directory * Remove unnecessary/not-needed release.txt target * Fix incorrect version number output * Exclude .gitignore from test req. * Fix handling of $NAME and $IMAGE in runlabel * Update podman image Dockerfile to support Podman in container * Bump github.com/containers/image/v5 from 5.10.5 to 5.11.0 * Fix slashes in socket URLs * Add network prune filters support to bindings * Add support for play/generate kube volumes * Update manifest API endpoints * Fix panic when not giving a machine name for ssh * cgroups: force 64 bits to ParseUint * Bump k8s.io/api from 0.20.5 to 0.21.0 * [CI:DOCS] Fix formatting of podman-build man page * buildah-bud tests: simplify * Add missing return * Bump github.com/onsi/ginkgo from 1.16.0 to 1.16.1 * speed up CI handling of images * Volumes prune endpoint should use only prune filters * Cirrus: Use Fedora 34beta images * Bump go.sum + Makefile for golang 1.16 * Exempt Makefile changes from test requirements * Adjust libpod API Container Wait documentation to the code * [CI:DOCS] Update swagger definition of inspect manifest * use updated ubuntu images * podman unshare: add --rootless-cni to join the ns * Update swagger-check * swagger: remove name wildcards * Update buildah-bud diffs * Handle podman-remote --arch, --platform, --os * buildah-bud tests: handle go pseudoversions, plus... * Fix flaking rootless compose test * rootless cni add /usr/sbin to PATH if not present * System tests: special case for RHEL: require runc * Add --requires flag to podman run/create * [CI:DOCS] swagger-check: compare operations * [CI:DOCS] Polish swagger OpertionIDs * [NO TESTS NEEDED] Update nix pin with `make nixpkgs` * Ensure that `--userns=keep-id` sets user in config * [CI:DOCS] Set all operation id to be compatibile * Move operationIds to swagger:operation line * swagger: add operationIds that match with docker * Cirrus: Make use of shared get_ci_vm container * Don't relabel volumes if running in a privileged container * Allow users to override default storage opts with --storage-opt * Add support for podman --context default * Verify existence of auth file if specified * fix machine naming conventions * Initial network bindings tests * Update release notes to indicate CVE fix * Move socket activation check into init() and set global condition. * Bump github.com/onsi/ginkgo from 1.15.2 to 1.16.0 * Http api tests for network prune with until filter * podman-run.1.md, podman-create.1.md : Adjust Markdown layout for --userns * Fix typos --uidmapping and --gidmapping * Add transport and destination info to manifest doc * Bump github.com/rootless-containers/rootlesskit from 0.14.0 to 0.14.1 * Add default template functions * Fix missing podman-remote build options * Bump github.com/coreos/go-systemd/v22 from 22.3.0 to 22.3.1 * Add ssh connection to root user * Add rootless docker-compose test to the CI * Use the slrip4netns dns in the rootless cni ns * Cleanup the rootless cni namespace * Add new docker-compose test for two networks * Make the docker-compose test work rootless * Remove unused rootless-cni-infra container files * Only use rootless RLK when the container has ports * Fix dnsname test * Enable rootless network connect/disconnect * Move slirp4netns functions into an extra file * Fix pod infra container cni network setup * Add rootless support for cni and --uidmap * rootless cni without infra container * Recreate until container prune tests for bindings * Remove --execute from podman machine ssh * Fixed podman-remote --network flag * Makefile: introduce install.docker-full * Makefile: ensure install.docker creates BINDIR * Fix unmount doc reference in image.rst * Should send the OCI runtime path not just the name to buildah * podman machine shell completion * Fix handling of remove --log-rusage param * Fix bindings prune containers flaky test * [CI:DOCS] Add local html build info to docs/README.md * Add podman machine list * Trim white space from /top endpoint results * Remove semantic version suffices from API calls * podman machine init --ignition-path * Document --volume from podman-remote run/create client * Update main branch to reflect the release of v3.1.0 * Silence podman network reload errors with iptables-nft * Containers prune endpoint should use only prune filters * resolve proper aarch64 image names * APIv2 basic test: relax APIVersion check * Add machine support for qemu-system-aarch64 * podman machine init user input * manpage xref: helpful diagnostic for unescaped dash-dash * Bump to v3.2.0-dev * swagger: update system version response body * buildah-bud tests: reenable pull-never test * [NO TESTS NEEDED] Shrink the size of podman-remote * Add powershell completions * [NO TESTS NEEDED] Drop Warning to Info, if cgroups not mounted * Fix long option format on docs.podman.io * system tests: friendier messages for 2-arg is() * service: use LISTEN_FDS * man pages: correct seccomp-policy label * rootless: use is_fd_inherited * podman generate systemd --new do not duplicate params * play kube: add support for env vars defined from secrets * play kube: support optional/mandatory env var from config map * play kube: prepare supporting other env source than config maps * Add machine support for more Linux distros * [NO TESTS NEEDED] Use same function podman-remote rmi as podman * Podman machine enhancements * Add problematic volume name to kube play error messages * Fix podman build --pull-never * [NO TESTS NEEDED] Fix for kernel without CONFIG_USER_NS * [NO TESTS NEEDED] Turn on podman-remote build --isolation * Fix list pods filter handling in libpod api * Remove resize race condition * [NO TESTS NEEDED] Vendor in containers/buildah v1.20.0 * Use TMPDIR when commiting images * Add RequiresMountsFor= to systemd generate * Bump github.com/vbauerster/mpb/v6 from 6.0.2 to 6.0.3 * Fix swapped dimensions from terminal.GetSize * Rename podman machine create to init and clean up * Correct json field name * system tests: new interactive tests * Improvements for machine * libpod/image: unit tests: use a `registries.conf` for aliases * libpod/image: unit tests: defer cleanup * libpod/image: unit tests: use `require.NoError` * Add --execute flag to podman machine ssh * introduce podman machine * Podman machine CLI and interface stub * Support multi doc yaml for generate/play kube * Fix filters in image http compat/libpod api endpoints * Bump github.com/containers/common from 0.35.3 to 0.35.4 * Bump github.com/containers/storage from 1.28.0 to 1.28.1 * Check if stdin is a term in --interactive --tty mode * [NO TESTS NEEDED] Remove /tmp/containers-users-* files on reboot * [NO TESTS NEEDED] Fix rootless volume plugins * Ensure manually-created volumes have correct ownership * Bump github.com/rootless-containers/rootlesskit * Unification of until filter across list/prune endpoints * Unification of label filter across list/prune endpoints * fixup * fix: build endpoint for compat API * [CI:DOCS] Add note to mappings for user/group userns in build * Bump k8s.io/api from 0.20.1 to 0.20.5 * Validate passed in timezone from tz option * WIP: run buildah bud tests using podman * Fix containers list/prune http api filter behaviour * Generate Kubernetes PersistentVolumeClaims from named volumes - Update to version 3.1.2: * Bump to v3.1.2 * Update release notes for v3.1.2 * Ensure mount destination is clean, no trailing slash * Fixes podman-remote save to directories does not work * [CI:DOCS] Add missing dash to verbose option * [CI:DOCS] Fix Markdown table layout bugs * [CI:DOCS] Rewrite --uidmap doc in podman-create.1.md and podman-run.1.md * rmi: don't break when the image is missing a manifest * Bump containers/image to v5.11.1 * Bump github.com/coreos/go-systemd from 22.2.0 to 22.3.1 * Fix lint * Bump to v3.1.2-dev - Split podman-remote into a subpackage - Add missing scriptlets for systemd units - Escape macros in comments - Drop some obsolete workarounds, including %{go_nostrip} - Update to version 3.1.1: * Bump to v3.1.1 * Update release notes for v3.1.1 * podman play kube apply correct log driver * Fix build with GO111MODULE=off * [CI:DOCS] Set all operation id to be compatibile * Move operationIds to swagger:operation line * swagger: add operationIds that match with docker * Fix missing podman-remote build options * [NO TESTS NEEDED] Shrink the size of podman-remote * Move socket activation check into init() and set global condition. * rootless: use is_fd_inherited * Recreate until container prune tests for bindings * System tests: special case for RHEL: require runc * Document --volume from podman-remote run/create client * Containers prune endpoint should use only prune filters * Trim white space from /top endpoint results * Fix unmount doc reference in image.rst * Fix handling of remove --log-rusage param * Makefile: introduce install.docker-full * Makefile: ensure install.docker creates BINDIR * Should send the OCI runtime path not just the name to buildah * Fixed podman-remote --network flag * podman-run.1.md, podman-create.1.md : Adjust Markdown layout for --userns * Fix typos --uidmapping and --gidmapping * Add default template functions * Don't relabel volumes if running in a privileged container * Allow users to override default storage opts with --storage-opt * Add transport and destination info to manifest doc * Verify existence of auth file if specified * Ensure that `--userns=keep-id` sets user in config * [CI:DOCS] Update swagger definition of inspect manifest * Volumes prune endpoint should use only prune filters * Adjust libpod API Container Wait documentation to the code * Add missing return * [CI:DOCS] Fix formatting of podman-build man page * cgroups: force 64 bits to ParseUint * Fix slashes in socket URLs * [CI:DOCS] Correct status code for /pods/create * cgroup: do not set cgroup parent when rootless and cgroupfs * Reflect current state of prune implementation in docs * Do not delete container twice * Test that we don't error out on advertised --log-level values * At trace log level, print error text using %+v instead of %v * pkg/errorhandling.JoinErrors: don't throw away context for lone errors * Recognize --log-level=trace * Fix message about runtime to show only the actual runtime * Fix handling of $NAME and $IMAGE in runlabel * Fix flake on failed podman-remote build : try 2 * Fix flake on failed podman-remote build * Update documentation of podman-run to reflect volume "U" option * Fixes invalid expression in save command * Fix possible panic in libpod/image/prune.go * Update all containers/ project vendors * Fix tests * Bump to v3.1.1-dev - Update to version 3.1.0: * Bump to v3.1.0 * Fix test failure * Update release notes for v3.1.0 final release * [NO TESTS NEEDED] Turn on podman-remote build --isolation * Fix long option format on docs.podman.io * Fix containers list/prune http api filter behaviour * [CI:DOCS] Add note to mappings for user/group userns in build * Validate passed in timezone from tz option * Generate Kubernetes PersistentVolumeClaims from named volumes * libpod/image: unit tests: use a `registries.conf` for aliases - Require systemd 241 or newer due to podman dependency go-systemd v22, otherwise build will fail with unknown C name errors - Create docker subpackage to allow replacing docker with corresponding aliases to podman. - Update to v3.0.1 * Changes - Several frequently-occurring WARN level log messages have been downgraded to INFO or DEBUG to not clutter terminal output. Bugfixes - Fixed a bug where the Created field of podman ps --format=json was formatted as a string instead of an Unix timestamp (integer) (#9315). - Fixed a bug where failing lookups of individual layers during the podman images command would cause the whole command to fail without printing output. - Fixed a bug where --cgroups=split did not function properly on cgroups v1 systems. - Fixed a bug where mounting a volume over an directory in the container that existed, but was empty, could fail (#9393). - Fixed a bug where mounting a volume over a directory in the container that existed could copy the entirety of the container's rootfs, instead of just the directory mounted over, into the volume (#9415). - Fixed a bug where Podman would treat the --entrypoint=[""] option to podman run and podman create as a literal empty string in the entrypoint, when instead it should have been ignored (#9377). - Fixed a bug where Podman would set the HOME environment variable to "" when the container ran as a user without an assigned home directory (#9378). - Fixed a bug where specifying a pod infra image that had no tags (by using its ID) would cause podman pod create to panic (#9374). - Fixed a bug where the --runtime option was not properly handled by the podman build command (#9365). - Fixed a bug where Podman would incorrectly print an error message related to the remote API when the remote API was not in use and starting Podman failed. - Fixed a bug where Podman would change ownership of a container's working directory, even if it already existed (#9387). - Fixed a bug where the podman generate systemd --new command would incorrectly escape %t when generating the path for the PID file (#9373). - Fixed a bug where Podman could, when run inside a Podman container with the host's containers/storage directory mounted into the container, erroneously detect a reboot and reset container state if the temporary directory was not also mounted in (#9191). - Fixed a bug where some options of the podman build command (including but not limited to --jobs) were nonfunctional (#9247). * API - Fixed a breaking change to the Libpod Wait API for Containers where the Conditions parameter changed type in Podman v3.0 (#9351). - Fixed a bug where the Compat Create endpoint for Containers did not properly handle forwarded ports that did not specify a host port. - Fixed a bug where the Libpod Wait endpoint for Containers could write duplicate headers after an error occurred. - Fixed a bug where the Compat Create endpoint for Images would not pull images that already had a matching tag present locally, even if a more recent version was available at the registry (#9232). - The Compat Create endpoint for Images has had its compatibility with Docker improved, allowing its use with the docker-java library. * Misc - Updated Buildah to v1.19.4 - Updated the containers/storage library to v1.24.6 - Changes from v3.0.0 * Features - Podman now features initial support for Docker Compose. - Added the podman rename command, which allows containers to be renamed after they are created (#1925). - The Podman remote client now supports the podman copy command. - A new command, podman network reload, has been added. This command will re-configure the network of all running containers, and can be used to recreate firewall rules lost when the system firewall was reloaded (e.g. via firewall-cmd --reload). - Podman networks now have IDs. They can be seen in podman network ls and can be used when removing and inspecting networks. Existing networks receive IDs automatically. - Podman networks now also support labels. They can be added via the --label option to network create, and podman network ls can filter labels based on them. - The podman network create command now supports setting bridge MTU and VLAN through the --opt option (#8454). - The podman container checkpoint and podman container restore commands can now checkpoint and restore containers that include volumes. - The podman container checkpoint command now supports the --with-previous and --pre-checkpoint options, and the podman container restore command now support the --import-previous option. These add support for two-step checkpointing with lowered dump times. - The podman push command can now push manifest lists. Podman will first attempt to push as an image, then fall back to pushing as a manifest list if that fails. - The podman generate kube command can now be run on multiple containers at once, and will generate a single pod containing all of them. - The podman generate kube and podman play kube commands now support Kubernetes DNS configuration, and will preserve custom DNS configuration when exporting or importing YAML (#9132). - The podman generate kube command now properly supports generating YAML for containers and pods creating using host networking (--net=host) (#9077). - The podman kill command now supports a --cidfile option to kill containers given a file containing the container's ID (#8443). - The podman pod create command now supports the --net=none option (#9165). - The podman volume create command can now specify volume UID and GID as options with the UID and GID fields passed to the the --opt option. - Initial support has been added for Docker Volume Plugins. Podman can now define available plugins in containers.conf and use them to create volumes with podman volume create --driver. - The podman run and podman create commands now support a new option, --platform, to specify the platform of the image to be used when creating the container. - The --security-opt option to podman run and podman create now supports the systempaths=unconfined option to unrestrict access to all paths in the container, as well as mask and unmask options to allow more granular restriction of container paths. - The podman stats --format command now supports a new format specified, MemUsageBytes, which prints the raw bytes of memory consumed by a container without human-readable formatting #8945. - The podman ps command can now filter containers based on what pod they are joined to via the pod filter (#8512). - The podman pod ps command can now filter pods based on what networks they are joined to via the network filter. The podman pod ps command can now print information on what networks a pod is joined to via the .Networks specifier to the --format option. - The podman system prune command now supports filtering what containers, pods, images, and volumes will be pruned. - The podman volume prune commands now supports filtering what volumes will be pruned. - The podman system prune command now includes information on space reclaimed (#8658). - The podman info command will now properly print information about packages in use on Gentoo and Arch systems. - The containers.conf file now contains an option for disabling creation of a new kernel keyring on container creation (#8384). - The podman image sign command can now sign multi-arch images by producing a signature for each image in a given manifest list. - The podman image sign command, when run as rootless, now supports per-user registry configuration files in $HOME/.config/containers/registries.d. - Configuration options for slirp4netns can now be set system-wide via the NetworkCmdOptions configuration option in containers.conf. - The MTU of slirp4netns can now be configured via the mtu= network command option (e.g. podman run --net slirp4netns:mtu=9000). * Security - A fix for CVE-2021-20199 is included. Podman between v1.8.0 and v2.2.1 used 127.0.0.1 as the source address for all traffic forwarded into rootless containers by a forwarded port; this has been changed to address the issue. * Changes - Shortname aliasing support has now been turned on by default. All Podman commands that must pull an image will, if a TTY is available, prompt the user about what image to pull. - The podman load command no longer accepts a NAME[:TAG] argument. The presence of this argument broke CLI compatibility with Docker by making docker load commands unusable with Podman (#7387). - The Go bindings for the HTTP API have been rewritten with a focus on limiting dependency footprint and improving extensibility. Read more here. - The legacy Varlink API has been completely removed from Podman. - The default log level for Podman has been changed from Error to Warn. - The podman network create command can now create macvlan networks using the --driver macvlan option for Docker compatibility. The existing --macvlan flag has been deprecated and will be removed in Podman 4.0 some time next year. - The podman inspect command has had the LogPath and LogTag fields moved into the LogConfig structure (from the root of the Inspect structure). The maximum size of the log file is also included. - The podman generate systemd command no longer generates unit files using the deprecated KillMode=none option (#8615). - The podman stop command now releases the container lock while waiting for it to stop - as such, commands like podman ps will no longer block until podman stop completes (#8501). - Networks created with podman network create --internal no longer use the dnsname plugin. This configuration never functioned as expected. - Error messages for the remote Podman client have been improved when it cannot connect to a Podman service. - Error messages for podman run when an invalid SELinux is specified have been improved. - Rootless Podman features improved support for containers with a single user mapped into the rootless user namespace. - Pod infra containers now respect default sysctls specified in containers.conf allowing for advanced configuration of the namespaces they will share. - SSH public key handling for remote Podman has been improved. * Bugfixes - Fixed a bug where the podman history --no-trunc command would truncate the Created By field (#9120). - Fixed a bug where root containers that did not explicitly specify a CNI network to join did not generate an entry for the network in use in the Networks field of the output of podman inspect (#6618). - Fixed a bug where, under some circumstances, container working directories specified by the image (via the WORKDIR instruction) but not present in the image, would not be created (#9040). - Fixed a bug where the podman generate systemd command would generate invalid unit files if the container was creating using a command line that included doubled braces ({{ and }}), e.g. --log-opt-tag={{.Name}} (#9034). - Fixed a bug where the podman generate systemd --new command could generate unit files including invalid Podman commands if the container was created using merged short options (e.g. podman run -dt) (#8847). - Fixed a bug where the podman generate systemd --new command could generate unit files that did not handle Podman commands including some special characters (e.g. $) (#9176 - Fixed a bug where rootless containers joining CNI networks could not set a static IP address (#7842). - Fixed a bug where rootless containers joining CNI networks could not set network aliases (#8567). - Fixed a bug where the remote client could, under some circumstances, not include the Containerfile when sending build context to the server (#8374). - Fixed a bug where rootless Podman did not mount /sys as a new sysfs in some circumstances where it was acceptable. - Fixed a bug where rootless containers that both joined a user namespace and a CNI networks would cause a segfault. These options are incompatible and now return an error. - Fixed a bug where the podman play kube command did not properly handle CMD and ARGS from images (#8803). - Fixed a bug where the podman play kube command did not properly handle environment variables from images (#8608). - Fixed a bug where the podman play kube command did not properly print errors that occurred when starting containers. - Fixed a bug where the podman play kube command errored when hostNetwork was used (#8790). - Fixed a bug where the podman play kube command would always pull images when the :latest tag was specified, even if the image was available locally (#7838). - Fixed a bug where the podman play kube command did not properly handle SELinux configuration, rending YAML with custom SELinux configuration unusable (#8710). - Fixed a bug where the podman generate kube command incorrectly populated the args and command fields of generated YAML (#9211). - Fixed a bug where containers in a pod would create a duplicate entry in the pod's shared /etc/hosts file every time the container restarted (#8921). - Fixed a bug where the podman search --list-tags command did not support the --format option (#8740). - Fixed a bug where the http_proxy option in containers.conf was not being respected, and instead was set unconditionally to true (#8843). - Fixed a bug where rootless Podman could, on systems with a recent Conmon and users with a long username, fail to attach to containers (#8798). - Fixed a bug where the podman images command would break and fail to display any images if an empty manifest list was present in storage (#8931). - Fixed a bug where locale environment variables were not properly passed on to Conmon. - Fixed a bug where Podman would not build on the MIPS architecture (#8782). - Fixed a bug where rootless Podman could fail to properly configure user namespaces for rootless containers when the user specified a --uidmap option that included a mapping beginning with UID 0. - Fixed a bug where the podman logs command using the k8s-file backend did not properly handle partial log lines with a length of 1 (#8879). - Fixed a bug where the podman logs command with the --follow option did not properly handle log rotation (#8733). - Fixed a bug where user-specified HOSTNAME environment variables were overwritten by Podman (#8886). - Fixed a bug where Podman would applied default sysctls from containers.conf in too many situations (e.g. applying network sysctls when the container shared its network with a pod). - Fixed a bug where Podman did not properly handle cases where a secondary image store was in use and an image was present in both the secondary and primary stores (#8176). - Fixed a bug where systemd-managed rootless Podman containers where the user in the container was not root could fail as the container's PID file was not accessible to systemd on the host (#8506). - Fixed a bug where the --privileged option to podman run and podman create would, under some circumstances, not disable Seccomp (#8849). - Fixed a bug where the podman exec command did not properly add capabilities when the container or exec session were run with --privileged. - Fixed a bug where rootless Podman would use the --enable-sandbox option to slirp4netns unconditionally, even when pivot_root was disabled, rendering slirp4netns unusable when pivot_root was disabled (#8846). - Fixed a bug where podman build --logfile did not actually write the build's log to the logfile. - Fixed a bug where the podman system service command did not close STDIN, and could display user-interactive prompts (#8700). - Fixed a bug where the podman system reset command could, under some circumstances, remove all the contents of the XDG_RUNTIME_DIR directory (#8680). - Fixed a bug where the podman network create command created CNI configurations that did not include a default gateway (#8748). - Fixed a bug where the podman.service systemd unit provided by default used the wrong service type, and would cause systemd to not correctly register the service as started (#8751). - Fixed a bug where, if the TMPDIR environment variable was set for the container engine in containers.conf, it was being ignored. - Fixed a bug where the podman events command did not properly handle future times given to the --until option (#8694). - Fixed a bug where the podman logs command wrote container STDERR logs to STDOUT instead of STDERR (#8683). - Fixed a bug where containers created from an image with multiple tags would report that they were created from the wrong tag (#8547). - Fixed a bug where container capabilities were not set properly when the --cap-add=all and --user options to podman create and podman run were combined. - Fixed a bug where the --layers option to podman build was nonfunctional (#8643). - Fixed a bug where the podman system prune command did not act recursively, and thus would leave images, containers, pods, and volumes present that would be removed by a subsequent call to podman system prune (#7990). - Fixed a bug where the --publish option to podman run and podman create did not properly handle ports specified as a range of ports with no host port specified (#8650). - Fixed a bug where --format did not support JSON output for individual fields (#8444). - Fixed a bug where the podman stats command would fail when run on root containers using the slirp4netns network mode (#7883). - Fixed a bug where the Podman remote client would ask for a password even if the server's SSH daemon did not support password authentication (#8498). - Fixed a bug where the podman stats command would fail if the system did not support one or more of the cgroup controllers Podman supports (#8588). - Fixed a bug where the --mount option to podman create and podman run did not ignore the consistency mount option. - Fixed a bug where failures during the resizing of a container's TTY would print the wrong error. - Fixed a bug where the podman network disconnect command could cause the podman inspect command to fail for a container until it was restarted (#9234). - Fixed a bug where containers created from a read-only rootfs (using the --rootfs option to podman create and podman run) would fail (#9230). - Fixed a bug where specifying Go templates to the --format option to multiple Podman commands did not support the join function (#8773). - Fixed a bug where the podman rmi command could, when run in parallel on multiple images, return layer not known errors (#6510). - Fixed a bug where the podman inspect command on containers displayed unlimited ulimits incorrectly (#9303). - Fixed a bug where Podman would fail to start when a volume was mounted over a directory in a container that contained symlinks that terminated outside the directory and its subdirectories (#6003). API - Libpod API version has been bumped to v3.0.0. - All Libpod Pod APIs have been modified to properly report errors with individual containers. Cases where the operation as a whole succeeded but individual containers failed now report an HTTP 409 error (#8865). - The Compat API for Containers now supports the Rename and Copy APIs. - Fixed a bug where the Compat Prune APIs (for volumes, containers, and images) did not return the amount of space reclaimed in their responses. - Fixed a bug where the Compat and Libpod Exec APIs for Containers would drop errors that occurred prior to the exec session successfully starting (e.g. a "no such file" error if an invalid executable was passed) (#8281) - Fixed a bug where the Volumes field in the Compat Create API for Containers was being ignored (#8649). - Fixed a bug where the NetworkMode field in the Compat Create API for Containers was not handling some values, e.g. container:, correctly. - Fixed a bug where the Compat Create API for Containers did not set container name properly. - Fixed a bug where containers created using the Compat Create API unconditionally used Kubernetes file logging (the default specified in containers.conf is now used). - Fixed a bug where the Compat Inspect API for Containers could include container states not recognized by Docker. - Fixed a bug where Podman did not properly clean up after calls to the Events API when the journald backend was in use, resulting in a leak of file descriptors (#8864). - Fixed a bug where the Libpod Pull endpoint for Images could fail with an index out of range error under certain circumstances (#8870). - Fixed a bug where the Libpod Exists endpoint for Images could panic. - Fixed a bug where the Compat List API for Containers did not support all filters (#8860). - Fixed a bug where the Compat List API for Containers did not properly populate the Status field. - Fixed a bug where the Compat and Libpod Resize APIs for Containers ignored the height and width parameters (#7102). - Fixed a bug where the Compat Search API for Images returned an incorrectly-formatted JSON response (#8758). - Fixed a bug where the Compat Load API for Images did not properly clean up temporary files. - Fixed a bug where the Compat Create API for Networks could panic when an empty IPAM configuration was specified. - Fixed a bug where the Compat Inspect and List APIs for Networks did not include Scope. - Fixed a bug where the Compat Wait endpoint for Containers did not support the same wait conditions that Docker did. * Misc - Updated Buildah to v1.19.2 - Updated the containers/storage library to v1.24.5 - Updated the containers/image library to v5.10.2 - Updated the containers/common library to v0.33.4 - Update to v2.2.1 * Changes - Due to a conflict with a previously-removed field, we were forced to modify the way image volumes (mounting images into containers using --mount type=image) were handled in the database. As a result, containers created in Podman 2.2.0 with image volume will not have them in v2.2.1, and these containers will need to be re-created. * Bugfixes - Fixed a bug where rootless Podman would, on systems without the XDG_RUNTIME_DIR environment variable defined, use an incorrect path for the PID file of the Podman pause process, causing Podman to fail to start (#8539). - Fixed a bug where containers created using Podman v1.7 and earlier were unusable in Podman due to JSON decode errors (#8613). - Fixed a bug where Podman could retrieve invalid cgroup paths, instead of erroring, for containers that were not running. - Fixed a bug where the podman system reset command would print a warning about a duplicate shutdown handler being registered. - Fixed a bug where rootless Podman would attempt to mount sysfs in circumstances where it was not allowed; some OCI runtimes (notably crun) would fall back to alternatives and not fail, but others (notably runc) would fail to run containers. - Fixed a bug where the podman run and podman create commands would fail to create containers from untagged images (#8558). - Fixed a bug where remote Podman would prompt for a password even when the server did not support password authentication (#8498). - Fixed a bug where the podman exec command did not move the Conmon process for the exec session into the correct cgroup. - Fixed a bug where shell completion for the ancestor option to podman ps --filter did not work correctly. - Fixed a bug where detached containers would not properly clean themselves up (or remove themselves if --rm was set) if the Podman command that created them was invoked with --log-level=debug. * API - Fixed a bug where the Compat Create endpoint for Containers did not properly handle the Binds and Mounts parameters in HostConfig. - Fixed a bug where the Compat Create endpoint for Containers ignored the Name query parameter. - Fixed a bug where the Compat Create endpoint for Containers did not properly handle the "default" value for NetworkMode (this value is used extensively by docker-compose) (#8544). - Fixed a bug where the Compat Build endpoint for Images would sometimes incorrectly use the target query parameter as the image's tag. * Misc - Podman v2.2.0 vendored a non-released, custom version of the github.com/spf13/cobra package; this has been reverted to the latest upstream release to aid in packaging. - Updated the containers/image library to v5.9.0 - Update to v2.2.0 * Features - Experimental support for shortname aliasing has been added. This is not enabled by default, but can be turned on by setting the environment variable CONTAINERS_SHORT_NAME_ALIASING to on. Documentation is available here and here. - Initial support has been added for the podman network connect and podman network disconnect commands, which allow existing containers to modify what networks they are connected to. At present, these commands can only be used on running containers that did not specify --network=none when they were created. - The podman run command now supports the --network-alias option to set network aliases (additional names the container can be accessed at from other containers via DNS if the dnsname CNI plugin is in use). Aliases can also be added and removed using the new podman network connect and podman network disconnect commands. Please note that this requires a new release (v1.1.0) of the dnsname plugin, and will only work on newly-created CNI networks. - The podman generate kube command now features support for exporting container's memory and CPU limits (#7855). - The podman play kube command now features support for setting CPU and Memory limits for containers (#7742). - The podman play kube command now supports persistent volumes claims using Podman named volumes. - The podman play kube command now supports Kubernetes configmaps via the --configmap option (#7567). - The podman play kube command now supports a --log-driver option to set the log driver for created containers. - The podman play kube command now supports a --start option, enabled by default, to start the pod after creating it. This allows for podman play kube to be more easily used in systemd unitfiles. - The podman network create command now supports the --ipv6 option to enable dual-stack IPv6 networking for created networks (#7302). - The podman inspect command can now inspect pods, networks, and volumes, in addition to containers and images (#6757). - The --mount option for podman run and podman create now supports a new type, image, to mount the contents of an image into the container at a given location. - The Bash and ZSH completions have been completely reworked and have received significant enhancements! Additionally, support for Fish completions and completions for the podman-remote executable have been added. - The --log-opt option for podman create and podman run now supports the max-size option to set the maximum size for a container's logs (#7434). - The --network option to the podman pod create command now allows pods to be configured to use slirp4netns networking, even when run as root (#6097). - The podman pod stop, podman pod pause, podman pod unpause, and podman pod kill commands now work on multiple containers in parallel and should be significantly faster. - The podman search command now supports a --list-tags option to list all available tags for a single image in a single repository. - The podman search command can now output JSON using the --format=json option. - The podman diff and podman mount commands now work with all containers in the storage library, including those not created by Podman. This allows them to be used with Buildah and CRI-O containers. - The podman container exists command now features a --external option to check if a container exists not just in Podman, but also in the storage library. This will allow Podman to identify Buildah and CRI-O containers. - The --tls-verify and --authfile options have been enabled for use with remote Podman. - The /etc/hosts file now includes the container's name and hostname (both pointing to localhost) when the container is run with --net=none (#8095). - The podman events command now supports filtering events based on the labels of the container they occurred on using the --filter label=key=value option. - The podman volume ls command now supports filtering volumes based on their labels using the --filter label=key=value option. - The --volume and --mount options to podman run and podman create now support two new mount propagation options, unbindable and runbindable. - The name and id filters for podman pod ps now match based on a regular expression, instead of requiring an exact match. - The podman pod ps command now supports a new filter status, that matches pods in a certain state. * Changes - The podman network rm --force command will now also remove pods that are using the network (#7791). - The podman volume rm, podman network rm, and podman pod rm commands now return exit code 1 if the object specified for removal does not exist, and exit code 2 if the object is in use and the --force option was not given. - If /dev/fuse is passed into Podman containers as a device, Podman will open it before starting the container to ensure that the kernel module is loaded on the host and the device is usable in the container. - Global Podman options that were not supported with remote operation have been removed from podman-remote (e.g. --cgroup-manager, --storage-driver). - Many errors have been changed to remove repetition and be more clear as to what has gone wrong. - The --storage option to podman rm is now enabled by default, with slightly changed semantics. If the given container does not exist in Podman but does exist in the storage library, it will be removed even without the --storage option. If the container exists in Podman it will be removed normally. The --storage option for podman rm is now deprecated and will be removed in a future release. - The --storage option to podman ps has been renamed to --external. An alias has been added so the old form of the option will continue to work. - Podman now delays the SIGTERM and SIGINT signals during container creation to ensure that Podman is not stopped midway through creating a container resulting in potential resource leakage (#7941). - The podman save command now strips signatures from images it is exporting, as the formats we export to do not support signatures (#7659). - A new Degraded state has been added to pods. Pods that have some, but not all, of their containers running are now considered to be Degraded instead of Running. - Podman will now print a warning when conflicting network options related to port forwarding (e.g. --publish and --net=host) are specified when creating a container. - The --restart on-failure and --rm options for containers no longer conflict. When both are specified, the container will be restarted if it exits with a non-zero error code, and removed if it exits cleanly (#7906). - Remote Podman will no longer use settings from the client's containers.conf; defaults will instead be provided by the server's containers.conf (#7657). - The podman network rm command now has a new alias, podman network remove (#8402). * Bugfixes - Fixed a bug where podman load on the remote client did not error when attempting to load a directory, which is not yet supported for remote use. - Fixed a bug where rootless Podman could hang when the newuidmap binary was not installed (#7776). - Fixed a bug where the --pull option to podman run, podman create, and podman build did not match Docker's behavior. - Fixed a bug where sysctl settings from the containers.conf configuration file were applied, even if the container did not join the namespace associated with a sysctl. - Fixed a bug where Podman would not return the text of errors encounted when trying to run a healthcheck for a container. - Fixed a bug where Podman was accidentally setting the containers environment variable in addition to the expected container environment variable. - Fixed a bug where rootless Podman using CNI networking did not properly clean up DNS entries for removed containers (#7789). - Fixed a bug where the podman untag --all command was not supported with remote Podman. - Fixed a bug where the podman system service command could time out even if active attach connections were present (#7826). - Fixed a bug where the podman system service command would sometimes never time out despite no active connections being present. - Fixed a bug where Podman's handling of capabilities, specifically inheritable, did not match Docker's. - Fixed a bug where podman run would fail if the image specified was a manifest list and had already been pulled (#7798). - Fixed a bug where Podman did not take search registries into account when looking up images locally (#6381). - Fixed a bug where the podman manifest inspect command would fail for images that had already been pulled (#7726). - Fixed a bug where rootless Podman would not add supplemental GIDs to containers when when a user, but not a group, was set via the --user option to podman create and podman run and sufficient GIDs were available to add the groups (#7782). - Fixed a bug where remote Podman commands did not properly handle cases where the user gave a name that could also be a short ID for a pod or container (#7837). - Fixed a bug where podman image prune could leave images ready to be pruned after podman image prune was run (#7872). - Fixed a bug where the podman logs command with the journald log driver would not read all available logs (#7476). - Fixed a bug where the --rm and --restart options to podman create and podman run did not conflict when a restart policy that is not on-failure was chosen (#7878). - Fixed a bug where the --format "table {{ .Field }}" option to numerous Podman commands ceased to function on Podman v2.0 and up. - Fixed a bug where pods did not properly share an SELinux label between their containers, resulting in containers being unable to see the processes of other containers when the pod shared a PID namespace (#7886). - Fixed a bug where the --namespace option to podman ps did not work with the remote client (#7903). - Fixed a bug where rootless Podman incorrectly calculated the number of UIDs available in the container if multiple different ranges of UIDs were specified. - Fixed a bug where the /etc/hosts file would not be correctly populated for containers in a user namespace (#7490). - Fixed a bug where the podman network create and podman network remove commands could race when run in parallel, with unpredictable results (#7807). - Fixed a bug where the -p option to podman run, podman create, and podman pod create would, when given only a single number (e.g. -p 80), assign the same port for both host and container, instead of generating a random host port (#7947). - Fixed a bug where Podman containers did not properly store the cgroup manager they were created with, causing them to stop functioning after the cgroup manager was changed in containers.conf or with the --cgroup-manager option (#7830). - Fixed a bug where the podman inspect command did not include information on the CNI networks a container was connected to if it was not running. - Fixed a bug where the podman attach command would not print a newline after detaching from the container (#7751). - Fixed a bug where the HOME environment variable was not set properly in containers when the --userns=keep-id option was set (#8004). - Fixed a bug where the podman container restore command could panic when the container in question was in a pod (#8026). - Fixed a bug where the output of the podman image trust show --raw command was not properly formatted. - Fixed a bug where the podman runlabel command could panic if a label to run was not given (#8038). - Fixed a bug where the podman run and podman start --attach commands would exit with an error when the user detached manually using the detach keys on remote Podman (#7979). - Fixed a bug where rootless CNI networking did not use the dnsname CNI plugin if it was not available on the host, despite it always being available in the container used for rootless networking (#8040). - Fixed a bug where Podman did not properly handle cases where an OCI runtime is specified by its full path, and could revert to using another OCI runtime with the same binary path that existed in the system $PATH on subsequent invocations. - Fixed a bug where the --net=host option to podman create and podman run would cause the /etc/hosts file to be incorrectly populated (#8054). - Fixed a bug where the podman inspect command did not include container network information when the container shared its network namespace (IE, joined a pod or another container's network namespace via --net=container:...) (#8073). - Fixed a bug where the podman ps command did not include information on all ports a container was publishing. - Fixed a bug where the podman build command incorrectly forwarded STDIN into build containers from RUN instructions. - Fixed a bug where the podman wait command's --interval option did not work when units were not specified for the duration (#8088). - Fixed a bug where the --detach-keys and --detach options could be passed to podman create despite having no effect (and not making sense in that context). - Fixed a bug where Podman could not start containers if running on a system without a /etc/resolv.conf file (which occurs on some WSL2 images) (#8089). - Fixed a bug where the --extract option to podman cp was nonfunctional. - Fixed a bug where the --cidfile option to podman run would, when the container was not run with --detach, only create the file after the container exited (#8091). - Fixed a bug where the podman images and podman images -a commands could panic and not list any images when certain improperly-formatted images were present in storage (#8148). - Fixed a bug where the podman events command could, when the journald events backend was in use, become nonfunctional when a badly-formatted event or a log message that container certain string was present in the journal (#8125). - Fixed a bug where remote Podman would, when using SSH transport, not authenticate to the server using hostkeys when connecting on a port other than 22 (#8139). - Fixed a bug where the podman attach command would not exit when containers stopped (#8154). - Fixed a bug where Podman did not properly clean paths before verifying them, resulting in Podman refusing to start if the root or temporary directories were specified with extra trailing / characters (#8160). - Fixed a bug where remote Podman did not support hashed hostnames in the known_hosts file on the host for establishing connections (#8159). - Fixed a bug where the podman image exists command would return non-zero (false) when multiple potential matches for the given name existed. - Fixed a bug where the podman manifest inspect command on images that are not manifest lists would error instead of inspecting the image (#8023). - Fixed a bug where the podman system service command would fail if the directory the Unix socket was to be created inside did not exist (#8184). - Fixed a bug where pods that shared the IPC namespace (which is done by default) did not share a /dev/shm filesystem between all containers in the pod (#8181). - Fixed a bug where filters passed to podman volume list were not inclusive (#6765). - Fixed a bug where the podman volume create command would fail when the volume's data directory already existed (as might occur when a volume was not completely removed) (#8253). - Fixed a bug where the podman run and podman create commands would deadlock when trying to create a container that mounted the same named volume at multiple locations (e.g. podman run -v testvol:/test1 -v testvol:/test2) (#8221). - Fixed a bug where the parsing of the --net option to podman build was incorrect (#8322). - Fixed a bug where the podman build command would print the ID of the built image twice when using remote Podman (#8332). - Fixed a bug where the podman stats command did not show memory limits for containers (#8265). - Fixed a bug where the podman pod inspect command printed the static MAC address of the pod in a non-human-readable format (#8386). - Fixed a bug where the --tls-verify option of the podman play kube command had its logic inverted (false would enforce the use of TLS, true would disable it). - Fixed a bug where the podman network rm command would error when trying to remove macvlan networks and rootless CNI networks (#8491). - Fixed a bug where Podman was not setting sane defaults for missing XDG_ environment variables. - Fixed a bug where remote Podman would check if volume paths to be mounted in the container existed on the host, not the server (#8473). - Fixed a bug where the podman manifest create and podman manifest add commands on local images would drop any images in the manifest not pulled by the host. - Fixed a bug where networks made by podman network create did not include the tuning plugin, and as such did not support setting custom MAC addresses (#8385). - Fixed a bug where container healthchecks did not use $PATH when searching for the Podman executable to run the healthcheck. - Fixed a bug where the --ip-range option to podman network create did not properly handle non-classful subnets when calculating the last usable IP for DHCP assignment (#8448). - Fixed a bug where the podman container ps alias for podman ps was missing (#8445). * API - The Compat Create endpoint for Container has received a major refactor to share more code with the Libpod Create endpoint, and should be significantly more stable. - A Compat endpoint for exporting multiple images at once, GET /images/get, has been added (#7950). - The Compat Network Connect and Network Disconnect endpoints have been added. - Endpoints that deal with image registries now support a X-Registry-Config header to specify registry authentication configuration. - The Compat Create endpoint for images now properly supports specifying images by digest. - The Libpod Build endpoint for images now supports an httpproxy query parameter which, if set to true, will forward the server's HTTP proxy settings into the build container for RUN instructions. - The Libpod Untag endpoint for images will now remove all tags for the given image if no repository and tag are specified for removal. - Fixed a bug where the Ping endpoint misspelled a header name (Libpod-Buildha-Version instead of Libpod-Buildah-Version). - Fixed a bug where the Ping endpoint sent an extra newline at the end of its response where Docker did not. - Fixed a bug where the Compat Logs endpoint for containers did not send a newline character after each log line. - Fixed a bug where the Compat Logs endpoint for containers would mangle line endings to change newline characters to add a preceding carriage return (#7942). - Fixed a bug where the Compat Inspect endpoint for Containers did not properly list the container's stop signal (#7917). - Fixed a bug where the Compat Inspect endpoint for Containers formatted the container's create time incorrectly (#7860). - Fixed a bug where the Compat Inspect endpoint for Containers did not include the container's Path, Args, and Restart Count. - Fixed a bug where the Compat Inspect endpoint for Containers prefixed added and dropped capabilities with CAP_ (Docker does not do so). - Fixed a bug where the Compat Info endpoint for the Engine did not include configured registries. - Fixed a bug where the server could panic if a client closed a connection midway through an image pull (#7896). - Fixed a bug where the Compat Create endpoint for volumes returned an error when a volume with the same name already existed, instead of succeeding with a 201 code (#7740). - Fixed a bug where a client disconnecting from the Libpod or Compat events endpoints could result in the server using 100% CPU (#7946). - Fixed a bug where the "no such image" error message sent by the Compat Inspect endpoint for Images returned a 404 status code with an error that was improperly formatted for Docker compatibility. - Fixed a bug where the Compat Create endpoint for networks did not properly set a default for the driver parameter if it was not provided by the client. - Fixed a bug where the Compat Inspect endpoint for images did not populate the RootFS field of the response. - Fixed a bug where the Compat Inspect endpoint for images would omit the ParentId field if the image had no parent, and the Created field if the image did not have a creation time. - Fixed a bug where the Compat Remove endpoint for Networks did not support the Force query parameter. - add dependency to timezone package or podman fails to build a - Correct invalid use of %{_libexecdir} to ensure files should be in /usr/lib SELinux support [jsc#SMO-15] libseccomp was updated to release 2.5.3: * Update the syscall table for Linux v5.15 * Fix issues with multiplexed syscalls on mipsel introduced in v2.5.2 * Document that seccomp_rule_add() may return -EACCES Update to release 2.5.2 * Update the syscall table for Linux v5.14-rc7 * Add a function, get_notify_fd(), to the Python bindings to get the nofication file descriptor. * Consolidate multiplexed syscall handling for all architectures into one location. * Add multiplexed syscall support to PPC and MIPS * The meaning of SECCOMP_IOCTL_NOTIF_ID_VALID changed within the kernel. libseccomp's fd notification logic was modified to support the kernel's previous and new usage of SECCOMP_IOCTL_NOTIF_ID_VALID. update to 2.5.1: * Fix a bug where seccomp_load() could only be called once * Change the notification fd handling to only request a notification fd if * the filter has a _NOTIFY action * Add documentation about SCMP_ACT_NOTIFY to the seccomp_add_rule(3) manpage * Clarify the maintainers' GPG keys Update to release 2.5.0 * Add support for the seccomp user notifications, see the seccomp_notify_alloc(3), seccomp_notify_receive(3), seccomp_notify_respond(3) manpages for more information * Add support for new filter optimization approaches, including a balanced tree optimization, see the SCMP_FLTATR_CTL_OPTIMIZE filter attribute for more information * Add support for the 64-bit RISC-V architecture * Performance improvements when adding new rules to a filter thanks to the use of internal shadow transactions and improved syscall lookup tables * Properly document the libseccomp API return values and include them in the stable API promise * Improvements to the s390 and s390x multiplexed syscall handling * Multiple fixes and improvements to the libseccomp manpages * Moved from manually maintained syscall tables to an automatically generated syscall table in CSV format * Update the syscall tables to Linux v5.8.0-rc5 * Python bindings and build now default to Python 3.x * Improvements to the tests have boosted code coverage to over 93% Update to release 2.4.3 * Add list of authorized release signatures to README.md * Fix multiplexing issue with s390/s390x shm* syscalls * Remove the static flag from libseccomp tools compilation * Add define for __SNR_ppoll * Fix potential memory leak identified by clang in the scmp_bpf_sim tool Update to release 2.4.2 * Add support for io-uring related system calls conmon was updated to version 2.0.30: * Remove unreachable code path * exit: report if the exit command was killed * exit: fix race zombie reaper * conn_sock: allow watchdog messages through the notify socket proxy * seccomp: add support for seccomp notify Update to version 2.0.29: * Reset OOM score back to 0 for container runtime * call functions registered with atexit on SIGTERM * conn_sock: fix potential segfault Update to version 2.0.27: * Add CRI-O integration test GitHub action * exec: don't fail on EBADFD * close_fds: fix close of external fds * Add arm64 static build binary Update to version 2.0.26: * conn_sock: do not fail on EAGAIN * fix segfault from a double freed pointer * Fix a bug where conmon could never spawn a container, because a disagreement between the caller and itself on where the attach socket was. * improve --full-attach to ignore the socket-dir directly. that means callers don't need to specify a socket dir at all (and can remove it) * add full-attach option to allow callers to not truncate a very long path for the attach socket * close only opened FDs * set locale to inherit environment Update to version 2.0.22: * added man page * attach: always chdir * conn_sock: Explicitly free a heap-allocated string * refactor I/O and add SD_NOTIFY proxy support Update to version 2.0.21: * protect against kill(-1) * Makefile: enable debuginfo generation * Remove go.sum file and add go.mod * Fail if conmon config could not be written * nix: remove double definition for e2fsprogs * Speedup static build by utilizing CI cache on `/nix` folder * Fix nix build for failing e2fsprogs tests * test: fix CI * Use Podman for building libcontainers-common was updated to include: - common 0.44.0 - image 5.16.0 - podman 3.3.1 - storage 1.36.0 (changes too long to list) CVEs fixed: CVE-2020-14370,CVE-2020-15157,CVE-2021-20199,CVE-2021-20291,CVE-2021-3602 conmon-2.0.30-150300.8.3.1.src.rpm conmon-2.0.30-150300.8.3.1.x86_64.rpm libcontainers-common-20210626-150300.8.3.1.noarch.rpm libcontainers-common-20210626-150300.8.3.1.src.rpm libseccomp-2.5.3-150300.10.5.1.src.rpm libseccomp-devel-2.5.3-150300.10.5.1.x86_64.rpm libseccomp-tools-2.5.3-150300.10.5.1.x86_64.rpm libseccomp2-2.5.3-150300.10.5.1.x86_64.rpm libseccomp2-32bit-2.5.3-150300.10.5.1.x86_64.rpm podman-3.4.4-150300.9.3.2.src.rpm podman-3.4.4-150300.9.3.2.x86_64.rpm podman-cni-config-3.4.4-150300.9.3.2.noarch.rpm conmon-2.0.30-150300.8.3.1.s390x.rpm libseccomp-devel-2.5.3-150300.10.5.1.s390x.rpm libseccomp-tools-2.5.3-150300.10.5.1.s390x.rpm libseccomp2-2.5.3-150300.10.5.1.s390x.rpm podman-3.4.4-150300.9.3.2.s390x.rpm conmon-2.0.30-150300.8.3.1.ppc64le.rpm libseccomp-devel-2.5.3-150300.10.5.1.ppc64le.rpm libseccomp-tools-2.5.3-150300.10.5.1.ppc64le.rpm libseccomp2-2.5.3-150300.10.5.1.ppc64le.rpm podman-3.4.4-150300.9.3.2.ppc64le.rpm conmon-2.0.30-150300.8.3.1.aarch64.rpm libseccomp-devel-2.5.3-150300.10.5.1.aarch64.rpm libseccomp-tools-2.5.3-150300.10.5.1.aarch64.rpm libseccomp2-2.5.3-150300.10.5.1.aarch64.rpm podman-3.4.4-150300.9.3.2.aarch64.rpm openSUSE-SLE-15.3-2022-736 important SUSE Updates openSUSE-SLE 15.3 This update for vim fixes the following issues: - CVE-2022-0318: Fixed heap-based buffer overflow (bsc#1195004). - CVE-2021-3796: Fixed use-after-free in nv_replace() in normal.c (bsc#1190570). - CVE-2021-3872: Fixed heap-based buffer overflow in win_redr_status() drawscreen.c (bsc#1191893). - CVE-2021-3927: Fixed heap-based buffer overflow (bsc#1192481). - CVE-2021-3928: Fixed stack-based buffer overflow (bsc#1192478). - CVE-2021-4019: Fixed heap-based buffer overflow (bsc#1193294). - CVE-2021-3984: Fixed illegal memory access when C-indenting could have led to heap buffer overflow (bsc#1193298). - CVE-2021-3778: Fixed heap-based buffer overflow in regexp_nfa.c (bsc#1190533). - CVE-2021-4193: Fixed out-of-bounds read (bsc#1194216). - CVE-2021-46059: Fixed pointer dereference vulnerability via the vim_regexec_multi function at regexp.c (bsc#1194556). - CVE-2022-0319: Fixded out-of-bounds read (bsc#1195066). - CVE-2022-0351: Fixed uncontrolled recursion in eval7() (bsc#1195126). - CVE-2022-0361: Fixed buffer overflow (bsc#1195126). - CVE-2022-0413: Fixed use-after-free in src/ex_cmds.c (bsc#1195356). gvim-8.0.1568-5.17.1.x86_64.rpm vim-8.0.1568-5.17.1.src.rpm vim-8.0.1568-5.17.1.x86_64.rpm vim-data-8.0.1568-5.17.1.noarch.rpm vim-data-common-8.0.1568-5.17.1.noarch.rpm vim-small-8.0.1568-5.17.1.x86_64.rpm gvim-8.0.1568-5.17.1.s390x.rpm vim-8.0.1568-5.17.1.s390x.rpm vim-small-8.0.1568-5.17.1.s390x.rpm gvim-8.0.1568-5.17.1.ppc64le.rpm vim-8.0.1568-5.17.1.ppc64le.rpm vim-small-8.0.1568-5.17.1.ppc64le.rpm gvim-8.0.1568-5.17.1.aarch64.rpm vim-8.0.1568-5.17.1.aarch64.rpm vim-small-8.0.1568-5.17.1.aarch64.rpm openSUSE-SLE-15.3-2022-712 important SUSE Updates openSUSE-SLE 15.3 This update for flatpak fixes the following issues: Update to flatpak 1.10.7: - CVE-2022-21682: Introduce new option --nofilesystem=host:reset to support flatpak-builder 1.2.2 (bsc#1194611). - CVE-2021-43860: A malicious repository could hav sent invalid application metadata in a way that hides some of the app permissions displayed during installation (bsc#1194610). flatpak-1.10.7-4.12.1.src.rpm flatpak-1.10.7-4.12.1.x86_64.rpm flatpak-devel-1.10.7-4.12.1.x86_64.rpm flatpak-zsh-completion-1.10.7-4.12.1.x86_64.rpm libflatpak0-1.10.7-4.12.1.x86_64.rpm system-user-flatpak-1.10.7-4.12.1.x86_64.rpm typelib-1_0-Flatpak-1_0-1.10.7-4.12.1.x86_64.rpm flatpak-1.10.7-4.12.1.s390x.rpm flatpak-devel-1.10.7-4.12.1.s390x.rpm flatpak-zsh-completion-1.10.7-4.12.1.s390x.rpm libflatpak0-1.10.7-4.12.1.s390x.rpm system-user-flatpak-1.10.7-4.12.1.s390x.rpm typelib-1_0-Flatpak-1_0-1.10.7-4.12.1.s390x.rpm flatpak-1.10.7-4.12.1.ppc64le.rpm flatpak-devel-1.10.7-4.12.1.ppc64le.rpm flatpak-zsh-completion-1.10.7-4.12.1.ppc64le.rpm libflatpak0-1.10.7-4.12.1.ppc64le.rpm system-user-flatpak-1.10.7-4.12.1.ppc64le.rpm typelib-1_0-Flatpak-1_0-1.10.7-4.12.1.ppc64le.rpm flatpak-1.10.7-4.12.1.aarch64.rpm flatpak-devel-1.10.7-4.12.1.aarch64.rpm flatpak-zsh-completion-1.10.7-4.12.1.aarch64.rpm libflatpak0-1.10.7-4.12.1.aarch64.rpm system-user-flatpak-1.10.7-4.12.1.aarch64.rpm typelib-1_0-Flatpak-1_0-1.10.7-4.12.1.aarch64.rpm openSUSE-SLE-15.3-2022-658 moderate SUSE Updates openSUSE-SLE 15.3 This update for mysql-connector-java fixes the following issues: - CVE-2021-2471: Fixed unauthorized access to critical data or complete access to all MySQL Connectors (bsc#1195557). mysql-connector-java-5.1.47-3.6.1.noarch.rpm mysql-connector-java-5.1.47-3.6.1.src.rpm openSUSE-SLE-15.3-2022-735 important SUSE Updates openSUSE-SLE 15.3 This update for zsh fixes the following issues: - CVE-2021-45444: Fixed a vulnerability where arbitrary shell commands could be executed related to prompt expansion (bsc#1196435). - CVE-2019-20044: Fixed a vulnerability where shell privileges would not be properly dropped when unsetting the PRIVILEGED option (bsc#1163882). zsh-5.6-7.5.1.src.rpm zsh-5.6-7.5.1.x86_64.rpm zsh-htmldoc-5.6-7.5.1.x86_64.rpm zsh-5.6-7.5.1.s390x.rpm zsh-htmldoc-5.6-7.5.1.s390x.rpm zsh-5.6-7.5.1.ppc64le.rpm zsh-htmldoc-5.6-7.5.1.ppc64le.rpm zsh-5.6-7.5.1.aarch64.rpm zsh-htmldoc-5.6-7.5.1.aarch64.rpm openSUSE-SLE-15.3-2022-682 important SUSE Updates openSUSE-SLE 15.3 This update for supportutils-plugin-suse-public-cloud fixes the following issues: - Update to version 1.0.6 (bsc#1195095, bsc#1195096) - Include cloud-init logs whenever they are present - Update the packages we track in AWS, Azure, and Google - Include the ecs logs for AWS ECS instances supportutils-plugin-suse-public-cloud-1.0.6-3.9.1.noarch.rpm supportutils-plugin-suse-public-cloud-1.0.6-3.9.1.src.rpm openSUSE-SLE-15.3-2022-720 moderate SUSE Updates openSUSE-SLE 15.3 This update for containerd fixes the following issues: - CVE-2022-23648: A specially-crafted image configuration could gain access to read-only copies of arbitrary files and directories on the host (bsc#1196441). containerd-1.4.12-63.1.src.rpm containerd-1.4.12-63.1.x86_64.rpm containerd-ctr-1.4.12-63.1.x86_64.rpm containerd-1.4.12-63.1.s390x.rpm containerd-ctr-1.4.12-63.1.s390x.rpm containerd-1.4.12-63.1.ppc64le.rpm containerd-ctr-1.4.12-63.1.ppc64le.rpm containerd-1.4.12-63.1.aarch64.rpm containerd-ctr-1.4.12-63.1.aarch64.rpm openSUSE-SLE-15.3-2021-2764 critical SUSE Updates openSUSE-SLE 15.3 This update for libsndfile fixes the following issues: - CVE-2018-13139: Fixed a stack-based buffer overflow in psf_memset in common.c in libsndfile 1.0.28allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact. (bsc#1100167) - CVE-2018-19432: Fixed a NULL pointer dereference in the function sf_write_int in sndfile.c, which will lead to a denial of service. (bsc#1116993) - CVE-2021-3246: Fixed a heap buffer overflow vulnerability in msadpcm_decode_block. (bsc#1188540) - CVE-2018-19758: Fixed a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service. (bsc#1117954) libsndfile-1.0.28-5.12.1.src.rpm libsndfile-devel-1.0.28-5.12.1.x86_64.rpm libsndfile-progs-1.0.28-5.12.1.src.rpm libsndfile-progs-1.0.28-5.12.1.x86_64.rpm libsndfile1-1.0.28-5.12.1.x86_64.rpm libsndfile1-32bit-1.0.28-5.12.1.x86_64.rpm libsndfile-devel-1.0.28-5.12.1.s390x.rpm libsndfile-progs-1.0.28-5.12.1.s390x.rpm libsndfile1-1.0.28-5.12.1.s390x.rpm libsndfile-devel-1.0.28-5.12.1.ppc64le.rpm libsndfile-progs-1.0.28-5.12.1.ppc64le.rpm libsndfile1-1.0.28-5.12.1.ppc64le.rpm libsndfile-devel-1.0.28-5.12.1.aarch64.rpm libsndfile-progs-1.0.28-5.12.1.aarch64.rpm libsndfile1-1.0.28-5.12.1.aarch64.rpm