openSUSE-SLE-15.4-2022-2706 moderate SUSE Updates openSUSE-SLE 15.4 This update for postgresql fixes the following issues: - Fix the pg_server_requires macro on older rpm versions (SLE-12) - Avoid a dependency on awk in postgresql-script. - Move the dependency of llvmjit-devel on clang and llvm to the implementation packages where we can depend on the correct versions. - Fix postgresql_has_llvm usage - First round of changes to make it easier to build extensions for - add postgresql-llvmjit-devel subpackage: This package will pull in clang and llvm if the distro has a recent enough version, otherwise it will just pull postgresql-server-devel. - add postgresql macros to the postgresql-server-devel package those cover all the variables from pg_config and some macros to remove repitition from the spec files - Bump version to 14. (bsc#1195680) postgresql-14-150400.4.3.88.noarch.rpm postgresql-14-150400.4.3.88.src.rpm postgresql-contrib-14-150400.4.3.88.noarch.rpm postgresql-devel-14-150400.4.3.88.noarch.rpm postgresql-docs-14-150400.4.3.88.noarch.rpm postgresql-llvmjit-14-150400.4.3.88.noarch.rpm postgresql-plperl-14-150400.4.3.88.noarch.rpm postgresql-plpython-14-150400.4.3.88.noarch.rpm postgresql-pltcl-14-150400.4.3.88.noarch.rpm postgresql-server-14-150400.4.3.88.noarch.rpm postgresql-server-devel-14-150400.4.3.88.noarch.rpm postgresql-test-14-150400.4.3.88.noarch.rpm openSUSE-SLE-15.4-2022-1457 moderate SUSE Updates openSUSE-SLE 15.4 This update for postgresql12 fixes the following issues: - Upgrade to 12.10: (bsc#1195680) * https://www.postgresql.org/docs/12/release-12-10.html * Reindexing might be needed after applying this upgrade, so please read the release notes carefully. - Add constraints file with 12GB of memory for s390x as a workaround. (bsc#1190740) - Add a llvmjit-devel subpackage to pull in the right versions of clang and llvm for building extensions. - Fix some mistakes in the interdependencies between the implementation packages and their noarch counterpart. - Update the BuildIgnore section. postgresql12-12.10-8.29.1.src.rpm postgresql12-12.10-8.29.1.x86_64.rpm postgresql12-contrib-12.10-8.29.1.x86_64.rpm postgresql12-devel-12.10-8.29.1.x86_64.rpm postgresql12-docs-12.10-8.29.1.noarch.rpm postgresql12-llvmjit-12.10-8.29.1.x86_64.rpm postgresql12-plperl-12.10-8.29.1.x86_64.rpm postgresql12-plpython-12.10-8.29.1.x86_64.rpm postgresql12-pltcl-12.10-8.29.1.x86_64.rpm postgresql12-server-12.10-8.29.1.x86_64.rpm postgresql12-server-devel-12.10-8.29.1.x86_64.rpm postgresql12-test-12.10-8.29.1.x86_64.rpm postgresql12-12.10-8.29.1.s390x.rpm postgresql12-contrib-12.10-8.29.1.s390x.rpm postgresql12-devel-12.10-8.29.1.s390x.rpm postgresql12-llvmjit-12.10-8.29.1.s390x.rpm postgresql12-plperl-12.10-8.29.1.s390x.rpm postgresql12-plpython-12.10-8.29.1.s390x.rpm postgresql12-pltcl-12.10-8.29.1.s390x.rpm postgresql12-server-12.10-8.29.1.s390x.rpm postgresql12-server-devel-12.10-8.29.1.s390x.rpm postgresql12-test-12.10-8.29.1.s390x.rpm postgresql12-12.10-8.29.1.ppc64le.rpm postgresql12-contrib-12.10-8.29.1.ppc64le.rpm postgresql12-devel-12.10-8.29.1.ppc64le.rpm postgresql12-llvmjit-12.10-8.29.1.ppc64le.rpm postgresql12-plperl-12.10-8.29.1.ppc64le.rpm postgresql12-plpython-12.10-8.29.1.ppc64le.rpm postgresql12-pltcl-12.10-8.29.1.ppc64le.rpm postgresql12-server-12.10-8.29.1.ppc64le.rpm postgresql12-server-devel-12.10-8.29.1.ppc64le.rpm postgresql12-test-12.10-8.29.1.ppc64le.rpm postgresql12-12.10-8.29.1.aarch64.rpm postgresql12-contrib-12.10-8.29.1.aarch64.rpm postgresql12-devel-12.10-8.29.1.aarch64.rpm postgresql12-llvmjit-12.10-8.29.1.aarch64.rpm postgresql12-plperl-12.10-8.29.1.aarch64.rpm postgresql12-plpython-12.10-8.29.1.aarch64.rpm postgresql12-pltcl-12.10-8.29.1.aarch64.rpm postgresql12-server-12.10-8.29.1.aarch64.rpm postgresql12-server-devel-12.10-8.29.1.aarch64.rpm postgresql12-test-12.10-8.29.1.aarch64.rpm openSUSE-SLE-15.4-2022-1463 moderate SUSE Updates openSUSE-SLE 15.4 This update for postgresql13 fixes the following issues: - Upgrade to 14.2: (bsc#1195680) * https://www.postgresql.org/docs/14/release-14-2.html * Reindexing might be needed after applying this upgrade, so please read the release notes carefully. - Add constraints file with 12GB of memory for s390x as a workaround. (bsc#1190740) - Add a llvmjit-devel subpackage to pull in the right versions of clang and llvm for building extensions. - Fix some mistakes in the interdependencies between the implementation packages and their noarch counterpart. - Update the BuildIgnore section. libecpg6-14.2-5.9.2.x86_64.rpm libecpg6-32bit-14.2-5.9.2.x86_64.rpm libpq5-14.2-5.9.2.x86_64.rpm libpq5-32bit-14.2-5.9.2.x86_64.rpm postgresql14-14.2-5.9.1.src.rpm postgresql14-14.2-5.9.2.src.rpm postgresql14-14.2-5.9.2.x86_64.rpm postgresql14-contrib-14.2-5.9.2.x86_64.rpm postgresql14-devel-14.2-5.9.2.x86_64.rpm postgresql14-docs-14.2-5.9.2.noarch.rpm postgresql14-llvmjit-14.2-5.9.2.x86_64.rpm postgresql14-plperl-14.2-5.9.2.x86_64.rpm postgresql14-plpython-14.2-5.9.2.x86_64.rpm postgresql14-pltcl-14.2-5.9.2.x86_64.rpm postgresql14-server-14.2-5.9.2.x86_64.rpm postgresql14-server-devel-14.2-5.9.2.x86_64.rpm postgresql14-test-14.2-5.9.2.x86_64.rpm libecpg6-14.2-5.9.2.s390x.rpm libpq5-14.2-5.9.2.s390x.rpm postgresql14-14.2-5.9.2.s390x.rpm postgresql14-contrib-14.2-5.9.2.s390x.rpm postgresql14-devel-14.2-5.9.2.s390x.rpm postgresql14-llvmjit-14.2-5.9.2.s390x.rpm postgresql14-plperl-14.2-5.9.2.s390x.rpm postgresql14-plpython-14.2-5.9.2.s390x.rpm postgresql14-pltcl-14.2-5.9.2.s390x.rpm postgresql14-server-14.2-5.9.2.s390x.rpm postgresql14-server-devel-14.2-5.9.2.s390x.rpm postgresql14-test-14.2-5.9.2.s390x.rpm libecpg6-14.2-5.9.2.ppc64le.rpm libpq5-14.2-5.9.2.ppc64le.rpm postgresql14-14.2-5.9.2.ppc64le.rpm postgresql14-contrib-14.2-5.9.2.ppc64le.rpm postgresql14-devel-14.2-5.9.2.ppc64le.rpm postgresql14-llvmjit-14.2-5.9.2.ppc64le.rpm postgresql14-plperl-14.2-5.9.2.ppc64le.rpm postgresql14-plpython-14.2-5.9.2.ppc64le.rpm postgresql14-pltcl-14.2-5.9.2.ppc64le.rpm postgresql14-server-14.2-5.9.2.ppc64le.rpm postgresql14-server-devel-14.2-5.9.2.ppc64le.rpm postgresql14-test-14.2-5.9.2.ppc64le.rpm libecpg6-14.2-5.9.2.aarch64.rpm libpq5-14.2-5.9.2.aarch64.rpm postgresql14-14.2-5.9.2.aarch64.rpm postgresql14-contrib-14.2-5.9.2.aarch64.rpm postgresql14-devel-14.2-5.9.2.aarch64.rpm postgresql14-llvmjit-14.2-5.9.2.aarch64.rpm postgresql14-plperl-14.2-5.9.2.aarch64.rpm postgresql14-plpython-14.2-5.9.2.aarch64.rpm postgresql14-pltcl-14.2-5.9.2.aarch64.rpm postgresql14-server-14.2-5.9.2.aarch64.rpm postgresql14-server-devel-14.2-5.9.2.aarch64.rpm postgresql14-test-14.2-5.9.2.aarch64.rpm openSUSE-SLE-15.4-2022-2561 important SUSE Updates openSUSE-SLE 15.4 This update for mariadb fixes the following issues: - Added mariadb-galera (jsc#SLE-22245) Update to 10.6.8 (bsc#1199928): - CVE-2021-46669 (bsc#1199928) - CVE-2022-27376 (bsc#1198628) - CVE-2022-27377 (bsc#1198603) - CVE-2022-27378 (bsc#1198604) - CVE-2022-27379 (bsc#1198605) - CVE-2022-27380 (bsc#1198606) - CVE-2022-27381 (bsc#1198607) - CVE-2022-27382 (bsc#1198609) - CVE-2022-27383 (bsc#1198610) - CVE-2022-27384 (bsc#1198611) - CVE-2022-27386 (bsc#1198612) - CVE-2022-27387 (bsc#1198613) - CVE-2022-27444 (bsc#1198634) - CVE-2022-27445 (bsc#1198629) - CVE-2022-27446 (bsc#1198630) - CVE-2022-27447 (bsc#1198631) - CVE-2022-27448 (bsc#1198632) - CVE-2022-27449 (bsc#1198633) - CVE-2022-27451 (bsc#1198639) - CVE-2022-27452 (bsc#1198640) - CVE-2022-27455 (bsc#1198638) - CVE-2022-27456 (bsc#1198635) - CVE-2022-27457 (bsc#1198636) - CVE-2022-27458 (bsc#1198637) - The following issue is not affecting this package: CVE-2022-21427 Update to 10.6.7 (bsc#1196016): - CVE-2021-46665, CVE-2021-46664, CVE-2021-46661, CVE-2021-46668, CVE-2021-46663 Update to 10.6.6: - CVE-2022-24052, CVE-2022-24051, CVE-2022-24050, CVE-2022-24048, CVE-2021-46659 (bsc#1195339) The following issues have been fixed already but didn't have CVE references: - CVE-2021-46658 (bsc#1195334) - CVE-2021-46657 (bsc#1195325) Non security fixes: - Skip failing tests for s390x, fixes bsc#1195076 External refernences: - https://mariadb.com/kb/en/library/mariadb-1068-release-notes - https://mariadb.com/kb/en/library/mariadb-1068-changelog - https://mariadb.com/kb/en/library/mariadb-1067-release-notes - https://mariadb.com/kb/en/library/mariadb-1067-changelog - https://mariadb.com/kb/en/library/mariadb-1066-release-notes - https://mariadb.com/kb/en/library/mariadb-1066-changelog libmariadbd-devel-10.6.8-150400.3.7.1.x86_64.rpm libmariadbd19-10.6.8-150400.3.7.1.x86_64.rpm mariadb-10.6.8-150400.3.7.1.src.rpm mariadb-10.6.8-150400.3.7.1.x86_64.rpm mariadb-bench-10.6.8-150400.3.7.1.x86_64.rpm mariadb-client-10.6.8-150400.3.7.1.x86_64.rpm mariadb-errormessages-10.6.8-150400.3.7.1.noarch.rpm mariadb-galera-10.6.8-150400.3.7.1.x86_64.rpm mariadb-rpm-macros-10.6.8-150400.3.7.1.x86_64.rpm mariadb-test-10.6.8-150400.3.7.1.x86_64.rpm mariadb-tools-10.6.8-150400.3.7.1.x86_64.rpm libmariadbd-devel-10.6.8-150400.3.7.1.s390x.rpm libmariadbd19-10.6.8-150400.3.7.1.s390x.rpm mariadb-10.6.8-150400.3.7.1.s390x.rpm mariadb-bench-10.6.8-150400.3.7.1.s390x.rpm mariadb-client-10.6.8-150400.3.7.1.s390x.rpm mariadb-galera-10.6.8-150400.3.7.1.s390x.rpm mariadb-rpm-macros-10.6.8-150400.3.7.1.s390x.rpm mariadb-test-10.6.8-150400.3.7.1.s390x.rpm mariadb-tools-10.6.8-150400.3.7.1.s390x.rpm libmariadbd-devel-10.6.8-150400.3.7.1.ppc64le.rpm libmariadbd19-10.6.8-150400.3.7.1.ppc64le.rpm mariadb-10.6.8-150400.3.7.1.ppc64le.rpm mariadb-bench-10.6.8-150400.3.7.1.ppc64le.rpm mariadb-client-10.6.8-150400.3.7.1.ppc64le.rpm mariadb-galera-10.6.8-150400.3.7.1.ppc64le.rpm mariadb-rpm-macros-10.6.8-150400.3.7.1.ppc64le.rpm mariadb-test-10.6.8-150400.3.7.1.ppc64le.rpm mariadb-tools-10.6.8-150400.3.7.1.ppc64le.rpm libmariadbd-devel-10.6.8-150400.3.7.1.aarch64.rpm libmariadbd19-10.6.8-150400.3.7.1.aarch64.rpm mariadb-10.6.8-150400.3.7.1.aarch64.rpm mariadb-bench-10.6.8-150400.3.7.1.aarch64.rpm mariadb-client-10.6.8-150400.3.7.1.aarch64.rpm mariadb-galera-10.6.8-150400.3.7.1.aarch64.rpm mariadb-rpm-macros-10.6.8-150400.3.7.1.aarch64.rpm mariadb-test-10.6.8-150400.3.7.1.aarch64.rpm mariadb-tools-10.6.8-150400.3.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-1717 important SUSE Updates openSUSE-SLE 15.4 This update for nodejs10 fixes the following issues: - CVE-2021-23343: Fixed ReDoS via splitDeviceRe, splitTailRe and splitPathRe (bsc#1192153). - CVE-2021-32803: Fixed insufficient symlink protection in node-tar allowing arbitrary file creation and overwrite (bsc#1191963). - CVE-2021-32804: Fixed insufficient absolute path sanitization in node-tar allowing arbitrary file creation and overwrite (bsc#1191962). - CVE-2021-3918: Fixed improper controlled modification of object prototype attributes in json-schema (bsc#1192696). - CVE-2021-3807: Fixed regular expression denial of service (ReDoS) matching ANSI escape codes in node-ansi-regex (bsc#1192154). - CVE-2022-21824: Fixed prototype pollution via console.table (bsc#1194514). - CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247). - CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283). - CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819). nodejs10-10.24.1-150000.1.44.1.src.rpm nodejs10-10.24.1-150000.1.44.1.x86_64.rpm nodejs10-devel-10.24.1-150000.1.44.1.x86_64.rpm nodejs10-docs-10.24.1-150000.1.44.1.noarch.rpm npm10-10.24.1-150000.1.44.1.x86_64.rpm nodejs10-10.24.1-150000.1.44.1.s390x.rpm nodejs10-devel-10.24.1-150000.1.44.1.s390x.rpm npm10-10.24.1-150000.1.44.1.s390x.rpm nodejs10-10.24.1-150000.1.44.1.ppc64le.rpm nodejs10-devel-10.24.1-150000.1.44.1.ppc64le.rpm npm10-10.24.1-150000.1.44.1.ppc64le.rpm nodejs10-10.24.1-150000.1.44.1.aarch64.rpm nodejs10-devel-10.24.1-150000.1.44.1.aarch64.rpm npm10-10.24.1-150000.1.44.1.aarch64.rpm openSUSE-SLE-15.4-2022-2294 important SUSE Updates openSUSE-SLE 15.4 This update for expat fixes the following issues: - CVE-2022-25236: Fixed possible namespace-separator characters insertion into namespace URIs (bsc#1196025). - Fixed a regression caused by the patch for CVE-2022-25236 (bsc#1196784). - CVE-2022-25235: Fixed UTF-8 character validation in a certain context (bsc#1196026). - CVE-2022-25313: Fixed stack exhaustion in build_model() via uncontrolled recursion (bsc#1196168). - CVE-2022-25314: Fixed integer overflow in copyString (bsc#1196169). - CVE-2022-25315: Fixed integer overflow in storeRawNames (bsc#1196171). expat-2.4.4-150400.3.6.9.src.rpm expat-2.4.4-150400.3.6.9.x86_64.rpm libexpat-devel-2.4.4-150400.3.6.9.x86_64.rpm libexpat-devel-32bit-2.4.4-150400.3.6.9.x86_64.rpm libexpat1-2.4.4-150400.3.6.9.x86_64.rpm libexpat1-32bit-2.4.4-150400.3.6.9.x86_64.rpm expat-2.4.4-150400.3.6.9.s390x.rpm libexpat-devel-2.4.4-150400.3.6.9.s390x.rpm libexpat1-2.4.4-150400.3.6.9.s390x.rpm expat-2.4.4-150400.3.6.9.ppc64le.rpm libexpat-devel-2.4.4-150400.3.6.9.ppc64le.rpm libexpat1-2.4.4-150400.3.6.9.ppc64le.rpm expat-2.4.4-150400.3.6.9.aarch64.rpm libexpat-devel-2.4.4-150400.3.6.9.aarch64.rpm libexpat1-2.4.4-150400.3.6.9.aarch64.rpm openSUSE-SLE-15.4-2022-731 important SUSE Updates openSUSE-SLE 15.4 This update for mariadb fixes the following issues: - Update to 10.5.15 (bsc#1196016): * 10.5.15: CVE-2021-46665 CVE-2021-46664 CVE-2021-46661 CVE-2021-46668 CVE-2021-46663 * 10.5.14: CVE-2022-24052 CVE-2022-24051 CVE-2022-24050 CVE-2022-24048 CVE-2021-46659, bsc#1195339 - The following issues have already been fixed in this package but weren't previously mentioned in the changes file: CVE-2021-46658, bsc#1195334 CVE-2021-46657, bsc#1195325 mariadb-10.5.15-150300.3.15.1.src.rpm mariadb-galera-10.5.15-150300.3.15.1.x86_64.rpm mariadb-galera-10.5.15-150300.3.15.1.s390x.rpm mariadb-galera-10.5.15-150300.3.15.1.ppc64le.rpm mariadb-galera-10.5.15-150300.3.15.1.aarch64.rpm openSUSE-SLE-15.4-2022-2763 moderate SUSE Updates openSUSE-SLE 15.4 This update for sssd fixes the following issues: - CVE-2021-3621: Fixed shell command injection in sssctl via the logs-fetch and cache-expire subcommand (bsc#1189492). - Add 'ldap_ignore_unreadable_references' parameter to skip unreadable objects referenced by 'member' attributte (bsc#1190775) - Fix 32-bit libraries package. Libraries were moved from sssd to sssd-common but baselibs.conf was not updated accordingly (bsc#1182058, bsc#1196166) - Remove caches only when performing a package downgrade. The sssd daemon takes care of upgrading the database format when necessary (bsc#1195552) libipa_hbac-devel-2.5.2-150400.4.5.14.x86_64.rpm libipa_hbac0-2.5.2-150400.4.5.14.x86_64.rpm libnfsidmap-sss-2.5.2-150400.4.5.14.x86_64.rpm libsss_certmap-devel-2.5.2-150400.4.5.14.x86_64.rpm libsss_certmap0-2.5.2-150400.4.5.14.x86_64.rpm libsss_idmap-devel-2.5.2-150400.4.5.14.x86_64.rpm libsss_idmap0-2.5.2-150400.4.5.14.x86_64.rpm libsss_nss_idmap-devel-2.5.2-150400.4.5.14.x86_64.rpm libsss_nss_idmap0-2.5.2-150400.4.5.14.x86_64.rpm libsss_simpleifp-devel-2.5.2-150400.4.5.14.x86_64.rpm libsss_simpleifp0-2.5.2-150400.4.5.14.x86_64.rpm python3-ipa_hbac-2.5.2-150400.4.5.14.x86_64.rpm python3-sss-murmur-2.5.2-150400.4.5.14.x86_64.rpm python3-sss_nss_idmap-2.5.2-150400.4.5.14.x86_64.rpm python3-sssd-config-2.5.2-150400.4.5.14.x86_64.rpm sssd-2.5.2-150400.4.5.14.src.rpm sssd-2.5.2-150400.4.5.14.x86_64.rpm sssd-ad-2.5.2-150400.4.5.14.x86_64.rpm sssd-common-2.5.2-150400.4.5.14.x86_64.rpm sssd-dbus-2.5.2-150400.4.5.14.x86_64.rpm sssd-ipa-2.5.2-150400.4.5.14.x86_64.rpm sssd-kcm-2.5.2-150400.4.5.14.x86_64.rpm sssd-krb5-2.5.2-150400.4.5.14.x86_64.rpm sssd-krb5-common-2.5.2-150400.4.5.14.x86_64.rpm sssd-ldap-2.5.2-150400.4.5.14.x86_64.rpm sssd-proxy-2.5.2-150400.4.5.14.x86_64.rpm sssd-tools-2.5.2-150400.4.5.14.x86_64.rpm sssd-winbind-idmap-2.5.2-150400.4.5.14.x86_64.rpm libipa_hbac-devel-2.5.2-150400.4.5.14.s390x.rpm libipa_hbac0-2.5.2-150400.4.5.14.s390x.rpm libnfsidmap-sss-2.5.2-150400.4.5.14.s390x.rpm libsss_certmap-devel-2.5.2-150400.4.5.14.s390x.rpm libsss_certmap0-2.5.2-150400.4.5.14.s390x.rpm libsss_idmap-devel-2.5.2-150400.4.5.14.s390x.rpm libsss_idmap0-2.5.2-150400.4.5.14.s390x.rpm libsss_nss_idmap-devel-2.5.2-150400.4.5.14.s390x.rpm libsss_nss_idmap0-2.5.2-150400.4.5.14.s390x.rpm libsss_simpleifp-devel-2.5.2-150400.4.5.14.s390x.rpm libsss_simpleifp0-2.5.2-150400.4.5.14.s390x.rpm python3-ipa_hbac-2.5.2-150400.4.5.14.s390x.rpm python3-sss-murmur-2.5.2-150400.4.5.14.s390x.rpm python3-sss_nss_idmap-2.5.2-150400.4.5.14.s390x.rpm python3-sssd-config-2.5.2-150400.4.5.14.s390x.rpm sssd-2.5.2-150400.4.5.14.s390x.rpm sssd-ad-2.5.2-150400.4.5.14.s390x.rpm sssd-common-2.5.2-150400.4.5.14.s390x.rpm sssd-dbus-2.5.2-150400.4.5.14.s390x.rpm sssd-ipa-2.5.2-150400.4.5.14.s390x.rpm sssd-kcm-2.5.2-150400.4.5.14.s390x.rpm sssd-krb5-2.5.2-150400.4.5.14.s390x.rpm sssd-krb5-common-2.5.2-150400.4.5.14.s390x.rpm sssd-ldap-2.5.2-150400.4.5.14.s390x.rpm sssd-proxy-2.5.2-150400.4.5.14.s390x.rpm sssd-tools-2.5.2-150400.4.5.14.s390x.rpm sssd-winbind-idmap-2.5.2-150400.4.5.14.s390x.rpm libipa_hbac-devel-2.5.2-150400.4.5.14.ppc64le.rpm libipa_hbac0-2.5.2-150400.4.5.14.ppc64le.rpm libnfsidmap-sss-2.5.2-150400.4.5.14.ppc64le.rpm libsss_certmap-devel-2.5.2-150400.4.5.14.ppc64le.rpm libsss_certmap0-2.5.2-150400.4.5.14.ppc64le.rpm libsss_idmap-devel-2.5.2-150400.4.5.14.ppc64le.rpm libsss_idmap0-2.5.2-150400.4.5.14.ppc64le.rpm libsss_nss_idmap-devel-2.5.2-150400.4.5.14.ppc64le.rpm libsss_nss_idmap0-2.5.2-150400.4.5.14.ppc64le.rpm libsss_simpleifp-devel-2.5.2-150400.4.5.14.ppc64le.rpm libsss_simpleifp0-2.5.2-150400.4.5.14.ppc64le.rpm python3-ipa_hbac-2.5.2-150400.4.5.14.ppc64le.rpm python3-sss-murmur-2.5.2-150400.4.5.14.ppc64le.rpm python3-sss_nss_idmap-2.5.2-150400.4.5.14.ppc64le.rpm python3-sssd-config-2.5.2-150400.4.5.14.ppc64le.rpm sssd-2.5.2-150400.4.5.14.ppc64le.rpm sssd-ad-2.5.2-150400.4.5.14.ppc64le.rpm sssd-common-2.5.2-150400.4.5.14.ppc64le.rpm sssd-dbus-2.5.2-150400.4.5.14.ppc64le.rpm sssd-ipa-2.5.2-150400.4.5.14.ppc64le.rpm sssd-kcm-2.5.2-150400.4.5.14.ppc64le.rpm sssd-krb5-2.5.2-150400.4.5.14.ppc64le.rpm sssd-krb5-common-2.5.2-150400.4.5.14.ppc64le.rpm sssd-ldap-2.5.2-150400.4.5.14.ppc64le.rpm sssd-proxy-2.5.2-150400.4.5.14.ppc64le.rpm sssd-tools-2.5.2-150400.4.5.14.ppc64le.rpm sssd-winbind-idmap-2.5.2-150400.4.5.14.ppc64le.rpm libipa_hbac-devel-2.5.2-150400.4.5.14.aarch64.rpm libipa_hbac0-2.5.2-150400.4.5.14.aarch64.rpm libnfsidmap-sss-2.5.2-150400.4.5.14.aarch64.rpm libsss_certmap-devel-2.5.2-150400.4.5.14.aarch64.rpm libsss_certmap0-2.5.2-150400.4.5.14.aarch64.rpm libsss_idmap-devel-2.5.2-150400.4.5.14.aarch64.rpm libsss_idmap0-2.5.2-150400.4.5.14.aarch64.rpm libsss_nss_idmap-devel-2.5.2-150400.4.5.14.aarch64.rpm libsss_nss_idmap0-2.5.2-150400.4.5.14.aarch64.rpm libsss_simpleifp-devel-2.5.2-150400.4.5.14.aarch64.rpm libsss_simpleifp0-2.5.2-150400.4.5.14.aarch64.rpm python3-ipa_hbac-2.5.2-150400.4.5.14.aarch64.rpm python3-sss-murmur-2.5.2-150400.4.5.14.aarch64.rpm python3-sss_nss_idmap-2.5.2-150400.4.5.14.aarch64.rpm python3-sssd-config-2.5.2-150400.4.5.14.aarch64.rpm sssd-2.5.2-150400.4.5.14.aarch64.rpm sssd-ad-2.5.2-150400.4.5.14.aarch64.rpm sssd-common-2.5.2-150400.4.5.14.aarch64.rpm sssd-dbus-2.5.2-150400.4.5.14.aarch64.rpm sssd-ipa-2.5.2-150400.4.5.14.aarch64.rpm sssd-kcm-2.5.2-150400.4.5.14.aarch64.rpm sssd-krb5-2.5.2-150400.4.5.14.aarch64.rpm sssd-krb5-common-2.5.2-150400.4.5.14.aarch64.rpm sssd-ldap-2.5.2-150400.4.5.14.aarch64.rpm sssd-proxy-2.5.2-150400.4.5.14.aarch64.rpm sssd-tools-2.5.2-150400.4.5.14.aarch64.rpm sssd-winbind-idmap-2.5.2-150400.4.5.14.aarch64.rpm openSUSE-SLE-15.4-2022-2347 moderate SUSE Updates openSUSE-SLE 15.4 This update for libnbd fixes the following issues: - CVE-2022-0485: Fixed nbdcopy failure if NBD read or write fails (bsc#1195636). libnbd-1.9.3-150300.8.9.1.src.rpm libnbd-1.9.3-150300.8.9.1.x86_64.rpm libnbd-bash-completion-1.9.3-150300.8.9.1.noarch.rpm libnbd-devel-1.9.3-150300.8.9.1.x86_64.rpm libnbd0-1.9.3-150300.8.9.1.x86_64.rpm nbdfuse-1.9.3-150300.8.9.1.x86_64.rpm libnbd-1.9.3-150300.8.9.1.s390x.rpm libnbd-devel-1.9.3-150300.8.9.1.s390x.rpm libnbd0-1.9.3-150300.8.9.1.s390x.rpm nbdfuse-1.9.3-150300.8.9.1.s390x.rpm libnbd-1.9.3-150300.8.9.1.ppc64le.rpm libnbd-devel-1.9.3-150300.8.9.1.ppc64le.rpm libnbd0-1.9.3-150300.8.9.1.ppc64le.rpm nbdfuse-1.9.3-150300.8.9.1.ppc64le.rpm libnbd-1.9.3-150300.8.9.1.aarch64.rpm libnbd-devel-1.9.3-150300.8.9.1.aarch64.rpm libnbd0-1.9.3-150300.8.9.1.aarch64.rpm nbdfuse-1.9.3-150300.8.9.1.aarch64.rpm openSUSE-SLE-15.4-2022-1485 moderate SUSE Updates openSUSE-SLE 15.4 This update for python39 fixes the following issues: - CVE-2021-3572: Fixed an improper handling of unicode characters in pip (bsc#1186819). - Update to 3.9.10 (jsc#SLE-23849) - Remove shebangs from from python-base libraries in _libdir. (bsc#1193179) - Update to 3.9.9: * Core and Builtins + bpo-30570: Fixed a crash in issubclass() from infinite recursion when searching pathological __bases__ tuples. + bpo-45494: Fix parser crash when reporting errors involving invalid continuation characters. Patch by Pablo Galindo. + bpo-45385: Fix reference leak from descr_check. Patch by Dong-hee Na. + bpo-45167: Fix deepcopying of types.GenericAlias objects. + bpo-44219: Release the GIL while performing isatty system calls on arbitrary file descriptors. In particular, this affects os.isatty(), os.device_encoding() and io.TextIOWrapper. By extension, io.open() in text mode is also affected. This change solves a deadlock in os.isatty(). Patch by Vincent Michel in bpo-44219. + bpo-44959: Added fallback to extension modules with '.sl' suffix on HP-UX + bpo-44050: Extensions that indicate they use global state (by setting m_size to -1) can again be used in multiple interpreters. This reverts to behavior of Python 3.8. + bpo-45121: Fix issue where Protocol.__init__ raises RecursionError when it's called directly or via super(). Patch provided by Yurii Karabas. + bpo-45083: When the interpreter renders an exception, its name now has a complete qualname. Previously only the class name was concatenated to the module name, which sometimes resulted in an incorrect full name being displayed. + bpo-45738: Fix computation of error location for invalid continuation characters in the parser. Patch by Pablo Galindo. + Library + bpo-45678: Fix bug in Python 3.9 that meant functools.singledispatchmethod failed to properly wrap the attributes of the target method. Patch by Alex Waygood. + bpo-45679: Fix caching of multi-value typing.Literal. Literal[True, 2] is no longer equal to Literal[1, 2]. + bpo-45438: Fix typing.Signature string representation for generic builtin types. + bpo-45581: sqlite3.connect() now correctly raises MemoryError if the underlying SQLite API signals memory error. Patch by Erlend E. Aasland. + bpo-39679: Fix bug in functools.singledispatchmethod that caused it to fail when attempting to register a classmethod() or staticmethod() using type annotations. Patch contributed by Alex Waygood. + bpo-45515: Add references to zoneinfo in the datetime documentation, mostly replacing outdated references to dateutil.tz. Change by Paul Ganssle. + bpo-45467: Fix incremental decoder and stream reader in the "raw-unicode-escape" codec. Previously they failed if the escape sequence was split. + bpo-45461: Fix incremental decoder and stream reader in the "unicode-escape" codec. Previously they failed if the escape sequence was split. + bpo-45239: Fixed email.utils.parsedate_tz() crashing with UnboundLocalError on certain invalid input instead of returning None. Patch by Ben Hoyt. + bpo-44904: Fix bug in the doctest module that caused it to fail if a docstring included an example with a classmethod property. Patch by Alex Waygood. + bpo-45406: Make inspect.getmodule() catch FileNotFoundError raised by :'func:inspect.getabsfile, and return None to indicate that the module could not be determined. + bpo-45262: Prevent use-after-free in asyncio. Make sure the cached running loop holder gets cleared on dealloc to prevent use-after-free in get_running_loop + bpo-45386: Make xmlrpc.client more robust to C runtimes where the underlying C strftime function results in a ValueError when testing for year formatting options. + bpo-45371: Fix clang rpath issue in distutils. The UnixCCompiler now uses correct clang option to add a runtime library directory (rpath) to a shared library. + bpo-20028: Improve error message of csv.Dialect when initializing. Patch by Vajrasky Kok and Dong-hee Na. + bpo-45343: Update bundled pip to 21.2.4 and setuptools to 58.1.0 + bpo-41710: On Unix, if the sem_clockwait() function is available in the C library (glibc 2.30 and newer), the threading.Lock.acquire() method now uses the monotonic clock (time.CLOCK_MONOTONIC) for the timeout, rather than using the system clock (time.CLOCK_REALTIME), to not be affected by system clock changes. Patch by Victor Stinner. + bpo-45328: Fixed http.client.HTTPConnection to work properly in OSs that don't support the TCP_NODELAY socket option. + bpo-1596321: Fix the threading._shutdown() function when the threading module was imported first from a thread different than the main thread: no longer log an error at Python exit. + bpo-45274: Fix a race condition in the Thread.join() method of the threading module. If the function is interrupted by a signal and the signal handler raises an exception, make sure that the thread remains in a consistent state to prevent a deadlock. Patch by Victor Stinner. + bpo-45238: Fix unittest.IsolatedAsyncioTestCase.debug(): it runs now asynchronous methods and callbacks. + bpo-36674: unittest.TestCase.debug() raises now a unittest.SkipTest if the class or the test method are decorated with the skipping decorator. + bpo-45235: Fix an issue where argparse would not preserve values in a provided namespace when using a subparser with defaults. + bpo-45234: Fixed a regression in copyfile(), copy(), copy2() raising FileNotFoundError when source is a directory, which should raise IsADirectoryError + bpo-45228: Fix stack buffer overflow in parsing J1939 network address. + bpo-45192: Fix the tempfile._infer_return_type function so that the dir argument of the tempfile functions accepts an object implementing the os.PathLike protocol. + bpo-45160: When tracing a tkinter variable used by a ttk OptionMenu, callbacks are no longer made twice. + bpo-35474: Calling mimetypes.guess_all_extensions() with strict=False no longer affects the result of the following call with strict=True. Also, mutating the returned list no longer affects the global state. + bpo-45166: typing.get_type_hints() now works with Final wrapped in ForwardRef. + bpo-45097: Remove deprecation warnings about the loop argument in asyncio incorrectly emitted in cases when the user does not pass the loop argument. + bpo-45081: Fix issue when dataclasses that inherit from typing.Protocol subclasses have wrong __init__. Patch provided by Yurii Karabas. + bpo-24444: Fixed an error raised in argparse help display when help for an option is set to 1+ blank spaces or when choices arg is an empty container. + bpo-45021: Fix a potential deadlock at shutdown of forked children when using concurrent.futures module + bpo-45030: Fix integer overflow in pickling and copying the range iterator. + bpo-39039: tarfile.open raises ReadError when a zlib error occurs during file extraction. + bpo-44594: Fix an edge case of ExitStack and AsyncExitStack exception chaining. They will now match with block behavior when __context__ is explicitly set to None when the exception is in flight. * Documentation + bpo-45726: Improve documentation for functools.singledispatch() and functools.singledispatchmethod. + bpo-45680: Amend the docs on GenericAlias objects to clarify that non-container classes can also implement __class_getitem__. Patch contributed by Alex Waygood. + bpo-45655: Add a new "relevant PEPs" section to the top of the documentation for the typing module. Patch by Alex Waygood. + bpo-45604: Add level argument to multiprocessing.log_to_stderr function docs. + bpo-45464: Mention in the documentation of Built-in Exceptions that inheriting from multiple exception types in a single subclass is not recommended due to possible memory layout incompatibility. + bpo-45449: Add note about PEP 585 in collections.abc. + bpo-45516: Add protocol description to the importlib.abc.Traversable documentation. + bpo-20692: Add Programming FAQ entry explaining that int literal attribute access requires either a space after or parentheses around the literal. + bpo-45216: Remove extra documentation listing methods in difflib. It was rendering twice in pydoc and was outdated in some places. + bpo-45772: socket.socket documentation is corrected to a class from a function. + bpo-45392: Update the docstring of the type built-in to remove a redundant line and to mention keyword arguments for the constructor. * Tests + bpo-45578: Add tests for dis.distb() + bpo-45577: Add subtests for all pickle protocols in test_zoneinfo. + bpo-43592: test.libregrtest now raises the soft resource limit for the maximum number of file descriptors when the default is too low for our test suite as was often the case on macOS. + bpo-40173: Fix test.support.import_helper.import_fresh_module(). + bpo-45280: Add a test case for empty typing.NamedTuple. + bpo-45269: Cover case when invalid markers type is supplied to c_make_encoder. + bpo-45209: Fix UserWarning: resource_tracker warning in _test_multiprocessing._TestSharedMemory.test_shared_memory_cleaned_after_process_termination + bpo-45195: Fix test_readline.test_nonascii(): sometimes, the newline character is not written at the end, so don't expect it in the output. Patch by Victor Stinner. + bpo-45156: Fixes infinite loop on unittest.mock.seal() of mocks created by create_autospec(). + bpo-45042: Fixes that test classes decorated with @hashlib_helper.requires_hashdigest were skipped all the time. + bpo-45235: Reverted an argparse bugfix that caused regression in the handling of default arguments for subparsers. This prevented leaf level arguments from taking precedence over root level arguments. + bpo-45765: In importlib.metadata, fix distribution discovery for an empty path. + bpo-45644: In-place JSON file formatting using python3 -m json.tool infile infile now works correctly, previously it left the file empty. Patch by Chris Wesseling. * Build + bpo-43158: setup.py now uses values from configure script to build the _uuid extension module. Configure now detects util-linux's libuuid, too. + bpo-45571: Modules/Setup now use PY_CFLAGS_NODIST instead of PY_CFLAGS to compile shared modules. + bpo-45532: Update sys.version to use main as fallback information. Patch by Jeong YunWon. + bpo-45405: Prevent internal configure error when running configure with recent versions of non-Apple clang. Patch by David Bohman. + bpo-45220: Avoid building with the Windows 11 SDK previews automatically. This may be overridden by setting the DefaultWindowsSDKVersion environment variable before building. * C API + bpo-44687: BufferedReader.peek() no longer raises ValueError when the entire file has already been buffered. + bpo-44751: Remove crypt.h include from the public Python.h header. - rpm-build-python dependency is available on the current Factory, not with SLE. - BuildRequire rpm-build-python: The provider to inject python(abi) has been moved there. rpm-build pulls rpm-build-python automatically in when building anything against python3-base, but this implies that the initial build of python3-base does not trigger the automatic installation. - Update to 3.9.7: - Security - Replaced usage of tempfile.mktemp() with TemporaryDirectory to avoid a potential race condition. - Add auditing events to the marshal module, and stop raising code.__init__ events for every unmarshalled code object. Directly instantiated code objects will continue to raise an event, and audit event handlers should inspect or collect the raw marshal data. This reduces a significant performance overhead when loading from .pyc files. - Made the internal putcmd function in smtplib sanitize input for presence of \r and \n characters to avoid (unlikely) command injection. - Core and Builtins - Fixed pickling of range iterators that iterated for over 2**32 times. - Fix a race in WeakKeyDictionary, WeakValueDictionary and WeakSet when two threads attempt to commit the last pending removal. This fixes asyncio.create_task and fixes a data loss in asyncio.run where shutdown_asyncgens is not run - Fixed a corner case bug where the result of float.fromhex('0x.8p-1074') was rounded the wrong way. - Refine the syntax error for trailing commas in import statements. Patch by Pablo Galindo. - Restore behaviour of complex exponentiation with integer-valued exponent of type float or complex. - Correct the ast locations of f-strings with format specs and repeated expressions. Patch by Pablo Galindo - Use new trashcan macros (Py_TRASHCAN_BEGIN/END) in frameobject.c instead of the old ones (Py_TRASHCAN_SAFE_BEGIN/END). - Fix segmentation fault with deep recursion when cleaning method objects. Patch by Augusto Goulart and Pablo Galindo. - Fix bug where PyErr_SetObject hangs when the current exception has a cycle in its context chain. - Fix reference leaks in the error paths of update_bases() and __build_class__. Patch by Pablo Galindo. - Fix undefined behaviour in complex object exponentiation. - Remove uses of PyObject_GC_Del() in error path when initializing types.GenericAlias. - Remove the pass-through for hash() of weakref.proxy objects to prevent unintended consequences when the original referred object dies while the proxy is part of a hashable object. Patch by Pablo Galindo. - Fix ltrace functionality when exceptions are raised. Patch by Pablo Galindo - Fix a crash at Python exit when a deallocator function removes the last strong reference to a heap type. Patch by Victor Stinner. - Fix crash when using passing a non-exception to a generator's throw() method. Patch by Noah Oxer - Library - run() now always return a TestResult instance. Previously it returned None if the test class or method was decorated with a skipping decorator. - Fix bugs in cleaning up classes and modules in unittest: - Functions registered with addModuleCleanup() were not called unless the user defines tearDownModule() in their test module. - Functions registered with addClassCleanup() were not called if tearDownClass is set to None. - Buffering in TestResult did not work with functions registered with addClassCleanup() and addModuleCleanup(). - Errors in functions registered with addClassCleanup() and addModuleCleanup() were not handled correctly in buffered and debug modes. - Errors in setUpModule() and functions registered with addModuleCleanup() were reported in wrong order. - And several lesser bugs. - Made email date parsing more robust against malformed input, namely a whitespace-only Date: header. Patch by Wouter Bolsterlee. - Fix a crash in the signal handler of the faulthandler module: no longer modify the reference count of frame objects. Patch by Victor Stinner. - Method stopTestRun() is now always called in pair with method startTestRun() for TestResult objects implicitly created in run(). Previously it was not called for test methods and classes decorated with a skipping decorator. - argparse.BooleanOptionalAction's default value is no longer printed twice when used with argparse.ArgumentDefaultsHelpFormatter. - Upgrade bundled pip to 21.2.3 and setuptools to 57.4.0 - Fix the os.set_inheritable() function on FreeBSD 14 for file descriptor opened with the O_PATH flag: ignore the EBADF error on ioctl(), fallback on the fcntl() implementation. Patch by Victor Stinner. - The @functools.total_ordering() decorator now works with metaclasses. - sqlite3 user-defined functions and aggregators returning strings with embedded NUL characters are no longer truncated. Patch by Erlend E. Aasland. - Always show loop= arg deprecations in asyncio.gather() and asyncio.sleep() - Non-protocol subclasses of typing.Protocol ignore now the __init__ method inherited from protocol base classes. - The tokenize.tokenize() doesn't incorrectly generate a NEWLINE token if the source doesn't end with a new line character but the last line is a comment, as the function is already generating a NL token. Patch by Pablo Galindo - Fix http.client.HTTPSConnection fails to download >2GiB data. - rcompleter does not call getattr() on property objects to avoid the side-effect of evaluating the corresponding method. - weakref.proxy objects referencing non-iterators now raise TypeError rather than dereferencing the null tp_iternext slot and crashing. - The implementation of collections.abc.Set._hash() now matches that of frozenset.__hash__(). - Fixed issue in compileall.compile_file() when sys.stdout is redirected. Patch by Stefan Hölzl. - Give priority to using the current class constructor in inspect.signature(). Patch by Weipeng Hong. - Fix memory leak in _tkinter._flatten() if it is called with a sequence or set, but not list or tuple. - Update shutil.copyfile() to raise FileNotFoundError instead of confusing IsADirectoryError when a path ending with a os.path.sep does not exist; shutil.copy() and shutil.copy2() are also affected. - handle StopIteration subclass raised from @contextlib.contextmanager generator - Make the implementation consistency of indexOf() between C and Python versions. Patch by Dong-hee Na. - Fixes TypedDict to work with typing.get_type_hints() and postponed evaluation of annotations across modules. - Fix bug with pdb's handling of import error due to a package which does not have a __main__ module - Fixed an exception thrown while parsing a malformed multipart email by email.message.EmailMessage. - pathlib.PureWindowsPath.is_reserved() now identifies a greater range of reserved filenames, including those with trailing spaces or colons. - Handle exceptions from parsing the arg of pdb's run/restart command. - The sqlite3 context manager now performs a rollback (thus releasing the database lock) if commit failed. Patch by Luca Citi and Erlend E. Aasland. - Improved string handling for sqlite3 user-defined functions and aggregates: - It is now possible to pass strings with embedded null characters to UDFs - Conversion failures now correctly raise MemoryError - Patch by Erlend E. Aasland. - Handle RecursionError in TracebackException's constructor, so that long exceptions chains are truncated instead of causing traceback formatting to fail. - Fix email.message.EmailMessage.set_content() when called with binary data and 7bit content transfer encoding. - The compresslevel and preset keyword arguments of tarfile.open() are now both documented and tested. - Fixed a Y2k38 bug in the compileall module where it would fail to compile files with a modification time after the year 2038. - Fix test___all__ on platforms lacking a shared memory implementation. - Pass multiprocessing BaseProxy argument manager_owned through AutoProxy. - email.utils.getaddresses() now accepts email.header.Header objects along with string values. Patch by Zackery Spytz. - lib2to3 now recognizes async generators everywhere. - Fix TypeError when required subparsers without dest do not receive arguments. Patch by Anthony Sottile. - Documentation - Removed the othergui.rst file, any references to it, and the list of GUI frameworks in the FAQ. In their place I've added links to the Python Wiki page on GUI frameworks. - Update the definition of __future__ in the glossary by replacing the confusing word "pseudo-module" with a more accurate description. - Add typical examples to os.path.splitext docs - Clarify that shutil.make_archive() is not thread-safe due to reliance on changing the current working directory. - Update of three expired hyperlinks in Doc/distributing/index.rst: "Project structure", "Building and packaging the project", and "Uploading the project to the Python Packaging Index". - Updated the docstring and docs of filecmp.cmp() to be more accurate and less confusing especially in respect to shallow arg. - Match the docstring and python implementation of countOf() to the behavior of its c implementation. - List all kwargs for textwrap.wrap(), textwrap.fill(), and textwrap.shorten(). Now, there are nav links to attributes of TextWrap, which makes navigation much easier while minimizing duplication in the documentation. - Clarify that atexit uses equality comparisons internally. - Documentation of csv.Dialect is more descriptive. - Fix documentation for the return type of sysconfig.get_path(). - Add a "Security Considerations" index which links to standard library modules that have explicitly documented security considerations. - Remove the unqualified claim that tkinter is threadsafe. It has not been true for several years and likely never was. An explanation of what is true may be added later, after more discussion, and possibly after patching _tkinter.c, - Tests - Add calls of gc.collect() in tests to support PyPy. - Made tests relying on the _asyncio C extension module optional to allow running on alternative Python implementations. Patch by Serhiy Storchaka. - Fix auto history tests of test_readline: sometimes, the newline character is not written at the end, so don't expect it in the output. - Add ability to wholesale silence DeprecationWarnings while running the regression test suite. - Notify users running test_decimal regression tests on macOS of potential harmless "malloc can't allocate region" messages spewed by test_decimal. - Fixed floating point precision issue in turtle tests. - Regression tests, when run with -w, are now re-running only the affected test methods instead of re-running the entire test file. - Add test for nested queues when using multiprocessing shared objects AutoProxy[Queue] inside ListProxy and DictProxy - Add building with --with-system-libmpdec option (bsc#1189356). - test_faulthandler is still problematic under qemu linux-user emulation, disable it there - Reenable profileopt with qemu emulation, test_faulthandler is no longer run during profiling - bpo-44022 (bsc#1189241, CVE-2021-3737): http.client now avoids infinitely reading potential HTTP headers after a 100 Continue status response from the server. - bpo-43075 (CVE-2021-3733, bsc#1189287): Fix Regular Expression Denial of Service (ReDoS) vulnerability in urllib.request.AbstractBasicAuthHandler. The ReDoS-vulnerable regex has quadratic worst-case complexity and it allows cause a denial of service when identifying crafted invalid RFCs. This ReDoS issue is on the client side and needs remote attackers to control the HTTP server. libpython3_9-1_0-3.9.10-150300.4.8.1.x86_64.rpm libpython3_9-1_0-32bit-3.9.10-150300.4.8.1.x86_64.rpm python39-3.9.10-150300.4.8.2.src.rpm python39-3.9.10-150300.4.8.2.x86_64.rpm python39-32bit-3.9.10-150300.4.8.2.x86_64.rpm python39-base-3.9.10-150300.4.8.1.x86_64.rpm python39-base-32bit-3.9.10-150300.4.8.1.x86_64.rpm python39-core-3.9.10-150300.4.8.1.src.rpm python39-curses-3.9.10-150300.4.8.2.x86_64.rpm python39-dbm-3.9.10-150300.4.8.2.x86_64.rpm python39-devel-3.9.10-150300.4.8.1.x86_64.rpm python39-doc-3.9.10-150300.4.8.1.x86_64.rpm python39-doc-devhelp-3.9.10-150300.4.8.1.x86_64.rpm python39-documentation-3.9.10-150300.4.8.1.src.rpm python39-idle-3.9.10-150300.4.8.2.x86_64.rpm python39-testsuite-3.9.10-150300.4.8.1.x86_64.rpm python39-tk-3.9.10-150300.4.8.2.x86_64.rpm python39-tools-3.9.10-150300.4.8.1.x86_64.rpm libpython3_9-1_0-3.9.10-150300.4.8.1.s390x.rpm python39-3.9.10-150300.4.8.2.s390x.rpm python39-base-3.9.10-150300.4.8.1.s390x.rpm python39-curses-3.9.10-150300.4.8.2.s390x.rpm python39-dbm-3.9.10-150300.4.8.2.s390x.rpm python39-devel-3.9.10-150300.4.8.1.s390x.rpm python39-doc-3.9.10-150300.4.8.1.s390x.rpm python39-doc-devhelp-3.9.10-150300.4.8.1.s390x.rpm python39-idle-3.9.10-150300.4.8.2.s390x.rpm python39-testsuite-3.9.10-150300.4.8.1.s390x.rpm python39-tk-3.9.10-150300.4.8.2.s390x.rpm python39-tools-3.9.10-150300.4.8.1.s390x.rpm libpython3_9-1_0-3.9.10-150300.4.8.1.ppc64le.rpm python39-3.9.10-150300.4.8.2.ppc64le.rpm python39-base-3.9.10-150300.4.8.1.ppc64le.rpm python39-curses-3.9.10-150300.4.8.2.ppc64le.rpm python39-dbm-3.9.10-150300.4.8.2.ppc64le.rpm python39-devel-3.9.10-150300.4.8.1.ppc64le.rpm python39-doc-3.9.10-150300.4.8.1.ppc64le.rpm python39-doc-devhelp-3.9.10-150300.4.8.1.ppc64le.rpm python39-idle-3.9.10-150300.4.8.2.ppc64le.rpm python39-testsuite-3.9.10-150300.4.8.1.ppc64le.rpm python39-tk-3.9.10-150300.4.8.2.ppc64le.rpm python39-tools-3.9.10-150300.4.8.1.ppc64le.rpm libpython3_9-1_0-3.9.10-150300.4.8.1.aarch64.rpm python39-3.9.10-150300.4.8.2.aarch64.rpm python39-base-3.9.10-150300.4.8.1.aarch64.rpm python39-curses-3.9.10-150300.4.8.2.aarch64.rpm python39-dbm-3.9.10-150300.4.8.2.aarch64.rpm python39-devel-3.9.10-150300.4.8.1.aarch64.rpm python39-doc-3.9.10-150300.4.8.1.aarch64.rpm python39-doc-devhelp-3.9.10-150300.4.8.1.aarch64.rpm python39-idle-3.9.10-150300.4.8.2.aarch64.rpm python39-testsuite-3.9.10-150300.4.8.1.aarch64.rpm python39-tk-3.9.10-150300.4.8.2.aarch64.rpm python39-tools-3.9.10-150300.4.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-2849 moderate SUSE Updates openSUSE-SLE 15.4 This update for at fixes the following issues: - Fixes an issue when an error "Read-only file system" appears when writing to '/dev/kmsg'. (bsc#1196219) at-3.2.2-150400.4.3.10.src.rpm at-3.2.2-150400.4.3.10.x86_64.rpm at-3.2.2-150400.4.3.10.s390x.rpm at-3.2.2-150400.4.3.10.ppc64le.rpm at-3.2.2-150400.4.3.10.aarch64.rpm openSUSE-SLE-15.4-2022-1923 important SUSE Updates openSUSE-SLE 15.4 This update for kernel-firmware fixes the following issues: Update to version 20220411 (git commit f219d616f42b, bsc#1199459): - CVE-2021-26373, CVE-2021-26347, CVE-2021-26376, CVE-2021-26350, CVE-2021-26375, CVE-2021-26378, CVE-2021-26372, CVE-2021-26339, CVE-2021-26348, CVE-2021-26342, CVE-2021-26388, CVE-2021-26349, CVE-2021-26364, CVE-2021-26312: Update AMD cpu microcode Update to version 20220309 (git commit cd01f857da28, bsc#1199470): - CVE-2021-46744: Ciphertext Side Channels on AMD SEV Update Intel Bluetooth firmware (INTEL-SA-00604, bsc#1195786): - CVE-2021-33139, CVE-2021-33155: Improper conditions check in the firmware for some Intel Wireless Bluetooth and Killer Bluetooth products may allow an authenticated user to potentially cause denial of service via adjacent access. kernel-firmware-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-20220509-150400.4.5.1.src.rpm True kernel-firmware-all-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-amdgpu-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-ath10k-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-ath11k-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-atheros-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-bluetooth-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-bnx2-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-brcm-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-chelsio-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-dpaa2-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-i915-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-intel-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-iwlwifi-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-liquidio-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-marvell-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-media-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-mediatek-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-mellanox-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-mwifiex-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-network-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-nfp-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-nvidia-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-platform-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-prestera-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-qcom-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-qlogic-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-radeon-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-realtek-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-serial-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-sound-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-ti-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-ueagle-20220509-150400.4.5.1.noarch.rpm True kernel-firmware-usb-network-20220509-150400.4.5.1.noarch.rpm True ucode-amd-20220509-150400.4.5.1.noarch.rpm True openSUSE-SLE-15.4-2022-1627 moderate SUSE Updates openSUSE-SLE 15.4 This update for cluster-glue fixes the following issues: - Fix for comment in external ec2 (bsc#1197681) - Support IMDSv2 in EC2 stonith agent. (jsc#SLE-23490, jsc#SLE-23491, jsc#SLE-23492, jsc#SLE-23494) cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.src.rpm cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm libglue-devel-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm libglue-devel-32bit-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm libglue2-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm libglue2-32bit-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.x86_64.rpm cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.s390x.rpm libglue-devel-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.s390x.rpm libglue2-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.s390x.rpm cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.ppc64le.rpm libglue-devel-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.ppc64le.rpm libglue2-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.ppc64le.rpm cluster-glue-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.aarch64.rpm libglue-devel-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.aarch64.rpm libglue2-1.0.12+v1.git.1587474580.a5fda2bc-150000.3.14.1.aarch64.rpm openSUSE-SLE-15.4-2022-2277 moderate SUSE Updates openSUSE-SLE 15.4 This update for haproxy fixes the following issues: - CVE-2022-0711: haproxy: Denial of service via set-cookie2 header (bsc#1196408). haproxy-2.4.8+git0.d1f8d41e0-150400.3.3.13.src.rpm haproxy-2.4.8+git0.d1f8d41e0-150400.3.3.13.x86_64.rpm haproxy-2.4.8+git0.d1f8d41e0-150400.3.3.13.s390x.rpm haproxy-2.4.8+git0.d1f8d41e0-150400.3.3.13.ppc64le.rpm haproxy-2.4.8+git0.d1f8d41e0-150400.3.3.13.aarch64.rpm openSUSE-SLE-15.4-2022-2687 moderate SUSE Updates openSUSE-SLE 15.4 This update for fwupd fixes the following issues: - Ignore non-PCI NVMe devices (e.g. NVMe-over-Fabrics) when probing (bsc#1193921) - package was rebuilt with new UEFI secure boot key. (bsc#1198581) dfu-tool-1.7.3-150400.3.3.19.x86_64.rpm fwupd-1.7.3-150400.3.3.19.src.rpm fwupd-1.7.3-150400.3.3.19.x86_64.rpm fwupd-devel-1.7.3-150400.3.3.19.x86_64.rpm fwupd-lang-1.7.3-150400.3.3.19.noarch.rpm libfwupd2-1.7.3-150400.3.3.19.x86_64.rpm libfwupdplugin5-1.7.3-150400.3.3.19.x86_64.rpm typelib-1_0-Fwupd-2_0-1.7.3-150400.3.3.19.x86_64.rpm typelib-1_0-FwupdPlugin-1_0-1.7.3-150400.3.3.19.x86_64.rpm dfu-tool-1.7.3-150400.3.3.19.s390x.rpm fwupd-1.7.3-150400.3.3.19.s390x.rpm fwupd-devel-1.7.3-150400.3.3.19.s390x.rpm libfwupd2-1.7.3-150400.3.3.19.s390x.rpm libfwupdplugin5-1.7.3-150400.3.3.19.s390x.rpm typelib-1_0-Fwupd-2_0-1.7.3-150400.3.3.19.s390x.rpm typelib-1_0-FwupdPlugin-1_0-1.7.3-150400.3.3.19.s390x.rpm dfu-tool-1.7.3-150400.3.3.19.ppc64le.rpm fwupd-1.7.3-150400.3.3.19.ppc64le.rpm fwupd-devel-1.7.3-150400.3.3.19.ppc64le.rpm libfwupd2-1.7.3-150400.3.3.19.ppc64le.rpm libfwupdplugin5-1.7.3-150400.3.3.19.ppc64le.rpm typelib-1_0-Fwupd-2_0-1.7.3-150400.3.3.19.ppc64le.rpm typelib-1_0-FwupdPlugin-1_0-1.7.3-150400.3.3.19.ppc64le.rpm dfu-tool-1.7.3-150400.3.3.19.aarch64.rpm fwupd-1.7.3-150400.3.3.19.aarch64.rpm fwupd-devel-1.7.3-150400.3.3.19.aarch64.rpm libfwupd2-1.7.3-150400.3.3.19.aarch64.rpm libfwupdplugin5-1.7.3-150400.3.3.19.aarch64.rpm typelib-1_0-Fwupd-2_0-1.7.3-150400.3.3.19.aarch64.rpm typelib-1_0-FwupdPlugin-1_0-1.7.3-150400.3.3.19.aarch64.rpm openSUSE-SLE-15.4-2022-2088 moderate SUSE Updates openSUSE-SLE 15.4 This update for firewalld fixes the following issues: - Fixes setting the default zone to external during installation problem (bsc#1191837) firewall-applet-0.9.3-150400.8.3.19.noarch.rpm firewall-config-0.9.3-150400.8.3.19.noarch.rpm firewall-macros-0.9.3-150400.8.3.19.noarch.rpm firewalld-0.9.3-150400.8.3.19.noarch.rpm firewalld-0.9.3-150400.8.3.19.src.rpm firewalld-lang-0.9.3-150400.8.3.19.noarch.rpm python3-firewall-0.9.3-150400.8.3.19.noarch.rpm openSUSE-SLE-15.4-2022-1438 low SUSE Updates openSUSE-SLE 15.4 This update for systemd-presets-common-SUSE fixes the following issue: - enable vgauthd service for VMWare by default (bsc#1195251) systemd-presets-common-SUSE-15-150100.8.12.1.noarch.rpm systemd-presets-common-SUSE-15-150100.8.12.1.src.rpm openSUSE-SLE-15.4-2022-1821 low SUSE Updates openSUSE-SLE 15.4 This update for read-only-root-fs fixes the following issues: - Add required mount for /etc for systemd udevd. - Workaround for /var being RO during systemd journal flush. (bsc#1156421) - Better check for already existing etc overlay. (bsc#1161264) - Adjust btrfs maintenance sysconfig to not use the read-only root filesystem. (bsc#1176052) read-only-root-fs-1.0+git20190206.586e9f1-150100.3.3.1.noarch.rpm read-only-root-fs-1.0+git20190206.586e9f1-150100.3.3.1.src.rpm read-only-root-fs-volatile-1.0+git20190206.586e9f1-150100.3.3.1.noarch.rpm openSUSE-SLE-15.4-2022-1450 moderate SUSE Updates openSUSE-SLE 15.4 This update for openmpi3 fixes the following issues: - Fix bad rdma component selection which can cause stall when running on multiple IB nodes. (bsc#1196838) - Move rpm macros to %_rpmmacrodir. (bsc#1191390) - Add build support for gcc8/9/10 to HPC build. (bsc#1174439) libopenmpi3-gnu-hpc-3.1.6-150200.3.3.1.x86_64.rpm libopenmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-3.1.6-150200.3.3.1.src.rpm openmpi3-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-config-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-devel-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-docs-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-gnu-hpc-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-gnu-hpc-devel-3.1.6-150200.3.3.1.noarch.rpm openmpi3-gnu-hpc-devel-static-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-gnu-hpc-docs-3.1.6-150200.3.3.1.noarch.rpm openmpi3-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.noarch.rpm openmpi3-libs-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-libs-32bit-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-macros-devel-3.1.6-150200.3.3.1.x86_64.rpm openmpi3-testsuite-3.1.6-150200.3.3.1.noarch.rpm openmpi3-testsuite-3.1.6-150200.3.3.1.src.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.src.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-devel-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-devel-static-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-docs-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.x86_64.rpm openmpi_3_1_6-gnu-hpc-testsuite-3.1.6-150200.3.3.1.noarch.rpm openmpi_3_1_6-gnu-hpc-testsuite-3.1.6-150200.3.3.1.src.rpm libopenmpi3-gnu-hpc-3.1.6-150200.3.3.1.s390x.rpm libopenmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.s390x.rpm openmpi3-3.1.6-150200.3.3.1.s390x.rpm openmpi3-config-3.1.6-150200.3.3.1.s390x.rpm openmpi3-devel-3.1.6-150200.3.3.1.s390x.rpm openmpi3-docs-3.1.6-150200.3.3.1.s390x.rpm openmpi3-gnu-hpc-3.1.6-150200.3.3.1.s390x.rpm openmpi3-gnu-hpc-devel-static-3.1.6-150200.3.3.1.s390x.rpm openmpi3-libs-3.1.6-150200.3.3.1.s390x.rpm openmpi3-macros-devel-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-devel-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-devel-static-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-docs-3.1.6-150200.3.3.1.s390x.rpm openmpi_3_1_6-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.s390x.rpm libopenmpi3-gnu-hpc-3.1.6-150200.3.3.1.ppc64le.rpm libopenmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-config-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-devel-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-docs-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-gnu-hpc-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-gnu-hpc-devel-static-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-libs-3.1.6-150200.3.3.1.ppc64le.rpm openmpi3-macros-devel-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-devel-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-devel-static-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-docs-3.1.6-150200.3.3.1.ppc64le.rpm openmpi_3_1_6-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.ppc64le.rpm libopenmpi3-gnu-hpc-3.1.6-150200.3.3.1.aarch64.rpm libopenmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-config-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-devel-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-docs-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-gnu-hpc-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-gnu-hpc-devel-static-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-libs-3.1.6-150200.3.3.1.aarch64.rpm openmpi3-macros-devel-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-devel-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-devel-static-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-docs-3.1.6-150200.3.3.1.aarch64.rpm openmpi_3_1_6-gnu-hpc-macros-devel-3.1.6-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1470 low SUSE Updates openSUSE-SLE 15.4 This update for samba fixes the following issue: - Adjust systemd tmpfiles.d configuration, use /run/samba instead of /var/run/samba. (bsc#1134046) libsamba-policy-python-devel-4.9.5+git.487.9b5717b962b-150100.3.67.2.x86_64.rpm libsamba-policy0-32bit-4.9.5+git.487.9b5717b962b-150100.3.67.2.x86_64.rpm libsamba-policy0-4.9.5+git.487.9b5717b962b-150100.3.67.2.x86_64.rpm samba-4.9.5+git.487.9b5717b962b-150100.3.67.2.src.rpm samba-libs-python-32bit-4.9.5+git.487.9b5717b962b-150100.3.67.2.x86_64.rpm samba-libs-python-4.9.5+git.487.9b5717b962b-150100.3.67.2.x86_64.rpm samba-python-4.9.5+git.487.9b5717b962b-150100.3.67.2.x86_64.rpm libsamba-policy-python-devel-4.9.5+git.487.9b5717b962b-150100.3.67.2.s390x.rpm libsamba-policy0-4.9.5+git.487.9b5717b962b-150100.3.67.2.s390x.rpm samba-libs-python-4.9.5+git.487.9b5717b962b-150100.3.67.2.s390x.rpm samba-python-4.9.5+git.487.9b5717b962b-150100.3.67.2.s390x.rpm libsamba-policy-python-devel-4.9.5+git.487.9b5717b962b-150100.3.67.2.ppc64le.rpm libsamba-policy0-4.9.5+git.487.9b5717b962b-150100.3.67.2.ppc64le.rpm samba-libs-python-4.9.5+git.487.9b5717b962b-150100.3.67.2.ppc64le.rpm samba-python-4.9.5+git.487.9b5717b962b-150100.3.67.2.ppc64le.rpm libsamba-policy-python-devel-4.9.5+git.487.9b5717b962b-150100.3.67.2.aarch64.rpm libsamba-policy0-4.9.5+git.487.9b5717b962b-150100.3.67.2.aarch64.rpm samba-libs-python-4.9.5+git.487.9b5717b962b-150100.3.67.2.aarch64.rpm samba-python-4.9.5+git.487.9b5717b962b-150100.3.67.2.aarch64.rpm openSUSE-SLE-15.4-2022-1471 low SUSE Updates openSUSE-SLE 15.4 This update for samba fixes the following issue: - Adjust systemd tmpfiles.d configuration, use /run/samba instead of /var/run/samba. (bsc#1134046) libndr0-32bit-4.11.14+git.322.4d2b83a55cc-150200.4.38.2.x86_64.rpm libndr0-4.11.14+git.322.4d2b83a55cc-150200.4.38.2.x86_64.rpm samba-4.11.14+git.322.4d2b83a55cc-150200.4.38.2.src.rpm libndr0-4.11.14+git.322.4d2b83a55cc-150200.4.38.2.s390x.rpm libndr0-4.11.14+git.322.4d2b83a55cc-150200.4.38.2.ppc64le.rpm libndr0-4.11.14+git.322.4d2b83a55cc-150200.4.38.2.aarch64.rpm openSUSE-SLE-15.4-2022-1827 moderate SUSE Updates openSUSE-SLE 15.4 This update for xf86-video-vesa fixes the following issues: - Disallow vesa driver on the system with simpledrmfb (bsc#1193539): xf86-video-vesa-2.4.0-150100.5.3.1.src.rpm xf86-video-vesa-2.4.0-150100.5.3.1.x86_64.rpm xf86-video-vesa-2.4.0-150100.5.3.1.ppc64le.rpm xf86-video-vesa-2.4.0-150100.5.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1496 moderate SUSE Updates openSUSE-SLE 15.4 This update for kvm_stat fixes the following issues: - Add an appropriate delay in the unit file to ensure kvm module is properly loaded (bsc#1185945) - Add a dummy -rebuild package: give OBS/Tumbleweed a hint to tell when this package needs a rebuild (bsc#1178493) kvm_stat-5.3.18-150300.19.3.1.noarch.rpm kvm_stat-5.3.18-150300.19.3.1.src.rpm openSUSE-SLE-15.4-2022-1542 moderate SUSE Updates openSUSE-SLE 15.4 This update for sblim-sfcb fixes the following issues: - Add config option to optionally disable TLSv1.2 (bsc#1190107) - Enable TLS v1.3 by removing explicit curve selection. This should not be required for OpenSSL 1.1.0+ (bsc#1190107) sblim-sfcb-1.4.9-150000.5.9.4.src.rpm sblim-sfcb-1.4.9-150000.5.9.4.x86_64.rpm sblim-sfcb-1.4.9-150000.5.9.4.s390x.rpm sblim-sfcb-1.4.9-150000.5.9.4.ppc64le.rpm sblim-sfcb-1.4.9-150000.5.9.4.aarch64.rpm openSUSE-SLE-15.4-2022-1555 moderate SUSE Updates openSUSE-SLE 15.4 This update for amavisd-new fixes the following issues: - Removed deprecated option "syslog" used in amavis.service (bsc#1185145) amavisd-new-2.11.1-150000.6.6.1.src.rpm amavisd-new-2.11.1-150000.6.6.1.x86_64.rpm amavisd-new-docs-2.11.1-150000.6.6.1.x86_64.rpm amavisd-new-2.11.1-150000.6.6.1.s390x.rpm amavisd-new-docs-2.11.1-150000.6.6.1.s390x.rpm amavisd-new-2.11.1-150000.6.6.1.ppc64le.rpm amavisd-new-docs-2.11.1-150000.6.6.1.ppc64le.rpm amavisd-new-2.11.1-150000.6.6.1.aarch64.rpm amavisd-new-docs-2.11.1-150000.6.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1420 moderate SUSE Updates openSUSE-SLE 15.4 This update for lifecycle-data-sle-module-live-patching fixes the following issues: Lifecycle data update. (bsc#1020320) - Added data for 4_12_14-150_83, 4_12_14-150_86, 4_12_14-197_105, 4_12_14-197_108, 5_3_18-150300_59_46, 5_3_18-150300_59_49, 5_3_18-150300_59_54, 5_3_18-24_102, 5_3_18-24_107. lifecycle-data-sle-module-live-patching-15-150000.4.72.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-150000.4.72.1.src.rpm openSUSE-SLE-15.4-2022-1554 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: gtkmm2, atkmm1_6, pangomm1_4, cairomm1_0 atkmm1_6-2.28.0-150200.3.2.1.src.rpm atkmm1_6-doc-2.28.0-150200.3.2.1.noarch.rpm pangomm1_4-2.42.0-150200.3.2.1.src.rpm pangomm1_4-doc-2.42.0-150200.3.2.1.x86_64.rpm pangomm1_4-doc-2.42.0-150200.3.2.1.s390x.rpm pangomm1_4-doc-2.42.0-150200.3.2.1.ppc64le.rpm pangomm1_4-doc-2.42.0-150200.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1494 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: hp-drive-guard, upower hp-drive-guard-0.3.12-150000.4.2.1.src.rpm hp-drive-guard-0.3.12-150000.4.2.1.x86_64.rpm hp-drive-guard-0.3.12-150000.4.2.1.s390x.rpm hp-drive-guard-0.3.12-150000.4.2.1.ppc64le.rpm hp-drive-guard-0.3.12-150000.4.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1493 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: a52dec a52dec-0.7.5+svn613-150000.3.2.1.src.rpm a52dec-0.7.5+svn613-150000.3.2.1.x86_64.rpm liba52-0-0.7.5+svn613-150000.3.2.1.x86_64.rpm liba52-0-32bit-0.7.5+svn613-150000.3.2.1.x86_64.rpm liba52-devel-0.7.5+svn613-150000.3.2.1.x86_64.rpm a52dec-0.7.5+svn613-150000.3.2.1.s390x.rpm liba52-0-0.7.5+svn613-150000.3.2.1.s390x.rpm liba52-devel-0.7.5+svn613-150000.3.2.1.s390x.rpm a52dec-0.7.5+svn613-150000.3.2.1.ppc64le.rpm liba52-0-0.7.5+svn613-150000.3.2.1.ppc64le.rpm liba52-devel-0.7.5+svn613-150000.3.2.1.ppc64le.rpm a52dec-0.7.5+svn613-150000.3.2.1.aarch64.rpm liba52-0-0.7.5+svn613-150000.3.2.1.aarch64.rpm liba52-devel-0.7.5+svn613-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1482 moderate SUSE Updates openSUSE-SLE 15.4 This update for mdadm fixes the following issues: - Fix a boot failure with multipath if the reading the VPD page attribute fails and skip RAID assembly if it is set. (bsc#1196054) mdadm-4.1-150300.24.12.1.src.rpm mdadm-4.1-150300.24.12.1.x86_64.rpm mdadm-4.1-150300.24.12.1.s390x.rpm mdadm-4.1-150300.24.12.1.ppc64le.rpm mdadm-4.1-150300.24.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-1418 moderate SUSE Updates openSUSE-SLE 15.4 This update for ant fixes the following issues: - CVE-2021-36373: Fixed an excessive memory allocation when reading a specially crafted TAR archive (bsc#1188468). - CVE-2021-36374: Fixed an excessive memory allocation when reading a specially crafted ZIP archive (bsc#1188469). ant-1.10.7-150200.4.6.1.noarch.rpm ant-1.10.7-150200.4.6.1.src.rpm ant-antlr-1.10.7-150200.4.6.1.noarch.rpm ant-antlr-1.10.7-150200.4.6.1.src.rpm ant-apache-bcel-1.10.7-150200.4.6.1.noarch.rpm ant-apache-bsf-1.10.7-150200.4.6.1.noarch.rpm ant-apache-log4j-1.10.7-150200.4.6.1.noarch.rpm ant-apache-oro-1.10.7-150200.4.6.1.noarch.rpm ant-apache-regexp-1.10.7-150200.4.6.1.noarch.rpm ant-apache-resolver-1.10.7-150200.4.6.1.noarch.rpm ant-apache-xalan2-1.10.7-150200.4.6.1.noarch.rpm ant-commons-logging-1.10.7-150200.4.6.1.noarch.rpm ant-commons-net-1.10.7-150200.4.6.1.noarch.rpm ant-imageio-1.10.7-150200.4.6.1.noarch.rpm ant-javamail-1.10.7-150200.4.6.1.noarch.rpm ant-jdepend-1.10.7-150200.4.6.1.noarch.rpm ant-jmf-1.10.7-150200.4.6.1.noarch.rpm ant-jsch-1.10.7-150200.4.6.1.noarch.rpm ant-junit-1.10.7-150200.4.6.1.noarch.rpm ant-junit-1.10.7-150200.4.6.1.src.rpm ant-junit5-1.10.7-150200.4.6.1.noarch.rpm ant-junit5-1.10.7-150200.4.6.1.src.rpm ant-manual-1.10.7-150200.4.6.1.noarch.rpm ant-scripts-1.10.7-150200.4.6.1.noarch.rpm ant-swing-1.10.7-150200.4.6.1.noarch.rpm ant-testutil-1.10.7-150200.4.6.1.noarch.rpm ant-xz-1.10.7-150200.4.6.1.noarch.rpm openSUSE-SLE-15.4-2022-1517 moderate SUSE Updates openSUSE-SLE 15.4 This update for lksctp-tools fixes the following issues: Update to version 1.0.17 (bsc#1197590) * sctp_test: fix hostname resolution * man: remove sysctl listing from sctp.7 * Fix recieved->received typos * Fix usage help for sctp_test * test_1_to_1_accept_close: also expect EACCES when accept on an established socket * lksctp-tools: make bind_test can do while disable IPV6 * libsctp: add pkg-config support lksctp-tools-1.0.17-150000.3.3.1.src.rpm lksctp-tools-1.0.17-150000.3.3.1.x86_64.rpm lksctp-tools-devel-1.0.17-150000.3.3.1.x86_64.rpm lksctp-tools-1.0.17-150000.3.3.1.s390x.rpm lksctp-tools-devel-1.0.17-150000.3.3.1.s390x.rpm lksctp-tools-1.0.17-150000.3.3.1.ppc64le.rpm lksctp-tools-devel-1.0.17-150000.3.3.1.ppc64le.rpm lksctp-tools-1.0.17-150000.3.3.1.aarch64.rpm lksctp-tools-devel-1.0.17-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1436 moderate SUSE Updates openSUSE-SLE 15.4 This update for libaom fixes the following issues: - CVE-2021-30473: AOMedia in aom_image.c frees memory that is not located on the heap (bsc#1185778). libaom-1.0.0-150200.3.12.1.src.rpm libaom0-1.0.0-150200.3.12.1.x86_64.rpm libaom0-32bit-1.0.0-150200.3.12.1.x86_64.rpm libaom0-1.0.0-150200.3.12.1.s390x.rpm libaom0-1.0.0-150200.3.12.1.ppc64le.rpm libaom0-1.0.0-150200.3.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-1492 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libdvdread libdvdread-6.0.0-150000.3.2.1.src.rpm libdvdread-devel-6.0.0-150000.3.2.1.x86_64.rpm libdvdread4-32bit-6.0.0-150000.3.2.1.x86_64.rpm libdvdread4-6.0.0-150000.3.2.1.x86_64.rpm libdvdread-devel-6.0.0-150000.3.2.1.s390x.rpm libdvdread4-6.0.0-150000.3.2.1.s390x.rpm libdvdread-devel-6.0.0-150000.3.2.1.ppc64le.rpm libdvdread4-6.0.0-150000.3.2.1.ppc64le.rpm libdvdread-devel-6.0.0-150000.3.2.1.aarch64.rpm libdvdread4-6.0.0-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1712 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libchamplain cogl clutter clutter-gtk libchamplain-0.12.20-150200.3.2.1.src.rpm libchamplain-0_12-0-0.12.20-150200.3.2.1.x86_64.rpm libchamplain-devel-0.12.20-150200.3.2.1.x86_64.rpm typelib-1_0-Champlain-0_12-0.12.20-150200.3.2.1.x86_64.rpm libchamplain-0_12-0-0.12.20-150200.3.2.1.s390x.rpm libchamplain-devel-0.12.20-150200.3.2.1.s390x.rpm typelib-1_0-Champlain-0_12-0.12.20-150200.3.2.1.s390x.rpm libchamplain-0_12-0-0.12.20-150200.3.2.1.ppc64le.rpm libchamplain-devel-0.12.20-150200.3.2.1.ppc64le.rpm typelib-1_0-Champlain-0_12-0.12.20-150200.3.2.1.ppc64le.rpm libchamplain-0_12-0-0.12.20-150200.3.2.1.aarch64.rpm libchamplain-devel-0.12.20-150200.3.2.1.aarch64.rpm typelib-1_0-Champlain-0_12-0.12.20-150200.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1863 low SUSE Updates openSUSE-SLE 15.4 This optional update for ckermit fixes the following issues: There are no visible changes for the final user. - Solve a source build issue (FTBFS) after the removal of `libio` with `glibc-2.28`. (bsc#1197708) ckermit-9.0.302-150000.3.3.1.src.rpm ckermit-9.0.302-150000.3.3.1.x86_64.rpm ckermit-doc-9.0.302-150000.3.3.1.noarch.rpm ckermit-9.0.302-150000.3.3.1.s390x.rpm ckermit-9.0.302-150000.3.3.1.ppc64le.rpm ckermit-9.0.302-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2680 moderate SUSE Updates openSUSE-SLE 15.4 This update for buildah fixes the following issues: - CVE-2022-27651: Fixed incorrect default inheritable capabilities for linux container (bsc#1197870). Update to version 1.25.1. The following non-security bugs were fixed: - add workaround for https://bugzilla.opensuse.org/show_bug.cgi?id=1183043 buildah-1.25.1-150400.3.3.28.src.rpm buildah-1.25.1-150400.3.3.28.x86_64.rpm buildah-1.25.1-150400.3.3.28.s390x.rpm buildah-1.25.1-150400.3.3.28.ppc64le.rpm buildah-1.25.1-150400.3.3.28.aarch64.rpm openSUSE-SLE-15.4-2022-1706 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libgadu libgadu-1.12.2-150000.3.2.1.src.rpm libgadu-devel-1.12.2-150000.3.2.1.x86_64.rpm libgadu3-1.12.2-150000.3.2.1.x86_64.rpm libgadu-devel-1.12.2-150000.3.2.1.s390x.rpm libgadu3-1.12.2-150000.3.2.1.s390x.rpm libgadu-devel-1.12.2-150000.3.2.1.ppc64le.rpm libgadu3-1.12.2-150000.3.2.1.ppc64le.rpm libgadu-devel-1.12.2-150000.3.2.1.aarch64.rpm libgadu3-1.12.2-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1739 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libGLw motif libGLw-8.0.0-150000.3.6.1.src.rpm libGLw-devel-32bit-8.0.0-150000.3.6.1.x86_64.rpm libGLw-devel-8.0.0-150000.3.6.1.x86_64.rpm libGLw1-32bit-8.0.0-150000.3.6.1.x86_64.rpm libGLw1-8.0.0-150000.3.6.1.x86_64.rpm libGLwM1-32bit-8.0.0-150000.3.6.1.x86_64.rpm libGLwM1-8.0.0-150000.3.6.1.x86_64.rpm libMrm4-2.3.4-150000.3.5.1.x86_64.rpm libMrm4-32bit-2.3.4-150000.3.5.1.x86_64.rpm libUil4-2.3.4-150000.3.5.1.x86_64.rpm libUil4-32bit-2.3.4-150000.3.5.1.x86_64.rpm libXm4-2.3.4-150000.3.5.1.x86_64.rpm libXm4-32bit-2.3.4-150000.3.5.1.x86_64.rpm motif-2.3.4-150000.3.5.1.src.rpm motif-2.3.4-150000.3.5.1.x86_64.rpm motif-devel-2.3.4-150000.3.5.1.x86_64.rpm motif-devel-32bit-2.3.4-150000.3.5.1.x86_64.rpm libGLw-devel-8.0.0-150000.3.6.1.s390x.rpm libGLw1-8.0.0-150000.3.6.1.s390x.rpm libGLwM1-8.0.0-150000.3.6.1.s390x.rpm libMrm4-2.3.4-150000.3.5.1.s390x.rpm libUil4-2.3.4-150000.3.5.1.s390x.rpm libXm4-2.3.4-150000.3.5.1.s390x.rpm motif-2.3.4-150000.3.5.1.s390x.rpm motif-devel-2.3.4-150000.3.5.1.s390x.rpm libGLw-devel-8.0.0-150000.3.6.1.ppc64le.rpm libGLw1-8.0.0-150000.3.6.1.ppc64le.rpm libGLwM1-8.0.0-150000.3.6.1.ppc64le.rpm libMrm4-2.3.4-150000.3.5.1.ppc64le.rpm libUil4-2.3.4-150000.3.5.1.ppc64le.rpm libXm4-2.3.4-150000.3.5.1.ppc64le.rpm motif-2.3.4-150000.3.5.1.ppc64le.rpm motif-devel-2.3.4-150000.3.5.1.ppc64le.rpm libGLw-devel-8.0.0-150000.3.6.1.aarch64.rpm libGLw1-8.0.0-150000.3.6.1.aarch64.rpm libGLwM1-8.0.0-150000.3.6.1.aarch64.rpm libMrm4-2.3.4-150000.3.5.1.aarch64.rpm libUil4-2.3.4-150000.3.5.1.aarch64.rpm libXm4-2.3.4-150000.3.5.1.aarch64.rpm motif-2.3.4-150000.3.5.1.aarch64.rpm motif-devel-2.3.4-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-1553 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: gom gom-0.4-150200.3.2.1.src.rpm gom-devel-0.4-150200.3.2.1.x86_64.rpm libgom-1_0-0-0.4-150200.3.2.1.x86_64.rpm python3-gom-0.4-150200.3.2.1.x86_64.rpm typelib-1_0-Gom-1_0-0.4-150200.3.2.1.x86_64.rpm gom-devel-0.4-150200.3.2.1.s390x.rpm libgom-1_0-0-0.4-150200.3.2.1.s390x.rpm python3-gom-0.4-150200.3.2.1.s390x.rpm typelib-1_0-Gom-1_0-0.4-150200.3.2.1.s390x.rpm gom-devel-0.4-150200.3.2.1.ppc64le.rpm libgom-1_0-0-0.4-150200.3.2.1.ppc64le.rpm python3-gom-0.4-150200.3.2.1.ppc64le.rpm typelib-1_0-Gom-1_0-0.4-150200.3.2.1.ppc64le.rpm gom-devel-0.4-150200.3.2.1.aarch64.rpm libgom-1_0-0-0.4-150200.3.2.1.aarch64.rpm python3-gom-0.4-150200.3.2.1.aarch64.rpm typelib-1_0-Gom-1_0-0.4-150200.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1460 moderate SUSE Updates openSUSE-SLE 15.4 This update for google-guest-agent, google-guest-configs, google-guest-oslogin, google-osconfig-agent fixes the following issues: - Update to version 20220204.00. (bsc#1195437, bsc#1195438) * remove han from owners (#154) * Remove extra slash from metadata URL. (#151) - from version 20220104.00 * List IPv6 routes (#150) - from version 20211228.00 * add add or remove route integration test, utils (#147) - from version 20211214.00 * add malformed ssh key unit test (#142) - Update to version 20220211.00. (bsc#1195437, bsc#1195438) * Set NVMe-PD IO timeout to 4294967295. (#32) - Update to version 20220205.00. (bsc#1195437, bsc#1195438) * Fix build for EL9. (#82) - from version 20211213.00 * Reauth error (#81) - Rename Source0 field to Source - Update URL in Source field to point to upstream tarball - Update to version 20220209.00 (bsc#1195437, bsc#1195438) * Update licences, remove deprecated centos-8 tests (#414) - Update to version 20220204.00 * Add DisableLocalLogging option (#413) - from version 20220107.00 * OS assignment example: Copy file from bucket google-guest-agent-20220204.00-150000.1.26.1.src.rpm google-guest-agent-20220204.00-150000.1.26.1.x86_64.rpm google-guest-oslogin-20220205.00-150000.1.27.1.src.rpm google-guest-oslogin-20220205.00-150000.1.27.1.x86_64.rpm google-osconfig-agent-20220209.00-150000.1.17.1.src.rpm google-osconfig-agent-20220209.00-150000.1.17.1.x86_64.rpm google-guest-agent-20220204.00-150000.1.26.1.s390x.rpm google-guest-oslogin-20220205.00-150000.1.27.1.s390x.rpm google-osconfig-agent-20220209.00-150000.1.17.1.s390x.rpm google-guest-agent-20220204.00-150000.1.26.1.ppc64le.rpm google-guest-oslogin-20220205.00-150000.1.27.1.ppc64le.rpm google-osconfig-agent-20220209.00-150000.1.17.1.ppc64le.rpm google-guest-agent-20220204.00-150000.1.26.1.aarch64.rpm google-guest-oslogin-20220205.00-150000.1.27.1.aarch64.rpm google-osconfig-agent-20220209.00-150000.1.17.1.aarch64.rpm openSUSE-SLE-15.4-2022-1734 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: lpsolve liblpsolve55-0-5.5.2.0-150000.3.2.1.x86_64.rpm lpsolve-5.5.2.0-150000.3.2.1.src.rpm lpsolve-5.5.2.0-150000.3.2.1.x86_64.rpm lpsolve-devel-5.5.2.0-150000.3.2.1.x86_64.rpm liblpsolve55-0-5.5.2.0-150000.3.2.1.s390x.rpm lpsolve-5.5.2.0-150000.3.2.1.s390x.rpm lpsolve-devel-5.5.2.0-150000.3.2.1.s390x.rpm liblpsolve55-0-5.5.2.0-150000.3.2.1.ppc64le.rpm lpsolve-5.5.2.0-150000.3.2.1.ppc64le.rpm lpsolve-devel-5.5.2.0-150000.3.2.1.ppc64le.rpm liblpsolve55-0-5.5.2.0-150000.3.2.1.aarch64.rpm lpsolve-5.5.2.0-150000.3.2.1.aarch64.rpm lpsolve-devel-5.5.2.0-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1887 moderate SUSE Updates openSUSE-SLE 15.4 This update for grep fixes the following issues: - Make profiling deterministic. (bsc#1040589, SLE-24115) grep-3.1-150000.4.6.1.src.rpm grep-3.1-150000.4.6.1.x86_64.rpm grep-lang-3.1-150000.4.6.1.noarch.rpm grep-3.1-150000.4.6.1.s390x.rpm grep-3.1-150000.4.6.1.ppc64le.rpm grep-3.1-150000.4.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1663 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: meanwhile libmeanwhile1-1.0.2-150000.3.2.1.x86_64.rpm meanwhile-1.0.2-150000.3.2.1.src.rpm meanwhile-devel-1.0.2-150000.3.2.1.x86_64.rpm meanwhile-doc-1.0.2-150000.3.2.1.x86_64.rpm libmeanwhile1-1.0.2-150000.3.2.1.s390x.rpm meanwhile-devel-1.0.2-150000.3.2.1.s390x.rpm meanwhile-doc-1.0.2-150000.3.2.1.s390x.rpm libmeanwhile1-1.0.2-150000.3.2.1.ppc64le.rpm meanwhile-devel-1.0.2-150000.3.2.1.ppc64le.rpm meanwhile-doc-1.0.2-150000.3.2.1.ppc64le.rpm libmeanwhile1-1.0.2-150000.3.2.1.aarch64.rpm meanwhile-devel-1.0.2-150000.3.2.1.aarch64.rpm meanwhile-doc-1.0.2-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1742 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libmpeg2 libmpeg2-0-0.5.1-150000.3.2.1.x86_64.rpm libmpeg2-0-32bit-0.5.1-150000.3.2.1.x86_64.rpm libmpeg2-0.5.1-150000.3.2.1.src.rpm libmpeg2-devel-0.5.1-150000.3.2.1.x86_64.rpm libmpeg2convert0-0.5.1-150000.3.2.1.x86_64.rpm mpeg2dec-0.5.1-150000.3.2.1.x86_64.rpm libmpeg2-0-0.5.1-150000.3.2.1.s390x.rpm libmpeg2-devel-0.5.1-150000.3.2.1.s390x.rpm libmpeg2convert0-0.5.1-150000.3.2.1.s390x.rpm mpeg2dec-0.5.1-150000.3.2.1.s390x.rpm libmpeg2-0-0.5.1-150000.3.2.1.ppc64le.rpm libmpeg2-devel-0.5.1-150000.3.2.1.ppc64le.rpm libmpeg2convert0-0.5.1-150000.3.2.1.ppc64le.rpm mpeg2dec-0.5.1-150000.3.2.1.ppc64le.rpm libmpeg2-0-0.5.1-150000.3.2.1.aarch64.rpm libmpeg2-devel-0.5.1-150000.3.2.1.aarch64.rpm libmpeg2convert0-0.5.1-150000.3.2.1.aarch64.rpm mpeg2dec-0.5.1-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1524 moderate SUSE Updates openSUSE-SLE 15.4 This update for apache2-mod_auth_mellon fixes the following issues: - CVE-2021-3639: Fixed open Redirect vulnerability in logout URLs (bsc#1188926) apache2-mod_auth_mellon-0.17.0-150200.5.7.1.src.rpm apache2-mod_auth_mellon-0.17.0-150200.5.7.1.x86_64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-150200.5.7.1.x86_64.rpm apache2-mod_auth_mellon-doc-0.17.0-150200.5.7.1.x86_64.rpm apache2-mod_auth_mellon-0.17.0-150200.5.7.1.s390x.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-150200.5.7.1.s390x.rpm apache2-mod_auth_mellon-doc-0.17.0-150200.5.7.1.s390x.rpm apache2-mod_auth_mellon-0.17.0-150200.5.7.1.ppc64le.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-150200.5.7.1.ppc64le.rpm apache2-mod_auth_mellon-doc-0.17.0-150200.5.7.1.ppc64le.rpm apache2-mod_auth_mellon-0.17.0-150200.5.7.1.aarch64.rpm apache2-mod_auth_mellon-diagnostics-0.17.0-150200.5.7.1.aarch64.rpm apache2-mod_auth_mellon-doc-0.17.0-150200.5.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-1713 low SUSE Updates openSUSE-SLE 15.4 This update for libreiserfs fixes the following issues: - Resolve autoreconf issue. libreiserfs-0.3.0.5-150000.3.3.1.src.rpm libreiserfs-0_3-0-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-0_3-0-32bit-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-devel-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-devel-32bit-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-progs-0.3.0.5-150000.3.3.1.x86_64.rpm libreiserfs-0_3-0-0.3.0.5-150000.3.3.1.s390x.rpm libreiserfs-devel-0.3.0.5-150000.3.3.1.s390x.rpm libreiserfs-progs-0.3.0.5-150000.3.3.1.s390x.rpm libreiserfs-0_3-0-0.3.0.5-150000.3.3.1.ppc64le.rpm libreiserfs-devel-0.3.0.5-150000.3.3.1.ppc64le.rpm libreiserfs-progs-0.3.0.5-150000.3.3.1.ppc64le.rpm libreiserfs-0_3-0-0.3.0.5-150000.3.3.1.aarch64.rpm libreiserfs-devel-0.3.0.5-150000.3.3.1.aarch64.rpm libreiserfs-progs-0.3.0.5-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1579 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.9.0 ESR MFSA 2022-17 (bsc#1198970) * CVE-2022-29914: Fullscreen notification bypass using popups * CVE-2022-29909: Bypassing permission prompt in nested browsing contexts * CVE-2022-29916: Leaking browser history with CSS variables * CVE-2022-29911: iframe Sandbox bypass * CVE-2022-29912: Reader mode bypassed SameSite cookies * CVE-2022-29917: Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9 MozillaFirefox-91.9.0-150200.152.33.1.src.rpm MozillaFirefox-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-devel-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-translations-common-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-translations-other-91.9.0-150200.152.33.1.x86_64.rpm MozillaFirefox-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-devel-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-translations-common-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-translations-other-91.9.0-150200.152.33.1.s390x.rpm MozillaFirefox-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-devel-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-translations-common-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-translations-other-91.9.0-150200.152.33.1.ppc64le.rpm MozillaFirefox-91.9.0-150200.152.33.1.aarch64.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.33.1.aarch64.rpm MozillaFirefox-devel-91.9.0-150200.152.33.1.aarch64.rpm MozillaFirefox-translations-common-91.9.0-150200.152.33.1.aarch64.rpm MozillaFirefox-translations-other-91.9.0-150200.152.33.1.aarch64.rpm openSUSE-SLE-15.4-2022-1549 moderate SUSE Updates openSUSE-SLE 15.4 This update for libvirt fixes the following issues: - CVE-2022-0897: Fixed a crash in nwfilter when counting number of network filters (bsc#1197636). The following non-security bugs were fixed: - qemu: Improve save operation by increasing pipe size c61d1e9b-virfile-set-pipe-size.patch, 47d6d185-virfile-fix-indent.patch, cd7acb33-virfile-report-error.patch bsc#1196625 - qemu: Directly query KVM for TSC scaling support 5df2c492-use-kvm-for-tsc-scaling.patch bsc#1193364 libvirt-7.1.0-150300.6.29.1.src.rpm libvirt-admin-7.1.0-150300.6.29.1.x86_64.rpm libvirt-bash-completion-7.1.0-150300.6.29.1.noarch.rpm libvirt-admin-7.1.0-150300.6.29.1.s390x.rpm libvirt-admin-7.1.0-150300.6.29.1.ppc64le.rpm libvirt-admin-7.1.0-150300.6.29.1.aarch64.rpm openSUSE-SLE-15.4-2022-1464 moderate SUSE Updates openSUSE-SLE 15.4 This update for strongswan fixes the following issues: - Enable auth_els plugin (jsc#SLE-20151) strongswan-5.8.2-150200.11.27.1.src.rpm strongswan-5.8.2-150200.11.27.1.x86_64.rpm strongswan-doc-5.8.2-150200.11.27.1.noarch.rpm strongswan-hmac-5.8.2-150200.11.27.1.x86_64.rpm strongswan-ipsec-5.8.2-150200.11.27.1.x86_64.rpm strongswan-libs0-5.8.2-150200.11.27.1.x86_64.rpm strongswan-mysql-5.8.2-150200.11.27.1.x86_64.rpm strongswan-nm-5.8.2-150200.11.27.1.x86_64.rpm strongswan-sqlite-5.8.2-150200.11.27.1.x86_64.rpm strongswan-5.8.2-150200.11.27.1.s390x.rpm strongswan-hmac-5.8.2-150200.11.27.1.s390x.rpm strongswan-ipsec-5.8.2-150200.11.27.1.s390x.rpm strongswan-libs0-5.8.2-150200.11.27.1.s390x.rpm strongswan-mysql-5.8.2-150200.11.27.1.s390x.rpm strongswan-nm-5.8.2-150200.11.27.1.s390x.rpm strongswan-sqlite-5.8.2-150200.11.27.1.s390x.rpm strongswan-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-hmac-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-ipsec-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-libs0-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-mysql-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-nm-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-sqlite-5.8.2-150200.11.27.1.ppc64le.rpm strongswan-5.8.2-150200.11.27.1.aarch64.rpm strongswan-hmac-5.8.2-150200.11.27.1.aarch64.rpm strongswan-ipsec-5.8.2-150200.11.27.1.aarch64.rpm strongswan-libs0-5.8.2-150200.11.27.1.aarch64.rpm strongswan-mysql-5.8.2-150200.11.27.1.aarch64.rpm strongswan-nm-5.8.2-150200.11.27.1.aarch64.rpm strongswan-sqlite-5.8.2-150200.11.27.1.aarch64.rpm openSUSE-SLE-15.4-2022-1736 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: mysql-connector-cpp libmysqlcppconn-devel-1.1.9-150000.4.5.1.x86_64.rpm libmysqlcppconn7-1.1.9-150000.4.5.1.x86_64.rpm mysql-connector-cpp-1.1.9-150000.4.5.1.src.rpm libmysqlcppconn-devel-1.1.9-150000.4.5.1.s390x.rpm libmysqlcppconn7-1.1.9-150000.4.5.1.s390x.rpm libmysqlcppconn-devel-1.1.9-150000.4.5.1.ppc64le.rpm libmysqlcppconn7-1.1.9-150000.4.5.1.ppc64le.rpm libmysqlcppconn-devel-1.1.9-150000.4.5.1.aarch64.rpm libmysqlcppconn7-1.1.9-150000.4.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-1741 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: libotr libotr-4.1.1-150000.4.2.1.src.rpm libotr-devel-4.1.1-150000.4.2.1.x86_64.rpm libotr-tools-4.1.1-150000.4.2.1.x86_64.rpm libotr5-4.1.1-150000.4.2.1.x86_64.rpm libotr-devel-4.1.1-150000.4.2.1.s390x.rpm libotr-tools-4.1.1-150000.4.2.1.s390x.rpm libotr5-4.1.1-150000.4.2.1.s390x.rpm libotr-devel-4.1.1-150000.4.2.1.ppc64le.rpm libotr-tools-4.1.1-150000.4.2.1.ppc64le.rpm libotr5-4.1.1-150000.4.2.1.ppc64le.rpm libotr-devel-4.1.1-150000.4.2.1.aarch64.rpm libotr-tools-4.1.1-150000.4.2.1.aarch64.rpm libotr5-4.1.1-150000.4.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1767 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: rasqal redland raptor libraptor-devel-2.0.15-150200.9.9.1.x86_64.rpm libraptor2-0-2.0.15-150200.9.9.1.x86_64.rpm libraptor2-0-32bit-2.0.15-150200.9.9.1.x86_64.rpm librasqal-devel-0.9.33-150000.3.2.1.x86_64.rpm librasqal-devel-doc-0.9.33-150000.3.2.1.x86_64.rpm librasqal3-0.9.33-150000.3.2.1.x86_64.rpm librasqal3-32bit-0.9.33-150000.3.2.1.x86_64.rpm librdf0-1.0.17-150200.10.3.1.x86_64.rpm librdf0-32bit-1.0.17-150200.10.3.1.x86_64.rpm libredland-devel-1.0.17-150200.10.3.1.x86_64.rpm raptor-2.0.15-150200.9.9.1.src.rpm raptor-2.0.15-150200.9.9.1.x86_64.rpm rasqal-0.9.33-150000.3.2.1.src.rpm rasqal-0.9.33-150000.3.2.1.x86_64.rpm redland-1.0.17-150200.10.3.1.src.rpm redland-1.0.17-150200.10.3.1.x86_64.rpm redland-storage-postgresql-1.0.17-150200.10.3.1.x86_64.rpm libraptor-devel-2.0.15-150200.9.9.1.s390x.rpm libraptor2-0-2.0.15-150200.9.9.1.s390x.rpm librasqal-devel-0.9.33-150000.3.2.1.s390x.rpm librasqal-devel-doc-0.9.33-150000.3.2.1.s390x.rpm librasqal3-0.9.33-150000.3.2.1.s390x.rpm librdf0-1.0.17-150200.10.3.1.s390x.rpm libredland-devel-1.0.17-150200.10.3.1.s390x.rpm raptor-2.0.15-150200.9.9.1.s390x.rpm rasqal-0.9.33-150000.3.2.1.s390x.rpm redland-1.0.17-150200.10.3.1.s390x.rpm redland-storage-postgresql-1.0.17-150200.10.3.1.s390x.rpm libraptor-devel-2.0.15-150200.9.9.1.ppc64le.rpm libraptor2-0-2.0.15-150200.9.9.1.ppc64le.rpm librasqal-devel-0.9.33-150000.3.2.1.ppc64le.rpm librasqal-devel-doc-0.9.33-150000.3.2.1.ppc64le.rpm librasqal3-0.9.33-150000.3.2.1.ppc64le.rpm librdf0-1.0.17-150200.10.3.1.ppc64le.rpm libredland-devel-1.0.17-150200.10.3.1.ppc64le.rpm raptor-2.0.15-150200.9.9.1.ppc64le.rpm rasqal-0.9.33-150000.3.2.1.ppc64le.rpm redland-1.0.17-150200.10.3.1.ppc64le.rpm redland-storage-postgresql-1.0.17-150200.10.3.1.ppc64le.rpm libraptor-devel-2.0.15-150200.9.9.1.aarch64.rpm libraptor2-0-2.0.15-150200.9.9.1.aarch64.rpm librasqal-devel-0.9.33-150000.3.2.1.aarch64.rpm librasqal-devel-doc-0.9.33-150000.3.2.1.aarch64.rpm librasqal3-0.9.33-150000.3.2.1.aarch64.rpm librdf0-1.0.17-150200.10.3.1.aarch64.rpm libredland-devel-1.0.17-150200.10.3.1.aarch64.rpm raptor-2.0.15-150200.9.9.1.aarch64.rpm rasqal-0.9.33-150000.3.2.1.aarch64.rpm redland-1.0.17-150200.10.3.1.aarch64.rpm redland-storage-postgresql-1.0.17-150200.10.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1556 moderate SUSE Updates openSUSE-SLE 15.4 This update for xkeyboard-config fixes the following issues: - Add French standardized AZERTY layout (AFNOR: NF Z71-300) (bsc#1188867) xkeyboard-config-2.23.1-150000.3.12.1.noarch.rpm xkeyboard-config-2.23.1-150000.3.12.1.src.rpm xkeyboard-config-lang-2.23.1-150000.3.12.1.noarch.rpm openSUSE-SLE-15.4-2022-1491 moderate SUSE Updates openSUSE-SLE 15.4 This update for psmisc fixes the following issues: - Add a fallback if the system call name_to_handle_at() is not supported by the used file system. - Replace the synchronizing over pipes of the sub process for the stat(2) system call with mutex and conditions from pthreads(7) (bsc#1194172) - Use statx(2) or SYS_statx system call to replace the stat(2) system call and avoid the sub process (bsc#1194172) psmisc-23.0-150000.6.22.1.src.rpm psmisc-23.0-150000.6.22.1.x86_64.rpm psmisc-lang-23.0-150000.6.22.1.noarch.rpm psmisc-23.0-150000.6.22.1.s390x.rpm psmisc-23.0-150000.6.22.1.ppc64le.rpm psmisc-23.0-150000.6.22.1.aarch64.rpm openSUSE-SLE-15.4-2022-1451 moderate SUSE Updates openSUSE-SLE 15.4 This update for perl fixes the following issues: - Fix Socket::VERSION evaluation and stabilize Socket:VERSION comparisons (bsc#1193489) perl-32bit-5.26.1-150300.17.3.1.x86_64.rpm perl-5.26.1-150300.17.3.1.src.rpm perl-5.26.1-150300.17.3.1.x86_64.rpm perl-base-32bit-5.26.1-150300.17.3.1.x86_64.rpm perl-base-5.26.1-150300.17.3.1.x86_64.rpm perl-core-DB_File-32bit-5.26.1-150300.17.3.1.x86_64.rpm perl-core-DB_File-5.26.1-150300.17.3.1.x86_64.rpm perl-doc-5.26.1-150300.17.3.1.noarch.rpm perl-5.26.1-150300.17.3.1.s390x.rpm perl-base-5.26.1-150300.17.3.1.s390x.rpm perl-core-DB_File-5.26.1-150300.17.3.1.s390x.rpm perl-5.26.1-150300.17.3.1.ppc64le.rpm perl-base-5.26.1-150300.17.3.1.ppc64le.rpm perl-core-DB_File-5.26.1-150300.17.3.1.ppc64le.rpm perl-5.26.1-150300.17.3.1.aarch64.rpm perl-base-5.26.1-150300.17.3.1.aarch64.rpm perl-core-DB_File-5.26.1-150300.17.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1419 moderate SUSE Updates openSUSE-SLE 15.4 This update for grafana fixes the following issues: Update from version 7.5.12 to version 8.3.5 (jsc#SLE-23422) - Security: * CVE-2022-21702: XSS vulnerability in handling data sources (bsc#1195726) * CVE-2022-21703: cross-origin request forgery vulnerability (bsc#1195727) * CVE-2022-21713: Insecure Direct Object Reference vulnerability in Teams API (bsc#1195728) * CVE-2022-21673: GetUserInfo: return an error if no user was found (bsc#1194873) * CVE-2021-43813, CVE-2021-43815, CVE-2021-41244, CVE-2021-41174, CVE-2021-43798, CVE-2021-39226. * Upgrade Docker base image to Alpine 3.14.3. * CVE-2021-3711: Docker: Force use of libcrypto1.1 and libssl1.1 versions * Update dependencies to fix CVE-2021-36222. * Upgrade Go to 1.17.2. * Fix stylesheet injection vulnerability. * Fix short URL vulnerability. - License update: * AGPL License: Update license from Apache 2.0 to the GNU Affero General Public License (AGPL). - Breaking changes: * Grafana 8 Alerting enabled by default for installations that do not use legacy alerting. * Keep Last State for "If execution error or timeout" when upgrading to Grafana 8 alerting. * Fix No Data behaviour in Legacy Alerting. * The following endpoints were deprecated for Grafana v5.0 and support for them has now been removed: * `GET /dashboards/db/:slug` * `GET /dashboard-solo/db/:slug` * `GET /api/dashboard/db/:slug` * `DELETE /api/dashboards/db/:slug` * The default HTTP method for Prometheus data source is now POST. * Removes the never refresh option for Query variables. * Removes the experimental Tags feature for Variables. - Deprecations: * The InfoBox & FeatureInfoBox are now deprecated please use the Alert component instead with severity info. - Bug fixes: * Azure Monitor: Bug fix for variable interpolations in metrics dropdowns. * Azure Monitor: Improved error messages for variable queries. * CloudMonitoring: Fixes broken variable queries that use group bys. * Configuration: You can now see your expired API keys if you have no active ones. * Elasticsearch: Fix handling multiple datalinks for a single field. * Export: Fix error when exporting dashboards using query variables that reference the default datasource. * ImportDashboard: Fixes issue with importing dashboard and name ending up in uid. * Login: Page no longer overflows on mobile. * Plugins: Set backend metadata property for core plugins. * Prometheus: Fill missing steps with null values. * Prometheus: Fix interpolation of `$__rate_interval` variable. * Prometheus: Interpolate variables with curly brackets syntax. * Prometheus: Respect the http-method data source setting. * Table: Fixes issue with field config applied to wrong fields when hiding columns. * Toolkit: Fix bug with rootUrls not being properly parsed when signing a private plugin. * Variables: Fix so data source variables are added to adhoc configuration. * AnnoListPanel: Fix interpolation of variables in tags. * CloudWatch: Allow queries to have no dimensions specified. * CloudWatch: Fix broken queries for users migrating from 8.2.4/8.2.5 to 8.3.0. * CloudWatch: Make sure MatchExact flag gets the right value. * Dashboards: Fix so that empty folders can be deleted from the manage dashboards/folders page. * InfluxDB: Improve handling of metadata query errors in InfluxQL. * Loki: Fix adding of ad hoc filters for queries with parser and line_format expressions. * Prometheus: Fix running of exemplar queries for non-histogram metrics. * Prometheus: Interpolate template variables in interval. * StateTimeline: Fix toolitp not showing when for frames with multiple fields. * TraceView: Fix virtualized scrolling when trace view is opened in right pane in Explore. * Variables: Fix repeating panels for on time range changed variables. * Variables: Fix so queryparam option works for scoped variables. * Alerting: Clear alerting rule evaluation errors after intermittent failures. * Alerting: Fix refresh on legacy Alert List panel. * Dashboard: Fix queries for panels with non-integer widths. * Explore: Fix url update inconsistency. * Prometheus: Fix range variables interpolation for time ranges smaller than 1 second. * ValueMappings: Fixes issue with regex value mapping that only sets color. * AccessControl: Renamed orgs roles, removed fixed:orgs:reader introduced in beta1. * Azure Monitor: Add trap focus for modals in grafana/ui and other small a11y fixes for Azure Monitor. * CodeEditor: Prevent suggestions from being clipped. * Dashboard: Fix cache timeout persistence. * Datasource: Fix stable sort order of query responses. * Explore: Fix error in query history when removing last item. * Logs: Fix requesting of older logs when flipped order. * Prometheus: Fix running of health check query based on access mode. * TextPanel: Fix suggestions for existing panels. * Tracing: Fix incorrect indentations due to reoccurring spanIDs. * Tracing: Show start time of trace with milliseconds precision. * Variables: Make renamed or missing variable section expandable. * API: Fix dashboard quota limit for imports. * Alerting: Fix rule editor issues with Azure Monitor data source. * Azure monitor: Make sure alert rule editor is not enabled when template variables are being used. * CloudMonitoring: Fix annotation queries. * CodeEditor: Trigger the latest getSuggestions() passed to CodeEditor. * Dashboard: Remove the current panel from the list of options in the Dashboard datasource. * Encryption: Fix decrypting secrets in alerting migration. * InfluxDB: Fix corner case where index is too large in ALIAS field. * NavBar: Order App plugins alphabetically. * NodeGraph: Fix zooming sensitivity on touchpads. * Plugins: Add OAuth pass-through logic to api/ds/query endpoint. * Snapshots: Fix panel inspector for snapshot data. * Tempo: Fix basic auth password reset on adding tag. * ValueMapping: Fixes issue with regex mappings. * TimeSeries: Fix fillBelowTo wrongly affecting fills of unrelated series. * Alerting: Fix a bug where the metric in the evaluation string was not correctly populated. * Alerting: Fix no data behaviour in Legacy Alerting for alert rules using the AND operator. * CloudMonitoring: Ignore min and max aggregation in MQL queries. * Dashboards: 'Copy' is no longer added to new dashboard titles. * DataProxy: Fix overriding response body when response is a WebSocket upgrade. * Elasticsearch: Use field configured in query editor as field for date_histogram aggregations. * Explore: Fix running queries without a datasource property set. * InfluxDB: Fix numeric aliases in queries. * Plugins: Ensure consistent plugin settings list response. * Tempo: Fix validation of float durations. * Tracing: Correct tags for each span are shown. * Alerting: Fix panic when Slack's API sends unexpected response. * Alerting: The Create Alert button now appears on the dashboard panel when you are working with a default datasource. * Explore: We fixed the problem where the Explore log panel disappears when an Elasticsearch logs query returns no results. * Graph: You can now see annotation descriptions on hover. * Logs: The system now uses the JSON parser only if the line is parsed to an object. * Prometheus: the system did not reuse TCP connections when querying from Grafana alerting. * Prometheus: error when a user created a query with a `$__interval` min step. * RowsToFields: the system was not properly interpreting number values. * Scale: We fixed how the system handles NaN percent when data min = data max. * Table panel: You can now create a filter that includes special characters. * Dashboard: Fix rendering of repeating panels. * Datasources: Fix deletion of data source if plugin is not found. * Packaging: Remove systemcallfilters sections from systemd unit files. * Prometheus: Add Headers to HTTP client options. * CodeEditor: Ensure that we trigger the latest onSave callback provided to the component. * DashboardList/AlertList: Fix for missing All folder value. * Alerting: Fixed an issue where the edit page crashes if you tried to preview an alert without a condition set. * Alerting: Fixed rules migration to keep existing Grafana 8 alert rules. * Alerting: Fixed the silence file content generated during migration. * Analytics: Fixed an issue related to interaction event propagation in Azure Application Insights. * BarGauge: Fixed an issue where the cell color was lit even though there was no data. * BarGauge: Improved handling of streaming data. * CloudMonitoring: Fixed INT64 label unmarshal error. * ConfirmModal: Fixes confirm button focus on modal open. * Dashboard: Add option to generate short URL for variables with values containing spaces. * Explore: No longer hides errors containing refId property. * Fixed an issue that produced State timeline panel tooltip error when data was not in sync. * InfluxDB: InfluxQL query editor is set to always use resultFormat. * Loki: Fixed creating context query for logs with parsed labels. * PageToolbar: Fixed alignment of titles. * Plugins Catalog: Update to the list of available panels after an install, update or uninstall. * TimeSeries: Fixed an issue where the shared cursor was not showing when hovering over in old Graph panel. * Variables: Fixed issues related to change of focus or refresh pages when pressing enter in a text box variable input. * Variables: Panel no longer crash when using the adhoc variable in data links. * Admin: Prevent user from deleting user's current/active organization. * LibraryPanels: Fix library panel getting saved in the dashboard's folder. * OAuth: Make generic teams URL and JMES path configurable. * QueryEditor: Fix broken copy-paste for mouse middle-click * Thresholds: Fix undefined color in "Add threshold". * Timeseries: Add wide-to-long, and fix multi-frame output. * TooltipPlugin: Fix behavior of Shared Crosshair when Tooltip is set to All. * Alerting: Fix alerts with evaluation interval more than 30 seconds resolving before notification. * Elasticsearch/Prometheus: Fix usage of proper SigV4 service namespace. * BarChart: Fixes panel error that happens on second refresh. * Alerting: Fix notification channel migration. * Annotations: Fix blank panels for queries with unknown data sources. * BarChart: Fix stale values and x axis labels. * Graph: Make old graph panel thresholds work even if ngalert is enabled. * InfluxDB: Fix regex to identify / as separator. * LibraryPanels: Fix update issues related to library panels in rows. * Variables: Fix variables not updating inside a Panel when the preceding Row uses "Repeat For". * Alerting: Fix alert flapping in the internal alertmanager. * Alerting: Fix request handler failed to convert dataframe "results" to plugins.DataTimeSeriesSlice: input frame is not recognized as a time series. * Dashboard: Fix UIDs are not preserved when importing/creating dashboards thru importing .json file. * Dashboard: Forces panel re-render when exiting panel edit. * Dashboard: Prevent folder from changing when navigating to general settings. * Elasticsearch: Fix metric names for alert queries. * Elasticsearch: Limit Histogram field parameter to numeric values. * Elasticsearch: Prevent pipeline aggregations to show up in terms order by options. * LibraryPanels: Prevent duplicate repeated panels from being created. * Loki: Fix ad-hoc filter in dashboard when used with parser. * Plugins: Track signed files + add warn log for plugin assets which are not signed. * Postgres/MySQL/MSSQL: Fix region annotations not displayed correctly. * Prometheus: Fix validate selector in metrics browser. * Alerting: Fix saving LINE contact point. * Annotations: Fix alerting annotation coloring. * Annotations: Alert annotations are now visible in the correct Panel. * Auth: Hide SigV4 config UI and disable middleware when its config flag is disabled. * Dashboard: Prevent incorrect panel layout by comparing window width against theme breakpoints. * Elasticsearch: Fix metric names for alert queries. * Explore: Fix showing of full log context. * PanelEdit: Fix 'Actual' size by passing the correct panel size to Dashboard. * Plugins: Fix TLS datasource settings. * Variables: Fix issue with empty drop downs on navigation. * Variables: Fix URL util converting false into true. * CloudWatch Logs: Fix crash when no region is selected. * Annotations: Correct annotations that are displayed upon page refresh. * Annotations: Fix Enabled button that disappeared from Grafana v8.0.6. * Annotations: Fix data source template variable that was not available for annotations. * AzureMonitor: Fix annotations query editor that does not load. * Geomap: Fix scale calculations. * GraphNG: Fix y-axis autosizing. * Live: Display stream rate and fix duplicate channels in list response. * Loki: Update labels in log browser when time range changes in dashboard. * NGAlert: Send resolve signal to alertmanager on alerting -> Normal. * PasswordField: Prevent a password from being displayed when you click the Enter button. * Renderer: Remove debug.log file when Grafana is stopped. * Docker: Fix builds by delaying go mod verify until all required files are copied over. * Exemplars: Fix disable exemplars only on the query that failed. * SQL: Fix SQL dataframe resampling (fill mode + time intervals). * Alerting: Handle marshaling Inf values. * AzureMonitor: Fix macro resolution for template variables. * AzureMonitor: Fix queries with Microsoft.NetApp/../../volumes resources. * AzureMonitor: Request and concat subsequent resource pages. * Bug: Fix parse duration for day. * Datasources: Improve error handling for error messages. * Explore: Correct the functionality of shift-enter shortcut across all uses. * Explore: Show all dataFrames in data tab in Inspector. * GraphNG: Fix Tooltip mode 'All' for XYChart. * Loki: Fix highlight of logs when using filter expressions with backticks. * Modal: Force modal content to overflow with scroll. * Plugins: Ignore symlinked folders when verifying plugin signature. * Alerting: Fix improper alert by changing the handling of empty labels. * CloudWatch/Logs: Reestablish Cloud Watch alert behavior. * Dashboard: Avoid migration breaking on fieldConfig without defaults field in folded panel. * DashboardList: Fix issue not re-fetching dashboard list after variable change. * Database: Fix incorrect format of isolation level configuration parameter for MySQL. * InfluxDB: Correct tag filtering on InfluxDB data. * Links: Fix links that caused a full page reload. * Live: Fix HTTP error when InfluxDB metrics have an incomplete or asymmetrical field set. * Postgres/MySQL/MSSQL: Change time field to "Time" for time series queries. * Postgres: Fix the handling of a null return value in query results. * Tempo: Show hex strings instead of uints for IDs. * TimeSeries: Improve tooltip positioning when tooltip overflows. * Transformations: Add 'prepare time series' transformer. * AzureMonitor: Fix issue where resource group name is missing on the resource picker button. * Chore: Fix AWS auth assuming role with workspace IAM. * DashboardQueryRunner: Fixes unrestrained subscriptions being created. * DateFormats: Fix reading correct setting key for use_browser_locale. * Links: Fix links to other apps outside Grafana when under sub path. * Snapshots: Fix snapshot absolute time range issue. * Table: Fix data link color. * Time Series: Fix X-axis time format when tick increment is larger than a year. * Tooltip Plugin: Prevent tooltip render if field is undefined. * Elasticsearch: Allow case sensitive custom options in date_histogram interval. * Elasticsearch: Restore previous field naming strategy when using variables. * Explore: Fix import of queries between SQL data sources. * InfluxDB: InfluxQL query editor: fix retention policy handling. * Loki: Send correct time range in template variable queries. * TimeSeries: Preserve RegExp series overrides when migrating from old graph panel. * Annotations: Fix annotation line and marker colors. * AzureMonitor: Fix KQL template variable queries without default workspace. * CloudWatch/Logs: Fix missing response data for log queries. * Elasticsearch: Restore previous field naming strategy when using variables. * LibraryPanels: Fix crash in library panels list when panel plugin is not found. * LogsPanel: Fix performance drop when moving logs panel in dashboard. * Loki: Parse log levels when ANSI coloring is enabled. * MSSQL: Fix issue with hidden queries still being executed. * PanelEdit: Display the VisualizationPicker that was not displayed if a panel has an unknown panel plugin. * Plugins: Fix loading symbolically linked plugins. * Prometheus: Fix issue where legend name was replaced with name Value in stat and gauge panels. * State Timeline: Fix crash when hovering over panel. * Configuration: Fix changing org preferences in FireFox. * PieChart: Fix legend dimension limits. * Postgres/MySQL/MSSQL: Fix panic in concurrent map writes. * Variables: Hide default data source if missing from regex. * Alerting/SSE: Fix "count_non_null" reducer validation. * Cloudwatch: Fix duplicated time series. * Cloudwatch: Fix missing defaultRegion. * Dashboard: Fix Dashboard init failed error on dashboards with old singlestat panels in collapsed rows. * Datasource: Fix storing timeout option as numeric. * Postgres/MySQL/MSSQL: Fix annotation parsing for empty responses. * Postgres/MySQL/MSSQL: Numeric/non-string values are now returned from query variables. * Postgres: Fix an error that was thrown when the annotation query did not return any results. * StatPanel: Fix an issue with the appearance of the graph when switching color mode. * Visualizations: Fix an issue in the Stat/BarGauge/Gauge/PieChart panels where all values mode were showing the same name if they had the same value. * AzureMonitor: Fix Azure Resource Graph queries in Azure China. * Checkbox: Fix vertical layout issue with checkboxes due to fixed height. * Dashboard: Fix Table view when editing causes the panel data to not update. * Dashboard: Fix issues where unsaved-changes warning is not displayed. * Login: Fixes Unauthorized message showing when on login page or snapshot page. * NodeGraph: Fix sorting markers in grid view. * Short URL: Include orgId in generated short URLs. * Variables: Support raw values of boolean type. * Admin: Fix infinite loading edit on the profile page. * Color: Fix issues with random colors in string and date fields. * Dashboard: Fix issue with title or folder change has no effect after exiting settings view. * DataLinks: Fix an issue __series.name is not working in data link. * Datasource: Fix dataproxy timeout should always be applied for outgoing data source HTTP requests. * Elasticsearch: Fix NewClient not passing httpClientProvider to client impl. * Explore: Fix Browser title not updated on Navigation to Explore. * GraphNG: Remove fieldName and hideInLegend properties from UPlotSeriesBuilder. * OAuth: Fix fallback to auto_assign_org_role setting for Azure AD OAuth when no role claims exists. * PanelChrome: Fix issue with empty panel after adding a non data panel and coming back from panel edit. * StatPanel: Fix data link tooltip not showing for single value. * Table: Fix sorting for number fields. * Table: Have text underline for datalink, and add support for image datalink. * Time series panel: Position tooltip correctly when window is scrolled or resized. * Transformations: Prevent FilterByValue transform from crashing panel edit. * Annotations panel: Remove subpath from dashboard links. * Content Security Policy: Allow all image sources by default. * Content Security Policy: Relax default template wrt. loading of scripts, due to nonces not working. * Datasource: Fix tracing propagation for alert execution by introducing HTTP client outgoing tracing middleware. * InfluxDB: InfluxQL always apply time interval end. * Library Panels: Fixes "error while loading library panels". * NewsPanel: Fixes rendering issue in Safari. * PanelChrome: Fix queries being issued again when scrolling in and out of view. * Plugins: Fix Azure token provider cache panic and auth param nil value. * Snapshots: Fix key and deleteKey being ignored when creating an external snapshot. * Table: Fix issue with cell border not showing with colored background cells. * Table: Makes tooltip scrollable for long JSON values. * TimeSeries: Fix for Connected null values threshold toggle during panel editing. * Variables: Fixes inconsistent selected states on dashboard load. * Variables: Refreshes all panels even if panel is full screen. * APIKeys: Fixes issue with adding first api key. * Alerting: Add checks for non supported units - disable defaulting to seconds. * Alerting: Fix issue where Slack notifications won't link to user IDs. * Alerting: Omit empty message in PagerDuty notifier. * AzureMonitor: Fix migration error from older versions of App Insights queries. * CloudWatch: Fix AWS/Connect dimensions. * CloudWatch: Fix broken AWS/MediaTailor dimension name. * Dashboards: Allow string manipulation as advanced variable format option. * DataLinks: Includes harmless extended characters like Cyrillic characters. * Drawer: Fixes title overflowing its container. * Explore: Fix issue when some query errors were not shown. * Generic OAuth: Prevent adding duplicated users. * Graphite: Handle invalid annotations. * Graphite: Fix autocomplete when tags are not available. * InfluxDB: Fix Cannot read property 'length' of undefined in when parsing response. * Instrumentation: Enable tracing when Jaeger host and port are set. * Instrumentation: Prefix metrics with grafana. * MSSQL: By default let driver choose port. * OAuth: Add optional strict parsing of role_attribute_path. * Panel: Fixes description markdown with inline code being rendered on newlines and full width. * PanelChrome: Ignore data updates & errors for non data panels. * Permissions: Fix inherited folder permissions can prevent new permissions being added to a dashboard. * Plugins: Remove pre-existing plugin installs when installing with grafana-cli. * Plugins: Support installing to folders with whitespace and fix pluginUrl trailing and leading whitespace failures. * Postgres/MySQL/MSSQL: Don't return connection failure details to the client. * Postgres: Fix ms precision of interval in time group macro when TimescaleDB is enabled. * Provisioning: Use dashboard checksum field as change indicator. * SQL: Fix so that all captured errors are returned from sql engine. * Shortcuts: Fixes panel shortcuts so they always work. * Table: Fixes so border is visible for cells with links. * Variables: Clear query when data source type changes. * Variables: Filters out builtin variables from unknown list. * Variables: Refreshes all panels even if panel is full screen. * Alerting: Fix NoDataFound for alert rules using AND operator. - Features and enhancements: * Alerting: Allow configuration of non-ready alertmanagers. * Alerting: Allow customization of Google chat message. * AppPlugins: Support app plugins with only default nav. * InfluxDB: query editor: skip fields in metadata queries. * Postgres/MySQL/MSSQL: Cancel in-flight SQL query if user cancels query in grafana. * Prometheus: Forward oauth tokens after prometheus datasource migration. * BarChart: Use new data error view component to show actions in panel edit. * CloudMonitor: Iterate over pageToken for resources. * Macaron: Prevent WriteHeader invalid HTTP status code panic * Alerting: Prevent folders from being deleted when they contain alerts. * Alerting: Show full preview value in tooltip. * BarGauge: Limit title width when name is really long. * CloudMonitoring: Avoid to escape regexps in filters. * CloudWatch: Add support for AWS Metric Insights. * TooltipPlugin: Remove other panels' shared tooltip in edit panel. * Visualizations: Limit y label width to 40% of visualization width. * Alerting: Create DatasourceError alert if evaluation returns error. * Alerting: Make Unified Alerting enabled by default for those who do not use legacy alerting. * Alerting: Support mute timings configuration through the api for the embedded alert manager. * CloudWatch: Add missing AWS/Events metrics. * Docs: Add easier to find deprecation notices to certain data sources and to the changelog. * Plugins Catalog: Enable install controls based on the pluginAdminEnabled flag. * Table: Add space between values for the DefaultCell and JSONViewCell. * Tracing: Make query editors available in dashboard for Tempo and Zipkin. * Alerting: Add UI for contact point testing with custom annotations and labels. * Alerting: Make alert state indicator in panel header work with Grafana 8 alerts. * Alerting: Option for Discord notifier to use webhook name. * Annotations: Deprecate AnnotationsSrv. * Auth: Omit all base64 paddings in JWT tokens for the JWT auth. * Azure Monitor: Clean up fields when editing Metrics. * AzureMonitor: Add new starter dashboards. * AzureMonitor: Add starter dashboard for app monitoring with Application Insights. * Barchart/Time series: Allow x axis label. * CLI: Improve error handling for installing plugins. * CloudMonitoring: Migrate to use backend plugin SDK contracts. * CloudWatch Logs: Add retry strategy for hitting max concurrent queries. * CloudWatch: Add AWS RoboMaker metrics and dimension. * CloudWatch: Add AWS Transfer metrics and dimension. * Dashboard: replace datasource name with a reference object. * Dashboards: Show logs on time series when hovering. * Elasticsearch: Add support for Elasticsearch 8.0 (Beta). * Elasticsearch: Add time zone setting to Date Histogram aggregation. * Elasticsearch: Enable full range log volume histogram. * Elasticsearch: Full range logs volume. * Explore: Allow changing the graph type. * Explore: Show ANSI colors when highlighting matched words in the logs panel. * Graph(old) panel: Listen to events from Time series panel. * Import: Load gcom dashboards from URL. * LibraryPanels: Improves export and import of library panels between orgs. * OAuth: Support PKCE. * Panel edit: Overrides now highlight correctly when searching. * PanelEdit: Display drag indicators on draggable sections. * Plugins: Refactor Plugin Management. * Prometheus: Add custom query parameters when creating PromLink url. * Prometheus: Remove limits on metrics, labels, and values in Metrics Browser. * StateTimeline: Share cursor with rest of the panels. * Tempo: Add error details when json upload fails. * Tempo: Add filtering for service graph query. * Tempo: Add links to nodes in Service Graph pointing to Prometheus metrics. * Time series/Bar chart panel: Add ability to sort series via legend. * TimeSeries: Allow multiple axes for the same unit. * TraceView: Allow span links defined on dataFrame. * Transformations: Support a rows mode in labels to fields. * ValueMappings: Don't apply field config defaults to time fields. * Variables: Only update panels that are impacted by variable change. * Annotations: We have improved tag search performance. * Application: You can now configure an error-template title. * AzureMonitor: We removed a restriction from the resource filter query. * Packaging: We removed the ProcSubset option in systemd. This option prevented Grafana from starting in LXC environments. * Prometheus: We removed the autocomplete limit for metrics. * Table: We improved the styling of the type icons to make them more distinct from column / field name. * ValueMappings: You can now use value mapping in stat, gauge, bar gauge, and pie chart visualizations. * AWS: Updated AWS authentication documentation. * Alerting: Added support Alertmanager data source for upstream Prometheus AM implementation. * Alerting: Allows more characters in label names so notifications are sent. * Alerting: Get alert rules for a dashboard or a panel using `/api/v1/rules` endpoints. * Annotations: Improved rendering performance of event markers. * CloudWatch Logs: Skip caching for log queries. * Explore: Added an opt-in configuration for Node Graph in Jaeger, Zipkin, and Tempo. * Packaging: Add stricter systemd unit options. * Prometheus: Metrics browser can now handle label values with special characters. * AccessControl: Document new permissions restricting data source access. * TimePicker: Add fiscal years and search to time picker. * Alerting: Added support for Unified Alerting with Grafana HA. * Alerting: Added support for tune rule evaluation using configuration options. * Alerting: Cleanups alertmanager namespace from key-value store when disabling Grafana 8 alerts. * Alerting: Remove ngalert feature toggle and introduce two new settings for enabling Grafana 8 alerts and disabling them for specific organisations. * CloudWatch: Introduced new math expression where it is necessary to specify the period field. * InfluxDB: Added support for `$__interval` and `$__interval_ms` inFlux queries for alerting. * InfluxDB: Flux queries can use more precise start and end timestamps with nanosecond-precision. * Plugins Catalog: Make the catalog the default way to interact with plugins. * Prometheus: Removed autocomplete limit for metrics. * AccessControl: Introduce new permissions to restrict access for reloading provisioning configuration. * Alerting: Add UI to edit Cortex/Loki namespace, group names, and group evaluation interval. * Alerting: Add a Test button to test contact point. * Alerting: Allow creating/editing recording rules for Loki and Cortex. * Alerting: Metrics should have the label org instead of user. * Alerting: Sort notification channels by name to make them easier to locate. * Alerting: Support org level isolation of notification configuration. * AzureMonitor: Add data links to deep link to Azure Portal Azure Resource Graph. * AzureMonitor: Add support for annotations from Azure Monitor Metrics and Azure Resource Graph services. * AzureMonitor: Show error message when subscriptions request fails in ConfigEditor. * CloudWatch Logs: Add link to X-Ray data source for trace IDs in logs. * CloudWatch Logs: Disable query path using websockets (Live) feature. * CloudWatch/Logs: Don't group dataframes for non time series queries. * Cloudwatch: Migrate queries that use multiple stats to one query per stat. * Dashboard: Keep live timeseries moving left (v2). * Datasources: Introduce response_limit for datasource responses. * Explore: Add filter by trace or span ID to trace to logs feature. * Explore: Download traces as JSON in Explore Inspector. * Explore: Reuse Dashboard's QueryRows component. * Explore: Support custom display label for derived fields buttons for Loki datasource. * Grafana UI: Update monaco-related dependencies. * Graphite: Deprecate browser access mode. * InfluxDB: Improve handling of intervals in alerting. * InfluxDB: InfluxQL query editor: Handle unusual characters in tag values better. * Jaeger: Add ability to upload JSON file for trace data. * LibraryElements: Enable specifying UID for new and existing library elements. * LibraryPanels: Remove library panel icon from the panel header so you can no longer tell that a panel is a library panel from the dashboard view. * Logs panel: Scroll to the bottom on page refresh when sorting in ascending order. * Loki: Add fuzzy search to label browser. * Navigation: Implement active state for items in the Sidemenu. * Packaging: Add stricter systemd unit options. * Packaging: Update PID file location from /var/run to /run. * Plugins: Add Hide OAuth Forward config option. * Postgres/MySQL/MSSQL: Add setting to limit the maximum number of rows processed. * Prometheus: Add browser access mode deprecation warning. * Prometheus: Add interpolation for built-in-time variables to backend. * Tempo: Add ability to upload trace data in JSON format. * TimeSeries/XYChart: Allow grid lines visibility control in XYChart and TimeSeries panels. * Transformations: Convert field types to time string number or boolean. * Value mappings: Add regular-expression based value mapping. * Zipkin: Add ability to upload trace JSON. * Explore: Ensure logs volume bar colors match legend colors. * LDAP: Search all DNs for users. * AzureMonitor: Add support for PostgreSQL and MySQL Flexible Servers. * Datasource: Change HTTP status code for failed datasource health check to 400. * Explore: Add span duration to left panel in trace viewer. * Plugins: Use file extension allowlist when serving plugin assets instead of checking for UNIX executable. * Profiling: Add support for binding pprof server to custom network interfaces. * Search: Make search icon keyboard navigable. * Template variables: Keyboard navigation improvements. * Tooltip: Display ms within minute time range. * Alerting: Deduplicate receivers during migration. * ColorPicker: Display colors as RGBA. * Select: Make portalling the menu opt-in, but opt-in everywhere. * TimeRangePicker: Improve accessibility. * Alerting: Support label matcher syntax in alert rule list filter. * IconButton: Put tooltip text as aria-label. * Live: Experimental HA with Redis. * UI: FileDropzone component. * CloudWatch: Add AWS LookoutMetrics. * Alerting: Expand the value string in alert annotations and labels. * Auth: Add Azure HTTP authentication middleware. * Auth: Auth: Pass user role when using the authentication proxy. * Gazetteer: Update countries.json file to allow for linking to 3-letter country codes. * Alerting: Add Alertmanager notifications tab. * Alerting: Add button to deactivate current Alertmanager configuration. * Alerting: Add toggle in Loki/Prometheus data source configuration to opt out of alerting UI. * Alerting: Allow any "evaluate for" value >=0 in the alert rule form. * Alerting: Load default configuration from status endpoint, if Cortex Alertmanager returns empty user configuration. * Alerting: view to display alert rule and its underlying data. * Annotation panel: Release the annotation panel. * Annotations: Add typeahead support for tags in built-in annotations. * AzureMonitor: Add curated dashboards for Azure services. * AzureMonitor: Add support for deep links to Microsoft Azure portal for Metrics. * AzureMonitor: Remove support for different credentials for Azure Monitor Logs. * AzureMonitor: Support querying any Resource for Logs queries. * Elasticsearch: Add frozen indices search support. * Elasticsearch: Name fields after template variables values instead of their name. * Elasticsearch: add rate aggregation. * Email: Allow configuration of content types for email notifications. * Explore: Add more meta information when line limit is hit. * Explore: UI improvements to trace view. * FieldOverrides: Added support to change display name in an override field and have it be matched by a later rule. * HTTP Client: Introduce dataproxy_max_idle_connections config variable. * InfluxDB: InfluxQL: adds tags to timeseries data. * InfluxDB: InfluxQL: make measurement search case insensitive. Legacy Alerting: Replace simplejson with a struct in webhook notification channel. * Legend: Updates display name for Last (not null) to just Last*. * Logs panel: Add option to show common labels. * Loki: Add $__range variable. * Loki: Add support for "label_values(log stream selector, label)" in templating. * Loki: Add support for ad-hoc filtering in dashboard. * MySQL Datasource: Add timezone parameter. * NodeGraph: Show gradient fields in legend. * PanelOptions: Don't mutate panel options/field config object when updating. * PieChart: Make pie gradient more subtle to match other charts. * Prometheus: Update PromQL typeahead and highlighting. * Prometheus: interpolate variable for step field. * Provisioning: Improve validation by validating across all dashboard providers. * SQL Datasources: Allow multiple string/labels columns with time series. * Select: Portal select menu to document.body. * Team Sync: Add group mapping to support team sync in the Generic OAuth provider. * Tooltip: Make active series more noticeable. * Tracing: Add support to configure trace to logs start and end time. * Transformations: Skip merge when there is only a single data frame. * ValueMapping: Added support for mapping text to color, boolean values, NaN and Null. Improved UI for value mapping. * Visualizations: Dynamically set any config (min, max, unit, color, thresholds) from query results. * live: Add support to handle origin without a value for the port when matching with root_url. * Alerting: Add annotation upon alert state change. * Alerting: Allow space in label and annotation names. * InfluxDB: Improve legend labels for InfluxDB query results. * Cloudwatch Logs: Send error down to client. * Folders: Return 409 Conflict status when folder already exists. * TimeSeries: Do not show series in tooltip if it's hidden in the viz. * Live: Rely on app url for origin check. * PieChart: Sort legend descending, update placeholder. * TimeSeries panel: Do not reinitialize plot when thresholds mode change. * Alerting: Increase alertmanager_conf column if MySQL. * Time series/Bar chart panel: Handle infinite numbers as nulls when converting to plot array. * TimeSeries: Ensure series overrides that contain color are migrated, and migrate the previous fieldConfig when changing the panel type. * ValueMappings: Improve singlestat value mappings migration. * Datasource: Add support for max_conns_per_host in dataproxy settings. * AzureMonitor: Require default subscription for workspaces() template variable query. * AzureMonitor: Use resource type display names in the UI. * Dashboard: Remove support for loading and deleting dashboard by slug. * InfluxDB: Deprecate direct browser access in data source. * VizLegend: Add a read-only property. * API: Support folder UID in dashboards API. * Alerting: Add support for configuring avatar URL for the Discord notifier. * Alerting: Clarify that Threema Gateway Alerts support only Basic IDs. * Azure: Expose Azure settings to external plugins. * AzureMonitor: Deprecate using separate credentials for Azure Monitor Logs. * AzureMonitor: Display variables in resource picker for Azure Monitor Logs. * AzureMonitor: Hide application insights for data sources not using it. * AzureMonitor: Support querying subscriptions and resource groups in Azure Monitor Logs. * AzureMonitor: remove requirement for default subscription. * CloudWatch: Add Lambda@Edge Amazon CloudFront metrics. * CloudWatch: Add missing AWS AppSync metrics. * ConfirmModal: Auto focus delete button. * Explore: Add caching for queries that are run from logs navigation. * Loki: Add formatting for annotations. * Loki: Bring back processed bytes as meta information. * NodeGraph: Display node graph collapsed by default with trace view. * Overrides: Include a manual override option to hide something from visualization. * PieChart: Support row data in pie charts. * Prometheus: Update default HTTP method to POST for existing data sources. * Time series panel: Position tooltip correctly when window is scrolled or resized. * AppPlugins: Expose react-router to apps. * AzureMonitor: Add Azure Resource Graph. * AzureMonitor: Managed Identity configuration UI. * AzureMonitor: Token provider with support for Managed Identities. * AzureMonitor: Update Logs workspace() template variable query to return resource URIs. * BarChart: Value label sizing. * CloudMonitoring: Add support for preprocessing. * CloudWatch: Add AWS/EFS StorageBytes metric. * CloudWatch: Allow use of missing AWS namespaces using custom metrics. * Datasource: Shared HTTP client provider for core backend data sources and any data source using the data source proxy. * InfluxDB: InfluxQL: allow empty tag values in the query editor. * Instrumentation: Instrument incoming HTTP request with histograms by default. * Library Panels: Add name endpoint & unique name validation to AddLibraryPanelModal. * Logs panel: Support details view. * PieChart: Always show the calculation options dropdown in the editor. * PieChart: Remove beta flag. * Plugins: Enforce signing for all plugins. * Plugins: Remove support for deprecated backend plugin protocol version. * Tempo/Jaeger: Add better display name to legend. * Timeline: Add time range zoom. * Timeline: Adds opacity & line width option. * Timeline: Value text alignment option. * ValueMappings: Add duplicate action, and disable dismiss on backdrop click. * Zipkin: Add node graph view to trace response. * API: Add org users with pagination. * API: Return 404 when deleting nonexistent API key. * API: Return query results as JSON rather than base64 encoded Arrow. * Alerting: Allow sending notification tags to Opsgenie as extra properties. * Alerts: Replaces all uses of InfoBox & FeatureInfoBox with Alert. * Auth: Add support for JWT Authentication. * AzureMonitor: Add support for Microsoft.SignalRService/SignalR metrics. * AzureMonitor: Azure settings in Grafana server config. * AzureMonitor: Migrate Metrics query editor to React. * BarChart panel: enable series toggling via legend. * BarChart panel: Adds support for Tooltip in BarChartPanel. * PieChart panel: Change look of highlighted pie slices. * CloudMonitoring: Migrate config editor from angular to react. * CloudWatch: Add Amplify Console metrics and dimensions. * CloudWatch: Add missing Redshift metrics to CloudWatch data source. * CloudWatch: Add metrics for managed RabbitMQ service. * DashboardList: Enable templating on search tag input. * Datasource config: correctly remove single custom http header. * Elasticsearch: Add generic support for template variables. * Elasticsearch: Allow omitting field when metric supports inline script. * Elasticsearch: Allow setting a custom limit for log queries. * Elasticsearch: Guess field type from first non-empty value. * Elasticsearch: Use application/x-ndjson content type for multisearch requests. * Elasticsearch: Use semver strings to identify ES version. * Explore: Add logs navigation to request more logs. * Explore: Map Graphite queries to Loki. * Explore: Scroll split panes in Explore independently. * Explore: Wrap each panel in separate error boundary. * FieldDisplay: Smarter naming of stat values when visualising row values (all values) in stat panels. * Graphite: Expand metric names for variables. * Graphite: Handle unknown Graphite functions without breaking the visual editor. * Graphite: Show graphite functions descriptions. * Graphite: Support request cancellation properly (Uses new backendSrv.fetch Observable request API). * InfluxDB: Flux: Improve handling of complex response-structures. * InfluxDB: Support region annotations. * Inspector: Download logs for manual processing. * Jaeger: Add node graph view for trace. * Jaeger: Search traces. * Loki: Use data source settings for alerting queries. * NodeGraph: Exploration mode. * OAuth: Add support for empty scopes. * PanelChrome: New logic-less emotion based component with no dependency on PanelModel or DashboardModel. * PanelEdit: Adds a table view toggle to quickly view data in table form. * PanelEdit: Highlight matched words when searching options. * PanelEdit: UX improvements. * Plugins: PanelRenderer and simplified QueryRunner to be used from plugins. * Plugins: AuthType in route configuration and params interpolation. * Plugins: Enable plugin runtime install/uninstall capabilities. * Plugins: Support set body content in plugin routes. * Plugins: Introduce marketplace app. * Plugins: Moving the DataSourcePicker to grafana/runtime so it can be reused in plugins. * Prometheus: Add custom query params for alert and exemplars queries. * Prometheus: Use fuzzy string matching to autocomplete metric names and label. * Routing: Replace Angular routing with react-router. * Slack: Use chat.postMessage API by default. * Tempo: Search for Traces by querying Loki directly from Tempo. * Tempo: Show graph view of the trace. * Themes: Switch theme without reload using global shortcut. * TimeSeries panel: Add support for shared cursor. * TimeSeries panel: Do not crash the panel if there is no time series data in the response. * Variables: Do not save repeated panels, rows and scopedVars. * Variables: Removes experimental Tags feature. * Variables: Removes the never refresh option. * Visualizations: Unify tooltip options across visualizations. * Visualizations: Refactor and unify option creation between new visualizations. * Visualizations: Remove singlestat panel. - Plugin development fixes & changes: * Toolkit: Revert build config so tslib is bundled with plugins to prevent plugins from crashing. * Select: Select menus now properly scroll during keyboard navigation. * grafana/ui: Enable slider marks display. * Plugins: Create a mock icon component to prevent console errors. * Grafana UI: Fix TS error property css is missing in type. * Toolkit: Fix matchMedia not found error. * Toolkit: Improve error messages when tasks fail. * Toolkit: Resolve external fonts when Grafana is served from a sub path. * QueryField: Remove carriage return character from pasted text. * Button: Introduce buttonStyle prop. * DataQueryRequest: Remove deprecated props showingGraph and showingTabel and exploreMode. * grafana/ui: Update React Hook Form to v7. * IconButton: Introduce variant for red and blue icon buttons. * Plugins: Expose the getTimeZone function to be able to get the current selected timeZone. * TagsInput: Add className to TagsInput. * VizLegend: Move onSeriesColorChanged to PanelContext (breaking change). - Other changes: * Update to Go 1.17. * Add build-time dependency on `wire`. grafana-8.3.5-150200.3.21.1.src.rpm grafana-8.3.5-150200.3.21.1.x86_64.rpm grafana-8.3.5-150200.3.21.1.s390x.rpm grafana-8.3.5-150200.3.21.1.ppc64le.rpm grafana-8.3.5-150200.3.21.1.aarch64.rpm openSUSE-SLE-15.4-2022-2047 moderate SUSE Updates openSUSE-SLE 15.4 This update for netty3 fixes the following issues: - CVE-2021-43797: Fixed a potential HTTP request smuggling issue due to insufficient validation against control characters (bsc#1193672). netty3-3.10.6-150200.3.3.2.noarch.rpm netty3-3.10.6-150200.3.3.2.src.rpm netty3-javadoc-3.10.6-150200.3.3.2.noarch.rpm openSUSE-SLE-15.4-2022-1851 moderate SUSE Updates openSUSE-SLE 15.4 This update for gcc8 fixes the following issues: - Fix build against SP4. (bsc#1197716) - Remove bogus fixed include bits/statx.h from glibc 2.30 (bsc#1197716) cpp8-8.2.1+r264010-150000.1.6.4.x86_64.rpm cross-nvptx-gcc8-8.2.1+r264010-150000.1.6.1.src.rpm cross-nvptx-gcc8-8.2.1+r264010-150000.1.6.1.x86_64.rpm cross-nvptx-newlib8-devel-8.2.1+r264010-150000.1.6.1.x86_64.rpm gcc8-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-8.2.1+r264010-150000.1.6.4.src.rpm gcc8-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-ada-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-ada-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-c++-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-c++-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-fortran-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-fortran-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-go-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-go-8.2.1+r264010-150000.1.6.4.x86_64.rpm gcc8-info-8.2.1+r264010-150000.1.6.4.noarch.rpm gcc8-locale-8.2.1+r264010-150000.1.6.4.x86_64.rpm libada8-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libada8-8.2.1+r264010-150000.1.6.4.x86_64.rpm libgo13-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libgo13-8.2.1+r264010-150000.1.6.4.x86_64.rpm libmpx2-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libmpx2-8.2.1+r264010-150000.1.6.4.x86_64.rpm libmpxwrappers2-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libmpxwrappers2-8.2.1+r264010-150000.1.6.4.x86_64.rpm libstdc++6-devel-gcc8-32bit-8.2.1+r264010-150000.1.6.4.x86_64.rpm libstdc++6-devel-gcc8-8.2.1+r264010-150000.1.6.4.x86_64.rpm cpp8-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-ada-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-ada-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-c++-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-c++-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-fortran-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-fortran-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-go-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-go-8.2.1+r264010-150000.1.6.4.s390x.rpm gcc8-locale-8.2.1+r264010-150000.1.6.4.s390x.rpm libada8-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm libada8-8.2.1+r264010-150000.1.6.4.s390x.rpm libgo13-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm libgo13-8.2.1+r264010-150000.1.6.4.s390x.rpm libstdc++6-devel-gcc8-32bit-8.2.1+r264010-150000.1.6.4.s390x.rpm libstdc++6-devel-gcc8-8.2.1+r264010-150000.1.6.4.s390x.rpm cpp8-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-ada-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-c++-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-fortran-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-go-8.2.1+r264010-150000.1.6.4.ppc64le.rpm gcc8-locale-8.2.1+r264010-150000.1.6.4.ppc64le.rpm libada8-8.2.1+r264010-150000.1.6.4.ppc64le.rpm libgo13-8.2.1+r264010-150000.1.6.4.ppc64le.rpm libstdc++6-devel-gcc8-8.2.1+r264010-150000.1.6.4.ppc64le.rpm cpp8-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-ada-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-c++-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-fortran-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-go-8.2.1+r264010-150000.1.6.4.aarch64.rpm gcc8-locale-8.2.1+r264010-150000.1.6.4.aarch64.rpm libada8-8.2.1+r264010-150000.1.6.4.aarch64.rpm libgo13-8.2.1+r264010-150000.1.6.4.aarch64.rpm libstdc++6-devel-gcc8-8.2.1+r264010-150000.1.6.4.aarch64.rpm openSUSE-SLE-15.4-2022-1678 important SUSE Updates openSUSE-SLE 15.4 This update for jackson-databind, jackson-dataformats-binary, jackson-annotations, jackson-bom, jackson-core fixes the following issues: Security issues fixed: - CVE-2020-36518: Fixed a Java stack overflow exception and denial of service via a large depth of nested objects in jackson-databind. (bsc#1197132) - CVE-2020-25649: Fixed an insecure entity expansion in jackson-databind which was vulnerable to XML external entity (XXE). (bsc#1177616) - CVE-2020-28491: Fixed a bug which could cause `java.lang.OutOfMemoryError` exception in jackson-dataformats-binary. (bsc#1182481) Non security fixes: jackson-annotations - update from version 2.10.2 to version 2.13.0: + Build with source/target levels 8 + Add 'mvnw' wrapper + 'JsonSubType.Type' should accept array of names + Jackson version alignment with Gradle 6 + Add '@JsonIncludeProperties' + Add '@JsonTypeInfo(use=DEDUCTION)' + Ability to use '@JsonAnyGetter' on fields + Add '@JsonKey' annotation + Allow repeated calls to 'SimpleObjectIdResolver.bindItem()' for same mapping + Add 'namespace' property for '@JsonProperty' (for XML module) + Add target 'ElementType.ANNOTATION_TYPE' for '@JsonEnumDefaultValue' + 'JsonPattern.Value.pattern' retained as "", never (accidentally) exposed as 'null' + Rewrite to use `ant` for building in order to be able to use it in packages that have to be built before maven jackson-bom - update from version 2.10.2 to version 2.13.0: + Configure moditect plugin with '<jvmVersion>11</jvmVersion>' + jackson-bom manages the version of 'junit:junit' + Drop 'jackson-datatype-hibernate3' (support for Hibernate 3.x datatypes) + Removed "jakarta" classifier variants of JAXB/JSON-P/JAX-RS modules due to the addition of new Jakarta artifacts (Jakarta-JSONP, Jakarta-xmlbind-annotations, Jakarta-rs-providers) + Add version for 'jackson-datatype-jakarta-jsonp' module (introduced after 2.12.2) + Add (beta) version for 'jackson-dataformat-toml' + Jakarta 9 artifact versions are missing from jackson-bom + Add default settings for 'gradle-module-metadata-maven-plugin' (gradle metadata) + Add default settings for 'build-helper-maven-plugin' + Drop 'jackson-module-scala_2.10' entry (not released for Jackson 2.12 or later) + Add override for 'version.plugin.bundle' (for 5.1.1) to help build on JDK 15+ + Add missing version for jackson-datatype-eclipse-collections jackson-core - update from version 2.10.2 to version 2.13.0: + Build with source and target levels 8 + Misleading exception for input source when processing byte buffer with start offset + Escape contents of source document snippet for 'JsonLocation._appendSourceDesc()' + Add 'StreamWriteException' type to eventually replace 'JsonGenerationException' + Replace 'getCurrentLocation()'/'getTokenLocation()' with 'currentLocation()'/'currentTokenLocation()' in 'JsonParser' + Replace 'JsonGenerator.writeObject()' (and related) with 'writePOJO()' + Replace 'getCurrentValue()'/'setCurrentValue()' with 'currentValue()'/'assignCurrentValue()' in 'JsonParser'/'JsonGenerator + Introduce O(n^1.5) BigDecimal parser implementation + ByteQuadsCanonicalizer.addName(String, int, int) has incorrect handling for case of q2 == null + UTF32Reader ArrayIndexOutOfBoundsException + Improve exception/JsonLocation handling for binary content: don't show content, include byte offset + Fix an issue with the TokenFilter unable to ignore properties when deserializing. + Optimize array allocation by 'JsonStringEncoder' + Add 'mvnw' wrapper + (partial) Optimize array allocation by 'JsonStringEncoder' + Add back accidentally removed 'JsonStringEncoder' related methods in 'BufferRecyclers' (like 'getJsonStringEncoder()') + 'ArrayOutOfBoundException' at 'WriterBasedJsonGenerator.writeString(Reader, int)' + Allow "optional-padding" for 'Base64Variant' + More customizable TokenFilter inclusion (using 'Tokenfilter.Inclusion') + Publish Gradle Module Metadata + Add 'StreamReadCapability' for further format-based/format-agnostic handling improvements + Add 'JsonParser.isExpectedNumberIntToken()' convenience method + Add 'StreamWriteCapability' for further format-based/format-agnostic handling improvements + Add 'JsonParser.getNumberValueExact()' to allow precision-retaining buffering + Limit initial allocated block size by 'ByteArrayBuilder' to max block size + Add 'JacksonException' as parent class of 'JsonProcessingException' + Make 'JsonWriteContext.reset()' and 'JsonReadContext.reset()' methods public + Deprecate 'JsonParser.getCurrentTokenId()' (use '#currentTokenId()' instead) + Full "LICENSE" included in jar for easier access by compliancy tools + Fix NPE in 'writeNumber(String)' method of 'UTF8JsonGenerator', 'WriterBasedJsonGenerator' + Add a String Array write method in the Streaming API + Synchronize variants of 'JsonGenerator#writeNumberField' with 'JsonGenerator#writeNumber' + Add JsonGenerator#writeNumber(char[], int, int) method + Do not clear aggregated contents of 'TextBuffer' when 'releaseBuffers()' called + 'FilteringGeneratorDelegate' does not handle 'writeString(Reader, int)' + Optionally allow leading decimal in float tokens + Rewrite to use ant for building in order to be able to use it in packages that have to be built before maven + Parsing JSON with 'ALLOW_MISSING_VALUE' enabled results in endless stream of 'VALUE_NULL' tokens + Handle case when system property access is restricted + 'FilteringGeneratorDelegate' does not handle 'writeString(Reader, int)' + DataFormatMatcher#getMatchedFormatName throws NPE when no match exists + 'JsonParser.getCurrentLocation()' byte/char offset update incorrectly for big payloads jackson-databind - update from version 2.10.5.1 to version 2.13.0: + '@JsonValue' with integer for enum does not deserialize correctly + 'AnnotatedMethod.getValue()/setValue()' doesn't have useful exception message + Add 'DatabindException' as intermediate subtype of 'JsonMappingException' + Jackson does not support deserializing new Java 9 unmodifiable collections + Allocate TokenBuffer instance via context objects (to allow format-specific buffer types) + Add mechanism for setting default 'ContextAttributes' for 'ObjectMapper' + Add 'DeserializationContext.readTreeAsValue()' methods for more convenient conversions for deserializers to use + Clean up support of typed "unmodifiable", "singleton" Maps/Sets/Collections + Extend internal bitfield of 'MapperFeature' to be 'long' + Add 'removeMixIn()' method in 'MapperBuilder' + Backport 'MapperBuilder' lambda-taking methods: 'withConfigOverride()', 'withCoercionConfig()', 'withCoercionConfigDefaults()' + configOverrides(boolean.class) silently ignored, whereas .configOverride(Boolean.class) works for both primitives and boxed boolean values + Dont track unknown props in buffer if 'ignoreAllUnknown' is true + Should allow deserialization of java.time types via opaque 'JsonToken.VALUE_EMBEDDED_OBJECT' + Optimize "AnnotatedConstructor.call()" case by passing explicit null + Add AnnotationIntrospector.XmlExtensions interface for decoupling javax dependencies + Custom SimpleModule not included in list returned by ObjectMapper.getRegisteredModuleIds() after registration + Use more limiting default visibility settings for JDK types (java.*, javax.*) + Deep merge for 'JsonNode' using 'ObjectReader.readTree()' + IllegalArgumentException: Conflicting setter definitions for property with more than 2 setters + Serializing java.lang.Thread fails on JDK 11 and above + String-based 'Map' key deserializer is not deterministic when there is no single arg constructor + Add ArrayNode#set(int index, primitive_type value) + JsonStreamContext "currentValue" wrongly references to '@JsonTypeInfo' annotated object + DOM 'Node' serialization omits the default namespace declaration + Support 'suppressed' property when deserializing 'Throwable' + 'AnnotatedMember.equals()' does not work reliably + Add 'MapperFeature.APPLY_DEFAULT_VALUES', initially for Scala module + For an absent property Jackson injects 'NullNode' instead of 'null' to a JsonNode-typed constructor argument of a '@ConstructorProperties'-annotated constructor + 'XMLGregorianCalendar' doesn't work with default typing + Content 'null' handling not working for root values + StdDeserializer rejects blank (all-whitespace) strings for ints + 'USE_BASE_TYPE_AS_DEFAULT_IMPL' not working with 'DefaultTypeResolverBuilder' + Add PropertyNamingStrategies.UpperSnakeCaseStrategy (and UPPER_SNAKE_CASE constant) + StackOverflowError when serializing JsonProcessingException + Support for BCP 47 'java.util.Locale' serialization/deserialization + String property deserializes null as "null" for JsonTypeInfo.As.EXISTING_PROPERTY + Can not deserialize json to enum value with Object-/Array-valued input, '@JsonCreator' + Fix to avoid problem with 'BigDecimalNode', scale of 'Integer.MIN_VALUE' + Extend handling of 'FAIL_ON_NULL_FOR_PRIMITIVES' to cover coercion from (Empty) String via 'AsNull' + Add 'mvnw' wrapper + (regression) Factory method generic type resolution does not use Class-bound type parameter + Deserialization of "empty" subtype with DEDUCTION failed + Merge findInjectableValues() results in AnnotationIntrospectorPair + READ_UNKNOWN_ENUM_VALUES_USING_DEFAULT_VALUE doesn't work with empty strings + 'TypeFactory' cannot convert 'Collection' sub-type without type parameters to canonical form and back + Fix for [modules-java8#207]: prevent fail on secondary Java 8 date/time types + EXTERNAL_PROPERTY does not work well with '@JsonCreator' and 'FAIL_ON_UNKNOWN_PROPERTIES' + String property deserializes null as "null" for 'JsonTypeInfo.As.EXTERNAL_PROPERTY' + Property ignorals cause 'BeanDeserializer 'to forget how to read from arrays (not copying '_arrayDelegateDeserializer') + UntypedObjectDeserializer' mixes multiple unwrapped collections (related to #2733) + Two cases of incorrect error reporting about DeserializationFeature + Bug in polymorphic deserialization with '@JsonCreator', '@JsonAnySetter', 'JsonTypeInfo.As.EXTERNAL_PROPERTY' + Polymorphic subtype deduction ignores 'defaultImpl' attribute + MismatchedInputException: Cannot deserialize instance of 'com.fasterxml.jackson.databind.node.ObjectNode' out of VALUE_NULL token + Missing override for 'hasAsKey()' in 'AnnotationIntrospectorPair' + Creator lookup fails with 'InvalidDefinitionException' for conflict between single-double/single-Double arg constructor + 'MapDeserializer' forcing 'JsonMappingException' wrapping even if WRAP_EXCEPTIONS set to false + Auto-detection of constructor-based creator method skipped if there is an annotated factory-based creator method (regression from 2.11) + 'ObjectMapper.treeToValue()' no longer invokes 'JsonDeserializer.getNullValue()' + DeserializationProblemHandler is not invoked when trying to deserialize String + Fix failing 'double' JsonCreators in jackson 2.12.0 + Conflicting in POJOPropertiesCollector when having namingStrategy + Breaking API change in 'BasicClassIntrospector' (2.12.0) + 'JsonNode.requiredAt()' does NOT fail on some path expressions + Exception thrown when 'Collections.synchronizedList()' is serialized with type info, deserialized + Add option to resolve type from multiple existing properties, '@JsonTypeInfo(use=DEDUCTION)' + '@JsonIgnoreProperties' does not prevent Exception Conflicting getter/setter definitions for property + Deserialization Not Working Right with Generic Types and Builders + Add '@JsonIncludeProperties(propertyNames)' (reverse of '@JsonIgnoreProperties') + '@JsonAnyGetter' should be allowed on a field + Allow handling of single-arg constructor as property based by default + Allow case insensitive deserialization of String value into 'boolean'/'Boolean' (esp for Excel) + Allow use of '@JsonFormat(with=JsonFormat.Feature .ACCEPT_CASE_INSENSITIVE_PROPERTIES)' on Class + Abstract class included as part of known type ids for error message when using JsonSubTypes + Distinguish null from empty string for UUID deserialization + 'ReferenceType' does not expose valid containedType + Add 'CoercionConfig[s]' mechanism for configuring allowed coercions + 'JsonProperty.Access.READ_ONLY' does not work with "getter-as-setter" 'Collection's + Support 'BigInteger' and 'BigDecimal' creators in 'StdValueInstantiator' + 'JsonProperty.Access.READ_ONLY' fails with collections when a property name is specified + 'BigDecimal' precision not retained for polymorphic deserialization + Support use of 'Void' valued properties ('MapperFeature.ALLOW_VOID_VALUED_PROPERTIES') + Explicitly fail (de)serialization of 'java.time.*' types in absence of registered custom (de)serializers + Improve description included in by 'DeserializationContext.handleUnexpectedToken()' + Support for JDK 14 record types ('java.lang.Record') + 'PropertyNamingStrategy' class initialization depends on its subclass, this can lead to class loading deadlock + 'FAIL_ON_IGNORED_PROPERTIES' does not throw on 'READONLY' properties with an explicit name + Add Gradle Module Metadata for version alignment with Gradle 6 + Allow 'JsonNode' auto-convert into 'ArrayNode' if duplicates found (for XML) + Allow values of "untyped" auto-convert into 'List' if duplicates found (for XML) + Add 'ValueInstantiator.createContextual(...) + Support multiple names in 'JsonSubType.Type' + Disabling 'FAIL_ON_INVALID_SUBTYPE' breaks polymorphic deserialization of Enums + Explicitly fail (de)serialization of 'org.joda.time.*' types in absence of registered custom (de)serializers + Trailing zeros are stripped when deserializing BigDecimal values inside a @JsonUnwrapped property + Extract getter/setter/field name mangling from 'BeanUtil' into pluggable 'AccessorNamingStrategy' + Throw 'InvalidFormatException' instead of 'MismatchedInputException' for ACCEPT_FLOAT_AS_INT coercion failures + Add '@JsonKey' annotation (similar to '@JsonValue') for customizable serialization of Map keys + 'MapperFeature.ACCEPT_CASE_INSENSITIVE_ENUMS' should work for enum as keys + Add support for disabling special handling of "Creator properties" wrt alphabetic property ordering + Add 'JsonNode.canConvertToExactIntegral()' to indicate whether floating-point/BigDecimal values could be converted to integers losslessly + Improve static factory method generic type resolution logic + Allow preventing "Enum from integer" coercion using new 'CoercionConfig' system + '@JsonValue' not considered when evaluating inclusion + Make some java platform modules optional + Add support for serializing 'java.sql.Blob' + 'AnnotatedCreatorCollector' should avoid processing synthetic static (factory) methods + Add errorprone static analysis profile to detect bugs at build time + Problem with implicit creator name detection for constructor detection + Add 'BeanDeserializerBase.isCaseInsensitive()' + Refactoring of 'CollectionDeserializer' to solve CSV array handling issues + Full "LICENSE" included in jar for easier access by compliancy tools + Fix type resolution for static methods (regression in 2.11.3) + '@JsonCreator' on constructor not compatible with '@JsonIdentityInfo', 'PropertyGenerator' + Add debug improvements about 'ClassUtil.getClassMethods()' + Cannot detect creator arguments of mixins for JDK types + Add 'JsonFormat.Shape' awareness for UUID serialization ('UUIDSerializer') + Json serialization fails or a specific case that contains generics and static methods with generic parameters (2.11.1 -> 2.11.2 regression) + 'ObjectMapper.activateDefaultTypingAsProperty()' is not using parameter 'PolymorphicTypeValidator' + Problem deserialization "raw generic" fields (like 'Map') in 2.11.2 + Fix issues with 'MapLikeType.isTrueMapType()', 'CollectionLikeType.isTrueCollectionType()' + Parser/Generator features not set when using 'ObjectMapper.createParser()', 'createGenerator()' + Polymorphic subtypes not registering on copied ObjectMapper (2.11.1) + Failure to read AnnotatedField value in Jackson 2.11 + 'TypeFactory.constructType()' does not take 'TypeBindings' correctly + Builder Deserialization with JsonCreator Value vs Array + JsonCreator on static method in Enum and Enum used as key in map fails randomly + 'StdSubtypeResolver' is not thread safe (possibly due to copy not being made with 'ObjectMapper.copy()') + "Conflicting setter definitions for property" exception for 'Map' subtype during deserialization + Fail to deserialize local Records + Rearranging of props when property-based generator is in use leads to incorrect output + Jackson doesn't respect 'CAN_OVERRIDE_ACCESS_MODIFIERS=false' for deserializer properties + 'DeserializationFeature.UNWRAP_SINGLE_VALUE_ARRAYS' don't support 'Map' type field + JsonParser from MismatchedInputException cannot getText() for floating-point value + i-I case conversion problem in Turkish locale with case-insensitive deserialization + '@JsonInject' fails on trying to find deserializer even if inject-only + Polymorphic deserialization should handle case-insensitive Type Id property name if 'MapperFeature.ACCEPT_CASE_INSENSITIVE_PROPERTIES' is enabled + TreeTraversingParser and UTF8StreamJsonParser create contexts differently + Support use of '@JsonAlias' for enum values + 'declaringClass' of "enum-as-POJO" not removed for 'ObjectMapper' with a naming strategy + Fix 'JavaType.isEnumType()' to support sub-classes + BeanDeserializerBuilder Protected Factory Method for Extension + Support '@JsonSerialize(keyUsing)' and '@JsonDeserialize(keyUsing)' on Key class + Add 'SerializationFeature.WRITE_SELF_REFERENCES_AS_NULL' + 'ObjectMapper.registerSubtypes(NamedType...)' doesn't allow registering same POJO for two different type ids + 'DeserializationContext.handleMissingInstantiator()' throws 'MismatchedInputException' for non-static inner classes + Incorrect 'JsonStreamContext' for 'TokenBuffer' and 'TreeTraversingParser' + Add 'AnnotationIntrospector.findRenameByField()' to support Kotlin's "is-getter" naming convention + Use '@JsonProperty(index)' for sorting properties on serialization + Java 8 'Optional' not working with '@JsonUnwrapped' on unwrappable type + Add 'MapperFeature.BLOCK_UNSAFE_POLYMORPHIC_BASE_TYPES' to allow blocking use of unsafe base type for polymorphic deserialization + 'ObjectMapper.setSerializationInclusion()' is ignored for 'JsonAnyGetter' + 'ValueInstantiationException' when deserializing using a builder and 'UNWRAP_SINGLE_VALUE_ARRAYS' + JsonIgnoreProperties(ignoreUnknown = true) does not work on field and method level + Failure to resolve generic type parameters on serialization + JsonParser cannot getText() for input stream on MismatchedInputException + ObjectReader readValue lacks Class<T> argument + Change default textual serialization of 'java.util.Date'/'Calendar' to include colon in timezone offset + Add 'ObjectMapper.createParser()' and 'createGenerator()' methods + Allow serialization of 'Properties' with non-String values + Add new factory method for creating custom 'EnumValues' to pass to 'EnumDeserializer + 'IllegalArgumentException' thrown for mismatched subclass deserialization + Add convenience methods for creating 'List', 'Map' valued 'ObjectReader's (ObjectMapper.readerForListOf()) + 'SerializerProvider.findContentValueSerializer()' methods jackson-dataformats-binary - update from version 2.10.1 to version 2.13.0: + (cbor) Should validate UTF-8 multi-byte validity for short decode path too + (ion) Deprecate 'CloseSafeUTF8Writer', remove use + (smile) Make 'SmileFactory' support 'JsonFactory.Feature.CANONICALIZE_FIELD_NAMES' + (cbor) Make 'CBORFactory' support 'JsonFactory.Feature.CANONICALIZE_FIELD_NAMES' + (cbor) Handle case of BigDecimal with Integer.MIN_VALUE for scale gracefully + (cbor) Uncaught exception in CBORParser._nextChunkedByte2 (by ossfuzzer) + (cbor) Another uncaught exception in CBORParser._nextChunkedByte2 (by ossfuzzer) + (smile) Add 'SmileGenerator.Feature.LENIENT_UTF_ENCODING' for lenient handling of broken Unicode surrogate pairs on writing + (avro) Add 'logicalType' support for some 'java.time' types; add 'AvroJavaTimeModule' for native ser/deser + Support base64 strings in 'getBinaryValue()' for CBOR and Smile + (cbor) 'ArrayIndexOutOfBounds' for truncated UTF-8 name + (avro) Generate logicalType switch + (smile) 'ArrayIndexOutOfBounds' for truncated UTF-8 name + (ion) 'jackson-dataformat-ion' does not handle null.struct deserialization correctly + 'Ion-java' dep 1.4.0 -> 1.8.0 + Minor change to Ion module registration names (fully-qualified) + (cbor) Uncaught exception in CBORParser._nextChunkedByte2 (by ossfuzzer) + (cbor) Uncaught exception in CBORParser._findDecodedFromSymbols() (by ossfuzzer) + (smile) Uncaught validation problem wrt Smile "BigDecimal" type + (smile) ArrayIndexOutOfBoundsException for malformed Smile header + (cbor) Failed to handle case of alleged String with length of Integer.MAX_VALUE + (smile) Allocate byte[] lazily for longer Smile binary data payloads + (cbor) CBORParser need to validate zero-length byte[] for BigInteger + (smile) Handle invalid chunked-binary-format length gracefully + (smile) Allocate byte[] lazily for longer Smile binary data payloads (7-bit encoded) + (smile) ArrayIndexOutOfBoundsException in SmileParser._decodeShortUnicodeValue() + (smile) Handle sequence of Smile header markers without recursion + (cbor) CBOR loses 'Map' entries with specific 'long' Map key values (32-bit boundary) + (ion) Ion Polymorphic deserialization in 2.12 breaks wrt use of Native Type Ids when upgrading from 2.8 + (cbor) 'ArrayIndexOutOfBoundsException' in 'CBORParser' for invalid UTF-8 String + (cbor) Handle invalid CBOR content like '[0x84]' (incomplete array) + (ion) Respect 'WRITE_ENUMS_USING_TO_STRING' in 'EnumAsIonSymbolSerializer' + (ion) Add support for generating IonSexps + (ion) Add support for deserializing IonTimestamps and IonBlobs + (ion) Add 'IonObjectMapper.builderForBinaryWriters()' / '.builderforTextualWriters()' convenience methods + (ion) Enabling pretty-printing fails Ion serialization + (ion) Allow disabling native type ids in IonMapper + (smile) Small bug in byte-alignment for long field names in Smile, symbol table reuse + (ion) Add 'IonFactory.getIonSystem()' accessor + (ion) Optimize 'IonParser.getNumberType()' using 'IonReader.getIntegerSize()' + (cbor) Add 'CBORGenerator.Feature.LENIENT_UTF_ENCODING' for lenient handling of Unicode surrogate pairs on writing + (cbor) Add support for decoding unassigned "simple values" (type 7) + Add Gradle Module Metadata (https://blog.gradle.org/alignment-with-gradle-module-metadata) + (avro) Cache record names to avoid hitting class loader + (avro) Avro null deserialization + (ion) Add 'IonFactory.getIonSystem()' accessor + (avro) Add 'AvroGenerator.canWriteBinaryNatively()' to support binary writes, fix 'java.util.UUID' representation + (ion) Allow 'IonObjectMapper' with class name annotation introspector to deserialize generic subtypes + Remove dependencies upon Jackson 1.X and Avro's JacksonUtils + 'jackson-databind' should not be full dependency for (cbor, protobuf, smile) modules + 'CBORGenerator.Feature.WRITE_MINIMAL_INTS' does not write most compact form for all integers + 'AvroGenerator' overrides 'getOutputContext()' properly + (ion) Add 'IonFactory.getIonSystem()' accessor + (avro) Fix schema evolution involving maps of non-scalar + (protobuf) Parsing a protobuf message doesn't properly skip unknown fields + (ion) IonObjectMapper close()s the provided IonWriter unnecessarily + ion-java dependency 1.4.0 -> 1.5.1 jackson-annotations-2.13.0-150200.3.6.1.noarch.rpm jackson-annotations-2.13.0-150200.3.6.1.src.rpm jackson-annotations-javadoc-2.13.0-150200.3.6.1.noarch.rpm jackson-bom-2.13.0-150200.3.3.1.noarch.rpm jackson-bom-2.13.0-150200.3.3.1.src.rpm jackson-core-2.13.0-150200.3.6.1.noarch.rpm jackson-core-2.13.0-150200.3.6.1.src.rpm jackson-core-javadoc-2.13.0-150200.3.6.1.noarch.rpm jackson-databind-2.13.0-150200.3.9.1.noarch.rpm jackson-databind-2.13.0-150200.3.9.1.src.rpm jackson-databind-javadoc-2.13.0-150200.3.9.1.noarch.rpm jackson-dataformat-cbor-2.13.0-150200.3.3.3.noarch.rpm jackson-dataformat-smile-2.13.0-150200.3.3.3.noarch.rpm jackson-dataformats-binary-2.13.0-150200.3.3.3.noarch.rpm jackson-dataformats-binary-2.13.0-150200.3.3.3.src.rpm jackson-dataformats-binary-javadoc-2.13.0-150200.3.3.3.noarch.rpm openSUSE-SLE-15.4-2022-1439 moderate SUSE Updates openSUSE-SLE 15.4 This update for binutils fixes the following issues: - The official name IBM z16 for IBM zSeries arch14 is recognized. (bsc#1198237) binutils-2.37-150100.7.29.1.src.rpm binutils-2.37-150100.7.29.1.x86_64.rpm binutils-devel-2.37-150100.7.29.1.x86_64.rpm binutils-devel-32bit-2.37-150100.7.29.1.x86_64.rpm binutils-gold-2.37-150100.7.29.1.x86_64.rpm cross-aarch64-binutils-2.37-150100.7.29.1.src.rpm cross-aarch64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-arm-binutils-2.37-150100.7.29.1.src.rpm cross-arm-binutils-2.37-150100.7.29.1.x86_64.rpm cross-avr-binutils-2.37-150100.7.29.1.src.rpm cross-avr-binutils-2.37-150100.7.29.1.x86_64.rpm cross-epiphany-binutils-2.37-150100.7.29.1.src.rpm cross-epiphany-binutils-2.37-150100.7.29.1.x86_64.rpm cross-hppa-binutils-2.37-150100.7.29.1.src.rpm cross-hppa-binutils-2.37-150100.7.29.1.x86_64.rpm cross-hppa64-binutils-2.37-150100.7.29.1.src.rpm cross-hppa64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-i386-binutils-2.37-150100.7.29.1.src.rpm cross-i386-binutils-2.37-150100.7.29.1.x86_64.rpm cross-ia64-binutils-2.37-150100.7.29.1.src.rpm cross-ia64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-m68k-binutils-2.37-150100.7.29.1.src.rpm cross-m68k-binutils-2.37-150100.7.29.1.x86_64.rpm cross-mips-binutils-2.37-150100.7.29.1.src.rpm cross-mips-binutils-2.37-150100.7.29.1.x86_64.rpm cross-ppc-binutils-2.37-150100.7.29.1.src.rpm cross-ppc-binutils-2.37-150100.7.29.1.x86_64.rpm cross-ppc64-binutils-2.37-150100.7.29.1.src.rpm cross-ppc64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-ppc64le-binutils-2.37-150100.7.29.1.src.rpm cross-ppc64le-binutils-2.37-150100.7.29.1.x86_64.rpm cross-riscv64-binutils-2.37-150100.7.29.1.src.rpm cross-riscv64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-rx-binutils-2.37-150100.7.29.1.src.rpm cross-rx-binutils-2.37-150100.7.29.1.x86_64.rpm cross-s390-binutils-2.37-150100.7.29.1.src.rpm cross-s390-binutils-2.37-150100.7.29.1.x86_64.rpm cross-s390x-binutils-2.37-150100.7.29.1.src.rpm cross-s390x-binutils-2.37-150100.7.29.1.x86_64.rpm cross-sparc-binutils-2.37-150100.7.29.1.src.rpm cross-sparc-binutils-2.37-150100.7.29.1.x86_64.rpm cross-sparc64-binutils-2.37-150100.7.29.1.src.rpm cross-sparc64-binutils-2.37-150100.7.29.1.x86_64.rpm cross-spu-binutils-2.37-150100.7.29.1.src.rpm cross-spu-binutils-2.37-150100.7.29.1.x86_64.rpm libctf-nobfd0-2.37-150100.7.29.1.x86_64.rpm libctf0-2.37-150100.7.29.1.x86_64.rpm binutils-2.37-150100.7.29.1.s390x.rpm binutils-devel-2.37-150100.7.29.1.s390x.rpm binutils-gold-2.37-150100.7.29.1.s390x.rpm cross-aarch64-binutils-2.37-150100.7.29.1.s390x.rpm cross-arm-binutils-2.37-150100.7.29.1.s390x.rpm cross-avr-binutils-2.37-150100.7.29.1.s390x.rpm cross-epiphany-binutils-2.37-150100.7.29.1.s390x.rpm cross-hppa-binutils-2.37-150100.7.29.1.s390x.rpm cross-hppa64-binutils-2.37-150100.7.29.1.s390x.rpm cross-i386-binutils-2.37-150100.7.29.1.s390x.rpm cross-ia64-binutils-2.37-150100.7.29.1.s390x.rpm cross-m68k-binutils-2.37-150100.7.29.1.s390x.rpm cross-mips-binutils-2.37-150100.7.29.1.s390x.rpm cross-ppc-binutils-2.37-150100.7.29.1.s390x.rpm cross-ppc64-binutils-2.37-150100.7.29.1.s390x.rpm cross-ppc64le-binutils-2.37-150100.7.29.1.s390x.rpm cross-riscv64-binutils-2.37-150100.7.29.1.s390x.rpm cross-rx-binutils-2.37-150100.7.29.1.s390x.rpm cross-s390-binutils-2.37-150100.7.29.1.s390x.rpm cross-sparc-binutils-2.37-150100.7.29.1.s390x.rpm cross-sparc64-binutils-2.37-150100.7.29.1.s390x.rpm cross-spu-binutils-2.37-150100.7.29.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.29.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.29.1.src.rpm libctf-nobfd0-2.37-150100.7.29.1.s390x.rpm libctf0-2.37-150100.7.29.1.s390x.rpm binutils-2.37-150100.7.29.1.ppc64le.rpm binutils-devel-2.37-150100.7.29.1.ppc64le.rpm binutils-gold-2.37-150100.7.29.1.ppc64le.rpm cross-aarch64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-arm-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-avr-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-epiphany-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-hppa-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-hppa64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-i386-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-ia64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-m68k-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-mips-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-ppc-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-ppc64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-riscv64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-rx-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-s390-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-s390x-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-sparc-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-sparc64-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-spu-binutils-2.37-150100.7.29.1.ppc64le.rpm cross-x86_64-binutils-2.37-150100.7.29.1.ppc64le.rpm libctf-nobfd0-2.37-150100.7.29.1.ppc64le.rpm libctf0-2.37-150100.7.29.1.ppc64le.rpm binutils-2.37-150100.7.29.1.aarch64.rpm binutils-devel-2.37-150100.7.29.1.aarch64.rpm binutils-gold-2.37-150100.7.29.1.aarch64.rpm cross-arm-binutils-2.37-150100.7.29.1.aarch64.rpm cross-avr-binutils-2.37-150100.7.29.1.aarch64.rpm cross-epiphany-binutils-2.37-150100.7.29.1.aarch64.rpm cross-hppa-binutils-2.37-150100.7.29.1.aarch64.rpm cross-hppa64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-i386-binutils-2.37-150100.7.29.1.aarch64.rpm cross-ia64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-m68k-binutils-2.37-150100.7.29.1.aarch64.rpm cross-mips-binutils-2.37-150100.7.29.1.aarch64.rpm cross-ppc-binutils-2.37-150100.7.29.1.aarch64.rpm cross-ppc64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-ppc64le-binutils-2.37-150100.7.29.1.aarch64.rpm cross-riscv64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-rx-binutils-2.37-150100.7.29.1.aarch64.rpm cross-s390-binutils-2.37-150100.7.29.1.aarch64.rpm cross-s390x-binutils-2.37-150100.7.29.1.aarch64.rpm cross-sparc-binutils-2.37-150100.7.29.1.aarch64.rpm cross-sparc64-binutils-2.37-150100.7.29.1.aarch64.rpm cross-spu-binutils-2.37-150100.7.29.1.aarch64.rpm cross-x86_64-binutils-2.37-150100.7.29.1.aarch64.rpm libctf-nobfd0-2.37-150100.7.29.1.aarch64.rpm libctf0-2.37-150100.7.29.1.aarch64.rpm openSUSE-SLE-15.4-2022-1655 moderate SUSE Updates openSUSE-SLE 15.4 This update for pam fixes the following issue: - Do not include obsolete header files (bsc#1197794) pam-1.3.0-150000.6.58.3.src.rpm pam-1.3.0-150000.6.58.3.x86_64.rpm pam-32bit-1.3.0-150000.6.58.3.x86_64.rpm pam-devel-1.3.0-150000.6.58.3.x86_64.rpm pam-devel-32bit-1.3.0-150000.6.58.3.x86_64.rpm pam-doc-1.3.0-150000.6.58.3.noarch.rpm pam-extra-1.3.0-150000.6.58.3.x86_64.rpm pam-extra-32bit-1.3.0-150000.6.58.3.x86_64.rpm pam-modules-12.1-150000.5.3.2.src.rpm pam-modules-12.1-150000.5.3.2.x86_64.rpm pam-modules-32bit-12.1-150000.5.3.2.x86_64.rpm pam-1.3.0-150000.6.58.3.s390x.rpm pam-devel-1.3.0-150000.6.58.3.s390x.rpm pam-extra-1.3.0-150000.6.58.3.s390x.rpm pam-modules-12.1-150000.5.3.2.s390x.rpm pam-1.3.0-150000.6.58.3.ppc64le.rpm pam-devel-1.3.0-150000.6.58.3.ppc64le.rpm pam-extra-1.3.0-150000.6.58.3.ppc64le.rpm pam-modules-12.1-150000.5.3.2.ppc64le.rpm pam-1.3.0-150000.6.58.3.aarch64.rpm pam-devel-1.3.0-150000.6.58.3.aarch64.rpm pam-extra-1.3.0-150000.6.58.3.aarch64.rpm pam-modules-12.1-150000.5.3.2.aarch64.rpm openSUSE-SLE-15.4-2022-1656 moderate SUSE Updates openSUSE-SLE 15.4 This update for llvm7 fixes the following issues: - Backport fixes and changes from Factory. (bsc#1197775) - Drop RUNPATH from packaged binaries, instead set LD_LIBRARY_PATH for building and testing to simulate behavior of actual package. - Fix build with linux-glibc-devel 5.13. clang7-7.0.1-150100.3.22.2.x86_64.rpm clang7-checker-7.0.1-150100.3.22.2.x86_64.rpm clang7-devel-32bit-7.0.1-150100.3.22.2.x86_64.rpm clang7-devel-7.0.1-150100.3.22.2.x86_64.rpm libLLVM7-32bit-7.0.1-150100.3.22.2.x86_64.rpm libLLVM7-7.0.1-150100.3.22.2.x86_64.rpm libLTO7-32bit-7.0.1-150100.3.22.2.x86_64.rpm libLTO7-7.0.1-150100.3.22.2.x86_64.rpm libclang7-32bit-7.0.1-150100.3.22.2.x86_64.rpm libclang7-7.0.1-150100.3.22.2.x86_64.rpm liblldb7-7.0.1-150100.3.22.2.x86_64.rpm libomp7-devel-7.0.1-150100.3.22.2.x86_64.rpm lld7-7.0.1-150100.3.22.2.x86_64.rpm lldb7-7.0.1-150100.3.22.2.x86_64.rpm lldb7-devel-7.0.1-150100.3.22.2.x86_64.rpm llvm7-7.0.1-150100.3.22.2.src.rpm llvm7-7.0.1-150100.3.22.2.x86_64.rpm llvm7-LTO-devel-32bit-7.0.1-150100.3.22.2.x86_64.rpm llvm7-LTO-devel-7.0.1-150100.3.22.2.x86_64.rpm llvm7-devel-32bit-7.0.1-150100.3.22.2.x86_64.rpm llvm7-devel-7.0.1-150100.3.22.2.x86_64.rpm llvm7-emacs-plugins-7.0.1-150100.3.22.2.noarch.rpm llvm7-gold-7.0.1-150100.3.22.2.x86_64.rpm llvm7-opt-viewer-7.0.1-150100.3.22.2.noarch.rpm llvm7-polly-7.0.1-150100.3.22.2.x86_64.rpm llvm7-polly-devel-7.0.1-150100.3.22.2.x86_64.rpm llvm7-vim-plugins-7.0.1-150100.3.22.2.noarch.rpm python3-lldb7-7.0.1-150100.3.22.2.x86_64.rpm clang7-7.0.1-150100.3.22.2.s390x.rpm clang7-checker-7.0.1-150100.3.22.2.s390x.rpm clang7-devel-7.0.1-150100.3.22.2.s390x.rpm libLLVM7-7.0.1-150100.3.22.2.s390x.rpm libLTO7-7.0.1-150100.3.22.2.s390x.rpm libclang7-7.0.1-150100.3.22.2.s390x.rpm lld7-7.0.1-150100.3.22.2.s390x.rpm llvm7-7.0.1-150100.3.22.2.s390x.rpm llvm7-LTO-devel-7.0.1-150100.3.22.2.s390x.rpm llvm7-devel-7.0.1-150100.3.22.2.s390x.rpm llvm7-gold-7.0.1-150100.3.22.2.s390x.rpm llvm7-polly-7.0.1-150100.3.22.2.s390x.rpm llvm7-polly-devel-7.0.1-150100.3.22.2.s390x.rpm clang7-7.0.1-150100.3.22.2.ppc64le.rpm clang7-checker-7.0.1-150100.3.22.2.ppc64le.rpm clang7-devel-7.0.1-150100.3.22.2.ppc64le.rpm libLLVM7-7.0.1-150100.3.22.2.ppc64le.rpm libLTO7-7.0.1-150100.3.22.2.ppc64le.rpm libclang7-7.0.1-150100.3.22.2.ppc64le.rpm libomp7-devel-7.0.1-150100.3.22.2.ppc64le.rpm lld7-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-LTO-devel-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-devel-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-gold-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-polly-7.0.1-150100.3.22.2.ppc64le.rpm llvm7-polly-devel-7.0.1-150100.3.22.2.ppc64le.rpm clang7-7.0.1-150100.3.22.2.aarch64.rpm clang7-checker-7.0.1-150100.3.22.2.aarch64.rpm clang7-devel-7.0.1-150100.3.22.2.aarch64.rpm libLLVM7-7.0.1-150100.3.22.2.aarch64.rpm libLTO7-7.0.1-150100.3.22.2.aarch64.rpm libclang7-7.0.1-150100.3.22.2.aarch64.rpm libomp7-devel-7.0.1-150100.3.22.2.aarch64.rpm lld7-7.0.1-150100.3.22.2.aarch64.rpm llvm7-7.0.1-150100.3.22.2.aarch64.rpm llvm7-LTO-devel-7.0.1-150100.3.22.2.aarch64.rpm llvm7-devel-7.0.1-150100.3.22.2.aarch64.rpm llvm7-gold-7.0.1-150100.3.22.2.aarch64.rpm llvm7-polly-7.0.1-150100.3.22.2.aarch64.rpm llvm7-polly-devel-7.0.1-150100.3.22.2.aarch64.rpm openSUSE-SLE-15.4-2022-1411 moderate SUSE Updates openSUSE-SLE 15.4 This update for go1.17 fixes the following issues: - Updated to version 1.17.9 (bsc#1190649): - CVE-2022-24675: Fixed a stack overflow via crafted PEM file (bsc#1198423). - CVE-2022-28327: Fixed a potential panic when using big P-256 scalars in the crypto/elliptic module (bsc#1198424). go1.17-1.17.9-150000.1.28.1.src.rpm go1.17-1.17.9-150000.1.28.1.x86_64.rpm go1.17-doc-1.17.9-150000.1.28.1.x86_64.rpm go1.17-race-1.17.9-150000.1.28.1.x86_64.rpm go1.17-1.17.9-150000.1.28.1.s390x.rpm go1.17-doc-1.17.9-150000.1.28.1.s390x.rpm go1.17-1.17.9-150000.1.28.1.ppc64le.rpm go1.17-doc-1.17.9-150000.1.28.1.ppc64le.rpm go1.17-1.17.9-150000.1.28.1.aarch64.rpm go1.17-doc-1.17.9-150000.1.28.1.aarch64.rpm go1.17-race-1.17.9-150000.1.28.1.aarch64.rpm openSUSE-SLE-15.4-2022-1864 low SUSE Updates openSUSE-SLE 15.4 This update for leveldb fixes the following issue: - fix tests (bsc#1197742) leveldb-1.18-150000.3.3.1.src.rpm leveldb-devel-1.18-150000.3.3.1.x86_64.rpm leveldb-devel-static-1.18-150000.3.3.1.x86_64.rpm libleveldb1-1.18-150000.3.3.1.x86_64.rpm leveldb-devel-1.18-150000.3.3.1.s390x.rpm leveldb-devel-static-1.18-150000.3.3.1.s390x.rpm libleveldb1-1.18-150000.3.3.1.s390x.rpm leveldb-devel-1.18-150000.3.3.1.ppc64le.rpm leveldb-devel-static-1.18-150000.3.3.1.ppc64le.rpm libleveldb1-1.18-150000.3.3.1.ppc64le.rpm leveldb-devel-1.18-150000.3.3.1.aarch64.rpm leveldb-devel-static-1.18-150000.3.3.1.aarch64.rpm libleveldb1-1.18-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1820 low SUSE Updates openSUSE-SLE 15.4 This update for rzsz fixes the following issue: - Fix build with the latest gettext (bsc#1197852) rzsz-0.12.21~rc-150000.3.3.2.src.rpm rzsz-0.12.21~rc-150000.3.3.2.x86_64.rpm rzsz-0.12.21~rc-150000.3.3.2.s390x.rpm rzsz-0.12.21~rc-150000.3.3.2.ppc64le.rpm rzsz-0.12.21~rc-150000.3.3.2.aarch64.rpm openSUSE-SLE-15.4-2022-1865 low SUSE Updates openSUSE-SLE 15.4 This update for xiterm fixes the following issues: - Remove use of obsolete XSI STREAMS interface. (bsc#1197864) fbiterm-0.5.20040304-150000.5.6.1.x86_64.rpm gtkiterm-0.5.20040304-150000.5.6.1.x86_64.rpm libXiterm-devel-0.5.20040304-150000.5.6.1.x86_64.rpm libXiterm1-0.5.20040304-150000.5.6.1.x86_64.rpm libiterm-devel-0.5.20040304-150000.5.6.1.x86_64.rpm libiterm1-0.5.20040304-150000.5.6.1.x86_64.rpm xiterm-0.5.20040304-150000.5.6.1.src.rpm xiterm-0.5.20040304-150000.5.6.1.x86_64.rpm fbiterm-0.5.20040304-150000.5.6.1.s390x.rpm gtkiterm-0.5.20040304-150000.5.6.1.s390x.rpm libXiterm-devel-0.5.20040304-150000.5.6.1.s390x.rpm libXiterm1-0.5.20040304-150000.5.6.1.s390x.rpm libiterm-devel-0.5.20040304-150000.5.6.1.s390x.rpm libiterm1-0.5.20040304-150000.5.6.1.s390x.rpm xiterm-0.5.20040304-150000.5.6.1.s390x.rpm fbiterm-0.5.20040304-150000.5.6.1.ppc64le.rpm gtkiterm-0.5.20040304-150000.5.6.1.ppc64le.rpm libXiterm-devel-0.5.20040304-150000.5.6.1.ppc64le.rpm libXiterm1-0.5.20040304-150000.5.6.1.ppc64le.rpm libiterm-devel-0.5.20040304-150000.5.6.1.ppc64le.rpm libiterm1-0.5.20040304-150000.5.6.1.ppc64le.rpm xiterm-0.5.20040304-150000.5.6.1.ppc64le.rpm fbiterm-0.5.20040304-150000.5.6.1.aarch64.rpm gtkiterm-0.5.20040304-150000.5.6.1.aarch64.rpm libXiterm-devel-0.5.20040304-150000.5.6.1.aarch64.rpm libXiterm1-0.5.20040304-150000.5.6.1.aarch64.rpm libiterm-devel-0.5.20040304-150000.5.6.1.aarch64.rpm libiterm1-0.5.20040304-150000.5.6.1.aarch64.rpm xiterm-0.5.20040304-150000.5.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1660 low SUSE Updates openSUSE-SLE 15.4 This update for publicsuffix fixes the following issue: - Update to version 20220405 (bsc#1198068) publicsuffix-20220405-150000.3.9.1.noarch.rpm publicsuffix-20220405-150000.3.9.1.src.rpm openSUSE-SLE-15.4-2022-1867 low SUSE Updates openSUSE-SLE 15.4 This update for v4l-utils fixes the following issues: - fix build (bsc#1197861) dvb-utils-1.14.1-150000.3.3.1.x86_64.rpm libdvbv5-0-1.14.1-150000.3.3.1.x86_64.rpm libdvbv5-0-32bit-1.14.1-150000.3.3.1.x86_64.rpm libdvbv5-0-lang-1.14.1-150000.3.3.1.noarch.rpm libdvbv5-devel-1.14.1-150000.3.3.1.x86_64.rpm libv4l-1.14.1-150000.3.3.1.x86_64.rpm libv4l-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4l-devel-1.14.1-150000.3.3.1.x86_64.rpm libv4l-devel-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4l1-0-1.14.1-150000.3.3.1.x86_64.rpm libv4l1-0-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4l2-0-1.14.1-150000.3.3.1.x86_64.rpm libv4l2-0-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4l2rds0-1.14.1-150000.3.3.1.x86_64.rpm libv4l2rds0-32bit-1.14.1-150000.3.3.1.x86_64.rpm libv4lconvert0-1.14.1-150000.3.3.1.x86_64.rpm libv4lconvert0-32bit-1.14.1-150000.3.3.1.x86_64.rpm qv4l2-1.14.1-150000.3.3.1.x86_64.rpm v4l-utils-1.14.1-150000.3.3.1.src.rpm v4l-utils-1.14.1-150000.3.3.1.x86_64.rpm v4l-utils-devel-tools-1.14.1-150000.3.3.1.x86_64.rpm v4l-utils-lang-1.14.1-150000.3.3.1.noarch.rpm dvb-utils-1.14.1-150000.3.3.1.s390x.rpm libdvbv5-0-1.14.1-150000.3.3.1.s390x.rpm libdvbv5-devel-1.14.1-150000.3.3.1.s390x.rpm libv4l-1.14.1-150000.3.3.1.s390x.rpm libv4l-devel-1.14.1-150000.3.3.1.s390x.rpm libv4l1-0-1.14.1-150000.3.3.1.s390x.rpm libv4l2-0-1.14.1-150000.3.3.1.s390x.rpm libv4l2rds0-1.14.1-150000.3.3.1.s390x.rpm libv4lconvert0-1.14.1-150000.3.3.1.s390x.rpm qv4l2-1.14.1-150000.3.3.1.s390x.rpm v4l-utils-1.14.1-150000.3.3.1.s390x.rpm v4l-utils-devel-tools-1.14.1-150000.3.3.1.s390x.rpm dvb-utils-1.14.1-150000.3.3.1.ppc64le.rpm libdvbv5-0-1.14.1-150000.3.3.1.ppc64le.rpm libdvbv5-devel-1.14.1-150000.3.3.1.ppc64le.rpm libv4l-1.14.1-150000.3.3.1.ppc64le.rpm libv4l-devel-1.14.1-150000.3.3.1.ppc64le.rpm libv4l1-0-1.14.1-150000.3.3.1.ppc64le.rpm libv4l2-0-1.14.1-150000.3.3.1.ppc64le.rpm libv4l2rds0-1.14.1-150000.3.3.1.ppc64le.rpm libv4lconvert0-1.14.1-150000.3.3.1.ppc64le.rpm qv4l2-1.14.1-150000.3.3.1.ppc64le.rpm v4l-utils-1.14.1-150000.3.3.1.ppc64le.rpm v4l-utils-devel-tools-1.14.1-150000.3.3.1.ppc64le.rpm dvb-utils-1.14.1-150000.3.3.1.aarch64.rpm libdvbv5-0-1.14.1-150000.3.3.1.aarch64.rpm libdvbv5-devel-1.14.1-150000.3.3.1.aarch64.rpm libv4l-1.14.1-150000.3.3.1.aarch64.rpm libv4l-devel-1.14.1-150000.3.3.1.aarch64.rpm libv4l1-0-1.14.1-150000.3.3.1.aarch64.rpm libv4l2-0-1.14.1-150000.3.3.1.aarch64.rpm libv4l2rds0-1.14.1-150000.3.3.1.aarch64.rpm libv4lconvert0-1.14.1-150000.3.3.1.aarch64.rpm v4l-utils-1.14.1-150000.3.3.1.aarch64.rpm v4l-utils-devel-tools-1.14.1-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1659 moderate SUSE Updates openSUSE-SLE 15.4 This update for cups fixes the following issues: - CUPS printservice takes much longer than before with a big number of printers (bsc#1189517) - CUPS PreserveJobHistory doesn't work with seconds (bsc#1195115) cups-2.2.7-150000.3.29.1.src.rpm cups-2.2.7-150000.3.29.1.x86_64.rpm cups-client-2.2.7-150000.3.29.1.x86_64.rpm cups-config-2.2.7-150000.3.29.1.x86_64.rpm cups-ddk-2.2.7-150000.3.29.1.x86_64.rpm cups-devel-2.2.7-150000.3.29.1.x86_64.rpm cups-devel-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcups2-2.2.7-150000.3.29.1.x86_64.rpm libcups2-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcupscgi1-2.2.7-150000.3.29.1.x86_64.rpm libcupscgi1-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcupsimage2-2.2.7-150000.3.29.1.x86_64.rpm libcupsimage2-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcupsmime1-2.2.7-150000.3.29.1.x86_64.rpm libcupsmime1-32bit-2.2.7-150000.3.29.1.x86_64.rpm libcupsppdc1-2.2.7-150000.3.29.1.x86_64.rpm libcupsppdc1-32bit-2.2.7-150000.3.29.1.x86_64.rpm cups-2.2.7-150000.3.29.1.s390x.rpm cups-client-2.2.7-150000.3.29.1.s390x.rpm cups-config-2.2.7-150000.3.29.1.s390x.rpm cups-ddk-2.2.7-150000.3.29.1.s390x.rpm cups-devel-2.2.7-150000.3.29.1.s390x.rpm libcups2-2.2.7-150000.3.29.1.s390x.rpm libcupscgi1-2.2.7-150000.3.29.1.s390x.rpm libcupsimage2-2.2.7-150000.3.29.1.s390x.rpm libcupsmime1-2.2.7-150000.3.29.1.s390x.rpm libcupsppdc1-2.2.7-150000.3.29.1.s390x.rpm cups-2.2.7-150000.3.29.1.ppc64le.rpm cups-client-2.2.7-150000.3.29.1.ppc64le.rpm cups-config-2.2.7-150000.3.29.1.ppc64le.rpm cups-ddk-2.2.7-150000.3.29.1.ppc64le.rpm cups-devel-2.2.7-150000.3.29.1.ppc64le.rpm libcups2-2.2.7-150000.3.29.1.ppc64le.rpm libcupscgi1-2.2.7-150000.3.29.1.ppc64le.rpm libcupsimage2-2.2.7-150000.3.29.1.ppc64le.rpm libcupsmime1-2.2.7-150000.3.29.1.ppc64le.rpm libcupsppdc1-2.2.7-150000.3.29.1.ppc64le.rpm cups-2.2.7-150000.3.29.1.aarch64.rpm cups-client-2.2.7-150000.3.29.1.aarch64.rpm cups-config-2.2.7-150000.3.29.1.aarch64.rpm cups-ddk-2.2.7-150000.3.29.1.aarch64.rpm cups-devel-2.2.7-150000.3.29.1.aarch64.rpm libcups2-2.2.7-150000.3.29.1.aarch64.rpm libcupscgi1-2.2.7-150000.3.29.1.aarch64.rpm libcupsimage2-2.2.7-150000.3.29.1.aarch64.rpm libcupsmime1-2.2.7-150000.3.29.1.aarch64.rpm libcupsppdc1-2.2.7-150000.3.29.1.aarch64.rpm openSUSE-SLE-15.4-2022-1472 low SUSE Updates openSUSE-SLE 15.4 This update for python-Whoosh fixes the following issues: - python-Whoosh won't compile on SP4 (bsc#1197830) - Remove superfluous devel dependency for noarch package python-Whoosh-2.7.4-150100.3.3.2.src.rpm python-Whoosh-doc-2.7.4-150100.3.3.2.noarch.rpm python2-Whoosh-2.7.4-150100.3.3.2.noarch.rpm python3-Whoosh-2.7.4-150100.3.3.2.noarch.rpm openSUSE-SLE-15.4-2022-1875 low SUSE Updates openSUSE-SLE 15.4 This update for grpc fixes the following issues: - grpc won't compile on SP4(bsc#1197726) - Add conditional to build without python2 if needed grpc-1.25.0-150200.3.5.1.src.rpm grpc-devel-1.25.0-150200.3.5.1.x86_64.rpm grpc-source-1.25.0-150200.3.5.1.noarch.rpm libgrpc++1-1.25.0-150200.3.5.1.x86_64.rpm libgrpc8-1.25.0-150200.3.5.1.x86_64.rpm python2-grpcio-1.25.0-150200.3.5.1.x86_64.rpm python3-grpcio-1.25.0-150200.3.5.1.x86_64.rpm grpc-devel-1.25.0-150200.3.5.1.s390x.rpm libgrpc++1-1.25.0-150200.3.5.1.s390x.rpm libgrpc8-1.25.0-150200.3.5.1.s390x.rpm python2-grpcio-1.25.0-150200.3.5.1.s390x.rpm python3-grpcio-1.25.0-150200.3.5.1.s390x.rpm grpc-devel-1.25.0-150200.3.5.1.ppc64le.rpm libgrpc++1-1.25.0-150200.3.5.1.ppc64le.rpm libgrpc8-1.25.0-150200.3.5.1.ppc64le.rpm python2-grpcio-1.25.0-150200.3.5.1.ppc64le.rpm python3-grpcio-1.25.0-150200.3.5.1.ppc64le.rpm grpc-devel-1.25.0-150200.3.5.1.aarch64.rpm libgrpc++1-1.25.0-150200.3.5.1.aarch64.rpm libgrpc8-1.25.0-150200.3.5.1.aarch64.rpm python2-grpcio-1.25.0-150200.3.5.1.aarch64.rpm python3-grpcio-1.25.0-150200.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-1541 important SUSE Updates openSUSE-SLE 15.4 This update for pgadmin4 fixes the following issues: - CVE-2022-0959: Fixed an unrestricted file upload (bsc#1197143). pgadmin4-4.30-150300.3.3.1.src.rpm pgadmin4-4.30-150300.3.3.1.x86_64.rpm pgadmin4-doc-4.30-150300.3.3.1.noarch.rpm pgadmin4-web-4.30-150300.3.3.1.noarch.rpm pgadmin4-web-uwsgi-4.30-150300.3.3.1.noarch.rpm pgadmin4-4.30-150300.3.3.1.s390x.rpm pgadmin4-4.30-150300.3.3.1.ppc64le.rpm pgadmin4-4.30-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1516 important SUSE Updates openSUSE-SLE 15.4 This update for libwmf fixes the following issues: libwmf was updated to 0.2.12: * upstream changed to fork from Fedora: https://github.com/caolanm/libwmf * merged all the pending fixes * merge in fixes for libgd CVE-2019-6978 (bsc#1123522) * fixed memory allocation failure (CVE-2016-9011) * Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075) libwmf-0.2.12-150000.4.4.1.src.rpm libwmf-0_2-7-0.2.12-150000.4.4.1.x86_64.rpm libwmf-0_2-7-32bit-0.2.12-150000.4.4.1.x86_64.rpm libwmf-devel-0.2.12-150000.4.4.1.x86_64.rpm libwmf-gnome-0.2.12-150000.4.4.1.x86_64.rpm libwmf-gnome-32bit-0.2.12-150000.4.4.1.x86_64.rpm libwmf-tools-0.2.12-150000.4.4.1.x86_64.rpm libwmf-0_2-7-0.2.12-150000.4.4.1.s390x.rpm libwmf-devel-0.2.12-150000.4.4.1.s390x.rpm libwmf-gnome-0.2.12-150000.4.4.1.s390x.rpm libwmf-tools-0.2.12-150000.4.4.1.s390x.rpm libwmf-0_2-7-0.2.12-150000.4.4.1.ppc64le.rpm libwmf-devel-0.2.12-150000.4.4.1.ppc64le.rpm libwmf-gnome-0.2.12-150000.4.4.1.ppc64le.rpm libwmf-tools-0.2.12-150000.4.4.1.ppc64le.rpm libwmf-0_2-7-0.2.12-150000.4.4.1.aarch64.rpm libwmf-devel-0.2.12-150000.4.4.1.aarch64.rpm libwmf-gnome-0.2.12-150000.4.4.1.aarch64.rpm libwmf-tools-0.2.12-150000.4.4.1.aarch64.rpm openSUSE-SLE-15.4-2022-1501 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-uamqp fixes the following issues: - python-uamqp won't compile on SP4 (bsc#1197848) - Only build Python3 flavors for distributions 15 and greater python-uamqp-1.5.3-150100.4.7.1.src.rpm python3-uamqp-1.5.3-150100.4.7.1.x86_64.rpm python3-uamqp-1.5.3-150100.4.7.1.s390x.rpm python3-uamqp-1.5.3-150100.4.7.1.ppc64le.rpm python3-uamqp-1.5.3-150100.4.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-1565 moderate SUSE Updates openSUSE-SLE 15.4 This update for giflib fixes the following issues: - CVE-2019-15133: Fixed a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero (bsc#1146299). - CVE-2018-11490: Fixed a heap-based buffer overflow in DGifDecompressLine function in dgif_lib.c (bsc#1094832). - CVE-2016-3977: Fixed a heap buffer overflow in gif2rgb (bsc#974847). Update to version 5.2.1 * In gifbuild.c, avoid a core dump on no color map. * Restore inadvertently removed library version numbers in Makefile. Changes in version 5.2.0 * The undocumented and deprecated GifQuantizeBuffer() entry point has been moved to the util library to reduce libgif size and attack surface. Applications needing this function are couraged to link the util library or make their own copy. * The following obsolete utility programs are no longer installed: gifecho, giffilter, gifinto, gifsponge. These were either installed in error or have been obsolesced by modern image-transformmation tools like ImageMagick convert. They may be removed entirely in a future release. * Address SourceForge issue #136: Stack-buffer-overflow in gifcolor.c:84 * Address SF bug #134: Giflib fails to slurp significant number of gifs * Apply SPDX convention for license tagging. Changes in version 5.1.9 * The documentation directory now includes an HTMlified version of the GIF89 standard, and a more detailed description of how LZW compression is applied to GIFs. * Address SF bug #129: The latest version of giflib cannot be build on windows. * Address SF bug #126: Cannot compile giflib using c89 Changes in version 5.1.8 * Address SF bug #119: MemorySanitizer: FPE on unknown address (CVE-2019-15133 bsc#1146299) * Address SF bug #125: 5.1.7: xmlto is still required for tarball * Address SF bug #124: 5.1.7: ar invocation is not crosscompile compatible * Address SF bug #122: 5.1.7 installs manpages to wrong directory * Address SF bug #121: make: getversion: Command not found * Address SF bug #120: 5.1.7 does not build a proper library - no Changes in version 5.1.7 * Correct a minor packaging error (superfluous symlinks) in the 5.1.6 tarballs. Changes in version 5.1.6 * Fix library installation in the Makefile. Changes in version 5.1.5 * Fix SF bug #114: Null dereferences in main() of gifclrmp * Fix SF bug #113: Heap Buffer Overflow-2 in function DGifDecompressLine() in cgif.c. This had been assigned (CVE-2018-11490 bsc#1094832). * Fix SF bug #111: segmentation fault in PrintCodeBlock * Fix SF bug #109: Segmentation fault of giftool reading a crafted file * Fix SF bug #107: Floating point exception in giftext utility * Fix SF bug #105: heap buffer overflow in DumpScreen2RGB in gif2rgb.c:317 * Fix SF bug #104: Ineffective bounds check in DGifSlurp * Fix SF bug #103: GIFLIB 5.1.4: DGifSlurp fails on empty comment * Fix SF bug #87: Heap buffer overflow in 5.1.2 (gif2rgb). (CVE-2016-3977 bsc#974847) * The horrible old autoconf build system has been removed with extreme prejudice. You now build this simply by running "make" from the top-level directory. The following non-security bugs were fixed: - build path independent objects and inherit CFLAGS from the build system (bsc#1184123) giflib-5.2.1-150000.4.8.1.src.rpm giflib-devel-32bit-5.2.1-150000.4.8.1.x86_64.rpm giflib-devel-5.2.1-150000.4.8.1.x86_64.rpm giflib-progs-5.2.1-150000.4.8.1.x86_64.rpm libgif7-32bit-5.2.1-150000.4.8.1.x86_64.rpm libgif7-5.2.1-150000.4.8.1.x86_64.rpm giflib-devel-5.2.1-150000.4.8.1.s390x.rpm giflib-progs-5.2.1-150000.4.8.1.s390x.rpm libgif7-5.2.1-150000.4.8.1.s390x.rpm giflib-devel-5.2.1-150000.4.8.1.ppc64le.rpm giflib-progs-5.2.1-150000.4.8.1.ppc64le.rpm libgif7-5.2.1-150000.4.8.1.ppc64le.rpm giflib-devel-5.2.1-150000.4.8.1.aarch64.rpm giflib-progs-5.2.1-150000.4.8.1.aarch64.rpm libgif7-5.2.1-150000.4.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-1490 important SUSE Updates openSUSE-SLE 15.4 This update for liblangtag fixes the following issues: - Fix build of future service packs of SUSE Linux Enterprise 15 (bsc#1197767) liblangtag-0.6.2-150000.3.6.1.src.rpm liblangtag-devel-0.6.2-150000.3.6.1.x86_64.rpm liblangtag-doc-0.6.2-150000.3.6.1.noarch.rpm liblangtag1-0.6.2-150000.3.6.1.x86_64.rpm liblangtag-devel-0.6.2-150000.3.6.1.s390x.rpm liblangtag1-0.6.2-150000.3.6.1.s390x.rpm liblangtag-devel-0.6.2-150000.3.6.1.ppc64le.rpm liblangtag1-0.6.2-150000.3.6.1.ppc64le.rpm liblangtag-devel-0.6.2-150000.3.6.1.aarch64.rpm liblangtag1-0.6.2-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1802 important SUSE Updates openSUSE-SLE 15.4 These updates for YaST fix the following issues: autoyast2: - Respect general/signature-handling settings during the 2nd stage (bsc#1197655) - Fix detection of disk serial and size in the "disks" ERB helper (bsc#1199000) - Fix rules validation when using a dialog (bsc#1199165) yast2-installation: - Revert changes introduced in v4.3.50 because they cause some ordering cycle issues (bsc#1198294) - AutoYaST: move custom file creation past user creation so that the element files/file/file_owner actually has an effect (bsc#1196595) yast2-samba-client: - Use translation macro for range settings expert details text (bsc#1197936) yast2-schema: - Fix rules validation when using a dialog (bsc#1199165) yast2-storage-ng: - Fix fstab entry filesystem matching allowing the use of quotes surrounding the device UUID or label (bsc#1197692) yast2-schema-4.3.29-150300.3.15.1.src.rpm yast2-schema-4.3.29-150300.3.15.1.x86_64.rpm yast2-schema-4.3.29-150300.3.15.1.s390x.rpm yast2-schema-4.3.29-150300.3.15.1.ppc64le.rpm yast2-schema-4.3.29-150300.3.15.1.aarch64.rpm openSUSE-SLE-15.4-2022-1518 important SUSE Updates openSUSE-SLE 15.4 This update for sanlock fixes the following issues: - Add libuuid as a build requirement to fix build issues on future SUSE Linux Enterprise Service Packs (bsc#1197853) fence-sanlock-3.6.0-150000.4.3.1.x86_64.rpm libsanlock1-3.6.0-150000.4.3.1.x86_64.rpm python2-sanlock-3.6.0-150000.4.3.1.x86_64.rpm python3-sanlock-3.6.0-150000.4.3.1.x86_64.rpm sanlk-reset-3.6.0-150000.4.3.1.x86_64.rpm sanlock-3.6.0-150000.4.3.1.src.rpm sanlock-3.6.0-150000.4.3.1.x86_64.rpm sanlock-devel-3.6.0-150000.4.3.1.x86_64.rpm fence-sanlock-3.6.0-150000.4.3.1.s390x.rpm libsanlock1-3.6.0-150000.4.3.1.s390x.rpm python2-sanlock-3.6.0-150000.4.3.1.s390x.rpm python3-sanlock-3.6.0-150000.4.3.1.s390x.rpm sanlk-reset-3.6.0-150000.4.3.1.s390x.rpm sanlock-3.6.0-150000.4.3.1.s390x.rpm sanlock-devel-3.6.0-150000.4.3.1.s390x.rpm fence-sanlock-3.6.0-150000.4.3.1.ppc64le.rpm libsanlock1-3.6.0-150000.4.3.1.ppc64le.rpm python2-sanlock-3.6.0-150000.4.3.1.ppc64le.rpm python3-sanlock-3.6.0-150000.4.3.1.ppc64le.rpm sanlk-reset-3.6.0-150000.4.3.1.ppc64le.rpm sanlock-3.6.0-150000.4.3.1.ppc64le.rpm sanlock-devel-3.6.0-150000.4.3.1.ppc64le.rpm fence-sanlock-3.6.0-150000.4.3.1.aarch64.rpm libsanlock1-3.6.0-150000.4.3.1.aarch64.rpm python2-sanlock-3.6.0-150000.4.3.1.aarch64.rpm python3-sanlock-3.6.0-150000.4.3.1.aarch64.rpm sanlk-reset-3.6.0-150000.4.3.1.aarch64.rpm sanlock-3.6.0-150000.4.3.1.aarch64.rpm sanlock-devel-3.6.0-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1594 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: stoken libstoken1-0.81-150000.3.2.1.x86_64.rpm stoken-0.81-150000.3.2.1.src.rpm stoken-0.81-150000.3.2.1.x86_64.rpm stoken-devel-0.81-150000.3.2.1.x86_64.rpm stoken-gui-0.81-150000.3.2.1.x86_64.rpm libstoken1-0.81-150000.3.2.1.s390x.rpm stoken-0.81-150000.3.2.1.s390x.rpm stoken-devel-0.81-150000.3.2.1.s390x.rpm stoken-gui-0.81-150000.3.2.1.s390x.rpm libstoken1-0.81-150000.3.2.1.ppc64le.rpm stoken-0.81-150000.3.2.1.ppc64le.rpm stoken-devel-0.81-150000.3.2.1.ppc64le.rpm stoken-gui-0.81-150000.3.2.1.ppc64le.rpm libstoken1-0.81-150000.3.2.1.aarch64.rpm stoken-0.81-150000.3.2.1.aarch64.rpm stoken-devel-0.81-150000.3.2.1.aarch64.rpm stoken-gui-0.81-150000.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1455 low SUSE Updates openSUSE-SLE 15.4 This update for glib2 fixes the following issues: - CVE-2021-28153: Fixed an issue where symlink targets would be incorrectly created as empty files (bsc#1183533). glib2-2.62.6-150200.3.9.1.src.rpm glib2-tests-2.62.6-150200.3.9.1.x86_64.rpm libgio-fam-2.62.6-150200.3.9.1.x86_64.rpm libgio-fam-32bit-2.62.6-150200.3.9.1.x86_64.rpm glib2-tests-2.62.6-150200.3.9.1.s390x.rpm libgio-fam-2.62.6-150200.3.9.1.s390x.rpm glib2-tests-2.62.6-150200.3.9.1.ppc64le.rpm libgio-fam-2.62.6-150200.3.9.1.ppc64le.rpm glib2-tests-2.62.6-150200.3.9.1.aarch64.rpm libgio-fam-2.62.6-150200.3.9.1.aarch64.rpm openSUSE-SLE-15.4-2022-1410 moderate SUSE Updates openSUSE-SLE 15.4 This update for go1.18 fixes the following issues: - CVE-2022-24675: Fixed a stack overlow in Decode() in encoding/pem (bsc#1198423). - CVE-2022-28327: Fixed a crash due to refused oversized scalars in generic P-256 (bsc#1198424). - CVE-2022-27536: Fixed a crash in Certificate.Verify in crypto/x509 (bsc#1198427). Bump go1.18 (bsc#1193742) go1.18-1.18.1-150000.1.11.1.src.rpm go1.18-1.18.1-150000.1.11.1.x86_64.rpm go1.18-doc-1.18.1-150000.1.11.1.x86_64.rpm go1.18-race-1.18.1-150000.1.11.1.x86_64.rpm go1.18-1.18.1-150000.1.11.1.s390x.rpm go1.18-doc-1.18.1-150000.1.11.1.s390x.rpm go1.18-1.18.1-150000.1.11.1.ppc64le.rpm go1.18-doc-1.18.1-150000.1.11.1.ppc64le.rpm go1.18-1.18.1-150000.1.11.1.aarch64.rpm go1.18-doc-1.18.1-150000.1.11.1.aarch64.rpm go1.18-race-1.18.1-150000.1.11.1.aarch64.rpm openSUSE-SLE-15.4-2022-1689 important SUSE Updates openSUSE-SLE 15.4 This update for containerd, docker fixes the following issues: - CVE-2022-24769: Fixed incorrect default inheritable capabilities (bsc#1197517). - CVE-2022-23648: Fixed directory traversal issue (bsc#1196441). - CVE-2022-27191: Fixed a crash in a golang.org/x/crypto/ssh server (bsc#1197284). - CVE-2021-43565: Fixed a panic in golang.org/x/crypto by empty plaintext packet (bsc#1193930). Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.5.11-150000.68.1.src.rpm containerd-1.5.11-150000.68.1.x86_64.rpm containerd-ctr-1.5.11-150000.68.1.x86_64.rpm docker-20.10.14_ce-150000.163.1.src.rpm docker-20.10.14_ce-150000.163.1.x86_64.rpm docker-bash-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-fish-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-kubic-20.10.14_ce-150000.163.1.src.rpm docker-kubic-20.10.14_ce-150000.163.1.x86_64.rpm docker-kubic-bash-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-kubic-fish-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.14_ce-150000.163.1.x86_64.rpm docker-kubic-zsh-completion-20.10.14_ce-150000.163.1.noarch.rpm docker-zsh-completion-20.10.14_ce-150000.163.1.noarch.rpm containerd-1.5.11-150000.68.1.s390x.rpm containerd-ctr-1.5.11-150000.68.1.s390x.rpm docker-20.10.14_ce-150000.163.1.s390x.rpm docker-kubic-20.10.14_ce-150000.163.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.14_ce-150000.163.1.s390x.rpm containerd-1.5.11-150000.68.1.ppc64le.rpm containerd-ctr-1.5.11-150000.68.1.ppc64le.rpm docker-20.10.14_ce-150000.163.1.ppc64le.rpm docker-kubic-20.10.14_ce-150000.163.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.14_ce-150000.163.1.ppc64le.rpm containerd-1.5.11-150000.68.1.aarch64.rpm containerd-ctr-1.5.11-150000.68.1.aarch64.rpm docker-20.10.14_ce-150000.163.1.aarch64.rpm docker-kubic-20.10.14_ce-150000.163.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.14_ce-150000.163.1.aarch64.rpm openSUSE-SLE-15.4-2022-2552 important SUSE Updates openSUSE-SLE 15.4 This update for libxml2 fixes the following issues: Update to 2.9.14: - CVE-2022-29824: Fixed integer overflow that could have led to an out-of-bounds write in buf.c (xmlBuf*) and tree.c (xmlBuffer*) (bsc#1199132). Update to version 2.9.13: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes. (bsc#1196490) libxml2-2-2.9.14-150400.5.7.1.x86_64.rpm libxml2-2-32bit-2.9.14-150400.5.7.1.x86_64.rpm libxml2-2.9.14-150400.5.7.1.src.rpm libxml2-devel-2.9.14-150400.5.7.1.x86_64.rpm libxml2-devel-32bit-2.9.14-150400.5.7.1.x86_64.rpm libxml2-doc-2.9.14-150400.5.7.1.noarch.rpm libxml2-python-2.9.14-150400.5.7.1.src.rpm libxml2-tools-2.9.14-150400.5.7.1.x86_64.rpm python3-libxml2-2.9.14-150400.5.7.1.x86_64.rpm libxml2-2-2.9.14-150400.5.7.1.s390x.rpm libxml2-devel-2.9.14-150400.5.7.1.s390x.rpm libxml2-tools-2.9.14-150400.5.7.1.s390x.rpm python3-libxml2-2.9.14-150400.5.7.1.s390x.rpm libxml2-2-2.9.14-150400.5.7.1.ppc64le.rpm libxml2-devel-2.9.14-150400.5.7.1.ppc64le.rpm libxml2-tools-2.9.14-150400.5.7.1.ppc64le.rpm python3-libxml2-2.9.14-150400.5.7.1.ppc64le.rpm libxml2-2-2.9.14-150400.5.7.1.aarch64.rpm libxml2-devel-2.9.14-150400.5.7.1.aarch64.rpm libxml2-tools-2.9.14-150400.5.7.1.aarch64.rpm python3-libxml2-2.9.14-150400.5.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-1431 important SUSE Updates openSUSE-SLE 15.4 This update for webkit2gtk3 fixes the following issues: Update to version 2.36.0 (bsc#1198290): - CVE-2022-22624: Fixed use after free that may lead to arbitrary code execution. - CVE-2022-22628: Fixed use after free that may lead to arbitrary code execution. - CVE-2022-22629: Fixed a buffer overflow that may lead to arbitrary code execution. - CVE-2022-22637: Fixed an unexpected cross-origin behavior due to a logic error. Missing CVE reference for the update to 2.34.6 (bsc#1196133): - CVE-2022-22594: Fixed a cross-origin issue in the IndexDB API. libwebkit2gtk3-lang-2.36.0-150200.32.1.noarch.rpm webkit2gtk3-2.36.0-150200.32.1.src.rpm openSUSE-SLE-15.4-2022-1454 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-pip fixes the following issues: - Add wheel subpackage with the generated wheel for this package (bsc#1176262, CVE-2019-20916). - Make wheel a separate build run to avoid the setuptools/wheel build cycle. - Switch this package to use update-alternatives for all files in %{_bindir} so it doesn't collide with the versions on "the latest" versions of Python interpreter (jsc#SLE-18038, bsc#1195831). python-pip-20.0.2-150100.6.18.1.src.rpm python2-pip-20.0.2-150100.6.18.1.noarch.rpm openSUSE-SLE-15.4-2022-1484 important SUSE Updates openSUSE-SLE 15.4 This update for git fixes the following issues: - Updated to version 2.35.3: - CVE-2022-24765: Fixed a potential command injection via git worktree (bsc#1198234). git-2.35.3-150300.10.12.1.src.rpm git-2.35.3-150300.10.12.1.x86_64.rpm git-arch-2.35.3-150300.10.12.1.x86_64.rpm git-core-2.35.3-150300.10.12.1.x86_64.rpm git-credential-gnome-keyring-2.35.3-150300.10.12.1.x86_64.rpm git-credential-libsecret-2.35.3-150300.10.12.1.x86_64.rpm git-cvs-2.35.3-150300.10.12.1.x86_64.rpm git-daemon-2.35.3-150300.10.12.1.x86_64.rpm git-doc-2.35.3-150300.10.12.1.noarch.rpm git-email-2.35.3-150300.10.12.1.x86_64.rpm git-gui-2.35.3-150300.10.12.1.x86_64.rpm git-p4-2.35.3-150300.10.12.1.x86_64.rpm git-svn-2.35.3-150300.10.12.1.x86_64.rpm git-web-2.35.3-150300.10.12.1.x86_64.rpm gitk-2.35.3-150300.10.12.1.x86_64.rpm perl-Git-2.35.3-150300.10.12.1.x86_64.rpm git-2.35.3-150300.10.12.1.s390x.rpm git-arch-2.35.3-150300.10.12.1.s390x.rpm git-core-2.35.3-150300.10.12.1.s390x.rpm git-credential-gnome-keyring-2.35.3-150300.10.12.1.s390x.rpm git-credential-libsecret-2.35.3-150300.10.12.1.s390x.rpm git-cvs-2.35.3-150300.10.12.1.s390x.rpm git-daemon-2.35.3-150300.10.12.1.s390x.rpm git-email-2.35.3-150300.10.12.1.s390x.rpm git-gui-2.35.3-150300.10.12.1.s390x.rpm git-p4-2.35.3-150300.10.12.1.s390x.rpm git-svn-2.35.3-150300.10.12.1.s390x.rpm git-web-2.35.3-150300.10.12.1.s390x.rpm gitk-2.35.3-150300.10.12.1.s390x.rpm perl-Git-2.35.3-150300.10.12.1.s390x.rpm git-2.35.3-150300.10.12.1.ppc64le.rpm git-arch-2.35.3-150300.10.12.1.ppc64le.rpm git-core-2.35.3-150300.10.12.1.ppc64le.rpm git-credential-gnome-keyring-2.35.3-150300.10.12.1.ppc64le.rpm git-credential-libsecret-2.35.3-150300.10.12.1.ppc64le.rpm git-cvs-2.35.3-150300.10.12.1.ppc64le.rpm git-daemon-2.35.3-150300.10.12.1.ppc64le.rpm git-email-2.35.3-150300.10.12.1.ppc64le.rpm git-gui-2.35.3-150300.10.12.1.ppc64le.rpm git-p4-2.35.3-150300.10.12.1.ppc64le.rpm git-svn-2.35.3-150300.10.12.1.ppc64le.rpm git-web-2.35.3-150300.10.12.1.ppc64le.rpm gitk-2.35.3-150300.10.12.1.ppc64le.rpm perl-Git-2.35.3-150300.10.12.1.ppc64le.rpm git-2.35.3-150300.10.12.1.aarch64.rpm git-arch-2.35.3-150300.10.12.1.aarch64.rpm git-core-2.35.3-150300.10.12.1.aarch64.rpm git-credential-gnome-keyring-2.35.3-150300.10.12.1.aarch64.rpm git-credential-libsecret-2.35.3-150300.10.12.1.aarch64.rpm git-cvs-2.35.3-150300.10.12.1.aarch64.rpm git-daemon-2.35.3-150300.10.12.1.aarch64.rpm git-email-2.35.3-150300.10.12.1.aarch64.rpm git-gui-2.35.3-150300.10.12.1.aarch64.rpm git-p4-2.35.3-150300.10.12.1.aarch64.rpm git-svn-2.35.3-150300.10.12.1.aarch64.rpm git-web-2.35.3-150300.10.12.1.aarch64.rpm gitk-2.35.3-150300.10.12.1.aarch64.rpm perl-Git-2.35.3-150300.10.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-1512 important SUSE Updates openSUSE-SLE 15.4 This update for ruby2.5 fixes the following issues: - CVE-2022-28739: Fixed a buffer overrun in String-to-Float conversion (bsc#1198441). - CVE-2021-41817: Fixed a regular expression denial of service in Date Parsing Methods (bsc#1193035). - CVE-2021-32066: Fixed a StartTLS stripping vulnerability in Net:IMAP (bsc#1188160). - CVE-2021-31810: Fixed a trusting FTP PASV responses vulnerability in Net:FTP (bsc#1188161). - CVE-2021-31799: Fixed a command injection vulnerability in RDoc (bsc#1190375). libruby2_5-2_5-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-2.5.9-150000.4.23.1.src.rpm ruby2.5-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-devel-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-devel-extra-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-doc-2.5.9-150000.4.23.1.x86_64.rpm ruby2.5-doc-ri-2.5.9-150000.4.23.1.noarch.rpm ruby2.5-stdlib-2.5.9-150000.4.23.1.x86_64.rpm libruby2_5-2_5-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-devel-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-devel-extra-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-doc-2.5.9-150000.4.23.1.s390x.rpm ruby2.5-stdlib-2.5.9-150000.4.23.1.s390x.rpm libruby2_5-2_5-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-devel-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-devel-extra-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-doc-2.5.9-150000.4.23.1.ppc64le.rpm ruby2.5-stdlib-2.5.9-150000.4.23.1.ppc64le.rpm libruby2_5-2_5-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-devel-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-devel-extra-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-doc-2.5.9-150000.4.23.1.aarch64.rpm ruby2.5-stdlib-2.5.9-150000.4.23.1.aarch64.rpm openSUSE-SLE-15.4-2022-1513 important SUSE Updates openSUSE-SLE 15.4 This update for java-11-openjdk fixes the following issues: - CVE-2022-21426: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198672). - CVE-2022-21434: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198674). - CVE-2022-21496: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198673). - CVE-2022-21443: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198675). - CVE-2022-21476: Fixed Oracle Java SE compromission via unauthenticated attacker with network access via multiple protocols (bsc#1198671). java-11-openjdk-11.0.15.0-150000.3.80.1.src.rpm java-11-openjdk-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-accessibility-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-demo-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-devel-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-headless-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-javadoc-11.0.15.0-150000.3.80.1.noarch.rpm java-11-openjdk-jmods-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-src-11.0.15.0-150000.3.80.1.x86_64.rpm java-11-openjdk-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-accessibility-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-demo-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-devel-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-headless-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-jmods-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-src-11.0.15.0-150000.3.80.1.s390x.rpm java-11-openjdk-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-demo-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-devel-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-headless-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-jmods-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-src-11.0.15.0-150000.3.80.1.ppc64le.rpm java-11-openjdk-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-accessibility-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-demo-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-devel-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-headless-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-jmods-11.0.15.0-150000.3.80.1.aarch64.rpm java-11-openjdk-src-11.0.15.0-150000.3.80.1.aarch64.rpm openSUSE-SLE-15.4-2022-1479 moderate SUSE Updates openSUSE-SLE 15.4 This update for jasper fixes the following issues: - CVE-2021-3467: Fixed NULL pointer deref in jp2_decode() (bsc#1184757). - CVE-2021-3443: Fixed NULL pointer deref in jp2_decode() (bsc#1184798). - CVE-2021-26927: Fixed NULL pointer deref in jp2_decode() (bsc#1182104). - CVE-2021-26926: Fixed an out of bounds read in jp2_decode() (bsc#1182105). jasper-2.0.14-150000.3.25.1.src.rpm jasper-2.0.14-150000.3.25.1.x86_64.rpm libjasper-devel-2.0.14-150000.3.25.1.x86_64.rpm libjasper4-2.0.14-150000.3.25.1.x86_64.rpm libjasper4-32bit-2.0.14-150000.3.25.1.x86_64.rpm jasper-2.0.14-150000.3.25.1.s390x.rpm libjasper-devel-2.0.14-150000.3.25.1.s390x.rpm libjasper4-2.0.14-150000.3.25.1.s390x.rpm jasper-2.0.14-150000.3.25.1.ppc64le.rpm libjasper-devel-2.0.14-150000.3.25.1.ppc64le.rpm libjasper4-2.0.14-150000.3.25.1.ppc64le.rpm jasper-2.0.14-150000.3.25.1.aarch64.rpm libjasper-devel-2.0.14-150000.3.25.1.aarch64.rpm libjasper4-2.0.14-150000.3.25.1.aarch64.rpm openSUSE-SLE-15.4-2022-1498 moderate SUSE Updates openSUSE-SLE 15.4 This update for daps fixes the following issues: - Stable release DAPS 3.3.1 daps-3.3.1-150300.14.3.2.noarch.rpm daps-3.3.1-150300.14.3.2.src.rpm openSUSE-SLE-15.4-2022-2378 important SUSE Updates openSUSE-SLE 15.4 This update for cifs-utils fixes the following issues: - CVE-2022-27239: Fixed a buffer overflow in the command line ip option (bsc#1197216). cifs-utils-6.15-150400.3.6.1.src.rpm cifs-utils-6.15-150400.3.6.1.x86_64.rpm cifs-utils-devel-6.15-150400.3.6.1.x86_64.rpm pam_cifscreds-6.15-150400.3.6.1.x86_64.rpm cifs-utils-6.15-150400.3.6.1.s390x.rpm cifs-utils-devel-6.15-150400.3.6.1.s390x.rpm pam_cifscreds-6.15-150400.3.6.1.s390x.rpm cifs-utils-6.15-150400.3.6.1.ppc64le.rpm cifs-utils-devel-6.15-150400.3.6.1.ppc64le.rpm pam_cifscreds-6.15-150400.3.6.1.ppc64le.rpm cifs-utils-6.15-150400.3.6.1.aarch64.rpm cifs-utils-devel-6.15-150400.3.6.1.aarch64.rpm pam_cifscreds-6.15-150400.3.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-2307 moderate SUSE Updates openSUSE-SLE 15.4 This update for ldb, samba fixes the following issues: ldb was updated to version 2.4.2 to fix: + Fix for CVE-2021-3670, ensure that the LDB request has not timed out during filter processing as the LDAP server MaxQueryDuration is otherwise not honoured. samba was updated to fix: - Revert NIS support removal; (bsc#1199247); - Use requires_eq macro to require the libldb2 version available at samba-dsdb-modules build time; (bsc#1199362); - Add missing samba-client requirement to samba-winbind package; (bsc#1198255); Update to 4.15.7 * Share and server swapped in smbget password prompt; (bso#14831); * Durable handles won't reconnect if the leased file is written to; (bso#15022); * rmdir silently fails if directory contains unreadable files and hide unreadable is yes; (bso#15023); * SMB2_CLOSE_FLAGS_FULL_INFORMATION fails to return information on renamed file handle; (bso#15038); * vfs_shadow_copy2 breaks "smbd async dosmode" sync fallback; (bso#14957); * shadow_copy2 fails listing snapshotted dirs with shadow:fixinodes; (bso#15035); * PAM Kerberos authentication incorrectly fails with a clock skew error; (bso#15046); * username map - samba erroneously applies unix group memberships to user account entries; (bso#15041); * NT_STATUS_ACCESS_DENIED translates into EPERM instead of EACCES in SMBC_server_internal; (bso#14983); * Simple bind doesn't work against an RODC (with non-preloaded users); (bso#13879); * Crash of winbind on RODC; (bso#14641); * uncached logon on RODC always fails once; (bso#14865); * KVNO off by 100000; (bso#14951); * LDAP simple binds should honour "old password allowed period"; (bso#15001); * wbinfo -a doesn't work reliable with upn names; (bso#15003); * Simple bind doesn't work against an RODC (with non-preloaded users); (bso#13879); * Uninitialized litemask in variable in vfs_gpfs module; (bso#15027); * Regression: create krb5 conf = yes doesn't work with a single KDC; (bso#15016); - Add provides to samba-client-libs package to fix upgrades from previous versions; (bsc#1197995); - Add missing samba-libs requirement to samba-winbind package; (bsc#1198255); Update to 4.15.6 * Renaming file on DFS root fails with NT_STATUS_OBJECT_PATH_NOT_FOUND; (bso#14169); * Samba does not response STATUS_INVALID_PARAMETER when opening 2 objects with same lease key; (bso#14737); * NT error code is not set when overwriting a file during rename in libsmbclient; (bso#14938); * Fix ldap simple bind with TLS auditing; (bso#14996); * net ads info shows LDAP Server: 0.0.0.0 depending on contacted server; (bso#14674); * Problem when winbind renews Kerberos; (bso#14979); (bsc#1196224); * pam_winbind will not allow gdm login if password about to expire; (bso#8691); * virusfilter_vfs_openat: Not scanned: Directory or special file; (bso#14971); * DFS fix for AIX broken; (bso#13631); * Solaris and AIX acl modules: wrong function arguments; (bso#14974); * Function aixacl_sys_acl_get_file not declared / coredump; (bso#7239); * Regression: Samba 4.15.2 on macOS segfaults intermittently during strcpy in tdbsam_getsampwnam; (bso#14900); * Fix a use-after-free in SMB1 server; (bso#14989); * smb2_signing_decrypt_pdu() may not decrypt with gnutls_aead_cipher_decrypt() from gnutls before 3.5.2; (bso#14968); * Changing the machine password against an RODC likely destroys the domain join; (bso#14984); * authsam_make_user_info_dc() steals memory from its struct ldb_message *msg argument; (bso#14993); * Use Heimdal 8.0 (pre) rather than an earlier snapshot; (bso#14995); * Samba autorid fails to map AD users if id rangesize fits in the id range only once; (bso#14967); Other SUSE fixes: - Fix mismatched version of libldb2; (bsc#1196788). - Drop obsolete SuSEfirewall2 service files. - Drop obsolete Samba fsrvp v0->v1 state upgrade functionality; (bsc#1080338). - Fix ntlm authentications with "winbind use default domain = yes"; (bso#13126); (bsc#1173429); (bsc#1196308). - Fix samba-ad-dc status warning notification message by disabling systemd notifications in bgqd; (bsc#1195896); (bso#14947). - libldb version mismatch in Samba dsdb component; (bsc#1118508); ctdb-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm ctdb-pcp-pmda-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm ldb-2.4.2-150400.4.3.11.src.rpm ldb-tools-2.4.2-150400.4.3.11.x86_64.rpm libldb-devel-2.4.2-150400.4.3.11.x86_64.rpm libldb2-2.4.2-150400.4.3.11.x86_64.rpm libldb2-32bit-2.4.2-150400.4.3.11.x86_64.rpm libsamba-policy-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm libsamba-policy-python3-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm libsamba-policy0-python3-32bit-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm libsamba-policy0-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm python3-ldb-2.4.2-150400.4.3.11.x86_64.rpm python3-ldb-32bit-2.4.2-150400.4.3.11.x86_64.rpm python3-ldb-devel-2.4.2-150400.4.3.11.x86_64.rpm samba-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.src.rpm samba-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-ad-dc-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-ad-dc-libs-32bit-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-ad-dc-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-ceph-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-client-32bit-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-client-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-client-libs-32bit-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-client-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-devel-32bit-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-doc-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.noarch.rpm samba-dsdb-modules-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-gpupdate-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-ldb-ldap-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-libs-32bit-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-libs-python3-32bit-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-libs-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-test-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-tool-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-winbind-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-winbind-libs-32bit-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm samba-winbind-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.x86_64.rpm ctdb-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm ctdb-pcp-pmda-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm ldb-tools-2.4.2-150400.4.3.11.s390x.rpm libldb-devel-2.4.2-150400.4.3.11.s390x.rpm libldb2-2.4.2-150400.4.3.11.s390x.rpm libsamba-policy-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm libsamba-policy-python3-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm libsamba-policy0-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm python3-ldb-2.4.2-150400.4.3.11.s390x.rpm python3-ldb-devel-2.4.2-150400.4.3.11.s390x.rpm samba-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-ad-dc-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-ad-dc-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-client-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-client-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-dsdb-modules-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-gpupdate-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-ldb-ldap-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-libs-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-test-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-tool-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-winbind-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm samba-winbind-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.s390x.rpm ctdb-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm ctdb-pcp-pmda-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm ldb-tools-2.4.2-150400.4.3.11.ppc64le.rpm libldb-devel-2.4.2-150400.4.3.11.ppc64le.rpm libldb2-2.4.2-150400.4.3.11.ppc64le.rpm libsamba-policy-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm libsamba-policy-python3-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm libsamba-policy0-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm python3-ldb-2.4.2-150400.4.3.11.ppc64le.rpm python3-ldb-devel-2.4.2-150400.4.3.11.ppc64le.rpm samba-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-ad-dc-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-ad-dc-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-client-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-client-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-dsdb-modules-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-gpupdate-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-ldb-ldap-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-libs-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-test-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-tool-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-winbind-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm samba-winbind-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.ppc64le.rpm ctdb-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm ctdb-pcp-pmda-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm ldb-tools-2.4.2-150400.4.3.11.aarch64.rpm libldb-devel-2.4.2-150400.4.3.11.aarch64.rpm libldb2-2.4.2-150400.4.3.11.aarch64.rpm libsamba-policy-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm libsamba-policy-python3-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm libsamba-policy0-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm python3-ldb-2.4.2-150400.4.3.11.aarch64.rpm python3-ldb-devel-2.4.2-150400.4.3.11.aarch64.rpm samba-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-ad-dc-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-ad-dc-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-ceph-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-client-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-client-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-devel-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-dsdb-modules-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-gpupdate-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-ldb-ldap-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-libs-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-python3-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-test-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-tool-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-winbind-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm samba-winbind-libs-4.15.7+git.376.dd43aca9ab2-150400.3.5.3.aarch64.rpm openSUSE-SLE-15.4-2022-1515 important SUSE Updates openSUSE-SLE 15.4 This update for rubygem-puma fixes the following issues: rubygem-puma was updated to version 4.3.11: * CVE-2021-29509: Adjusted an incomplete fix for allows Denial of Service (DoS) (bsc#1188527) * CVE-2021-41136: Fixed request smuggling if HTTP header value contains the LF character (bsc#1191681) * CVE-2022-23634: Fixed information leak between requests (bsc#1196222) ruby2.5-rubygem-puma-4.3.11-150000.3.6.2.x86_64.rpm ruby2.5-rubygem-puma-doc-4.3.11-150000.3.6.2.x86_64.rpm rubygem-puma-4.3.11-150000.3.6.2.src.rpm ruby2.5-rubygem-puma-4.3.11-150000.3.6.2.s390x.rpm ruby2.5-rubygem-puma-doc-4.3.11-150000.3.6.2.s390x.rpm ruby2.5-rubygem-puma-4.3.11-150000.3.6.2.ppc64le.rpm ruby2.5-rubygem-puma-doc-4.3.11-150000.3.6.2.ppc64le.rpm ruby2.5-rubygem-puma-4.3.11-150000.3.6.2.aarch64.rpm ruby2.5-rubygem-puma-doc-4.3.11-150000.3.6.2.aarch64.rpm openSUSE-SLE-15.4-2022-1446 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-paramiko fixes the following issues: - CVE-2022-24302: Fixed a race condition between creation and chmod when writing private keys. (bsc#1197279) python-paramiko-2.4.2-150100.6.12.1.src.rpm python-paramiko-doc-2.4.2-150100.6.12.1.noarch.rpm python2-paramiko-2.4.2-150100.6.12.1.noarch.rpm python3-paramiko-2.4.2-150100.6.12.1.noarch.rpm openSUSE-SLE-15.4-2022-1435 important SUSE Updates openSUSE-SLE 15.4 This update for firewalld, golang-github-prometheus-prometheus fixes the following issues: Security fixes for golang-github-prometheus-prometheus: - CVE-2022-21698: Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods (bsc#1196338). Other non security changes for golang-github-prometheus-prometheus: - Build `firewalld-prometheus-config` only for SUSE Linux Enterprise 15, 15-SP1 and 15-SP2, and require `firewalld`. - Only recommends `firewalld-prometheus-config` as prometheus does not require it to run. - Create `firewalld-prometheus-config` subpackage (bsc#1197042, jsc#SLE-24373, jsc#SLE-24374, jsc#SLE-24375) Other non security changes for firewalld: - Provide dummy `firewalld-prometheus-config` package (bsc#1197042) golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.src.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.x86_64.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.s390x.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.ppc64le.rpm golang-github-prometheus-prometheus-2.32.1-150100.4.9.2.aarch64.rpm openSUSE-SLE-15.4-2022-1868 low SUSE Updates openSUSE-SLE 15.4 This update for openwsman fixes the following issue: - fix FTBFS with newer libcurl in SLE 15-SP4 (bsc#1197792) libwsman-devel-2.6.7-150000.3.12.2.x86_64.rpm libwsman3-2.6.7-150000.3.12.2.x86_64.rpm libwsman_clientpp-devel-2.6.7-150000.3.12.2.x86_64.rpm libwsman_clientpp1-2.6.7-150000.3.12.2.x86_64.rpm openwsman-2.6.7-150000.3.12.2.src.rpm openwsman-java-2.6.7-150000.3.12.2.x86_64.rpm openwsman-perl-2.6.7-150000.3.12.2.x86_64.rpm openwsman-ruby-2.6.7-150000.3.12.2.x86_64.rpm openwsman-ruby-docs-2.6.7-150000.3.12.2.x86_64.rpm openwsman-server-2.6.7-150000.3.12.2.x86_64.rpm openwsman-server-plugin-ruby-2.6.7-150000.3.12.2.x86_64.rpm python3-openwsman-2.6.7-150000.3.12.2.x86_64.rpm winrs-2.6.7-150000.3.12.2.x86_64.rpm libwsman-devel-2.6.7-150000.3.12.2.s390x.rpm libwsman3-2.6.7-150000.3.12.2.s390x.rpm libwsman_clientpp-devel-2.6.7-150000.3.12.2.s390x.rpm libwsman_clientpp1-2.6.7-150000.3.12.2.s390x.rpm openwsman-java-2.6.7-150000.3.12.2.s390x.rpm openwsman-perl-2.6.7-150000.3.12.2.s390x.rpm openwsman-ruby-2.6.7-150000.3.12.2.s390x.rpm openwsman-ruby-docs-2.6.7-150000.3.12.2.s390x.rpm openwsman-server-2.6.7-150000.3.12.2.s390x.rpm openwsman-server-plugin-ruby-2.6.7-150000.3.12.2.s390x.rpm python3-openwsman-2.6.7-150000.3.12.2.s390x.rpm winrs-2.6.7-150000.3.12.2.s390x.rpm libwsman-devel-2.6.7-150000.3.12.2.ppc64le.rpm libwsman3-2.6.7-150000.3.12.2.ppc64le.rpm libwsman_clientpp-devel-2.6.7-150000.3.12.2.ppc64le.rpm libwsman_clientpp1-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-java-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-perl-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-ruby-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-ruby-docs-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-server-2.6.7-150000.3.12.2.ppc64le.rpm openwsman-server-plugin-ruby-2.6.7-150000.3.12.2.ppc64le.rpm python3-openwsman-2.6.7-150000.3.12.2.ppc64le.rpm winrs-2.6.7-150000.3.12.2.ppc64le.rpm libwsman-devel-2.6.7-150000.3.12.2.aarch64.rpm libwsman3-2.6.7-150000.3.12.2.aarch64.rpm libwsman_clientpp-devel-2.6.7-150000.3.12.2.aarch64.rpm libwsman_clientpp1-2.6.7-150000.3.12.2.aarch64.rpm openwsman-java-2.6.7-150000.3.12.2.aarch64.rpm openwsman-perl-2.6.7-150000.3.12.2.aarch64.rpm openwsman-ruby-2.6.7-150000.3.12.2.aarch64.rpm openwsman-ruby-docs-2.6.7-150000.3.12.2.aarch64.rpm openwsman-server-2.6.7-150000.3.12.2.aarch64.rpm openwsman-server-plugin-ruby-2.6.7-150000.3.12.2.aarch64.rpm python3-openwsman-2.6.7-150000.3.12.2.aarch64.rpm winrs-2.6.7-150000.3.12.2.aarch64.rpm openSUSE-SLE-15.4-2022-1477 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-Twisted fixes the following issues: - CVE-2022-24801: Fixed to not be as lenient as earlier HTTP/1.1 RFCs to prevent HTTP request smuggling. (bsc#1198086) python-Twisted-19.10.0-150200.3.9.1.src.rpm python2-Twisted-19.10.0-150200.3.9.1.x86_64.rpm python2-Twisted-19.10.0-150200.3.9.1.s390x.rpm python2-Twisted-19.10.0-150200.3.9.1.ppc64le.rpm python2-Twisted-19.10.0-150200.3.9.1.aarch64.rpm openSUSE-SLE-15.4-2022-1743 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: tbb libtbb2-2019_20190605-150200.3.2.1.x86_64.rpm libtbbmalloc2-2019_20190605-150200.3.2.1.x86_64.rpm python3-tbb-2019_20190605-150200.3.2.1.x86_64.rpm tbb-2019_20190605-150200.3.2.1.src.rpm tbb-devel-2019_20190605-150200.3.2.1.x86_64.rpm libtbb2-2019_20190605-150200.3.2.1.s390x.rpm libtbbmalloc2-2019_20190605-150200.3.2.1.s390x.rpm python3-tbb-2019_20190605-150200.3.2.1.s390x.rpm tbb-devel-2019_20190605-150200.3.2.1.s390x.rpm libtbb2-2019_20190605-150200.3.2.1.ppc64le.rpm libtbbmalloc2-2019_20190605-150200.3.2.1.ppc64le.rpm python3-tbb-2019_20190605-150200.3.2.1.ppc64le.rpm tbb-devel-2019_20190605-150200.3.2.1.ppc64le.rpm libtbb2-2019_20190605-150200.3.2.1.aarch64.rpm libtbbmalloc2-2019_20190605-150200.3.2.1.aarch64.rpm python3-tbb-2019_20190605-150200.3.2.1.aarch64.rpm tbb-devel-2019_20190605-150200.3.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-2358 moderate SUSE Updates openSUSE-SLE 15.4 This update for augeas fixes the following issues: - Fix handling of keywords in new sysctl.conf (bsc#1197443) augeas-1.12.0-150400.3.3.6.src.rpm augeas-1.12.0-150400.3.3.6.x86_64.rpm augeas-devel-1.12.0-150400.3.3.6.x86_64.rpm augeas-devel-32bit-1.12.0-150400.3.3.6.x86_64.rpm augeas-lense-tests-1.12.0-150400.3.3.6.x86_64.rpm augeas-lenses-1.12.0-150400.3.3.6.x86_64.rpm libaugeas0-1.12.0-150400.3.3.6.x86_64.rpm libaugeas0-32bit-1.12.0-150400.3.3.6.x86_64.rpm augeas-1.12.0-150400.3.3.6.s390x.rpm augeas-devel-1.12.0-150400.3.3.6.s390x.rpm augeas-lense-tests-1.12.0-150400.3.3.6.s390x.rpm augeas-lenses-1.12.0-150400.3.3.6.s390x.rpm libaugeas0-1.12.0-150400.3.3.6.s390x.rpm augeas-1.12.0-150400.3.3.6.ppc64le.rpm augeas-devel-1.12.0-150400.3.3.6.ppc64le.rpm augeas-lense-tests-1.12.0-150400.3.3.6.ppc64le.rpm augeas-lenses-1.12.0-150400.3.3.6.ppc64le.rpm libaugeas0-1.12.0-150400.3.3.6.ppc64le.rpm augeas-1.12.0-150400.3.3.6.aarch64.rpm augeas-devel-1.12.0-150400.3.3.6.aarch64.rpm augeas-lense-tests-1.12.0-150400.3.3.6.aarch64.rpm augeas-lenses-1.12.0-150400.3.3.6.aarch64.rpm libaugeas0-1.12.0-150400.3.3.6.aarch64.rpm openSUSE-SLE-15.4-2022-2016 low SUSE Updates openSUSE-SLE 15.4 This update for vulkan fixes the following issue: - Disable RPATH to make the inherited package run on SLE-15-SP4. (bsc#1197862) vulkan-1.0.65.0-150000.5.3.1.src.rpm vulkan-1.0.65.0-150000.5.3.1.x86_64.rpm vulkan-devel-32bit-1.0.65.0-150000.5.3.1.x86_64.rpm vulkan-1.0.65.0-150000.5.3.1.s390x.rpm vulkan-1.0.65.0-150000.5.3.1.ppc64le.rpm vulkan-1.0.65.0-150000.5.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1843 moderate SUSE Updates openSUSE-SLE 15.4 This update for suse-build-key fixes the following issues: - still ship the old ptf key in the documentation directory (bsc#1198504) suse-build-key-12.0-150000.8.25.1.noarch.rpm suse-build-key-12.0-150000.8.25.1.src.rpm openSUSE-SLE-15.4-2022-2017 low SUSE Updates openSUSE-SLE 15.4 This update for icewm fixes the following issues: - A later glib2 update will cause icewm fail to build. (bsc#1197729) icewm-1.4.2-150000.7.15.1.src.rpm icewm-1.4.2-150000.7.15.1.x86_64.rpm icewm-config-upstream-1.4.2-150000.7.15.1.noarch.rpm icewm-default-1.4.2-150000.7.15.1.x86_64.rpm icewm-lang-1.4.2-150000.7.15.1.noarch.rpm icewm-lite-1.4.2-150000.7.15.1.x86_64.rpm icewm-1.4.2-150000.7.15.1.s390x.rpm icewm-default-1.4.2-150000.7.15.1.s390x.rpm icewm-lite-1.4.2-150000.7.15.1.s390x.rpm icewm-1.4.2-150000.7.15.1.ppc64le.rpm icewm-default-1.4.2-150000.7.15.1.ppc64le.rpm icewm-lite-1.4.2-150000.7.15.1.ppc64le.rpm icewm-1.4.2-150000.7.15.1.aarch64.rpm icewm-default-1.4.2-150000.7.15.1.aarch64.rpm icewm-lite-1.4.2-150000.7.15.1.aarch64.rpm openSUSE-SLE-15.4-2022-1500 low SUSE Updates openSUSE-SLE 15.4 This update for jetty-artifact-remote-resources, jboss-logging fixes the following issues: - Do not require mvn(log4j:log4j) for build. (bsc#1197642) - Do not build against the log4j12 packages. - Update jboss-logging to 3.4.1 jboss-logging-3.4.1-150200.3.3.1.noarch.rpm jboss-logging-3.4.1-150200.3.3.1.src.rpm jboss-logging-javadoc-3.4.1-150200.3.3.1.noarch.rpm jetty-artifact-remote-resources-1.2-150200.3.3.1.noarch.rpm jetty-artifact-remote-resources-1.2-150200.3.3.1.src.rpm openSUSE-SLE-15.4-2022-1837 moderate SUSE Updates openSUSE-SLE 15.4 This update for suse-hpc, trilinos fixes the following issues: - Update to version 0.5.20211210 - Add an 'Obsoletes:/Provides:' for a bogus package name that was released to SLE/Leap by accident. - Tie %python_flavor to python3 on Leap/SLE 15-SP3 (bsc#1197781). - Lower disk and memory constraints to match actual requirements. - Add openmpi4 non-HPC flavor libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.6.1.x86_64.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.6.1.x86_64.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.6.1.x86_64.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.6.2.x86_64.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.6.1.x86_64.rpm trilinos-gnu-mpich-hpc-devel-13.2.0-150300.3.6.1.noarch.rpm trilinos-gnu-mvapich2-hpc-devel-13.2.0-150300.3.6.1.noarch.rpm trilinos-gnu-openmpi2-hpc-devel-13.2.0-150300.3.6.1.noarch.rpm trilinos-gnu-openmpi3-hpc-devel-13.2.0-150300.3.6.2.noarch.rpm trilinos-gnu-openmpi4-hpc-devel-13.2.0-150300.3.6.1.noarch.rpm trilinos-hpc-doc-13.2.0-150300.3.6.1.noarch.rpm trilinos_13_2_0-gnu-mpich-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-gnu-mpich-hpc-devel-13.2.0-150300.3.6.1.x86_64.rpm trilinos_13_2_0-gnu-mvapich2-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-gnu-mvapich2-hpc-devel-13.2.0-150300.3.6.1.x86_64.rpm trilinos_13_2_0-gnu-openmpi2-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-gnu-openmpi2-hpc-devel-13.2.0-150300.3.6.1.x86_64.rpm trilinos_13_2_0-gnu-openmpi3-hpc-13.2.0-150300.3.6.2.src.rpm trilinos_13_2_0-gnu-openmpi3-hpc-devel-13.2.0-150300.3.6.2.x86_64.rpm trilinos_13_2_0-gnu-openmpi4-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-gnu-openmpi4-hpc-devel-13.2.0-150300.3.6.1.x86_64.rpm trilinos_13_2_0-hpc-13.2.0-150300.3.6.1.src.rpm trilinos_13_2_0-hpc-doc-13.2.0-150300.3.6.1.noarch.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.6.1.ppc64le.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.6.1.ppc64le.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.6.1.ppc64le.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.6.2.ppc64le.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.6.1.ppc64le.rpm trilinos_13_2_0-gnu-mpich-hpc-devel-13.2.0-150300.3.6.1.ppc64le.rpm trilinos_13_2_0-gnu-mvapich2-hpc-devel-13.2.0-150300.3.6.1.ppc64le.rpm trilinos_13_2_0-gnu-openmpi2-hpc-devel-13.2.0-150300.3.6.1.ppc64le.rpm trilinos_13_2_0-gnu-openmpi3-hpc-devel-13.2.0-150300.3.6.2.ppc64le.rpm trilinos_13_2_0-gnu-openmpi4-hpc-devel-13.2.0-150300.3.6.1.ppc64le.rpm libtrilinos-gnu-mpich-hpc-13.2.0-150300.3.6.1.aarch64.rpm libtrilinos-gnu-mvapich2-hpc-13.2.0-150300.3.6.1.aarch64.rpm libtrilinos-gnu-openmpi2-hpc-13.2.0-150300.3.6.1.aarch64.rpm libtrilinos-gnu-openmpi3-hpc-13.2.0-150300.3.6.2.aarch64.rpm libtrilinos-gnu-openmpi4-hpc-13.2.0-150300.3.6.1.aarch64.rpm trilinos_13_2_0-gnu-mpich-hpc-devel-13.2.0-150300.3.6.1.aarch64.rpm trilinos_13_2_0-gnu-mvapich2-hpc-devel-13.2.0-150300.3.6.1.aarch64.rpm trilinos_13_2_0-gnu-openmpi2-hpc-devel-13.2.0-150300.3.6.1.aarch64.rpm trilinos_13_2_0-gnu-openmpi3-hpc-devel-13.2.0-150300.3.6.2.aarch64.rpm trilinos_13_2_0-gnu-openmpi4-hpc-devel-13.2.0-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1510 important SUSE Updates openSUSE-SLE 15.4 This update for amazon-ssm-agent fixes the following issues: - CVE-2022-29527: Fixed unsafe file creation mode of ssm-agent-users sudoer file (bsc#1196556). Update to version 3.1.1260.0 amazon-ssm-agent-3.1.1260.0-150000.5.9.2.src.rpm amazon-ssm-agent-3.1.1260.0-150000.5.9.2.x86_64.rpm amazon-ssm-agent-3.1.1260.0-150000.5.9.2.aarch64.rpm openSUSE-SLE-15.4-2022-2018 moderate SUSE Updates openSUSE-SLE 15.4 This update for build fixes the following issues: - Update SLE 15 SP4 and Leap 15.4 build config (bsc#1198740) - Use aio=io_uring if available (bsc#1197699) (build#814) - Add arm32 and loongarch definitions (build#808) - Add compatibility code to initvm - Use upstream way of binfmt argv0 preservation (bsc#1197298) (build#809) - Add template support for Build::SimpleJSON - minor documentation updates - docker: Add support for --root and --installroot global zypper options - debian cross build support via multi-arch (obsoleting cbinstall remnants) - Tumbleweed config synced - documentation updates - smaller bugfixes - regression fix from last release, avoid calling shutdown handler twice when building in vm Changes: * pbuild: add --debug option for building debuginfo packages * rename --debug to --debuginfo to be more exact. * docu: add buildflags:ccachtype and OBS-DoNotAppendProfileToContainername Fixes: * Avoid shutdown of host when using nspawn Features: * download_assets: add --outdir --clean --show-dir-srcmd5 parameters support multiple --arch arguments * asset support for golang modules * add support for LXC 4. * new shortcuts for rpm building: --rpm-noprep, --rpm-build-in-place, --rpm-build-in-place-noprep for building directly from upstream git repositories without any tar ball. * mount securityfs if not mounted by kernel-obs-build * collect steal time during VM builds in statistics. * declare armv8 and armv7 compatible * support OBS Debuginfo build flag for Red Hat variants * setup rpmmacros for all build types and earlier * Kiwi builds - Always append the profile name to kiwi container names * Dockerfile build - improve registry handling - initial Dockerfile.dapper support - support 'curl' commands in docker builds - strip known domains from container name - support container alias names * introducing --verbose option, currently only showing kernel messages. * support cpio creation for special files * handle QEMU >= 6.0 on POWER9 Changes: * Use git+https instead of git-https as url schema * add oops=panic kernel parameter * Updated distribution configurations (esp. Leap 15.4 and Tumbleweed) * new preinstallimages are using zstd by default * source subdirectories are used in git managed sources Minor improvements * change sccache default size limit * speed up improvements in - vm shutdown - rpm preinstall - avoid calling external commands in a loop - using zstd for preinstallimages - no more unpacking progress indicators to avoid slowdown - virtio handling * fixed vm-type=qemu * multiple smaller bugfixes and speed improvements - renamed tumbleweed config to tumbleweed - synced tumbleweed config changes - initial config for Leap 15.4 - docker build environment * Use /.dockerenv as marker for docker environment * support privileged docker/nspawn mode * move --cap-add=SYS_ADMIN --cap-add=MKNOD to privileged mode * initvm: do not attempt to mount /proc and binfmt_misc handler if present - pbuild * rename --hide-timestamps to --no-timestamps * reuse options from older builds * revised --single build mode * support ccache - Unify ccache and sccache handling Features: - deb zstd support (for Ubuntu 21.10) - support KVM builds with enabled network - modulemd support improvements - Support a "Distmacro" directive for recipe parser-only macros Fixes: - Load selinux policy when using a preinstall image - Use the pax format for preinstall images if bsdtar is available - Add %riscv to std_macros - Fix combine_configs dropping newlines pbuild: - Implement SCC calculation - Improve --shell-after-build and --single options - initial documentation of pbuild - Bugfixes - Fix unpacking of deb/arch archives without bsdtar - fixed regression in multiline macro evaluation from 20th August release Features: - cross architecture build support (for rpm and kiwi) - modulemd meta data support - pbuild to build multiple source packages (initial release, can not be considered stable yet) - supporting external asset stores for source files - support multiple post build checks placed in the directory: /usr/lib/build/post-build-checks/ - sccache support - New --shell-after-fail option - allow to disable squashfs in SimpleImage - supporting aarch64 kernel on armv?l distributions - kiwi: Add support for OBS-RemoteAsset and OBS-CopyToImage directives - container: FROM scratch build support Improvements: - supporting kvm builds as non-root user - Extend stage selection support for rpm builds - various distribution config updates - Support "BuildFlags: cumulaterpms" (was done only via suse_version before) Fixes: - container builds * support newer podman versions * supporting multiple containers for multi-stage builds - Supporting URL's in Flatpak manifests - epoch handling in debian builds - catch more cases where a failed build is marked as host error - fixing wrong status reporting when a job got killed - hugetlbfs handling fixes - try mounting selinuxfs in VM - Also create the /sys dir when preinstalling (to satisfy dracut) - various XML parser fixes - and many minor ones build-20220422-150200.9.1.noarch.rpm build-20220422-150200.9.1.src.rpm build-initvm-x86_64-20220422-150200.9.1.noarch.rpm build-mkbaselibs-20220422-150200.9.1.noarch.rpm build-mkdrpms-20220422-150200.9.1.noarch.rpm build-initvm-s390x-20220422-150200.9.1.noarch.rpm build-initvm-powerpc64le-20220422-150200.9.1.noarch.rpm build-initvm-aarch64-20220422-150200.9.1.noarch.rpm openSUSE-SLE-15.4-2022-1465 important SUSE Updates openSUSE-SLE 15.4 This update for libslirp fixes the following issues: - CVE-2021-3592: Fixed invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364). - CVE-2021-3594: Fixed invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367). - CVE-2021-3595: Fixed invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366). - Fix a dhcp regression [bsc#1198773] libslirp-4.3.1-150300.2.7.1.src.rpm libslirp-devel-4.3.1-150300.2.7.1.x86_64.rpm libslirp0-4.3.1-150300.2.7.1.x86_64.rpm libslirp-devel-4.3.1-150300.2.7.1.s390x.rpm libslirp0-4.3.1-150300.2.7.1.s390x.rpm libslirp-devel-4.3.1-150300.2.7.1.ppc64le.rpm libslirp0-4.3.1-150300.2.7.1.ppc64le.rpm libslirp-devel-4.3.1-150300.2.7.1.aarch64.rpm libslirp0-4.3.1-150300.2.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-1625 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-python3-saml fixes the following issues: - Update expiry dates for responses. (bsc#1197846) python-python3-saml-1.7.0-150200.3.3.2.src.rpm python2-python3-saml-1.7.0-150200.3.3.2.noarch.rpm python3-python3-saml-1.7.0-150200.3.3.2.noarch.rpm openSUSE-SLE-15.4-2022-1876 low SUSE Updates openSUSE-SLE 15.4 This update for csync fixes the following issues: - Detect libssh version. (bsc#1197711) csync-0.50.0-150000.3.8.1.src.rpm csync-0.50.0-150000.3.8.1.x86_64.rpm libcsync-devel-0.50.0-150000.3.8.1.x86_64.rpm libcsync-devel-doc-0.50.0-150000.3.8.1.x86_64.rpm libcsync-doc-0.50.0-150000.3.8.1.x86_64.rpm libcsync-plugin-owncloud-0.50.0-150000.3.8.1.x86_64.rpm libcsync-plugin-sftp-0.50.0-150000.3.8.1.x86_64.rpm libcsync-plugin-smb-0.50.0-150000.3.8.1.x86_64.rpm libcsync0-0.50.0-150000.3.8.1.x86_64.rpm libcsync0-32bit-0.50.0-150000.3.8.1.x86_64.rpm csync-0.50.0-150000.3.8.1.s390x.rpm libcsync-devel-0.50.0-150000.3.8.1.s390x.rpm libcsync-devel-doc-0.50.0-150000.3.8.1.s390x.rpm libcsync-doc-0.50.0-150000.3.8.1.s390x.rpm libcsync-plugin-owncloud-0.50.0-150000.3.8.1.s390x.rpm libcsync-plugin-sftp-0.50.0-150000.3.8.1.s390x.rpm libcsync-plugin-smb-0.50.0-150000.3.8.1.s390x.rpm libcsync0-0.50.0-150000.3.8.1.s390x.rpm csync-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-devel-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-devel-doc-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-doc-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-plugin-owncloud-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-plugin-sftp-0.50.0-150000.3.8.1.ppc64le.rpm libcsync-plugin-smb-0.50.0-150000.3.8.1.ppc64le.rpm libcsync0-0.50.0-150000.3.8.1.ppc64le.rpm csync-0.50.0-150000.3.8.1.aarch64.rpm libcsync-devel-0.50.0-150000.3.8.1.aarch64.rpm libcsync-devel-doc-0.50.0-150000.3.8.1.aarch64.rpm libcsync-doc-0.50.0-150000.3.8.1.aarch64.rpm libcsync-plugin-owncloud-0.50.0-150000.3.8.1.aarch64.rpm libcsync-plugin-sftp-0.50.0-150000.3.8.1.aarch64.rpm libcsync-plugin-smb-0.50.0-150000.3.8.1.aarch64.rpm libcsync0-0.50.0-150000.3.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-1509 moderate SUSE Updates openSUSE-SLE 15.4 This update for pcp fixes the following issues: - CVE-2020-8025: Fixed outdated entries in permissions profiles for /var/lib/pcp/tmp/* (bsc#1171883). pcp-3.11.9-150000.5.14.1.src.rpm pcp-pmda-kvm-3.11.9-150000.5.14.1.x86_64.rpm pcp-pmda-postgresql-3.11.9-150000.5.14.1.x86_64.rpm python-pcp-3.11.9-150000.5.14.1.x86_64.rpm pcp-pmda-kvm-3.11.9-150000.5.14.1.s390x.rpm pcp-pmda-postgresql-3.11.9-150000.5.14.1.s390x.rpm python-pcp-3.11.9-150000.5.14.1.s390x.rpm pcp-pmda-kvm-3.11.9-150000.5.14.1.ppc64le.rpm pcp-pmda-postgresql-3.11.9-150000.5.14.1.ppc64le.rpm python-pcp-3.11.9-150000.5.14.1.ppc64le.rpm pcp-pmda-kvm-3.11.9-150000.5.14.1.aarch64.rpm pcp-pmda-postgresql-3.11.9-150000.5.14.1.aarch64.rpm python-pcp-3.11.9-150000.5.14.1.aarch64.rpm openSUSE-SLE-15.4-2022-1462 important SUSE Updates openSUSE-SLE 15.4 This update for nodejs14 fixes the following issues: - CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). - CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247). - CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283). - CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819). corepack14-14.19.1-150200.15.31.1.x86_64.rpm nodejs14-14.19.1-150200.15.31.1.src.rpm nodejs14-14.19.1-150200.15.31.1.x86_64.rpm nodejs14-devel-14.19.1-150200.15.31.1.x86_64.rpm nodejs14-docs-14.19.1-150200.15.31.1.noarch.rpm npm14-14.19.1-150200.15.31.1.x86_64.rpm corepack14-14.19.1-150200.15.31.1.s390x.rpm nodejs14-14.19.1-150200.15.31.1.s390x.rpm nodejs14-devel-14.19.1-150200.15.31.1.s390x.rpm npm14-14.19.1-150200.15.31.1.s390x.rpm corepack14-14.19.1-150200.15.31.1.ppc64le.rpm nodejs14-14.19.1-150200.15.31.1.ppc64le.rpm nodejs14-devel-14.19.1-150200.15.31.1.ppc64le.rpm npm14-14.19.1-150200.15.31.1.ppc64le.rpm corepack14-14.19.1-150200.15.31.1.aarch64.rpm nodejs14-14.19.1-150200.15.31.1.aarch64.rpm nodejs14-devel-14.19.1-150200.15.31.1.aarch64.rpm npm14-14.19.1-150200.15.31.1.aarch64.rpm openSUSE-SLE-15.4-2022-1461 important SUSE Updates openSUSE-SLE 15.4 This update for nodejs12 fixes the following issues: - CVE-2022-0778: Fixed a infinite loop in BN_mod_sqrt() reachable when parsing certificates (bsc#1196877). - CVE-2021-44906: Fixed a prototype pollution in node-minimist (bsc#1198247). - CVE-2021-44907: Fixed a potential Denial of Service vulnerability in node-qs (bsc#1197283). - CVE-2022-0235: Fixed an exposure of sensitive information to an unauthorized actor in node-fetch (bsc#1194819). nodejs12-12.22.12-150200.4.32.1.src.rpm nodejs12-12.22.12-150200.4.32.1.x86_64.rpm nodejs12-devel-12.22.12-150200.4.32.1.x86_64.rpm nodejs12-docs-12.22.12-150200.4.32.1.noarch.rpm npm12-12.22.12-150200.4.32.1.x86_64.rpm nodejs12-12.22.12-150200.4.32.1.s390x.rpm nodejs12-devel-12.22.12-150200.4.32.1.s390x.rpm npm12-12.22.12-150200.4.32.1.s390x.rpm nodejs12-12.22.12-150200.4.32.1.ppc64le.rpm nodejs12-devel-12.22.12-150200.4.32.1.ppc64le.rpm npm12-12.22.12-150200.4.32.1.ppc64le.rpm nodejs12-12.22.12-150200.4.32.1.aarch64.rpm nodejs12-devel-12.22.12-150200.4.32.1.aarch64.rpm npm12-12.22.12-150200.4.32.1.aarch64.rpm openSUSE-SLE-15.4-2022-1543 low SUSE Updates openSUSE-SLE 15.4 This update for SDL, libbluray and libva fixes the following issue: - 32bit base libraries are shipped to meet dependencies of the ffmpeg 32bit libraries (bsc#1198925). libbluray-1.0.2-150000.4.2.1.src.rpm libbluray-bdj-1.0.2-150000.4.2.1.noarch.rpm libbluray-devel-1.0.2-150000.4.2.1.x86_64.rpm libbluray-tools-1.0.2-150000.4.2.1.x86_64.rpm libbluray2-1.0.2-150000.4.2.1.x86_64.rpm libbluray2-32bit-1.0.2-150000.4.2.1.x86_64.rpm libbluray-devel-1.0.2-150000.4.2.1.s390x.rpm libbluray-tools-1.0.2-150000.4.2.1.s390x.rpm libbluray2-1.0.2-150000.4.2.1.s390x.rpm libbluray-devel-1.0.2-150000.4.2.1.ppc64le.rpm libbluray-tools-1.0.2-150000.4.2.1.ppc64le.rpm libbluray2-1.0.2-150000.4.2.1.ppc64le.rpm libbluray-devel-1.0.2-150000.4.2.1.aarch64.rpm libbluray-tools-1.0.2-150000.4.2.1.aarch64.rpm libbluray2-1.0.2-150000.4.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-1476 moderate SUSE Updates openSUSE-SLE 15.4 This update for libcaca fixes the following issues: - CVE-2022-0856: Fixed a divide by zero issue which could be exploited to cause an application crash (bsc#1197028). caca-utils-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca-0.99.beta19.git20171003-150200.11.6.1.src.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca0-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca0-32bit-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm libcaca0-plugins-32bit-0.99.beta19.git20171003-150200.11.6.1.x86_64.rpm python3-caca-0.99.beta19.git20171003-150200.11.6.1.noarch.rpm caca-utils-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm libcaca0-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.6.1.s390x.rpm caca-utils-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm libcaca0-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.6.1.ppc64le.rpm caca-utils-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm libcaca-devel-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm libcaca-ruby-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm libcaca0-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm libcaca0-plugins-0.99.beta19.git20171003-150200.11.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1658 important SUSE Updates openSUSE-SLE 15.4 This update for libpsl fixes the following issues: - Fix libpsl compilation issues (bsc#1197771) libpsl-0.20.1-150000.3.3.1.src.rpm libpsl-devel-0.20.1-150000.3.3.1.x86_64.rpm libpsl5-0.20.1-150000.3.3.1.x86_64.rpm libpsl5-32bit-0.20.1-150000.3.3.1.x86_64.rpm psl-0.20.1-150000.3.3.1.x86_64.rpm psl-make-dafsa-0.20.1-150000.3.3.1.noarch.rpm psl-make-dafsa-0.20.1-150000.3.3.1.src.rpm libpsl-devel-0.20.1-150000.3.3.1.s390x.rpm libpsl5-0.20.1-150000.3.3.1.s390x.rpm psl-0.20.1-150000.3.3.1.s390x.rpm libpsl-devel-0.20.1-150000.3.3.1.ppc64le.rpm libpsl5-0.20.1-150000.3.3.1.ppc64le.rpm psl-0.20.1-150000.3.3.1.ppc64le.rpm libpsl-devel-0.20.1-150000.3.3.1.aarch64.rpm libpsl5-0.20.1-150000.3.3.1.aarch64.rpm psl-0.20.1-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1468 moderate SUSE Updates openSUSE-SLE 15.4 This update for golang-github-prometheus-promu fixes the following issues: Update golang-github-prometheus-promu from version 0.1.0 to version 0.13.0 (jsc#SLE-24138) - Add deprecation note to pkg directory - Add Windows/ARM64 - Update common Prometheus files - Simplify CGO crossbuilds - Fix build with "linux" platform - Build requires Go 1.15 - Add support for aix/ppc64. - Fallback to git describe output if no VERSION. - Make extldflags extensible by configuration. - cmd/release: add `--timeout` option. - cmd/release: create release in GitHub if none exists. - Avoid bind-mounting to allow building with a remote docker engine - cmd/tarball: restore `--prefix` flag. - cmd/release: don't leak credentials in case of error. - Use `obs-service-go_modules` - Adding changes to support s390x - Add option to disable static linking - Add support for 32bit MIPS. - Added `check_licenses` command to Promu - Allow to customize nested options via env variables - Add warning if promu info is unable to determine repo info - Fix build on SmartOS by not setting GCC's `-static` flag - Fix git repository URL parsing golang-github-prometheus-promu-0.13.0-150000.3.3.1.src.rpm golang-github-prometheus-promu-0.13.0-150000.3.3.1.x86_64.rpm golang-github-prometheus-promu-0.13.0-150000.3.3.1.s390x.rpm golang-github-prometheus-promu-0.13.0-150000.3.3.1.ppc64le.rpm golang-github-prometheus-promu-0.13.0-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1519 moderate SUSE Updates openSUSE-SLE 15.4 This feature update for python-contextvars, python-immutables fixes the following issues: python-immutables: - Provide python-immutables version 0.11 in SUSE Linux Enterprise 15 (jsc#SLE-24404) python-contextvars: - Provide python-contextvars version 2.4 in SUSE Linux Enterprise 15 (jsc#SLE-24404) python-contextvars-2.4-150000.1.3.1.src.rpm python-immutables-0.11-150000.1.3.1.src.rpm python3-contextvars-2.4-150000.1.3.1.noarch.rpm python3-immutables-0.11-150000.1.3.1.x86_64.rpm python3-immutables-0.11-150000.1.3.1.s390x.rpm python3-immutables-0.11-150000.1.3.1.ppc64le.rpm python3-immutables-0.11-150000.1.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1892 moderate SUSE Updates openSUSE-SLE 15.4 This update for dpdk fixes the following issues: Security: - CVE-2021-3839: Fixed a memory corruption issue during vhost-user communication (bsc#1198963). - CVE-2022-0669: Fixed a denial of service that could be triggered by a vhost-user master (bsc#1198964). Bugfixes: - kni: allow configuring thread granularity (bsc#1195172). - Fixed reading of PCI device name as UTF strings (bsc#1198873). dpdk-19.11.4-150300.11.1.src.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_150300.59.63-150300.11.1.x86_64.rpm dpdk-kmp-preempt-19.11.4_k5.3.18_150300.59.63-150300.11.1.aarch64.rpm dpdk-thunderx-19.11.4-150300.11.1.src.rpm dpdk-thunderx-kmp-preempt-19.11.4_k5.3.18_150300.59.63-150300.11.1.aarch64.rpm openSUSE-SLE-15.4-2022-1709 important SUSE Updates openSUSE-SLE 15.4 This update for libcbor fixes the following issues: - Fix build errors occuring on SUSE Linux Enterprise 15 Service Pack 4 libcbor-0.5.0-150100.4.6.1.src.rpm libcbor-devel-0.5.0-150100.4.6.1.x86_64.rpm libcbor0-0.5.0-150100.4.6.1.x86_64.rpm libcbor-devel-0.5.0-150100.4.6.1.s390x.rpm libcbor0-0.5.0-150100.4.6.1.s390x.rpm libcbor-devel-0.5.0-150100.4.6.1.ppc64le.rpm libcbor0-0.5.0-150100.4.6.1.ppc64le.rpm libcbor-devel-0.5.0-150100.4.6.1.aarch64.rpm libcbor0-0.5.0-150100.4.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1828 important SUSE Updates openSUSE-SLE 15.4 This update for oath-toolkit fixes the following issues: - Fix build issues occurring on SUSE Linux Enterprise 15 Service Pack 4 (bsc#1197790) liboath-devel-2.6.2-150000.3.3.1.x86_64.rpm liboath0-2.6.2-150000.3.3.1.x86_64.rpm libpskc-devel-2.6.2-150000.3.3.1.x86_64.rpm libpskc0-2.6.2-150000.3.3.1.x86_64.rpm oath-toolkit-2.6.2-150000.3.3.1.src.rpm oath-toolkit-2.6.2-150000.3.3.1.x86_64.rpm oath-toolkit-xml-2.6.2-150000.3.3.1.noarch.rpm pam_oath-2.6.2-150000.3.3.1.x86_64.rpm liboath-devel-2.6.2-150000.3.3.1.s390x.rpm liboath0-2.6.2-150000.3.3.1.s390x.rpm libpskc-devel-2.6.2-150000.3.3.1.s390x.rpm libpskc0-2.6.2-150000.3.3.1.s390x.rpm oath-toolkit-2.6.2-150000.3.3.1.s390x.rpm pam_oath-2.6.2-150000.3.3.1.s390x.rpm liboath-devel-2.6.2-150000.3.3.1.ppc64le.rpm liboath0-2.6.2-150000.3.3.1.ppc64le.rpm libpskc-devel-2.6.2-150000.3.3.1.ppc64le.rpm libpskc0-2.6.2-150000.3.3.1.ppc64le.rpm oath-toolkit-2.6.2-150000.3.3.1.ppc64le.rpm pam_oath-2.6.2-150000.3.3.1.ppc64le.rpm liboath-devel-2.6.2-150000.3.3.1.aarch64.rpm liboath0-2.6.2-150000.3.3.1.aarch64.rpm libpskc-devel-2.6.2-150000.3.3.1.aarch64.rpm libpskc0-2.6.2-150000.3.3.1.aarch64.rpm oath-toolkit-2.6.2-150000.3.3.1.aarch64.rpm pam_oath-2.6.2-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1595 important SUSE Updates openSUSE-SLE 15.4 This update for libnss_nis fixes the following issues: - Fix build issues occurring on SUSE Linux Enterprise 15 Service Pack 4 (bsc#1197768) libnss_nis-3.0-150000.3.3.1.src.rpm libnss_nis2-3.0-150000.3.3.1.x86_64.rpm libnss_nis2-32bit-3.0-150000.3.3.1.x86_64.rpm libnss_nis2-3.0-150000.3.3.1.s390x.rpm libnss_nis2-3.0-150000.3.3.1.ppc64le.rpm libnss_nis2-3.0-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2093 moderate SUSE Updates openSUSE-SLE 15.4 This update for open-vm-tools fixes the following issues: - Update to 12.0.0 (build 19345655) (bsc#1196803) - Update open-vm-tools 12.0.0. (jsc#SLE-24097) - Support for managing Salt Minion through guest variables. A new open-vm-tools-salt-minion rpm is added to handle this support. - New ComponentMgr plugin to manage (add, remove, monitor) components on the guest VM. - Patch to fix potential Fail to Build from Source. (bsc#1196804) - Build vmhgfs with either libfuse2 or libfuse3. libvmtools-devel-12.0.0-150300.16.1.x86_64.rpm libvmtools0-12.0.0-150300.16.1.x86_64.rpm open-vm-tools-12.0.0-150300.16.1.src.rpm open-vm-tools-12.0.0-150300.16.1.x86_64.rpm open-vm-tools-desktop-12.0.0-150300.16.1.x86_64.rpm open-vm-tools-sdmp-12.0.0-150300.16.1.x86_64.rpm libvmtools-devel-12.0.0-150300.16.1.aarch64.rpm libvmtools0-12.0.0-150300.16.1.aarch64.rpm open-vm-tools-12.0.0-150300.16.1.aarch64.rpm open-vm-tools-desktop-12.0.0-150300.16.1.aarch64.rpm open-vm-tools-sdmp-12.0.0-150300.16.1.aarch64.rpm openSUSE-SLE-15.4-2022-1850 moderate SUSE Updates openSUSE-SLE 15.4 This update for perl-XML-LibXML fixes the following issues: - Allow compile against latest version available of libxml in SP4 so perl-XML-LibXSLT compiles cleanly. (bsc#1197798) This update has no customer visible change. perl-XML-LibXML-2.0132-150000.3.3.1.src.rpm perl-XML-LibXML-2.0132-150000.3.3.1.x86_64.rpm perl-XML-LibXML-2.0132-150000.3.3.1.s390x.rpm perl-XML-LibXML-2.0132-150000.3.3.1.ppc64le.rpm perl-XML-LibXML-2.0132-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1750 important SUSE Updates openSUSE-SLE 15.4 This update for libxml2 fixes the following issues: - CVE-2022-23308: Fixed a use-after-free of ID and IDREF attributes (bsc#1196490). - CVE-2022-29824: Fixed integer overflow that could have led to an out-of-bounds write in buf.c (xmlBuf*) and tree.c (xmlBuffer*) (bsc#1199132). python-libxml2-python-2.9.7-150000.3.46.1.src.rpm python2-libxml2-python-2.9.7-150000.3.46.1.x86_64.rpm python3-libxml2-python-2.9.7-150000.3.46.1.x86_64.rpm python2-libxml2-python-2.9.7-150000.3.46.1.s390x.rpm python3-libxml2-python-2.9.7-150000.3.46.1.s390x.rpm python2-libxml2-python-2.9.7-150000.3.46.1.ppc64le.rpm python3-libxml2-python-2.9.7-150000.3.46.1.ppc64le.rpm python2-libxml2-python-2.9.7-150000.3.46.1.aarch64.rpm python3-libxml2-python-2.9.7-150000.3.46.1.aarch64.rpm openSUSE-SLE-15.4-2022-1888 moderate SUSE Updates openSUSE-SLE 15.4 This update for helm-mirror fixes the following issues: - Updated to version 0.3.1: - CVE-2019-18658: Fixed a potential symbolic link issue in helm that could be used to leak sensitive files (bsc#1156646). helm-mirror-0.3.1-150000.1.13.1.src.rpm helm-mirror-0.3.1-150000.1.13.1.x86_64.rpm helm-mirror-0.3.1-150000.1.13.1.s390x.rpm helm-mirror-0.3.1-150000.1.13.1.ppc64le.rpm helm-mirror-0.3.1-150000.1.13.1.aarch64.rpm openSUSE-SLE-15.4-2022-1503 moderate SUSE Updates openSUSE-SLE 15.4 This update for rpmlint fixes the following issues: - whitelist kcron (bsc#1199006) - whitelisted power-profiles-daemon (bsc#1198693). rpmlint-1.10-150000.7.53.1.noarch.rpm rpmlint-1.10-150000.7.53.1.src.rpm openSUSE-SLE-15.4-2022-1913 moderate SUSE Updates openSUSE-SLE 15.4 This update for aws-iam-authenticator fixes the following issues: - Update in SLE-15 (bsc#1197703) - Update to version 0.5.3 * Bump Go to 1.15 in Travis (#361) * Update aws sdk go v1.37.1 (#360) * (arn): validate partition against all partitions returned by the aws sdk (#348) * Document AccessKeyId from UserInfo (#332) * Support IPv6 listen address (#352) * Added user agent to AWS SDK (#359) * Remove Chris Hein from OWNERS (#351) * Add instructions for the release process (#346) - from version 0.5.2 * Added partition flag (#341) * Update link to Kops docs site (#338) * Security Improvements on the example yaml (#335) * Fix RBAC on example file: service account requires get to ConfigMap (#334) * Add AccessKeyID as variable for username (#337) * Added server side AWS account ID log redaction (#327) - from version 0.5.1 * Update examples/README (#317) * Changelog gen (#318) * Fix CRD mapper blocking all others because caches never sync and revamp backend-mode flag (#303) * Update aws-sdk-go to version v1.30.0 (#306) * Bump k8s.io/ dependencies to 1.16.8 (#305) * chown aws-iam-authenticator to avoid permission denied (#302) * Indentation and unit test improvements (#298) * Adding Rate limiting ec2:DescribeInstances API along with Batching for high TPS (#292) * Restrict ClusterRole to readonly IAMIdentityMapping access (#287) * added selector to spec and changed from extenstions to apps/v1 (#291) * Add AWS AccessKeyID as an extra field in UserInfo (#286) * Allow server port customization (#278) - from version 0.5.0 * Remove DNS-1123 validation of usernames and groups (#260) * switch to use regional sts endpoint & imdsV2 (#283) * Add AWS Access Key ID to log (#282) * Require to pass in interface instead of the concrete type (#279) * Refactor to allow configurable backends (configmap, eks configmap, crd) (#269) * Update go version (#255) * Adding session name parameter to TokenGenerator (#272) * Rename prometheus metrics to match new project name (#249) * Remove inactive approvers, add wongma7 (#266) * Update aws-sdk-go to v1.23.11 (257) * Added go module download check (#259) * Updating goreleaser yaml to fix deprecated options (#252) * Remove deprecated language from README (#244) * Lowercase ARN inside doMapping and log about it (#239) * IAMIdentityMapping CRD Implementation (#116) * Adding micahhausler as approver (#237) * add support for passing externalID to assume role (#228) * Update README.md (#231) * Using sigs.k8s.io domain instead of github.com (#223) * Refactored EC2 API calls to be testable (#226) * Include aws request ID when logging errors (#178) - Remove global Go project variables - Set GO111MODULE=off to force use of vendored modules - Update Go build paths aws-iam-authenticator-0.5.3-150000.1.6.1.src.rpm aws-iam-authenticator-0.5.3-150000.1.6.1.x86_64.rpm aws-iam-authenticator-0.5.3-150000.1.6.1.s390x.rpm aws-iam-authenticator-0.5.3-150000.1.6.1.ppc64le.rpm aws-iam-authenticator-0.5.3-150000.1.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-2014 moderate SUSE Updates openSUSE-SLE 15.4 This update for scap-security-guide fixes the following issues: scap-security-guide was updated to 0.1.61 (jsc#ECO-3319): - Stop building PCI-DSS-centric XCCDF benchmark for RHEL 7 - Introduce OL9 product - Implement handling of logical expressions in platform definitions Please note that SUSE supports only the DISA STIG, HIPAA and PCI-DSS profiles for SUSE Linux Enterprise Server 12 and 15. scap-security-guide-0.1.61-150000.1.32.1.noarch.rpm scap-security-guide-0.1.61-150000.1.32.1.src.rpm scap-security-guide-debian-0.1.61-150000.1.32.1.noarch.rpm scap-security-guide-redhat-0.1.61-150000.1.32.1.noarch.rpm scap-security-guide-ubuntu-0.1.61-150000.1.32.1.noarch.rpm openSUSE-SLE-15.4-2022-1718 important SUSE Updates openSUSE-SLE 15.4 This update for e2fsprogs fixes the following issues: - CVE-2022-1304: Fixed out-of-bounds read/write leading to segmentation fault and possibly arbitrary code execution. (bsc#1198446) e2fsprogs-1.46.4-150400.3.3.1.src.rpm e2fsprogs-1.46.4-150400.3.3.1.x86_64.rpm e2fsprogs-devel-1.46.4-150400.3.3.1.x86_64.rpm e2fsprogs-scrub-1.46.4-150400.3.3.1.x86_64.rpm libcom_err-devel-1.46.4-150400.3.3.1.x86_64.rpm libcom_err-devel-32bit-1.46.4-150400.3.3.1.x86_64.rpm libcom_err-devel-static-1.46.4-150400.3.3.1.x86_64.rpm libcom_err2-1.46.4-150400.3.3.1.x86_64.rpm libcom_err2-32bit-1.46.4-150400.3.3.1.x86_64.rpm libext2fs-devel-1.46.4-150400.3.3.1.x86_64.rpm libext2fs-devel-32bit-1.46.4-150400.3.3.1.x86_64.rpm libext2fs-devel-static-1.46.4-150400.3.3.1.x86_64.rpm libext2fs2-1.46.4-150400.3.3.1.x86_64.rpm libext2fs2-32bit-1.46.4-150400.3.3.1.x86_64.rpm e2fsprogs-1.46.4-150400.3.3.1.s390x.rpm e2fsprogs-devel-1.46.4-150400.3.3.1.s390x.rpm e2fsprogs-scrub-1.46.4-150400.3.3.1.s390x.rpm libcom_err-devel-1.46.4-150400.3.3.1.s390x.rpm libcom_err-devel-static-1.46.4-150400.3.3.1.s390x.rpm libcom_err2-1.46.4-150400.3.3.1.s390x.rpm libext2fs-devel-1.46.4-150400.3.3.1.s390x.rpm libext2fs-devel-static-1.46.4-150400.3.3.1.s390x.rpm libext2fs2-1.46.4-150400.3.3.1.s390x.rpm e2fsprogs-1.46.4-150400.3.3.1.ppc64le.rpm e2fsprogs-devel-1.46.4-150400.3.3.1.ppc64le.rpm e2fsprogs-scrub-1.46.4-150400.3.3.1.ppc64le.rpm libcom_err-devel-1.46.4-150400.3.3.1.ppc64le.rpm libcom_err-devel-static-1.46.4-150400.3.3.1.ppc64le.rpm libcom_err2-1.46.4-150400.3.3.1.ppc64le.rpm libext2fs-devel-1.46.4-150400.3.3.1.ppc64le.rpm libext2fs-devel-static-1.46.4-150400.3.3.1.ppc64le.rpm libext2fs2-1.46.4-150400.3.3.1.ppc64le.rpm e2fsprogs-1.46.4-150400.3.3.1.aarch64.rpm e2fsprogs-devel-1.46.4-150400.3.3.1.aarch64.rpm e2fsprogs-scrub-1.46.4-150400.3.3.1.aarch64.rpm libcom_err-devel-1.46.4-150400.3.3.1.aarch64.rpm libcom_err-devel-static-1.46.4-150400.3.3.1.aarch64.rpm libcom_err2-1.46.4-150400.3.3.1.aarch64.rpm libext2fs-devel-1.46.4-150400.3.3.1.aarch64.rpm libext2fs-devel-static-1.46.4-150400.3.3.1.aarch64.rpm libext2fs2-1.46.4-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1704 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-importlib_resources fixes the following issues: - Add compatibility with openSUSE package name (bsc#1198331) python-importlib_resources-1.1.0-150100.3.12.1.src.rpm python2-importlib_resources-1.1.0-150100.3.12.1.noarch.rpm python3-importlib_resources-1.1.0-150100.3.12.1.noarch.rpm openSUSE-SLE-15.4-2022-1703 important SUSE Updates openSUSE-SLE 15.4 This update for hwdata fixes the following issues: - Updated pci, usb and vendor ids (bsc#1196332) hwdata-0.358-150000.3.45.1.noarch.rpm hwdata-0.358-150000.3.45.1.src.rpm openSUSE-SLE-15.4-2022-1694 moderate SUSE Updates openSUSE-SLE 15.4 This update for nodejs8 fixes the following issues: - CVE-2021-44906: Fixed prototype pollution in npm dependency (bsc#1198247). - CVE-2021-44907: Fixed insuficient sanitation in npm dependency (bsc#1197283). - CVE-2022-0235: Fixed passing of cookie data and sensitive headers to different hostnames in node-fetch-npm (bsc#1194819). nodejs8-8.17.0-150200.10.22.1.src.rpm nodejs8-8.17.0-150200.10.22.1.x86_64.rpm nodejs8-devel-8.17.0-150200.10.22.1.x86_64.rpm nodejs8-docs-8.17.0-150200.10.22.1.noarch.rpm npm8-8.17.0-150200.10.22.1.x86_64.rpm nodejs8-8.17.0-150200.10.22.1.s390x.rpm nodejs8-devel-8.17.0-150200.10.22.1.s390x.rpm npm8-8.17.0-150200.10.22.1.s390x.rpm nodejs8-8.17.0-150200.10.22.1.ppc64le.rpm nodejs8-devel-8.17.0-150200.10.22.1.ppc64le.rpm npm8-8.17.0-150200.10.22.1.ppc64le.rpm nodejs8-8.17.0-150200.10.22.1.aarch64.rpm nodejs8-devel-8.17.0-150200.10.22.1.aarch64.rpm npm8-8.17.0-150200.10.22.1.aarch64.rpm openSUSE-SLE-15.4-2022-1699 moderate SUSE Updates openSUSE-SLE 15.4 This update for post-build-checks-malwarescan fixes the following issues: - EXLUDELIST: Whitelist some qemu binaries to avoid a false positive clamav detection (bsc#1199055) post-build-checks-malwarescan-0.1-150000.3.25.1.noarch.rpm post-build-checks-malwarescan-0.1-150000.3.25.1.src.rpm openSUSE-SLE-15.4-2022-1929 moderate SUSE Updates openSUSE-SLE 15.4 This update for redis fixes the following issues: - CVE-2022-24735: Fixed Lua code injection (bsc#1198952). - CVE-2022-24736: Fixed Lua NULL pointer dereference (bsc#1198953). redis-6.2.6-150400.3.3.7.src.rpm redis-6.2.6-150400.3.3.7.x86_64.rpm redis-6.2.6-150400.3.3.7.s390x.rpm redis-6.2.6-150400.3.3.7.ppc64le.rpm redis-6.2.6-150400.3.3.7.aarch64.rpm openSUSE-SLE-15.4-2022-2044 important SUSE Updates openSUSE-SLE 15.4 This update for google-gson fixes the following issues: - CVE-2022-25647: Fixed deserialization of untrusted data (bsc#1199064). google-gson-2.8.9-150200.3.6.3.noarch.rpm google-gson-2.8.9-150200.3.6.3.src.rpm google-gson-javadoc-2.8.9-150200.3.6.3.noarch.rpm openSUSE-SLE-15.4-2022-1661 moderate SUSE Updates openSUSE-SLE 15.4 This update for rust, rust1.60 fixes the following issues: rust1.60 is shipped with this update. Version 1.60.0 (2022-04-07) ========================== Language -------- - Stabilize cfg(panic = "...") for either "unwind" or "abort". - Stabilize cfg(target_has_atomic = "...") for each integer size and "ptr". Compiler -------- - Enable combining +crt-static and relocation-model=pic on x86_64-unknown-linux-gnu - Fixes wrong unreachable_pub lints on nested and glob public reexport - Stabilize -Z instrument-coverage as -C instrument-coverage - Stabilize -Z print-link-args as --print link-args - Add new Tier 3 target mips64-openwrt-linux-musl\* - Add new Tier 3 target armv7-unknown-linux-uclibceabi (softfloat)\* - Fix invalid removal of newlines from doc comments - Add kernel target for RustyHermit - Deny mixing bin crate type with lib crate types - Make rustc use RUST_BACKTRACE=full by default * Refer to Rust's platform support page for more information on Rust's tiered platform support. Libraries --------- - Guarantee call order for sort_by_cached_key - Improve Duration::try_from_secs_f32/f64 accuracy by directly processing exponent and mantissa - Make Instant::{duration_since, elapsed, sub} saturating - Remove non-monotonic clocks workarounds in Instant::now - Make BuildHasherDefault, iter::Empty and future::Pending covariant Stabilized APIs -------------- - Arc::new_cyclic - Rc::new_cyclic - slice::EscapeAscii - <[u8]>::escape_ascii - u8::escape_ascii - Vec::spare_capacity_mut - MaybeUninit::assume_init_drop - MaybeUninit::assume_init_read - i8::abs_diff - i16::abs_diff - i32::abs_diff - i64::abs_diff - i128::abs_diff - isize::abs_diff - u8::abs_diff - u16::abs_diff - u32::abs_diff - u64::abs_diff - u128::abs_diff - usize::abs_diff - Display for io::ErrorKind - From<u8> for ExitCode] - Not for ! (the "never" type) - _Op_Assign<$t> for Wrapping<$t> - arch::is_aarch64_feature_detected! Cargo ----- - Port cargo from toml-rs to toml_edit - Stabilize -Ztimings as --timings - Stabilize namespaced and weak dependency features. - Accept more cargo:rustc-link-arg-* types from build script output. - cargo-new should not add ignore rule on Cargo.lock inside subdirs Misc ---- - Ship docs on Tier 2 platforms by reusing the closest Tier 1 platform docs - Drop rustc-docs from complete profile - bootstrap: tidy up flag handling for llvm build Compatibility Notes ------------------- - Mitigations for platforms with non-monotonic clocks have been removed from Instant::now. On platforms that don't provide monotonic clocks, an instant is not guaranteed to be greater than an earlier instant anymore. - Instant::{duration_since, elapsed, sub} do not panic anymore on underflow, saturating to 0 instead. In the real world the panic happened mostly on platforms with buggy monotonic clock implementations rather than catching programming errors like reversing the start and end times. Such programming errors will now results in 0 rather than a panic. cargo-1.60.0-150300.21.23.1.x86_64.rpm cargo1.60-1.60.0-150300.7.6.1.x86_64.rpm rust-1.60.0-150300.21.23.1.src.rpm rust-1.60.0-150300.21.23.1.x86_64.rpm rust1.60-1.60.0-150300.7.6.1.src.rpm rust1.60-1.60.0-150300.7.6.1.x86_64.rpm cargo-1.60.0-150300.21.23.1.s390x.rpm cargo1.60-1.60.0-150300.7.6.1.s390x.rpm rust-1.60.0-150300.21.23.1.s390x.rpm rust1.60-1.60.0-150300.7.6.1.s390x.rpm cargo-1.60.0-150300.21.23.1.ppc64le.rpm cargo1.60-1.60.0-150300.7.6.1.ppc64le.rpm rust-1.60.0-150300.21.23.1.ppc64le.rpm rust1.60-1.60.0-150300.7.6.1.ppc64le.rpm cargo-1.60.0-150300.21.23.1.aarch64.rpm cargo1.60-1.60.0-150300.7.6.1.aarch64.rpm rust-1.60.0-150300.21.23.1.aarch64.rpm rust1.60-1.60.0-150300.7.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1566 moderate SUSE Updates openSUSE-SLE 15.4 This update for go1.17 fixes the following issues: - Remove remaining use of gold linker when bootstrapping with gccgo. * History: go1.8.3 2017-06-18 added conditional if gccgo defined BuildRequires: binutils-gold for arches other than s390x * No information available why binutils-gold was used initially * Unrelated to upstream recent hardcoded gold dependency for ARM go1.17-1.17.9-150000.1.31.1.src.rpm go1.17-1.17.9-150000.1.31.1.x86_64.rpm go1.17-doc-1.17.9-150000.1.31.1.x86_64.rpm go1.17-race-1.17.9-150000.1.31.1.x86_64.rpm go1.17-1.17.9-150000.1.31.1.s390x.rpm go1.17-doc-1.17.9-150000.1.31.1.s390x.rpm go1.17-1.17.9-150000.1.31.1.ppc64le.rpm go1.17-doc-1.17.9-150000.1.31.1.ppc64le.rpm go1.17-1.17.9-150000.1.31.1.aarch64.rpm go1.17-doc-1.17.9-150000.1.31.1.aarch64.rpm go1.17-race-1.17.9-150000.1.31.1.aarch64.rpm openSUSE-SLE-15.4-2022-1551 moderate SUSE Updates openSUSE-SLE 15.4 This update for go1.18 fixes the following issues: - Remove remaining use of gold linker when bootstrapping with gccgo. * History: go1.8.3 2017-06-18 added conditional if gccgo defined BuildRequires: binutils-gold for arches other than s390x * No information available why binutils-gold was used initially * Unrelated to upstream recent hardcoded gold dependency for ARM go1.18-1.18.1-150000.1.14.1.src.rpm go1.18-1.18.1-150000.1.14.1.x86_64.rpm go1.18-doc-1.18.1-150000.1.14.1.x86_64.rpm go1.18-race-1.18.1-150000.1.14.1.x86_64.rpm go1.18-1.18.1-150000.1.14.1.s390x.rpm go1.18-doc-1.18.1-150000.1.14.1.s390x.rpm go1.18-1.18.1-150000.1.14.1.ppc64le.rpm go1.18-doc-1.18.1-150000.1.14.1.ppc64le.rpm go1.18-1.18.1-150000.1.14.1.aarch64.rpm go1.18-doc-1.18.1-150000.1.14.1.aarch64.rpm go1.18-race-1.18.1-150000.1.14.1.aarch64.rpm openSUSE-SLE-15.4-2022-1687 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29156: Fixed a double free related to rtrs_clt_dev_release (bnc#1198515). - CVE-2022-28893: Ensuring that sockets are in the intended state inside the SUNRPC subsystem (bnc#1198330). - CVE-2022-28748: Fixed memory lead over the network by ax88179_178a devices (bsc#1196018). - CVE-2022-28356: Fixed a refcount leak bug found in net/llc/af_llc.c (bnc#1197391). - CVE-2022-1516: Fixed null-ptr-deref caused by x25_disconnect (bsc#1199012). - CVE-2022-1419: Fixed a concurrency use-after-free in vgem_gem_dumb_create (bsc#1198742). - CVE-2022-1353: Fixed access controll to kernel memory in the pfkey_register function in net/key/af_key.c (bnc#1198516). - CVE-2022-1280: Fixed a use-after-free vulnerability in drm_lease_held in drivers/gpu/drm/drm_lease.c (bnc#1197914). - CVE-2022-1158: Fixed KVM x86/mmu compare-and-exchange of gPTE via the user address (bsc#1197660). - CVE-2022-0812: Fixed random memory leakage inside NFS/RDMA (bsc#1196639). - CVE-2021-4154: Fixed a use-after-free flaw inside cgroup1_parse_param in kernel/cgroup/cgroup-v1.c. A local attacker with a user privilege could cause a privilege escalation by exploiting the fsconfig syscall parameter leading to a container breakout and a denial of service on the system (bnc#1193842). - CVE-2021-38208: Fixed a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call (bnc#1187055). - CVE-2021-20321: Fixed a race condition accessing file object in the OverlayFS subsystem in the way users do rename in specific way with OverlayFS. A local user could have used this flaw to crash the system (bnc#1191647). - CVE-2021-20292: Fixed object validation prior to performing operations on the object in nouveau_sgdma_create_ttm in Nouveau DRM subsystem (bnc#1183723). - CVE-2021-0707: Fixed possible memory corruption due to a use after free inside dma_buf_releas e of dma-buf.c (bnc#1198437). - CVE-2020-27835: Fixed use after free in infiniband hfi1 driver in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system (bnc#1179878). The following non-security bugs were fixed: - ACPI: processor idle: Check for architectural support for LPI (git-fixes). - ACPI/APEI: Limit printable size of BERT table data (git-fixes). - ACPICA: Avoid walking the ACPI Namespace if it is not there (git-fixes). - adm8211: fix error return code in adm8211_probe() (git-fixes). - ALSA: cs4236: fix an incorrect NULL check on list iterator (git-fixes). - ALSA: hda/hdmi: fix warning about PCM count when used with SOF (git-fixes). - ALSA: hda/realtek: Add alc256-samsung-headphone fixup (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD50PNT (git-fixes). - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020 (git-fixes). - ALSA: pcm: Test for "silence" field in struct "pcm_format_data" (git-fixes). - ALSA: usb-audio: Cap upper limits of buffer/period bytes for implicit fb (git-fixes). - ALSA: usb-audio: Increase max buffer size (git-fixes). - ALSA: usb-audio: Limit max buffer and period sizes per time (git-fixes). - arm64: clear_page() shouldn't use DC ZVA when DCZID_EL0.DZP == 1 (git-fixes) - arm64: dts: allwinner: h5: NanoPI Neo 2: Fix ethernet node (git-fixes) - arm64: dts: allwinner: orangepi-zero-plus: fix PHY mode (git-fixes) - arm64: dts: exynos: correct GIC CPU interfaces address range on (git-fixes) - arm64: dts: ls1028a: fix memory node (git-fixes) - arm64: dts: ls1028a: fix node name for the sysclk (git-fixes) - arm64: dts: lx2160a: fix scl-gpios property name (git-fixes) - arm64: dts: marvell: armada-37xx: Extend PCIe MEM space (git-fixes) - arm64: dts: marvell: armada-37xx: Fix reg for standard variant of (git-fixes) - arm64: dts: marvell: armada-37xx: Remap IO space to bus address 0x0 (git-fixes) - arm64: dts: rockchip: Fix GPU register width for RK3328 (git-fixes) - arm64: dts: rockchip: remove mmc-hs400-enhanced-strobe from (git-fixes) - arm64: dts: zii-ultra: fix 12V_MAIN voltage (git-fixes) - arm64: head: avoid over-mapping in map_memory (git-fixes) - arm64: Update config files; arm LIBNVDIMM y->m ppc64le ND_BLK ->m (bsc#1199024). - arm64/sve: Use correct size when reinitialising SVE state (git-fixes) - ASoC: atmel: Remove system clock tree configuration for at91sam9g20ek (git-fixes). - ASoC: codecs: wcd934x: do not switch off SIDO Buck when codec is in use (git-fixes). - ASoC: mediatek: mt6358: add missing EXPORT_SYMBOLs (git-fixes). - ASoC: msm8916-wcd-digital: Check failure for devm_snd_soc_register_component (git-fixes). - ASoC: soc-compress: Change the check for codec_dai (git-fixes). - ASoC: soc-compress: prevent the potentially use of null pointer (git-fixes). - ASoC: soc-core: skip zero num_dai component in searching dai name (git-fixes). - ASoC: soc-dapm: fix two incorrect uses of list iterator (git-fixes). - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs (git-fixes). - ata: sata_dwc_460ex: Fix crash due to OOB write (git-fixes). - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern (git-fixes). - ath5k: fix building with LEDS=m (git-fixes). - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111 (git-fixes). - ath9k_htc: fix uninit value bugs (git-fixes). - ath9k: Fix usage of driver-private space in tx_info (git-fixes). - ath9k: Properly clear TX status area before reporting to mac80211 (git-fixes). - backlight: qcom-wled: Respect enabled-strings in set_brightness (bsc#1152489) - bareudp: use ipv6_mod_enabled to check if IPv6 enabled (jsc#SLE-15172). - bfq: Avoid merging queues with different parents (bsc#1197926). - bfq: Drop pointless unlock-lock pair (bsc#1197926). - bfq: Get rid of __bio_blkcg() usage (bsc#1197926). - bfq: Make sure bfqg for which we are queueing requests is online (bsc#1197926). - bfq: Remove pointless bfq_init_rq() calls (bsc#1197926). - bfq: Split shared queues on move between cgroups (bsc#1197926). - bfq: Track whether bfq_group is still online (bsc#1197926). - bfq: Update cgroup information before merging bio (bsc#1197926). - block: Drop leftover references to RQF_SORTED (bsc#1182073). - Bluetooth: btmtksdio: Fix kernel oops in btmtksdio_interrupt (git-fixes). - Bluetooth: Fix use after free in hci_send_acl (git-fixes). - Bluetooth: hci_serdev: call init_rwsem() before p->open() (git-fixes). - bnx2x: fix napi API usage sequence (bsc#1198217). - bpf: Resolve to prog->aux->dst_prog->type only for BPF_PROG_TYPE_EXT (git-fixes bsc#1177028). - brcmfmac: firmware: Allocate space for default boardrev in nvram (git-fixes). - brcmfmac: pcie: Fix crashes due to early IRQs (git-fixes). - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path (git-fixes). - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio (git-fixes). - carl9170: fix missing bit-wise or operator for tx_params (git-fixes). - cfg80211: hold bss_lock while updating nontrans_list (git-fixes). - cifs: do not skip link targets when an I/O fails (bsc#1194625). - cifs: fix bad fids sent over wire (bsc#1197157). - clk: Enforce that disjoints limits are invalid (git-fixes). - clk: si5341: fix reported clk_rate when output divider is 2 (git-fixes). - direct-io: clean up error paths of do_blockdev_direct_IO (bsc#1197656). - direct-io: defer alignment check until after the EOF check (bsc#1197656). - direct-io: do not force writeback for reads beyond EOF (bsc#1197656). - dma-debug: fix return value of __setup handlers (git-fixes). - dma: at_xdmac: fix a missing check on list iterator (git-fixes). - dmaengine: idxd: add RO check for wq max_batch_size write (git-fixes). - dmaengine: idxd: add RO check for wq max_transfer_size write (git-fixes). - dmaengine: imx-sdma: Fix error checking in sdma_event_remap (git-fixes). - dmaengine: mediatek:Fix PM usage reference leak of mtk_uart_apdma_alloc_chan_resources (git-fixes). - dmaengine: Revert "dmaengine: shdma: Fix runtime PM imbalance on error" (git-fixes). - Documentation: add link to stable release candidate tree (git-fixes). - drm: add a locked version of drm_is_current_master (bsc#1197914). - drm: Add orientation quirk for GPD Win Max (git-fixes). - drm: drm_file struct kABI compatibility workaround (bsc#1197914). - drm: protect drm_master pointers in drm_lease.c (bsc#1197914). - drm: serialize drm_file.master with a new spinlock (bsc#1197914). - drm: use the lookup lock in drm_is_current_master (bsc#1197914). - drm/amd: Add USBC connector ID (git-fixes). - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj (git-fixes). - drm/amd/display: do not ignore alpha property on pre-multiplied mode (git-fixes). - drm/amd/display: Fix a NULL pointer dereference in amdgpu_dm_connector_add_common_modes() (git-fixes). - drm/amd/display: Fix allocate_mst_payload assert on resume (git-fixes). - drm/amd/display: Fix memory leak in dcn21_clock_source_create (bsc#1152472) - drm/amdgpu: fix amdgpu_ras_block_late_init error handler (bsc#1152489) - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire() (git-fixes). - drm/amdgpu: Fix recursive locking warning (git-fixes). - drm/amdkfd: Check for potential null return of kmalloc_array() (git-fixes). - drm/amdkfd: Fix Incorrect VMIDs passed to HWS (git-fixes). - drm/amdkfd: make CRAT table missing message informational only (git-fixes). - drm/bridge: Add missing pm_runtime_disable() in __dw_mipi_dsi_probe (git-fixes). - drm/bridge: cdns-dsi: Make sure to to create proper aliases for dt (git-fixes). - drm/bridge: Fix free wrong object in sii8620_init_rcp_input_dev (git-fixes). - drm/cma-helper: Set VM_DONTEXPAND for mmap (bsc#1152472) - drm/edid: check basic audio support on CEA extension block (git-fixes). - drm/edid: Do not clear formats if using deep color (git-fixes). - drm/fb-helper: Mark screen buffers in system memory with (bsc#1152472) - drm/i915: Call i915_globals_exit() if pci_register_device() fails (git-fixes). - drm/i915: Drop all references to DRM IRQ midlayer (bsc#1152489) - drm/i915: Keep gem ctx->vm alive until the final put (bsc#1152489) - drm/i915: s/JSP2/ICP2/ PCH (bsc#1152489) - drm/i915/gem: Flush coherency domains on first set-domain-ioctl (git-fixes). - drm/imx: Fix memory leak in imx_pd_connector_get_modes (git-fixes). - drm/mediatek: Add AAL output size configuration (git-fixes). - drm/mediatek: Fix aal size config (git-fixes). - drm/msm/dsi: Use connector directly in msm_dsi_manager_connector_init() (git-fixes). - drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not initialised (git-fixes). - drm/panel/raspberrypi-touchscreen: Initialise the bridge in prepare (git-fixes). - drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap (bsc#1152472) - drm/tegra: Fix reference leak in tegra_dsi_ganged_probe (git-fixes). - drm/vc4: crtc: Lookup the encoder from the register at boot (bsc#1198534) - drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync() usage (git-fixes). - drm/vmwgfx: Remove unused compile options (bsc#1152472) - e1000e: Fix possible overflow in LTR decoding (git-fixes). - fibmap: Reject negative block numbers (bsc#1198448). - fibmap: Use bmap instead of ->bmap method in ioctl_fibmap (bsc#1198448). - firmware: arm_scmi: Fix sorting of retrieved clock rates (git-fixes). - gpiolib: acpi: use correct format characters (git-fixes). - gpu: ipu-v3: Fix dev_dbg frequency output (git-fixes). - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports (git-fixes). - hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER (git-fixes). - i2c: dev: Force case user pointers in compat_i2cdev_ioctl() (git-fixes). - IB/hfi1: Allow larger MTU without AIP (jsc#SLE-13208). - Input: omap4-keypad - fix pm_runtime_get_sync() error checking (git-fixes). - ipmi: bail out if init_srcu_struct fails (git-fixes). - ipmi: Fix UAF when uninstall ipmi_si and ipmi_msghandler module (git-fixes). - ipmi: Move remove_work to dedicated workqueue (git-fixes). - iwlwifi: Fix -EIO error code that is never returned (git-fixes). - iwlwifi: mvm: Fix an error code in iwl_mvm_up() (git-fixes). - KEYS: fix length validation in keyctl_pkey_params_get_2() (git-fixes). - livepatch: Do not block removal of patches that are safe to unload (bsc#1071995). - lz4: fix LZ4_decompress_safe_partial read out of bound (git-fixes). - media: cx88-mpeg: clear interrupt status register before streaming video (git-fixes). - media: hdpvr: initialize dev->worker at hdpvr_register_videodev (git-fixes). - memory: atmel-ebi: Fix missing of_node_put in atmel_ebi_probe (git-fixes). - mfd: asic3: Add missing iounmap() on error asic3_mfd_probe (git-fixes). - mfd: mc13xxx: Add check for mc13xxx_irq_request (git-fixes). - mmc: host: Return an error when ->enable_sdio_irq() ops is missing (git-fixes). - mmc: mmci_sdmmc: Replace sg_dma_xxx macros (git-fixes). - mmc: mmci: stm32: correctly check all elements of sg list (git-fixes). - mmc: renesas_sdhi: do not overwrite TAP settings when HS400 tuning is complete (git-fixes). - mtd: onenand: Check for error irq (git-fixes). - mtd: rawnand: atmel: fix refcount issue in atmel_nand_controller_init (git-fixes). - mtd: rawnand: gpmi: fix controller timings setting (git-fixes). - mwl8k: Fix a double Free in mwl8k_probe_hw (git-fixes). - net: asix: add proper error handling of usb read errors (git-fixes). - net: mana: Add counter for packet dropped by XDP (bsc#1195651). - net: mana: Add counter for XDP_TX (bsc#1195651). - net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651). - net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe() (bsc#1195651). - net: mana: Reuse XDP dropped page (bsc#1195651). - net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#1195651). - net: mcs7830: handle usb read errors properly (git-fixes). - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup (git-fixes). - nfc: nci: add flush_workqueue to prevent uaf (git-fixes). - NFSv4: fix open failure with O_ACCMODE flag (git-fixes). - PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated bridge (git-fixes). - PCI: aardvark: Fix support for MSI interrupts (git-fixes). - PCI: imx6: Allow to probe when dw_pcie_wait_for_link() fails (git-fixes). - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum (git-fixes). - PCI: pciehp: Clear cmd_busy bit in polling mode (git-fixes). - PM: core: keep irq flags in device_pm_check_callbacks() (git-fixes). - power: reset: gemini-poweroff: Fix IRQ check in gemini_poweroff_probe (git-fixes). - power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init (git-fixes). - power: supply: axp20x_battery: properly report current when discharging (git-fixes). - power: supply: axp288-charger: Set Vhold to 4.4V (git-fixes). - power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong false return (git-fixes). - power: supply: wm8350-power: Add missing free in free_charger_irq (git-fixes). - power: supply: wm8350-power: Handle error for wm8350_register_irq (git-fixes). - powerpc/perf: Expose Performance Monitor Counter SPR's as part of extended regs (bsc#1198077 ltc#197299). - powerpc/perf: Fix power10 event alternatives (jsc#SLE-13513 git-fixes). - powerpc/perf: Fix power9 event alternatives (bsc#1137728, LTC#178106, git-fixes). - powerpc/perf: Include PMCs as part of per-cpu cpuhw_events struct (bsc#1198077 ltc#197299). - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE (bsc#1198413). - random: check for signal_pending() outside of need_resched() check (git-fixes). - ray_cs: Check ioremap return value (git-fixes). - RDMA/core: Set MR type in ib_reg_user_mr (jsc#SLE-8449). - RDMA/mlx5: Add a missing update of cache->last_add (jsc#SLE-15175). - RDMA/mlx5: Do not remove cache MRs when a delay is needed (jsc#SLE-15175). - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR (jsc#SLE-15175). - regulator: wm8994: Add an off-on delay for WM8994 variant (git-fixes). - rpm: Run external scriptlets on uninstall only when available (bsc#1196514 bsc#1196114 bsc#1196942). - rpm: Use bash for %() expansion (jsc#SLE-18234). - rpm/*.spec.in: remove backtick usage - rpm/constraints.in: skip SLOW_DISK workers for kernel-source - rpm/kernel-obs-build.spec.in: use default dracut modules (bsc#1195926, bsc#1198484) - rtc: check if __rtc_read_time was successful (git-fixes). - rtc: wm8350: Handle error for wm8350_register_irq (git-fixes). - s390/tape: fix timer initialization in tape_std_assign() (bsc#1197677 LTC#197378). - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands (git-fixes). - scsi: mpt3sas: Fix use after free in _scsih_expander_node_remove() (git-fixes). - scsi: mpt3sas: Page fault in reply q processing (git-fixes). - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() (bsc#1028340 bsc#1198825). - spi: atmel-quadspi: Fix the buswidth adjustment between spi-mem and controller (git-fixes). - spi: bcm-qspi: fix MSPI only access with bcm_qspi_exec_mem_op() (git-fixes). - spi: Fix erroneous sgs value with min_t() (git-fixes). - spi: Fix invalid sgs value (git-fixes). - spi: mxic: Fix the transmit path (git-fixes). - spi: tegra20: Use of_device_get_match_data() (git-fixes). - staging: mt7621-dts: fix LEDs and pinctrl on GB-PC1 devicetree (git-fixes). - SUNRPC: change locking for xs_swap_enable/disable (bsc#1196367). - SUNRPC: Ensure we flush any closed sockets before xs_xprt_free() (git-fixes). - SUNRPC: Fix the svc_deferred_event trace class (git-fixes). - SUNRPC: Handle ENOMEM in call_transmit_status() (git-fixes). - SUNRPC: Handle low memory situations in call_status() (git-fixes). - USB: dwc3: core: Fix tx/rx threshold settings (git-fixes). - USB: dwc3: core: Only handle soft-reset in DCTL (git-fixes). - USB: dwc3: gadget: Return proper request status (git-fixes). - USB: dwc3: omap: fix "unbalanced disables for smps10_out1" on omap5evm (git-fixes). - USB: gadget: uvc: Fix crash when encoding data for usb request (git-fixes). - USB: hcd-pci: Use PCI_STD_NUM_BARS when checking standard BARs (bsc#1152489) - USB: serial: pl2303: add IBM device IDs (git-fixes). - USB: serial: simple: add Nokia phone driver (git-fixes). - USB: storage: ums-realtek: fix error code in rts51x_read_mem() (git-fixes). - USB: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c (git-fixes). - vgacon: Propagate console boot parameters before calling `vc_resize' (bsc#1152489) - video: fbdev: atari: Atari 2 bpp (STe) palette bugfix (git-fixes). - video: fbdev: cirrusfb: check pixclock to avoid divide by zero (git-fixes). - video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_read() (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_write() (git-fixes). - video: fbdev: udlfb: properly check endpoint type (bsc#1152489) - video: fbdev: w100fb: Reset global state (git-fixes). - virtio_console: break out of buf poll on remove (git-fixes). - virtio_console: eliminate anonymous module_init & module_exit (git-fixes). - w1: w1_therm: fixes w1_seq for ds28ea00 sensors (git-fixes). - x86/pm: Save the MSR validity status at context setup (bsc#1198400). - x86/sev: Unroll string mmio with CC_ATTR_GUEST_UNROLL_STRING_IO (git-fixes). - x86/speculation: Restore speculation related MSRs during S3 resume (bsc#1198400). - xen: fix is_xen_pmu() (git-fixes). - xen/blkfront: fix comment for need_copy (git-fixes). - xen/x86: obtain full video frame buffer address for Dom0 also under EFI (bsc#1193556). - xen/x86: obtain upper 32 bits of video frame buffer address for Dom0 (bsc#1193556). - xhci: fix runtime PM imbalance in USB2 resume (git-fixes). - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx() (git-fixes). cluster-md-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.68.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.68.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.68.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.68.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.68.1.src.rpm True dtb-al-5.3.18-150300.59.68.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.68.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.68.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.68.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.68.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2019 moderate SUSE Updates openSUSE-SLE 15.4 This update for gcc11 fixes the following issues: Update to the GCC 11.3.0 release. * includes SLS hardening backport on x86_64. [bsc#1195283] * includes change to adjust gnats idea of the target, fixing the build of gprbuild. [bsc#1196861] * fixed miscompile of embedded premake in 0ad on i586. [bsc#1197065] * use --with-cpu rather than specifying --with-arch/--with-tune * Fix D memory corruption in -M output. * Fix ICE in is_this_parameter with coroutines. [bsc#1193659] * fixes issue with debug dumping together with -o /dev/null * fixes libgccjit issue showing up in emacs build [bsc#1192951] * Package mwaitintrin.h cpp11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-nvptx-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-nvptx-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-nvptx-newlib11-devel-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.src.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-11.3.0+git1637-150000.1.9.1.src.rpm gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-PIE-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-ada-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-ada-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-c++-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-c++-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-d-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-d-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-fortran-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-fortran-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-go-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-go-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-info-11.3.0+git1637-150000.1.9.1.noarch.rpm gcc11-locale-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-obj-c++-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-objc-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-objc-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.src.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.x86_64.rpm libada11-11.3.0+git1637-150000.1.9.1.x86_64.rpm libada11-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libasan6-11.3.0+git1637-150000.1.9.1.x86_64.rpm libasan6-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libatomic1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libatomic1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgcc_s1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgcc_s1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgdruntime2-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgdruntime2-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgfortran5-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgfortran5-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgo19-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgo19-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgomp1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgomp1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgphobos2-11.3.0+git1637-150000.1.9.1.x86_64.rpm libgphobos2-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libitm1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libitm1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm liblsan0-11.3.0+git1637-150000.1.9.1.x86_64.rpm libobjc4-11.3.0+git1637-150000.1.9.1.x86_64.rpm libobjc4-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libquadmath0-11.3.0+git1637-150000.1.9.1.x86_64.rpm libquadmath0-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-devel-gcc11-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-locale-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.9.1.x86_64.rpm libstdc++6-pp-gcc11-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm libtsan0-11.3.0+git1637-150000.1.9.1.x86_64.rpm libubsan1-11.3.0+git1637-150000.1.9.1.x86_64.rpm libubsan1-32bit-11.3.0+git1637-150000.1.9.1.x86_64.rpm cpp11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.9.1.src.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-PIE-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-ada-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-ada-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-c++-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-c++-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-d-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-d-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-fortran-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-fortran-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-go-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-go-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-locale-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-obj-c++-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-objc-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-objc-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.s390x.rpm libada11-11.3.0+git1637-150000.1.9.1.s390x.rpm libada11-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libasan6-11.3.0+git1637-150000.1.9.1.s390x.rpm libasan6-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libatomic1-11.3.0+git1637-150000.1.9.1.s390x.rpm libatomic1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgcc_s1-11.3.0+git1637-150000.1.9.1.s390x.rpm libgcc_s1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgdruntime2-11.3.0+git1637-150000.1.9.1.s390x.rpm libgdruntime2-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgfortran5-11.3.0+git1637-150000.1.9.1.s390x.rpm libgfortran5-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgo19-11.3.0+git1637-150000.1.9.1.s390x.rpm libgo19-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgomp1-11.3.0+git1637-150000.1.9.1.s390x.rpm libgomp1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libgphobos2-11.3.0+git1637-150000.1.9.1.s390x.rpm libgphobos2-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libitm1-11.3.0+git1637-150000.1.9.1.s390x.rpm libitm1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libobjc4-11.3.0+git1637-150000.1.9.1.s390x.rpm libobjc4-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-devel-gcc11-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-locale-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.9.1.s390x.rpm libstdc++6-pp-gcc11-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm libubsan1-11.3.0+git1637-150000.1.9.1.s390x.rpm libubsan1-32bit-11.3.0+git1637-150000.1.9.1.s390x.rpm cpp11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-aarch64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-aarch64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-aarch64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-PIE-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-ada-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-c++-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-fortran-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-go-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-locale-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-objc-11.3.0+git1637-150000.1.9.1.ppc64le.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libada11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libasan6-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libatomic1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libgcc_s1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libgfortran5-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libgo19-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libgomp1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libitm1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm liblsan0-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libobjc4-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libquadmath0-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libstdc++6-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libstdc++6-locale-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libtsan0-11.3.0+git1637-150000.1.9.1.ppc64le.rpm libubsan1-11.3.0+git1637-150000.1.9.1.ppc64le.rpm cpp11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-arm-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-arm-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-arm-none-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-avr-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-epiphany-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-hppa-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-hppa-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-m68k-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-m68k-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-mips-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-mips-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-ppc64-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-ppc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-ppc64le-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-ppc64le-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-riscv64-elf-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-riscv64-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-riscv64-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-riscv64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-rx-gcc11-bootstrap-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-s390x-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-s390x-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-sparc-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-sparc64-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-sparc64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-sparcv9-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-x86_64-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm cross-x86_64-gcc11-icecream-backend-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-PIE-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-ada-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-c++-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-d-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-fortran-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-go-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-locale-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-obj-c++-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-objc-11.3.0+git1637-150000.1.9.1.aarch64.rpm gcc11-testresults-11.3.0+git1637-150000.1.9.1.aarch64.rpm libada11-11.3.0+git1637-150000.1.9.1.aarch64.rpm libasan6-11.3.0+git1637-150000.1.9.1.aarch64.rpm libatomic1-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgcc_s1-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgdruntime2-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgfortran5-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgo19-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgomp1-11.3.0+git1637-150000.1.9.1.aarch64.rpm libgphobos2-11.3.0+git1637-150000.1.9.1.aarch64.rpm libhwasan0-11.3.0+git1637-150000.1.9.1.aarch64.rpm libitm1-11.3.0+git1637-150000.1.9.1.aarch64.rpm liblsan0-11.3.0+git1637-150000.1.9.1.aarch64.rpm libobjc4-11.3.0+git1637-150000.1.9.1.aarch64.rpm libstdc++6-11.3.0+git1637-150000.1.9.1.aarch64.rpm libstdc++6-devel-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm libstdc++6-locale-11.3.0+git1637-150000.1.9.1.aarch64.rpm libstdc++6-pp-gcc11-11.3.0+git1637-150000.1.9.1.aarch64.rpm libtsan0-11.3.0+git1637-150000.1.9.1.aarch64.rpm libubsan1-11.3.0+git1637-150000.1.9.1.aarch64.rpm openSUSE-SLE-15.4-2022-1866 moderate SUSE Updates openSUSE-SLE 15.4 This update for ceph fixes the following issues: - Remove build directory during '%clean'. (bsc#1196733) - ses7: mgr/cephadm: try to get FQDN for configuration files - cephadm: infer the default container image during pull - ses7: Notify user that there is a SES7.1 upgrade available - mgr/cephadm: Try to get FQDN for configuration files. (bsc#1196046) - cephadm: Fix iscsi client caps to allow 'mgr service status' calls. (bsc#1192838) - When an RBD is mapped, it is attempted to be deployed as an OSD. (bsc#1187748) - OSD marked down causes wrong backfill_toofull. (bsc#1188911) ceph-15.2.16.99+g96ce9b152f5-150200.3.37.1.src.rpm ceph-mgr-diskprediction-cloud-15.2.16.99+g96ce9b152f5-150200.3.37.1.noarch.rpm openSUSE-SLE-15.4-2022-1899 important SUSE Updates openSUSE-SLE 15.4 This update for libtirpc fixes the following issues: - Add a check for nullpointer in check_address to prevent client from crashing (bsc#1198176) libtirpc-1.2.6-150300.3.6.1.src.rpm libtirpc-devel-1.2.6-150300.3.6.1.x86_64.rpm libtirpc-netconfig-1.2.6-150300.3.6.1.x86_64.rpm libtirpc3-1.2.6-150300.3.6.1.x86_64.rpm libtirpc3-32bit-1.2.6-150300.3.6.1.x86_64.rpm libtirpc-devel-1.2.6-150300.3.6.1.s390x.rpm libtirpc-netconfig-1.2.6-150300.3.6.1.s390x.rpm libtirpc3-1.2.6-150300.3.6.1.s390x.rpm libtirpc-devel-1.2.6-150300.3.6.1.ppc64le.rpm libtirpc-netconfig-1.2.6-150300.3.6.1.ppc64le.rpm libtirpc3-1.2.6-150300.3.6.1.ppc64le.rpm libtirpc-devel-1.2.6-150300.3.6.1.aarch64.rpm libtirpc-netconfig-1.2.6-150300.3.6.1.aarch64.rpm libtirpc3-1.2.6-150300.3.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1814 moderate SUSE Updates openSUSE-SLE 15.4 This update for sapconf fixes the following issues: Version update from 5.0.3 to 5.0.4: - Change block device handling to handle multipath devices correctly. Only the DM multipath devices (mpath) will be used for the settings, but not its paths (bsc#1188743) - Fixed wrong comparison used for setting force_latency (bsc#1185702) - SAP Note 1771258 v6 updates nofile values to 1048576 (bsc#1192841) sapconf-5.0.4-150000.7.21.1.noarch.rpm sapconf-5.0.4-150000.7.21.1.src.rpm openSUSE-SLE-15.4-2022-1617 important SUSE Updates openSUSE-SLE 15.4 This update for gzip fixes the following issues: - CVE-2022-1271: Fix escaping of malicious filenames. (bsc#1198062) gzip-1.10-150200.10.1.src.rpm gzip-1.10-150200.10.1.x86_64.rpm gzip-1.10-150200.10.1.s390x.rpm gzip-1.10-150200.10.1.ppc64le.rpm gzip-1.10-150200.10.1.aarch64.rpm openSUSE-SLE-15.4-2022-2119 important SUSE Updates openSUSE-SLE 15.4 This update for salt fixes the following issue: - Make sure SaltCacheLoader use correct fileclient (bsc#1199149) - Fixes for Python 3.10 * Use the same logic in `_compat.py` and `entrypoints.py` to load the same `importlib.metadata.` python3-salt-3004-150400.8.5.2.x86_64.rpm True salt-3004-150400.8.5.2.src.rpm True salt-3004-150400.8.5.2.x86_64.rpm True salt-api-3004-150400.8.5.2.x86_64.rpm True salt-bash-completion-3004-150400.8.5.2.noarch.rpm True salt-cloud-3004-150400.8.5.2.x86_64.rpm True salt-doc-3004-150400.8.5.2.x86_64.rpm True salt-fish-completion-3004-150400.8.5.2.noarch.rpm True salt-master-3004-150400.8.5.2.x86_64.rpm True salt-minion-3004-150400.8.5.2.x86_64.rpm True salt-proxy-3004-150400.8.5.2.x86_64.rpm True salt-ssh-3004-150400.8.5.2.x86_64.rpm True salt-standalone-formulas-configuration-3004-150400.8.5.2.x86_64.rpm True salt-syndic-3004-150400.8.5.2.x86_64.rpm True salt-transactional-update-3004-150400.8.5.2.x86_64.rpm True salt-zsh-completion-3004-150400.8.5.2.noarch.rpm True python3-salt-3004-150400.8.5.2.s390x.rpm True salt-3004-150400.8.5.2.s390x.rpm True salt-api-3004-150400.8.5.2.s390x.rpm True salt-cloud-3004-150400.8.5.2.s390x.rpm True salt-doc-3004-150400.8.5.2.s390x.rpm True salt-master-3004-150400.8.5.2.s390x.rpm True salt-minion-3004-150400.8.5.2.s390x.rpm True salt-proxy-3004-150400.8.5.2.s390x.rpm True salt-ssh-3004-150400.8.5.2.s390x.rpm True salt-standalone-formulas-configuration-3004-150400.8.5.2.s390x.rpm True salt-syndic-3004-150400.8.5.2.s390x.rpm True salt-transactional-update-3004-150400.8.5.2.s390x.rpm True python3-salt-3004-150400.8.5.2.ppc64le.rpm True salt-3004-150400.8.5.2.ppc64le.rpm True salt-api-3004-150400.8.5.2.ppc64le.rpm True salt-cloud-3004-150400.8.5.2.ppc64le.rpm True salt-doc-3004-150400.8.5.2.ppc64le.rpm True salt-master-3004-150400.8.5.2.ppc64le.rpm True salt-minion-3004-150400.8.5.2.ppc64le.rpm True salt-proxy-3004-150400.8.5.2.ppc64le.rpm True salt-ssh-3004-150400.8.5.2.ppc64le.rpm True salt-standalone-formulas-configuration-3004-150400.8.5.2.ppc64le.rpm True salt-syndic-3004-150400.8.5.2.ppc64le.rpm True salt-transactional-update-3004-150400.8.5.2.ppc64le.rpm True python3-salt-3004-150400.8.5.2.aarch64.rpm True salt-3004-150400.8.5.2.aarch64.rpm True salt-api-3004-150400.8.5.2.aarch64.rpm True salt-cloud-3004-150400.8.5.2.aarch64.rpm True salt-doc-3004-150400.8.5.2.aarch64.rpm True salt-master-3004-150400.8.5.2.aarch64.rpm True salt-minion-3004-150400.8.5.2.aarch64.rpm True salt-proxy-3004-150400.8.5.2.aarch64.rpm True salt-ssh-3004-150400.8.5.2.aarch64.rpm True salt-standalone-formulas-configuration-3004-150400.8.5.2.aarch64.rpm True salt-syndic-3004-150400.8.5.2.aarch64.rpm True salt-transactional-update-3004-150400.8.5.2.aarch64.rpm True openSUSE-SLE-15.4-2022-1670 important SUSE Updates openSUSE-SLE 15.4 This update for openldap2 fixes the following issues: - CVE-2022-29155: Fixed SQL injection in back-sql (bsc#1199240). libldap-2_4-2-2.4.46-150200.14.8.1.x86_64.rpm libldap-2_4-2-32bit-2.4.46-150200.14.8.1.x86_64.rpm libldap-data-2.4.46-150200.14.8.1.noarch.rpm openldap2-2.4.46-150200.14.8.1.src.rpm openldap2-2.4.46-150200.14.8.1.x86_64.rpm openldap2-back-meta-2.4.46-150200.14.8.1.x86_64.rpm openldap2-back-perl-2.4.46-150200.14.8.1.x86_64.rpm openldap2-back-sock-2.4.46-150200.14.8.1.x86_64.rpm openldap2-back-sql-2.4.46-150200.14.8.1.x86_64.rpm openldap2-client-2.4.46-150200.14.8.1.x86_64.rpm openldap2-contrib-2.4.46-150200.14.8.1.x86_64.rpm openldap2-devel-2.4.46-150200.14.8.1.x86_64.rpm openldap2-devel-32bit-2.4.46-150200.14.8.1.x86_64.rpm openldap2-devel-static-2.4.46-150200.14.8.1.x86_64.rpm openldap2-doc-2.4.46-150200.14.8.1.noarch.rpm openldap2-ppolicy-check-password-1.2-150200.14.8.1.x86_64.rpm libldap-2_4-2-2.4.46-150200.14.8.1.s390x.rpm openldap2-2.4.46-150200.14.8.1.s390x.rpm openldap2-back-meta-2.4.46-150200.14.8.1.s390x.rpm openldap2-back-perl-2.4.46-150200.14.8.1.s390x.rpm openldap2-back-sock-2.4.46-150200.14.8.1.s390x.rpm openldap2-back-sql-2.4.46-150200.14.8.1.s390x.rpm openldap2-client-2.4.46-150200.14.8.1.s390x.rpm openldap2-contrib-2.4.46-150200.14.8.1.s390x.rpm openldap2-devel-2.4.46-150200.14.8.1.s390x.rpm openldap2-devel-static-2.4.46-150200.14.8.1.s390x.rpm openldap2-ppolicy-check-password-1.2-150200.14.8.1.s390x.rpm libldap-2_4-2-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-back-meta-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-back-perl-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-back-sock-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-back-sql-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-client-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-contrib-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-devel-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-devel-static-2.4.46-150200.14.8.1.ppc64le.rpm openldap2-ppolicy-check-password-1.2-150200.14.8.1.ppc64le.rpm libldap-2_4-2-2.4.46-150200.14.8.1.aarch64.rpm openldap2-2.4.46-150200.14.8.1.aarch64.rpm openldap2-back-meta-2.4.46-150200.14.8.1.aarch64.rpm openldap2-back-perl-2.4.46-150200.14.8.1.aarch64.rpm openldap2-back-sock-2.4.46-150200.14.8.1.aarch64.rpm openldap2-back-sql-2.4.46-150200.14.8.1.aarch64.rpm openldap2-client-2.4.46-150200.14.8.1.aarch64.rpm openldap2-contrib-2.4.46-150200.14.8.1.aarch64.rpm openldap2-devel-2.4.46-150200.14.8.1.aarch64.rpm openldap2-devel-static-2.4.46-150200.14.8.1.aarch64.rpm openldap2-ppolicy-check-password-1.2-150200.14.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-1909 moderate SUSE Updates openSUSE-SLE 15.4 This update for glibc fixes the following issues: - Add the correct name for the IBM Z16 (bsc#1198751). glibc-2.31-150300.26.5.src.rpm glibc-2.31-150300.26.5.x86_64.rpm glibc-32bit-2.31-150300.26.5.x86_64.rpm glibc-devel-2.31-150300.26.5.x86_64.rpm glibc-devel-32bit-2.31-150300.26.5.x86_64.rpm glibc-devel-static-2.31-150300.26.5.x86_64.rpm glibc-devel-static-32bit-2.31-150300.26.5.x86_64.rpm glibc-extra-2.31-150300.26.5.x86_64.rpm glibc-html-2.31-150300.26.5.noarch.rpm glibc-i18ndata-2.31-150300.26.5.noarch.rpm glibc-info-2.31-150300.26.5.noarch.rpm glibc-lang-2.31-150300.26.5.noarch.rpm glibc-locale-2.31-150300.26.5.x86_64.rpm glibc-locale-base-2.31-150300.26.5.x86_64.rpm glibc-locale-base-32bit-2.31-150300.26.5.x86_64.rpm glibc-profile-2.31-150300.26.5.x86_64.rpm glibc-profile-32bit-2.31-150300.26.5.x86_64.rpm glibc-utils-2.31-150300.26.1.x86_64.rpm glibc-utils-32bit-2.31-150300.26.1.x86_64.rpm glibc-utils-src-2.31-150300.26.1.src.rpm nscd-2.31-150300.26.5.x86_64.rpm glibc-2.31-150300.26.5.s390x.rpm glibc-devel-2.31-150300.26.5.s390x.rpm glibc-devel-static-2.31-150300.26.5.s390x.rpm glibc-extra-2.31-150300.26.5.s390x.rpm glibc-locale-2.31-150300.26.5.s390x.rpm glibc-locale-base-2.31-150300.26.5.s390x.rpm glibc-profile-2.31-150300.26.5.s390x.rpm glibc-utils-2.31-150300.26.1.s390x.rpm nscd-2.31-150300.26.5.s390x.rpm glibc-2.31-150300.26.5.ppc64le.rpm glibc-devel-2.31-150300.26.5.ppc64le.rpm glibc-devel-static-2.31-150300.26.5.ppc64le.rpm glibc-extra-2.31-150300.26.5.ppc64le.rpm glibc-locale-2.31-150300.26.5.ppc64le.rpm glibc-locale-base-2.31-150300.26.5.ppc64le.rpm glibc-profile-2.31-150300.26.5.ppc64le.rpm glibc-utils-2.31-150300.26.1.ppc64le.rpm nscd-2.31-150300.26.5.ppc64le.rpm glibc-2.31-150300.26.5.aarch64.rpm glibc-devel-2.31-150300.26.5.aarch64.rpm glibc-devel-static-2.31-150300.26.5.aarch64.rpm glibc-extra-2.31-150300.26.5.aarch64.rpm glibc-locale-2.31-150300.26.5.aarch64.rpm glibc-locale-base-2.31-150300.26.5.aarch64.rpm glibc-profile-2.31-150300.26.5.aarch64.rpm glibc-utils-2.31-150300.26.1.aarch64.rpm nscd-2.31-150300.26.5.aarch64.rpm openSUSE-SLE-15.4-2022-1626 moderate SUSE Updates openSUSE-SLE 15.4 This update for systemd fixes the following issues: - tmpfiles.d: only 'w+' can have multiple lines for the same path (bsc#1198090) - journald: make sure journal_file_open() doesn't leave a corrupted file around after failing (bsc#1198114) - tmpfiles: constify item_compatible() parameters - test tmpfiles: add a test for 'w+' - test: add test checking tmpfiles conf file precedence - journald: make use of CLAMP() in cache_space_refresh() - journal-file: port journal_file_open() to openat_report_new() - fs-util: make sure openat_report_new() initializes return param also on shortcut - fs-util: fix typos in comments - fs-util: add openat_report_new() wrapper around openat() nss-mymachines-246.16-150300.7.45.1.x86_64.rpm nss-mymachines-32bit-246.16-150300.7.45.1.x86_64.rpm nss-resolve-246.16-150300.7.45.1.x86_64.rpm systemd-246.16-150300.7.45.1.src.rpm systemd-logger-246.16-150300.7.45.1.x86_64.rpm nss-mymachines-246.16-150300.7.45.1.s390x.rpm nss-resolve-246.16-150300.7.45.1.s390x.rpm systemd-logger-246.16-150300.7.45.1.s390x.rpm nss-mymachines-246.16-150300.7.45.1.ppc64le.rpm nss-resolve-246.16-150300.7.45.1.ppc64le.rpm systemd-logger-246.16-150300.7.45.1.ppc64le.rpm nss-mymachines-246.16-150300.7.45.1.aarch64.rpm nss-resolve-246.16-150300.7.45.1.aarch64.rpm systemd-logger-246.16-150300.7.45.1.aarch64.rpm openSUSE-SLE-15.4-2022-1882 important SUSE Updates openSUSE-SLE 15.4 This update for tiff fixes the following issues: - CVE-2022-0561: Fixed null source pointer passed as an argument to memcpy() within TIFFFetchStripThing() in tif_dirread.c (bsc#1195964). - CVE-2022-0562: Fixed null source pointer passed as an argument to memcpy() within TIFFReadDirectory() in tif_dirread.c (bsc#1195965). - CVE-2022-0865: Fixed assertion failure in TIFFReadAndRealloc (bsc#1197066). - CVE-2022-0909: Fixed divide by zero error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197072). - CVE-2022-0924: Fixed out-of-bounds read error in tiffcp that could have led to a denial-of-service via a crafted tiff file (bsc#1197073). - CVE-2022-0908: Fixed null source pointer passed as an argument to memcpy in TIFFFetchNormalTag() (bsc#1197074). - CVE-2022-1056: Fixed out-of-bounds read error in tiffcrop that could have led to a denial-of-service via a crafted tiff file (bsc#1197631). - CVE-2022-0891: Fixed heap buffer overflow in extractImageSection (bsc#1197068). libtiff-devel-32bit-4.0.9-150000.45.8.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.8.1.x86_64.rpm libtiff5-32bit-4.0.9-150000.45.8.1.x86_64.rpm libtiff5-4.0.9-150000.45.8.1.x86_64.rpm tiff-4.0.9-150000.45.8.1.src.rpm tiff-4.0.9-150000.45.8.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.8.1.s390x.rpm libtiff5-4.0.9-150000.45.8.1.s390x.rpm tiff-4.0.9-150000.45.8.1.s390x.rpm libtiff-devel-4.0.9-150000.45.8.1.ppc64le.rpm libtiff5-4.0.9-150000.45.8.1.ppc64le.rpm tiff-4.0.9-150000.45.8.1.ppc64le.rpm libtiff-devel-4.0.9-150000.45.8.1.aarch64.rpm libtiff5-4.0.9-150000.45.8.1.aarch64.rpm tiff-4.0.9-150000.45.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-2049 moderate SUSE Updates openSUSE-SLE 15.4 This update for binutils fixes the following issues: - Revert back to old behaviour of not ignoring the in-section content of to be relocated fields on x86-64, even though that's a RELA architecture. Compatibility with buggy object files generated by old tools. [bsc#1198422] - Fix a problem in crash not accepting some of our .ko.debug files. (bsc#1191908) binutils-2.37-150100.7.34.1.src.rpm binutils-2.37-150100.7.34.1.x86_64.rpm binutils-devel-2.37-150100.7.34.1.x86_64.rpm binutils-devel-32bit-2.37-150100.7.34.1.x86_64.rpm binutils-gold-2.37-150100.7.34.1.x86_64.rpm cross-aarch64-binutils-2.37-150100.7.34.1.src.rpm cross-aarch64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-arm-binutils-2.37-150100.7.34.1.src.rpm cross-arm-binutils-2.37-150100.7.34.1.x86_64.rpm cross-avr-binutils-2.37-150100.7.34.1.src.rpm cross-avr-binutils-2.37-150100.7.34.1.x86_64.rpm cross-epiphany-binutils-2.37-150100.7.34.1.src.rpm cross-epiphany-binutils-2.37-150100.7.34.1.x86_64.rpm cross-hppa-binutils-2.37-150100.7.34.1.src.rpm cross-hppa-binutils-2.37-150100.7.34.1.x86_64.rpm cross-hppa64-binutils-2.37-150100.7.34.1.src.rpm cross-hppa64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-i386-binutils-2.37-150100.7.34.1.src.rpm cross-i386-binutils-2.37-150100.7.34.1.x86_64.rpm cross-ia64-binutils-2.37-150100.7.34.1.src.rpm cross-ia64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-m68k-binutils-2.37-150100.7.34.1.src.rpm cross-m68k-binutils-2.37-150100.7.34.1.x86_64.rpm cross-mips-binutils-2.37-150100.7.34.1.src.rpm cross-mips-binutils-2.37-150100.7.34.1.x86_64.rpm cross-ppc-binutils-2.37-150100.7.34.1.src.rpm cross-ppc-binutils-2.37-150100.7.34.1.x86_64.rpm cross-ppc64-binutils-2.37-150100.7.34.1.src.rpm cross-ppc64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-ppc64le-binutils-2.37-150100.7.34.1.src.rpm cross-ppc64le-binutils-2.37-150100.7.34.1.x86_64.rpm cross-riscv64-binutils-2.37-150100.7.34.1.src.rpm cross-riscv64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-rx-binutils-2.37-150100.7.34.1.src.rpm cross-rx-binutils-2.37-150100.7.34.1.x86_64.rpm cross-s390-binutils-2.37-150100.7.34.1.src.rpm cross-s390-binutils-2.37-150100.7.34.1.x86_64.rpm cross-s390x-binutils-2.37-150100.7.34.1.src.rpm cross-s390x-binutils-2.37-150100.7.34.1.x86_64.rpm cross-sparc-binutils-2.37-150100.7.34.1.src.rpm cross-sparc-binutils-2.37-150100.7.34.1.x86_64.rpm cross-sparc64-binutils-2.37-150100.7.34.1.src.rpm cross-sparc64-binutils-2.37-150100.7.34.1.x86_64.rpm cross-spu-binutils-2.37-150100.7.34.1.src.rpm cross-spu-binutils-2.37-150100.7.34.1.x86_64.rpm libctf-nobfd0-2.37-150100.7.34.1.x86_64.rpm libctf0-2.37-150100.7.34.1.x86_64.rpm binutils-2.37-150100.7.34.1.s390x.rpm binutils-devel-2.37-150100.7.34.1.s390x.rpm binutils-gold-2.37-150100.7.34.1.s390x.rpm cross-aarch64-binutils-2.37-150100.7.34.1.s390x.rpm cross-arm-binutils-2.37-150100.7.34.1.s390x.rpm cross-avr-binutils-2.37-150100.7.34.1.s390x.rpm cross-epiphany-binutils-2.37-150100.7.34.1.s390x.rpm cross-hppa-binutils-2.37-150100.7.34.1.s390x.rpm cross-hppa64-binutils-2.37-150100.7.34.1.s390x.rpm cross-i386-binutils-2.37-150100.7.34.1.s390x.rpm cross-ia64-binutils-2.37-150100.7.34.1.s390x.rpm cross-m68k-binutils-2.37-150100.7.34.1.s390x.rpm cross-mips-binutils-2.37-150100.7.34.1.s390x.rpm cross-ppc-binutils-2.37-150100.7.34.1.s390x.rpm cross-ppc64-binutils-2.37-150100.7.34.1.s390x.rpm cross-ppc64le-binutils-2.37-150100.7.34.1.s390x.rpm cross-riscv64-binutils-2.37-150100.7.34.1.s390x.rpm cross-rx-binutils-2.37-150100.7.34.1.s390x.rpm cross-s390-binutils-2.37-150100.7.34.1.s390x.rpm cross-sparc-binutils-2.37-150100.7.34.1.s390x.rpm cross-sparc64-binutils-2.37-150100.7.34.1.s390x.rpm cross-spu-binutils-2.37-150100.7.34.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.34.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.34.1.src.rpm libctf-nobfd0-2.37-150100.7.34.1.s390x.rpm libctf0-2.37-150100.7.34.1.s390x.rpm binutils-2.37-150100.7.34.1.ppc64le.rpm binutils-devel-2.37-150100.7.34.1.ppc64le.rpm binutils-gold-2.37-150100.7.34.1.ppc64le.rpm cross-aarch64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-arm-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-avr-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-epiphany-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-hppa-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-hppa64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-i386-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-ia64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-m68k-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-mips-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-ppc-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-ppc64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-riscv64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-rx-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-s390-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-s390x-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-sparc-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-sparc64-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-spu-binutils-2.37-150100.7.34.1.ppc64le.rpm cross-x86_64-binutils-2.37-150100.7.34.1.ppc64le.rpm libctf-nobfd0-2.37-150100.7.34.1.ppc64le.rpm libctf0-2.37-150100.7.34.1.ppc64le.rpm binutils-2.37-150100.7.34.1.aarch64.rpm binutils-devel-2.37-150100.7.34.1.aarch64.rpm binutils-gold-2.37-150100.7.34.1.aarch64.rpm cross-arm-binutils-2.37-150100.7.34.1.aarch64.rpm cross-avr-binutils-2.37-150100.7.34.1.aarch64.rpm cross-epiphany-binutils-2.37-150100.7.34.1.aarch64.rpm cross-hppa-binutils-2.37-150100.7.34.1.aarch64.rpm cross-hppa64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-i386-binutils-2.37-150100.7.34.1.aarch64.rpm cross-ia64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-m68k-binutils-2.37-150100.7.34.1.aarch64.rpm cross-mips-binutils-2.37-150100.7.34.1.aarch64.rpm cross-ppc-binutils-2.37-150100.7.34.1.aarch64.rpm cross-ppc64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-ppc64le-binutils-2.37-150100.7.34.1.aarch64.rpm cross-riscv64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-rx-binutils-2.37-150100.7.34.1.aarch64.rpm cross-s390-binutils-2.37-150100.7.34.1.aarch64.rpm cross-s390x-binutils-2.37-150100.7.34.1.aarch64.rpm cross-sparc-binutils-2.37-150100.7.34.1.aarch64.rpm cross-sparc64-binutils-2.37-150100.7.34.1.aarch64.rpm cross-spu-binutils-2.37-150100.7.34.1.aarch64.rpm cross-x86_64-binutils-2.37-150100.7.34.1.aarch64.rpm libctf-nobfd0-2.37-150100.7.34.1.aarch64.rpm libctf0-2.37-150100.7.34.1.aarch64.rpm openSUSE-SLE-15.4-2022-1644 important SUSE Updates openSUSE-SLE 15.4 This update for clamav fixes the following issues: - CVE-2022-20770: Fixed a possible infinite loop vulnerability in the CHM file parser (bsc#1199242). - CVE-2022-20796: Fixed a possible NULL-pointer dereference crash in the scan verdict cache check (bsc#1199246). - CVE-2022-20771: Fixed a possible infinite loop vulnerability in the TIFF file parser (bsc#1199244). - CVE-2022-20785: Fixed a possible memory leak in the HTML file parser / Javascript normalizer (bsc#1199245). - CVE-2022-20792: Fixed a possible multi-byte heap buffer overflow write vulnerability in the signature database load module (bsc#1199274). clamav-0.103.6-150000.3.38.1.src.rpm clamav-0.103.6-150000.3.38.1.x86_64.rpm clamav-devel-0.103.6-150000.3.38.1.x86_64.rpm libclamav9-0.103.6-150000.3.38.1.x86_64.rpm libfreshclam2-0.103.6-150000.3.38.1.x86_64.rpm clamav-0.103.6-150000.3.38.1.s390x.rpm clamav-devel-0.103.6-150000.3.38.1.s390x.rpm libclamav9-0.103.6-150000.3.38.1.s390x.rpm libfreshclam2-0.103.6-150000.3.38.1.s390x.rpm clamav-0.103.6-150000.3.38.1.ppc64le.rpm clamav-devel-0.103.6-150000.3.38.1.ppc64le.rpm libclamav9-0.103.6-150000.3.38.1.ppc64le.rpm libfreshclam2-0.103.6-150000.3.38.1.ppc64le.rpm clamav-0.103.6-150000.3.38.1.aarch64.rpm clamav-devel-0.103.6-150000.3.38.1.aarch64.rpm libclamav9-0.103.6-150000.3.38.1.aarch64.rpm libfreshclam2-0.103.6-150000.3.38.1.aarch64.rpm openSUSE-SLE-15.4-2022-1761 moderate SUSE Updates openSUSE-SLE 15.4 This update for go fixes the following issues: Updated wrapper package to current stable go1.18 (bsc#1193742). go-1.18-150000.3.23.1.src.rpm go-1.18-150000.3.23.1.x86_64.rpm go-doc-1.18-150000.3.23.1.x86_64.rpm go-race-1.18-150000.3.23.1.x86_64.rpm go-1.18-150000.3.23.1.s390x.rpm go-doc-1.18-150000.3.23.1.s390x.rpm go-1.18-150000.3.23.1.ppc64le.rpm go-doc-1.18-150000.3.23.1.ppc64le.rpm go-1.18-150000.3.23.1.aarch64.rpm go-doc-1.18-150000.3.23.1.aarch64.rpm go-race-1.18-150000.3.23.1.aarch64.rpm openSUSE-SLE-15.4-2022-1665 important SUSE Updates openSUSE-SLE 15.4 This update for pidgin fixes the following issues: - CVE-2022-26491: Fixed MITM vulnerability when DNSSEC wasn't used (bsc#1199025). finch-2.13.0-150200.12.6.1.x86_64.rpm finch-devel-2.13.0-150200.12.6.1.x86_64.rpm libpurple-2.13.0-150200.12.6.1.x86_64.rpm libpurple-branding-upstream-2.13.0-150200.12.6.1.noarch.rpm libpurple-devel-2.13.0-150200.12.6.1.x86_64.rpm libpurple-lang-2.13.0-150200.12.6.1.noarch.rpm libpurple-plugin-sametime-2.13.0-150200.12.6.1.x86_64.rpm libpurple-tcl-2.13.0-150200.12.6.1.x86_64.rpm pidgin-2.13.0-150200.12.6.1.src.rpm pidgin-2.13.0-150200.12.6.1.x86_64.rpm pidgin-devel-2.13.0-150200.12.6.1.x86_64.rpm finch-2.13.0-150200.12.6.1.s390x.rpm finch-devel-2.13.0-150200.12.6.1.s390x.rpm libpurple-2.13.0-150200.12.6.1.s390x.rpm libpurple-devel-2.13.0-150200.12.6.1.s390x.rpm libpurple-plugin-sametime-2.13.0-150200.12.6.1.s390x.rpm libpurple-tcl-2.13.0-150200.12.6.1.s390x.rpm pidgin-2.13.0-150200.12.6.1.s390x.rpm pidgin-devel-2.13.0-150200.12.6.1.s390x.rpm finch-2.13.0-150200.12.6.1.ppc64le.rpm finch-devel-2.13.0-150200.12.6.1.ppc64le.rpm libpurple-2.13.0-150200.12.6.1.ppc64le.rpm libpurple-devel-2.13.0-150200.12.6.1.ppc64le.rpm libpurple-plugin-sametime-2.13.0-150200.12.6.1.ppc64le.rpm libpurple-tcl-2.13.0-150200.12.6.1.ppc64le.rpm pidgin-2.13.0-150200.12.6.1.ppc64le.rpm pidgin-devel-2.13.0-150200.12.6.1.ppc64le.rpm finch-2.13.0-150200.12.6.1.aarch64.rpm finch-devel-2.13.0-150200.12.6.1.aarch64.rpm libpurple-2.13.0-150200.12.6.1.aarch64.rpm libpurple-devel-2.13.0-150200.12.6.1.aarch64.rpm libpurple-plugin-sametime-2.13.0-150200.12.6.1.aarch64.rpm libpurple-tcl-2.13.0-150200.12.6.1.aarch64.rpm pidgin-2.13.0-150200.12.6.1.aarch64.rpm pidgin-devel-2.13.0-150200.12.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1755 low SUSE Updates openSUSE-SLE 15.4 This update for php7 fixes the following issues: - Fixed filter_var bypass vulnerability (bsc#1197644). apache2-mod_php7-7.4.25-150400.4.3.1.src.rpm apache2-mod_php7-7.4.25-150400.4.3.1.x86_64.rpm php7-7.4.25-150400.4.3.1.src.rpm php7-7.4.25-150400.4.3.1.x86_64.rpm php7-bcmath-7.4.25-150400.4.3.1.x86_64.rpm php7-bz2-7.4.25-150400.4.3.1.x86_64.rpm php7-calendar-7.4.25-150400.4.3.1.x86_64.rpm php7-cli-7.4.25-150400.4.3.1.x86_64.rpm php7-ctype-7.4.25-150400.4.3.1.x86_64.rpm php7-curl-7.4.25-150400.4.3.1.x86_64.rpm php7-dba-7.4.25-150400.4.3.1.x86_64.rpm php7-devel-7.4.25-150400.4.3.1.x86_64.rpm php7-dom-7.4.25-150400.4.3.1.x86_64.rpm php7-embed-7.4.25-150400.4.3.1.src.rpm php7-embed-7.4.25-150400.4.3.1.x86_64.rpm php7-enchant-7.4.25-150400.4.3.1.x86_64.rpm php7-exif-7.4.25-150400.4.3.1.x86_64.rpm php7-fastcgi-7.4.25-150400.4.3.1.src.rpm php7-fastcgi-7.4.25-150400.4.3.1.x86_64.rpm php7-fileinfo-7.4.25-150400.4.3.1.x86_64.rpm php7-fpm-7.4.25-150400.4.3.1.src.rpm php7-fpm-7.4.25-150400.4.3.1.x86_64.rpm php7-ftp-7.4.25-150400.4.3.1.x86_64.rpm php7-gd-7.4.25-150400.4.3.1.x86_64.rpm php7-gettext-7.4.25-150400.4.3.1.x86_64.rpm php7-gmp-7.4.25-150400.4.3.1.x86_64.rpm php7-iconv-7.4.25-150400.4.3.1.x86_64.rpm php7-intl-7.4.25-150400.4.3.1.x86_64.rpm php7-json-7.4.25-150400.4.3.1.x86_64.rpm php7-ldap-7.4.25-150400.4.3.1.x86_64.rpm php7-mbstring-7.4.25-150400.4.3.1.x86_64.rpm php7-mysql-7.4.25-150400.4.3.1.x86_64.rpm php7-odbc-7.4.25-150400.4.3.1.x86_64.rpm php7-opcache-7.4.25-150400.4.3.1.x86_64.rpm php7-openssl-7.4.25-150400.4.3.1.x86_64.rpm php7-pcntl-7.4.25-150400.4.3.1.x86_64.rpm php7-pdo-7.4.25-150400.4.3.1.x86_64.rpm php7-pgsql-7.4.25-150400.4.3.1.x86_64.rpm php7-phar-7.4.25-150400.4.3.1.x86_64.rpm php7-posix-7.4.25-150400.4.3.1.x86_64.rpm php7-readline-7.4.25-150400.4.3.1.x86_64.rpm php7-shmop-7.4.25-150400.4.3.1.x86_64.rpm php7-snmp-7.4.25-150400.4.3.1.x86_64.rpm php7-soap-7.4.25-150400.4.3.1.x86_64.rpm php7-sockets-7.4.25-150400.4.3.1.x86_64.rpm php7-sodium-7.4.25-150400.4.3.1.x86_64.rpm php7-sqlite-7.4.25-150400.4.3.1.x86_64.rpm php7-sysvmsg-7.4.25-150400.4.3.1.x86_64.rpm php7-sysvsem-7.4.25-150400.4.3.1.x86_64.rpm php7-sysvshm-7.4.25-150400.4.3.1.x86_64.rpm php7-test-7.4.25-150400.4.3.2.src.rpm php7-test-7.4.25-150400.4.3.2.x86_64.rpm php7-tidy-7.4.25-150400.4.3.1.x86_64.rpm php7-tokenizer-7.4.25-150400.4.3.1.x86_64.rpm php7-xmlreader-7.4.25-150400.4.3.1.x86_64.rpm php7-xmlrpc-7.4.25-150400.4.3.1.x86_64.rpm php7-xmlwriter-7.4.25-150400.4.3.1.x86_64.rpm php7-xsl-7.4.25-150400.4.3.1.x86_64.rpm php7-zip-7.4.25-150400.4.3.1.x86_64.rpm php7-zlib-7.4.25-150400.4.3.1.x86_64.rpm apache2-mod_php7-7.4.25-150400.4.3.1.s390x.rpm php7-7.4.25-150400.4.3.1.s390x.rpm php7-bcmath-7.4.25-150400.4.3.1.s390x.rpm php7-bz2-7.4.25-150400.4.3.1.s390x.rpm php7-calendar-7.4.25-150400.4.3.1.s390x.rpm php7-cli-7.4.25-150400.4.3.1.s390x.rpm php7-ctype-7.4.25-150400.4.3.1.s390x.rpm php7-curl-7.4.25-150400.4.3.1.s390x.rpm php7-dba-7.4.25-150400.4.3.1.s390x.rpm php7-devel-7.4.25-150400.4.3.1.s390x.rpm php7-dom-7.4.25-150400.4.3.1.s390x.rpm php7-embed-7.4.25-150400.4.3.1.s390x.rpm php7-enchant-7.4.25-150400.4.3.1.s390x.rpm php7-exif-7.4.25-150400.4.3.1.s390x.rpm php7-fastcgi-7.4.25-150400.4.3.1.s390x.rpm php7-fileinfo-7.4.25-150400.4.3.1.s390x.rpm php7-fpm-7.4.25-150400.4.3.1.s390x.rpm php7-ftp-7.4.25-150400.4.3.1.s390x.rpm php7-gd-7.4.25-150400.4.3.1.s390x.rpm php7-gettext-7.4.25-150400.4.3.1.s390x.rpm php7-gmp-7.4.25-150400.4.3.1.s390x.rpm php7-iconv-7.4.25-150400.4.3.1.s390x.rpm php7-intl-7.4.25-150400.4.3.1.s390x.rpm php7-json-7.4.25-150400.4.3.1.s390x.rpm php7-ldap-7.4.25-150400.4.3.1.s390x.rpm php7-mbstring-7.4.25-150400.4.3.1.s390x.rpm php7-mysql-7.4.25-150400.4.3.1.s390x.rpm php7-odbc-7.4.25-150400.4.3.1.s390x.rpm php7-opcache-7.4.25-150400.4.3.1.s390x.rpm php7-openssl-7.4.25-150400.4.3.1.s390x.rpm php7-pcntl-7.4.25-150400.4.3.1.s390x.rpm php7-pdo-7.4.25-150400.4.3.1.s390x.rpm php7-pgsql-7.4.25-150400.4.3.1.s390x.rpm php7-phar-7.4.25-150400.4.3.1.s390x.rpm php7-posix-7.4.25-150400.4.3.1.s390x.rpm php7-readline-7.4.25-150400.4.3.1.s390x.rpm php7-shmop-7.4.25-150400.4.3.1.s390x.rpm php7-snmp-7.4.25-150400.4.3.1.s390x.rpm php7-soap-7.4.25-150400.4.3.1.s390x.rpm php7-sockets-7.4.25-150400.4.3.1.s390x.rpm php7-sodium-7.4.25-150400.4.3.1.s390x.rpm php7-sqlite-7.4.25-150400.4.3.1.s390x.rpm php7-sysvmsg-7.4.25-150400.4.3.1.s390x.rpm php7-sysvsem-7.4.25-150400.4.3.1.s390x.rpm php7-sysvshm-7.4.25-150400.4.3.1.s390x.rpm php7-test-7.4.25-150400.4.3.2.s390x.rpm php7-tidy-7.4.25-150400.4.3.1.s390x.rpm php7-tokenizer-7.4.25-150400.4.3.1.s390x.rpm php7-xmlreader-7.4.25-150400.4.3.1.s390x.rpm php7-xmlrpc-7.4.25-150400.4.3.1.s390x.rpm php7-xmlwriter-7.4.25-150400.4.3.1.s390x.rpm php7-xsl-7.4.25-150400.4.3.1.s390x.rpm php7-zip-7.4.25-150400.4.3.1.s390x.rpm php7-zlib-7.4.25-150400.4.3.1.s390x.rpm apache2-mod_php7-7.4.25-150400.4.3.1.ppc64le.rpm php7-7.4.25-150400.4.3.1.ppc64le.rpm php7-bcmath-7.4.25-150400.4.3.1.ppc64le.rpm php7-bz2-7.4.25-150400.4.3.1.ppc64le.rpm php7-calendar-7.4.25-150400.4.3.1.ppc64le.rpm php7-cli-7.4.25-150400.4.3.1.ppc64le.rpm php7-ctype-7.4.25-150400.4.3.1.ppc64le.rpm php7-curl-7.4.25-150400.4.3.1.ppc64le.rpm php7-dba-7.4.25-150400.4.3.1.ppc64le.rpm php7-devel-7.4.25-150400.4.3.1.ppc64le.rpm php7-dom-7.4.25-150400.4.3.1.ppc64le.rpm php7-embed-7.4.25-150400.4.3.1.ppc64le.rpm php7-enchant-7.4.25-150400.4.3.1.ppc64le.rpm php7-exif-7.4.25-150400.4.3.1.ppc64le.rpm php7-fastcgi-7.4.25-150400.4.3.1.ppc64le.rpm php7-fileinfo-7.4.25-150400.4.3.1.ppc64le.rpm php7-fpm-7.4.25-150400.4.3.1.ppc64le.rpm php7-ftp-7.4.25-150400.4.3.1.ppc64le.rpm php7-gd-7.4.25-150400.4.3.1.ppc64le.rpm php7-gettext-7.4.25-150400.4.3.1.ppc64le.rpm php7-gmp-7.4.25-150400.4.3.1.ppc64le.rpm php7-iconv-7.4.25-150400.4.3.1.ppc64le.rpm php7-intl-7.4.25-150400.4.3.1.ppc64le.rpm php7-json-7.4.25-150400.4.3.1.ppc64le.rpm php7-ldap-7.4.25-150400.4.3.1.ppc64le.rpm php7-mbstring-7.4.25-150400.4.3.1.ppc64le.rpm php7-mysql-7.4.25-150400.4.3.1.ppc64le.rpm php7-odbc-7.4.25-150400.4.3.1.ppc64le.rpm php7-opcache-7.4.25-150400.4.3.1.ppc64le.rpm php7-openssl-7.4.25-150400.4.3.1.ppc64le.rpm php7-pcntl-7.4.25-150400.4.3.1.ppc64le.rpm php7-pdo-7.4.25-150400.4.3.1.ppc64le.rpm php7-pgsql-7.4.25-150400.4.3.1.ppc64le.rpm php7-phar-7.4.25-150400.4.3.1.ppc64le.rpm php7-posix-7.4.25-150400.4.3.1.ppc64le.rpm php7-readline-7.4.25-150400.4.3.1.ppc64le.rpm php7-shmop-7.4.25-150400.4.3.1.ppc64le.rpm php7-snmp-7.4.25-150400.4.3.1.ppc64le.rpm php7-soap-7.4.25-150400.4.3.1.ppc64le.rpm php7-sockets-7.4.25-150400.4.3.1.ppc64le.rpm php7-sodium-7.4.25-150400.4.3.1.ppc64le.rpm php7-sqlite-7.4.25-150400.4.3.1.ppc64le.rpm php7-sysvmsg-7.4.25-150400.4.3.1.ppc64le.rpm php7-sysvsem-7.4.25-150400.4.3.1.ppc64le.rpm php7-sysvshm-7.4.25-150400.4.3.1.ppc64le.rpm php7-test-7.4.25-150400.4.3.2.ppc64le.rpm php7-tidy-7.4.25-150400.4.3.1.ppc64le.rpm php7-tokenizer-7.4.25-150400.4.3.1.ppc64le.rpm php7-xmlreader-7.4.25-150400.4.3.1.ppc64le.rpm php7-xmlrpc-7.4.25-150400.4.3.1.ppc64le.rpm php7-xmlwriter-7.4.25-150400.4.3.1.ppc64le.rpm php7-xsl-7.4.25-150400.4.3.1.ppc64le.rpm php7-zip-7.4.25-150400.4.3.1.ppc64le.rpm php7-zlib-7.4.25-150400.4.3.1.ppc64le.rpm apache2-mod_php7-7.4.25-150400.4.3.1.aarch64.rpm php7-7.4.25-150400.4.3.1.aarch64.rpm php7-bcmath-7.4.25-150400.4.3.1.aarch64.rpm php7-bz2-7.4.25-150400.4.3.1.aarch64.rpm php7-calendar-7.4.25-150400.4.3.1.aarch64.rpm php7-cli-7.4.25-150400.4.3.1.aarch64.rpm php7-ctype-7.4.25-150400.4.3.1.aarch64.rpm php7-curl-7.4.25-150400.4.3.1.aarch64.rpm php7-dba-7.4.25-150400.4.3.1.aarch64.rpm php7-devel-7.4.25-150400.4.3.1.aarch64.rpm php7-dom-7.4.25-150400.4.3.1.aarch64.rpm php7-embed-7.4.25-150400.4.3.1.aarch64.rpm php7-enchant-7.4.25-150400.4.3.1.aarch64.rpm php7-exif-7.4.25-150400.4.3.1.aarch64.rpm php7-fastcgi-7.4.25-150400.4.3.1.aarch64.rpm php7-fileinfo-7.4.25-150400.4.3.1.aarch64.rpm php7-fpm-7.4.25-150400.4.3.1.aarch64.rpm php7-ftp-7.4.25-150400.4.3.1.aarch64.rpm php7-gd-7.4.25-150400.4.3.1.aarch64.rpm php7-gettext-7.4.25-150400.4.3.1.aarch64.rpm php7-gmp-7.4.25-150400.4.3.1.aarch64.rpm php7-iconv-7.4.25-150400.4.3.1.aarch64.rpm php7-intl-7.4.25-150400.4.3.1.aarch64.rpm php7-json-7.4.25-150400.4.3.1.aarch64.rpm php7-ldap-7.4.25-150400.4.3.1.aarch64.rpm php7-mbstring-7.4.25-150400.4.3.1.aarch64.rpm php7-mysql-7.4.25-150400.4.3.1.aarch64.rpm php7-odbc-7.4.25-150400.4.3.1.aarch64.rpm php7-opcache-7.4.25-150400.4.3.1.aarch64.rpm php7-openssl-7.4.25-150400.4.3.1.aarch64.rpm php7-pcntl-7.4.25-150400.4.3.1.aarch64.rpm php7-pdo-7.4.25-150400.4.3.1.aarch64.rpm php7-pgsql-7.4.25-150400.4.3.1.aarch64.rpm php7-phar-7.4.25-150400.4.3.1.aarch64.rpm php7-posix-7.4.25-150400.4.3.1.aarch64.rpm php7-readline-7.4.25-150400.4.3.1.aarch64.rpm php7-shmop-7.4.25-150400.4.3.1.aarch64.rpm php7-snmp-7.4.25-150400.4.3.1.aarch64.rpm php7-soap-7.4.25-150400.4.3.1.aarch64.rpm php7-sockets-7.4.25-150400.4.3.1.aarch64.rpm php7-sodium-7.4.25-150400.4.3.1.aarch64.rpm php7-sqlite-7.4.25-150400.4.3.1.aarch64.rpm php7-sysvmsg-7.4.25-150400.4.3.1.aarch64.rpm php7-sysvsem-7.4.25-150400.4.3.1.aarch64.rpm php7-sysvshm-7.4.25-150400.4.3.1.aarch64.rpm php7-test-7.4.25-150400.4.3.2.aarch64.rpm php7-tidy-7.4.25-150400.4.3.1.aarch64.rpm php7-tokenizer-7.4.25-150400.4.3.1.aarch64.rpm php7-xmlreader-7.4.25-150400.4.3.1.aarch64.rpm php7-xmlrpc-7.4.25-150400.4.3.1.aarch64.rpm php7-xmlwriter-7.4.25-150400.4.3.1.aarch64.rpm php7-xsl-7.4.25-150400.4.3.1.aarch64.rpm php7-zip-7.4.25-150400.4.3.1.aarch64.rpm php7-zlib-7.4.25-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1928 low SUSE Updates openSUSE-SLE 15.4 This update for php8 fixes the following issues: - Fixed filter_var bypass vulnerability (bsc#1197644). apache2-mod_php8-8.0.10-150400.4.3.1.src.rpm apache2-mod_php8-8.0.10-150400.4.3.1.x86_64.rpm php8-8.0.10-150400.4.3.1.src.rpm php8-8.0.10-150400.4.3.1.x86_64.rpm php8-bcmath-8.0.10-150400.4.3.1.x86_64.rpm php8-bz2-8.0.10-150400.4.3.1.x86_64.rpm php8-calendar-8.0.10-150400.4.3.1.x86_64.rpm php8-cli-8.0.10-150400.4.3.1.x86_64.rpm php8-ctype-8.0.10-150400.4.3.1.x86_64.rpm php8-curl-8.0.10-150400.4.3.1.x86_64.rpm php8-dba-8.0.10-150400.4.3.1.x86_64.rpm php8-devel-8.0.10-150400.4.3.1.x86_64.rpm php8-dom-8.0.10-150400.4.3.1.x86_64.rpm php8-embed-8.0.10-150400.4.3.1.src.rpm php8-embed-8.0.10-150400.4.3.1.x86_64.rpm php8-enchant-8.0.10-150400.4.3.1.x86_64.rpm php8-exif-8.0.10-150400.4.3.1.x86_64.rpm php8-fastcgi-8.0.10-150400.4.3.1.src.rpm php8-fastcgi-8.0.10-150400.4.3.1.x86_64.rpm php8-fileinfo-8.0.10-150400.4.3.1.x86_64.rpm php8-fpm-8.0.10-150400.4.3.1.src.rpm php8-fpm-8.0.10-150400.4.3.1.x86_64.rpm php8-ftp-8.0.10-150400.4.3.1.x86_64.rpm php8-gd-8.0.10-150400.4.3.1.x86_64.rpm php8-gettext-8.0.10-150400.4.3.1.x86_64.rpm php8-gmp-8.0.10-150400.4.3.1.x86_64.rpm php8-iconv-8.0.10-150400.4.3.1.x86_64.rpm php8-intl-8.0.10-150400.4.3.1.x86_64.rpm php8-ldap-8.0.10-150400.4.3.1.x86_64.rpm php8-mbstring-8.0.10-150400.4.3.1.x86_64.rpm php8-mysql-8.0.10-150400.4.3.1.x86_64.rpm php8-odbc-8.0.10-150400.4.3.1.x86_64.rpm php8-opcache-8.0.10-150400.4.3.1.x86_64.rpm php8-openssl-8.0.10-150400.4.3.1.x86_64.rpm php8-pcntl-8.0.10-150400.4.3.1.x86_64.rpm php8-pdo-8.0.10-150400.4.3.1.x86_64.rpm php8-pgsql-8.0.10-150400.4.3.1.x86_64.rpm php8-phar-8.0.10-150400.4.3.1.x86_64.rpm php8-posix-8.0.10-150400.4.3.1.x86_64.rpm php8-readline-8.0.10-150400.4.3.1.x86_64.rpm php8-shmop-8.0.10-150400.4.3.1.x86_64.rpm php8-snmp-8.0.10-150400.4.3.1.x86_64.rpm php8-soap-8.0.10-150400.4.3.1.x86_64.rpm php8-sockets-8.0.10-150400.4.3.1.x86_64.rpm php8-sodium-8.0.10-150400.4.3.1.x86_64.rpm php8-sqlite-8.0.10-150400.4.3.1.x86_64.rpm php8-sysvmsg-8.0.10-150400.4.3.1.x86_64.rpm php8-sysvsem-8.0.10-150400.4.3.1.x86_64.rpm php8-sysvshm-8.0.10-150400.4.3.1.x86_64.rpm php8-test-8.0.10-150400.4.3.2.src.rpm php8-test-8.0.10-150400.4.3.2.x86_64.rpm php8-tidy-8.0.10-150400.4.3.1.x86_64.rpm php8-tokenizer-8.0.10-150400.4.3.1.x86_64.rpm php8-xmlreader-8.0.10-150400.4.3.1.x86_64.rpm php8-xmlwriter-8.0.10-150400.4.3.1.x86_64.rpm php8-xsl-8.0.10-150400.4.3.1.x86_64.rpm php8-zip-8.0.10-150400.4.3.1.x86_64.rpm php8-zlib-8.0.10-150400.4.3.1.x86_64.rpm apache2-mod_php8-8.0.10-150400.4.3.1.s390x.rpm php8-8.0.10-150400.4.3.1.s390x.rpm php8-bcmath-8.0.10-150400.4.3.1.s390x.rpm php8-bz2-8.0.10-150400.4.3.1.s390x.rpm php8-calendar-8.0.10-150400.4.3.1.s390x.rpm php8-cli-8.0.10-150400.4.3.1.s390x.rpm php8-ctype-8.0.10-150400.4.3.1.s390x.rpm php8-curl-8.0.10-150400.4.3.1.s390x.rpm php8-dba-8.0.10-150400.4.3.1.s390x.rpm php8-devel-8.0.10-150400.4.3.1.s390x.rpm php8-dom-8.0.10-150400.4.3.1.s390x.rpm php8-embed-8.0.10-150400.4.3.1.s390x.rpm php8-enchant-8.0.10-150400.4.3.1.s390x.rpm php8-exif-8.0.10-150400.4.3.1.s390x.rpm php8-fastcgi-8.0.10-150400.4.3.1.s390x.rpm php8-fileinfo-8.0.10-150400.4.3.1.s390x.rpm php8-fpm-8.0.10-150400.4.3.1.s390x.rpm php8-ftp-8.0.10-150400.4.3.1.s390x.rpm php8-gd-8.0.10-150400.4.3.1.s390x.rpm php8-gettext-8.0.10-150400.4.3.1.s390x.rpm php8-gmp-8.0.10-150400.4.3.1.s390x.rpm php8-iconv-8.0.10-150400.4.3.1.s390x.rpm php8-intl-8.0.10-150400.4.3.1.s390x.rpm php8-ldap-8.0.10-150400.4.3.1.s390x.rpm php8-mbstring-8.0.10-150400.4.3.1.s390x.rpm php8-mysql-8.0.10-150400.4.3.1.s390x.rpm php8-odbc-8.0.10-150400.4.3.1.s390x.rpm php8-opcache-8.0.10-150400.4.3.1.s390x.rpm php8-openssl-8.0.10-150400.4.3.1.s390x.rpm php8-pcntl-8.0.10-150400.4.3.1.s390x.rpm php8-pdo-8.0.10-150400.4.3.1.s390x.rpm php8-pgsql-8.0.10-150400.4.3.1.s390x.rpm php8-phar-8.0.10-150400.4.3.1.s390x.rpm php8-posix-8.0.10-150400.4.3.1.s390x.rpm php8-readline-8.0.10-150400.4.3.1.s390x.rpm php8-shmop-8.0.10-150400.4.3.1.s390x.rpm php8-snmp-8.0.10-150400.4.3.1.s390x.rpm php8-soap-8.0.10-150400.4.3.1.s390x.rpm php8-sockets-8.0.10-150400.4.3.1.s390x.rpm php8-sodium-8.0.10-150400.4.3.1.s390x.rpm php8-sqlite-8.0.10-150400.4.3.1.s390x.rpm php8-sysvmsg-8.0.10-150400.4.3.1.s390x.rpm php8-sysvsem-8.0.10-150400.4.3.1.s390x.rpm php8-sysvshm-8.0.10-150400.4.3.1.s390x.rpm php8-test-8.0.10-150400.4.3.2.s390x.rpm php8-tidy-8.0.10-150400.4.3.1.s390x.rpm php8-tokenizer-8.0.10-150400.4.3.1.s390x.rpm php8-xmlreader-8.0.10-150400.4.3.1.s390x.rpm php8-xmlwriter-8.0.10-150400.4.3.1.s390x.rpm php8-xsl-8.0.10-150400.4.3.1.s390x.rpm php8-zip-8.0.10-150400.4.3.1.s390x.rpm php8-zlib-8.0.10-150400.4.3.1.s390x.rpm apache2-mod_php8-8.0.10-150400.4.3.1.ppc64le.rpm php8-8.0.10-150400.4.3.1.ppc64le.rpm php8-bcmath-8.0.10-150400.4.3.1.ppc64le.rpm php8-bz2-8.0.10-150400.4.3.1.ppc64le.rpm php8-calendar-8.0.10-150400.4.3.1.ppc64le.rpm php8-cli-8.0.10-150400.4.3.1.ppc64le.rpm php8-ctype-8.0.10-150400.4.3.1.ppc64le.rpm php8-curl-8.0.10-150400.4.3.1.ppc64le.rpm php8-dba-8.0.10-150400.4.3.1.ppc64le.rpm php8-devel-8.0.10-150400.4.3.1.ppc64le.rpm php8-dom-8.0.10-150400.4.3.1.ppc64le.rpm php8-embed-8.0.10-150400.4.3.1.ppc64le.rpm php8-enchant-8.0.10-150400.4.3.1.ppc64le.rpm php8-exif-8.0.10-150400.4.3.1.ppc64le.rpm php8-fastcgi-8.0.10-150400.4.3.1.ppc64le.rpm php8-fileinfo-8.0.10-150400.4.3.1.ppc64le.rpm php8-fpm-8.0.10-150400.4.3.1.ppc64le.rpm php8-ftp-8.0.10-150400.4.3.1.ppc64le.rpm php8-gd-8.0.10-150400.4.3.1.ppc64le.rpm php8-gettext-8.0.10-150400.4.3.1.ppc64le.rpm php8-gmp-8.0.10-150400.4.3.1.ppc64le.rpm php8-iconv-8.0.10-150400.4.3.1.ppc64le.rpm php8-intl-8.0.10-150400.4.3.1.ppc64le.rpm php8-ldap-8.0.10-150400.4.3.1.ppc64le.rpm php8-mbstring-8.0.10-150400.4.3.1.ppc64le.rpm php8-mysql-8.0.10-150400.4.3.1.ppc64le.rpm php8-odbc-8.0.10-150400.4.3.1.ppc64le.rpm php8-opcache-8.0.10-150400.4.3.1.ppc64le.rpm php8-openssl-8.0.10-150400.4.3.1.ppc64le.rpm php8-pcntl-8.0.10-150400.4.3.1.ppc64le.rpm php8-pdo-8.0.10-150400.4.3.1.ppc64le.rpm php8-pgsql-8.0.10-150400.4.3.1.ppc64le.rpm php8-phar-8.0.10-150400.4.3.1.ppc64le.rpm php8-posix-8.0.10-150400.4.3.1.ppc64le.rpm php8-readline-8.0.10-150400.4.3.1.ppc64le.rpm php8-shmop-8.0.10-150400.4.3.1.ppc64le.rpm php8-snmp-8.0.10-150400.4.3.1.ppc64le.rpm php8-soap-8.0.10-150400.4.3.1.ppc64le.rpm php8-sockets-8.0.10-150400.4.3.1.ppc64le.rpm php8-sodium-8.0.10-150400.4.3.1.ppc64le.rpm php8-sqlite-8.0.10-150400.4.3.1.ppc64le.rpm php8-sysvmsg-8.0.10-150400.4.3.1.ppc64le.rpm php8-sysvsem-8.0.10-150400.4.3.1.ppc64le.rpm php8-sysvshm-8.0.10-150400.4.3.1.ppc64le.rpm php8-test-8.0.10-150400.4.3.2.ppc64le.rpm php8-tidy-8.0.10-150400.4.3.1.ppc64le.rpm php8-tokenizer-8.0.10-150400.4.3.1.ppc64le.rpm php8-xmlreader-8.0.10-150400.4.3.1.ppc64le.rpm php8-xmlwriter-8.0.10-150400.4.3.1.ppc64le.rpm php8-xsl-8.0.10-150400.4.3.1.ppc64le.rpm php8-zip-8.0.10-150400.4.3.1.ppc64le.rpm php8-zlib-8.0.10-150400.4.3.1.ppc64le.rpm apache2-mod_php8-8.0.10-150400.4.3.1.aarch64.rpm php8-8.0.10-150400.4.3.1.aarch64.rpm php8-bcmath-8.0.10-150400.4.3.1.aarch64.rpm php8-bz2-8.0.10-150400.4.3.1.aarch64.rpm php8-calendar-8.0.10-150400.4.3.1.aarch64.rpm php8-cli-8.0.10-150400.4.3.1.aarch64.rpm php8-ctype-8.0.10-150400.4.3.1.aarch64.rpm php8-curl-8.0.10-150400.4.3.1.aarch64.rpm php8-dba-8.0.10-150400.4.3.1.aarch64.rpm php8-devel-8.0.10-150400.4.3.1.aarch64.rpm php8-dom-8.0.10-150400.4.3.1.aarch64.rpm php8-embed-8.0.10-150400.4.3.1.aarch64.rpm php8-enchant-8.0.10-150400.4.3.1.aarch64.rpm php8-exif-8.0.10-150400.4.3.1.aarch64.rpm php8-fastcgi-8.0.10-150400.4.3.1.aarch64.rpm php8-fileinfo-8.0.10-150400.4.3.1.aarch64.rpm php8-fpm-8.0.10-150400.4.3.1.aarch64.rpm php8-ftp-8.0.10-150400.4.3.1.aarch64.rpm php8-gd-8.0.10-150400.4.3.1.aarch64.rpm php8-gettext-8.0.10-150400.4.3.1.aarch64.rpm php8-gmp-8.0.10-150400.4.3.1.aarch64.rpm php8-iconv-8.0.10-150400.4.3.1.aarch64.rpm php8-intl-8.0.10-150400.4.3.1.aarch64.rpm php8-ldap-8.0.10-150400.4.3.1.aarch64.rpm php8-mbstring-8.0.10-150400.4.3.1.aarch64.rpm php8-mysql-8.0.10-150400.4.3.1.aarch64.rpm php8-odbc-8.0.10-150400.4.3.1.aarch64.rpm php8-opcache-8.0.10-150400.4.3.1.aarch64.rpm php8-openssl-8.0.10-150400.4.3.1.aarch64.rpm php8-pcntl-8.0.10-150400.4.3.1.aarch64.rpm php8-pdo-8.0.10-150400.4.3.1.aarch64.rpm php8-pgsql-8.0.10-150400.4.3.1.aarch64.rpm php8-phar-8.0.10-150400.4.3.1.aarch64.rpm php8-posix-8.0.10-150400.4.3.1.aarch64.rpm php8-readline-8.0.10-150400.4.3.1.aarch64.rpm php8-shmop-8.0.10-150400.4.3.1.aarch64.rpm php8-snmp-8.0.10-150400.4.3.1.aarch64.rpm php8-soap-8.0.10-150400.4.3.1.aarch64.rpm php8-sockets-8.0.10-150400.4.3.1.aarch64.rpm php8-sodium-8.0.10-150400.4.3.1.aarch64.rpm php8-sqlite-8.0.10-150400.4.3.1.aarch64.rpm php8-sysvmsg-8.0.10-150400.4.3.1.aarch64.rpm php8-sysvsem-8.0.10-150400.4.3.1.aarch64.rpm php8-sysvshm-8.0.10-150400.4.3.1.aarch64.rpm php8-test-8.0.10-150400.4.3.2.aarch64.rpm php8-tidy-8.0.10-150400.4.3.1.aarch64.rpm php8-tokenizer-8.0.10-150400.4.3.1.aarch64.rpm php8-xmlreader-8.0.10-150400.4.3.1.aarch64.rpm php8-xmlwriter-8.0.10-150400.4.3.1.aarch64.rpm php8-xsl-8.0.10-150400.4.3.1.aarch64.rpm php8-zip-8.0.10-150400.4.3.1.aarch64.rpm php8-zlib-8.0.10-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1768 low SUSE Updates openSUSE-SLE 15.4 This update for php7 fixes the following issues: - Fixed filter_var bypass vulnerability (bsc#1197644). php7-7.4.6-150200.3.38.2.src.rpm php7-firebird-7.4.6-150200.3.38.2.x86_64.rpm php7-firebird-7.4.6-150200.3.38.2.s390x.rpm php7-firebird-7.4.6-150200.3.38.2.ppc64le.rpm php7-firebird-7.4.6-150200.3.38.2.aarch64.rpm openSUSE-SLE-15.4-2022-1725 low SUSE Updates openSUSE-SLE 15.4 This update for php7 fixes the following issues: - Fixed filter_var bypass vulnerability (bsc#1197644). php7-7.2.5-150000.4.92.1.src.rpm php7-wddx-7.2.5-150000.4.92.1.x86_64.rpm php7-wddx-7.2.5-150000.4.92.1.s390x.rpm php7-wddx-7.2.5-150000.4.92.1.ppc64le.rpm php7-wddx-7.2.5-150000.4.92.1.aarch64.rpm openSUSE-SLE-15.4-2022-1919 moderate SUSE Updates openSUSE-SLE 15.4 This update for udisks2 fixes the following issues: - CVE-2021-3802: Fixed denial of service vulnerability caused by insecure defaults in user-accessible mount helpers (bsc#1190606). libudisks2-0-2.9.2-150400.3.3.1.x86_64.rpm libudisks2-0-devel-2.9.2-150400.3.3.1.x86_64.rpm libudisks2-0_bcache-2.9.2-150400.3.3.1.x86_64.rpm libudisks2-0_btrfs-2.9.2-150400.3.3.1.x86_64.rpm libudisks2-0_lsm-2.9.2-150400.3.3.1.x86_64.rpm libudisks2-0_lvm2-2.9.2-150400.3.3.1.x86_64.rpm libudisks2-0_vdo-2.9.2-150400.3.3.1.x86_64.rpm libudisks2-0_zram-2.9.2-150400.3.3.1.x86_64.rpm typelib-1_0-UDisks-2_0-2.9.2-150400.3.3.1.x86_64.rpm udisks2-2.9.2-150400.3.3.1.src.rpm udisks2-2.9.2-150400.3.3.1.x86_64.rpm udisks2-lang-2.9.2-150400.3.3.1.noarch.rpm libudisks2-0-2.9.2-150400.3.3.1.s390x.rpm libudisks2-0-devel-2.9.2-150400.3.3.1.s390x.rpm libudisks2-0_bcache-2.9.2-150400.3.3.1.s390x.rpm libudisks2-0_btrfs-2.9.2-150400.3.3.1.s390x.rpm libudisks2-0_lsm-2.9.2-150400.3.3.1.s390x.rpm libudisks2-0_lvm2-2.9.2-150400.3.3.1.s390x.rpm libudisks2-0_vdo-2.9.2-150400.3.3.1.s390x.rpm libudisks2-0_zram-2.9.2-150400.3.3.1.s390x.rpm typelib-1_0-UDisks-2_0-2.9.2-150400.3.3.1.s390x.rpm udisks2-2.9.2-150400.3.3.1.s390x.rpm libudisks2-0-2.9.2-150400.3.3.1.ppc64le.rpm libudisks2-0-devel-2.9.2-150400.3.3.1.ppc64le.rpm libudisks2-0_bcache-2.9.2-150400.3.3.1.ppc64le.rpm libudisks2-0_btrfs-2.9.2-150400.3.3.1.ppc64le.rpm libudisks2-0_lsm-2.9.2-150400.3.3.1.ppc64le.rpm libudisks2-0_lvm2-2.9.2-150400.3.3.1.ppc64le.rpm libudisks2-0_vdo-2.9.2-150400.3.3.1.ppc64le.rpm libudisks2-0_zram-2.9.2-150400.3.3.1.ppc64le.rpm typelib-1_0-UDisks-2_0-2.9.2-150400.3.3.1.ppc64le.rpm udisks2-2.9.2-150400.3.3.1.ppc64le.rpm libudisks2-0-2.9.2-150400.3.3.1.aarch64.rpm libudisks2-0-devel-2.9.2-150400.3.3.1.aarch64.rpm libudisks2-0_bcache-2.9.2-150400.3.3.1.aarch64.rpm libudisks2-0_btrfs-2.9.2-150400.3.3.1.aarch64.rpm libudisks2-0_lsm-2.9.2-150400.3.3.1.aarch64.rpm libudisks2-0_lvm2-2.9.2-150400.3.3.1.aarch64.rpm libudisks2-0_vdo-2.9.2-150400.3.3.1.aarch64.rpm libudisks2-0_zram-2.9.2-150400.3.3.1.aarch64.rpm typelib-1_0-UDisks-2_0-2.9.2-150400.3.3.1.aarch64.rpm udisks2-2.9.2-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1679 moderate SUSE Updates openSUSE-SLE 15.4 This update for sssd provides the following fix: - update to meet last ldb2 version update. (bsc#1199362) sssd-1.16.1-150300.23.28.1.src.rpm sssd-common-32bit-1.16.1-150300.23.28.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.28.1.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.28.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.28.1.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.28.1.s390x.rpm sssd-wbclient-1.16.1-150300.23.28.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.28.1.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.28.1.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.28.1.aarch64.rpm openSUSE-SLE-15.4-2022-1715 low SUSE Updates openSUSE-SLE 15.4 This update for python-configparser fixes the following issues: - Fixed issue on Python 2.x when future is present had unintended consequences. python-configparser-3.7.3-150100.3.3.1.src.rpm python2-configparser-3.7.3-150100.3.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2118 moderate SUSE Updates openSUSE-SLE 15.4 This update fixes the following issues: golang-github-QubitProducts-exporter_exporter: - Adapted to build on Enterprise Linux. - Fix build for RedHat 7 - Require Go >= 1.14 also for CentOS - Add support for CentOS - Replace %{?systemd_requires} with %{?systemd_ordering} mgr-cfg: - Version 4.3.6-1 * Corrected source URL in spec file * Fix installation problem for SLE15SP4 due missing python-selinux * Fix python selinux package name depending on build target (bsc#1193600) * Do not build python 2 package for SLE15SP4 and higher * Remove unused legacy code mgr-custom-info: - Version 4.3.3-1 * Remove unused legacy code mgr-daemon: - Version 4.3.4-1 * Corrected source URLs in spec file. * Update translation strings mgr-osad: - Version 4.3.6-1 * Corrected source URL in spec file. * Do not build python 2 package for SLE15SP4 and higher * Removed spacewalk-selinux dependencies. * Updated source url. mgr-push: - Version 4.3.4-1 * Corrected source URLs in spec file. mgr-virtualization: - Version 4.3.5-1 * Corrected source URLs in spec file. * Do not build python 2 package for SLE15SP4 and higher prometheus-blackbox_exporter: - Enhanced to build on Enterprise Linux 8 prometheus-postgres_exporter: - Updated for RHEL8. python-hwdata: - Require python macros for building rhnlib: - Version 4.3.4-1 * Reorganize python files spacecmd: - Version 4.3.11-1 * on full system update call schedulePackageUpdate API (bsc#1197507) * parse boolean paramaters correctly (bsc#1197689) * Add parameter to set containerized proxy SSH port * Add proxy config generation subcommand * Option 'org_createfirst' added to perform initial organization and user creation * Added gettext build requirement for RHEL. * Removed RHEL 5 references. * Include group formulas configuration in spacecmd group_backup and spacecmd group_restore. This changes backup format to json, previously used plain text is still supported for reading (bsc#1190462) * Update translation strings * Improved event history listing and added new system_eventdetails command to retrieve the details of an event * Make schedule_deletearchived to get all actions without display limit * Allow passing a date limit for schedule_deletearchived on spacecmd (bsc#1181223) spacewalk-client-tools: - Version 4.3.9-1 * Corrected source URLs in spec file. * do not build python 2 package for SLE15 * Remove unused legacy code * Update translation strings spacewalk-koan: - Version 4.3.5-1 * Corrected source URLs in spec file. spacewalk-oscap: - Version 4.3.5-1 * Corrected source URLs in spec file. * Do not build python 2 package for SLE15SP4 and higher spacewalk-remote-utils: - Version 4.3.3-1 * Adapt the package for changes in rhnlib supportutils-plugin-susemanager-client: - Version 4.3.2-1 * Add proxy containers config and logs suseRegisterInfo: - Version 4.3.3-1 * Bump version to 4.3.0 supportutils-plugin-salt: - Add support for Salt Bundle uyuni-common-libs: - Version 4.3.4-1 * implement more decompression algorithms for reposync (bsc#1196704) * Reorganize python files * Add decompression of zck files to fileutils golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.src.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.x86_64.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.src.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.x86_64.rpm prometheus-blackbox_exporter-0.19.0-150000.1.8.2.src.rpm prometheus-blackbox_exporter-0.19.0-150000.1.8.2.x86_64.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.src.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.x86_64.rpm python-hwdata-2.3.5-150000.3.6.1.src.rpm python3-hwdata-2.3.5-150000.3.6.1.noarch.rpm spacecmd-4.3.11-150000.3.80.2.noarch.rpm spacecmd-4.3.11-150000.3.80.2.src.rpm supportutils-plugin-salt-1.2.0-150000.3.6.1.noarch.rpm supportutils-plugin-salt-1.2.0-150000.3.6.1.src.rpm supportutils-plugin-susemanager-client-4.3.2-150000.3.18.1.noarch.rpm supportutils-plugin-susemanager-client-4.3.2-150000.3.18.1.src.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.s390x.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.s390x.rpm prometheus-blackbox_exporter-0.19.0-150000.1.8.2.s390x.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.s390x.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.ppc64le.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.ppc64le.rpm prometheus-blackbox_exporter-0.19.0-150000.1.8.2.ppc64le.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.ppc64le.rpm golang-github-QubitProducts-exporter_exporter-0.4.0-150000.1.12.1.aarch64.rpm golang-github-prometheus-promu-0.13.0-150000.3.6.1.aarch64.rpm prometheus-blackbox_exporter-0.19.0-150000.1.8.2.aarch64.rpm prometheus-postgres_exporter-0.10.0-150000.1.8.2.aarch64.rpm openSUSE-SLE-15.4-2022-1824 moderate SUSE Updates openSUSE-SLE 15.4 This update for dhcp fixes the following issues: - Properly handle DHCRELAY(6)_OPTIONS (bsc#1198657) dhcp-4.3.6.P1-150000.6.14.1.src.rpm dhcp-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-client-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-devel-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-doc-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-relay-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-server-4.3.6.P1-150000.6.14.1.x86_64.rpm dhcp-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-client-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-devel-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-doc-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-relay-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-server-4.3.6.P1-150000.6.14.1.s390x.rpm dhcp-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-client-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-devel-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-doc-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-relay-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-server-4.3.6.P1-150000.6.14.1.ppc64le.rpm dhcp-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-client-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-devel-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-doc-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-relay-4.3.6.P1-150000.6.14.1.aarch64.rpm dhcp-server-4.3.6.P1-150000.6.14.1.aarch64.rpm openSUSE-SLE-15.4-2022-1871 moderate SUSE Updates openSUSE-SLE 15.4 This update for nftables fixes the following issues: - Fix rare crashes that could occur e.g. in firewalld (bsc#1197606) libnftables1-0.9.8-150300.3.3.1.x86_64.rpm nftables-0.9.8-150300.3.3.1.src.rpm nftables-0.9.8-150300.3.3.1.x86_64.rpm nftables-devel-0.9.8-150300.3.3.1.x86_64.rpm python3-nftables-0.9.8-150300.3.3.1.x86_64.rpm libnftables1-0.9.8-150300.3.3.1.s390x.rpm nftables-0.9.8-150300.3.3.1.s390x.rpm nftables-devel-0.9.8-150300.3.3.1.s390x.rpm python3-nftables-0.9.8-150300.3.3.1.s390x.rpm libnftables1-0.9.8-150300.3.3.1.ppc64le.rpm nftables-0.9.8-150300.3.3.1.ppc64le.rpm nftables-devel-0.9.8-150300.3.3.1.ppc64le.rpm python3-nftables-0.9.8-150300.3.3.1.ppc64le.rpm libnftables1-0.9.8-150300.3.3.1.aarch64.rpm nftables-0.9.8-150300.3.3.1.aarch64.rpm nftables-devel-0.9.8-150300.3.3.1.aarch64.rpm python3-nftables-0.9.8-150300.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1915 moderate SUSE Updates openSUSE-SLE 15.4 This update for autoyast2 fixes the following issues: - Fix detection disk serial and size in the "disks" ERB helper (bsc#1199000) - Fix rules validation when using a dialog (bsc#1199165) autoyast2-4.4.37-150400.3.3.1.noarch.rpm autoyast2-4.4.37-150400.3.3.1.src.rpm autoyast2-installation-4.4.37-150400.3.3.1.noarch.rpm yast2-schema-default-4.4.12-150400.3.3.1.src.rpm yast2-schema-default-4.4.12-150400.3.3.1.x86_64.rpm yast2-schema-micro-4.4.12-150400.3.3.1.src.rpm yast2-schema-micro-4.4.12-150400.3.3.1.x86_64.rpm yast2-schema-default-4.4.12-150400.3.3.1.s390x.rpm yast2-schema-micro-4.4.12-150400.3.3.1.s390x.rpm yast2-schema-default-4.4.12-150400.3.3.1.ppc64le.rpm yast2-schema-micro-4.4.12-150400.3.3.1.ppc64le.rpm yast2-schema-default-4.4.12-150400.3.3.1.aarch64.rpm yast2-schema-micro-4.4.12-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2140 important SUSE Updates openSUSE-SLE 15.4 This security update for golang-github-prometheus-node_exporter provides: Update golang-github-prometheus-node_exporter from version 1.1.2 to version 1.3.0 (bsc#1196338, jsc#SLE-24238, jsc#SLE-24239) - CVE-2022-21698: Denial of service using InstrumentHandlerCounter - Update vendor tarball with prometheus/client_golang 1.11.1 - Update to 1.3.0 * [CHANGE] Add path label to rapl collector #2146 * [CHANGE] Exclude filesystems under /run/credentials #2157 * [CHANGE] Add TCPTimeouts to netstat default filter #2189 * [FEATURE] Add lnstat collector for metrics from /proc/net/stat/ #1771 * [FEATURE] Add darwin powersupply collector #1777 * [FEATURE] Add support for monitoring GPUs on Linux #1998 * [FEATURE] Add Darwin thermal collector #2032 * [FEATURE] Add os release collector #2094 * [FEATURE] Add netdev.address-info collector #2105 * [FEATURE] Add clocksource metrics to time collector #2197 * [ENHANCEMENT] Support glob textfile collector directories #1985 * [ENHANCEMENT] ethtool: Expose node_ethtool_info metric #2080 * [ENHANCEMENT] Use include/exclude flags for ethtool filtering #2165 * [ENHANCEMENT] Add flag to disable guest CPU metrics #2123 * [ENHANCEMENT] Add DMI collector #2131 * [ENHANCEMENT] Add threads metrics to processes collector #2164 * [ENHANCMMENT] Reduce timer GC delays in the Linux filesystem collector #2169 * [ENHANCMMENT] Add TCPTimeouts to netstat default filter #2189 * [ENHANCMMENT] Use SysctlTimeval for boottime collector on BSD #2208 * [BUGFIX] ethtool: Sanitize metric names #2093 * [BUGFIX] Fix ethtool collector for multiple interfaces #2126 * [BUGFIX] Fix possible panic on macOS #2133 * [BUGFIX] Collect flag_info and bug_info only for one core #2156 * [BUGFIX] Prevent duplicate ethtool metric names #2187 - Update to 1.2.2 * Bug fixes Fix processes collector long int parsing #2112 - Update to 1.2.1 * Removed Remove obsolete capture permission denied error fix already included upstream * Bug fixes Fix zoneinfo parsing prometheus/procfs#386 Fix nvme collector log noise #2091 Fix rapl collector log noise #2092 - Update to 1.2.0 * Changes Rename filesystem collector flags to match other collectors #2012 Make node_exporter print usage to STDOUT #203 * Features Add conntrack statistics metrics #1155 Add ethtool stats collector #1832 Add flag to ignore network speed if it is unknown #1989 Add tapestats collector for Linux #2044 Add nvme collector #2062 * Enhancements Add ErrorLog plumbing to promhttp #1887 Add more Infiniband counters #2019 netclass: retrieve interface names and filter before parsing #2033 Add time zone offset metric #2060 * Bug fixes Handle errors from disabled PSI subsystem #1983 Fix panic when using backwards compatible flags #2000 Fix wrong value for OpenBSD memory buffer cache #2015 Only initiate collectors once #2048 Handle small backwards jumps in CPU idle #2067 - Capture permission denied error for "energy_uj" file (bsc#1190535) golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.src.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.x86_64.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.s390x.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.ppc64le.rpm golang-github-prometheus-node_exporter-1.3.0-150100.3.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-2139 important SUSE Updates openSUSE-SLE 15.4 This update for golang-github-prometheus-alertmanager fixes the following issues: Update golang-github-prometheus-alertmanager from version 0.21.0 to version 0.23.0 (bsc#1196338, jsc#SLE-24077) - CVE-2022-21698: Denial of service using InstrumentHandlerCounter - Update vendor tarball with prometheus/client_golang 1.11.1 - Update required Go version to 1.16 - Use %autosetup macro - Update to version 0.23.0: * Release 0.23.0 * Release 0.23.0-rc.0 * amtool: Detect version drift and warn users (#2672) * Add ability to skip TLS verification for amtool (#2663) * Fix empty isEqual in amtool. (#2668) * Fix main tests (#2670) * cli: add new template render command (#2538) * OpsGenie: refer to alert instead of incident (#2609) * Docs: target_match and source_match are DEPRECATED (#2665) * Fix test not waiting for cluster member to be ready - Add go_modules to _service. - Added hardening to systemd service(s) with a modified prometheus-alertmanager.service (bsc#1181400) golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.src.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.x86_64.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.s390x.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.ppc64le.rpm golang-github-prometheus-alertmanager-0.23.0-150100.4.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-1666 important SUSE Updates openSUSE-SLE 15.4 This update for slurm fixes the following issues: - CVE-2022-29500: Fixed architectural flaw that could have been exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a problem that an unprivileged user could have sent data to arbitrary unix socket as root (bsc#1199279). libnss_slurm2-20.11.9-150300.4.6.1.x86_64.rpm libpmi0-20.11.9-150300.4.6.1.x86_64.rpm libslurm36-20.11.9-150300.4.6.1.x86_64.rpm perl-slurm-20.11.9-150300.4.6.1.x86_64.rpm slurm-20.11.9-150300.4.6.1.src.rpm slurm-20.11.9-150300.4.6.1.x86_64.rpm slurm-auth-none-20.11.9-150300.4.6.1.x86_64.rpm slurm-config-20.11.9-150300.4.6.1.x86_64.rpm slurm-config-man-20.11.9-150300.4.6.1.x86_64.rpm slurm-cray-20.11.9-150300.4.6.1.x86_64.rpm slurm-devel-20.11.9-150300.4.6.1.x86_64.rpm slurm-doc-20.11.9-150300.4.6.1.x86_64.rpm slurm-hdf5-20.11.9-150300.4.6.1.x86_64.rpm slurm-lua-20.11.9-150300.4.6.1.x86_64.rpm slurm-munge-20.11.9-150300.4.6.1.x86_64.rpm slurm-node-20.11.9-150300.4.6.1.x86_64.rpm slurm-openlava-20.11.9-150300.4.6.1.x86_64.rpm slurm-pam_slurm-20.11.9-150300.4.6.1.x86_64.rpm slurm-plugins-20.11.9-150300.4.6.1.x86_64.rpm slurm-rest-20.11.9-150300.4.6.1.x86_64.rpm slurm-seff-20.11.9-150300.4.6.1.x86_64.rpm slurm-sjstat-20.11.9-150300.4.6.1.x86_64.rpm slurm-slurmdbd-20.11.9-150300.4.6.1.x86_64.rpm slurm-sql-20.11.9-150300.4.6.1.x86_64.rpm slurm-sview-20.11.9-150300.4.6.1.x86_64.rpm slurm-torque-20.11.9-150300.4.6.1.x86_64.rpm slurm-webdoc-20.11.9-150300.4.6.1.x86_64.rpm libnss_slurm2-20.11.9-150300.4.6.1.s390x.rpm libpmi0-20.11.9-150300.4.6.1.s390x.rpm libslurm36-20.11.9-150300.4.6.1.s390x.rpm perl-slurm-20.11.9-150300.4.6.1.s390x.rpm slurm-20.11.9-150300.4.6.1.s390x.rpm slurm-auth-none-20.11.9-150300.4.6.1.s390x.rpm slurm-config-20.11.9-150300.4.6.1.s390x.rpm slurm-config-man-20.11.9-150300.4.6.1.s390x.rpm slurm-cray-20.11.9-150300.4.6.1.s390x.rpm slurm-devel-20.11.9-150300.4.6.1.s390x.rpm slurm-doc-20.11.9-150300.4.6.1.s390x.rpm slurm-hdf5-20.11.9-150300.4.6.1.s390x.rpm slurm-lua-20.11.9-150300.4.6.1.s390x.rpm slurm-munge-20.11.9-150300.4.6.1.s390x.rpm slurm-node-20.11.9-150300.4.6.1.s390x.rpm slurm-openlava-20.11.9-150300.4.6.1.s390x.rpm slurm-pam_slurm-20.11.9-150300.4.6.1.s390x.rpm slurm-plugins-20.11.9-150300.4.6.1.s390x.rpm slurm-rest-20.11.9-150300.4.6.1.s390x.rpm slurm-seff-20.11.9-150300.4.6.1.s390x.rpm slurm-sjstat-20.11.9-150300.4.6.1.s390x.rpm slurm-slurmdbd-20.11.9-150300.4.6.1.s390x.rpm slurm-sql-20.11.9-150300.4.6.1.s390x.rpm slurm-sview-20.11.9-150300.4.6.1.s390x.rpm slurm-torque-20.11.9-150300.4.6.1.s390x.rpm slurm-webdoc-20.11.9-150300.4.6.1.s390x.rpm libnss_slurm2-20.11.9-150300.4.6.1.ppc64le.rpm libpmi0-20.11.9-150300.4.6.1.ppc64le.rpm libslurm36-20.11.9-150300.4.6.1.ppc64le.rpm perl-slurm-20.11.9-150300.4.6.1.ppc64le.rpm slurm-20.11.9-150300.4.6.1.ppc64le.rpm slurm-auth-none-20.11.9-150300.4.6.1.ppc64le.rpm slurm-config-20.11.9-150300.4.6.1.ppc64le.rpm slurm-config-man-20.11.9-150300.4.6.1.ppc64le.rpm slurm-cray-20.11.9-150300.4.6.1.ppc64le.rpm slurm-devel-20.11.9-150300.4.6.1.ppc64le.rpm slurm-doc-20.11.9-150300.4.6.1.ppc64le.rpm slurm-hdf5-20.11.9-150300.4.6.1.ppc64le.rpm slurm-lua-20.11.9-150300.4.6.1.ppc64le.rpm slurm-munge-20.11.9-150300.4.6.1.ppc64le.rpm slurm-node-20.11.9-150300.4.6.1.ppc64le.rpm slurm-openlava-20.11.9-150300.4.6.1.ppc64le.rpm slurm-pam_slurm-20.11.9-150300.4.6.1.ppc64le.rpm slurm-plugins-20.11.9-150300.4.6.1.ppc64le.rpm slurm-rest-20.11.9-150300.4.6.1.ppc64le.rpm slurm-seff-20.11.9-150300.4.6.1.ppc64le.rpm slurm-sjstat-20.11.9-150300.4.6.1.ppc64le.rpm slurm-slurmdbd-20.11.9-150300.4.6.1.ppc64le.rpm slurm-sql-20.11.9-150300.4.6.1.ppc64le.rpm slurm-sview-20.11.9-150300.4.6.1.ppc64le.rpm slurm-torque-20.11.9-150300.4.6.1.ppc64le.rpm slurm-webdoc-20.11.9-150300.4.6.1.ppc64le.rpm libnss_slurm2-20.11.9-150300.4.6.1.aarch64.rpm libpmi0-20.11.9-150300.4.6.1.aarch64.rpm libslurm36-20.11.9-150300.4.6.1.aarch64.rpm perl-slurm-20.11.9-150300.4.6.1.aarch64.rpm slurm-20.11.9-150300.4.6.1.aarch64.rpm slurm-auth-none-20.11.9-150300.4.6.1.aarch64.rpm slurm-config-20.11.9-150300.4.6.1.aarch64.rpm slurm-config-man-20.11.9-150300.4.6.1.aarch64.rpm slurm-cray-20.11.9-150300.4.6.1.aarch64.rpm slurm-devel-20.11.9-150300.4.6.1.aarch64.rpm slurm-doc-20.11.9-150300.4.6.1.aarch64.rpm slurm-hdf5-20.11.9-150300.4.6.1.aarch64.rpm slurm-lua-20.11.9-150300.4.6.1.aarch64.rpm slurm-munge-20.11.9-150300.4.6.1.aarch64.rpm slurm-node-20.11.9-150300.4.6.1.aarch64.rpm slurm-openlava-20.11.9-150300.4.6.1.aarch64.rpm slurm-pam_slurm-20.11.9-150300.4.6.1.aarch64.rpm slurm-plugins-20.11.9-150300.4.6.1.aarch64.rpm slurm-rest-20.11.9-150300.4.6.1.aarch64.rpm slurm-seff-20.11.9-150300.4.6.1.aarch64.rpm slurm-sjstat-20.11.9-150300.4.6.1.aarch64.rpm slurm-slurmdbd-20.11.9-150300.4.6.1.aarch64.rpm slurm-sql-20.11.9-150300.4.6.1.aarch64.rpm slurm-sview-20.11.9-150300.4.6.1.aarch64.rpm slurm-torque-20.11.9-150300.4.6.1.aarch64.rpm slurm-webdoc-20.11.9-150300.4.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-1831 important SUSE Updates openSUSE-SLE 15.4 This update for slurm_20_11 fixes the following issues: - CVE-2022-29500: Fixed architectural flaw that could have been exploited to allow an unprivileged user to execute arbitrary processes as root (bsc#1199278). - CVE-2022-29501: Fixed a problem that an unprivileged user could have sent data to arbitrary unix socket as root (bsc#1199279). libnss_slurm2_20_11-20.11.9-150200.6.10.1.x86_64.rpm libpmi0_20_11-20.11.9-150200.6.10.1.x86_64.rpm perl-slurm_20_11-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-20.11.9-150200.6.10.1.src.rpm slurm_20_11-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-auth-none-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-config-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-config-man-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-cray-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-devel-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-doc-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-hdf5-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-lua-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-munge-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-node-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-openlava-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-pam_slurm-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-plugins-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-rest-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-seff-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-sjstat-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-slurmdbd-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-sql-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-sview-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-torque-20.11.9-150200.6.10.1.x86_64.rpm slurm_20_11-webdoc-20.11.9-150200.6.10.1.x86_64.rpm libnss_slurm2_20_11-20.11.9-150200.6.10.1.s390x.rpm libpmi0_20_11-20.11.9-150200.6.10.1.s390x.rpm perl-slurm_20_11-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-auth-none-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-config-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-config-man-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-cray-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-devel-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-doc-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-hdf5-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-lua-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-munge-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-node-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-openlava-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-pam_slurm-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-plugins-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-rest-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-seff-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-sjstat-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-slurmdbd-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-sql-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-sview-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-torque-20.11.9-150200.6.10.1.s390x.rpm slurm_20_11-webdoc-20.11.9-150200.6.10.1.s390x.rpm libnss_slurm2_20_11-20.11.9-150200.6.10.1.ppc64le.rpm libpmi0_20_11-20.11.9-150200.6.10.1.ppc64le.rpm perl-slurm_20_11-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-auth-none-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-config-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-config-man-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-cray-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-devel-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-doc-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-hdf5-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-lua-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-munge-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-node-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-openlava-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-pam_slurm-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-plugins-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-rest-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-seff-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-sjstat-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-slurmdbd-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-sql-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-sview-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-torque-20.11.9-150200.6.10.1.ppc64le.rpm slurm_20_11-webdoc-20.11.9-150200.6.10.1.ppc64le.rpm libnss_slurm2_20_11-20.11.9-150200.6.10.1.aarch64.rpm libpmi0_20_11-20.11.9-150200.6.10.1.aarch64.rpm perl-slurm_20_11-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-auth-none-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-config-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-config-man-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-cray-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-devel-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-doc-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-hdf5-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-lua-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-munge-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-node-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-openlava-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-pam_slurm-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-plugins-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-rest-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-seff-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-sjstat-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-slurmdbd-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-sql-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-sview-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-torque-20.11.9-150200.6.10.1.aarch64.rpm slurm_20_11-webdoc-20.11.9-150200.6.10.1.aarch64.rpm openSUSE-SLE-15.4-2022-1930 moderate SUSE Updates openSUSE-SLE 15.4 This update for libarchive fixes the following issues: - CVE-2022-26280: Fixed out-of-bounds read via the component zipx_lzma_alone_init (bsc#1197634). - CVE-2021-36976: Fixed use-after-free in copy_string (called from do_uncompress_block and process_block) (bsc#1188572). - CVE-2017-5601: Fixed out-of-bounds memory access preventing denial-of-service (bsc#1197634, bsc#1189528). bsdtar-3.5.1-150400.3.3.1.x86_64.rpm libarchive-3.5.1-150400.3.3.1.src.rpm libarchive-devel-3.5.1-150400.3.3.1.x86_64.rpm libarchive13-3.5.1-150400.3.3.1.x86_64.rpm libarchive13-32bit-3.5.1-150400.3.3.1.x86_64.rpm bsdtar-3.5.1-150400.3.3.1.s390x.rpm libarchive-devel-3.5.1-150400.3.3.1.s390x.rpm libarchive13-3.5.1-150400.3.3.1.s390x.rpm bsdtar-3.5.1-150400.3.3.1.ppc64le.rpm libarchive-devel-3.5.1-150400.3.3.1.ppc64le.rpm libarchive13-3.5.1-150400.3.3.1.ppc64le.rpm bsdtar-3.5.1-150400.3.3.1.aarch64.rpm libarchive-devel-3.5.1-150400.3.3.1.aarch64.rpm libarchive13-3.5.1-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1862 moderate SUSE Updates openSUSE-SLE 15.4 This update for go1.17 fixes the following issues: - CVE-2022-29526: Fixed faccessat() system call operation that checked the wrong group (bsc#1199413). - go1.17.10 (released 2022-05-10) (bsc#1190649). go1.17-1.17.10-150000.1.34.1.src.rpm go1.17-1.17.10-150000.1.34.1.x86_64.rpm go1.17-doc-1.17.10-150000.1.34.1.x86_64.rpm go1.17-race-1.17.10-150000.1.34.1.x86_64.rpm go1.17-1.17.10-150000.1.34.1.s390x.rpm go1.17-doc-1.17.10-150000.1.34.1.s390x.rpm go1.17-1.17.10-150000.1.34.1.ppc64le.rpm go1.17-doc-1.17.10-150000.1.34.1.ppc64le.rpm go1.17-1.17.10-150000.1.34.1.aarch64.rpm go1.17-doc-1.17.10-150000.1.34.1.aarch64.rpm go1.17-race-1.17.10-150000.1.34.1.aarch64.rpm openSUSE-SLE-15.4-2022-1829 moderate SUSE Updates openSUSE-SLE 15.4 This update for go1.18 fixes the following issues: - CVE-2022-29526: Fixed faccessat() system call operation that checked the wrong group (bsc#1199413). - go1.18.2 (released 2022-05-10) (bsc#1193742). go1.18-1.18.2-150000.1.17.1.src.rpm go1.18-1.18.2-150000.1.17.1.x86_64.rpm go1.18-doc-1.18.2-150000.1.17.1.x86_64.rpm go1.18-race-1.18.2-150000.1.17.1.x86_64.rpm go1.18-1.18.2-150000.1.17.1.s390x.rpm go1.18-doc-1.18.2-150000.1.17.1.s390x.rpm go1.18-1.18.2-150000.1.17.1.ppc64le.rpm go1.18-doc-1.18.2-150000.1.17.1.ppc64le.rpm go1.18-1.18.2-150000.1.17.1.aarch64.rpm go1.18-doc-1.18.2-150000.1.17.1.aarch64.rpm go1.18-race-1.18.2-150000.1.17.1.aarch64.rpm openSUSE-SLE-15.4-2022-1730 important SUSE Updates openSUSE-SLE 15.4 This update for libslirp fixes the following issues: - CVE-2021-3592: Fixed invalid pointer initialization may lead to information disclosure (bootp) (bsc#1187364). - CVE-2021-3594: Fixed invalid pointer initialization may lead to information disclosure (udp) (bsc#1187367). - CVE-2021-3595: Fixed invalid pointer initialization may lead to information disclosure (tftp) (bsc#1187366). - Fix a dhcp regression [bsc#1198773] libslirp-4.3.1-150300.6.2.src.rpm libslirp-devel-4.3.1-150300.6.2.x86_64.rpm libslirp0-4.3.1-150300.6.2.x86_64.rpm libslirp-devel-4.3.1-150300.6.2.s390x.rpm libslirp0-4.3.1-150300.6.2.s390x.rpm libslirp-devel-4.3.1-150300.6.2.ppc64le.rpm libslirp0-4.3.1-150300.6.2.ppc64le.rpm libslirp-devel-4.3.1-150300.6.2.aarch64.rpm libslirp0-4.3.1-150300.6.2.aarch64.rpm openSUSE-SLE-15.4-2022-2112 moderate SUSE Updates openSUSE-SLE 15.4 This update for gnutls fixes the following issues: - FIPS: Make sure zeroization is performed in all API functions [bsc#1191021] - FIPS: Add missing requirements for the SLI [bsc#1190698] * Remove 3DES from FIPS approved algorithms: * DRBG service (gnutls_rnd) should be considered approved: - FIPS: Mark AES-GCM as approved in the TLS context [bsc#1194907] gnutls-3.7.3-150400.4.3.6.src.rpm gnutls-3.7.3-150400.4.3.6.x86_64.rpm gnutls-guile-3.7.3-150400.4.3.6.x86_64.rpm libgnutls-devel-3.7.3-150400.4.3.6.x86_64.rpm libgnutls-devel-32bit-3.7.3-150400.4.3.6.x86_64.rpm libgnutls30-3.7.3-150400.4.3.6.x86_64.rpm libgnutls30-32bit-3.7.3-150400.4.3.6.x86_64.rpm libgnutls30-hmac-3.7.3-150400.4.3.6.x86_64.rpm libgnutls30-hmac-32bit-3.7.3-150400.4.3.6.x86_64.rpm libgnutlsxx-devel-3.7.3-150400.4.3.6.x86_64.rpm libgnutlsxx28-3.7.3-150400.4.3.6.x86_64.rpm gnutls-3.7.3-150400.4.3.6.s390x.rpm gnutls-guile-3.7.3-150400.4.3.6.s390x.rpm libgnutls-devel-3.7.3-150400.4.3.6.s390x.rpm libgnutls30-3.7.3-150400.4.3.6.s390x.rpm libgnutls30-hmac-3.7.3-150400.4.3.6.s390x.rpm libgnutlsxx-devel-3.7.3-150400.4.3.6.s390x.rpm libgnutlsxx28-3.7.3-150400.4.3.6.s390x.rpm gnutls-3.7.3-150400.4.3.6.ppc64le.rpm gnutls-guile-3.7.3-150400.4.3.6.ppc64le.rpm libgnutls-devel-3.7.3-150400.4.3.6.ppc64le.rpm libgnutls30-3.7.3-150400.4.3.6.ppc64le.rpm libgnutls30-hmac-3.7.3-150400.4.3.6.ppc64le.rpm libgnutlsxx-devel-3.7.3-150400.4.3.6.ppc64le.rpm libgnutlsxx28-3.7.3-150400.4.3.6.ppc64le.rpm gnutls-3.7.3-150400.4.3.6.aarch64.rpm gnutls-guile-3.7.3-150400.4.3.6.aarch64.rpm libgnutls-devel-3.7.3-150400.4.3.6.aarch64.rpm libgnutls30-3.7.3-150400.4.3.6.aarch64.rpm libgnutls30-hmac-3.7.3-150400.4.3.6.aarch64.rpm libgnutlsxx-devel-3.7.3-150400.4.3.6.aarch64.rpm libgnutlsxx28-3.7.3-150400.4.3.6.aarch64.rpm openSUSE-SLE-15.4-2022-2737 moderate SUSE Updates openSUSE-SLE 15.4 This update for gedit fixes the following issues: - Add necessary dependency to resolve schema "is not installed" error after install in WSL (bsc#1198312) gedit-40.1-150400.4.3.1.src.rpm gedit-40.1-150400.4.3.1.x86_64.rpm gedit-devel-40.1-150400.4.3.1.x86_64.rpm gedit-lang-40.1-150400.4.3.1.noarch.rpm python3-gedit-40.1-150400.4.3.1.noarch.rpm gedit-40.1-150400.4.3.1.s390x.rpm gedit-devel-40.1-150400.4.3.1.s390x.rpm gedit-40.1-150400.4.3.1.ppc64le.rpm gedit-devel-40.1-150400.4.3.1.ppc64le.rpm gedit-40.1-150400.4.3.1.aarch64.rpm gedit-devel-40.1-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2325 important SUSE Updates openSUSE-SLE 15.4 This update for resource-agents fixes the following issues: - Fixed predictable log file in /tmp in mariadb.in (bsc#1146691). - Allow aws-vpc-move-ip to specify an interface label to distinguish the IP address (bsc#1199766) - Implement options to disable DAD and to allow sending NA in the background (bsc#1196164) - Imporove error message if monpassword was not set (bsc#1197956) ldirectord-4.10.0+git40.0f4de473-150400.3.7.1.x86_64.rpm monitoring-plugins-metadata-4.10.0+git40.0f4de473-150400.3.7.1.noarch.rpm resource-agents-4.10.0+git40.0f4de473-150400.3.7.1.src.rpm resource-agents-4.10.0+git40.0f4de473-150400.3.7.1.x86_64.rpm ldirectord-4.10.0+git40.0f4de473-150400.3.7.1.s390x.rpm resource-agents-4.10.0+git40.0f4de473-150400.3.7.1.s390x.rpm ldirectord-4.10.0+git40.0f4de473-150400.3.7.1.ppc64le.rpm resource-agents-4.10.0+git40.0f4de473-150400.3.7.1.ppc64le.rpm ldirectord-4.10.0+git40.0f4de473-150400.3.7.1.aarch64.rpm resource-agents-4.10.0+git40.0f4de473-150400.3.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-2625 important SUSE Updates openSUSE-SLE 15.4 This update for dracut fixes the following issues: - fix(bluetooth): accept compressed firmwares in inst_multiple (bsc#1200236) - fix(bluetooth): make hostonly configuration files optional (bsc#1195047) - fix(convertfs): ignore commented lines in fstab (bsc#1200251) - fix(crypt): remove quotes from cryptsetupopts (bsc#1197635) - fix(dracut-install): copy files preserving ownership attributes (bsc#1197967) - fix(dracut-systemd): do not require vconsole-setup.service (bsc#1195508) - fix(integrity): do not display any error if there is no IMA certificate (bsc#1187654) - fix(iscsi): remove unneeded iscsi NOP-disable code (bsc#1196267) - fix(lvm): restore setting LVM_MD_PV_ACTIVATED (bsc#1195604) - fix(network-legacy): support rd.net.timeout.dhcp (bsc#1200360) - fix(nfs): /var is not mounted during the transactional-update run (bsc#1184970) - fix(nfs): give /run/rpcbind ownership to rpc user (bsc#1177461) dracut-055+suse.279.g3b3c36b2-150400.3.5.1.src.rpm dracut-055+suse.279.g3b3c36b2-150400.3.5.1.x86_64.rpm dracut-extra-055+suse.279.g3b3c36b2-150400.3.5.1.x86_64.rpm dracut-fips-055+suse.279.g3b3c36b2-150400.3.5.1.x86_64.rpm dracut-ima-055+suse.279.g3b3c36b2-150400.3.5.1.x86_64.rpm dracut-mkinitrd-deprecated-055+suse.279.g3b3c36b2-150400.3.5.1.x86_64.rpm dracut-tools-055+suse.279.g3b3c36b2-150400.3.5.1.x86_64.rpm dracut-055+suse.279.g3b3c36b2-150400.3.5.1.s390x.rpm dracut-extra-055+suse.279.g3b3c36b2-150400.3.5.1.s390x.rpm dracut-fips-055+suse.279.g3b3c36b2-150400.3.5.1.s390x.rpm dracut-ima-055+suse.279.g3b3c36b2-150400.3.5.1.s390x.rpm dracut-mkinitrd-deprecated-055+suse.279.g3b3c36b2-150400.3.5.1.s390x.rpm dracut-tools-055+suse.279.g3b3c36b2-150400.3.5.1.s390x.rpm dracut-055+suse.279.g3b3c36b2-150400.3.5.1.ppc64le.rpm dracut-extra-055+suse.279.g3b3c36b2-150400.3.5.1.ppc64le.rpm dracut-fips-055+suse.279.g3b3c36b2-150400.3.5.1.ppc64le.rpm dracut-ima-055+suse.279.g3b3c36b2-150400.3.5.1.ppc64le.rpm dracut-mkinitrd-deprecated-055+suse.279.g3b3c36b2-150400.3.5.1.ppc64le.rpm dracut-tools-055+suse.279.g3b3c36b2-150400.3.5.1.ppc64le.rpm dracut-055+suse.279.g3b3c36b2-150400.3.5.1.aarch64.rpm dracut-extra-055+suse.279.g3b3c36b2-150400.3.5.1.aarch64.rpm dracut-fips-055+suse.279.g3b3c36b2-150400.3.5.1.aarch64.rpm dracut-ima-055+suse.279.g3b3c36b2-150400.3.5.1.aarch64.rpm dracut-mkinitrd-deprecated-055+suse.279.g3b3c36b2-150400.3.5.1.aarch64.rpm dracut-tools-055+suse.279.g3b3c36b2-150400.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-1872 important SUSE Updates openSUSE-SLE 15.4 This update for oprofile fixes the following issues: - Resolve build issues due to binutils 2.34 api changes (bsc#1197793) libopagent1-1.3.0-150100.8.3.1.x86_64.rpm libopagent1-32bit-1.3.0-150100.8.3.1.x86_64.rpm oprofile-1.3.0-150100.8.3.1.src.rpm oprofile-1.3.0-150100.8.3.1.x86_64.rpm oprofile-32bit-1.3.0-150100.8.3.1.x86_64.rpm oprofile-devel-1.3.0-150100.8.3.1.x86_64.rpm libopagent1-1.3.0-150100.8.3.1.s390x.rpm oprofile-1.3.0-150100.8.3.1.s390x.rpm oprofile-devel-1.3.0-150100.8.3.1.s390x.rpm libopagent1-1.3.0-150100.8.3.1.ppc64le.rpm oprofile-1.3.0-150100.8.3.1.ppc64le.rpm oprofile-devel-1.3.0-150100.8.3.1.ppc64le.rpm libopagent1-1.3.0-150100.8.3.1.aarch64.rpm oprofile-1.3.0-150100.8.3.1.aarch64.rpm oprofile-devel-1.3.0-150100.8.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1934 moderate SUSE Updates openSUSE-SLE 15.4 This update for openvpn fixes the following issues: - CVE-2022-0547: Fixed possible authentication bypass in external authentication plug-in (bsc#1197341). - By default the --suppress-timestamps flag is not needed (bsc#1123557). openvpn-2.5.6-150400.3.3.1.src.rpm openvpn-2.5.6-150400.3.3.1.x86_64.rpm openvpn-auth-pam-plugin-2.5.6-150400.3.3.1.x86_64.rpm openvpn-devel-2.5.6-150400.3.3.1.x86_64.rpm openvpn-down-root-plugin-2.5.6-150400.3.3.1.x86_64.rpm openvpn-2.5.6-150400.3.3.1.s390x.rpm openvpn-auth-pam-plugin-2.5.6-150400.3.3.1.s390x.rpm openvpn-devel-2.5.6-150400.3.3.1.s390x.rpm openvpn-down-root-plugin-2.5.6-150400.3.3.1.s390x.rpm openvpn-2.5.6-150400.3.3.1.ppc64le.rpm openvpn-auth-pam-plugin-2.5.6-150400.3.3.1.ppc64le.rpm openvpn-devel-2.5.6-150400.3.3.1.ppc64le.rpm openvpn-down-root-plugin-2.5.6-150400.3.3.1.ppc64le.rpm openvpn-2.5.6-150400.3.3.1.aarch64.rpm openvpn-auth-pam-plugin-2.5.6-150400.3.3.1.aarch64.rpm openvpn-devel-2.5.6-150400.3.3.1.aarch64.rpm openvpn-down-root-plugin-2.5.6-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2688 moderate SUSE Updates openSUSE-SLE 15.4 This update for rmt-server fixes the following issues: Version 2.8.0 - Forwarding information of registered systems to SCC more efficiently in batches - Syncing the systems' most recent last seen timestamps to SCC - Optional '--no-confirmation' switch to skip user confirmation when cleaning repository data - Fix "rmt-cli systems list --csv -a" for RMTs with millions of systems (bsc#1191552) - Enable users with old versions of RMT to sync systems with SCC by default rmt-server-2.8.0-150400.3.3.1.src.rpm rmt-server-2.8.0-150400.3.3.1.x86_64.rpm rmt-server-config-2.8.0-150400.3.3.1.x86_64.rpm rmt-server-pubcloud-2.8.0-150400.3.3.1.x86_64.rpm rmt-server-2.8.0-150400.3.3.1.s390x.rpm rmt-server-config-2.8.0-150400.3.3.1.s390x.rpm rmt-server-pubcloud-2.8.0-150400.3.3.1.s390x.rpm rmt-server-2.8.0-150400.3.3.1.ppc64le.rpm rmt-server-config-2.8.0-150400.3.3.1.ppc64le.rpm rmt-server-pubcloud-2.8.0-150400.3.3.1.ppc64le.rpm rmt-server-2.8.0-150400.3.3.1.aarch64.rpm rmt-server-config-2.8.0-150400.3.3.1.aarch64.rpm rmt-server-pubcloud-2.8.0-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1719 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaThunderbird fixes the following issues: Various security fixes MFSA 2022-18 (bsc#1198970): - CVE-2022-1520: Incorrect security status shown after viewing an attached email (bmo#1745019). - CVE-2022-29914: Fullscreen notification bypass using popups (bmo#1746448). - CVE-2022-29909: Bypassing permission prompt in nested browsing contexts (bmo#1755081). - CVE-2022-29916: Leaking browser history with CSS variables (bmo#1760674). - CVE-2022-29911: iframe sandbox bypass (bmo#1761981). - CVE-2022-29912: Reader mode bypassed SameSite cookies (bmo#1692655). - CVE-2022-29913: Speech Synthesis feature not properly disabled (bmo#1764778). - CVE-2022-29917: Memory safety bugs fixed in Thunderbird 91.9 (bmo#1684739, bmo#1706441, bmo#1753298, bmo#1762614, bmo#1762620). MozillaThunderbird-91.9.0-150200.8.68.2.src.rpm MozillaThunderbird-91.9.0-150200.8.68.2.x86_64.rpm MozillaThunderbird-translations-common-91.9.0-150200.8.68.2.x86_64.rpm MozillaThunderbird-translations-other-91.9.0-150200.8.68.2.x86_64.rpm MozillaThunderbird-91.9.0-150200.8.68.2.s390x.rpm MozillaThunderbird-translations-common-91.9.0-150200.8.68.2.s390x.rpm MozillaThunderbird-translations-other-91.9.0-150200.8.68.2.s390x.rpm MozillaThunderbird-91.9.0-150200.8.68.2.ppc64le.rpm MozillaThunderbird-translations-common-91.9.0-150200.8.68.2.ppc64le.rpm MozillaThunderbird-translations-other-91.9.0-150200.8.68.2.ppc64le.rpm MozillaThunderbird-91.9.0-150200.8.68.2.aarch64.rpm MozillaThunderbird-translations-common-91.9.0-150200.8.68.2.aarch64.rpm MozillaThunderbird-translations-other-91.9.0-150200.8.68.2.aarch64.rpm openSUSE-SLE-15.4-2022-1883 important SUSE Updates openSUSE-SLE 15.4 This update for pcre2 fixes the following issues: - CVE-2022-1586: Fixed out-of-bounds read via missing Unicode property matching issue in JIT compiled regular expressions (bsc#1199232). libpcre2-16-0-10.31-150000.3.7.1.x86_64.rpm libpcre2-16-0-32bit-10.31-150000.3.7.1.x86_64.rpm libpcre2-32-0-10.31-150000.3.7.1.x86_64.rpm libpcre2-32-0-32bit-10.31-150000.3.7.1.x86_64.rpm libpcre2-8-0-10.31-150000.3.7.1.x86_64.rpm libpcre2-8-0-32bit-10.31-150000.3.7.1.x86_64.rpm libpcre2-posix2-10.31-150000.3.7.1.x86_64.rpm libpcre2-posix2-32bit-10.31-150000.3.7.1.x86_64.rpm pcre2-10.31-150000.3.7.1.src.rpm pcre2-devel-10.31-150000.3.7.1.x86_64.rpm pcre2-devel-static-10.31-150000.3.7.1.x86_64.rpm pcre2-doc-10.31-150000.3.7.1.noarch.rpm pcre2-tools-10.31-150000.3.7.1.x86_64.rpm openSUSE-SLE-15.4-2022-1727 moderate SUSE Updates openSUSE-SLE 15.4 This update for ucode-intel fixes the following issues: Updated to Intel CPU Microcode 20220510 release. (bsc#1199423) Updated to Intel CPU Microcode 20220419 release. (bsc#1198717) - CVE-2022-21151: Processor optimization removal or modification of security-critical code for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access (bsc#1199423). ucode-intel-20220510-150200.14.1.src.rpm ucode-intel-20220510-150200.14.1.x86_64.rpm openSUSE-SLE-15.4-2022-1925 moderate SUSE Updates openSUSE-SLE 15.4 This update for patch fixes the following issues: Security issues fixed: - CVE-2019-13636: Fixed follow symlinks unless --follow-symlinks is given. This increases the security against malicious patches (bsc#1142041). - CVE-2018-6952: Fixed swapping fakelines in pch_swap. This bug was causing a double free leading to a crash (bsc#1080985). Bugfixes: - Abort when cleaning up fails. This bug could cause an infinite loop when a patch wouldn't apply, leading to a segmentation fault (bsc#1111572). - Pass the correct stat to backup files. This bug would occasionally cause backup files to be missing when all hunks failed to apply (bsc#1198106). patch-2.7.6-150000.5.3.1.src.rpm patch-2.7.6-150000.5.3.1.x86_64.rpm patch-2.7.6-150000.5.3.1.s390x.rpm patch-2.7.6-150000.5.3.1.ppc64le.rpm patch-2.7.6-150000.5.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1762 moderate SUSE Updates openSUSE-SLE 15.4 This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2022-28463: Fixed buffer overflow in coders/cin.c (bsc#1199350). Bugfixes: - Use png_get_eXIf_1 when available (bsc#1197147). ImageMagick-7.0.7.34-150200.10.26.1.src.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-150200.10.26.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.26.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-150200.10.26.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.26.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-150200.10.26.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.26.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.26.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.26.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.26.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.26.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.26.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.26.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.26.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.26.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.26.1.aarch64.rpm openSUSE-SLE-15.4-2022-1748 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.9.0 ESR (MFSA 2022-17)(bsc#1198970): - CVE-2022-29914: Fullscreen notification bypass using popups - CVE-2022-29909: Bypassing permission prompt in nested browsing contexts - CVE-2022-29916: Leaking browser history with CSS variables - CVE-2022-29911: iframe Sandbox bypass - CVE-2022-29912: Reader mode bypassed SameSite cookies - CVE-2022-29917: Memory safety bugs fixed in Firefox 100 and Firefox ESR 91.9 MozillaFirefox-91.9.0-150200.152.37.3.src.rpm MozillaFirefox-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-devel-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-translations-common-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-translations-other-91.9.0-150200.152.37.3.x86_64.rpm MozillaFirefox-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-devel-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-translations-common-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-translations-other-91.9.0-150200.152.37.3.s390x.rpm MozillaFirefox-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-devel-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-translations-common-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-translations-other-91.9.0-150200.152.37.3.ppc64le.rpm MozillaFirefox-91.9.0-150200.152.37.3.aarch64.rpm MozillaFirefox-branding-upstream-91.9.0-150200.152.37.3.aarch64.rpm MozillaFirefox-devel-91.9.0-150200.152.37.3.aarch64.rpm MozillaFirefox-translations-common-91.9.0-150200.152.37.3.aarch64.rpm MozillaFirefox-translations-other-91.9.0-150200.152.37.3.aarch64.rpm openSUSE-SLE-15.4-2022-1900 moderate SUSE Updates openSUSE-SLE 15.4 This update for rabbitmq-c fixes the following issues: - Resolve package build issues (bsc#1198202) librabbitmq-devel-0.10.0-150300.5.3.1.x86_64.rpm librabbitmq4-0.10.0-150300.5.3.1.x86_64.rpm rabbitmq-c-0.10.0-150300.5.3.1.src.rpm rabbitmq-c-tools-0.10.0-150300.5.3.1.x86_64.rpm librabbitmq-devel-0.10.0-150300.5.3.1.s390x.rpm librabbitmq4-0.10.0-150300.5.3.1.s390x.rpm rabbitmq-c-tools-0.10.0-150300.5.3.1.s390x.rpm librabbitmq-devel-0.10.0-150300.5.3.1.ppc64le.rpm librabbitmq4-0.10.0-150300.5.3.1.ppc64le.rpm rabbitmq-c-tools-0.10.0-150300.5.3.1.ppc64le.rpm librabbitmq-devel-0.10.0-150300.5.3.1.aarch64.rpm librabbitmq4-0.10.0-150300.5.3.1.aarch64.rpm rabbitmq-c-tools-0.10.0-150300.5.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1894 important SUSE Updates openSUSE-SLE 15.4 This update for postgresql12 fixes the following issues: - CVE-2022-1552: Confine additional operations within "security restricted operation" sandboxes (bsc#1199475). postgresql12-12.11-150200.8.32.1.src.rpm postgresql12-12.11-150200.8.32.1.x86_64.rpm postgresql12-contrib-12.11-150200.8.32.1.x86_64.rpm postgresql12-devel-12.11-150200.8.32.1.x86_64.rpm postgresql12-docs-12.11-150200.8.32.1.noarch.rpm postgresql12-llvmjit-12.11-150200.8.32.1.x86_64.rpm postgresql12-llvmjit-devel-12.11-150200.8.32.1.x86_64.rpm postgresql12-plperl-12.11-150200.8.32.1.x86_64.rpm postgresql12-plpython-12.11-150200.8.32.1.x86_64.rpm postgresql12-pltcl-12.11-150200.8.32.1.x86_64.rpm postgresql12-server-12.11-150200.8.32.1.x86_64.rpm postgresql12-server-devel-12.11-150200.8.32.1.x86_64.rpm postgresql12-test-12.11-150200.8.32.1.x86_64.rpm postgresql12-12.11-150200.8.32.1.s390x.rpm postgresql12-contrib-12.11-150200.8.32.1.s390x.rpm postgresql12-devel-12.11-150200.8.32.1.s390x.rpm postgresql12-llvmjit-12.11-150200.8.32.1.s390x.rpm postgresql12-llvmjit-devel-12.11-150200.8.32.1.s390x.rpm postgresql12-plperl-12.11-150200.8.32.1.s390x.rpm postgresql12-plpython-12.11-150200.8.32.1.s390x.rpm postgresql12-pltcl-12.11-150200.8.32.1.s390x.rpm postgresql12-server-12.11-150200.8.32.1.s390x.rpm postgresql12-server-devel-12.11-150200.8.32.1.s390x.rpm postgresql12-test-12.11-150200.8.32.1.s390x.rpm postgresql12-12.11-150200.8.32.1.ppc64le.rpm postgresql12-contrib-12.11-150200.8.32.1.ppc64le.rpm postgresql12-devel-12.11-150200.8.32.1.ppc64le.rpm postgresql12-llvmjit-12.11-150200.8.32.1.ppc64le.rpm postgresql12-llvmjit-devel-12.11-150200.8.32.1.ppc64le.rpm postgresql12-plperl-12.11-150200.8.32.1.ppc64le.rpm postgresql12-plpython-12.11-150200.8.32.1.ppc64le.rpm postgresql12-pltcl-12.11-150200.8.32.1.ppc64le.rpm postgresql12-server-12.11-150200.8.32.1.ppc64le.rpm postgresql12-server-devel-12.11-150200.8.32.1.ppc64le.rpm postgresql12-test-12.11-150200.8.32.1.ppc64le.rpm postgresql12-12.11-150200.8.32.1.aarch64.rpm postgresql12-contrib-12.11-150200.8.32.1.aarch64.rpm postgresql12-devel-12.11-150200.8.32.1.aarch64.rpm postgresql12-llvmjit-12.11-150200.8.32.1.aarch64.rpm postgresql12-llvmjit-devel-12.11-150200.8.32.1.aarch64.rpm postgresql12-plperl-12.11-150200.8.32.1.aarch64.rpm postgresql12-plpython-12.11-150200.8.32.1.aarch64.rpm postgresql12-pltcl-12.11-150200.8.32.1.aarch64.rpm postgresql12-server-12.11-150200.8.32.1.aarch64.rpm postgresql12-server-devel-12.11-150200.8.32.1.aarch64.rpm postgresql12-test-12.11-150200.8.32.1.aarch64.rpm openSUSE-SLE-15.4-2022-1895 important SUSE Updates openSUSE-SLE 15.4 This update for postgresql13 fixes the following issues: - CVE-2022-1552: Confine additional operations within "security restricted operation" sandboxes (bsc#1199475). postgresql13-13.7-150200.5.28.1.src.rpm postgresql13-13.7-150200.5.28.1.x86_64.rpm postgresql13-contrib-13.7-150200.5.28.1.x86_64.rpm postgresql13-devel-13.7-150200.5.28.1.x86_64.rpm postgresql13-docs-13.7-150200.5.28.1.noarch.rpm postgresql13-llvmjit-13.7-150200.5.28.1.x86_64.rpm postgresql13-llvmjit-devel-13.7-150200.5.28.1.x86_64.rpm postgresql13-plperl-13.7-150200.5.28.1.x86_64.rpm postgresql13-plpython-13.7-150200.5.28.1.x86_64.rpm postgresql13-pltcl-13.7-150200.5.28.1.x86_64.rpm postgresql13-server-13.7-150200.5.28.1.x86_64.rpm postgresql13-server-devel-13.7-150200.5.28.1.x86_64.rpm postgresql13-test-13.7-150200.5.28.1.x86_64.rpm postgresql13-13.7-150200.5.28.1.s390x.rpm postgresql13-contrib-13.7-150200.5.28.1.s390x.rpm postgresql13-devel-13.7-150200.5.28.1.s390x.rpm postgresql13-llvmjit-13.7-150200.5.28.1.s390x.rpm postgresql13-llvmjit-devel-13.7-150200.5.28.1.s390x.rpm postgresql13-plperl-13.7-150200.5.28.1.s390x.rpm postgresql13-plpython-13.7-150200.5.28.1.s390x.rpm postgresql13-pltcl-13.7-150200.5.28.1.s390x.rpm postgresql13-server-13.7-150200.5.28.1.s390x.rpm postgresql13-server-devel-13.7-150200.5.28.1.s390x.rpm postgresql13-test-13.7-150200.5.28.1.s390x.rpm postgresql13-13.7-150200.5.28.1.ppc64le.rpm postgresql13-contrib-13.7-150200.5.28.1.ppc64le.rpm postgresql13-devel-13.7-150200.5.28.1.ppc64le.rpm postgresql13-llvmjit-13.7-150200.5.28.1.ppc64le.rpm postgresql13-llvmjit-devel-13.7-150200.5.28.1.ppc64le.rpm postgresql13-plperl-13.7-150200.5.28.1.ppc64le.rpm postgresql13-plpython-13.7-150200.5.28.1.ppc64le.rpm postgresql13-pltcl-13.7-150200.5.28.1.ppc64le.rpm postgresql13-server-13.7-150200.5.28.1.ppc64le.rpm postgresql13-server-devel-13.7-150200.5.28.1.ppc64le.rpm postgresql13-test-13.7-150200.5.28.1.ppc64le.rpm postgresql13-13.7-150200.5.28.1.aarch64.rpm postgresql13-contrib-13.7-150200.5.28.1.aarch64.rpm postgresql13-devel-13.7-150200.5.28.1.aarch64.rpm postgresql13-llvmjit-13.7-150200.5.28.1.aarch64.rpm postgresql13-llvmjit-devel-13.7-150200.5.28.1.aarch64.rpm postgresql13-plperl-13.7-150200.5.28.1.aarch64.rpm postgresql13-plpython-13.7-150200.5.28.1.aarch64.rpm postgresql13-pltcl-13.7-150200.5.28.1.aarch64.rpm postgresql13-server-13.7-150200.5.28.1.aarch64.rpm postgresql13-server-devel-13.7-150200.5.28.1.aarch64.rpm postgresql13-test-13.7-150200.5.28.1.aarch64.rpm openSUSE-SLE-15.4-2022-1908 important SUSE Updates openSUSE-SLE 15.4 This update for postgresql14 fixes the following issues: - CVE-2022-1552: Confine additional operations within "security restricted operation" sandboxes (bsc#1199475). libecpg6-14.3-150200.5.12.2.x86_64.rpm libecpg6-32bit-14.3-150200.5.12.2.x86_64.rpm libpq5-14.3-150200.5.12.2.x86_64.rpm libpq5-32bit-14.3-150200.5.12.2.x86_64.rpm postgresql14-14.3-150200.5.12.1.src.rpm postgresql14-14.3-150200.5.12.2.src.rpm postgresql14-14.3-150200.5.12.2.x86_64.rpm postgresql14-contrib-14.3-150200.5.12.2.x86_64.rpm postgresql14-devel-14.3-150200.5.12.2.x86_64.rpm postgresql14-docs-14.3-150200.5.12.2.noarch.rpm postgresql14-llvmjit-14.3-150200.5.12.2.x86_64.rpm postgresql14-llvmjit-devel-14.3-150200.5.12.2.x86_64.rpm postgresql14-plperl-14.3-150200.5.12.2.x86_64.rpm postgresql14-plpython-14.3-150200.5.12.2.x86_64.rpm postgresql14-pltcl-14.3-150200.5.12.2.x86_64.rpm postgresql14-server-14.3-150200.5.12.2.x86_64.rpm postgresql14-server-devel-14.3-150200.5.12.2.x86_64.rpm postgresql14-test-14.3-150200.5.12.2.x86_64.rpm libecpg6-14.3-150200.5.12.2.s390x.rpm libpq5-14.3-150200.5.12.2.s390x.rpm postgresql14-14.3-150200.5.12.2.s390x.rpm postgresql14-contrib-14.3-150200.5.12.2.s390x.rpm postgresql14-devel-14.3-150200.5.12.2.s390x.rpm postgresql14-llvmjit-14.3-150200.5.12.2.s390x.rpm postgresql14-llvmjit-devel-14.3-150200.5.12.2.s390x.rpm postgresql14-plperl-14.3-150200.5.12.2.s390x.rpm postgresql14-plpython-14.3-150200.5.12.2.s390x.rpm postgresql14-pltcl-14.3-150200.5.12.2.s390x.rpm postgresql14-server-14.3-150200.5.12.2.s390x.rpm postgresql14-server-devel-14.3-150200.5.12.2.s390x.rpm postgresql14-test-14.3-150200.5.12.2.s390x.rpm libecpg6-14.3-150200.5.12.2.ppc64le.rpm libpq5-14.3-150200.5.12.2.ppc64le.rpm postgresql14-14.3-150200.5.12.2.ppc64le.rpm postgresql14-contrib-14.3-150200.5.12.2.ppc64le.rpm postgresql14-devel-14.3-150200.5.12.2.ppc64le.rpm postgresql14-llvmjit-14.3-150200.5.12.2.ppc64le.rpm postgresql14-llvmjit-devel-14.3-150200.5.12.2.ppc64le.rpm postgresql14-plperl-14.3-150200.5.12.2.ppc64le.rpm postgresql14-plpython-14.3-150200.5.12.2.ppc64le.rpm postgresql14-pltcl-14.3-150200.5.12.2.ppc64le.rpm postgresql14-server-14.3-150200.5.12.2.ppc64le.rpm postgresql14-server-devel-14.3-150200.5.12.2.ppc64le.rpm postgresql14-test-14.3-150200.5.12.2.ppc64le.rpm libecpg6-14.3-150200.5.12.2.aarch64.rpm libpq5-14.3-150200.5.12.2.aarch64.rpm postgresql14-14.3-150200.5.12.2.aarch64.rpm postgresql14-contrib-14.3-150200.5.12.2.aarch64.rpm postgresql14-devel-14.3-150200.5.12.2.aarch64.rpm postgresql14-llvmjit-14.3-150200.5.12.2.aarch64.rpm postgresql14-llvmjit-devel-14.3-150200.5.12.2.aarch64.rpm postgresql14-plperl-14.3-150200.5.12.2.aarch64.rpm postgresql14-plpython-14.3-150200.5.12.2.aarch64.rpm postgresql14-pltcl-14.3-150200.5.12.2.aarch64.rpm postgresql14-server-14.3-150200.5.12.2.aarch64.rpm postgresql14-server-devel-14.3-150200.5.12.2.aarch64.rpm postgresql14-test-14.3-150200.5.12.2.aarch64.rpm openSUSE-SLE-15.4-2022-1890 important SUSE Updates openSUSE-SLE 15.4 This update for postgresql10 fixes the following issues: - CVE-2022-1552: Confine additional operations within "security restricted operation" sandboxes (bsc#1199475). postgresql10-10.21-150100.8.47.1.src.rpm postgresql10-10.21-150100.8.47.1.x86_64.rpm postgresql10-contrib-10.21-150100.8.47.1.x86_64.rpm postgresql10-docs-10.21-150100.8.47.1.noarch.rpm postgresql10-llvmjit-devel-10.21-150100.8.47.1.x86_64.rpm postgresql10-plperl-10.21-150100.8.47.1.x86_64.rpm postgresql10-plpython-10.21-150100.8.47.1.x86_64.rpm postgresql10-pltcl-10.21-150100.8.47.1.x86_64.rpm postgresql10-server-10.21-150100.8.47.1.x86_64.rpm postgresql10-test-10.21-150100.8.47.1.x86_64.rpm postgresql10-10.21-150100.8.47.1.s390x.rpm postgresql10-contrib-10.21-150100.8.47.1.s390x.rpm postgresql10-llvmjit-devel-10.21-150100.8.47.1.s390x.rpm postgresql10-plperl-10.21-150100.8.47.1.s390x.rpm postgresql10-plpython-10.21-150100.8.47.1.s390x.rpm postgresql10-pltcl-10.21-150100.8.47.1.s390x.rpm postgresql10-server-10.21-150100.8.47.1.s390x.rpm postgresql10-test-10.21-150100.8.47.1.s390x.rpm postgresql10-10.21-150100.8.47.1.ppc64le.rpm postgresql10-contrib-10.21-150100.8.47.1.ppc64le.rpm postgresql10-llvmjit-devel-10.21-150100.8.47.1.ppc64le.rpm postgresql10-plperl-10.21-150100.8.47.1.ppc64le.rpm postgresql10-plpython-10.21-150100.8.47.1.ppc64le.rpm postgresql10-pltcl-10.21-150100.8.47.1.ppc64le.rpm postgresql10-server-10.21-150100.8.47.1.ppc64le.rpm postgresql10-test-10.21-150100.8.47.1.ppc64le.rpm postgresql10-10.21-150100.8.47.1.aarch64.rpm postgresql10-contrib-10.21-150100.8.47.1.aarch64.rpm postgresql10-llvmjit-devel-10.21-150100.8.47.1.aarch64.rpm postgresql10-plperl-10.21-150100.8.47.1.aarch64.rpm postgresql10-plpython-10.21-150100.8.47.1.aarch64.rpm postgresql10-pltcl-10.21-150100.8.47.1.aarch64.rpm postgresql10-server-10.21-150100.8.47.1.aarch64.rpm postgresql10-test-10.21-150100.8.47.1.aarch64.rpm openSUSE-SLE-15.4-2022-1720 important SUSE Updates openSUSE-SLE 15.4 This update for python-rtslib-fb fixes the following issues: - Update parameters description. - Enable the 'disable_emulate_legacy_capacity' parameter. (bsc#1199090) python-rtslib-fb-2.1.74-150300.3.3.1.src.rpm python-rtslib-fb-common-2.1.74-150300.3.3.1.noarch.rpm python2-rtslib-fb-2.1.74-150300.3.3.1.noarch.rpm python3-rtslib-fb-2.1.74-150300.3.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2025 low SUSE Updates openSUSE-SLE 15.4 This update for grafana-status-panel fixes the following issues: - Update to version 1.0.11, signed for use with grafana v8.x (bsc#1198768) grafana-status-panel-1.0.11-150200.3.8.1.noarch.rpm grafana-status-panel-1.0.11-150200.3.8.1.src.rpm openSUSE-SLE-15.4-2022-2001 moderate SUSE Updates openSUSE-SLE 15.4 This update for s3fs fixes the following issues: - Update to version 1.91 (bsc#1198900) * Fix RowFlush can not upload last part smaller than 5MB using NoCacheMultipartPost * Fix IAM role retrieval from IMDSv2 * Add option to allow unsigned payloads * Fix mixupload return EntityTooSmall while a copypart is less than 5MB after split * Allow compilation on Windows via MSYS2 * Handle utimensat UTIME_NOW and UTIME_OMIT special values * Preserve sub-second precision in more situations * Always flush open files with O_CREAT flag * Fixed not to call Flush even if the file size is increased * Include climits to support musl libc - Update to version 1.90 + Don't ignore nomultipart when storage is low + Fix POSIX compatibility issues found by pjdfstest + Fail CheckBucket when S3 returns PermanentRedirect + Do not create zero-byte object when creating file + Allow arbitrary size AWS secret keys + Fix race conditions + Set explicit Content-Length: 0 when initiating MPU + Set CURLOPT_UNRESTRICTED_AUTH when authenticating + Add jitter to avoid thundering herd + Loosen CheckBucket to check only the bucket + Add support for AWS-style environment variables s3fs-1.91-150000.3.9.1.src.rpm s3fs-1.91-150000.3.9.1.x86_64.rpm s3fs-1.91-150000.3.9.1.s390x.rpm s3fs-1.91-150000.3.9.1.ppc64le.rpm s3fs-1.91-150000.3.9.1.aarch64.rpm openSUSE-SLE-15.4-2022-2330 low SUSE Updates openSUSE-SLE 15.4 This update for lifecycle-data-sle-module-live-patching fixes the following issues: - Added data for 4_12_14-150000_150_89, 4_12_14-150100_197_111, 5_3_18-150200_24_112, 5_3_18-150300_59_60, 5_3_18-150300_59_63. (bsc#1020320) lifecycle-data-sle-module-live-patching-15-150000.4.75.1.noarch.rpm lifecycle-data-sle-module-live-patching-15-150000.4.75.1.src.rpm openSUSE-SLE-15.4-2022-1912 important SUSE Updates openSUSE-SLE 15.4 This update for hdf5 fixes the following issues: Security issues fixed: - CVE-2020-10811: Fixed heap-based buffer over-read in the function H5O__layout_decode() located in H5Olayout.c (bsc#1167405). - CVE-2020-10810: Fixed NULL pointer dereference in the function H5AC_unpin_entry() located in H5AC.c (bsc#1167401). - CVE-2020-10809: Fixed heap-based buffer overflow in the function Decompress() located in decompress.c (bsc#1167404). - CVE-2018-17438: Fixed SIGFPE signal raise in the function H5D__select_io() of H5Dselect.c (bsc#1109570). - CVE-2018-17437: Fixed memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c. (bsc#1109569). - CVE-2018-17436: Fixed issue in ReadCode() in decompress.c that allowed attackers to cause a denial of service via a crafted HDF5 file (bsc#1109568). - CVE-2018-17434: Fixed SIGFPE signal raise in function apply_filters() of h5repack_filters.c (bsc#1109566). - CVE-2018-17433: Fixed heap-based buffer overflow in ReadGifImageDesc() in gifread.c (bsc#1109565). - CVE-2018-17432: Fixed NULL pointer dereference in H5O_sdspace_encode() in H5Osdspace.c (bsc#1109564). - CVE-2018-17237: Fixed SIGFPE signal raise in the function H5D__chunk_set_info_real() (bsc#1109168). - CVE-2018-17234: Fixed memory leak in the H5O__chunk_deserialize() function in H5Ocache.c (bsc#1109167). - CVE-2018-14460: Fixed heap-based buffer over-read in the function H5O_sdspace_decode in H5Osdspace.c (bsc#1102175). - CVE-2018-14033: Fixed heap-based buffer over-read in the function H5O_layout_decode in H5Olayout.c (bsc#1101471). - CVE-2018-14032: Fixed heap-based buffer over-read in the function H5O_fill_new_decode in H5Ofill.c (bsc#1101474). - CVE-2018-11206: Fixed out of bounds read in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c (bsc#1093657). Bugfixes: - Fix python-h5py packages built against out-of-date version of HDF5 (bsc#1196682). - Fix netcdf-cxx4 packages built against out-of-date version of HDF5 (bsc#1179521). hdf5-gnu-hpc-1.10.8-150300.4.3.1.noarch.rpm hdf5-gnu-hpc-devel-1.10.8-150300.4.3.1.noarch.rpm hdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.noarch.rpm hdf5-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.noarch.rpm hdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.noarch.rpm hdf5-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.noarch.rpm hdf5-hpc-examples-1.10.8-150300.4.3.1.noarch.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.src.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.src.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.src.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.3.1.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.src.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.src.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.3.1.x86_64.rpm libhdf5-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.x86_64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.x86_64.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.3.1.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.3.1.s390x.rpm libhdf5-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.s390x.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.s390x.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.3.1.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.ppc64le.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.ppc64le.rpm hdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-devel-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-devel-static-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-hpc-module-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-devel-static-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-mpich-hpc-module-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-devel-static-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-mvapich2-hpc-module-1.10.8-150300.4.3.1.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-devel-static-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi3-hpc-module-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-devel-static-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-gnu-openmpi4-hpc-module-1.10.8-150300.4.3.2.aarch64.rpm hdf5_1_10_8-hpc-examples-1.10.8-150300.4.3.1.aarch64.rpm libhdf5-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_cpp-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_cpp-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_cpp_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_fortran-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_fortran-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_fortran-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5_hl_fortran-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5_hl_fortran-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-mpich-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-mvapich2-hpc-1.10.8-150300.4.3.1.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi3-hpc-1.10.8-150300.4.3.2.aarch64.rpm libhdf5hl_fortran_1_10_8-gnu-openmpi4-hpc-1.10.8-150300.4.3.2.aarch64.rpm openSUSE-SLE-15.4-2022-2386 important SUSE Updates openSUSE-SLE 15.4 This update for azure-cli, azurecli-core, python-azure-core, python-azure-batch, python-azure-mgmt-compute, python-azure-mgmt-containerregistry, python-azure-mgmt-databoxedge, python-azure-mgmt-network, python-azure-mgmt-security, python-azure-sdk, python-msrest, python-azure-ai-formrecognizer, python-azure-synapse-managedprivateendpoints, python-azure-synapse-monitoring, python-azure-template contains the following fixes: Changes in azure-cli, azurecli-core: - Update in SLE-15. (bsc#1189411, bsc#1191482) - Fix regression in patch to disable update check. (bsc#1192671) - New upstream release 2.17.1: - For detailed information about changes see the HISTORY.rst file provided with this package Changes in python-azure-core: - Update from 1.9.0 to 1.22.1. (bsc#1189411, bsc#1191482) For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-batch: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 10.0.0 - For detailed information about changes see the CHANGELOG.md file provided with this package - Only build Python3 flavors for distributions 15 and greater Changes in python-azure-ai-formrecognizer: - Inclusion in SLE-15 .(bsc#1189411, bsc#1191482) Changes in python-azure-mgmt-compute: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 18.0.0 - For detailed information about changes see the CHANGELOG.md file provided with this package - Version 17.0.0 Changes in python-azure-mgmt-containerregistry: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 3.0.0rc16 - For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-mgmt-databoxedge: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 0.2.0 - For detailed information about changes see the CHANGELOG.md file provided with this package - Rename HISTORY.rst to CHANGELOG.md in %files section - Rename README.rst to README.md in %files section - Changes in python-azure-mgmt-network: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 17.0.0 - For detailed information about changes see the CHANGELOG.md file provided with this package - Changes in python-azure-mgmt-security: - Update in SLE-15 (bsc#1189411, bsc#1191482) - New upstream release - Version 0.6.0 - For detailed information about changes see the CHANGELOG.md file provided with this package Changes in python-azure-synapse-managedprivateendpoints: - Inclusion in SLE-15 .(bsc#1189411, bsc#1191482) Changes in python-azure-synapse-monitoring: - Inclusion in SLE-15 .(bsc#1189411, bsc#1191482) Changes in python-azure-template: - Inclusion in SLE-15 .(bsc#1189411, bsc#1191482) Changes in python-azure-sdk: Update in SLE-15 (bsc#1189411, bsc#1191482) - Add python-azure-sdk (Python2) to Obsoletes - Add additional packages from the Azure SDK to Requires - python-azure-ai-formrecognizer - python-azure-synapse-managedprivateendpoints - python-azure-synapse-monitoring - python-azure-template - Remove all version constraints in Requires Only build Python3 flavors for distributions 15 and greater Changes in python-msrest: - Update from 0.6.19 to 0.6.21. (bsc#1189411, bsc#1191482) For detailed information about changes see the CHANGELOG.md file provided with this package azure-cli-2.17.1-150100.6.11.2.noarch.rpm azure-cli-2.17.1-150100.6.11.2.src.rpm azure-cli-core-2.17.1-150100.6.14.2.noarch.rpm azure-cli-core-2.17.1-150100.6.14.2.src.rpm azure-cli-test-2.17.1-150100.6.11.2.src.rpm azure-cli-test-2.17.1-150100.6.11.2.x86_64.rpm python-azure-batch-10.0.0-150100.7.8.2.src.rpm python-azure-core-1.22.1-150100.3.7.2.src.rpm python-azure-mgmt-compute-18.0.0-150100.6.11.2.src.rpm python-azure-mgmt-containerregistry-3.0.0rc16-150100.6.8.2.src.rpm python-azure-mgmt-databoxedge-0.2.0-150100.3.7.2.src.rpm python-azure-mgmt-network-17.0.0-150100.6.8.2.src.rpm python-azure-mgmt-security-0.6.0-150100.3.7.2.src.rpm python-azure-sdk-4.0.0-150100.3.10.2.noarch.rpm python-azure-sdk-4.0.0-150100.3.10.2.src.rpm python-msrest-0.6.21-150100.6.8.2.src.rpm python3-azure-batch-10.0.0-150100.7.8.2.noarch.rpm python3-azure-core-1.22.1-150100.3.7.2.noarch.rpm python3-azure-mgmt-compute-18.0.0-150100.6.11.2.noarch.rpm python3-azure-mgmt-containerregistry-3.0.0rc16-150100.6.8.2.noarch.rpm python3-azure-mgmt-databoxedge-0.2.0-150100.3.7.2.noarch.rpm python3-azure-mgmt-network-17.0.0-150100.6.8.2.noarch.rpm python3-azure-mgmt-security-0.6.0-150100.3.7.2.noarch.rpm python3-azure-sdk-4.0.0-150100.3.10.2.noarch.rpm python3-msrest-0.6.21-150100.6.8.2.noarch.rpm azure-cli-test-2.17.1-150100.6.11.2.s390x.rpm azure-cli-test-2.17.1-150100.6.11.2.ppc64le.rpm azure-cli-test-2.17.1-150100.6.11.2.aarch64.rpm openSUSE-SLE-15.4-2022-1898 moderate SUSE Updates openSUSE-SLE 15.4 This update for fribidi fixes the following issues: - CVE-2022-25308: Fixed stack out of bounds read (bsc#1196147). - CVE-2022-25309: Fixed heap-buffer-overflow in fribidi_cap_rtl_to_unicode (bsc#1196148). - CVE-2022-25310: Fixed NULL pointer dereference in fribidi_remove_bidi_marks (bsc#1196150). fribidi-1.0.10-150400.3.3.1.src.rpm fribidi-1.0.10-150400.3.3.1.x86_64.rpm fribidi-devel-1.0.10-150400.3.3.1.x86_64.rpm libfribidi0-1.0.10-150400.3.3.1.x86_64.rpm libfribidi0-32bit-1.0.10-150400.3.3.1.x86_64.rpm fribidi-1.0.10-150400.3.3.1.s390x.rpm fribidi-devel-1.0.10-150400.3.3.1.s390x.rpm libfribidi0-1.0.10-150400.3.3.1.s390x.rpm fribidi-1.0.10-150400.3.3.1.ppc64le.rpm fribidi-devel-1.0.10-150400.3.3.1.ppc64le.rpm libfribidi0-1.0.10-150400.3.3.1.ppc64le.rpm fribidi-1.0.10-150400.3.3.1.aarch64.rpm fribidi-devel-1.0.10-150400.3.3.1.aarch64.rpm libfribidi0-1.0.10-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-1826 important SUSE Updates openSUSE-SLE 15.4 This update for nut fixes the following issues: - Fix package build requirements (bsc#1197789) libupsclient1-2.7.4-150000.6.3.1.x86_64.rpm nut-2.7.4-150000.6.3.1.src.rpm nut-2.7.4-150000.6.3.1.x86_64.rpm nut-cgi-2.7.4-150000.6.3.1.x86_64.rpm nut-devel-2.7.4-150000.6.3.1.x86_64.rpm nut-devel-doc-html-2.7.4-150000.6.3.1.noarch.rpm nut-devel-doc-pdf-2.7.4-150000.6.3.1.noarch.rpm nut-doc-asciidoc-2.7.4-150000.6.3.1.noarch.rpm nut-doc-html-2.7.4-150000.6.3.1.noarch.rpm nut-doc-images-2.7.4-150000.6.3.1.noarch.rpm nut-doc-pdf-2.7.4-150000.6.3.1.noarch.rpm nut-drivers-net-2.7.4-150000.6.3.1.x86_64.rpm libupsclient1-2.7.4-150000.6.3.1.s390x.rpm nut-2.7.4-150000.6.3.1.s390x.rpm nut-cgi-2.7.4-150000.6.3.1.s390x.rpm nut-devel-2.7.4-150000.6.3.1.s390x.rpm nut-drivers-net-2.7.4-150000.6.3.1.s390x.rpm libupsclient1-2.7.4-150000.6.3.1.ppc64le.rpm nut-2.7.4-150000.6.3.1.ppc64le.rpm nut-cgi-2.7.4-150000.6.3.1.ppc64le.rpm nut-devel-2.7.4-150000.6.3.1.ppc64le.rpm nut-drivers-net-2.7.4-150000.6.3.1.ppc64le.rpm libupsclient1-2.7.4-150000.6.3.1.aarch64.rpm nut-2.7.4-150000.6.3.1.aarch64.rpm nut-cgi-2.7.4-150000.6.3.1.aarch64.rpm nut-devel-2.7.4-150000.6.3.1.aarch64.rpm nut-drivers-net-2.7.4-150000.6.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2024 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-azure-agent fixes the following issues: - Reset the dhcp config when deprovisioning and instance to ensure instances from aVM image created from that instance send host information to the DHCP server. (bsc#1198258) python-azure-agent-2.2.49.2-150100.3.23.1.noarch.rpm python-azure-agent-2.2.49.2-150100.3.23.1.src.rpm python-azure-agent-test-2.2.49.2-150100.3.23.1.noarch.rpm openSUSE-SLE-15.4-2022-2545 moderate SUSE Updates openSUSE-SLE 15.4 This update for system-role-common-criteria fixes the following issues: - Restore UI layout after Common Criteria confirmation (bsc#1194279) system-role-common-criteria-15.4.1-150400.3.3.1.src.rpm system-role-common-criteria-15.4.1-150400.3.3.1.x86_64.rpm system-role-common-criteria-15.4.1-150400.3.3.1.s390x.rpm system-role-common-criteria-15.4.1-150400.3.3.1.ppc64le.rpm system-role-common-criteria-15.4.1-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2804 moderate SUSE Updates openSUSE-SLE 15.4 This update for gvfs fixes the following issues: - Fixes inability to mount smb shares with samba 4.16 (bsc#1198718) - Fix build with meson 0.61 and newer - Package org.gtk.vfs.file-operations.rules polkit rules file as an example in docs gvfs-1.48.1-150400.4.3.1.src.rpm gvfs-1.48.1-150400.4.3.1.x86_64.rpm gvfs-32bit-1.48.1-150400.4.3.1.x86_64.rpm gvfs-backend-afc-1.48.1-150400.4.3.1.x86_64.rpm gvfs-backend-samba-1.48.1-150400.4.3.1.x86_64.rpm gvfs-backends-1.48.1-150400.4.3.1.x86_64.rpm gvfs-devel-1.48.1-150400.4.3.1.x86_64.rpm gvfs-fuse-1.48.1-150400.4.3.1.x86_64.rpm gvfs-lang-1.48.1-150400.4.3.1.noarch.rpm gvfs-1.48.1-150400.4.3.1.s390x.rpm gvfs-backend-afc-1.48.1-150400.4.3.1.s390x.rpm gvfs-backend-samba-1.48.1-150400.4.3.1.s390x.rpm gvfs-backends-1.48.1-150400.4.3.1.s390x.rpm gvfs-devel-1.48.1-150400.4.3.1.s390x.rpm gvfs-fuse-1.48.1-150400.4.3.1.s390x.rpm gvfs-1.48.1-150400.4.3.1.ppc64le.rpm gvfs-backend-afc-1.48.1-150400.4.3.1.ppc64le.rpm gvfs-backend-samba-1.48.1-150400.4.3.1.ppc64le.rpm gvfs-backends-1.48.1-150400.4.3.1.ppc64le.rpm gvfs-devel-1.48.1-150400.4.3.1.ppc64le.rpm gvfs-fuse-1.48.1-150400.4.3.1.ppc64le.rpm gvfs-1.48.1-150400.4.3.1.aarch64.rpm gvfs-backend-afc-1.48.1-150400.4.3.1.aarch64.rpm gvfs-backend-samba-1.48.1-150400.4.3.1.aarch64.rpm gvfs-backends-1.48.1-150400.4.3.1.aarch64.rpm gvfs-devel-1.48.1-150400.4.3.1.aarch64.rpm gvfs-fuse-1.48.1-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2831 moderate SUSE Updates openSUSE-SLE 15.4 This update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures fixes the following issues: - Update in SLE-15 (bsc#1196696, bsc#1195916, jsc#SLE-23972) - Remove redundant python3 dependency from Requires - Update regular expression to fix python shebang - Style is enforced upstream and triggers unnecessary build version requirements - Allow specifying fs_id in cloudwatch log group name - Includes fix for stunnel path - Added hardening to systemd service(s). - Raise minimal pytest version - Fix typo in the ansi2html Requires - Cleanup with spec-cleaner - Make sure the tests are really executed - Remove useless devel dependency - Multiprocessing support in Python 3.8 was broken, but is now fixed - Bumpy the URL to point to github rather than to docs python-apipkg-1.4-150000.3.2.1.src.rpm python-atomicwrites-1.1.5-150000.3.2.1.src.rpm python-atomicwrites-doc-1.1.5-150000.3.2.1.noarch.rpm python-atomicwrites-doc-1.1.5-150000.3.2.1.src.rpm python-coverage-4.5.4-150000.3.3.2.src.rpm python-py-1.10.0-150000.5.9.2.src.rpm python-pycodestyle-2.5.0-150000.3.2.2.src.rpm python-pyflakes-2.1.1-150000.3.2.2.src.rpm python3-apipkg-1.4-150000.3.2.1.noarch.rpm python3-atomicwrites-1.1.5-150000.3.2.1.noarch.rpm python3-coverage-4.5.4-150000.3.3.2.x86_64.rpm python3-py-1.10.0-150000.5.9.2.noarch.rpm python3-pycodestyle-2.5.0-150000.3.2.2.noarch.rpm python3-pyflakes-2.1.1-150000.3.2.2.noarch.rpm python3-coverage-4.5.4-150000.3.3.2.s390x.rpm python3-coverage-4.5.4-150000.3.3.2.ppc64le.rpm python3-coverage-4.5.4-150000.3.3.2.aarch64.rpm openSUSE-SLE-15.4-2022-2086 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: os-prober os-prober-1.76-150100.4.2.1.src.rpm os-prober-1.76-150100.4.2.1.x86_64.rpm os-prober-1.76-150100.4.2.1.s390x.rpm os-prober-1.76-150100.4.2.1.ppc64le.rpm os-prober-1.76-150100.4.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-2396 important SUSE Updates openSUSE-SLE 15.4 This update for logrotate fixes the following issues: Security issues fixed: - CVE-2022-1348: Fixed insecure permissions for state file creation (bsc#1199652). - Improved coredump handing for SUID binaries (bsc#1192449). Non-security issues fixed: - Fixed "logrotate emits unintended warning: keyword size not properly separated, found 0x3d" (bsc#1200278, bsc#1200802). logrotate-3.18.1-150400.3.7.1.src.rpm logrotate-3.18.1-150400.3.7.1.x86_64.rpm logrotate-3.18.1-150400.3.7.1.s390x.rpm logrotate-3.18.1-150400.3.7.1.ppc64le.rpm logrotate-3.18.1-150400.3.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-2087 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Provide binaries for non x86_64 architectures directly to SUSE Package Hub. - There are no visible changes for the final user. - Affected source packages: rp-pppoe linux-atm ppp ppp-2.4.7-150000.5.8.1.src.rpm ppp-2.4.7-150000.5.8.1.x86_64.rpm ppp-devel-2.4.7-150000.5.8.1.x86_64.rpm ppp-modem-2.4.7-150000.5.8.1.noarch.rpm rp-pppoe-3.12-150000.6.3.2.src.rpm rp-pppoe-3.12-150000.6.3.2.x86_64.rpm ppp-2.4.7-150000.5.8.1.s390x.rpm ppp-devel-2.4.7-150000.5.8.1.s390x.rpm rp-pppoe-3.12-150000.6.3.2.s390x.rpm ppp-2.4.7-150000.5.8.1.ppc64le.rpm ppp-devel-2.4.7-150000.5.8.1.ppc64le.rpm rp-pppoe-3.12-150000.6.3.2.ppc64le.rpm ppp-2.4.7-150000.5.8.1.aarch64.rpm ppp-devel-2.4.7-150000.5.8.1.aarch64.rpm rp-pppoe-3.12-150000.6.3.2.aarch64.rpm openSUSE-SLE-15.4-2022-1830 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.9.1 ESR - MFSA 2022-19 (bsc#1199768): - CVE-2022-1802: Prototype pollution in Top-Level Await implementation - CVE-2022-1529: Untrusted input used in JavaScript object indexing, leading to prototype pollution MozillaFirefox-91.9.1-150200.152.40.1.src.rpm MozillaFirefox-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-branding-upstream-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-devel-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-translations-common-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-translations-other-91.9.1-150200.152.40.1.x86_64.rpm MozillaFirefox-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-branding-upstream-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-devel-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-translations-common-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-translations-other-91.9.1-150200.152.40.1.s390x.rpm MozillaFirefox-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-devel-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-translations-common-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-translations-other-91.9.1-150200.152.40.1.ppc64le.rpm MozillaFirefox-91.9.1-150200.152.40.1.aarch64.rpm MozillaFirefox-branding-upstream-91.9.1-150200.152.40.1.aarch64.rpm MozillaFirefox-devel-91.9.1-150200.152.40.1.aarch64.rpm MozillaFirefox-translations-common-91.9.1-150200.152.40.1.aarch64.rpm MozillaFirefox-translations-other-91.9.1-150200.152.40.1.aarch64.rpm openSUSE-SLE-15.4-2022-1861 important SUSE Updates openSUSE-SLE 15.4 This update for cups fixes the following issues: - CVE-2022-26691: Fixed an authentication bypass and code execution vulnerability (bsc#1199474) cups-2.2.7-150000.3.32.1.src.rpm cups-2.2.7-150000.3.32.1.x86_64.rpm cups-client-2.2.7-150000.3.32.1.x86_64.rpm cups-config-2.2.7-150000.3.32.1.x86_64.rpm cups-ddk-2.2.7-150000.3.32.1.x86_64.rpm cups-devel-2.2.7-150000.3.32.1.x86_64.rpm cups-devel-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcups2-2.2.7-150000.3.32.1.x86_64.rpm libcups2-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcupscgi1-2.2.7-150000.3.32.1.x86_64.rpm libcupscgi1-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcupsimage2-2.2.7-150000.3.32.1.x86_64.rpm libcupsimage2-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcupsmime1-2.2.7-150000.3.32.1.x86_64.rpm libcupsmime1-32bit-2.2.7-150000.3.32.1.x86_64.rpm libcupsppdc1-2.2.7-150000.3.32.1.x86_64.rpm libcupsppdc1-32bit-2.2.7-150000.3.32.1.x86_64.rpm cups-2.2.7-150000.3.32.1.s390x.rpm cups-client-2.2.7-150000.3.32.1.s390x.rpm cups-config-2.2.7-150000.3.32.1.s390x.rpm cups-ddk-2.2.7-150000.3.32.1.s390x.rpm cups-devel-2.2.7-150000.3.32.1.s390x.rpm libcups2-2.2.7-150000.3.32.1.s390x.rpm libcupscgi1-2.2.7-150000.3.32.1.s390x.rpm libcupsimage2-2.2.7-150000.3.32.1.s390x.rpm libcupsmime1-2.2.7-150000.3.32.1.s390x.rpm libcupsppdc1-2.2.7-150000.3.32.1.s390x.rpm cups-2.2.7-150000.3.32.1.ppc64le.rpm cups-client-2.2.7-150000.3.32.1.ppc64le.rpm cups-config-2.2.7-150000.3.32.1.ppc64le.rpm cups-ddk-2.2.7-150000.3.32.1.ppc64le.rpm cups-devel-2.2.7-150000.3.32.1.ppc64le.rpm libcups2-2.2.7-150000.3.32.1.ppc64le.rpm libcupscgi1-2.2.7-150000.3.32.1.ppc64le.rpm libcupsimage2-2.2.7-150000.3.32.1.ppc64le.rpm libcupsmime1-2.2.7-150000.3.32.1.ppc64le.rpm libcupsppdc1-2.2.7-150000.3.32.1.ppc64le.rpm cups-2.2.7-150000.3.32.1.aarch64.rpm cups-client-2.2.7-150000.3.32.1.aarch64.rpm cups-config-2.2.7-150000.3.32.1.aarch64.rpm cups-ddk-2.2.7-150000.3.32.1.aarch64.rpm cups-devel-2.2.7-150000.3.32.1.aarch64.rpm libcups2-2.2.7-150000.3.32.1.aarch64.rpm libcupscgi1-2.2.7-150000.3.32.1.aarch64.rpm libcupsimage2-2.2.7-150000.3.32.1.aarch64.rpm libcupsmime1-2.2.7-150000.3.32.1.aarch64.rpm libcupsppdc1-2.2.7-150000.3.32.1.aarch64.rpm openSUSE-SLE-15.4-2022-2026 low SUSE Updates openSUSE-SLE 15.4 This update for lirc fixes the following issues: - Fix library dependency. (bsc#1192772) lirc-0.9.4c-150000.4.3.1.src.rpm lirc-drv-portaudio-0.9.4c-150000.4.3.1.x86_64.rpm lirc-drv-portaudio-0.9.4c-150000.4.3.1.s390x.rpm lirc-drv-portaudio-0.9.4c-150000.4.3.1.ppc64le.rpm lirc-drv-portaudio-0.9.4c-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2062 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaThunderbird fixes the following issues: Update to Mozilla Thunderbird 91.9.1 MFSA 2022-19 (bsc#1199768): - CVE-2022-1802: Prototype pollution in Top-Level Await implementation (bmo#1770137). - CVE-2022-1529: Untrusted input used in JavaScript object indexing, leading to prototype pollution (bmo#1770048). Update to Mozilla Thunderbird 91.10 MFSA 2022-22 (bsc#1200027): - CVE-2022-31736: Cross-Origin resource's length leaked (bmo#1735923) - CVE-2022-31737: Heap buffer overflow in WebGL (bmo#1743767) - CVE-2022-31738: Browser window spoof using fullscreen mode (bmo#1756388) - CVE-2022-31739: Attacker-influenced path traversal when saving downloaded files (bmo#1765049) - CVE-2022-31740: Register allocation problem in WASM on arm64 (bmo#1766806) - CVE-2022-31741: Uninitialized variable leads to invalid memory read (bmo#1767590) - CVE-2022-1834: Braille space character caused incorrect sender email to be shown for a digitally signed email (bmo#1767816) - CVE-2022-31742: Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information (bmo#1730434) - CVE-2022-31747: Memory safety bugs fixed in Thunderbird 91.10 (bmo#1760765, bmo#1765610, bmo#1766283, bmo#1767365, bmo#1768559, bmo#1768734) MozillaThunderbird-91.10.0-150200.8.73.1.src.rpm MozillaThunderbird-91.10.0-150200.8.73.1.x86_64.rpm MozillaThunderbird-translations-common-91.10.0-150200.8.73.1.x86_64.rpm MozillaThunderbird-translations-other-91.10.0-150200.8.73.1.x86_64.rpm MozillaThunderbird-91.10.0-150200.8.73.1.s390x.rpm MozillaThunderbird-translations-common-91.10.0-150200.8.73.1.s390x.rpm MozillaThunderbird-translations-other-91.10.0-150200.8.73.1.s390x.rpm MozillaThunderbird-91.10.0-150200.8.73.1.ppc64le.rpm MozillaThunderbird-translations-common-91.10.0-150200.8.73.1.ppc64le.rpm MozillaThunderbird-translations-other-91.10.0-150200.8.73.1.ppc64le.rpm MozillaThunderbird-91.10.0-150200.8.73.1.aarch64.rpm MozillaThunderbird-translations-common-91.10.0-150200.8.73.1.aarch64.rpm MozillaThunderbird-translations-other-91.10.0-150200.8.73.1.aarch64.rpm openSUSE-SLE-15.4-2022-2363 moderate SUSE Updates openSUSE-SLE 15.4 This update for rust1.59 fixes the following issues: - For building requires gcc by default to enable linking to work correctly (bsc#1196496) cargo1.59-1.59.0-150300.7.7.2.x86_64.rpm rust1.59-1.59.0-150300.7.7.2.src.rpm rust1.59-1.59.0-150300.7.7.2.x86_64.rpm cargo1.59-1.59.0-150300.7.7.2.s390x.rpm rust1.59-1.59.0-150300.7.7.2.s390x.rpm cargo1.59-1.59.0-150300.7.7.2.ppc64le.rpm rust1.59-1.59.0-150300.7.7.2.ppc64le.rpm cargo1.59-1.59.0-150300.7.7.2.aarch64.rpm rust1.59-1.59.0-150300.7.7.2.aarch64.rpm openSUSE-SLE-15.4-2022-1936 low SUSE Updates openSUSE-SLE 15.4 This update for sssd fixes the following issues: - Update sss_cache command's manpage to clarify its effects on the memory cache. (bsc#1199393) sssd-1.16.1-150300.23.31.1.src.rpm sssd-common-32bit-1.16.1-150300.23.31.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.31.1.x86_64.rpm sssd-wbclient-devel-1.16.1-150300.23.31.1.x86_64.rpm sssd-wbclient-1.16.1-150300.23.31.1.s390x.rpm sssd-wbclient-devel-1.16.1-150300.23.31.1.s390x.rpm sssd-wbclient-1.16.1-150300.23.31.1.ppc64le.rpm sssd-wbclient-devel-1.16.1-150300.23.31.1.ppc64le.rpm sssd-wbclient-1.16.1-150300.23.31.1.aarch64.rpm sssd-wbclient-devel-1.16.1-150300.23.31.1.aarch64.rpm openSUSE-SLE-15.4-2022-2620 moderate SUSE Updates openSUSE-SLE 15.4 This update for gimp fixes the following issues: - CVE-2022-30067: Fixed uncontrolled memory consumption via crafted XCF file (bsc#1199653). gimp-2.10.12-150200.3.9.1.src.rpm gimp-plugins-python-2.10.12-150200.3.9.1.x86_64.rpm gimp-plugins-python-2.10.12-150200.3.9.1.s390x.rpm gimp-plugins-python-2.10.12-150200.3.9.1.ppc64le.rpm gimp-plugins-python-2.10.12-150200.3.9.1.aarch64.rpm openSUSE-SLE-15.4-2022-1904 important SUSE Updates openSUSE-SLE 15.4 This update for libbluray fixes the following issues: - Implement the new java.io.FileSystem.isInvalid method that entered all supported java versions with April 2022 CPU (bsc#1199463) libbluray-1.3.0-150300.10.7.1.src.rpm libbluray-bdj-1.3.0-150300.10.7.1.noarch.rpm libbluray-devel-1.3.0-150300.10.7.1.x86_64.rpm libbluray-tools-1.3.0-150300.10.7.1.x86_64.rpm libbluray2-1.3.0-150300.10.7.1.x86_64.rpm libbluray2-32bit-1.3.0-150300.10.7.1.x86_64.rpm libbluray-devel-1.3.0-150300.10.7.1.s390x.rpm libbluray-tools-1.3.0-150300.10.7.1.s390x.rpm libbluray2-1.3.0-150300.10.7.1.s390x.rpm libbluray-devel-1.3.0-150300.10.7.1.ppc64le.rpm libbluray-tools-1.3.0-150300.10.7.1.ppc64le.rpm libbluray2-1.3.0-150300.10.7.1.ppc64le.rpm libbluray-devel-1.3.0-150300.10.7.1.aarch64.rpm libbluray-tools-1.3.0-150300.10.7.1.aarch64.rpm libbluray2-1.3.0-150300.10.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-1907 moderate SUSE Updates openSUSE-SLE 15.4 This update for hunspell fixes the following issues: - Add requirement for english dictionary (bsc#1199209) hunspell-1.6.2-150000.3.11.1.src.rpm hunspell-1.6.2-150000.3.11.1.x86_64.rpm hunspell-devel-1.6.2-150000.3.11.1.x86_64.rpm hunspell-devel-32bit-1.6.2-150000.3.11.1.x86_64.rpm hunspell-tools-1.6.2-150000.3.11.1.x86_64.rpm libhunspell-1_6-0-1.6.2-150000.3.11.1.x86_64.rpm libhunspell-1_6-0-32bit-1.6.2-150000.3.11.1.x86_64.rpm hunspell-1.6.2-150000.3.11.1.s390x.rpm hunspell-devel-1.6.2-150000.3.11.1.s390x.rpm hunspell-tools-1.6.2-150000.3.11.1.s390x.rpm libhunspell-1_6-0-1.6.2-150000.3.11.1.s390x.rpm hunspell-1.6.2-150000.3.11.1.ppc64le.rpm hunspell-devel-1.6.2-150000.3.11.1.ppc64le.rpm hunspell-tools-1.6.2-150000.3.11.1.ppc64le.rpm libhunspell-1_6-0-1.6.2-150000.3.11.1.ppc64le.rpm hunspell-1.6.2-150000.3.11.1.aarch64.rpm hunspell-devel-1.6.2-150000.3.11.1.aarch64.rpm hunspell-tools-1.6.2-150000.3.11.1.aarch64.rpm libhunspell-1_6-0-1.6.2-150000.3.11.1.aarch64.rpm openSUSE-SLE-15.4-2022-2070 important SUSE Updates openSUSE-SLE 15.4 This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory (bsc#1196739). python-Twisted-19.10.0-150200.3.12.1.src.rpm openSUSE-SLE-15.4-2022-1924 moderate SUSE Updates openSUSE-SLE 15.4 This update for mutter fixes the following issues: - Fix SIGSEGV in meta_context_terminate (bsc#1199382 glgo#GNOME/mutter#2267). - Update to version 41.5: + Fix X11 wayland drops ending up in the wrong wayland client. + Allow forcing EGLStream backend. + Updated translations. mutter-41.5-150400.3.3.1.src.rpm mutter-41.5-150400.3.3.1.x86_64.rpm mutter-devel-41.5-150400.3.3.1.x86_64.rpm mutter-lang-41.5-150400.3.3.1.noarch.rpm mutter-41.5-150400.3.3.1.s390x.rpm mutter-devel-41.5-150400.3.3.1.s390x.rpm mutter-41.5-150400.3.3.1.ppc64le.rpm mutter-devel-41.5-150400.3.3.1.ppc64le.rpm mutter-41.5-150400.3.3.1.aarch64.rpm mutter-devel-41.5-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2054 important SUSE Updates openSUSE-SLE 15.4 This update for u-boot fixes the following issues: - CVE-2022-30552: A large buffer overflow could have lead to a denial of service in the IP Packet deframentation code. (bsc#1200363) - CVE-2022-30790: A Hole Descriptor Overwrite could have lead to an arbitrary out of bounds write primitive. (bsc#1200364) - CVE-2022-30767: Fixed an unbounded memcpy with a failed length check leading to a buffer overflow (bsc#1199623). u-boot-2021.10-150400.4.5.1.src.rpm u-boot-tools-2021.10-150400.4.5.1.x86_64.rpm u-boot-tools-2021.10-150400.4.5.1.s390x.rpm u-boot-tools-2021.10-150400.4.5.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.10-150400.4.5.1.aarch64.rpm u-boot-avnetultra96rev1-2021.10-150400.4.5.1.src.rpm u-boot-avnetultra96rev1-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-bananapim64-2021.10-150400.4.5.1.aarch64.rpm u-boot-bananapim64-2021.10-150400.4.5.1.src.rpm u-boot-bananapim64-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-dragonboard410c-2021.10-150400.4.5.1.aarch64.rpm u-boot-dragonboard410c-2021.10-150400.4.5.1.src.rpm u-boot-dragonboard410c-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-dragonboard820c-2021.10-150400.4.5.1.aarch64.rpm u-boot-dragonboard820c-2021.10-150400.4.5.1.src.rpm u-boot-dragonboard820c-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-evb-rk3399-2021.10-150400.4.5.1.aarch64.rpm u-boot-evb-rk3399-2021.10-150400.4.5.1.src.rpm u-boot-evb-rk3399-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-firefly-rk3399-2021.10-150400.4.5.1.aarch64.rpm u-boot-firefly-rk3399-2021.10-150400.4.5.1.src.rpm u-boot-firefly-rk3399-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-geekbox-2021.10-150400.4.5.1.aarch64.rpm u-boot-geekbox-2021.10-150400.4.5.1.src.rpm u-boot-geekbox-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-hikey-2021.10-150400.4.5.1.aarch64.rpm u-boot-hikey-2021.10-150400.4.5.1.src.rpm u-boot-hikey-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-khadas-vim-2021.10-150400.4.5.1.aarch64.rpm u-boot-khadas-vim-2021.10-150400.4.5.1.src.rpm u-boot-khadas-vim-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-khadas-vim2-2021.10-150400.4.5.1.aarch64.rpm u-boot-khadas-vim2-2021.10-150400.4.5.1.src.rpm u-boot-khadas-vim2-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-libretech-ac-2021.10-150400.4.5.1.aarch64.rpm u-boot-libretech-ac-2021.10-150400.4.5.1.src.rpm u-boot-libretech-ac-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-libretech-cc-2021.10-150400.4.5.1.aarch64.rpm u-boot-libretech-cc-2021.10-150400.4.5.1.src.rpm u-boot-libretech-cc-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.10-150400.4.5.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.10-150400.4.5.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.10-150400.4.5.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.10-150400.4.5.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.10-150400.4.5.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.10-150400.4.5.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.10-150400.4.5.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.10-150400.4.5.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.10-150400.4.5.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.10-150400.4.5.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-nanopia64-2021.10-150400.4.5.1.aarch64.rpm u-boot-nanopia64-2021.10-150400.4.5.1.src.rpm u-boot-nanopia64-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-odroid-c2-2021.10-150400.4.5.1.aarch64.rpm u-boot-odroid-c2-2021.10-150400.4.5.1.src.rpm u-boot-odroid-c2-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-odroid-c4-2021.10-150400.4.5.1.aarch64.rpm u-boot-odroid-c4-2021.10-150400.4.5.1.src.rpm u-boot-odroid-c4-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-odroid-n2-2021.10-150400.4.5.1.aarch64.rpm u-boot-odroid-n2-2021.10-150400.4.5.1.src.rpm u-boot-odroid-n2-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-orangepipc2-2021.10-150400.4.5.1.aarch64.rpm u-boot-orangepipc2-2021.10-150400.4.5.1.src.rpm u-boot-orangepipc2-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-p2371-2180-2021.10-150400.4.5.1.aarch64.rpm u-boot-p2371-2180-2021.10-150400.4.5.1.src.rpm u-boot-p2371-2180-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-p2771-0000-500-2021.10-150400.4.5.1.aarch64.rpm u-boot-p2771-0000-500-2021.10-150400.4.5.1.src.rpm u-boot-p2771-0000-500-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-p3450-0000-2021.10-150400.4.5.1.aarch64.rpm u-boot-p3450-0000-2021.10-150400.4.5.1.src.rpm u-boot-p3450-0000-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-pine64plus-2021.10-150400.4.5.1.aarch64.rpm u-boot-pine64plus-2021.10-150400.4.5.1.src.rpm u-boot-pine64plus-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-pinebook-2021.10-150400.4.5.1.aarch64.rpm u-boot-pinebook-2021.10-150400.4.5.1.src.rpm u-boot-pinebook-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.10-150400.4.5.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.10-150400.4.5.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-pineh64-2021.10-150400.4.5.1.aarch64.rpm u-boot-pineh64-2021.10-150400.4.5.1.src.rpm u-boot-pineh64-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-pinephone-2021.10-150400.4.5.1.aarch64.rpm u-boot-pinephone-2021.10-150400.4.5.1.src.rpm u-boot-pinephone-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-poplar-2021.10-150400.4.5.1.aarch64.rpm u-boot-poplar-2021.10-150400.4.5.1.src.rpm u-boot-poplar-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.10-150400.4.5.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.10-150400.4.5.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-rock-pi-n10-rk3399pro-2021.10-150400.4.5.1.aarch64.rpm u-boot-rock-pi-n10-rk3399pro-2021.10-150400.4.5.1.src.rpm u-boot-rock-pi-n10-rk3399pro-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-rock64-rk3328-2021.10-150400.4.5.1.aarch64.rpm u-boot-rock64-rk3328-2021.10-150400.4.5.1.src.rpm u-boot-rock64-rk3328-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-rock960-rk3399-2021.10-150400.4.5.1.aarch64.rpm u-boot-rock960-rk3399-2021.10-150400.4.5.1.src.rpm u-boot-rock960-rk3399-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.10-150400.4.5.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.10-150400.4.5.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-rpi3-2021.10-150400.4.5.1.aarch64.rpm u-boot-rpi3-2021.10-150400.4.5.1.src.rpm u-boot-rpi3-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-rpi4-2021.10-150400.4.5.1.aarch64.rpm u-boot-rpi4-2021.10-150400.4.5.1.src.rpm u-boot-rpi4-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-rpiarm64-2021.10-150400.4.5.1.aarch64.rpm u-boot-rpiarm64-2021.10-150400.4.5.1.src.rpm u-boot-rpiarm64-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-tools-2021.10-150400.4.5.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.10-150400.4.5.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.10-150400.4.5.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.10-150400.4.5.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.10-150400.4.5.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.10-150400.4.5.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.10-150400.4.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2035 important SUSE Updates openSUSE-SLE 15.4 This update for grub2 fixes the following issues: This update provides security fixes and hardenings for Boothole 3 / Boothole 2022 (bsc#1198581) - CVE-2021-3695: Fixed that a crafted PNG grayscale image could lead to out-of-bounds write in heap (bsc#1191184) - CVE-2021-3696: Fixed that a crafted PNG image could lead to out-of-bound write during huffman table handling (bsc#1191185) - CVE-2021-3697: Fixed that a crafted JPEG image could lead to buffer underflow write in the heap (bsc#1191186) - CVE-2022-28733: Fixed fragmentation math in net/ip (bsc#1198460) - CVE-2022-28734: Fixed an out-of-bound write for split http headers (bsc#1198493) - CVE-2022-28735: Fixed some verifier framework changes (bsc#1198495) - CVE-2022-28736: Fixed a use-after-free in chainloader command (bsc#1198496) - Update SBAT security contact (bsc#1193282) - Bump grub's SBAT generation to 2 - Use boot disks in OpenFirmware, fixing regression caused when the root LV is completely in the boot LUN (bsc#1197948) grub2-2.06-150400.11.5.2.src.rpm grub2-2.06-150400.11.5.2.x86_64.rpm grub2-arm64-efi-2.06-150400.11.5.2.noarch.rpm grub2-arm64-efi-debug-2.06-150400.11.5.2.noarch.rpm grub2-branding-upstream-2.06-150400.11.5.2.x86_64.rpm grub2-i386-pc-2.06-150400.11.5.2.noarch.rpm grub2-i386-pc-debug-2.06-150400.11.5.2.noarch.rpm grub2-powerpc-ieee1275-2.06-150400.11.5.2.noarch.rpm grub2-powerpc-ieee1275-debug-2.06-150400.11.5.2.noarch.rpm grub2-snapper-plugin-2.06-150400.11.5.2.noarch.rpm grub2-systemd-sleep-plugin-2.06-150400.11.5.2.noarch.rpm grub2-x86_64-efi-2.06-150400.11.5.2.noarch.rpm grub2-x86_64-efi-debug-2.06-150400.11.5.2.noarch.rpm grub2-x86_64-xen-2.06-150400.11.5.2.noarch.rpm grub2-2.06-150400.11.5.2.s390x.rpm grub2-branding-upstream-2.06-150400.11.5.2.s390x.rpm grub2-s390x-emu-2.06-150400.11.5.2.s390x.rpm grub2-s390x-emu-debug-2.06-150400.11.5.2.s390x.rpm grub2-2.06-150400.11.5.2.ppc64le.rpm grub2-branding-upstream-2.06-150400.11.5.2.ppc64le.rpm grub2-2.06-150400.11.5.2.aarch64.rpm grub2-branding-upstream-2.06-150400.11.5.2.aarch64.rpm openSUSE-SLE-15.4-2022-2295 important SUSE Updates openSUSE-SLE 15.4 This update for 389-ds fixes the following issues: - CVE-2021-4091: Fixed double free in psearch (bsc#1195324). - CVE-2022-1949: Fixed full access control bypass with simple crafted query (bsc#1199889). 389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.src.rpm 389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64.rpm 389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64.rpm 389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64.rpm lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64.rpm libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.x86_64.rpm 389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x.rpm 389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x.rpm 389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x.rpm lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x.rpm libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.s390x.rpm 389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le.rpm 389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le.rpm 389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le.rpm lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le.rpm libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.ppc64le.rpm 389-ds-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64.rpm 389-ds-devel-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64.rpm 389-ds-snmp-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64.rpm lib389-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64.rpm libsvrcore0-2.0.15~git26.1ea6a6803-150400.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-1920 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.10.0 ESR (MFSA 2022-21)(bsc#1200027) - CVE-2022-31736: Cross-Origin resource's length leaked - CVE-2022-31737: Heap buffer overflow in WebGL - CVE-2022-31738: Browser window spoof using fullscreen mode - CVE-2022-31739: Attacker-influenced path traversal when saving downloaded files - CVE-2022-31740: Register allocation problem in WASM on arm64 - CVE-2022-31741: Uninitialized variable leads to invalid memory read - CVE-2022-31742: Querying a WebAuthn token with a large number of allowCredential entries may have leaked cross-origin information - CVE-2022-31747: Memory safety bugs fixed in Firefox 101 and Firefox ESR 91.10 MozillaFirefox-91.10.0-150200.152.43.1.src.rpm MozillaFirefox-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-branding-upstream-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-devel-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-translations-common-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-translations-other-91.10.0-150200.152.43.1.x86_64.rpm MozillaFirefox-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-branding-upstream-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-devel-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-translations-common-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-translations-other-91.10.0-150200.152.43.1.s390x.rpm MozillaFirefox-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-devel-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-translations-common-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-translations-other-91.10.0-150200.152.43.1.ppc64le.rpm MozillaFirefox-91.10.0-150200.152.43.1.aarch64.rpm MozillaFirefox-branding-upstream-91.10.0-150200.152.43.1.aarch64.rpm MozillaFirefox-devel-91.10.0-150200.152.43.1.aarch64.rpm MozillaFirefox-translations-common-91.10.0-150200.152.43.1.aarch64.rpm MozillaFirefox-translations-other-91.10.0-150200.152.43.1.aarch64.rpm openSUSE-SLE-15.4-2022-2703 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-google-resumable-media fixes the following issues: - Fix testsuite invocation (bsc#1197841) python-google-resumable-media-0.5.0-150200.5.6.1.src.rpm python3-google-resumable-media-0.5.0-150200.5.6.1.noarch.rpm openSUSE-SLE-15.4-2022-2174 important SUSE Updates openSUSE-SLE 15.4 This update for python39 fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module (bsc#1198511). - Update to 3.9.13: - Core and Builtins - gh-92311: Fixed a bug where setting frame.f_lineno to jump over a list comprehension could misbehave or crash. - gh-92112: Fix crash triggered by an evil custom mro() on a metaclass. - gh-92036: Fix a crash in subinterpreters related to the garbage collector. When a subinterpreter is deleted, untrack all objects tracked by its GC. To prevent a crash in deallocator functions expecting objects to be tracked by the GC, leak a strong reference to these objects on purpose, so they are never deleted and their deallocator functions are not called. Patch by Victor Stinner. - gh-91421: Fix a potential integer overflow in _Py_DecodeUTF8Ex. - bpo-46775: Some Windows system error codes(>= 10000) are now mapped into the correct errno and may now raise a subclass of OSError. Patch by Dong-hee Na. - bpo-46962: Classes and functions that unconditionally declared their docstrings ignoring the --without-doc-strings compilation flag no longer do so. - The classes affected are pickle.PickleBuffer, testcapi.RecursingInfinitelyError, and types.GenericAlias. - The functions affected are 24 methods in ctypes. - Patch by Oleg Iarygin. - bpo-36819: Fix crashes in built-in encoders with error handlers that return position less or equal than the starting position of non-encodable characters. - Library - gh-91581: utcfromtimestamp() no longer attempts to resolve fold in the pure Python implementation, since the fold is never 1 in UTC. In addition to being slightly faster in the common case, this also prevents some errors when the timestamp is close to datetime.min. Patch by Paul Ganssle. - gh-92530: Fix an issue that occurred after interrupting threading.Condition.notify(). - gh-92049: Forbid pickling constants re._constants.SUCCESS etc. Previously, pickling did not fail, but the result could not be unpickled. - bpo-47029: Always close the read end of the pipe used by multiprocessing.Queue after the last write of buffered data to the write end of the pipe to avoid BrokenPipeError at garbage collection and at multiprocessing.Queue.close() calls. Patch by Géry Ogam. - gh-91910: Add missing f prefix to f-strings in error messages from the multiprocessing and asyncio modules. - gh-91810: ElementTree method write() and function tostring() now use the text file''s encoding ("UTF-8" if not available) instead of locale encoding in XML declaration when encoding="unicode" is specified. - gh-91832: Add required attribute to argparse.Action repr output. - gh-91734: Fix OSS audio support on Solaris. - gh-91700: Compilation of regular expression containing a conditional expression (?(group)...) now raises an appropriate re.error if the group number refers to not defined group. Previously an internal RuntimeError was raised. - gh-91676: Fix unittest.IsolatedAsyncioTestCase to shutdown the per test event loop executor before returning from its run method so that a not yet stopped or garbage collected executor state does not persist beyond the test. - gh-90568: Parsing \N escapes of Unicode Named Character Sequences in a regular expression raises now re.error instead of TypeError. - gh-91595: Fix the comparison of character and integer inside Tools.gdb.libpython.write_repr(). Patch by Yu Liu. - gh-90622: Worker processes for concurrent.futures.ProcessPoolExecutor are no longer spawned on demand (a feature added in 3.9) when the multiprocessing context start method is "fork" as that can lead to deadlocks in the child processes due to a fork happening while threads are running. - gh-91575: Update case-insensitive matching in the re module to the latest Unicode version. - gh-91581: Remove an unhandled error case in the C implementation of calls to datetime.fromtimestamp with no time zone (i.e. getting a local time from an epoch timestamp). This should have no user-facing effect other than giving a possibly more accurate error message when called with timestamps that fall on 10000-01-01 in the local time. Patch by Paul Ganssle. - bpo-34480: Fix a bug where _markupbase raised an UnboundLocalError when an invalid keyword was found in marked section. Patch by Marek Suscak. - bpo-27929: Fix asyncio.loop.sock_connect() to only resolve names for socket.AF_INET or socket.AF_INET6 families. Resolution may not make sense for other families, like socket.AF_BLUETOOTH and socket.AF_UNIX. - bpo-43323: Fix errors in the email module if the charset itself contains undecodable/unencodable characters. - bpo-46787: Fix concurrent.futures.ProcessPoolExecutor exception memory leak - bpo-46415: Fix ipaddress.ip_{address,interface,network} raising TypeError instead of ValueError if given invalid tuple as address parameter. - bpo-44911: IsolatedAsyncioTestCase will no longer throw an exception while cancelling leaked tasks. Patch by Bar Harel. - bpo-44493: Add missing terminated NUL in sockaddr_un's length - This was potentially observable when using non-abstract AF_UNIX datagram sockets to processes written in another programming language. - bpo-42627: Fix incorrect parsing of Windows registry proxy settings - bpo-36073: Raise ProgrammingError instead of segfaulting on recursive usage of cursors in sqlite3 converters. Patch by Sergey Fedoseev. - Documentation - gh-91888: Add a new gh role to the documentation to link to GitHub issues. - gh-91783: Document security issues concerning the use of the function shutil.unpack_archive() - gh-91547: Remove "Undocumented modules" page. - bpo-44347: Clarify the meaning of dirs_exist_ok, a kwarg of shutil.copytree(). - bpo-38668: Update the introduction to documentation for os.path to remove warnings that became irrelevant after the implementations of PEP 383 and PEP 529. - bpo-47138: Pin Jinja to a version compatible with Sphinx version 2.4.4. - bpo-46962: All docstrings in code snippets are now wrapped into PyDoc_STR() to follow the guideline of PEP 7's Documentation Strings paragraph. Patch by Oleg Iarygin. - bpo-26792: Improve the docstrings of runpy.run_module() and runpy.run_path(). Original patch by Andrew Brezovsky. - bpo-45790: Adjust inaccurate phrasing in Defining Extension Types: Tutorial about the ob_base field and the macros used to access its contents. - bpo-42340: Document that in some circumstances KeyboardInterrupt may cause the code to enter an inconsistent state. Provided a sample workaround to avoid it if needed. - bpo-41233: Link the errnos referenced in Doc/library/exceptions.rst to their respective section in Doc/library/errno.rst, and vice versa. Previously this was only done for EINTR and InterruptedError. Patch by Yan "yyyyyyyan" Orestes. - bpo-38056: Overhaul the Error Handlers documentation in codecs. - bpo-13553: Document tkinter.Tk args. - Tests - gh-91607: Fix test_concurrent_futures to test the correct multiprocessing start method context in several cases where the test logic mixed this up. - bpo-47205: Skip test for sched_getaffinity() and sched_setaffinity() error case on FreeBSD. - bpo-29890: Add tests for ipaddress.IPv4Interface and ipaddress.IPv6Interface construction with tuple arguments. Original patch and tests by louisom. - Build - bpo-47103: Windows PGInstrument builds now copy a required DLL into the output directory, making it easier to run the profile stage of a PGO build. - Windows - bpo-47194: Update zlib to v1.2.12 to resolve CVE-2018-25032. - bpo-46785: Fix race condition between os.stat() and unlinking a file on Windows, by using errors codes returned by FindFirstFileW() when appropriate in win32_xstat_impl. - bpo-40859: Update Windows build to use xz-5.2.5 - Tools/Demos - gh-91583: Fix regression in the code generated by Argument Clinic for functions with the defining_class parameter. - Update to 3.9.12: - bpo-46968: Check for the existence of the "sys/auxv.h" header in faulthandler to avoid compilation problems in systems where this header doesn't exist. Patch by Pablo Galindo - bpo-47101: hashlib.algorithms_available now lists only algorithms that are provided by activated crypto providers on OpenSSL 3.0. Legacy algorithms are not listed unless the legacy provider has been loaded into the default OSSL context. - bpo-23691: Protect the re.finditer() iterator from re-entering. - bpo-42369: Fix thread safety of zipfile._SharedFile.tell() to avoid a "zipfile.BadZipFile: Bad CRC-32 for file" exception when reading a ZipFile from multiple threads. - bpo-38256: Fix binascii.crc32() when it is compiled to use zlib'c crc32 to work properly on inputs 4+GiB in length instead of returning the wrong result. The workaround prior to this was to always feed the function data in increments smaller than 4GiB or to just call the zlib module function. - bpo-39394: A warning about inline flags not at the start of the regular expression now contains the position of the flag. - bpo-47061: Deprecate the various modules listed by PEP 594: - aifc, asynchat, asyncore, audioop, cgi, cgitb, chunk, crypt, imghdr, msilib, nntplib, nis, ossaudiodev, pipes, smtpd, sndhdr, spwd, sunau, telnetlib, uu, xdrlib - bpo-2604: Fix bug where doctests using globals would fail when run multiple times. - bpo-45997: Fix asyncio.Semaphore re-aquiring FIFO order. - bpo-47022: The asynchat, asyncore and smtpd modules have been deprecated since at least Python 3.6. Their documentation has now been updated to note they will removed in Python 3.12 (PEP 594). - bpo-46421: Fix a unittest issue where if the command was invoked as python -m unittest and the filename(s) began with a dot (.), a ValueError is returned. - bpo-40296: Fix supporting generic aliases in pydoc. - bpo-14156: argparse.FileType now supports an argument of '-'; in binary mode, returning the .buffer attribute of sys.stdin/sys.stdout as appropriate. Modes including 'x' and 'a' are treated equivalently to 'w' when argument is '-'. Patch contributed by Josh Rosenberg - Update to 3.9.11: - bpo-46852: Rename the private undocumented float.__set_format__() method to float.__setformat__() to fix a typo introduced in Python 3.7. The method is only used by test_float. Patch by Victor Stinner. - bpo-46794: Bump up the libexpat version into 2.4.6 - bpo-46762: Fix an assert failure in debug builds when a '<', '>', or '=' is the last character in an f-string that's missing a closing right brace. - bpo-46732: Correct the docstring for the __bool__() method. Patch by Jelle Zijlstra. - bpo-40479: Add a missing call to va_end() in Modules/_hashopenssl.c. - bpo-46615: When iterating over sets internally in setobject.c, acquire strong references to the resulting items from the set. This prevents crashes in corner-cases of various set operations where the set gets mutated. - bpo-43721: Fix docstrings of getter, setter, and deleter to clarify that they create a new copy of the property. - bpo-46503: Fix an assert when parsing some invalid N escape sequences in f-strings. - bpo-46417: Fix a race condition on setting a type __bases__ attribute: the internal function add_subclass() now gets the PyTypeObject.tp_subclasses member after calling PyWeakref_NewRef() which can trigger a garbage collection which can indirectly modify PyTypeObject.tp_subclasses. Patch by Victor Stinner. - bpo-46383: Fix invalid signature of _zoneinfo's module_free function to resolve a crash on wasm32-emscripten platform. - bpo-43253: Fix a crash when closing transports where the underlying socket handle is already invalid on the Proactor event loop. - bpo-47004: Apply bugfixes from importlib_metadata 4.11.3, including bugfix for EntryPoint.extras, which was returning match objects and not the extras strings. - bpo-46985: Upgrade pip wheel bundled with ensurepip (pip 22.0.4) - bpo-46968: faulthandler: On Linux 5.14 and newer, dynamically determine size of signal handler stack size CPython allocates using getauxval(AT_MINSIGSTKSZ). This changes allows for Python extension's request to Linux kernel to use AMX_TILE instruction set on Sapphire Rapids Xeon processor to succeed, unblocking use of the ISA in frameworks. - bpo-46955: Expose asyncio.base_events.Server as asyncio.Server. Patch by Stefan Zabka. - bpo-46932: Update bundled libexpat to 2.4.7 - bpo-25707: Fixed a file leak in xml.etree.ElementTree.iterparse() when the iterator is not exhausted. Patch by Jacob Walls. - bpo-44886: Inherit asyncio proactor datagram transport from asyncio.DatagramTransport. - bpo-46827: Support UDP sockets in asyncio.loop.sock_connect() for selector-based event loops. Patch by Thomas Grainger. - bpo-46811: Make test suite support Expat >=2.4.5 - bpo-46252: Raise TypeError if ssl.SSLSocket is passed to transport-based APIs. - bpo-46784: Fix libexpat symbols collisions with user dynamically loaded or statically linked libexpat in embedded Python. - bpo-39327: shutil.rmtree() can now work with VirtualBox shared folders when running from the guest operating-system. - bpo-46756: Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI example.org/foobar was allowed if the user was authorized for URI example.org/foo. - bpo-45863: When the tarfile module creates a pax format archive, it will put an integer representation of timestamps in the ustar header (if possible) for the benefit of older unarchivers, in addition to the existing full-precision timestamps in the pax extended header. - bpo-46672: Fix NameError in asyncio.gather() when initial type check fails. - bpo-45948: Fixed a discrepancy in the C implementation of the xml.etree.ElementTree module. Now, instantiating an xml.etree.ElementTree.XMLParser with a target=None keyword provides a default xml.etree.ElementTree.TreeBuilder target as the Python implementation does. - bpo-46591: Make the IDLE doc URL on the About IDLE dialog clickable. - bpo-46400: expat: Update libexpat from 2.4.1 to 2.4.4 - bpo-46487: Add the get_write_buffer_limits method to asyncio.transports.WriteTransport and to the SSL transport. - bpo-46539: In typing.get_type_hints(), support evaluating stringified ClassVar and Final annotations inside Annotated. Patch by Gregory Beauregard. - bpo-46491: Allow typing.Annotated to wrap typing.Final and typing.ClassVar. Patch by Gregory Beauregard. - bpo-46436: Fix command-line option -d/--directory in module http.server which is ignored when combined with command-line option --cgi. Patch by Géry Ogam. - bpo-41403: Make mock.patch() raise a TypeError with a relevant error message on invalid arg. Previously it allowed a cryptic AttributeError to escape. - bpo-46474: In importlib.metadata.EntryPoint.pattern, avoid potential REDoS by limiting ambiguity in consecutive whitespace. - bpo-46469: asyncio generic classes now return types.GenericAlias in __class_getitem__ instead of the same class. - bpo-46434: pdb now gracefully handles help when __doc__ is missing, for example when run with pregenerated optimized .pyc files. - bpo-46333: The __eq__() and __hash__() methods of typing.ForwardRef now honor the module parameter of typing.ForwardRef. Forward references from different modules are now differentiated. - bpo-43118: Fix a bug in inspect.signature() that was causing it to fail on some subclasses of classes with a __text_signature__ referencing module globals. Patch by Weipeng Hong. - bpo-21987: Fix an issue with tarfile.TarFile.getmember() getting a directory name with a trailing slash. - bpo-20392: Fix inconsistency with uppercase file extensions in MimeTypes.guess_type(). Patch by Kumar Aditya. - bpo-46080: Fix exception in argparse help text generation if a argparse.BooleanOptionalAction argument's default is argparse.SUPPRESS and it has help specified. Patch by Felix Fontein. - bpo-44439: Fix .write() method of a member file in ZipFile, when the input data is an object that supports the buffer protocol, the file length may be wrong. - bpo-45703: When a namespace package is imported before another module from the same namespace is created/installed in a different sys.path location while the program is running, calling the importlib.invalidate_caches() function will now also guarantee the new module is noticed. - bpo-24959: Fix bug where unittest sometimes drops frames from tracebacks of exceptions raised in tests. - bpo-46463: Fixes escape4chm.py script used when building the CHM documentation file - bpo-46913: Fix test_faulthandler.test_sigfpe() if Python is built with undefined behavior sanitizer (UBSAN): disable UBSAN on the faulthandler_sigfpe() function. Patch by Victor Stinner. - bpo-46708: Prevent default asyncio event loop policy modification warning after test_asyncio execution. - bpo-46616: Ensures test_importlib.test_windows cleans up registry keys after completion. - bpo-44359: test_ftplib now silently ignores socket errors to prevent logging unhandled threading exceptions. Patch by Victor Stinner. - bpo-46542: Fix a Python crash in test_lib2to3 when using Python built in debug mode: limit the recursion limit. Patch by Victor Stinner. - bpo-46576: test_peg_generator now disables compiler optimization when testing compilation of its own C extensions to significantly speed up the testing on non-debug builds of CPython. - bpo-46542: Fix test_json tests checking for RecursionError: modify these tests to use support.infinite_recursion(). Patch by Victor Stinner. - bpo-13886: Skip test_builtin PTY tests on non-ASCII characters if the readline module is loaded. The readline module changes input() behavior, but test_builtin is not intented to test the readline module. Patch by Victor Stinner. - bpo-38472: Fix GCC detection in setup.py when cross-compiling. The C compiler is now run with LC_ALL=C. Previously, the detection failed with a German locale. - bpo-46513: configure no longer uses AC_C_CHAR_UNSIGNED macro and pyconfig.h no longer defines reserved symbol __CHAR_UNSIGNED__. - bpo-45925: Update Windows installer to use SQLite 3.37.2. - bpo-45296: Clarify close, quit, and exit in IDLE. In the File menu, 'Close' and 'Exit' are now 'Close Window' (the current one) and 'Exit' is now 'Exit IDLE' (by closing all windows). In Shell, 'quit()' and 'exit()' mean 'close Shell'. If there are no other windows, this also exits IDLE. - bpo-45447: Apply IDLE syntax highlighting to pyi files. Patch by Alex Waygood and Terry Jan Reedy. libpython3_9-1_0-3.9.13-150300.4.13.1.x86_64.rpm libpython3_9-1_0-32bit-3.9.13-150300.4.13.1.x86_64.rpm python39-3.9.13-150300.4.13.1.src.rpm python39-3.9.13-150300.4.13.1.x86_64.rpm python39-32bit-3.9.13-150300.4.13.1.x86_64.rpm python39-base-3.9.13-150300.4.13.1.x86_64.rpm python39-base-32bit-3.9.13-150300.4.13.1.x86_64.rpm python39-core-3.9.13-150300.4.13.1.src.rpm python39-curses-3.9.13-150300.4.13.1.x86_64.rpm python39-dbm-3.9.13-150300.4.13.1.x86_64.rpm python39-devel-3.9.13-150300.4.13.1.x86_64.rpm python39-doc-3.9.13-150300.4.13.1.x86_64.rpm python39-doc-devhelp-3.9.13-150300.4.13.1.x86_64.rpm python39-documentation-3.9.13-150300.4.13.1.src.rpm python39-idle-3.9.13-150300.4.13.1.x86_64.rpm python39-testsuite-3.9.13-150300.4.13.1.x86_64.rpm python39-tk-3.9.13-150300.4.13.1.x86_64.rpm python39-tools-3.9.13-150300.4.13.1.x86_64.rpm libpython3_9-1_0-3.9.13-150300.4.13.1.s390x.rpm python39-3.9.13-150300.4.13.1.s390x.rpm python39-base-3.9.13-150300.4.13.1.s390x.rpm python39-curses-3.9.13-150300.4.13.1.s390x.rpm python39-dbm-3.9.13-150300.4.13.1.s390x.rpm python39-devel-3.9.13-150300.4.13.1.s390x.rpm python39-doc-3.9.13-150300.4.13.1.s390x.rpm python39-doc-devhelp-3.9.13-150300.4.13.1.s390x.rpm python39-idle-3.9.13-150300.4.13.1.s390x.rpm python39-testsuite-3.9.13-150300.4.13.1.s390x.rpm python39-tk-3.9.13-150300.4.13.1.s390x.rpm python39-tools-3.9.13-150300.4.13.1.s390x.rpm libpython3_9-1_0-3.9.13-150300.4.13.1.ppc64le.rpm python39-3.9.13-150300.4.13.1.ppc64le.rpm python39-base-3.9.13-150300.4.13.1.ppc64le.rpm python39-curses-3.9.13-150300.4.13.1.ppc64le.rpm python39-dbm-3.9.13-150300.4.13.1.ppc64le.rpm python39-devel-3.9.13-150300.4.13.1.ppc64le.rpm python39-doc-3.9.13-150300.4.13.1.ppc64le.rpm python39-doc-devhelp-3.9.13-150300.4.13.1.ppc64le.rpm python39-idle-3.9.13-150300.4.13.1.ppc64le.rpm python39-testsuite-3.9.13-150300.4.13.1.ppc64le.rpm python39-tk-3.9.13-150300.4.13.1.ppc64le.rpm python39-tools-3.9.13-150300.4.13.1.ppc64le.rpm libpython3_9-1_0-3.9.13-150300.4.13.1.aarch64.rpm python39-3.9.13-150300.4.13.1.aarch64.rpm python39-base-3.9.13-150300.4.13.1.aarch64.rpm python39-curses-3.9.13-150300.4.13.1.aarch64.rpm python39-dbm-3.9.13-150300.4.13.1.aarch64.rpm python39-devel-3.9.13-150300.4.13.1.aarch64.rpm python39-doc-3.9.13-150300.4.13.1.aarch64.rpm python39-doc-devhelp-3.9.13-150300.4.13.1.aarch64.rpm python39-idle-3.9.13-150300.4.13.1.aarch64.rpm python39-testsuite-3.9.13-150300.4.13.1.aarch64.rpm python39-tk-3.9.13-150300.4.13.1.aarch64.rpm python39-tools-3.9.13-150300.4.13.1.aarch64.rpm openSUSE-SLE-15.4-2022-2713 important SUSE Updates openSUSE-SLE 15.4 This update for bind fixes the following issues: - CVE-2021-25219: Fixed flaw that allowed abusing lame cache to severely degrade resolver performance (bsc#1192146). - CVE-2021-25220: Fixed potentially incorrect answers by cached forwarders (bsc#1197135). - CVE-2022-0396: Fixed a incorrect handling of TCP connection slots time frame leading to deny of service (bsc#1197136). The following non-security bugs were fixed: - Update to release 9.16.31 (jsc#SLE-24600). - Logrotation broken since dropping chroot (bsc#1200685). - A non-existent initialization script (eg a leftorver "createNamedConfInclude" in /etc/sysconfig/named) may cause named not to start. A warning message is printed in named.prep and the fact is ignored. Also, the return value of a failed script was not handled properly causing a failed script to not prevent named to start. This is now fixed properly. [bsc#1199044, vendor-files.tar.bz2] bind-9.16.31-150400.5.6.1.src.rpm bind-9.16.31-150400.5.6.1.x86_64.rpm bind-doc-9.16.31-150400.5.6.1.noarch.rpm bind-utils-9.16.31-150400.5.6.1.x86_64.rpm python3-bind-9.16.31-150400.5.6.1.noarch.rpm bind-9.16.31-150400.5.6.1.s390x.rpm bind-utils-9.16.31-150400.5.6.1.s390x.rpm bind-9.16.31-150400.5.6.1.ppc64le.rpm bind-utils-9.16.31-150400.5.6.1.ppc64le.rpm bind-9.16.31-150400.5.6.1.aarch64.rpm bind-utils-9.16.31-150400.5.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-2595 important SUSE Updates openSUSE-SLE 15.4 This update for mozilla-nss fixes the following issues: Various FIPS 140-3 related fixes were backported from SUSE Linux Enterprise 15 SP4: - Makes the PBKDF known answer test compliant with NIST SP800-132. (bsc#1192079). - FIPS: Add on-demand integrity tests through sftk_FIPSRepeatIntegrityCheck() (bsc#1198980). - FIPS: mark algorithms as approved/non-approved according to security policy (bsc#1191546, bsc#1201298). - FIPS: remove hard disabling of unapproved algorithms. This requirement is now fulfilled by the service level indicator (bsc#1200325). - Run test suite at build time, and make it pass (bsc#1198486). - FIPS: skip algorithms that are hard disabled in FIPS mode. - Prevent expired PayPalEE cert from failing the tests. - Allow checksumming to be disabled, but only if we entered FIPS mode due to NSS_FIPS being set, not if it came from /proc. - FIPS: Make the PBKDF known answer test compliant with NIST SP800-132. - Update FIPS validation string to version-release format. - FIPS: remove XCBC MAC from list of FIPS approved algorithms. - Enable NSS_ENABLE_FIPS_INDICATORS and set NSS_FIPS_MODULE_ID for build. - FIPS: claim 3DES unapproved in FIPS mode (bsc#1192080). - FIPS: allow testing of unapproved algorithms (bsc#1192228). - FIPS: add version indicators. (bmo#1729550, bsc#1192086). - FIPS: fix some secret clearing (bmo#1697303, bsc#1192087). Version update to NSS 3.79: - Use PK11_GetSlotInfo instead of raw C_GetSlotInfo calls. - Update mercurial in clang-format docker image. - Use of uninitialized pointer in lg_init after alloc fail. - selfserv and tstclnt should use PR_GetPrefLoopbackAddrInfo. - Add SECMOD_LockedModuleHasRemovableSlots. - Fix secasn1d parsing of indefinite SEQUENCE inside indefinite GROUP. - Added RFC8422 compliant TLS <= 1.2 undefined/compressed ECPointFormat extension alerts. - TLS 1.3 Server: Send protocol_version alert on unsupported ClientHello.legacy_version. - Correct invalid record inner and outer content type alerts. - NSS does not properly import or export pkcs12 files with large passwords and pkcs5v2 encoding. - improve error handling after nssCKFWInstance_CreateObjectHandle. - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple. - NSS 3.79 should depend on NSPR 4.34 Version update to NSS 3.78.1: - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple Version update to NSS 3.78: - Added TLS 1.3 zero-length inner plaintext checks and tests, zero-length record/fragment handling tests. - Reworked overlong record size checks and added TLS1.3 specific boundaries. - Add ECH Grease Support to tstclnt - Add a strict variant of moz::pkix::CheckCertHostname. - Change SSL_REUSE_SERVER_ECDHE_KEY default to false. - Make SEC_PKCS12EnableCipher succeed - Update zlib in NSS to 1.2.12. Version update to NSS 3.77: - Fix link to TLS page on wireshark wiki - Add two D-TRUST 2020 root certificates. - Add Telia Root CA v2 root certificate. - Remove expired explicitly distrusted certificates from certdata.txt. - support specific RSA-PSS parameters in mozilla::pkix - Remove obsolete stateEnd check in SEC_ASN1DecoderUpdate. - Remove token member from NSSSlot struct. - Provide secure variants of mpp_pprime and mpp_make_prime. - Support UTF-8 library path in the module spec string. - Update nssUTF8_Length to RFC 3629 and fix buffer overrun. - Update googletest to 1.11.0 - Add SetTls13GreaseEchSize to experimental API. - TLS 1.3 Illegal legacy_version handling/alerts. - Fix calculation of ECH HRR Transcript. - Allow ld path to be set as environment variable. - Ensure we don't read uninitialized memory in ssl gtests. - Fix DataBuffer Move Assignment. - internal_error alert on Certificate Request with sha1+ecdsa in TLS 1.3 - rework signature verification in mozilla::pkix Version update to NSS 3.76.1 - Remove token member from NSSSlot struct. - Hold tokensLock through nssToken_GetSlot calls in nssTrustDomain_GetActiveSlots. - Check return value of PK11Slot_GetNSSToken. - Use Wycheproof JSON for RSASSA-PSS - Add SHA256 fingerprint comments to old certdata.txt entries. - Avoid truncating files in nss-release-helper.py. - Throw illegal_parameter alert for illegal extensions in handshake message. Version update to NSS 3.75 - Make DottedOIDToCode.py compatible with python3. - Avoid undefined shift in SSL_CERT_IS while fuzzing. - Remove redundant key type check. - Update ABI expectations to match ECH changes. - Enable CKM_CHACHA20. - check return on NSS_NoDB_Init and NSS_Shutdown. - Run ECDSA test vectors from bltest as part of the CI tests. - Add ECDSA test vectors to the bltest command line tool. - Allow to build using clang's integrated assembler. - Allow to override python for the build. - test HKDF output rather than input. - Use ASSERT macros to end failed tests early. - move assignment operator for DataBuffer. - Add test cases for ECH compression and unexpected extensions in SH. - Update tests for ECH-13. - Tidy up error handling. - Add tests for ECH HRR Changes. - Server only sends GREASE HRR extension if enabled by preference. - Update generation of the Associated Data for ECH-13. - When ECH is accepted, reject extensions which were only advertised in the Outer Client Hello. - Allow for compressed, non-contiguous, extensions. - Scramble the PSK extension in CHOuter. - Split custom extension handling for ECH. - Add ECH-13 HRR Handling. - Client side ECH padding. - Stricter ClientHelloInner Decompression. - Remove ECH_inner extension, use new enum format. - Update the version number for ECH-13 and adjust the ECHConfig size. Version update to NSS 3.74 - mozilla::pkix: support SHA-2 hashes in CertIDs in OCSP responses - Ensure clients offer consistent ciphersuites after HRR - NSS does not properly restrict server keys based on policy - Set nssckbi version number to 2.54 - Replace Google Trust Services LLC (GTS) R4 root certificate - Replace Google Trust Services LLC (GTS) R3 root certificate - Replace Google Trust Services LLC (GTS) R2 root certificate - Replace Google Trust Services LLC (GTS) R1 root certificate - Replace GlobalSign ECC Root CA R4 - Remove Expired Root Certificates - DST Root CA X3 - Remove Expiring Cybertrust Global Root and GlobalSign root certificates - Add renewed Autoridad de Certificacion Firmaprofesional CIF A62634068 root certificate - Add iTrusChina ECC root certificate - Add iTrusChina RSA root certificate - Add ISRG Root X2 root certificate - Add Chunghwa Telecom's HiPKI Root CA - G1 root certificate - Avoid a clang 13 unused variable warning in opt build - Check for missing signedData field - Ensure DER encoded signatures are within size limits - enable key logging option (boo#1195040) Version update to NSS 3.73.1: - Add SHA-2 support to mozilla::pkix's OSCP implementation Version update to NSS 3.73 - check for missing signedData field. - Ensure DER encoded signatures are within size limits. - NSS needs FiPS 140-3 version indicators. - pkix_CacheCert_Lookup doesn't return cached certs - sunset Coverity from NSS Fixed MFSA 2021-51 (bsc#1193170) CVE-2021-43527: Memory corruption via DER-encoded DSA and RSA-PSS signatures Version update to NSS 3.72 - Fix nsinstall parallel failure. - Increase KDF cache size to mitigate perf regression in about:logins Version update to NSS 3.71 - Set nssckbi version number to 2.52. - Respect server requirements of tlsfuzzer/test-tls13-signature-algorithms.py - Import of PKCS#12 files with Camellia encryption is not supported - Add HARICA Client ECC Root CA 2021. - Add HARICA Client RSA Root CA 2021. - Add HARICA TLS ECC Root CA 2021. - Add HARICA TLS RSA Root CA 2021. - Add TunTrust Root CA certificate to NSS. Version update to NSS 3.70 - Update test case to verify fix. - Explicitly disable downgrade check in TlsConnectStreamTls13.EchOuterWith12Max - Explicitly disable downgrade check in TlsConnectTest.DisableFalseStartOnFallback - Avoid using a lookup table in nssb64d. - Use HW accelerated SHA2 on AArch64 Big Endian. - Change default value of enableHelloDowngradeCheck to true. - Cache additional PBE entries. - Read HPKE vectors from official JSON. Version update to NSS 3.69.1: - Disable DTLS 1.0 and 1.1 by default - integrity checks in key4.db not happening on private components with AES_CBC NSS 3.69: - Disable DTLS 1.0 and 1.1 by default (backed out again) - integrity checks in key4.db not happening on private components with AES_CBC (backed out again) - SSL handling of signature algorithms ignores environmental invalid algorithms. - sqlite 3.34 changed it's open semantics, causing nss failures. - Gtest update changed the gtest reports, losing gtest details in all.sh reports. - NSS incorrectly accepting 1536 bit DH primes in FIPS mode - SQLite calls could timeout in starvation situations. - Coverity/cpp scanner errors found in nss 3.67 - Import the NSS documentation from MDN in nss/doc. - NSS using a tempdir to measure sql performance not active Version Update to 3.68.4 (bsc#1200027) - CVE-2022-31741: Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple. (bmo#1767590) libfreebl3-3.79-150400.3.7.1.x86_64.rpm libfreebl3-32bit-3.79-150400.3.7.1.x86_64.rpm libfreebl3-hmac-3.79-150400.3.7.1.x86_64.rpm libfreebl3-hmac-32bit-3.79-150400.3.7.1.x86_64.rpm libsoftokn3-3.79-150400.3.7.1.x86_64.rpm libsoftokn3-32bit-3.79-150400.3.7.1.x86_64.rpm libsoftokn3-hmac-3.79-150400.3.7.1.x86_64.rpm libsoftokn3-hmac-32bit-3.79-150400.3.7.1.x86_64.rpm mozilla-nss-3.79-150400.3.7.1.src.rpm mozilla-nss-3.79-150400.3.7.1.x86_64.rpm mozilla-nss-32bit-3.79-150400.3.7.1.x86_64.rpm mozilla-nss-certs-3.79-150400.3.7.1.x86_64.rpm mozilla-nss-certs-32bit-3.79-150400.3.7.1.x86_64.rpm mozilla-nss-devel-3.79-150400.3.7.1.x86_64.rpm mozilla-nss-sysinit-3.79-150400.3.7.1.x86_64.rpm mozilla-nss-sysinit-32bit-3.79-150400.3.7.1.x86_64.rpm mozilla-nss-tools-3.79-150400.3.7.1.x86_64.rpm libfreebl3-3.79-150400.3.7.1.s390x.rpm libfreebl3-hmac-3.79-150400.3.7.1.s390x.rpm libsoftokn3-3.79-150400.3.7.1.s390x.rpm libsoftokn3-hmac-3.79-150400.3.7.1.s390x.rpm mozilla-nss-3.79-150400.3.7.1.s390x.rpm mozilla-nss-certs-3.79-150400.3.7.1.s390x.rpm mozilla-nss-devel-3.79-150400.3.7.1.s390x.rpm mozilla-nss-sysinit-3.79-150400.3.7.1.s390x.rpm mozilla-nss-tools-3.79-150400.3.7.1.s390x.rpm libfreebl3-3.79-150400.3.7.1.ppc64le.rpm libfreebl3-hmac-3.79-150400.3.7.1.ppc64le.rpm libsoftokn3-3.79-150400.3.7.1.ppc64le.rpm libsoftokn3-hmac-3.79-150400.3.7.1.ppc64le.rpm mozilla-nss-3.79-150400.3.7.1.ppc64le.rpm mozilla-nss-certs-3.79-150400.3.7.1.ppc64le.rpm mozilla-nss-devel-3.79-150400.3.7.1.ppc64le.rpm mozilla-nss-sysinit-3.79-150400.3.7.1.ppc64le.rpm mozilla-nss-tools-3.79-150400.3.7.1.ppc64le.rpm libfreebl3-3.79-150400.3.7.1.aarch64.rpm libfreebl3-hmac-3.79-150400.3.7.1.aarch64.rpm libsoftokn3-3.79-150400.3.7.1.aarch64.rpm libsoftokn3-hmac-3.79-150400.3.7.1.aarch64.rpm mozilla-nss-3.79-150400.3.7.1.aarch64.rpm mozilla-nss-certs-3.79-150400.3.7.1.aarch64.rpm mozilla-nss-devel-3.79-150400.3.7.1.aarch64.rpm mozilla-nss-sysinit-3.79-150400.3.7.1.aarch64.rpm mozilla-nss-tools-3.79-150400.3.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-2533 important SUSE Updates openSUSE-SLE 15.4 This update for mozilla-nss fixes the following issues: Various FIPS 140-3 related fixes were backported from SUSE Linux Enterprise 15 SP4: - Makes the PBKDF known answer test compliant with NIST SP800-132. (bsc#1192079). - FIPS: Add on-demand integrity tests through sftk_FIPSRepeatIntegrityCheck() (bsc#1198980). - FIPS: mark algorithms as approved/non-approved according to security policy (bsc#1191546, bsc#1201298). - FIPS: remove hard disabling of unapproved algorithms. This requirement is now fulfilled by the service level indicator (bsc#1200325). - Run test suite at build time, and make it pass (bsc#1198486). - FIPS: skip algorithms that are hard disabled in FIPS mode. - Prevent expired PayPalEE cert from failing the tests. - Allow checksumming to be disabled, but only if we entered FIPS mode due to NSS_FIPS being set, not if it came from /proc. - FIPS: Make the PBKDF known answer test compliant with NIST SP800-132. - Update FIPS validation string to version-release format. - FIPS: remove XCBC MAC from list of FIPS approved algorithms. - Enable NSS_ENABLE_FIPS_INDICATORS and set NSS_FIPS_MODULE_ID for build. - FIPS: claim 3DES unapproved in FIPS mode (bsc#1192080). - FIPS: allow testing of unapproved algorithms (bsc#1192228). - FIPS: add version indicators. (bmo#1729550, bsc#1192086). - FIPS: fix some secret clearing (bmo#1697303, bsc#1192087). Version update to NSS 3.79: - Use PK11_GetSlotInfo instead of raw C_GetSlotInfo calls. - Update mercurial in clang-format docker image. - Use of uninitialized pointer in lg_init after alloc fail. - selfserv and tstclnt should use PR_GetPrefLoopbackAddrInfo. - Add SECMOD_LockedModuleHasRemovableSlots. - Fix secasn1d parsing of indefinite SEQUENCE inside indefinite GROUP. - Added RFC8422 compliant TLS <= 1.2 undefined/compressed ECPointFormat extension alerts. - TLS 1.3 Server: Send protocol_version alert on unsupported ClientHello.legacy_version. - Correct invalid record inner and outer content type alerts. - NSS does not properly import or export pkcs12 files with large passwords and pkcs5v2 encoding. - improve error handling after nssCKFWInstance_CreateObjectHandle. - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple. - NSS 3.79 should depend on NSPR 4.34 Version update to NSS 3.78.1: - Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple Version update to NSS 3.78: - Added TLS 1.3 zero-length inner plaintext checks and tests, zero-length record/fragment handling tests. - Reworked overlong record size checks and added TLS1.3 specific boundaries. - Add ECH Grease Support to tstclnt - Add a strict variant of moz::pkix::CheckCertHostname. - Change SSL_REUSE_SERVER_ECDHE_KEY default to false. - Make SEC_PKCS12EnableCipher succeed - Update zlib in NSS to 1.2.12. Version update to NSS 3.77: - Fix link to TLS page on wireshark wiki - Add two D-TRUST 2020 root certificates. - Add Telia Root CA v2 root certificate. - Remove expired explicitly distrusted certificates from certdata.txt. - support specific RSA-PSS parameters in mozilla::pkix - Remove obsolete stateEnd check in SEC_ASN1DecoderUpdate. - Remove token member from NSSSlot struct. - Provide secure variants of mpp_pprime and mpp_make_prime. - Support UTF-8 library path in the module spec string. - Update nssUTF8_Length to RFC 3629 and fix buffer overrun. - Update googletest to 1.11.0 - Add SetTls13GreaseEchSize to experimental API. - TLS 1.3 Illegal legacy_version handling/alerts. - Fix calculation of ECH HRR Transcript. - Allow ld path to be set as environment variable. - Ensure we don't read uninitialized memory in ssl gtests. - Fix DataBuffer Move Assignment. - internal_error alert on Certificate Request with sha1+ecdsa in TLS 1.3 - rework signature verification in mozilla::pkix Version update to NSS 3.76.1 - Remove token member from NSSSlot struct. - Hold tokensLock through nssToken_GetSlot calls in nssTrustDomain_GetActiveSlots. - Check return value of PK11Slot_GetNSSToken. - Use Wycheproof JSON for RSASSA-PSS - Add SHA256 fingerprint comments to old certdata.txt entries. - Avoid truncating files in nss-release-helper.py. - Throw illegal_parameter alert for illegal extensions in handshake message. Version update to NSS 3.75 - Make DottedOIDToCode.py compatible with python3. - Avoid undefined shift in SSL_CERT_IS while fuzzing. - Remove redundant key type check. - Update ABI expectations to match ECH changes. - Enable CKM_CHACHA20. - check return on NSS_NoDB_Init and NSS_Shutdown. - Run ECDSA test vectors from bltest as part of the CI tests. - Add ECDSA test vectors to the bltest command line tool. - Allow to build using clang's integrated assembler. - Allow to override python for the build. - test HKDF output rather than input. - Use ASSERT macros to end failed tests early. - move assignment operator for DataBuffer. - Add test cases for ECH compression and unexpected extensions in SH. - Update tests for ECH-13. - Tidy up error handling. - Add tests for ECH HRR Changes. - Server only sends GREASE HRR extension if enabled by preference. - Update generation of the Associated Data for ECH-13. - When ECH is accepted, reject extensions which were only advertised in the Outer Client Hello. - Allow for compressed, non-contiguous, extensions. - Scramble the PSK extension in CHOuter. - Split custom extension handling for ECH. - Add ECH-13 HRR Handling. - Client side ECH padding. - Stricter ClientHelloInner Decompression. - Remove ECH_inner extension, use new enum format. - Update the version number for ECH-13 and adjust the ECHConfig size. Version update to NSS 3.74 - mozilla::pkix: support SHA-2 hashes in CertIDs in OCSP responses - Ensure clients offer consistent ciphersuites after HRR - NSS does not properly restrict server keys based on policy - Set nssckbi version number to 2.54 - Replace Google Trust Services LLC (GTS) R4 root certificate - Replace Google Trust Services LLC (GTS) R3 root certificate - Replace Google Trust Services LLC (GTS) R2 root certificate - Replace Google Trust Services LLC (GTS) R1 root certificate - Replace GlobalSign ECC Root CA R4 - Remove Expired Root Certificates - DST Root CA X3 - Remove Expiring Cybertrust Global Root and GlobalSign root certificates - Add renewed Autoridad de Certificacion Firmaprofesional CIF A62634068 root certificate - Add iTrusChina ECC root certificate - Add iTrusChina RSA root certificate - Add ISRG Root X2 root certificate - Add Chunghwa Telecom's HiPKI Root CA - G1 root certificate - Avoid a clang 13 unused variable warning in opt build - Check for missing signedData field - Ensure DER encoded signatures are within size limits - enable key logging option (boo#1195040) Version update to NSS 3.73.1: - Add SHA-2 support to mozilla::pkix's OSCP implementation Version update to NSS 3.73 - check for missing signedData field. - Ensure DER encoded signatures are within size limits. - NSS needs FiPS 140-3 version indicators. - pkix_CacheCert_Lookup doesn't return cached certs - sunset Coverity from NSS Fixed MFSA 2021-51 (bsc#1193170) CVE-2021-43527: Memory corruption via DER-encoded DSA and RSA-PSS signatures Version update to NSS 3.72 - Fix nsinstall parallel failure. - Increase KDF cache size to mitigate perf regression in about:logins Version update to NSS 3.71 - Set nssckbi version number to 2.52. - Respect server requirements of tlsfuzzer/test-tls13-signature-algorithms.py - Import of PKCS#12 files with Camellia encryption is not supported - Add HARICA Client ECC Root CA 2021. - Add HARICA Client RSA Root CA 2021. - Add HARICA TLS ECC Root CA 2021. - Add HARICA TLS RSA Root CA 2021. - Add TunTrust Root CA certificate to NSS. Version update to NSS 3.70 - Update test case to verify fix. - Explicitly disable downgrade check in TlsConnectStreamTls13.EchOuterWith12Max - Explicitly disable downgrade check in TlsConnectTest.DisableFalseStartOnFallback - Avoid using a lookup table in nssb64d. - Use HW accelerated SHA2 on AArch64 Big Endian. - Change default value of enableHelloDowngradeCheck to true. - Cache additional PBE entries. - Read HPKE vectors from official JSON. Version update to NSS 3.69.1: - Disable DTLS 1.0 and 1.1 by default - integrity checks in key4.db not happening on private components with AES_CBC NSS 3.69: - Disable DTLS 1.0 and 1.1 by default (backed out again) - integrity checks in key4.db not happening on private components with AES_CBC (backed out again) - SSL handling of signature algorithms ignores environmental invalid algorithms. - sqlite 3.34 changed it's open semantics, causing nss failures. - Gtest update changed the gtest reports, losing gtest details in all.sh reports. - NSS incorrectly accepting 1536 bit DH primes in FIPS mode - SQLite calls could timeout in starvation situations. - Coverity/cpp scanner errors found in nss 3.67 - Import the NSS documentation from MDN in nss/doc. - NSS using a tempdir to measure sql performance not active Version Update to 3.68.4 (bsc#1200027) - CVE-2022-31741: Initialize pointers passed to NSS_CMSDigestContext_FinishMultiple. (bmo#1767590) Mozilla NSPR was updated to version 4.34: * add an API that returns a preferred loopback IP on hosts that have two IP stacks available. mozilla-nspr-32bit-4.34-150000.3.23.1.x86_64.rpm mozilla-nspr-4.34-150000.3.23.1.src.rpm mozilla-nspr-4.34-150000.3.23.1.x86_64.rpm mozilla-nspr-devel-4.34-150000.3.23.1.x86_64.rpm mozilla-nspr-4.34-150000.3.23.1.s390x.rpm mozilla-nspr-devel-4.34-150000.3.23.1.s390x.rpm mozilla-nspr-4.34-150000.3.23.1.ppc64le.rpm mozilla-nspr-devel-4.34-150000.3.23.1.ppc64le.rpm mozilla-nspr-4.34-150000.3.23.1.aarch64.rpm mozilla-nspr-devel-4.34-150000.3.23.1.aarch64.rpm openSUSE-SLE-15.4-2022-2458 moderate SUSE Updates openSUSE-SLE 15.4 This update for regionServiceClientConfigEC2 fixes the following issues: - Update to version 4.0.0 (bsc#1199668) - Move cert location to usr form var to accomodate ro filesystem of SLE-Micro - Fix source location in spec file regionServiceClientConfigEC2-4.0.0-150000.3.21.1.noarch.rpm regionServiceClientConfigEC2-4.0.0-150000.3.21.1.src.rpm openSUSE-SLE-15.4-2022-2090 moderate SUSE Updates openSUSE-SLE 15.4 This update for regionServiceClientConfigAzure fixes the following issues: - Update to version 2.0.0 (bsc#1199668) - Move the certs to /usr from /var to accomodate ro filesystem of SLE-Micro - Fix source url in spec file regionServiceClientConfigAzure-2.0.0-150000.3.16.1.noarch.rpm regionServiceClientConfigAzure-2.0.0-150000.3.16.1.src.rpm openSUSE-SLE-15.4-2022-2459 moderate SUSE Updates openSUSE-SLE 15.4 This update for regionServiceClientConfigGCE fixes the following issues: - Update to version 4.0.0 (bsc#1199668) - Move the cert location to /usr for compatibility with ro setup of SLE-Micro - Fix url in spec file to pint to the proper location of the source regionServiceClientConfigGCE-4.0.0-150000.4.9.1.noarch.rpm regionServiceClientConfigGCE-4.0.0-150000.4.9.1.src.rpm openSUSE-SLE-15.4-2022-2456 moderate SUSE Updates openSUSE-SLE 15.4 This update for cloud-regionsrv-client fixes the following issues: - Update to version 10.0.4 (bsc#1199668) - Store the update server certs in the '/etc' path instead of '/usr' to accomodate read only setup of SLE-Micro cloud-regionsrv-client-10.0.4-150000.6.73.1.noarch.rpm cloud-regionsrv-client-10.0.4-150000.6.73.1.src.rpm cloud-regionsrv-client-addon-azure-1.0.5-150000.6.73.1.noarch.rpm cloud-regionsrv-client-generic-config-1.0.0-150000.6.73.1.noarch.rpm cloud-regionsrv-client-plugin-azure-2.0.0-150000.6.73.1.noarch.rpm cloud-regionsrv-client-plugin-ec2-1.0.2-150000.6.73.1.noarch.rpm cloud-regionsrv-client-plugin-gce-1.0.0-150000.6.73.1.noarch.rpm openSUSE-SLE-15.4-2022-2004 important SUSE Updates openSUSE-SLE 15.4 This update for go1.17 fixes the following issues: Update to go1.17.11 (released 2022-06-01) (bsc#1190649): - CVE-2022-30634: Fixed crypto/rand rand.Read hangs with extremely large buffers (bsc#1200134). - CVE-2022-30629: Fixed crypto/tls session tickets lack random ticket_age_add (bsc#1200135). - CVE-2022-29804: Fixed path/filepath Clean(`.\c:`) returns `c:` on Windows (bsc#1200137). - CVE-2022-30580: Fixed os/exec empty Cmd.Path can result in running unintended binary on Windows (bsc#1200136). go1.17-1.17.11-150000.1.37.1.src.rpm go1.17-1.17.11-150000.1.37.1.x86_64.rpm go1.17-doc-1.17.11-150000.1.37.1.x86_64.rpm go1.17-race-1.17.11-150000.1.37.1.x86_64.rpm go1.17-1.17.11-150000.1.37.1.s390x.rpm go1.17-doc-1.17.11-150000.1.37.1.s390x.rpm go1.17-1.17.11-150000.1.37.1.ppc64le.rpm go1.17-doc-1.17.11-150000.1.37.1.ppc64le.rpm go1.17-1.17.11-150000.1.37.1.aarch64.rpm go1.17-doc-1.17.11-150000.1.37.1.aarch64.rpm go1.17-race-1.17.11-150000.1.37.1.aarch64.rpm openSUSE-SLE-15.4-2022-2005 important SUSE Updates openSUSE-SLE 15.4 This update for go1.18 fixes the following issues: Update to go1.18.3 (released 2022-06-01) (bsc#1193742): - CVE-2022-30634: Fixed crypto/rand rand.Read hangs with extremely large buffers (bsc#1200134). - CVE-2022-30629: Fixed crypto/tls session tickets lack random ticket_age_add (bsc#1200135). - CVE-2022-29804: Fixed path/filepath Clean(`.\c:`) returns `c:` on Windows (bsc#1200137). - CVE-2022-30580: Fixed os/exec empty Cmd.Path can result in running unintended binary on Windows (bsc#1200136). go1.18-1.18.3-150000.1.20.1.src.rpm go1.18-1.18.3-150000.1.20.1.x86_64.rpm go1.18-doc-1.18.3-150000.1.20.1.x86_64.rpm go1.18-race-1.18.3-150000.1.20.1.x86_64.rpm go1.18-1.18.3-150000.1.20.1.s390x.rpm go1.18-doc-1.18.3-150000.1.20.1.s390x.rpm go1.18-1.18.3-150000.1.20.1.ppc64le.rpm go1.18-doc-1.18.3-150000.1.20.1.ppc64le.rpm go1.18-1.18.3-150000.1.20.1.aarch64.rpm go1.18-doc-1.18.3-150000.1.20.1.aarch64.rpm go1.18-race-1.18.3-150000.1.20.1.aarch64.rpm openSUSE-SLE-15.4-2022-2071 important SUSE Updates openSUSE-SLE 15.4 This update for webkit2gtk3 fixes the following issues: Update to version 2.36.3 (bsc#1200106) - CVE-2022-30293: Fixed heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer (bsc#1199287). - CVE-2022-26700: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26709: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26716: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26717: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26719: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). WebKit2GTK-4.0-lang-2.36.3-150400.4.3.1.noarch.rpm WebKit2GTK-4.1-lang-2.36.3-150400.4.3.1.noarch.rpm WebKit2GTK-5.0-lang-2.36.3-150400.4.3.1.noarch.rpm libjavascriptcoregtk-4_0-18-2.36.3-150400.4.3.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.3-150400.4.3.1.x86_64.rpm libjavascriptcoregtk-4_1-0-2.36.3-150400.4.3.1.x86_64.rpm libjavascriptcoregtk-4_1-0-32bit-2.36.3-150400.4.3.1.x86_64.rpm libjavascriptcoregtk-5_0-0-2.36.3-150400.4.3.1.x86_64.rpm libwebkit2gtk-4_0-37-2.36.3-150400.4.3.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.3-150400.4.3.1.x86_64.rpm libwebkit2gtk-4_1-0-2.36.3-150400.4.3.1.x86_64.rpm libwebkit2gtk-4_1-0-32bit-2.36.3-150400.4.3.1.x86_64.rpm libwebkit2gtk-5_0-0-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-JavaScriptCore-4_1-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-JavaScriptCore-5_0-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-WebKit2-4_1-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-WebKit2-5_0-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.3-150400.4.3.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.3-150400.4.3.1.x86_64.rpm webkit-jsc-4-2.36.3-150400.4.3.1.x86_64.rpm webkit-jsc-4.1-2.36.3-150400.4.3.1.x86_64.rpm webkit-jsc-5.0-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk-4_1-injected-bundles-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk-5_0-injected-bundles-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk3-2.36.3-150400.4.3.1.src.rpm webkit2gtk3-devel-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk3-minibrowser-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk3-soup2-2.36.3-150400.4.3.1.src.rpm webkit2gtk3-soup2-devel-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk3-soup2-minibrowser-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk4-2.36.3-150400.4.3.1.src.rpm webkit2gtk4-devel-2.36.3-150400.4.3.1.x86_64.rpm webkit2gtk4-minibrowser-2.36.3-150400.4.3.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.3-150400.4.3.1.s390x.rpm libjavascriptcoregtk-4_1-0-2.36.3-150400.4.3.1.s390x.rpm libjavascriptcoregtk-5_0-0-2.36.3-150400.4.3.1.s390x.rpm libwebkit2gtk-4_0-37-2.36.3-150400.4.3.1.s390x.rpm libwebkit2gtk-4_1-0-2.36.3-150400.4.3.1.s390x.rpm libwebkit2gtk-5_0-0-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-JavaScriptCore-4_1-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-JavaScriptCore-5_0-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-WebKit2-4_1-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-WebKit2-5_0-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.3-150400.4.3.1.s390x.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.3-150400.4.3.1.s390x.rpm webkit-jsc-4-2.36.3-150400.4.3.1.s390x.rpm webkit-jsc-4.1-2.36.3-150400.4.3.1.s390x.rpm webkit-jsc-5.0-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk-4_1-injected-bundles-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk-5_0-injected-bundles-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk3-devel-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk3-minibrowser-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk3-soup2-devel-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk3-soup2-minibrowser-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk4-devel-2.36.3-150400.4.3.1.s390x.rpm webkit2gtk4-minibrowser-2.36.3-150400.4.3.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.3-150400.4.3.1.ppc64le.rpm libjavascriptcoregtk-4_1-0-2.36.3-150400.4.3.1.ppc64le.rpm libjavascriptcoregtk-5_0-0-2.36.3-150400.4.3.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.3-150400.4.3.1.ppc64le.rpm libwebkit2gtk-4_1-0-2.36.3-150400.4.3.1.ppc64le.rpm libwebkit2gtk-5_0-0-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_1-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-JavaScriptCore-5_0-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-WebKit2-4_1-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-WebKit2-5_0-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.3-150400.4.3.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.3-150400.4.3.1.ppc64le.rpm webkit-jsc-4-2.36.3-150400.4.3.1.ppc64le.rpm webkit-jsc-4.1-2.36.3-150400.4.3.1.ppc64le.rpm webkit-jsc-5.0-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk-4_1-injected-bundles-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk-5_0-injected-bundles-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk3-devel-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk3-minibrowser-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk3-soup2-devel-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk3-soup2-minibrowser-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk4-devel-2.36.3-150400.4.3.1.ppc64le.rpm webkit2gtk4-minibrowser-2.36.3-150400.4.3.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.3-150400.4.3.1.aarch64.rpm libjavascriptcoregtk-4_1-0-2.36.3-150400.4.3.1.aarch64.rpm libjavascriptcoregtk-5_0-0-2.36.3-150400.4.3.1.aarch64.rpm libwebkit2gtk-4_0-37-2.36.3-150400.4.3.1.aarch64.rpm libwebkit2gtk-4_1-0-2.36.3-150400.4.3.1.aarch64.rpm libwebkit2gtk-5_0-0-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_1-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-JavaScriptCore-5_0-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-WebKit2-4_1-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-WebKit2-5_0-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.3-150400.4.3.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.3-150400.4.3.1.aarch64.rpm webkit-jsc-4-2.36.3-150400.4.3.1.aarch64.rpm webkit-jsc-4.1-2.36.3-150400.4.3.1.aarch64.rpm webkit-jsc-5.0-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk-4_1-injected-bundles-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk-5_0-injected-bundles-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk3-devel-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk3-minibrowser-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk3-soup2-devel-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk3-soup2-minibrowser-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk4-devel-2.36.3-150400.4.3.1.aarch64.rpm webkit2gtk4-minibrowser-2.36.3-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2072 important SUSE Updates openSUSE-SLE 15.4 This update for webkit2gtk3 fixes the following issues: Update to version 2.36.3 (bsc#1200106) - CVE-2022-30293: Fixed heap-based buffer overflow in WebCore::TextureMapperLayer::setContentsLayer (bsc#1199287). - CVE-2022-26700: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26709: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26716: Fixed use after free issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26717: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). - CVE-2022-26719: Fixed memory corruption issue that may lead to code execution when processing maliciously crafted web content (bsc#1200106). libwebkit2gtk3-lang-2.36.3-150200.35.1.noarch.rpm webkit2gtk3-2.36.3-150200.35.1.src.rpm openSUSE-SLE-15.4-2022-2296 important SUSE Updates openSUSE-SLE 15.4 This update for xen fixes the following issues: - CVE-2022-26362: Fixed race condition in typeref acquisition (bsc#1199965) - CVE-2022-26363, CVE-2022-26364: Fixed insufficient care with non-coherent mappings (bsc#1199966) xen-4.16.1_04-150400.4.5.2.src.rpm True xen-4.16.1_04-150400.4.5.2.x86_64.rpm True xen-devel-4.16.1_04-150400.4.5.2.x86_64.rpm True xen-doc-html-4.16.1_04-150400.4.5.2.x86_64.rpm True xen-libs-32bit-4.16.1_04-150400.4.5.2.x86_64.rpm True xen-libs-4.16.1_04-150400.4.5.2.x86_64.rpm True xen-tools-4.16.1_04-150400.4.5.2.x86_64.rpm True xen-tools-domU-4.16.1_04-150400.4.5.2.x86_64.rpm True xen-tools-xendomains-wait-disk-4.16.1_04-150400.4.5.2.noarch.rpm True xen-4.16.1_04-150400.4.5.2.aarch64.rpm True xen-devel-4.16.1_04-150400.4.5.2.aarch64.rpm True xen-doc-html-4.16.1_04-150400.4.5.2.aarch64.rpm True xen-libs-4.16.1_04-150400.4.5.2.aarch64.rpm True xen-tools-4.16.1_04-150400.4.5.2.aarch64.rpm True xen-tools-domU-4.16.1_04-150400.4.5.2.aarch64.rpm True openSUSE-SLE-15.4-2022-2260 important SUSE Updates openSUSE-SLE 15.4 This update for qemu fixes the following issues: - CVE-2022-26354: Fixed missing virtqueue detach on error can lead to memory leak (bsc#1198712) - CVE-2022-26353: Fixed map leaking on error during receive (bsc#1198711) - CVE-2021-4207: Fixed double fetch in qxl_cursor() can lead to heap buffer overflow (bsc#1198037) - CVE-2021-4206: Fixed integer overflow in cursor_alloc() can lead to heap buffer overflow (bsc#1198035) qemu-6.2.0-150400.37.5.3.src.rpm qemu-6.2.0-150400.37.5.3.x86_64.rpm qemu-SLOF-6.2.0-150400.37.5.3.noarch.rpm qemu-accel-qtest-6.2.0-150400.37.5.3.x86_64.rpm qemu-accel-tcg-x86-6.2.0-150400.37.5.3.x86_64.rpm qemu-arm-6.2.0-150400.37.5.3.x86_64.rpm qemu-audio-alsa-6.2.0-150400.37.5.3.x86_64.rpm qemu-audio-jack-6.2.0-150400.37.5.3.x86_64.rpm qemu-audio-pa-6.2.0-150400.37.5.3.x86_64.rpm qemu-audio-spice-6.2.0-150400.37.5.3.x86_64.rpm qemu-block-curl-6.2.0-150400.37.5.3.x86_64.rpm qemu-block-dmg-6.2.0-150400.37.5.3.x86_64.rpm qemu-block-gluster-6.2.0-150400.37.5.3.x86_64.rpm qemu-block-iscsi-6.2.0-150400.37.5.3.x86_64.rpm qemu-block-nfs-6.2.0-150400.37.5.3.x86_64.rpm qemu-block-rbd-6.2.0-150400.37.5.3.x86_64.rpm qemu-block-ssh-6.2.0-150400.37.5.3.x86_64.rpm qemu-chardev-baum-6.2.0-150400.37.5.3.x86_64.rpm qemu-chardev-spice-6.2.0-150400.37.5.3.x86_64.rpm qemu-extra-6.2.0-150400.37.5.3.x86_64.rpm qemu-guest-agent-6.2.0-150400.37.5.3.x86_64.rpm qemu-hw-display-qxl-6.2.0-150400.37.5.3.x86_64.rpm qemu-hw-display-virtio-gpu-6.2.0-150400.37.5.3.x86_64.rpm qemu-hw-display-virtio-gpu-pci-6.2.0-150400.37.5.3.x86_64.rpm qemu-hw-display-virtio-vga-6.2.0-150400.37.5.3.x86_64.rpm qemu-hw-s390x-virtio-gpu-ccw-6.2.0-150400.37.5.3.x86_64.rpm qemu-hw-usb-host-6.2.0-150400.37.5.3.x86_64.rpm qemu-hw-usb-redirect-6.2.0-150400.37.5.3.x86_64.rpm qemu-hw-usb-smartcard-6.2.0-150400.37.5.3.x86_64.rpm qemu-ipxe-1.0.0+-150400.37.5.3.noarch.rpm qemu-ivshmem-tools-6.2.0-150400.37.5.3.x86_64.rpm qemu-ksm-6.2.0-150400.37.5.3.x86_64.rpm qemu-kvm-6.2.0-150400.37.5.3.x86_64.rpm qemu-lang-6.2.0-150400.37.5.3.x86_64.rpm qemu-linux-user-6.2.0-150400.37.5.1.src.rpm qemu-linux-user-6.2.0-150400.37.5.1.x86_64.rpm qemu-microvm-6.2.0-150400.37.5.3.noarch.rpm qemu-ppc-6.2.0-150400.37.5.3.x86_64.rpm qemu-s390x-6.2.0-150400.37.5.3.x86_64.rpm qemu-seabios-1.15.0_0_g2dd4b9b-150400.37.5.3.noarch.rpm qemu-sgabios-8-150400.37.5.3.noarch.rpm qemu-skiboot-6.2.0-150400.37.5.3.noarch.rpm qemu-testsuite-6.2.0-150400.37.5.5.src.rpm qemu-testsuite-6.2.0-150400.37.5.5.x86_64.rpm qemu-tools-6.2.0-150400.37.5.3.x86_64.rpm qemu-ui-curses-6.2.0-150400.37.5.3.x86_64.rpm qemu-ui-gtk-6.2.0-150400.37.5.3.x86_64.rpm qemu-ui-opengl-6.2.0-150400.37.5.3.x86_64.rpm qemu-ui-spice-app-6.2.0-150400.37.5.3.x86_64.rpm qemu-ui-spice-core-6.2.0-150400.37.5.3.x86_64.rpm qemu-vgabios-1.15.0_0_g2dd4b9b-150400.37.5.3.noarch.rpm qemu-vhost-user-gpu-6.2.0-150400.37.5.3.x86_64.rpm qemu-x86-6.2.0-150400.37.5.3.x86_64.rpm qemu-6.2.0-150400.37.5.3.s390x.rpm qemu-accel-qtest-6.2.0-150400.37.5.3.s390x.rpm qemu-accel-tcg-x86-6.2.0-150400.37.5.3.s390x.rpm qemu-arm-6.2.0-150400.37.5.3.s390x.rpm qemu-audio-alsa-6.2.0-150400.37.5.3.s390x.rpm qemu-audio-jack-6.2.0-150400.37.5.3.s390x.rpm qemu-audio-pa-6.2.0-150400.37.5.3.s390x.rpm qemu-audio-spice-6.2.0-150400.37.5.3.s390x.rpm qemu-block-curl-6.2.0-150400.37.5.3.s390x.rpm qemu-block-dmg-6.2.0-150400.37.5.3.s390x.rpm qemu-block-gluster-6.2.0-150400.37.5.3.s390x.rpm qemu-block-iscsi-6.2.0-150400.37.5.3.s390x.rpm qemu-block-nfs-6.2.0-150400.37.5.3.s390x.rpm qemu-block-rbd-6.2.0-150400.37.5.3.s390x.rpm qemu-block-ssh-6.2.0-150400.37.5.3.s390x.rpm qemu-chardev-baum-6.2.0-150400.37.5.3.s390x.rpm qemu-chardev-spice-6.2.0-150400.37.5.3.s390x.rpm qemu-extra-6.2.0-150400.37.5.3.s390x.rpm qemu-guest-agent-6.2.0-150400.37.5.3.s390x.rpm qemu-hw-display-qxl-6.2.0-150400.37.5.3.s390x.rpm qemu-hw-display-virtio-gpu-6.2.0-150400.37.5.3.s390x.rpm qemu-hw-display-virtio-gpu-pci-6.2.0-150400.37.5.3.s390x.rpm qemu-hw-display-virtio-vga-6.2.0-150400.37.5.3.s390x.rpm qemu-hw-s390x-virtio-gpu-ccw-6.2.0-150400.37.5.3.s390x.rpm qemu-hw-usb-host-6.2.0-150400.37.5.3.s390x.rpm qemu-hw-usb-redirect-6.2.0-150400.37.5.3.s390x.rpm qemu-hw-usb-smartcard-6.2.0-150400.37.5.3.s390x.rpm qemu-ivshmem-tools-6.2.0-150400.37.5.3.s390x.rpm qemu-ksm-6.2.0-150400.37.5.3.s390x.rpm qemu-kvm-6.2.0-150400.37.5.3.s390x.rpm qemu-lang-6.2.0-150400.37.5.3.s390x.rpm qemu-linux-user-6.2.0-150400.37.5.1.s390x.rpm qemu-ppc-6.2.0-150400.37.5.3.s390x.rpm qemu-s390x-6.2.0-150400.37.5.3.s390x.rpm qemu-testsuite-6.2.0-150400.37.5.5.s390x.rpm qemu-tools-6.2.0-150400.37.5.3.s390x.rpm qemu-ui-curses-6.2.0-150400.37.5.3.s390x.rpm qemu-ui-gtk-6.2.0-150400.37.5.3.s390x.rpm qemu-ui-opengl-6.2.0-150400.37.5.3.s390x.rpm qemu-ui-spice-app-6.2.0-150400.37.5.3.s390x.rpm qemu-ui-spice-core-6.2.0-150400.37.5.3.s390x.rpm qemu-vhost-user-gpu-6.2.0-150400.37.5.3.s390x.rpm qemu-x86-6.2.0-150400.37.5.3.s390x.rpm qemu-6.2.0-150400.37.5.3.ppc64le.rpm qemu-accel-qtest-6.2.0-150400.37.5.3.ppc64le.rpm qemu-accel-tcg-x86-6.2.0-150400.37.5.3.ppc64le.rpm qemu-arm-6.2.0-150400.37.5.3.ppc64le.rpm qemu-audio-alsa-6.2.0-150400.37.5.3.ppc64le.rpm qemu-audio-jack-6.2.0-150400.37.5.3.ppc64le.rpm qemu-audio-pa-6.2.0-150400.37.5.3.ppc64le.rpm qemu-audio-spice-6.2.0-150400.37.5.3.ppc64le.rpm qemu-block-curl-6.2.0-150400.37.5.3.ppc64le.rpm qemu-block-dmg-6.2.0-150400.37.5.3.ppc64le.rpm qemu-block-gluster-6.2.0-150400.37.5.3.ppc64le.rpm qemu-block-iscsi-6.2.0-150400.37.5.3.ppc64le.rpm qemu-block-nfs-6.2.0-150400.37.5.3.ppc64le.rpm qemu-block-rbd-6.2.0-150400.37.5.3.ppc64le.rpm qemu-block-ssh-6.2.0-150400.37.5.3.ppc64le.rpm qemu-chardev-baum-6.2.0-150400.37.5.3.ppc64le.rpm qemu-chardev-spice-6.2.0-150400.37.5.3.ppc64le.rpm qemu-extra-6.2.0-150400.37.5.3.ppc64le.rpm qemu-guest-agent-6.2.0-150400.37.5.3.ppc64le.rpm qemu-hw-display-qxl-6.2.0-150400.37.5.3.ppc64le.rpm qemu-hw-display-virtio-gpu-6.2.0-150400.37.5.3.ppc64le.rpm qemu-hw-display-virtio-gpu-pci-6.2.0-150400.37.5.3.ppc64le.rpm qemu-hw-display-virtio-vga-6.2.0-150400.37.5.3.ppc64le.rpm qemu-hw-s390x-virtio-gpu-ccw-6.2.0-150400.37.5.3.ppc64le.rpm qemu-hw-usb-host-6.2.0-150400.37.5.3.ppc64le.rpm qemu-hw-usb-redirect-6.2.0-150400.37.5.3.ppc64le.rpm qemu-hw-usb-smartcard-6.2.0-150400.37.5.3.ppc64le.rpm qemu-ivshmem-tools-6.2.0-150400.37.5.3.ppc64le.rpm qemu-ksm-6.2.0-150400.37.5.3.ppc64le.rpm qemu-lang-6.2.0-150400.37.5.3.ppc64le.rpm qemu-linux-user-6.2.0-150400.37.5.1.ppc64le.rpm qemu-ppc-6.2.0-150400.37.5.3.ppc64le.rpm qemu-s390x-6.2.0-150400.37.5.3.ppc64le.rpm qemu-testsuite-6.2.0-150400.37.5.5.ppc64le.rpm qemu-tools-6.2.0-150400.37.5.3.ppc64le.rpm qemu-ui-curses-6.2.0-150400.37.5.3.ppc64le.rpm qemu-ui-gtk-6.2.0-150400.37.5.3.ppc64le.rpm qemu-ui-opengl-6.2.0-150400.37.5.3.ppc64le.rpm qemu-ui-spice-app-6.2.0-150400.37.5.3.ppc64le.rpm qemu-ui-spice-core-6.2.0-150400.37.5.3.ppc64le.rpm qemu-vhost-user-gpu-6.2.0-150400.37.5.3.ppc64le.rpm qemu-x86-6.2.0-150400.37.5.3.ppc64le.rpm qemu-6.2.0-150400.37.5.3.aarch64.rpm qemu-accel-qtest-6.2.0-150400.37.5.3.aarch64.rpm qemu-accel-tcg-x86-6.2.0-150400.37.5.3.aarch64.rpm qemu-arm-6.2.0-150400.37.5.3.aarch64.rpm qemu-audio-alsa-6.2.0-150400.37.5.3.aarch64.rpm qemu-audio-jack-6.2.0-150400.37.5.3.aarch64.rpm qemu-audio-pa-6.2.0-150400.37.5.3.aarch64.rpm qemu-audio-spice-6.2.0-150400.37.5.3.aarch64.rpm qemu-block-curl-6.2.0-150400.37.5.3.aarch64.rpm qemu-block-dmg-6.2.0-150400.37.5.3.aarch64.rpm qemu-block-gluster-6.2.0-150400.37.5.3.aarch64.rpm qemu-block-iscsi-6.2.0-150400.37.5.3.aarch64.rpm qemu-block-nfs-6.2.0-150400.37.5.3.aarch64.rpm qemu-block-rbd-6.2.0-150400.37.5.3.aarch64.rpm qemu-block-ssh-6.2.0-150400.37.5.3.aarch64.rpm qemu-chardev-baum-6.2.0-150400.37.5.3.aarch64.rpm qemu-chardev-spice-6.2.0-150400.37.5.3.aarch64.rpm qemu-extra-6.2.0-150400.37.5.3.aarch64.rpm qemu-guest-agent-6.2.0-150400.37.5.3.aarch64.rpm qemu-hw-display-qxl-6.2.0-150400.37.5.3.aarch64.rpm qemu-hw-display-virtio-gpu-6.2.0-150400.37.5.3.aarch64.rpm qemu-hw-display-virtio-gpu-pci-6.2.0-150400.37.5.3.aarch64.rpm qemu-hw-display-virtio-vga-6.2.0-150400.37.5.3.aarch64.rpm qemu-hw-s390x-virtio-gpu-ccw-6.2.0-150400.37.5.3.aarch64.rpm qemu-hw-usb-host-6.2.0-150400.37.5.3.aarch64.rpm qemu-hw-usb-redirect-6.2.0-150400.37.5.3.aarch64.rpm qemu-hw-usb-smartcard-6.2.0-150400.37.5.3.aarch64.rpm qemu-ivshmem-tools-6.2.0-150400.37.5.3.aarch64.rpm qemu-ksm-6.2.0-150400.37.5.3.aarch64.rpm qemu-lang-6.2.0-150400.37.5.3.aarch64.rpm qemu-linux-user-6.2.0-150400.37.5.1.aarch64.rpm qemu-ppc-6.2.0-150400.37.5.3.aarch64.rpm qemu-s390x-6.2.0-150400.37.5.3.aarch64.rpm qemu-testsuite-6.2.0-150400.37.5.5.aarch64.rpm qemu-tools-6.2.0-150400.37.5.3.aarch64.rpm qemu-ui-curses-6.2.0-150400.37.5.3.aarch64.rpm qemu-ui-gtk-6.2.0-150400.37.5.3.aarch64.rpm qemu-ui-opengl-6.2.0-150400.37.5.3.aarch64.rpm qemu-ui-spice-app-6.2.0-150400.37.5.3.aarch64.rpm qemu-ui-spice-core-6.2.0-150400.37.5.3.aarch64.rpm qemu-vhost-user-gpu-6.2.0-150400.37.5.3.aarch64.rpm qemu-x86-6.2.0-150400.37.5.3.aarch64.rpm openSUSE-SLE-15.4-2022-2387 moderate SUSE Updates openSUSE-SLE 15.4 This update for rust, rust1.61 fixes the following issues: This updates ships rust1.61. Version 1.61.0 (2022-05-19) ========================== Language -------- - `const fn` signatures can now include generic trait bounds - `const fn` signatures can now use `impl Trait` in argument and return position - Function pointers can now be created, cast, and passed around in a `const fn` - Recursive calls can now set the value of a function's opaque `impl Trait` return type Compiler -------- - Linking modifier syntax in `#[link]` attributes and on the command line, as well as the `whole-archive` modifier specifically, are now supported - The `char` type is now described as UTF-32 in debuginfo - he [`#[target_feature]`][target_feature] attribute [can now be used with aarch64 features - X86 [`#[target_feature = "adx"]` is now stable Libraries --------- - `ManuallyDrop<T>` is now documented to have the same layout as `T` - `#[ignore = "…"]` messages are printed when running tests - Consistently show absent stdio handles on Windows as NULL handles - Make `std::io::stdio::lock()` return `'static` handles. Previously, the creation of locked handles to stdin/stdout/stderr would borrow the handles being locked, which prevented writing `let out = std::io::stdout().lock();` because `out` would outlive the return value of `stdout()`. Such code now works, eliminating a common pitfall that affected many Rust users. - `Vec::from_raw_parts` is now less restrictive about its inputs - `std::thread::available_parallelism` now takes cgroup quotas into account. Since `available_parallelism` is often used to create a thread pool for parallel computation, which may be CPU-bound for performance, `available_parallelism` will return a value consistent with the ability to use that many threads continuously, if possible. For instance, in a container with 8 virtual CPUs but quotas only allowing for 50% usage, `available_parallelism` will return 4. Stabilized APIs --------------- - `Pin::static_mut` - `Pin::static_ref` - `Vec::retain_mut` - `VecDeque::retain_mut` - `Write` for `Cursor<[u8; N]>` - `std::os::unix::net::SocketAddr::from_pathname` - `std::process::ExitCode` and `std::process::Termination`. The stabilization of these two APIs now makes it possible for programs to return errors from `main` with custom exit codes. - `std::thread::JoinHandle::is_finished`] These APIs are now usable in const contexts: - `<*const T>::offset` and `<*mut T>::offset` - `<*const T>::wrapping_offset` and `<*mut T>::wrapping_offset` - `<*const T>::add` and `<*mut T>::add` - `<*const T>::sub` and `<*mut T>::sub` - `<*const T>::wrapping_add` and `<*mut T>::wrapping_add` - `<*const T>::wrapping_sub` and `<*mut T>::wrapping_sub` - `<[T]>::as_mut_ptr` - `<[T]>::as_ptr_range` - `<[T]>::as_mut_ptr_range` Cargo ----- No feature changes, but see compatibility notes. Compatibility Notes ------------------- - Previously native static libraries were linked as `whole-archive` in some cases, but now rustc tries not to use `whole-archive` unless explicitly requested. This change may result in linking errors in some cases. To fix such errors, native libraries linked from the command line, build scripts, or [`#[link]` attributes][link-attr] need to - (more common) either be reordered to respect dependencies between them (if `a` depends on `b` then `a` should go first and `b` second) - (less common) or be updated to use the [`+whole-archive`] modifier. - Catching a second unwind from FFI code while cleaning up from a Rust panic now causes the process to abort - Proc macros no longer see `ident` matchers wrapped in groups - The number of `#` in `r#` raw string literals is now required to be less than 256 - When checking that a dyn type satisfies a trait bound, supertrait bounds are now enforced - `cargo vendor` now only accepts one value for each `--sync` flag - `cfg` predicates in `all()` and `any()` are always evaluated to detect errors, instead of short-circuiting. The compatibility considerations here arise in nightly-only code that used the short-circuiting behavior of `all` to write something like `cfg(all(feature = "nightly", syntax-requiring-nightly))`, which will now fail to compile. Instead, use either `cfg_attr(feature = "nightly", ...)` or nested uses of `cfg`. - bootstrap: static-libstdcpp is now enabled by default, and can now be disabled when llvm-tools is enabled cargo-1.61.0-150300.21.26.1.x86_64.rpm cargo1.61-1.61.0-150300.7.3.1.x86_64.rpm rust-1.61.0-150300.21.26.1.src.rpm rust-1.61.0-150300.21.26.1.x86_64.rpm rust1.61-1.61.0-150300.7.3.1.src.rpm rust1.61-1.61.0-150300.7.3.1.x86_64.rpm cargo-1.61.0-150300.21.26.1.s390x.rpm cargo1.61-1.61.0-150300.7.3.1.s390x.rpm rust-1.61.0-150300.21.26.1.s390x.rpm rust1.61-1.61.0-150300.7.3.1.s390x.rpm cargo-1.61.0-150300.21.26.1.ppc64le.rpm cargo1.61-1.61.0-150300.7.3.1.ppc64le.rpm rust-1.61.0-150300.21.26.1.ppc64le.rpm rust1.61-1.61.0-150300.7.3.1.ppc64le.rpm cargo-1.61.0-150300.21.26.1.aarch64.rpm cargo1.61-1.61.0-150300.7.3.1.aarch64.rpm rust-1.61.0-150300.21.26.1.aarch64.rpm rust1.61-1.61.0-150300.7.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2321 moderate SUSE Updates openSUSE-SLE 15.4 This update for openssl-1_0_0 fixes the following issues: - CVE-2022-1292: Fixed command injection in c_rehash (bsc#1199166). - CVE-2022-2068: Fixed more shell code injection issues in c_rehash. (bsc#1200550) libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl-1_0_0-devel-32bit-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl10-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-32bit-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-hmac-32bit-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.56.1.x86_64.rpm libopenssl1_0_0-steam-32bit-1.0.2p-150000.3.56.1.x86_64.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.src.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.x86_64.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.56.1.x86_64.rpm openssl-1_0_0-doc-1.0.2p-150000.3.56.1.noarch.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.s390x.rpm libopenssl10-1.0.2p-150000.3.56.1.s390x.rpm libopenssl1_0_0-1.0.2p-150000.3.56.1.s390x.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.56.1.s390x.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.56.1.s390x.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.s390x.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.56.1.s390x.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl10-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl1_0_0-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.56.1.ppc64le.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.ppc64le.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.56.1.ppc64le.rpm libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.aarch64.rpm libopenssl10-1.0.2p-150000.3.56.1.aarch64.rpm libopenssl1_0_0-1.0.2p-150000.3.56.1.aarch64.rpm libopenssl1_0_0-hmac-1.0.2p-150000.3.56.1.aarch64.rpm libopenssl1_0_0-steam-1.0.2p-150000.3.56.1.aarch64.rpm openssl-1_0_0-1.0.2p-150000.3.56.1.aarch64.rpm openssl-1_0_0-cavs-1.0.2p-150000.3.56.1.aarch64.rpm openSUSE-SLE-15.4-2022-2308 important SUSE Updates openSUSE-SLE 15.4 This update for openssl-1_1 fixes the following issues: - CVE-2022-1292: Fixed command injection in c_rehash (bsc#1199166). - CVE-2022-2068: Fixed more shell code injection issues in c_rehash. (bsc#1200550) - CVE-2022-2097: Fixed partial missing encryption in AES OCB mode (bsc#1201099). libopenssl-1_1-devel-1.1.1l-150400.7.7.1.x86_64.rpm libopenssl-1_1-devel-32bit-1.1.1l-150400.7.7.1.x86_64.rpm libopenssl1_1-1.1.1l-150400.7.7.1.x86_64.rpm libopenssl1_1-32bit-1.1.1l-150400.7.7.1.x86_64.rpm libopenssl1_1-hmac-1.1.1l-150400.7.7.1.x86_64.rpm libopenssl1_1-hmac-32bit-1.1.1l-150400.7.7.1.x86_64.rpm openssl-1_1-1.1.1l-150400.7.7.1.src.rpm openssl-1_1-1.1.1l-150400.7.7.1.x86_64.rpm openssl-1_1-doc-1.1.1l-150400.7.7.1.noarch.rpm libopenssl-1_1-devel-1.1.1l-150400.7.7.1.s390x.rpm libopenssl1_1-1.1.1l-150400.7.7.1.s390x.rpm libopenssl1_1-hmac-1.1.1l-150400.7.7.1.s390x.rpm openssl-1_1-1.1.1l-150400.7.7.1.s390x.rpm libopenssl-1_1-devel-1.1.1l-150400.7.7.1.ppc64le.rpm libopenssl1_1-1.1.1l-150400.7.7.1.ppc64le.rpm libopenssl1_1-hmac-1.1.1l-150400.7.7.1.ppc64le.rpm openssl-1_1-1.1.1l-150400.7.7.1.ppc64le.rpm libopenssl-1_1-devel-1.1.1l-150400.7.7.1.aarch64.rpm libopenssl1_1-1.1.1l-150400.7.7.1.aarch64.rpm libopenssl1_1-hmac-1.1.1l-150400.7.7.1.aarch64.rpm openssl-1_1-1.1.1l-150400.7.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-2341 important SUSE Updates openSUSE-SLE 15.4 This update for containerd, docker and runc fixes the following issues: containerd: - CVE-2022-31030: Fixed denial of service via invocation of the ExecSync API (bsc#1200145) docker: - Update to Docker 20.10.17-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/#201017. (bsc#1200145) runc: Update to runc v1.1.3. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.3. * Our seccomp `-ENOSYS` stub now correctly handles multiplexed syscalls on s390 and s390x. This solves the issue where syscalls the host kernel did not support would return `-EPERM` despite the existence of the `-ENOSYS` stub code (this was due to how s390x does syscall multiplexing). * Retry on dbus disconnect logic in libcontainer/cgroups/systemd now works as intended; this fix does not affect runc binary itself but is important for libcontainer users such as Kubernetes. * Inability to compile with recent clang due to an issue with duplicate constants in libseccomp-golang. * When using systemd cgroup driver, skip adding device paths that don't exist, to stop systemd from emitting warnings about those paths. * Socket activation was failing when more than 3 sockets were used. * Various CI fixes. * Allow to bind mount /proc/sys/kernel/ns_last_pid to inside container. - Fixed issues with newer syscalls (namely faccessat2) on older kernels on s390(x) caused by that platform's syscall multiplexing semantics. (bsc#1192051 bsc#1199565) Update to runc v1.1.2. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.2. Security issue fixed: - CVE-2022-29162: A bug was found in runc where runc exec --cap executed processes with non-empty inheritable Linux process capabilities, creating an atypical Linux environment. (bsc#1199460) - `runc spec` no longer sets any inheritable capabilities in the created example OCI spec (`config.json`) file. Update to runc v1.1.1. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.1. * runc run/start can now run a container with read-only /dev in OCI spec, rather than error out. (#3355) * runc exec now ensures that --cgroup argument is a sub-cgroup. (#3403) libcontainer systemd v2 manager no longer errors out if one of the files listed in /sys/kernel/cgroup/delegate do not exist in container's cgroup. (#3387, #3404) * Loosen OCI spec validation to avoid bogus "Intel RDT is not supported" error. (#3406) * libcontainer/cgroups no longer panics in cgroup v1 managers if stat of /sys/fs/cgroup/unified returns an error other than ENOENT. (#3435) Update to runc v1.1.0. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.0. - libcontainer will now refuse to build without the nsenter package being correctly compiled (specifically this requires CGO to be enabled). This should avoid folks accidentally creating broken runc binaries (and incorrectly importing our internal libraries into their projects). (#3331) Update to runc v1.1.0~rc1. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.0-rc.1. + Add support for RDMA cgroup added in Linux 4.11. * runc exec now produces exit code of 255 when the exec failed. This may help in distinguishing between runc exec failures (such as invalid options, non-running container or non-existent binary etc.) and failures of the command being executed. + runc run: new --keep option to skip removal exited containers artefacts. This might be useful to check the state (e.g. of cgroup controllers) after the container hasexited. + seccomp: add support for SCMP_ACT_KILL_PROCESS and SCMP_ACT_KILL_THREAD (the latter is just an alias for SCMP_ACT_KILL). + seccomp: add support for SCMP_ACT_NOTIFY (seccomp actions). This allows users to create sophisticated seccomp filters where syscalls can be efficiently emulated by privileged processes on the host. + checkpoint/restore: add an option (--lsm-mount-context) to set a different LSM mount context on restore. + intelrdt: support ClosID parameter. + runc exec --cgroup: an option to specify a (non-top) in-container cgroup to use for the process being executed. + cgroup v1 controllers now support hybrid hierarchy (i.e. when on a cgroup v1 machine a cgroup2 filesystem is mounted to /sys/fs/cgroup/unified, runc run/exec now adds the container to the appropriate cgroup under it). + sysctl: allow slashes in sysctl names, to better match sysctl(8)'s behaviour. + mounts: add support for bind-mounts which are inaccessible after switching the user namespace. Note that this does not permit the container any additional access to the host filesystem, it simply allows containers to have bind-mounts configured for paths the user can access but have restrictive access control settings for other users. + Add support for recursive mount attributes using mount_setattr(2). These have the same names as the proposed mount(8) options -- just prepend r to the option name (such as rro). + Add runc features subcommand to allow runc users to detect what features runc has been built with. This includes critical information such as supported mount flags, hook names, and so on. Note that the output of this command is subject to change and will not be considered stable until runc 1.2 at the earliest. The runtime-spec specification for this feature is being developed in opencontainers/runtime-spec#1130. * system: improve performance of /proc/$pid/stat parsing. * cgroup2: when /sys/fs/cgroup is configured as a read-write mount, change the ownership of certain cgroup control files (as per /sys/kernel/cgroup/delegate) to allow for proper deferral to the container process. * runc checkpoint/restore: fixed for containers with an external bind mount which destination is a symlink. * cgroup: improve openat2 handling for cgroup directory handle hardening. runc delete -f now succeeds (rather than timing out) on a paused container. * runc run/start/exec now refuses a frozen cgroup (paused container in case of exec). Users can disable this using --ignore-paused. - Update version data embedded in binary to correctly include the git commit of the release. Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update? containerd-1.6.6-150000.73.2.src.rpm containerd-1.6.6-150000.73.2.x86_64.rpm containerd-ctr-1.6.6-150000.73.2.x86_64.rpm docker-20.10.17_ce-150000.166.1.src.rpm docker-20.10.17_ce-150000.166.1.x86_64.rpm docker-bash-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-fish-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-kubic-20.10.17_ce-150000.166.1.src.rpm docker-kubic-20.10.17_ce-150000.166.1.x86_64.rpm docker-kubic-bash-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-kubic-fish-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.166.1.x86_64.rpm docker-kubic-zsh-completion-20.10.17_ce-150000.166.1.noarch.rpm docker-zsh-completion-20.10.17_ce-150000.166.1.noarch.rpm runc-1.1.3-150000.30.1.src.rpm runc-1.1.3-150000.30.1.x86_64.rpm containerd-1.6.6-150000.73.2.s390x.rpm containerd-ctr-1.6.6-150000.73.2.s390x.rpm docker-20.10.17_ce-150000.166.1.s390x.rpm docker-kubic-20.10.17_ce-150000.166.1.s390x.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.166.1.s390x.rpm runc-1.1.3-150000.30.1.s390x.rpm containerd-1.6.6-150000.73.2.ppc64le.rpm containerd-ctr-1.6.6-150000.73.2.ppc64le.rpm docker-20.10.17_ce-150000.166.1.ppc64le.rpm docker-kubic-20.10.17_ce-150000.166.1.ppc64le.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.166.1.ppc64le.rpm runc-1.1.3-150000.30.1.ppc64le.rpm containerd-1.6.6-150000.73.2.aarch64.rpm containerd-ctr-1.6.6-150000.73.2.aarch64.rpm docker-20.10.17_ce-150000.166.1.aarch64.rpm docker-kubic-20.10.17_ce-150000.166.1.aarch64.rpm docker-kubic-kubeadm-criconfig-20.10.17_ce-150000.166.1.aarch64.rpm runc-1.1.3-150000.30.1.aarch64.rpm openSUSE-SLE-15.4-2022-2297 important SUSE Updates openSUSE-SLE 15.4 This update for python-Twisted fixes the following issues: - CVE-2022-21716: Fixed that ssh server accepts an infinite amount of data using all the available memory (bsc#1196739). python-Twisted-22.2.0-150400.5.4.1.src.rpm python-Twisted-doc-22.2.0-150400.5.4.1.x86_64.rpm python3-Twisted-22.2.0-150400.5.4.1.x86_64.rpm python-Twisted-doc-22.2.0-150400.5.4.1.s390x.rpm python3-Twisted-22.2.0-150400.5.4.1.s390x.rpm python-Twisted-doc-22.2.0-150400.5.4.1.ppc64le.rpm python3-Twisted-22.2.0-150400.5.4.1.ppc64le.rpm python-Twisted-doc-22.2.0-150400.5.4.1.aarch64.rpm python3-Twisted-22.2.0-150400.5.4.1.aarch64.rpm openSUSE-SLE-15.4-2022-2711 moderate SUSE Updates openSUSE-SLE 15.4 This update for libnvme, nvme-cli fixes the following issues: - Reduce log noise and export error codes (bsc#1199994 bsc#1199503) - Apply configuration from JSON file (bsc#1199503) - fabrics: Already connected uses a different error code (bsc#1199994) - fabrics: skip connect if the transport types don't match (bsc#1199994) - nvme-print: Show ANA state only for one namespace (bsc#1200044 bsc#1199956 bsc#1199990) - fabrics: Honor config file for connect-all (bsc#1199504) libnvme-1.0-150400.3.3.4.src.rpm libnvme-devel-1.0-150400.3.3.4.x86_64.rpm libnvme1-1.0-150400.3.3.4.x86_64.rpm nvme-cli-2.0-150400.3.3.3.src.rpm nvme-cli-2.0-150400.3.3.3.x86_64.rpm nvme-cli-bash-completion-2.0-150400.3.3.3.x86_64.rpm nvme-cli-regress-script-2.0-150400.3.3.3.x86_64.rpm nvme-cli-zsh-completion-2.0-150400.3.3.3.x86_64.rpm python3-libnvme-1.0-150400.3.3.4.x86_64.rpm libnvme-devel-1.0-150400.3.3.4.s390x.rpm libnvme1-1.0-150400.3.3.4.s390x.rpm nvme-cli-2.0-150400.3.3.3.s390x.rpm nvme-cli-bash-completion-2.0-150400.3.3.3.s390x.rpm nvme-cli-regress-script-2.0-150400.3.3.3.s390x.rpm nvme-cli-zsh-completion-2.0-150400.3.3.3.s390x.rpm python3-libnvme-1.0-150400.3.3.4.s390x.rpm libnvme-devel-1.0-150400.3.3.4.ppc64le.rpm libnvme1-1.0-150400.3.3.4.ppc64le.rpm nvme-cli-2.0-150400.3.3.3.ppc64le.rpm nvme-cli-bash-completion-2.0-150400.3.3.3.ppc64le.rpm nvme-cli-regress-script-2.0-150400.3.3.3.ppc64le.rpm nvme-cli-zsh-completion-2.0-150400.3.3.3.ppc64le.rpm python3-libnvme-1.0-150400.3.3.4.ppc64le.rpm libnvme-devel-1.0-150400.3.3.4.aarch64.rpm libnvme1-1.0-150400.3.3.4.aarch64.rpm nvme-cli-2.0-150400.3.3.3.aarch64.rpm nvme-cli-bash-completion-2.0-150400.3.3.3.aarch64.rpm nvme-cli-regress-script-2.0-150400.3.3.3.aarch64.rpm nvme-cli-zsh-completion-2.0-150400.3.3.3.aarch64.rpm python3-libnvme-1.0-150400.3.3.4.aarch64.rpm openSUSE-SLE-15.4-2022-2085 moderate SUSE Updates openSUSE-SLE 15.4 This optional update for i2c-tools provide the following changes: - Deliver i2c-tools to SUSE Package Hub. i2c-tools-4.0-150000.4.5.1.src.rpm i2c-tools-4.0-150000.4.5.1.x86_64.rpm libi2c0-4.0-150000.4.5.1.x86_64.rpm libi2c0-devel-4.0-150000.4.5.1.x86_64.rpm python3-smbus-4.0-150000.4.5.1.x86_64.rpm i2c-tools-4.0-150000.4.5.1.ppc64le.rpm libi2c0-4.0-150000.4.5.1.ppc64le.rpm libi2c0-devel-4.0-150000.4.5.1.ppc64le.rpm python3-smbus-4.0-150000.4.5.1.ppc64le.rpm i2c-tools-4.0-150000.4.5.1.aarch64.rpm libi2c0-4.0-150000.4.5.1.aarch64.rpm libi2c0-devel-4.0-150000.4.5.1.aarch64.rpm python3-smbus-4.0-150000.4.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2111 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP1 kernel was updated. The following security bugs were fixed: - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266) - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2017-13695: Fixed a bug that caused a stack dump allowing local users to obtain sensitive information from kernel memory and bypass the KASLR protection mechanism via a crafted ACPI table. (bnc#1055710) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2021-39711: In bpf_prog_test_run_skb of test_run.c, there is a possible out of bounds read due to Incorrect Size Value. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation (bnc#1197219). - CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505). - CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426). - CVE-2022-1516: Fixed null-ptr-deref caused by x25_disconnect (bsc#1199012). - CVE-2021-20321: Fixed a race condition accessing file object in the OverlayFS subsystem in the way users do rename in specific way with OverlayFS. A local user could have used this flaw to crash the system (bnc#1191647). - CVE-2019-20811: Fixed issue in rx_queue_add_kobject() and netdev_queue_add_kobject() in net/core/net-sysfs.c, where a reference count is mishandled (bnc#1172456). - CVE-2022-28748: Fixed memory lead over the network by ax88179_178a devices (bsc#1196018). - CVE-2018-7755: Fixed an issue in the fd_locked_ioctl function in drivers/block/floppy.c. The floppy driver will copy a kernel pointer to user memory in response to the FDGETPRM ioctl. An attacker can send the FDGETPRM ioctl and use the obtained kernel pointer to discover the location of kernel code and data and bypass kernel security protections such as KASLR (bnc#1084513). - CVE-2022-22942: Fixed stale file descriptors on failed usercopy (bsc#1195065). - CVE-2022-1419: Fixed a concurrency use-after-free in vgem_gem_dumb_create (bsc#1198742). - CVE-2021-43389: Fixed an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c (bnc#1191958). - CVE-2021-38208: Fixed a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call (bnc#1187055). - CVE-2022-1353: Fixed access controll to kernel memory in the pfkey_register function in net/key/af_key.c (bnc#1198516). - CVE-2021-20292: Fixed object validation prior to performing operations on the object in nouveau_sgdma_create_ttm in Nouveau DRM subsystem (bnc#1183723). - CVE-2022-1011: Fixed an use-after-free vulnerability which could allow a local attacker to retireve (partial) /etc/shadow hashes or any other data from filesystem when he can mount a FUSE filesystems. (bnc#1197343) - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144). - CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bnc#1177282) - CVE-2022-1975: Fixed a bug that allows an attacker to crash the linux kernel by simulating nfc device from user-space. (bsc#1200143) - CVE-2022-21499: Reinforce the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb. (bsc#1199426) - CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware download routine. (bnc#1199605). The following non-security bugs were fixed: - btrfs: relocation: Only remove reloc rb_trees if reloc control has been initialized (bsc#1199399). - btrfs: tree-checker: fix incorrect printk format (bsc#1200249). - net: ena: A typo fix in the file ena_com.h (bsc#1198777). - net: ena: Add capabilities field with support for ENI stats capability (bsc#1198777). - net: ena: Add debug prints for invalid req_id resets (bsc#1198777). - net: ena: add device distinct log prefix to files (bsc#1198777). - net: ena: add jiffies of last napi call to stats (bsc#1198777). - net: ena: aggregate doorbell common operations into a function (bsc#1198777). - net: ena: aggregate stats increase into a function (bsc#1198777). - net: ena: Change ENI stats support check to use capabilities field (bsc#1198777). - net: ena: Change return value of ena_calc_io_queue_size() to void (bsc#1198777). - net: ena: Change the name of bad_csum variable (bsc#1198777). - net: ena: Extract recurring driver reset code into a function (bsc#1198777). - net: ena: fix coding style nits (bsc#1198777). - net: ena: fix DMA mapping function issues in XDP (bsc#1198777). - net: ena: Fix error handling when calculating max IO queues number (bsc#1198777). - net: ena: fix inaccurate print type (bsc#1198777). - net: ena: Fix undefined state when tx request id is out of bounds (bsc#1198777). - net: ena: Fix wrong rx request id by resetting device (bsc#1198777). - net: ena: Improve error logging in driver (bsc#1198777). - net: ena: introduce ndo_xdp_xmit() function for XDP_REDIRECT (bsc#1198777). - net: ena: introduce XDP redirect implementation (bsc#1198777). - net: ena: make symbol 'ena_alloc_map_page' static (bsc#1198777). - net: ena: Move reset completion print to the reset function (bsc#1198777). - net: ena: optimize data access in fast-path code (bsc#1198777). - net: ena: re-organize code to improve readability (bsc#1198777). - net: ena: Remove ena_calc_queue_size_ctx struct (bsc#1198777). - net: ena: remove extra words from comments (bsc#1198777). - net: ena: Remove module param and change message severity (bsc#1198777). - net: ena: Remove rcu_read_lock() around XDP program invocation (bsc#1198777). - net: ena: Remove redundant return code check (bsc#1198777). - net: ena: Remove unused code (bsc#1198777). - net: ena: store values in their appropriate variables types (bsc#1198777). - net: ena: Update XDP verdict upon failure (bsc#1198777). - net: ena: use build_skb() in RX path (bsc#1198777). - net: ena: use constant value for net_device allocation (bsc#1198777). - net: ena: Use dev_alloc() in RX buffer allocation (bsc#1198777). - net: ena: Use pci_sriov_configure_simple() to enable VFs (bsc#1198777). - net: ena: use xdp_frame in XDP TX flow (bsc#1198777). - net: ena: use xdp_return_frame() to free xdp frames (bsc#1198777). - net: mana: Add counter for packet dropped by XDP (bsc#1195651). - net: mana: Add counter for XDP_TX (bsc#1195651). - net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651). - net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe() (bsc#1195651). - net: mana: Reuse XDP dropped page (bsc#1195651). - net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#1195651). - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314). - powerpc/64: Fix kernel stack 16-byte alignment (bsc#1196999 ltc#196609S git-fixes). - powerpc/64: Interrupts save PPR on stack rather than thread_struct (bsc#1196999 ltc#196609). - powerpc/pseries: extract host bridge from pci_bus prior to bus removal (bsc#1182171 ltc#190900 bsc#1198660 ltc#197803). - powerpc/pseries: Fix use after free in remove_phb_dynamic() (bsc#1065729 bsc#1198660 ltc#197803). - scsi: scsi_dh_alua: Avoid crash during alua_bus_detach() (bsc#1028340 bsc#1198825). - SUNRPC: change locking for xs_swap_enable/disable (bsc#1196367). - x86/pm: Save the MSR validity status at context setup (bsc#1114648). - x86/speculation: Restore speculation related MSRs during S3 resume (bsc#1114648). kernel-debug-4.12.14-150100.197.114.2.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.114.2.x86_64.rpm True kernel-default-4.12.14-150100.197.114.2.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.114.2.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.114.2.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.114.2.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.114.2.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.114.2.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.114.2.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2.x86_64.rpm True kernel-default-man-4.12.14-150100.197.114.2.s390x.rpm True kernel-vanilla-4.12.14-150100.197.114.2.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.114.2.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.114.2.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.114.2.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.114.2.s390x.rpm True kernel-debug-base-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.114.2.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.114.2.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.114.2.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.114.2.aarch64.rpm True openSUSE-SLE-15.4-2022-2078 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-0168: Fixed a NULL pointer dereference in smb2_ioctl_query_info. (bsc#1197472) - CVE-2022-20008: Fixed bug that allows to read kernel heap memory due to uninitialized data in mmc_blk_read_single of block.c. (bnc#1199564) - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2019-19377: Fixed an user-after-free that could be triggered when an attacker mounts a crafted btrfs filesystem image. (bnc#1158266) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505). - CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426). The following non-security bugs were fixed: - ACPI: property: Release subnode properties with data nodes (git-fixes). - ALSA: ctxfi: Add SB046x PCI ID (git-fixes). - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes (git-fixes). - ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes). - ALSA: hda/realtek - Add new type for ALC245 (git-fixes). - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop (git-fixes). - ALSA: hda/realtek: Enable headset mic on Lenovo P360 (git-fixes). - ALSA: pcm: Check for null pointer of pointer substream before dereferencing it (git-fixes). - ALSA: usb-audio: Add missing ep_idx in fixed EP quirks (git-fixes). - ALSA: usb-audio: Clear MIDI port active flag after draining (git-fixes). - ALSA: usb-audio: Configure sync endpoints before data (git-fixes). - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - ALSA: usb-audio: Restore Rane SL-1 quirk (git-fixes). - ALSA: wavefront: Proper check of get_user() error (git-fixes). - ARM: 9169/1: entry: fix Thumb2 bug in iWMMXt exception handling (git-fixes) - ARM: 9170/1: fix panic when kasan and kprobe are enabled (git-fixes) - ARM: 9187/1: JIVE: fix return value of __setup handler (git-fixes) - ARM: config: u8500: Re-enable AB8500 battery charging (git-fixes) - ARM: davinci: da850-evm: Avoid NULL pointer dereference (git-fixes) - ARM: dts: am3517-evm: Fix misc pinmuxing (git-fixes) - ARM: dts: armada-38x: Add generic compatible to UART nodes (git-fixes) - ARM: dts: at91: fix pinctrl phandles (git-fixes) - ARM: dts: at91: Map MCLK for wm8731 on at91sam9g20ek (git-fixes) - ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (git-fixes) - ARM: dts: at91: sama5d4_xplained: fix pinctrl phandle name (git-fixes) - ARM: dts: bcm2835-rpi-b: Fix GPIO line names (git-fixes) - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT (git-fixes) - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED (git-fixes) - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C (git-fixes) - ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (git-fixes) - ARM: dts: Fix OpenBMC flash layout label addresses (git-fixes) - ARM: dts: imx: Add missing LVDS decoder on M53Menlo (git-fixes) - ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (git-fixes) - ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue (git-fixes) - ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (git-fixes) - ARM: dts: imx6ull-colibri: fix vqmmc regulator (git-fixes) - ARM: dts: imx6ull-pinfunc: Fix CSI_DATA07__ESAI_TX0 pad name (git-fixes) - ARM: dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35 (git-fixes) - ARM: dts: meson: Fix the UART compatible strings (git-fixes) - ARM: dts: meson8: Fix the UART device-tree schema validation (git-fixes) - ARM: dts: meson8b: Fix the UART device-tree schema validation (git-fixes) - ARM: dts: qcom: ipq4019: fix sleep clock (git-fixes) - ARM: dts: qcom: msm8974: Drop flags for mdss irqs (git-fixes) - ARM: dts: suniv: F1C100: fix watchdog compatible (git-fixes) - ARM: ftrace: ensure that ADR takes the Thumb bit into account (git-fixes) - arm: mediatek: select arch timer for mt7629 (git-fixes) - ARM: omap: remove debug-leds driver (git-fixes) - ARM: OMAP2+: Fix refcount leak in omap_gic_of_init (git-fixes) - ARM: socfpga: dts: fix qspi node compatible (git-fixes) - ARM: socfpga: fix missing RESET_CONTROLLER (git-fixes) - ARM: tegra: Move panels to AUX bus (git-fixes) - arm64: dts: broadcom: Fix sata nodename (git-fixes) - arm64: dts: ns2: Fix spi-cpol and spi-cpha property (git-fixes) - arm64: dts: rockchip: Fix SDIO regulator supply properties on (git-fixes) - arm64: paravirt: Use RCU read locks to guard stolen_time (git-fixes). - arm64: pgtable: make __pte_to_phys/__phys_to_pte_val inline functions (git-fixes) - arm64/mm: avoid fixmap race condition when create pud mapping (git-fixes) - ASoC: atmel-classd: Remove endianness flag on class d component (git-fixes). - ASoC: atmel-pdmic: Remove endianness flag on pdmic component (git-fixes). - ASoC: da7219: Fix change notifications for tone generator frequency (git-fixes). - ASoC: dmaengine: Restore NULL prepare_slave_config() callback (git-fixes). - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition (git-fixes). - ASoC: max98090: Generate notifications on changes for custom control (git-fixes). - ASoC: max98090: Move check for invalid values before casting in max98090_put_enab_tlv() (git-fixes). - ASoC: max98090: Reject invalid values in custom control put() (git-fixes). - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe (git-fixes). - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe (git-fixes). - ASoC: meson: Fix event generation for G12A tohdmi mux (git-fixes). - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe (git-fixes). - ASoC: ops: Validate input values in snd_soc_put_volsw_range() (git-fixes). - ASoC: rk3328: fix disabling mclk on pclk probe failure (git-fixes). - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control (git-fixes). - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_* (git-fixes). - ASoC: wm2000: fix missing clk_disable_unprepare() on error in wm2000_anc_transition() (git-fixes). - ASoC: wm8958: Fix change notifications for DSP controls (git-fixes). - assoc_array: Fix BUG_ON during garbage collect (git-fixes). - ata: pata_hpt37x: fix PCI clock detection (git-fixes). - ata: pata_marvell: Check the 'bmdma_addr' beforing reading (git-fixes). - ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix (git-fixes). - ath9k: fix ar9003_get_eepmisc (git-fixes). - batman-adv: Do not skb_split skbuffs with frag_list (git-fixes). - blk-cgroup: move blkcg_{get,set}_fc_appid out of line (bsc#1200045). - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed (git-fixes). - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout (git-fixes). - Bluetooth: Fix the creation of hdev->name (git-fixes). - Bluetooth: hci_qca: Use del_timer_sync() before freeing (git-fixes). - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag (jsc#SLE-8371 bsc#1153274). - bnxt_en: Fix unnecessary dropping of RX packets (jsc#SLE-15075). - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create() (git-fixes). - bus: ti-sysc: Fix warnings for unbind for serial (git-fixes). - can: grcan: grcan_close(): fix deadlock (git-fixes). - can: grcan: use ofdev->dev when allocating DMA memory (git-fixes). - carl9170: tx: fix an incorrect use of list iterator (git-fixes). - ceph: fix setting of xattrs on async created inodes (bsc#1200192). - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp() (bsc#1199839). - clk: at91: generated: consider range when calculating best rate (git-fixes). - clk: bcm2835: fix bcm2835_clock_choose_div (git-fixes). - clk: imx8mp: fix usb_root_clk parent (git-fixes). - clk: renesas: r9a06g032: Fix the RTC hclock description (git-fixes). - clk: sunxi: sun9i-mmc: check return value after calling platform_get_resource() (git-fixes). - copy_process(): Move fd_install() out of sighand->siglock critical section (bsc#1199626). - crypto: caam - fix i.MX6SX entropy delay value (git-fixes). - crypto: ecrdsa - Fix incorrect use of vli_cmp (git-fixes). - crypto: stm32 - fix reference leak in stm32_crc_remove (git-fixes). - crypto: x86 - eliminate anonymous module_init and module_exit (git-fixes). - crypto: x86/chacha20 - Avoid spurious jumps to other functions (git-fixes). - dim: initialize all struct fields (git-fixes). - dmaengine: idxd: Fix the error handling path in idxd_cdev_register() (git-fixes). - dmaengine: stm32-mdma: remove GISR1 register (git-fixes). - docs: powerpc: Fix misspellings and grammar errors (bsc#1055117 ltc#159753). - docs: submitting-patches: Fix crossref to 'The canonical patch format' (git-fixes). - drbd: fix an invalid memory access caused by incorrect use of list iterator (git-fixes). - drbd: fix duplicate array initializer (git-fixes). - drbd: Fix five use after free bugs in get_initial_state (git-fixes). - drbd: remove assign_p_sizes_qlim (git-fixes). - drbd: use bdev based limit helpers in drbd_send_sizes (git-fixes). - drbd: use bdev_alignment_offset instead of queue_alignment_offset (git-fixes). - driver: core: fix deadlock in __device_attach (git-fixes). - driver: base: fix UAF when driver_attach failed (git-fixes). - drivers: base: cacheinfo: Get rid of DEFINE_SMP_CALL_CACHE_FUNCTION() (git-fixes) - drivers/base/memory: fix an unlikely reference counting issue in __add_memory_block() (git-fixes). - drivers/base/node.c: fix compaction sysfs file leak (git-fixes). - drm: mali-dp: potential dereference of null pointer (git-fixes). - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set() (git-fixes). - drm: sti: do not use kernel-doc markers (git-fixes). - drm/amd/display/dc/gpio/gpio_service: Pass around correct dce_{version, environment} types (git-fixes). - drm/amdkfd: Fix GWS queue count (git-fixes). - drm/blend: fix typo in the comment (git-fixes). - drm/bridge: adv7511: clean up CEC adapter when probe fails (git-fixes). - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX (git-fixes). - drm/bridge: Fix error handling in analogix_dp_probe (git-fixes). - drm/edid: fix invalid EDID extension block filtering (git-fixes). - drm/i915: Fix CFI violation with show_dynamic_id() (git-fixes). - drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses (git-fixes). - drm/komeda: Fix an undefined behavior bug in komeda_plane_add() (git-fixes). - drm/mediatek: Fix mtk_cec_mask() (git-fixes). - drm/msm: return an error pointer in msm_gem_prime_get_sg_table() (git-fixes). - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init (git-fixes). - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume (git-fixes). - drm/msm/dpu: adjust display_v_end for eDP and DP (git-fixes). - drm/msm/dsi: fix error checks and return values for DSI xmit functions (git-fixes). - drm/msm/hdmi: check return value after calling platform_get_resource_byname() (git-fixes). - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/msm/mdp5: check the return of kzalloc() (git-fixes). - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected (git-fixes). - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected (git-fixes). - drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name() (git-fixes). - drm/nouveau/clk: Fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau/tegra: Stop using iommu_present() (git-fixes). - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01 (git-fixes). - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind() (git-fixes). - drm/vc4: hvs: Reset muxes at probe time (git-fixes). - drm/vc4: txp: Do not set TXP_VSTART_AT_EOF (git-fixes). - drm/vc4: txp: Force alpha to be 0xff if it's disabled (git-fixes). - drm/vmwgfx: Initialize drm_mode_fb_cmd2 (git-fixes). - EDAC/synopsys: Read the error count from the correct register (bsc#1178134). - firewire: core: extend card->lock in fw_core_handle_bus_reset (git-fixes). - firewire: fix potential uaf in outbound_phy_packet_callback() (git-fixes). - firewire: remove check of list iterator against head past the loop body (git-fixes). - firmware: arm_scmi: Fix list protocols enumeration in the base protocol (git-fixes). - firmware: arm_scmi: Validate BASE_DISCOVER_LIST_PROTOCOLS response (git-fixes). - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle (git-fixes). - firmware: stratix10-svc: fix a missing check on list iterator (git-fixes). - genirq: Fix reference leaks on irq affinity notifiers (git-fixes) - genirq: Let GENERIC_IRQ_IPI select IRQ_DOMAIN_HIERARCHY (git-fixes) - genirq/affinity: Consider that CPUs on nodes can be (git-fixes) - genirq/affinity: Handle affinity setting on inactive (git-fixes) - genirq/msi: Ensure deactivation on teardown (git-fixes) - genirq/proc: Reject invalid affinity masks (again) (git-fixes) - genirq/timings: Fix error return code in (git-fixes) - genirq/timings: Prevent potential array overflow in (git-fixes) - gma500: fix an incorrect NULL check on list iterator (git-fixes). - gpio: adp5588: Remove support for platform setup and teardown callbacks (git-fixes). - gpio: gpio-vf610: do not touch other bits when set the target bit (git-fixes). - gpio: mvebu/pwm: Refuse requests with inverted polarity (git-fixes). - gpio: pca953x: fix irq_stat not updated when irq is disabled (irq_mask not set) (git-fixes). - gpio: pca953x: use the correct register address to do regcache sync (git-fixes). - gpiolib: of: fix bounds check for 'gpio-reserved-ranges' (git-fixes). - hex2bin: fix access beyond string end (git-fixes). - HID: elan: Fix potential double free in elan_input_configured (git-fixes). - HID: hid-led: fix maximum brightness for Dream Cheeky (git-fixes). - hinic: fix bug of wq out of bound access (bsc#1176447). - hwmon: (f71882fg) Fix negative temperature (git-fixes). - hwmon: (ltq-cputemp) restrict it to SOC_XWAY (git-fixes). - hwmon: (tmp401) Add OF device ID table (git-fixes). - i2c: at91: Initialize dma_buf in at91_twi_xfer() (git-fixes). - i2c: at91: use dma safe buffers (git-fixes). - i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe() (git-fixes). - i40e: stop disabling VFs due to PF error responses (git-fixes). - ice: arfs: fix use-after-free when freeing @rx_cpu_rmap (jsc#SLE-12878). - ice: Clear default forwarding VSI during VSI release (jsc#SLE-12878). - ice: Do not skip not enabled queues in ice_vc_dis_qs_msg (jsc#SLE-7926). - ice: Fix race conditions between virtchnl handling and VF ndo ops (git-fixes). - ice: synchronize_rcu() when terminating rings (jsc#SLE-7926). - iio: adc: ad7124: Remove shift from scan_type (git-fixes). - iio: adc: sc27xx: Fine tune the scale calibration values (git-fixes). - iio: adc: sc27xx: fix read big scale voltage not right (git-fixes). - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check (git-fixes). - iio: dac: ad5446: Fix read_raw not returning set value (git-fixes). - iio: dac: ad5592r: Fix the missing return value (git-fixes). - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on() (git-fixes). - Input: add bounds checking to input_set_capability() (git-fixes). - Input: ili210x - fix reset timing (git-fixes). - Input: sparcspkr - fix refcount leak in bbc_beep_probe (git-fixes). - Input: stmfts - do not leave device disabled in stmfts_input_open (git-fixes). - Input: stmfts - fix reference leak in stmfts_input_open (git-fixes). - iommu/amd: Increase timeout waiting for GA log enablement (bsc#1199052). - ionic: avoid races in ionic_heartbeat_check (bsc#1167773). - ionic: Cleanups in the Tx hotpath code (bsc#1167773). - ionic: disable napi when ionic_lif_init() fails (bsc#1167773). - ionic: Do not send reset commands if FW isn't running (bsc#1167773). - ionic: fix missing pci_release_regions() on error in ionic_probe() (bsc#1167773). - ionic: fix type complaint in ionic_dev_cmd_clean() (jsc#SLE-16649). - ionic: monitor fw status generation (bsc#1167773). - ionic: remove the dbid_inuse bitmap (bsc#1167773). - ionic: start watchdog after all is setup (bsc#1167773). - ivtv: fix incorrect device_caps for ivtvfb (git-fixes). - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing (git-fixes). - iwlwifi: mvm: fix the return type for DSM functions 1 and 2 (git-fixes). - jbd2: Fake symbols defined under CONFIG_JBD2_DEBUG (bsc#1198971). - kABI: ivtv: restore caps member (git-fixes). - KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes). - KVM: VMX: Fix stale docs for kvm-intel.emulate_invalid_guest_state (git-fixes). - lan743x: fix rx_napi_poll/interrupt ping-pong (git-fixes). - lan743x: remove redundant assignment to variable rx_process_result (git-fixes). - lib/raid6/test: fix multiple definition linking error (git-fixes). - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection (git-fixes). - mac80211: fix rx reordering with non explicit / psmp ack policy (git-fixes). - mac80211: Reset MBSSID parameters upon connection (git-fixes). - media: davinci: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM enable (git-fixes). - media: davinci: vpif: fix use-after-free on driver unbind (git-fixes). - media: media-entity.h: Fix documentation for media_create_intf_link (git-fixes). - media: ov7670: remove ov7670_power_off from ov7670_remove (git-fixes). - media: platform: add missing put_device() call in mtk_jpeg_probe() and mtk_jpeg_remove() (git-fixes). - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init (git-fixes). - media: saa7134: fix incorrect use to determine if list is empty (git-fixes). - media: uvcvideo: Fix missing check to determine if element is found in list (git-fixes). - media: videobuf2: Fix the size printk format (git-fixes). - media: vim2m: Register video device after setting up internals (git-fixes). - mfd: ipaq-micro: Fix error check return value of platform_get_irq() (git-fixes). - misc: ocxl: fix possible double free in ocxl_file_register_afu (git-fixes). - mm, page_alloc: fix build_zonerefs_node() (git-fixes). - mm/mmu_notifier.c: fix race in mmu_interval_notifier_remove() (jsc#SLE-15176, jsc#SLE-16387). - mmc: block: Use generic_cmd6_time when modifying INAND_CMD38_ARG_EXT_CSD (git-fixes). - mmc: core: Specify timeouts for BKOPS and CACHE_FLUSH for eMMC (git-fixes). - mt76: Fix undefined behavior due to shift overflowing the constant (git-fixes). - mt76: mt7663s: fix rx buffer refcounting (git-fixes). - mtd: rawnand: fix ecc parameters for mt7622 (git-fixes). - mtd: rawnand: Fix return value check of wait_for_completion_timeout (git-fixes). - mtd: spi-nor: core: Check written SR value in spi_nor_write_16bit_sr_and_check() (git-fixes). - net: bcmgenet: Fix a resource leak in an error handling path in the probe functin (git-fixes). - net: dsa: lantiq_gswip: Enable GSWIP_MII_CFG_EN also for internal PHYs (git-fixes). - net: dsa: lantiq_gswip: Fix GSWIP_MII_CFG(p) register access (git-fixes). - net: ethernet: Fix memleak in ethoc_probe (git-fixes). - net: ethernet: ti: cpts: fix ethtool output when no ptp_clock registered (git-fixes). - net: hdlc_ppp: Fix issues when mod_timer is called while timer is running (git-fixes). - net: hns3: add a check for index in hclge_get_rss_key() (git-fixes). - net: hns3: clear inited state and stop client after failed to register netdev (bsc#1154353). - net: hns3: fix bug when PF set the duplicate MAC address for VFs (jsc#SLE-14777). - net: hns3: fix kernel crash when unload VF while it is being reset (git-fixes). - net: korina: fix return value (git-fixes). - net: sched: fixed barrier to prevent skbuff sticking in qdisc backlog (bsc#1183405). - net: stmmac: dwmac-sun8i: Balance internal PHY power (git-fixes). - net: stmmac: dwmac-sun8i: Balance internal PHY resource references (git-fixes). - net: stmmac: dwmac-sun8i: Balance syscon (de)initialization (git-fixes). - net: stmmac: dwmac-sun8i: Fix probe error handling (git-fixes). - net/mlx5: Fix a race on command flush flow (jsc#SLE-15172). - net/mlx5e: Fix the calling of update_buffer_lossy() API (jsc#SLE-15172). - netdevice: demote the type of some dev_addr_set() helpers (bsc#1200216). - netfilter: conntrack: connection timeout after re-register (bsc#1199035). - netfilter: conntrack: move synack init code to helper (bsc#1199035). - netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#1199035). - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (bsc#1199035). - netfilter: nf_conntrack_tcp: re-init for syn packets only (bsc#1199035). - netfilter: nft_set_rbtree: overlap detection with element re-addition after deletion (bsc#1176447). - NFC: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx (git-fixes). - NFC: nci: fix sleep in atomic context bugs caused by nci_skb_alloc (git-fixes). - NFC: netlink: fix sleep in atomic bug when firmware download timeout (git-fixes). - NFC: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs (git-fixes). - NFC: NULL out the dev->rfkill to prevent UAF (git-fixes). - NFS: limit use of ACCESS cache for negative responses (bsc#1196570). - NFS: Do not invalidate inode attributes on delegation return (git-fixes). - nl80211: show SSID for P2P_GO interfaces (git-fixes). - nvdimm/region: always show the 'align' attribute (bsc#1199114). - nvme-tcp: allow selecting the network interface for connections (bsc#1199670). - nvme-tcp: use __dev_get_by_name instead dev_get_by_name for OPT_HOST_IFACE (bsc#1199670). - objtool: Fix type of reloc::addend (git-fixes). - PCI: aardvark: Clear all MSIs at setup (git-fixes). - PCI: cadence: Fix find_first_zero_bit() limit (git-fixes). - PCI: Do not enable AtomicOps on VFs (git-fixes). - PCI: dwc: Fix setting error return on MSI DMA mapping failure (git-fixes). - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314). - PCI: imx6: Fix PERST# start-up sequence (git-fixes). - PCI: iproc: Set affinity mask on MSI interrupts (git-fixes). - PCI: qcom: Fix runtime PM imbalance on probe errors (git-fixes). - PCI: qcom: Fix unbalanced PHY init on probe errors (git-fixes). - PCI: rockchip: Fix find_first_zero_bit() limit (git-fixes). - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits (git-fixes). - PCI/PM: Power up all devices during runtime resume (git-fixes). - phy: mapphone-mdm6600: Fix PM error handling in phy_mdm6600_probe (git-fixes). - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure (git-fixes). - phy: qcom-qmp: fix reset-controller leak on probe errors (git-fixes). - phy: qcom-qmp: fix struct clk leak on probe errors (git-fixes). - phy: samsung: exynos5250-sata: fix missing device put in probe error paths (git-fixes). - phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe (git-fixes). - phy: ti: Add missing pm_runtime_disable() in serdes_am654_probe (git-fixes). - phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks (git-fixes). - pinctrl: mvebu: Fix irq_of_parse_and_map() return value (git-fixes). - pinctrl: pistachio: fix use of irq_of_parse_and_map() (git-fixes). - pinctrl: rockchip: fix RK3308 pinmux bits (git-fixes). - pinctrl/rockchip: support deferring other gpio params (git-fixes). - ping: fix the sk_bound_dev_if match in ping_lookup (bsc#1195826). - ping: remove pr_err from ping_lookup (bsc#1195826). - platform/chrome: cros_ec_debugfs: detach log reader wq from devm (git-fixes). - platform/x86: samsung-laptop: Fix an unsigned comparison which can never be negative (git-fixes). - powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#159753). - powerpc/64s: Add CPU_FTRS_POWER10 to ALWAYS mask (jsc#SLE-13521 git-fixes). - powerpc/64s: Add CPU_FTRS_POWER9_DD2_2 to CPU_FTRS_ALWAYS mask (bsc#1061840 git-fixes). - powerpc/64s/radix: Fix huge vmap false positive (bsc#1156395). - powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#169948 git-fixes). - powerpc/powernv: Add __init attribute to eligible functions (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess flushes (bsc#1188885 ltc#193722 git-fixes). - powerpc/xive: Add some error handling code to 'xive_spapr_init()' (git-fixes). - powerpc/xive: Fix refcount leak in xive_spapr_init (git-fixes). - pwm: lp3943: Fix duty calculation in case period was clamped (git-fixes). - pwm: raspberrypi-poe: Fix endianness in firmware struct (git-fixes). - qlcnic: Fix error code in probe (git-fixes). - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET (git-fixes). - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt (git-fixes). - reset: tegra-bpmp: Restore Handle errors in BPMP response (git-fixes). - revert scsi: qla2xxx: Changes to support FCP2 Target (bsc#1198438). - rtc: fix use-after-free on device removal (git-fixes). - rtc: mc146818-lib: Fix the AltCentury for AMD platforms (git-fixes). - rtc: mt6397: check return value after calling platform_get_resource() (git-fixes). - sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (git-fixes). - sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (git-fixes). - sched/pelt: Fix attach_entity_load_avg() corner case (git-fixes) - sched/topology: Skip updating masks for non-online nodes (bsc#1197446 ltc#183000). - scsi: dc395x: Fix a missing check on list iterator (git-fixes). - scsi: fnic: Fix a tracing statement (git-fixes). - scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631). - scsi: hisi_sas: Change permission of parameter prot_mask (git-fixes). - scsi: lpfc: Alter FPIN stat accounting logic (bsc#1200045). - scsi: lpfc: Change FA-PWWN detection methodology (bsc#1200045). - scsi: lpfc: Change VMID registration to be based on fabric parameters (bsc#1200045). - scsi: lpfc: Clear fabric topology flag before initiating a new FLOGI (bsc#1200045). - scsi: lpfc: Copyright updates for 14.2.0.2 patches (bsc#1200045). - scsi: lpfc: Correct BDE DMA address assignment for GEN_REQ_WQE (bsc#1200045 bsc#1198989 bsc#1197675). - scsi: lpfc: Correct CRC32 calculation for congestion stats (bsc#1200045). - scsi: lpfc: Decrement outstanding gidft_inp counter if lpfc_err_lost_link() (bsc#1200045). - scsi: lpfc: Expand setting ELS_ID field in ELS_REQUEST64_WQE (bsc#1200045). - scsi: lpfc: Fill in missing ndlp kref puts in error paths (bsc#1200045). - scsi: lpfc: Fix additional reference counting in lpfc_bsg_rport_els() (bsc#1200045). - scsi: lpfc: Fix call trace observed during I/O with CMF enabled (bsc#1200045). - scsi: lpfc: Fix diagnostic fw logging after a function reset (bsc#1200045). - scsi: lpfc: Fix dmabuf ptr assignment in lpfc_ct_reject_event() (bsc#1200045). - scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4() (bsc#1200045). - scsi: lpfc: Fix field overload in lpfc_iocbq data structure (bsc#1200045). - scsi: lpfc: Fix ndlp put following a LOGO completion (bsc#1200045). - scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI (bsc#1200045). - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() (bsc#1200045). - scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock (bsc#1200045). - scsi: lpfc: Fix split code for FLOGI on FCoE (bsc#1200045 bsc#1198989 bsc#1197675). - scsi: lpfc: Inhibit aborts if external loopback plug is inserted (bsc#1200045). - scsi: lpfc: Introduce FC_RSCN_MEMENTO flag for tracking post RSCN completion (bsc#1200045). - scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() (bsc#1200045). - scsi: lpfc: Move MI module parameter check to handle dynamic disable (bsc#1200045). - scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT (bsc#1200045). - scsi: lpfc: Refactor cleanup of mailbox commands (bsc#1200045). - scsi: lpfc: Register for Application Services FC-4 type in Fabric topology (bsc#1200045). - scsi: lpfc: Remove false FDMI NVMe FC-4 support for NPIV ports (bsc#1200045). - scsi: lpfc: Remove redundant lpfc_sli_prep_wqe() call (bsc#1200045). - scsi: lpfc: Remove unnecessary null ndlp check in lpfc_sli_prep_wqe() (bsc#1200045). - scsi: lpfc: Remove unnecessary NULL pointer assignment for ELS_RDF path (bsc#1200045). - scsi: lpfc: Remove unneeded variable (bsc#1200045). - scsi: lpfc: Requeue SCSI I/O to upper layer when fw reports link down (bsc#1200045). - scsi: lpfc: Revise FDMI reporting of supported port speed for trunk groups (bsc#1200045). - scsi: lpfc: Rework FDMI initialization after link up (bsc#1200045). - scsi: lpfc: Transition to NPR state upon LOGO cmpl if link down or aborted (bsc#1200045). - scsi: lpfc: Tweak message log categories for ELS/FDMI/NVMe rescan (bsc#1200045). - scsi: lpfc: Update fc_prli_sent outstanding only after guaranteed IOCB submit (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.2 (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.3 (bsc#1200045). - scsi: lpfc: Update stat accounting for READ_STATUS mbox command (bsc#1200045). - scsi: lpfc: Use list_for_each_entry_safe() in rscn_recovery_check() (bsc#1200045). - scsi: lpfc: Use sg_dma_address() and sg_dma_len() macros for NVMe I/O (bsc#1200045). - scsi: lpfc: Zero SLI4 fcp_cmnd buffer's fcpCntl0 field (bsc#1200045). - scsi: pm8001: Fix abort all task initialization (git-fixes). - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() (git-fixes). - scsi: pm8001: Fix command initialization in pm80XX_send_read_log() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_set_sas_protocol_timer_config() (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update() (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() (git-fixes). - scsi: pm80xx: Enable upper inbound, outbound queues (git-fixes). - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63 (git-fixes). - scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200046). - scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200046). - scsi: qla2xxx: Remove free_sg command flag (bsc#1200046). - scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200046). - scsi: sr: Do not leak information in ioctl (git-fixes). - scsi: ufs: core: Exclude UECxx from SFR dump list (git-fixes). - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled (git-fixes). - scsi: ufs: qcom: Fix ufs_qcom_resume() (git-fixes). - scsi: virtio-scsi: Eliminate anonymous module_init & module_exit (git-fixes). - scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (git-fixes). - selftests: firmware: Use smaller dictionary for XZ compression (git-fixes). - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485 (git-fixes). - serial: 8250_mtk: Fix register address for XON/XOFF character (git-fixes). - serial: 8250_mtk: Fix UART_EFR register address (git-fixes). - serial: 8250: Also set sticky MCR bits in console restoration (git-fixes). - serial: 8250: core: Remove unneeded &lt;linux/pm_runtime.h> (git-fixes). - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device (git-fixes). - serial: 8250: pxa: Remove unneeded &lt;linux/pm_runtime.h> (git-fixes). - serial: digicolor-usart: Do not allow CS5-6 (git-fixes). - serial: imx: fix overrun interrupts in DMA mode (git-fixes). - serial: meson: acquire port->lock in startup() (git-fixes). - serial: pch: do not overwrite xmit->buf[0] by x_char (git-fixes). - serial: rda-uart: Do not allow CS5-6 (git-fixes). - serial: sh-sci: Do not allow CS5-6 (git-fixes). - serial: sifive: Sanitize CSIZE and c_iflag (git-fixes). - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7 (git-fixes). - serial: stm32-usart: Correct CSIZE, bits, and parity (git-fixes). - serial: txx9: Do not allow CS5-6 (git-fixes). - slimbus: qcom: Fix IRQ check in qcom_slim_probe (git-fixes). - smp: Fix offline cpu check in flush_smp_call_function_queue() (git-fixes). - smsc911x: allow using IRQ0 (git-fixes). - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc (git-fixes). - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc (git-fixes). - soc: rockchip: Fix refcount leak in rockchip_grf_init (git-fixes). - spi: img-spfi: Fix pm_runtime_get_sync() error checking (git-fixes). - spi: spi-cadence: Fix kernel-doc format for resume/suspend (git-fixes). - spi: spi-fsl-qspi: check return value after calling platform_get_resource_byname() (git-fixes). - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout (git-fixes). - staging: fieldbus: Fix the error handling path in anybuss_host_common_probe() (git-fixes). - SUNRPC: Ensure gss-proxy connects on setup (git-fixes). - SUNRPC: Ensure that the gssproxy client can start in a connected state (git-fixes). - thermal: int340x: Fix attr.show callback prototype (git-fixes). - thermal/drivers/bcm2711: Do not clamp temperature at zero (git-fixes). - thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe (git-fixes). - timekeeping: Really make sure wall_to_monotonic isn't (git-fixes) - timers: Fix warning condition in __run_timers() (git-fixes) - tpm: Fix buffer access in tpm2_get_tpm_pt() (git-fixes). - tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe() (bsc#1065729). - tracing: Fix potential double free in create_var_ref() (git-fixes). - tracing: Fix return value of trace_pid_write() (git-fixes). - tty: fix deadlock caused by calling printk() under tty_port->lock (git-fixes). - tty: goldfish: Use tty_port_destroy() to destroy port (git-fixes). - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id and ida_simple_get (git-fixes). - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe (git-fixes). - tty/serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe() (git-fixes). - usb: cdc-wdm: fix reading stuck on device close (git-fixes). - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking (git-fixes). - usb: ehci-omap: drop unused ehci_read() function (git-fixes). - usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind() (git-fixes). - usb: misc: fix improper handling of refcount in uss720_probe() (git-fixes). - usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes). - usb: musb: Fix missing of_node_put() in omap2430_probe (git-fixes). - usb: quirks: add a Realtek card reader (git-fixes). - usb: quirks: add STRING quirk for VCOM device (git-fixes). - usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes). - usb: serial: option: add Fibocom L610 modem (git-fixes). - usb: serial: option: add Fibocom MA510 modem (git-fixes). - usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes). - usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions (git-fixes). - usb: serial: pl2303: add device id for HP LM930 Display (git-fixes). - usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes). - usb: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS (git-fixes). - usb: storage: karma: fix rio_karma_init return (git-fixes). - usb: typec: mux: Check dev_set_name() return value (git-fixes). - usb: typec: tcpci: Do not skip cleanup in .remove() on error (git-fixes). - usb: typec: ucsi: Fix reuse of completion structure (git-fixes). - usb: typec: ucsi: Fix role swapping (git-fixes). - usb: usbip: add missing device lock on tweak configuration cmd (git-fixes). - usb: usbip: fix a refcount leak in stub_probe() (git-fixes). - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup (git-fixes). - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe (git-fixes). - wifi: mac80211: fix use-after-free in chanctx code (git-fixes). - wireguard: device: check for metadata_dst with skb_valid_dst() (git-fixes). - xhci: increase usb U3 -> U0 link resume timeout from 100ms to 500ms (git-fixes). - xhci: stop polling roothubs after shutdown (git-fixes). cluster-md-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-5.3.18-150300.59.71.2.nosrc.rpm True kernel-preempt-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.71.2.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.71.2.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.71.2.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.71.1.src.rpm True dtb-al-5.3.18-150300.59.71.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.71.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.71.2.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.71.2.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.71.2.aarch64.rpm True openSUSE-SLE-15.4-2022-2633 moderate SUSE Updates openSUSE-SLE 15.4 This update for mokutil fixes the following issues: - Adds SBAT revocation support to mokutil. (bsc#1198458) New options added (see manpage): - mokutil --set-sbat-policy (latest | previous | delete) to set the SBAT acceptance policy. - mokutil --list-sbat-revocations To list the current SBAT revocations. mokutil-0.5.0-150400.3.3.1.src.rpm mokutil-0.5.0-150400.3.3.1.x86_64.rpm mokutil-0.5.0-150400.3.3.1.ppc64le.rpm mokutil-0.5.0-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2298 important SUSE Updates openSUSE-SLE 15.4 This update for liblouis fixes the following issues: - CVE-2022-26981: fix buffer overrun in compilePassOpcode (bsc#1197085). - CVE-2022-31783: prevent an invalid memory write in compileRule (bsc#1200120). liblouis-3.20.0-150400.3.3.1.src.rpm liblouis-data-3.20.0-150400.3.3.1.noarch.rpm liblouis-devel-3.20.0-150400.3.3.1.x86_64.rpm liblouis-doc-3.20.0-150400.3.3.1.x86_64.rpm liblouis-tools-3.20.0-150400.3.3.1.x86_64.rpm liblouis20-3.20.0-150400.3.3.1.x86_64.rpm python3-louis-3.20.0-150400.3.3.1.x86_64.rpm liblouis-devel-3.20.0-150400.3.3.1.s390x.rpm liblouis-doc-3.20.0-150400.3.3.1.s390x.rpm liblouis-tools-3.20.0-150400.3.3.1.s390x.rpm liblouis20-3.20.0-150400.3.3.1.s390x.rpm python3-louis-3.20.0-150400.3.3.1.s390x.rpm liblouis-devel-3.20.0-150400.3.3.1.ppc64le.rpm liblouis-doc-3.20.0-150400.3.3.1.ppc64le.rpm liblouis-tools-3.20.0-150400.3.3.1.ppc64le.rpm liblouis20-3.20.0-150400.3.3.1.ppc64le.rpm python3-louis-3.20.0-150400.3.3.1.ppc64le.rpm liblouis-devel-3.20.0-150400.3.3.1.aarch64.rpm liblouis-doc-3.20.0-150400.3.3.1.aarch64.rpm liblouis-tools-3.20.0-150400.3.3.1.aarch64.rpm liblouis20-3.20.0-150400.3.3.1.aarch64.rpm python3-louis-3.20.0-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2184 important SUSE Updates openSUSE-SLE 15.4 This update for liblouis fixes the following issues: - CVE-2022-26981: fix buffer overrun in compilePassOpcode (bsc#1197085). - CVE-2022-31783: prevent an invalid memory write in compileRule (bsc#1200120). liblouis-3.11.0-150200.3.3.1.src.rpm liblouis19-3.11.0-150200.3.3.1.x86_64.rpm liblouis19-3.11.0-150200.3.3.1.s390x.rpm liblouis19-3.11.0-150200.3.3.1.ppc64le.rpm liblouis19-3.11.0-150200.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2252 important SUSE Updates openSUSE-SLE 15.4 This update for liblouis fixes the following issues: - CVE-2022-26981: fix buffer overrun in compilePassOpcode (bsc#1197085). - CVE-2022-31783: prevent an invalid memory write in compileRule (bsc#1200120). liblouis-3.3.0-150000.4.8.1.src.rpm liblouis14-3.3.0-150000.4.8.1.x86_64.rpm liblouis14-3.3.0-150000.4.8.1.s390x.rpm liblouis14-3.3.0-150000.4.8.1.ppc64le.rpm liblouis14-3.3.0-150000.4.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-2520 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP4 kernel was updated. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-34918: Fixed a buffer overflow with nft_set_elem_init() that could be used by a local attacker to escalate privileges (bnc#1201171). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). - CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges (bsc#1201251). - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem (bnc#1198829). - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762). - CVE-2022-33743: Fixed a Denial of Service related to XDP (bsc#1200763). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bnc#1199487). - CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bnc#1200619). - CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692) - CVE-2022-1012: Fixed information leak caused by small table perturb size in the TCP source port generation algorithm (bsc#1199482). - CVE-2022-1998: Fixed a use after free in the file system notify functionality (bnc#1200284). - CVE-2022-1966: Fixed a use-after-free vulnerability in the Netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-1852: Fixed a null-ptr-deref in the kvm module which can lead to DoS. (bsc#1199875) - CVE-2022-1789: Fixed a NULL pointer dereference when shadow paging is enabled. (bnc#1199674) - CVE-2022-1508: Fixed an out-of-bounds read flaw that could cause the system to crash. (bsc#1198968) - CVE-2022-1671: Fixed a null-ptr-deref bugs in net/rxrpc/server_key.c, unprivileged users could easily trigger it via ioctl. (bsc#1199439) - CVE-2022-1651: Fixed a bug in ACRN Device Model emulates virtual NICs in VM. This flaw may allow a local privileged attacker to leak kernel unauthorized information and also cause a denial of service problem. (bsc#1199433) - CVE-2022-29582: Fixed a use-after-free due to a race condition in io_uring timeouts. This can be triggered by a local user who has no access to any user namespace; however, the race condition perhaps can only be exploited infrequently. (bnc#1198811) - CVE-2022-0494: Fixed a kernel information leak flaw in the scsi_ioctl function. This flaw allowed a local attacker with a special user privilege to create issues with confidentiality. (bnc#1197386) - CVE-2021-4204: Fixed a vulnerability that allows local attackers to escalate privileges on affected installations via ebpf. (bnc#1194111) - CVE-2022-23222: Fixed a bug that allowed local users to gain privileges. (bnc#1194765) - CVE-2022-0264: Fixed a vulnerability in the Linux kernel's eBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating some of the exploit mitigations in place for the kernel. (bnc#1194826) - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197227) - CVE-2022-1205: Fixed null pointer dereference and use-after-free vulnerabilities that allow an attacker to crash the linux kernel by simulating Amateur Radio. (bsc#1198027) - CVE-2022-1198: Fixed an use-after-free vulnerability that allow an attacker to crash the linux kernel by simulating Amateur Radio (bsc#1198030). - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505). - CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426). - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144) - CVE-2022-21499: Reinforce the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb. (bsc#1199426) - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware download routine. (bnc#1199605) - CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987). - CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079) - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could crash the system or corrupt the system memory. (bsc#1196830) - CVE-2021-45402: The check_alu_op function in kernel/bpf/verifier.c did not properly update bounds while handling the mov32 instruction, which allowed local users to obtain potentially sensitive address information (bsc#1196130). The following non-security bugs were fixed: - ACPI: APEI: fix return value of __setup handlers (git-fixes). - ACPI/APEI: Limit printable size of BERT table data (git-fixes). - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3 (git-fixes). - ACPI: bus: Avoid using CPPC if not supported by firmware (bsc#1199793). - ACPICA: Avoid cache flush inside virtual machines (git-fixes). - ACPICA: Avoid walking the ACPI Namespace if it is not there (git-fixes). - ACPI: CPPC: Assume no transition latency if no PCCT (git-fixes). - ACPI: CPPC: Avoid out of bounds access when parsing _CPC data (git-fixes). - ACPI: docs: enumeration: Amend PWM enumeration ASL example (git-fixes). - ACPI: docs: enumeration: Discourage to use custom _DSM methods (git-fixes). - ACPI: docs: enumeration: Remove redundant .owner assignment (git-fixes). - ACPI: docs: enumeration: Update UART serial bus resource documentation (git-fixes). - ACPI/IORT: Check node revision for PMCG resources (git-fixes). - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default (git-fixes). - ACPI: PM: Revert "Only mark EC GPE for wakeup on Intel systems" (git-fixes). - ACPI: PM: s2idle: Cancel wakeup before dispatching EC GPE (git-fixes). - ACPI: processor idle: Allow playing dead in C3 state (git-fixes). - ACPI: processor: idle: Avoid falling back to C3 type C-states (git-fixes). - ACPI: processor idle: Check for architectural support for LPI (git-fixes). - ACPI: processor: idle: fix lockup regression on 32-bit ThinkPad T40 (git-fixes). - ACPI: properties: Consistently return -ENOENT if there are no more references (git-fixes). - ACPI: property: Release subnode properties with data nodes (git-fixes). - ACPI: sysfs: Fix BERT error region memory mapping (git-fixes). - ACPI: video: Change how we determine if brightness key-presses are handled (git-fixes). - ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU (git-fixes). - ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board (git-fixes). - af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register (git-fixes). - aio: Fix incorrect usage of eventfd_signal_allowed() (git-fixes). - ALSA: cmipci: Restore aux vol on suspend/resume (git-fixes). - ALSA: core: Add snd_card_free_on_error() helper (git-fixes). - ALSA: cs4236: fix an incorrect NULL check on list iterator (git-fixes). - ALSA: ctxfi: Add SB046x PCI ID (git-fixes). - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction (git-fixes). - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes (git-fixes). - ALSA: hda: Add AlderLake-PS variant PCI ID (git-fixes). - ALSA: hda: Add PCI and HDMI IDs for Intel Raptor Lake (git-fixes). - ALSA: hda: Avoid unsol event during RPM suspending (git-fixes). - ALSA: hda/conexant - Fix loopback issue with CX20632 (git-fixes). - ALSA: hda/conexant: Fix missing beep setup (git-fixes). - ALSA: hda: Fix discovery of i915 graphics PCI device (bsc#1200611). - ALSA: hda: Fix driver index handling at re-binding (git-fixes). - ALSA: hda: Fix missing codec probe on Shenker Dock 15 (git-fixes). - ALSA: hda: Fix regression on forced probe mask option (git-fixes). - ALSA: hda: Fix signedness of sscanf() arguments (git-fixes). - ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes). - ALSA: hda/hdmi: fix warning about PCM count when used with SOF (git-fixes). - ALSA: hda/i915: Fix one too many pci_dev_put() (git-fixes). - ALSA: hda/i915 - skip acomp init if no matching display (git-fixes). - ALSA: hda: intel-dspcfg: use SOF for UpExtreme and UpExtreme11 boards (git-fixes). - ALSA: hda: intel-dsp-config: update AlderLake PCI IDs (git-fixes). - ALSA: hda: intel-nhlt: remove use of __func__ in dev_dbg (git-fixes). - ALSA: hda/realtek: Add alc256-samsung-headphone fixup (git-fixes). - ALSA: hda/realtek - Add HW8326 support (git-fixes). - ALSA: hda/realtek: Add missing fixup-model entry for Gigabyte X570 ALC1220 quirks (git-fixes). - ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop (git-fixes). - ALSA: hda/realtek - Add new type for ALC245 (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GA402 (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GU603 (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP70PNP (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NS50PU (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD50PNT (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD70PNT (git-fixes). - ALSA: hda/realtek: Add quirk for Dell Latitude 7520 (git-fixes). - ALSA: hda/realtek: Add quirk for HP Dev One (git-fixes). - ALSA: hda/realtek: Add quirk for Legion Y9000X 2019 (git-fixes). - ALSA: hda/realtek: add quirk for Lenovo Thinkpad X12 speakers (git-fixes). - ALSA: hda/realtek: Add quirk for the Framework Laptop (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise (git-fixes). - ALSA: hda/realtek: Add quirk for Yoga Duet 7 13ITL6 speakers (git-fixes). - ALSA: hda/realtek - ALC897 headset MIC no sound (git-fixes). - ALSA: hda/realtek: Apply fixup for Lenovo Yoga Duet 7 properly (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop (git-fixes). - ALSA: hda/realtek: Enable headset mic on Lenovo P360 (git-fixes). - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020 (git-fixes). - ALSA: hda/realtek: Fix deadlock by COEF mutex (bsc#1195913). - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo Yoga DuetITL 2021 (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes). - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS (git-fixes). - ALSA: hda: realtek: Fix race at concurrent COEF updates (git-fixes). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine (git-fixes). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machines (git-fixes). - ALSA: hda/realtek: Fix silent output on Gigabyte X570 Aorus Xtreme after reboot from Windows (git-fixes). - ALSA: hda/realtek: Fix silent output on Gigabyte X570S Aorus Master (newer chipset) (git-fixes). - ALSA: hda: Set max DMA segment size (git-fixes). - ALSA: hda: Skip codec shutdown in case the codec is not registered (git-fixes). - ALSA: hda/via: Fix missing beep setup (git-fixes). - ALSA: intel_hdmi: Fix reference to PCM buffer address (git-fixes). - ALSA: memalloc: Fix dma_need_sync() checks (bsc#1195913). - ALSA: memalloc: invalidate SG pages before sync (bsc#1195913). - ALSA: oss: Fix PCM OSS buffer allocation overflow (git-fixes). - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec (git-fixes). - ALSA: pcm: Add stream lock during PCM reset ioctl operations (git-fixes). - ALSA: pcm: Check for null pointer of pointer substream before dereferencing it (git-fixes). - ALSA: pcm: Fix races among concurrent hw_params and hw_free calls (git-fixes). - ALSA: pcm: Fix races among concurrent prealloc proc writes (git-fixes). - ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls (git-fixes). - ALSA: pcm: Fix races among concurrent read/write and buffer changes (git-fixes). - ALSA: pcm: Test for "silence" field in struct "pcm_format_data" (git-fixes). - ALSA: spi: Add check for clk_enable() (git-fixes). - ALSA: usb-audio: add mapping for MSI MAG X570S Torpedo MAX (git-fixes). - ALSA: usb-audio: add mapping for new Corsair Virtuoso SE (git-fixes). - ALSA: usb-audio: Add missing ep_idx in fixed EP quirks (git-fixes). - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB (git-fixes). - ALSA: usb-audio: Add quirk bits for enabling/disabling generic implicit fb (git-fixes). - ALSA: usb-audio: Cancel pending work at closing a MIDI substream (git-fixes). - ALSA: usb-audio: Cap upper limits of buffer/period bytes for implicit fb (git-fixes). - ALSA: usb-audio: Clear MIDI port active flag after draining (git-fixes). - ALSA: usb-audio: Configure sync endpoints before data (git-fixes). - ALSA: usb-audio: Correct quirk for VF0770 (git-fixes). - ALSA: usb-audio: Do not abort resume upon errors (bsc#1195913). - ALSA: usb-audio: Do not get sample rate for MCT Trigger 5 USB-to-HDMI (git-fixes). - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - ALSA: usb-audio: Increase max buffer size (git-fixes). - ALSA: usb-audio: initialize variables that could ignore errors (git-fixes). - ALSA: usb-audio: Limit max buffer and period sizes per time (git-fixes). - ALSA: usb-audio: Move generic implicit fb quirk entries into quirks.c (git-fixes). - ALSA: usb-audio: Optimize TEAC clock quirk (git-fixes). - ALSA: usb-audio: Restore Rane SL-1 quirk (git-fixes). - ALSA: usb-audio: revert to IMPLICIT_FB_FIXED_DEV for M-Audio FastTrack Ultra (git-fixes). - ALSA: usb-audio: Set up (implicit) sync for Saffire 6 (git-fixes). - ALSA: usb-audio: Skip generic sync EP parse for secondary EP (git-fixes). - ALSA: usb-audio: US16x08: Move overflow check before array access (git-fixes). - ALSA: usb-audio: Workaround for clock setup on TEAC devices (git-fixes). - ALSA: wavefront: Proper check of get_user() error (git-fixes). - ALSA: x86: intel_hdmi_audio: enable pm_runtime and set autosuspend delay (git-fixes). - ALSA: x86: intel_hdmi_audio: use pm_runtime_resume_and_get() (git-fixes). - alx: acquire mutex for alx_reinit in alx_change_mtu (git-fixes). - amd/display: set backlight only if required (git-fixes). - arch/arm64: Fix topology initialization for core scheduling (git-fixes). - arm64: Add Cortex-A510 CPU part definition (git-fixes). - arm64: Add part number for Arm Cortex-A78AE (git-fixes). - arm64: Add support for user sub-page fault probing (git-fixes) - arm64: alternatives: mark patch_alternative() as `noinstr` (git-fixes). - arm64: avoid fixmap race condition when create pud mapping (git-fixes). - arm64: compat: Do not treat syscall number as ESR_ELx for a bad syscall (git-fixes). - arm64: Correct wrong label in macro __init_el2_gicv3 (git-fixes). - arm64: defconfig: build imx-sdma as a module (git-fixes). - arm64: do not abuse pfn_valid() to ensure presence of linear map (git-fixes). - arm64: Do not defer reserve_crashkernel() for platforms with no DMA memory zones (git-fixes). - arm64: Do not include __READ_ONCE() block in assembly files (git-fixes). - arm64: dts: agilex: use the compatible "intel,socfpga-agilex-hsotg" (git-fixes). - arm64: dts: armada-3720-turris-mox: Add missing ethernet0 alias (git-fixes). - arm64: dts: broadcom: bcm4908: use proper TWD binding (git-fixes). - arm64: dts: broadcom: Fix sata nodename (git-fixes). - arm64: dts: imx8mm-beacon: Enable RTS-CTS on UART3 (git-fixes). - arm64: dts: imx8mm-venice: fix spi2 pin configuration (git-fixes) - arm64: dts: imx8mn-beacon: Enable RTS-CTS on UART3 (git-fixes). - arm64: dts: imx8mn-ddr4-evk: Describe the 32.768 kHz PMIC clock (git-fixes) - arm64: dts: imx8mn: Fix SAI nodes (git-fixes) - arm64: dts: imx8mp-evk: correct eqos pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct gpio-led pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct I2C1 pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct I2C3 pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct mmc pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct the uart2 pinctl value (git-fixes). - arm64: dts: imx8mp-evk: correct vbus pad settings (git-fixes). - arm64: dts: imx8mp-phyboard-pollux-rdk: correct eqos pad settings (git-fixes). - arm64: dts: imx8mp-phyboard-pollux-rdk: correct i2c2 & mmc settings (git-fixes). - arm64: dts: imx8mp-phyboard-pollux-rdk: correct uart pad settings (git-fixes). - arm64: dts: imx8mq: fix lcdif port node (git-fixes). - arm64: dts: imx8qm: Correct SCU clock controller's compatible (git-fixes) - arm64: dts: imx: Fix imx8*-var-som touchscreen property sizes (git-fixes). - arm64: dts: juno: Remove GICv2m dma-range (git-fixes). - arm64: dts: ls1028a-qds: move rtc node to the correct i2c bus (git-fixes). - arm64: dts: ls1043a: Update i2c dma properties (git-fixes). - arm64: dts: ls1046a: Update i2c node dma properties (git-fixes). - arm64: dts: marvell: armada-37xx: Remap IO space to bus address 0x0 (git-fixes). - arm64: dts: marvell: espressobin-ultra: enable front USB3 port (git-fixes). - arm64: dts: marvell: espressobin-ultra: fix SPI-NOR config (git-fixes). - arm64: dts: meson-g12: add ATF BL32 reserved-memory region (git-fixes). - arm64: dts: meson-g12b-odroid-n2: fix typo 'dio2133' (git-fixes). - arm64: dts: meson-g12: drop BL32 region from SEI510/SEI610 (git-fixes). - arm64: dts: meson-gx: add ATF BL32 reserved-memory region (git-fixes). - arm64: dts: meson: remove CPU opps below 1GHz for G12B boards (git-fixes). - arm64: dts: meson: remove CPU opps below 1GHz for SM1 boards (git-fixes). - arm64: dts: meson-sm1-bananapi-m5: fix wrong GPIO domain for GPIOE_2 (git-fixes). - arm64: dts: meson-sm1-bananapi-m5: fix wrong GPIO pin labeling for CON1 (git-fixes). - arm64: dts: meson-sm1-odroid: fix boot loop after reboot (git-fixes). - arm64: dts: meson-sm1-odroid: use correct enable-gpio pin for tf-io regulator (git-fixes). - arm64: dts: mt8192: Fix nor_flash status disable typo (git-fixes). - arm64: dts: ns2: Fix spi-cpol and spi-cpha property (git-fixes). - arm64: dts: qcom: ipq8074: fix the sleep clock frequency (git-fixes). - arm64: dts: qcom: msm8916-huawei-g7: Clarify installation instructions (git-fixes). - arm64: dts: qcom: msm8994: Fix BLSP[12]_DMA channels count (git-fixes). - arm64: dts: qcom: msm8994: Fix CPU6/7 reg values (git-fixes). - arm64: dts: qcom: msm8994: Fix the cont_splash_mem address (git-fixes). - arm64: dts: qcom: msm8996: Drop flags for mdss irqs (git-fixes). - arm64: dts: qcom: msm8996: remove snps,dw-pcie compatibles (git-fixes). - arm64: dts: qcom: pm8350c: stop depending on thermal_zones label (git-fixes). - arm64: dts: qcom: pmr735a: stop depending on thermal_zones label (git-fixes). - arm64: dts: qcom: qrb5165-rb5: Fix can-clock node name (git-fixes). - arm64: dts: qcom: sdm845-db845c: add wifi variant property (git-fixes). - arm64: dts: qcom: sdm845: Drop flags for mdss irqs (git-fixes). - arm64: dts: qcom: sdm845: fix microphone bias properties and values (git-fixes). - arm64: dts: qcom: sdm845: remove snps,dw-pcie compatibles (git-fixes). - arm64: dts: qcom: sdm845-xiaomi-beryllium: fix typo in panel's vddio-supply property (git-fixes). - arm64: dts: qcom: sm8150: Correct TCS configuration for apps rsc (git-fixes). - arm64: dts: qcom: sm8250: Drop flags for mdss irqs (git-fixes). - arm64: dts: qcom: sm8250: Fix MSI IRQ for PCIe1 and PCIe2 (git-fixes). - arm64: dts: qcom: sm8250: fix PCIe bindings to follow schema (git-fixes). - arm64: dts: qcom: sm8350: Correct TCS configuration for apps rsc (git-fixes). - arm64: dts: qcom: sm8350: Correct UFS symbol clocks (git-fixes). - arm64: dts: qcom: sm8350: Describe GCC dependency clocks (git-fixes). - arm64: dts: qcom: sm8350: Shorten camera-thermal-bottom name (git-fixes). - arm64: dts: renesas: Fix thermal bindings (git-fixes). - arm64: dts: renesas: ulcb-kf: fix wrong comment (git-fixes). - arm64: dts: rockchip: align pl330 node name with dtschema (git-fixes). - arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity (git-fixes). - arm64: dts: rockchip: fix rk3399-puma-haikou USB OTG mode (git-fixes). - arm64: dts: rockchip: Fix SDIO regulator supply properties on rk3399-firefly (git-fixes). - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399 (git-fixes). - arm64: dts: rockchip: reorder rk3399 hdmi clocks (git-fixes). - arm64: dts: rockchip: Switch RK3399-Gru DP to SPDIF output (git-fixes). - arm64: dts: ti: j7200-main: Fix 'dtbs_check' serdes_ln_ctrl node (git-fixes). - arm64: dts: ti: j721e-main: Fix 'dtbs_check' in serdes_ln_ctrl node (git-fixes). - arm64: dts: ti: k3-am64: Fix gic-v3 compatible regs (git-fixes). - arm64: dts: ti: k3-am64-main: Remove support for HS400 speed mode (git-fixes). - arm64: dts: ti: k3-am64-mcu: remove incorrect UART base clock rates (git-fixes). - arm64: dts: ti: k3-am65: Fix gic-v3 compatible regs (git-fixes). - arm64: dts: ti: k3-j7200: Fix gic-v3 compatible regs (git-fixes). - arm64: dts: ti: k3-j721e: Fix gic-v3 compatible regs (git-fixes). - arm64: Enable repeat tlbi workaround on KRYO4XX gold CPUs (git-fixes). - arm64: Ensure execute-only permissions are not allowed without EPAN (git-fixes) - arm64: fix clang warning about TRAMP_VALIAS (git-fixes). - arm64: fix types in copy_highpage() (git-fixes). - arm64: ftrace: consistently handle PLTs (git-fixes). - arm64: ftrace: fix branch range checks (git-fixes). - arm64: kasan: fix include error in MTE functions (git-fixes). - arm64: kvm: keep the field workaround_flags in structure kvm_vcpu_arch (git-fixes). - arm64: Mark start_backtrace() notrace and NOKPROBE_SYMBOL (git-fixes) - arm64: mm: Drop 'const' from conditional arm64_dma_phys_limit definition (git-fixes). - arm64: mm: fix p?d_leaf() (git-fixes). - arm64: module: remove (NOLOAD) from linker script (git-fixes). - arm64: mte: Ensure the cleared tags are visible before setting the PTE (git-fixes). - arm64: paravirt: Use RCU read locks to guard stolen_time (git-fixes). - arm64: patch_text: Fixup last cpu should be master (git-fixes). - arm64: prevent instrumentation of bp hardening callbacks (git-fixes). - arm64: signal: nofpsimd: Do not allocate fp/simd context when not available (git-fixes). - arm64: stackleak: fix current_top_of_stack() (git-fixes). - arm64: supported.conf: mark PHY_FSL_IMX8MQ_USB as supported (bsc#1199909) - arm64: tegra: Add missing DFLL reset on Tegra210 (git-fixes). - arm64: tegra: Adjust length of CCPLEX cluster MMIO region (git-fixes). - arm64: Update config files. (bsc#1199909) Add pfuze100 regulator as module - arm64: vdso: fix makefile dependency on vdso.so (git-fixes). - ARM: 9178/1: fix unmet dependency on BITREVERSE for HAVE_ARCH_BITREVERSE (git-fixes). - ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions (git-fixes). - ARM: 9187/1: JIVE: fix return value of __setup handler (git-fixes). - ARM: 9191/1: arm/stacktrace, kasan: Silence KASAN warnings in unwind_frame() (git-fixes). - ARM: 9196/1: spectre-bhb: enable for Cortex-A15 (git-fixes). - ARM: 9197/1: spectre-bhb: fix loop8 sequence for Thumb2 (git-fixes). - ARM: at91: fix soc detection for SAM9X60 SiPs (git-fixes). - ARM: at91: pm: use proper compatible for sama5d2's rtc (git-fixes). - ARM: at91: pm: use proper compatibles for sam9x60's rtc and rtt (git-fixes). - ARM: boot: dts: bcm2711: Fix HVS register range (git-fixes). - ARM: cns3xxx: Fix refcount leak in cns3xxx_init (git-fixes). - ARM: configs: multi_v5_defconfig: re-enable CONFIG_V4L_PLATFORM_DRIVERS (git-fixes). - ARM: configs: multi_v5_defconfig: re-enable DRM_PANEL and FB_xxx (git-fixes). - ARM: config: u8500: Re-enable AB8500 battery charging (git-fixes). - ARM: davinci: da850-evm: Avoid NULL pointer dereference (git-fixes). - ARM: Do not use NOCROSSREFS directive with ld.lld (git-fixes). - ARM: dts: am3517-evm: Fix misc pinmuxing (git-fixes). - ARM: dts: aspeed: Add ADC for AST2600 and enable for Rainier and Everest (git-fixes). - ARM: dts: aspeed: Add secure boot controller node (git-fixes). - ARM: dts: aspeed: Add video engine to g6 (git-fixes). - ARM: dts: aspeed: ast2600-evb: Enable RX delay for MAC0/MAC1 (git-fixes). - ARM: dts: aspeed: Fix AST2600 quad spi group (git-fixes). - ARM: dts: aspeed-g6: fix SPI1/SPI2 quad pin group (git-fixes). - ARM: dts: aspeed-g6: remove FWQSPID group in pinctrl dtsi (git-fixes). - ARM: dts: at91: fix pinctrl phandles (git-fixes). - ARM: dts: at91: Map MCLK for wm8731 on at91sam9g20ek (git-fixes). - ARM: dts: at91: sam9x60ek: fix eeprom compatible and size (git-fixes). - ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (git-fixes). - ARM: dts: at91: sama5d2_icp: fix eeprom compatibles (git-fixes). - ARM: dts: at91: sama5d4_xplained: fix pinctrl phandle name (git-fixes). - ARM: dts: bcm2711: Add the missing L1/L2 cache information (git-fixes). - ARM: dts: bcm2711-rpi-400: Fix GPIO line names (git-fixes). - ARM: dts: bcm2835-rpi-b: Fix GPIO line names (git-fixes). - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT (git-fixes). - ARM: dts: bcm2837: Add the missing L1/L2 cache information (git-fixes). - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED (git-fixes). - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C (git-fixes). - ARM: dts: BCM5301X: update CRU block description (git-fixes). - ARM: dts: BCM5301X: Update pin controller node name (git-fixes). - ARM: dts: ci4x10: Adapt to changes in imx6qdl.dtsi regarding fec clocks (git-fixes). - ARM: dts: dra7: Fix suspend warning for vpe powerdomain (git-fixes). - ARM: dts: exynos: add atmel,24c128 fallback to Samsung EEPROM (git-fixes). - ARM: dts: exynos: add missing HDMI supplies on SMDK5250 (git-fixes). - ARM: dts: exynos: add missing HDMI supplies on SMDK5420 (git-fixes). - ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (git-fixes). - ARM: dts: Fix boot regression on Skomer (git-fixes). - ARM: dts: Fix mmc order for omap3-gta04 (git-fixes). - ARM: dts: Fix OpenBMC flash layout label addresses (git-fixes). - ARM: dts: Fix timer regression for beagleboard revision c (git-fixes). - ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (git-fixes). - ARM: dts: imx6dl-colibri: Fix I2C pinmuxing (git-fixes). - ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue (git-fixes). - ARM: dts: imx6qdl: correct PU regulator ramp delay (git-fixes). - ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (git-fixes). - ARM: dts: imx6ull-colibri: fix vqmmc regulator (git-fixes). - ARM: dts: imx7: Move hsic_phy power domain to HSIC PHY node (git-fixes). - ARM: dts: imx7ulp: Fix 'assigned-clocks-parents' typo (git-fixes). - ARM: dts: imx7: Use audio_mclk_post_div instead audio_mclk_root_clk (git-fixes). - ARM: dts: imx8mm-venice-gw{71xx,72xx,73xx}: fix OTG controller OC (git-fixes) - ARM: dts: imx: Add missing LVDS decoder on M53Menlo (git-fixes). - ARM: dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35 (git-fixes). - ARM: dts: meson8b: Fix the UART device-tree schema validation (git-fixes). - ARM: dts: meson8: Fix the UART device-tree schema validation (git-fixes). - ARM: dts: meson: Fix the UART compatible strings (git-fixes). - ARM: dts: ox820: align interrupt controller node name with dtschema (git-fixes). - ARM: dts: qcom: fix gic_irq_domain_translate warnings for msm8960 (git-fixes). - ARM: dts: qcom: ipq4019: fix sleep clock (git-fixes). - ARM: dts: qcom: msm8974: Drop flags for mdss irqs (git-fixes). - ARM: dts: qcom: sdx55: fix IPA interconnect definitions (git-fixes). - ARM: dts: rockchip: fix a typo on rk3288 crypto-controller (git-fixes). - ARM: dts: rockchip: reorder rk322x hmdi clocks (git-fixes). - ARM: dts: s5pv210: align DMA channels with dtschema (git-fixes). - ARM: dts: s5pv210: Correct interrupt name for bluetooth in Aries (git-fixes). - ARM: dts: s5pv210: Remove spi-cs-high on panel in Aries (git-fixes). - ARM: dts: socfpga: align interrupt controller node name with dtschema (git-fixes). - ARM: dts: socfpga: change qspi to "intel,socfpga-qspi" (git-fixes). - ARM: dts: spear1340: Update serial node properties (git-fixes). - ARM: dts: spear13xx: Update SPI dma properties (git-fixes). - ARM: dts: stm32: fix AV96 board SAI2 pin muxing on stm32mp15 (git-fixes). - ARM: dts: stm32: Fix PHY post-reset delay on Avenger96 (git-fixes). - ARM: dts: sun8i: v3s: Move the csi1 block to follow address order (git-fixes). - ARM: dts: suniv: F1C100: fix watchdog compatible (git-fixes). - ARM: dts: switch timer config to common devkit8000 devicetree (git-fixes). - ARM: dts: Use 32KiHz oscillator on devkit8000 (git-fixes). - ARM: exynos: Fix refcount leak in exynos_map_pmu (git-fixes). - ARM: fix build warning in proc-v7-bugs.c (git-fixes). - ARM: fix co-processor register typo (git-fixes). - ARM: Fix kgdb breakpoint for Thumb2 (git-fixes). - ARM: Fix refcount leak in axxia_boot_secondary (git-fixes). - ARM: fix Thumb2 regression with Spectre BHB (git-fixes). - ARM: ftrace: avoid redundant loads or clobbering IP (git-fixes). - ARM: ftrace: ensure that ADR takes the Thumb bit into account (git-fixes). - ARM: hisi: Add missing of_node_put after of_find_compatible_node (git-fixes). - ARM: iop32x: offset IRQ numbers by 1 (git-fixes). - ARM: kprobes: Make space for instruction pointer on stack (bsc#1193277). - ARM: mediatek: select arch timer for mt7629 (git-fixes). - ARM: meson: Fix refcount leak in meson_smp_prepare_cpus (git-fixes). - ARM: mmp: Fix failure to remove sram device (git-fixes). - ARM: mstar: Select HAVE_ARM_ARCH_TIMER (git-fixes). - ARM: mxs_defconfig: Enable the framebuffer (git-fixes). - ARM: omap1: ams-delta: remove camera leftovers (git-fixes). - ARM: OMAP1: clock: Fix UART rate reporting algorithm (git-fixes). - ARM: OMAP2+: adjust the location of put_device() call in omapdss_init_of (git-fixes). - ARM: OMAP2+: Fix refcount leak in omap_gic_of_init (git-fixes). - ARM: OMAP2+: hwmod: Add of_node_put() before break (git-fixes). - ARM: pxa: maybe fix gpio lookup tables (git-fixes). - ARM: socfpga: fix missing RESET_CONTROLLER (git-fixes). - ARM: Spectre-BHB: provide empty stub for non-config (git-fixes). - ARM: tegra: tamonten: Fix I2C3 pad setting (git-fixes). - ARM: vexpress/spc: Avoid negative array index when !SMP (git-fixes). - ASoC: amd: Fix reference to PCM buffer address (git-fixes). - ASoC: amd: vg: fix for pm resume callback sequence (git-fixes). - ASoC: atmel: Add missing of_node_put() in at91sam9g20ek_audio_probe (git-fixes). - ASoC: atmel-classd: Remove endianness flag on class d component (git-fixes). - ASoC: atmel: Fix error handling in sam9x5_wm8731_driver_probe (git-fixes). - ASoC: atmel: Fix error handling in snd_proto_probe (git-fixes). - ASoC: atmel-pdmic: Remove endianness flag on pdmic component (git-fixes). - ASoC: atmel: Remove system clock tree configuration for at91sam9g20ek (git-fixes). - ASoC: atmel_ssc_dai: Handle errors for clk_enable (git-fixes). - ASoC: codecs: Check for error pointer after calling devm_regmap_init_mmio (git-fixes). - ASoC: codecs: lpass-rx-macro: fix sidetone register offsets (git-fixes). - ASoC: codecs: rx-macro: fix accessing array out of bounds for enum type (git-fixes). - ASoC: codecs: rx-macro: fix accessing compander for aux (git-fixes). - ASoC: codecs: va-macro: fix accessing array out of bounds for enum type (git-fixes). - ASoC: codecs: wc938x: fix accessing array out of bounds for enum type (git-fixes). - ASoC: codecs: wcd934x: Add missing of_node_put() in wcd934x_codec_parse_data (git-fixes). - ASoC: codecs: wcd934x: do not switch off SIDO Buck when codec is in use (git-fixes). - ASoC: codecs: wcd934x: fix kcontrol max values (git-fixes). - ASoC: codecs: wcd934x: fix return value of wcd934x_rx_hph_mode_put (git-fixes). - ASoC: codecs: wcd938x: fix return value of mixer put function (git-fixes). - ASoC: cpcap: Check for NULL pointer after calling of_get_child_by_name (git-fixes). - ASoC: cs35l36: Update digital volume TLV (git-fixes). - ASoC: cs4265: Fix the duplicated control name (git-fixes). - ASoC: cs42l51: Correct minimum value for SX volume control (git-fixes). - ASoC: cs42l52: Correct TLV for Bypass Volume (git-fixes). - ASoC: cs42l52: Fix TLV scales for mixer controls (git-fixes). - ASoC: cs42l56: Correct typo in minimum level for SX volume controls (git-fixes). - ASoC: cs53l30: Correct number of volume levels on SX controls (git-fixes). - ASoC: da7219: Fix change notifications for tone generator frequency (git-fixes). - ASoC: dapm: Do not fold register value changes into notifications (git-fixes). - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback (git-fixes). - ASoC: dmaengine: Restore NULL prepare_slave_config() callback (git-fixes). - ASoC: dwc-i2s: Handle errors for clk_enable (git-fixes). - ASoC: es8328: Fix event generation for deemphasis control (git-fixes). - ASoC: fsi: Add check for clk_enable (git-fixes). - ASoC: fsl: Add missing error handling in pcm030_fabric_probe (git-fixes). - ASoC: fsl: Fix refcount leak in imx_sgtl5000_probe (git-fixes). - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition (git-fixes). - ASoC: fsl_spdif: Disable TX clock when stop (git-fixes). - ASoC: fsl: Use dev_err_probe() helper (git-fixes). - ASoC: hdmi-codec: Fix OOB memory accesses (git-fixes). - ASoC: imx-es8328: Fix error return code in imx_es8328_probe() (git-fixes). - ASoC: imx-hdmi: Fix refcount leak in imx_hdmi_probe (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the HP Pro Tablet 408 (git-fixes). - ASoC: intel: skylake: Set max DMA segment size (git-fixes). - ASoC: Intel: soc-acpi: correct device endpoints for max98373 (git-fixes). - ASoC: Intel: sof_sdw: fix quirks for 2022 HP Spectre x360 13" (git-fixes). - ASoC: madera: Add dependencies on MFD (git-fixes). - ASoC: max9759: fix underflow in speaker_gain_control_put() (git-fixes). - ASoC: max98090: Generate notifications on changes for custom control (git-fixes). - ASoC: max98090: Move check for invalid values before casting in max98090_put_enab_tlv() (git-fixes). - ASoC: max98090: Reject invalid values in custom control put() (git-fixes). - ASoC: max98357a: remove dependency on GPIOLIB (git-fixes). - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe (git-fixes). - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe (git-fixes). - ASoC: mediatek: mt6358: add missing EXPORT_SYMBOLs (git-fixes). - ASoC: mediatek: mt8192-mt6359: Fix error handling in mt8192_mt6359_dev_probe (git-fixes). - ASoC: mediatek: use of_device_get_match_data() (git-fixes). - ASoC: meson: Fix event generation for AUI ACODEC mux (git-fixes). - ASoC: meson: Fix event generation for AUI CODEC mux (git-fixes). - ASoC: meson: Fix event generation for G12A tohdmi mux (git-fixes). - ASoC: msm8916-wcd-analog: Fix error handling in pm8916_wcd_analog_spmi_probe (git-fixes). - ASoC: msm8916-wcd-digital: Check failure for devm_snd_soc_register_component (git-fixes). - ASoC: msm8916-wcd-digital: Fix missing clk_disable_unprepare() in msm8916_wcd_digital_probe (git-fixes). - ASoC: mxs: Fix error handling in mxs_sgtl5000_probe (git-fixes). - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe (git-fixes). - ASoC: mxs-saif: Handle errors for clk_enable (git-fixes). - ASoC: nau8822: Add operation for internal PLL off and on (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_sx() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_xr_sx() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() (git-fixes). - ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min (git-fixes). - ASoC: ops: Validate input values in snd_soc_put_volsw_range() (git-fixes). - ASoC: qcom: Actually clear DMA interrupt register for HDMI (git-fixes). - ASoC: rk3328: fix disabling mclk on pclk probe failure (git-fixes). - ASoC: rk817: Fix missing clk_disable_unprepare() in rk817_platform_probe (git-fixes). - ASoC: rk817: Use devm_clk_get() in rk817_platform_probe (git-fixes). - ASoC: rockchip: i2s: Fix missing clk_disable_unprepare() in rockchip_i2s_probe (git-fixes). - ASoC: rsnd: care default case on rsnd_ssiu_busif_err_status_clear() (git-fixes). - ASoC: rsnd: care return value from rsnd_node_fixed_index() (git-fixes). - ASoC: rt1015p: remove dependency on GPIOLIB (git-fixes). - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control (git-fixes). - ASoC: rt5645: Fix errorenous cleanup order (git-fixes). - ASoC: rt5663: check the return value of devm_kzalloc() in rt5663_parse_dp() (git-fixes). - ASoC: rt5668: do not block workqueue if card is unbound (git-fixes). - ASoC: rt5682: do not block workqueue if card is unbound (git-fixes). - ASoC: samsung: Fix refcount leak in aries_audio_probe (git-fixes). - ASoC: samsung: Use dev_err_probe() helper (git-fixes). - ASoC: simple-card: fix probe failure on platform component (git-fixes). - ASoC: simple-card-utils: Set sysclk on all components (git-fixes). - ASoC: soc-compress: Change the check for codec_dai (git-fixes). - ASoC: soc-compress: prevent the potentially use of null pointer (git-fixes). - ASoC: soc-core: skip zero num_dai component in searching dai name (git-fixes). - ASoC: soc-dapm: fix two incorrect uses of list iterator (git-fixes). - ASoC: soc-ops: fix error handling (git-fixes). - ASoC: SOF: Add missing of_node_put() in imx8m_probe (git-fixes). - ASoC: SOF: Fix NULL pointer exception in sof_pci_probe callback (git-fixes). - ASoC: SOF: hda: Set max DMA segment size (git-fixes). - ASoC: SOF: Intel: enable DMI L1 for playback streams (git-fixes). - ASoC: SOF: Intel: Fix build error without SND_SOC_SOF_PCI_DEV (git-fixes). - ASoC: SOF: Intel: Fix NULL ptr dereference when ENOMEM (git-fixes). - ASoC: SOF: Intel: match sdw version on link_slaves_found (git-fixes). - ASoC: SOF: topology: remove redundant code (git-fixes). - ASoC: sti: Fix deadlock via snd_pcm_stop_xrun() call (git-fixes). - ASoC: tas2770: Insert post reset delay (git-fixes). - ASoC: ti: davinci-i2s: Add check for clk_enable() (git-fixes). - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_* (git-fixes). - ASoC: topology: Allow TLV control to be either read or write (git-fixes). - ASoC: topology: Correct error handling in soc_tplg_dapm_widget_create() (git-fixes). - ASoC: topology: Optimize soc_tplg_dapm_graph_elems_load behavior (git-fixes). - ASoC: tscs454: Add endianness flag in snd_soc_component_driver (git-fixes). - ASoC: wm2000: fix missing clk_disable_unprepare() on error in wm2000_anc_transition() (git-fixes). - ASoC: wm8350: Handle error for wm8350_register_irq (git-fixes). - ASoC: wm8958: Fix change notifications for DSP controls (git-fixes). - ASoC: wm8962: Fix suspend while playing music (git-fixes). - ASoC: wm_adsp: Fix event generation for wm_adsp_fw_put() (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Handle sysclk setting (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Make buffer bytes multiple of period bytes (git-fixes). - assoc_array: Fix BUG_ON during garbage collect (git-fixes). - asus-wmi: Add dgpu disable method (bsc#1198058). - asus-wmi: Add egpu enable method (bsc#1198058). - asus-wmi: Add panel overdrive functionality (bsc#1198058). - asus-wmi: Add support for platform_profile (bsc#1198058). - ata: libata: add qc->flags in ata_qc_complete_template tracepoint (git-fixes). - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs (git-fixes). - ata: libata-core: Disable TRIM on M88V29 (git-fixes). - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() (git-fixes). - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files (git-fixes). - ata: pata_hpt37x: disable primary channel on HPT371 (git-fixes). - ata: pata_hpt37x: fix PCI clock detection (git-fixes). - ata: pata_marvell: Check the 'bmdma_addr' beforing reading (git-fixes). - ata: pata_octeon_cf: Fix refcount leak in octeon_cf_probe (git-fixes). - ata: sata_dwc_460ex: Fix crash due to OOB write (git-fixes). - ath10k: Fix error handling in ath10k_setup_msa_resources (git-fixes). - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern (git-fixes). - ath10k: skip ath10k_halt during suspend for driver state RESTARTING (git-fixes). - ath11k: acquire ab->base_lock in unassign when finding the peer by addr (git-fixes). - ath11k: disable spectral scan during spectral deinit (git-fixes). - ath11k: Do not check arvif->is_started before sending management frames (git-fixes). - ath11k: fix kernel panic during unload/load ath11k modules (git-fixes). - ath11k: mhi: use mhi_sync_power_up() (git-fixes). - ath11k: pci: fix crash on suspend if board file is not found (git-fixes). - ath11k: set correct NL80211_FEATURE_DYNAMIC_SMPS for WCN6855 (git-fixes). - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111 (git-fixes). - ath9k: fix ar9003_get_eepmisc (git-fixes). - ath9k: fix QCA9561 PA bias level (git-fixes). - ath9k: Fix usage of driver-private space in tx_info (git-fixes). - ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix (git-fixes). - ath9k_htc: fix uninit value bugs (git-fixes). - ath9k: Properly clear TX status area before reporting to mac80211 (git-fixes). - atl1c: fix tx timeout after link flap on Mikrotik 10/25G NIC (git-fixes). - atm: eni: Add check for dma_map_single (git-fixes). - atm: firestream: check the return value of ioremap() in fs_init() (git-fixes). - atomics: Fix atomic64_{read_acquire,set_release} fallbacks (git-fixes). - audit: ensure userspace is penalized the same as the kernel when under pressure (git-fixes). - audit: improve audit queue handling when "audit=1" on cmdline (git-fixes). - audit: improve robustness of the audit queue handling (git-fixes). - auxdisplay: lcd2s: Fix lcd2s_redefine_char() feature (git-fixes). - auxdisplay: lcd2s: Fix memory leak in ->remove() (git-fixes). - auxdisplay: lcd2s: Use proper API to free the instance of charlcd object (git-fixes). - ax25: Fix NULL pointer dereference in ax25_kill_by_device (git-fixes). - ax25: improve the incomplete fix to avoid UAF and NPD bugs (git-fixes). - b43: Fix assigning negative value to unsigned variable (git-fixes). - b43legacy: Fix assigning negative value to unsigned variable (git-fixes). - bareudp: use ipv6_mod_enabled to check if IPv6 enabled (git-fixes). - batman-adv: Do not expect inter-netns unique iflink indices (git-fixes). - batman-adv: Do not skb_split skbuffs with frag_list (git-fixes). - batman-adv: Request iflink once in batadv_get_real_netdevice (git-fixes). - batman-adv: Request iflink once in batadv-on-batadv check (git-fixes). - bcache: avoid journal no-space deadlock by reserving 1 journal bucket (git-fixes). - bcache: avoid unnecessary soft lockup in kworker update_writeback_rate() (bsc#1197362). - bcache: fixup multiple threads crash (git-fixes). - bcache: fix use-after-free problem in bcache_device_free() (git-fixes). - bcache: improve multithreaded bch_btree_check() (git-fixes). - bcache: improve multithreaded bch_sectors_dirty_init() (git-fixes). - bcache: memset on stack variables in bch_btree_check() and bch_sectors_dirty_init() (git-fixes). - bcache: remove incremental dirty sector counting for bch_sectors_dirty_init() (git-fixes). - bfq: Allow current waker to defend against a tentative one (bsc#1195915). - bfq: Avoid false marking of bic as stably merged (bsc#1197926). - bfq: Avoid merging queues with different parents (bsc#1197926). - bfq: Do not let waker requests skip proper accounting (bsc#1184318). - bfq: Drop pointless unlock-lock pair (bsc#1197926). - bfq: Fix warning in bfqq_request_over_limit() (bsc#1200812). - bfq: Get rid of __bio_blkcg() usage (bsc#1197926). - bfq: Limit number of requests consumed by each cgroup (bsc#1184318). - bfq: Limit waker detection in time (bsc#1184318). - bfq: Make sure bfqg for which we are queueing requests is online (bsc#1197926). - bfq: Relax waker detection for shared queues (bsc#1184318). - bfq: Remove pointless bfq_init_rq() calls (bsc#1197926). - bfq: Split shared queues on move between cgroups (bsc#1197926). - bfq: Store full bitmap depth in bfq_data (bsc#1184318). - bfq: Track number of allocated requests in bfq_entity (bsc#1184318). - bfq: Track whether bfq_group is still online (bsc#1197926). - bfq: Update cgroup information before merging bio (bsc#1197926). - binfmt_flat: do not stop relocating GOT entries prematurely on riscv (git-fixes). - bitfield: add explicit inclusions to the example (git-fixes). - blkcg: Remove extra blkcg_bio_issue_init (bsc#1194585). - blk-cgroup: move blkcg_{get,set}_fc_appid out of line (bsc#1200045). - blk-cgroup: set blkg iostat after percpu stat aggregation (bsc#1198018). - blk-iolatency: Fix inflight count imbalances and IO hangs on offline (bsc#1200825). - blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and disk_release() (bsc#1198034). - blk-mq: do not touch ->tagset in blk_mq_get_sq_hctx (bsc#1200824). - blk-mq: do not update io_ticks with passthrough requests (bsc#1200816). - blk-mq: fix tag_get wait task can't be awakened (bsc#1200263). - blk-mq: Fix wrong wakeup batch configuration which will cause hang (bsc#1200263). - blktrace: fix use after free for struct blk_trace (bsc#1198017). - block: assign bi_bdev for cloned bios in blk_rq_prep_clone (bsc#1198016). - block: avoid to quiesce queue in elevator_init_mq (bsc#1198013). - block, bfq: fix UAF problem in bfqg_stats_init() (bsc#1194583). - block: bio-integrity: Advance seed correctly for larger interval sizes (git-fixes). - block: Check ADMIN before NICE for IOPRIO_CLASS_RT (bsc#1198012). - block: do not delete queue kobject before its children (bsc#1198019). - block: do not merge across cgroup boundaries if blkcg is enabled (bsc#1198020). - block: fix async_depth sysfs interface for mq-deadline (bsc#1198015). - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq (bsc#1200259). - block: Fix handling of offline queues in blk_mq_alloc_request_hctx() (git-fixes). - block: fix ioprio_get(IOPRIO_WHO_PGRP) vs setuid(2) (bsc#1194586). - block: Fix the maximum minor value is blk_alloc_ext_minor() (bsc#1198021). - block: Fix up kabi after blkcg merge fix (bsc#1198020). - block: Hold invalidate_lock in BLKRESETZONE ioctl (bsc#1198010). - block: limit request dispatch loop duration (bsc#1198022). - block/mq-deadline: Improve request accounting further (bsc#1198009). - block: Provide blk_mq_sched_get_icq() (bsc#1184318). - block: update io_ticks when io hang (bsc#1197817). - block/wbt: fix negative inflight counter when remove scsi device (bsc#1197819). - Bluetooth: btintel: Fix WBS setting for Intel legacy ROM products (git-fixes). - Bluetooth: btmtksdio: Fix kernel oops in btmtksdio_interrupt (git-fixes). - Bluetooth: btusb: Add another Realtek 8761BU (git-fixes). - Bluetooth: btusb: Add missing Chicony device for Realtek RTL8723BE (bsc#1196779). - Bluetooth: btusb: Add one more Bluetooth part for the Realtek RTL8852AE (git-fixes). - Bluetooth: btusb: Whitespace fixes for btusb_setup_csr() (git-fixes). - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed (git-fixes). - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout (git-fixes). - Bluetooth: Fix not checking for valid hdev on bt_dev_{info,warn,err,dbg} (git-fixes). - Bluetooth: Fix the creation of hdev->name (git-fixes). - Bluetooth: Fix use after free in hci_send_acl (git-fixes). - Bluetooth: hci_qca: Use del_timer_sync() before freeing (git-fixes). - Bluetooth: hci_serdev: call init_rwsem() before p->open() (git-fixes). - Bluetooth: use hdev lock for accept_list and reject_list in conn req (git-fixes). - Bluetooth: use hdev lock in activate_scan for hci_is_adv_monitoring (git-fixes). - Bluetooth: use memset avoid memory leaks (git-fixes). - bnx2x: fix napi API usage sequence (bsc#1198217). - bnxt_en: Do not destroy health reporters during reset (bsc#1199736). - bnxt_en: Eliminate unintended link toggle during FW reset (bsc#1199736). - bnxt_en: Fix active FEC reporting to ethtool (git-fixes). - bnxt_en: Fix devlink fw_activate (jsc#SLE-18978). - bnxt_en: Fix incorrect multicast rx mask setting when not requested (git-fixes). - bnxt_en: Fix occasional ethtool -t loopback test failures (git-fixes). - bnxt_en: Fix offline ethtool selftest with RDMA enabled (git-fixes). - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag (git-fixes). - bnxt_en: Fix unnecessary dropping of RX packets (git-fixes). - bnxt_en: Increase firmware message response DMA wait time (git-fixes). - bnxt_en: Prevent XDP redirect from running when stopping TX queue (git-fixes). - bnxt_en: reserve space inside receive page for skb_shared_info (git-fixes). - bnxt_en: Restore the resets_reliable flag in bnxt_open() (jsc#SLE-18978). - bnxt_en: Synchronize tx when xdp redirects happen on same ring (git-fixes). - bonding: fix data-races around agg_select_timer (git-fixes). - bonding: force carrier update when releasing slave (git-fixes). - bonding: pair enable_port with slave_arr_updates (git-fixes). - bpf: Add check_func_arg_reg_off function (git-fixes). - bpf: add config to allow loading modules with BTF mismatches (bsc#1194501). - bpf: Avoid races in __bpf_prog_run() for 32bit arches (git-fixes). - bpf: Disallow negative offset in check_ptr_off_reg (git-fixes). - bpf: Fix comment for helper bpf_current_task_under_cgroup() (git-fixes). - bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg (git-fixes). - bpf: Fix PTR_TO_BTF_ID var_off check (git-fixes). - bpf: Fix UAF due to race between btf_try_get_module and load_module (git-fixes). - bpf: Mark PTR_TO_FUNC register initially with zero offset (git-fixes). - bpf: Resolve to prog->aux->dst_prog->type only for BPF_PROG_TYPE_EXT (git-fixes). - bpf: selftests: adapt bpf_iter_task_vma to get_inode_dev() (bsc#1198585). - bpf, selftests: Fix racing issue in btf_skc_cls_ingress test (git-fixes). - bpf, selftests: Update test case for atomic cmpxchg on r0 with pointer (git-fixes). - bpftool: Fix memory leak in prog_dump() (git-fixes). - bpftool: Remove inclusion of utilities.mak from Makefiles (git-fixes). - bpftool: Remove unused includes to bpf/bpf_gen_internal.h (git-fixes). - bpftool: Remove useless #include to perf-sys.h from map_perf_ring.c (git-fixes). - brcmfmac: firmware: Allocate space for default boardrev in nvram (git-fixes). - brcmfmac: firmware: Fix crash in brcm_alt_fw_path (git-fixes). - brcmfmac: pcie: Declare missing firmware files in pcie.c (git-fixes). - brcmfmac: pcie: Fix crashes due to early IRQs (git-fixes). - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path (git-fixes). - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio (git-fixes). - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - btrfs: add a BTRFS_FS_ERROR helper (bsc#1197915). - btrfs: add btrfs_set_item_*_nr() helpers (bsc#1197915). - btrfs: add helper to truncate inode items when logging inode (bsc#1197915). - btrfs: add missing run of delayed items after unlink during log replay (bsc#1197915). - btrfs: add ro compat flags to inodes (bsc#1197915). - btrfs: always update the logged transaction when logging new names (bsc#1197915). - btrfs: assert that extent buffers are write locked instead of only locked (bsc#1197915). - btrfs: avoid attempt to drop extents when logging inode for the first time (bsc#1197915). - btrfs: avoid expensive search when dropping inode items from log (bsc#1197915). - btrfs: avoid expensive search when truncating inode items from the log (bsc#1197915). - btrfs: Avoid live-lock in search_ioctl() on hardware with sub-page (git-fixes) - btrfs: avoid search for logged i_size when logging inode if possible (bsc#1197915). - btrfs: avoid unnecessarily logging directories that had no changes (bsc#1197915). - btrfs: avoid unnecessary lock and leaf splits when updating inode in the log (bsc#1197915). - btrfs: avoid unnecessary log mutex contention when syncing log (bsc#1197915). - btrfs: change error handling for btrfs_delete_*_in_log (bsc#1197915). - btrfs: change handle_fs_error in recover_log_trees to aborts (bsc#1197915). - btrfs: check if a log tree exists at inode_logged() (bsc#1197915). - btrfs: constify and cleanup variables in comparators (bsc#1197915). - btrfs: do not commit delayed inode when logging a file in full sync mode (bsc#1197915). - btrfs: do not log new dentries when logging that a new name exists (bsc#1197915). - btrfs: do not pin logs too early during renames (bsc#1197915). - btrfs: drop the _nr from the item helpers (bsc#1197915). - btrfs: eliminate some false positives when checking if inode was logged (bsc#1197915). - btrfs: factor out the copying loop of dir items from log_dir_items() (bsc#1197915). - btrfs: fix lost prealloc extents beyond eof after full fsync (bsc#1197915). - btrfs: fix lzo_decompress_bio() kmap leakage (bsc#1193852). - btrfs: fix memory leak in __add_inode_ref() (bsc#1197915). - btrfs: fix missing last dir item offset update when logging directory (bsc#1197915). - btrfs: fix re-dirty process of tree-log nodes (bsc#1197915). - btrfs: improve the batch insertion of delayed items (bsc#1197915). - btrfs: insert items in batches when logging a directory when possible (bsc#1197915). - btrfs: introduce btrfs_lookup_match_dir (bsc#1197915). - btrfs: introduce item_nr token variant helpers (bsc#1197915). - btrfs: keep track of the last logged keys when logging a directory (bsc#1197915). - btrfs: loop only once over data sizes array when inserting an item batch (bsc#1197915). - btrfs: make btrfs_file_extent_inline_item_len take a slot (bsc#1197915). - btrfs: only copy dir index keys when logging a directory (bsc#1197915). - btrfs: remove no longer needed checks for NULL log context (bsc#1197915). - btrfs: remove no longer needed full sync flag check at inode_logged() (bsc#1197915). - btrfs: remove no longer needed logic for replaying directory deletes (bsc#1197915). - btrfs: remove redundant log root assignment from log_dir_items() (bsc#1197915). - btrfs: remove root argument from add_link() (bsc#1197915). - btrfs: remove root argument from btrfs_log_inode() and its callees (bsc#1197915). - btrfs: remove root argument from btrfs_unlink_inode() (bsc#1197915). - btrfs: remove root argument from check_item_in_log() (bsc#1197915). - btrfs: remove root argument from drop_one_dir_item() (bsc#1197915). - btrfs: remove the btrfs_item_end() helper (bsc#1197915). - btrfs: remove unnecessary list head initialization when syncing log (bsc#1197915). - btrfs: remove unneeded return variable in btrfs_lookup_file_extent (bsc#1197915). - btrfs: rename btrfs_item_end_nr to btrfs_item_data_end (bsc#1197915). - btrfs: stop doing GFP_KERNEL memory allocations in the ref verify tool (bsc#1197915). - btrfs: unexport setup_items_for_insert() (bsc#1197915). - btrfs: unify lookup return value when dir entry is missing (bsc#1197915). - btrfs: update comment at log_conflicting_inodes() (bsc#1197915). - btrfs: use btrfs_item_size_nr/btrfs_item_offset_nr everywhere (bsc#1197915). - btrfs: use btrfs_next_leaf instead of btrfs_next_item when slots > nritems (bsc#1197915). - btrfs: use single bulk copy operations when logging directories (bsc#1197915). - bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() (git-fixes). - bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create() (git-fixes). - bus: ti-sysc: Fix warnings for unbind for serial (git-fixes). - bus: ti-sysc: Make omap3 gpt12 quirk handling SoC specific (git-fixes). - caif_virtio: fix race between virtio_device_ready() and ndo_open() (git-fixes). - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path (git-fixes). - can: etas_es58x: change opened_channel_cnt's type from atomic_t to u8 (git-fixes). - can: etas_es58x: es58x_fd_rx_event_msg(): initialize rx_event_msg before calling es58x_check_msg_len() (git-fixes). - can: grcan: grcan_close(): fix deadlock (git-fixes). - can: grcan: grcan_probe(): fix broken system id check for errata workaround needs (git-fixes). - can: grcan: only use the NAPI poll budget for RX (git-fixes). - can: grcan: use ofdev->dev when allocating DMA memory (git-fixes). - can: gs_usb: change active_channels's type from atomic_t to u8 (git-fixes). - can: isotp: fix error path in isotp_sendmsg() to unlock wait queue (git-fixes). - can: isotp: fix potential CAN frame reception race in isotp_rcv() (git-fixes). - can: isotp: restore accidentally removed MSG_PEEK feature (git-fixes). - can: isotp: return -EADDRNOTAVAIL when reading from unbound socket (git-fixes). - can: isotp: set default value for N_As to 50 micro seconds (git-fixes). - can: isotp: stop timeout monitoring when no first frame was sent (git-fixes). - can: isotp: support MSG_TRUNC flag when reading from socket (git-fixes). - can: m_can: m_can_tx_handler(): fix use after free of skb (git-fixes). - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error path (git-fixes). - can: mcba_usb: properly check endpoint type (git-fixes). - can: mcp251xfd: mcp251xfd_register_get_dev_id(): fix return of error value (git-fixes). - can: mcp251xfd: silence clang's -Wunaligned-access warning (git-fixes). - can: rcar_canfd: add __maybe_unused annotation to silence warning (git-fixes). - can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when fully ready (git-fixes). - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error path (git-fixes). - can: xilinx_can: mark bit timing constants as const (git-fixes). - carl9170: fix missing bit-wise or operator for tx_params (git-fixes). - carl9170: tx: fix an incorrect use of list iterator (git-fixes). - CDC-NCM: avoid overflow in sanity checking (git-fixes). - ceph: fix setting of xattrs on async created inodes (bsc#1199611). - certs/blacklist_hashes.c: fix const confusion in certs blacklist (git-fixes). - cfg80211: declare MODULE_FIRMWARE for regulatory.db (git-fixes). - cfg80211: do not add non transmitted BSS to 6GHz scanned channels (git-fixes). - cfg80211: fix race in netlink owner interface destruction (git-fixes). - cfg80211: hold bss_lock while updating nontrans_list (git-fixes). - cgroup/cpuset: Fix a race between cpuset_attach() and cpu hotplug (bsc#1196869). - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (bsc#1196868). - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp() (bsc#1199839). - cgroup-v1: Correct privileges check in release_agent writes (bsc#1196723). - char: tpm: cr50_i2c: Suppress duplicated error message in .remove() (git-fixes). - char: xillybus: fix a refcount leak in cleanup_dev() (git-fixes). - cifs: add WARN_ON for when chan_count goes below minimum (bsc#1193629). - cifs: adjust DebugData to use chans_need_reconnect for conn status (bsc#1193629). - cifs: alloc_path_with_tree_prefix: do not append sep. if the path is empty (bsc#1193629). - cifs: avoid parallel session setups on same channel (bsc#1193629). - cifs: avoid race during socket reconnect between send and recv (bsc#1193629). - cifs: call cifs_reconnect when a connection is marked (bsc#1193629). - cifs: call helper functions for marking channels for reconnect (bsc#1193629). - cifs: change smb2_query_info_compound to use a cached fid, if available (bsc#1193629). - cifs: check for smb1 in open_cached_dir() (bsc#1193629). - cifs: check reconnects for channels of active tcons too (bsc#1193629). - cifs: Check the IOCB_DIRECT flag, not O_DIRECT (bsc#1193629). - cifs: cifs_ses_mark_for_reconnect should also update reconnect bits (bsc#1193629). - cifs: clean up an inconsistent indenting (bsc#1193629). - cifs: convert the path to utf16 in smb2_query_info_compound (bsc#1193629). - cifs: destage any unwritten data to the server before calling copychunk_write (bsc#1193629). - cifs: do not build smb1ops if legacy support is disabled (bsc#1193629). - cifs: do not call cifs_dfs_query_info_nonascii_quirk() if nodfs was set (bsc#1193629). - cifs: do not skip link targets when an I/O fails (bsc#1194625). - cifs: do not use tcpStatus after negotiate completes (bsc#1193629). - cifs: do not use uninitialized data in the owner/group sid (bsc#1193629). - cifs: fix bad fids sent over wire (bsc#1197157). - cifs: fix confusing unneeded warning message on smb2.1 and earlier (bsc#1193629). - cifs: fix double free race when mount fails in cifs_get_root() (bsc#1193629). - cifs: fix FILE_BOTH_DIRECTORY_INFO definition (bsc#1193629). - cifs: fix handlecache and multiuser (bsc#1193629). - cifs: fix hang on cifs_get_next_mid() (bsc#1193629). - cifs: fix incorrect use of list iterator after the loop (bsc#1193629). - cifs: fix minor compile warning (bsc#1193629). - cifs: fix NULL ptr dereference in refresh_mounts() (bsc#1193629). - cifs: fix potential deadlock in direct reclaim (bsc#1193629). - cifs: fix potential double free during failed mount (bsc#1193629). - cifs: fix potential race with cifsd thread (bsc#1193629). - cifs: fix set of group SID via NTSD xattrs (bsc#1193629). - cifs: fix signed integer overflow when fl_end is OFFSET_MAX (bsc#1193629). - cifs: Fix smb311_update_preauth_hash() kernel-doc comment (bsc#1193629). - cifs: fix the cifs_reconnect path for DFS (bsc#1193629). - cifs: fix the connection state transitions with multichannel (bsc#1193629). - cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1193629). - cifs: fix workstation_name for multiuser mounts (bsc#1193629). - cifs: force new session setup and tcon for dfs (bsc#1193629). - cifs: free ntlmsspblob allocated in negotiate (bsc#1193629). - cifs: maintain a state machine for tcp/smb/tcon sessions (bsc#1193629). - cifs: make status checks in version independent callers (bsc#1193629). - cifs: mark sessions for reconnection in helper function (bsc#1193629). - cifs: modefromsids must add an ACE for authenticated users (bsc#1193629). - cifs: move definition of cifs_fattr earlier in cifsglob.h (bsc#1193629). - cifs: move superblock magic defitions to magic.h (bsc#1193629). - cifs: potential buffer overflow in handling symlinks (bsc#1193629). - cifs: print TIDs as hex (bsc#1193629). - cifs: protect all accesses to chan_* with chan_lock (bsc#1193629). - cifs: quirk for STATUS_OBJECT_NAME_INVALID returned for non-ASCII dfs refs (bsc#1193629). - cifs: reconnect only the connection and not smb session where possible (bsc#1193629). - cifs: release cached dentries only if mount is complete (bsc#1193629). - cifs: remove check of list iterator against head past the loop body (bsc#1193629). - cifs: remove redundant assignment to pointer p (bsc#1193629). - cifs: remove repeated debug message on cifs_put_smb_ses() (bsc#1193629). - cifs: remove repeated state change in dfs tree connect (bsc#1193629). - cifs: remove unused variable ses_selected (bsc#1193629). - cifs: return ENOENT for DFS lookup_cache_entry() (bsc#1193629). - cifs: return the more nuanced writeback error on close() (bsc#1193629). - cifs: serialize all mount attempts (bsc#1193629). - cifs: set the CREATE_NOT_FILE when opening the directory in use_cached_dir() (bsc#1193629). - cifs: skip trailing separators of prefix paths (bsc#1193629). - cifs: smbd: fix typo in comment (bsc#1193629). - cifs: Split the smb3_add_credits tracepoint (bsc#1193629). - cifs: take cifs_tcp_ses_lock for status checks (bsc#1193629). - cifs: track individual channel status using chans_need_reconnect (bsc#1193629). - cifs: unlock chan_lock before calling cifs_put_tcp_session (bsc#1193629). - cifs: update internal module number (bsc#1193629). - cifs: update tcpStatus during negotiate and sess setup (bsc#1193629). - cifs: use a different reconnect helper for non-cifsd threads (bsc#1193629). - cifs: use correct lock type in cifs_reconnect() (bsc#1193629). - cifs: Use kzalloc instead of kmalloc/memset (bsc#1193629). - cifs: use new enum for ses_status (bsc#1193629). - cifs: use the chans_need_reconnect bitmap for reconnect status (bsc#1193629). - cifs: verify that tcon is valid before dereference in cifs_kill_sb (bsc#1193629). - cifs: version operations for smb20 unneeded when legacy support disabled (bsc#1193629). - cifs: we do not need a spinlock around the tree access during umount (bsc#1193629). - cifs: when extending a file with falloc we should make files not-sparse (bsc#1193629). - cifs: writeback fix (bsc#1193629). - clk: actions: Terminate clk_div_table with sentinel element (git-fixes). - clk: at91: generated: consider range when calculating best rate (git-fixes). - clk: at91: sama7g5: fix parents of PDMCs' GCLK (git-fixes). - clk: bcm2835: fix bcm2835_clock_choose_div (git-fixes). - clk: bcm2835: Remove unused variable (git-fixes). - clk: clps711x: Terminate clk_div_table with sentinel element (git-fixes). - clk: Enforce that disjoints limits are invalid (git-fixes). - clk: Fix clk_hw_get_clk() when dev is NULL (git-fixes). - clk: hisilicon: Terminate clk_div_table with sentinel element (git-fixes). - clk: imx7d: Remove audio_mclk_root_clk (git-fixes). - clk: imx8mp: fix usb_root_clk parent (git-fixes). - clk: imx: Add check for kcalloc (git-fixes). - clk: imx: off by one in imx_lpcg_parse_clks_from_dt() (git-fixes). - clk: imx: scu: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync() usage (git-fixes). - clk: Initialize orphan req_rate (git-fixes). - clk: jz4725b: fix mmc0 clock gating (git-fixes). - clk: loongson1: Terminate clk_div_table with sentinel element (git-fixes). - clk: nxp: Remove unused variable (git-fixes). - clk: qcom: clk-rcg2: Update logic to calculate D value for RCG (git-fixes). - clk: qcom: clk-rcg2: Update the frac table for pixel clock (git-fixes). - clk: qcom: gcc-msm8994: Fix gpll4 width (git-fixes). - clk: qcom: ipq8074: fix PCI-E clock oops (git-fixes). - clk: qcom: ipq8074: Use floor ops for SDCC1 clock (git-fixes). - clk: renesas: r9a06g032: Fix the RTC hclock description (git-fixes). - clk: rockchip: drop CLK_SET_RATE_PARENT from dclk_vop* on rk3568 (git-fixes). - clk: si5341: fix reported clk_rate when output divider is 2 (git-fixes). - clk: sunxi: sun9i-mmc: check return value after calling platform_get_resource() (git-fixes). - clk: tegra: Add missing reset deassertion (git-fixes). - clk: tegra: tegra124-emc: Fix missing put_device() call in emc_ensure_emc_driver (git-fixes). - clk: ti: Preserve node in ti_dt_clocks_register() (git-fixes). - clk: uniphier: Fix fixed-rate initialization (git-fixes). - clocksource: acpi_pm: fix return value of __setup handler (git-fixes). - clocksource/drivers/exynos_mct: Handle DTS with higher number of interrupts (git-fixes). - clocksource/drivers/exynos_mct: Refactor resources allocation (git-fixes). - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value (git-fixes). - clocksource/drivers/sp804: Avoid error on multiple instances (git-fixes). - clocksource/drivers/timer-microchip-pit64b: Use notrace (git-fixes). - clocksource/drivers/timer-of: Check return value of of_iomap in timer_of_base_init() (git-fixes). - clocksource/drivers/timer-ti-dm: Fix regression from errata i940 fix (git-fixes). - clocksource: hyper-v: unexport __init-annotated hv_init_clocksource() (bsc#1201218). - comedi: drivers: ni_routes: Use strcmp() instead of memcmp() (git-fixes). - comedi: vmk80xx: fix expression for tx buffer size (git-fixes). - copy_process(): Move fd_install() out of sighand->siglock critical section (bsc#1199626). - cpufreq: intel_pstate: Add Ice Lake server to out-of-band IDs (bsc#1201228). - cpufreq: qcom-cpufreq-nvmem: fix reading of PVS Valid fuse (git-fixes). - cpuidle,intel_idle: Fix CPUIDLE_FLAG_IRQ_ENABLE (git-fixes). - cpuidle: intel_idle: Update intel_idle() kerneldoc comment (git-fixes). - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (bsc#1196866). - cputime, cpuacct: Include guest time in user time in (git-fixes) - crypto: amlogic - call finalize with bh disabled (git-fixes). - crypto: api - Move cryptomgr soft dependency into algapi (git-fixes). - crypto: arm/aes-neonbs-cbc - Select generic cbc and aes (git-fixes). - crypto: authenc - Fix sleep in atomic context in decrypt_tail (git-fixes). - crypto: caam - fix i.MX6SX entropy delay value (git-fixes). - crypto: cavium/nitrox - do not cast parameter in bit operations (git-fixes). - crypto: ccp - ccp_dmaengine_unregister release dma channels (git-fixes). - crypto: ccree - do not attempt 0 len DMA mappings (git-fixes). - crypto: ccree - Fix use after free in cc_cipher_exit() (git-fixes). - crypto: ccree - use fine grained DMA mapping dir (git-fixes). - crypto: cryptd - Protect per-CPU resource by disabling BH (git-fixes). - crypto: ecrdsa - Fix incorrect use of vli_cmp (git-fixes). - crypto: engine - check if BH is disabled during completion (git-fixes). - crypto: gemini - call finalize with bh disabled (git-fixes). - crypto: hisilicon/qm - cleanup warning in qm_vf_read_qos (git-fixes). - crypto: hisilicon/sec - fix the aead software fallback for engine (git-fixes). - crypto: hisilicon/sec - not need to enable sm4 extra mode at HW V3 (git-fixes). - crypto: marvell/cesa - ECB does not IV (git-fixes). - crypto: mxs-dcp - Fix scatterlist processing (git-fixes). - crypto: octeontx2 - remove CONFIG_DM_CRYPT check (git-fixes). - crypto: qat - disable registration of algorithms (git-fixes). - crypto: qat - do not cast parameter in bit operations (git-fixes). - crypto: qcom-rng - ensure buffer for generate is completely filled (git-fixes). - crypto: qcom-rng - fix infinite loop on requests not multiple of WORD_SZ (git-fixes). - crypto: rockchip - ECB does not need IV (git-fixes). - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist (git-fixes). - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete() (git-fixes). - crypto: rsa-pkcs1pad - only allow with rsa (git-fixes). - crypto: rsa-pkcs1pad - restore signature length check (git-fixes). - crypto: stm32 - fix reference leak in stm32_crc_remove (git-fixes). - crypto: sun8i-ce - call finalize with bh disabled (git-fixes). - crypto: sun8i-ss - call finalize with bh disabled (git-fixes). - crypto: sun8i-ss - handle zero sized sg (git-fixes). - crypto: sun8i-ss - really disable hash on A80 (git-fixes). - crypto: sun8i-ss - rework handling of IV (git-fixes). - crypto: vmx - add missing dependencies (git-fixes). - crypto: x86/chacha20 - Avoid spurious jumps to other functions (git-fixes). - crypto: x86 - eliminate anonymous module_init and module_exit (git-fixes). - crypto: xts - Add softdep on ecb (git-fixes). - dax: fix cache flush on PMD-mapped pages (bsc#1200830). - devlink: Add 'enable_iwarp' generic device param (bsc#1200502). - dim: initialize all struct fields (git-fixes). - display/amd: decrease message verbosity about watermarks table failure (git-fixes). - dma: at_xdmac: fix a missing check on list iterator (git-fixes). - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace (git-fixes). - dma-buf: heaps: Fix potential spectre v1 gadget (git-fixes). - dma-debug: fix return value of __setup handlers (git-fixes). - dma-direct: avoid redundant memory sync for swiotlb (git-fixes). - dmaengine: dw-edma: Fix unaligned 64bit access (git-fixes). - dmaengine: hisi_dma: fix MSI allocate fail when reload hisi_dma (git-fixes). - dmaengine: idxd: add missing callback function to support DMA_INTERRUPT (git-fixes). - dmaengine: idxd: add RO check for wq max_batch_size write (git-fixes). - dmaengine: idxd: add RO check for wq max_transfer_size write (git-fixes). - dmaengine: idxd: check GENCAP config support for gencfg register (git-fixes). - dmaengine: idxd: fix device cleanup on disable (git-fixes). - dmaengine: idxd: Fix the error handling path in idxd_cdev_register() (git-fixes). - dmaengine: idxd: restore traffic class defaults after wq reset (git-fixes). - dmaengine: idxd: set DMA_INTERRUPT cap bit (git-fixes). - dmaengine: idxd: skip clearing device context when device is read-only (git-fixes). - dmaengine: imx-sdma: Fix error checking in sdma_event_remap (git-fixes). - dmaengine: mediatek:Fix PM usage reference leak of mtk_uart_apdma_alloc_chan_resources (git-fixes). - dmaengine: ptdma: fix concurrency issue with multiple dma transfer (jsc#SLE-21315). - dmaengine: ptdma: Fix the error handling path in pt_core_init() (git-fixes). - dmaengine: ptdma: handle the cases based on DMA is complete (jsc#SLE-21315). - dmaengine: Revert "dmaengine: shdma: Fix runtime PM imbalance on error" (git-fixes). - dmaengine: shdma: Fix runtime PM imbalance on error (git-fixes). - dmaengine: sh: rcar-dmac: Check for error num after dma_set_max_seg_size (git-fixes). - dmaengine: sh: rcar-dmac: Check for error num after setting mask (git-fixes). - dmaengine: stm32-dmamux: Fix PM disable depth imbalance in stm32_dmamux_probe (git-fixes). - dmaengine: stm32-mdma: fix chan initialization in stm32_mdma_irq_handler() (git-fixes). - dmaengine: stm32-mdma: remove GISR1 register (git-fixes). - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type (git-fixes). - dma-mapping: remove bogus test for pfn_valid from dma_map_resource (git-fixes). - dma/pool: create dma atomic pool only if dma zone has managed pages (bsc#1197501). - dm crypt: fix get_key_size compiler warning if !CONFIG_KEYS (git-fixes). - dm: fix use-after-free in dm_cleanup_zoned_dev() (git-fixes). - dm integrity: fix error code in dm_integrity_ctr() (git-fixes). - dm integrity: set journal entry unused when shrinking device (git-fixes). - dm mirror log: round up region bitmap size to BITS_PER_LONG (git-fixes). - dm mpath: only use ktime_get_ns() in historical selector (git-fixes). - dm verity: set DM_TARGET_IMMUTABLE feature flag (git-fixes). - doc/ip-sysctl: add bc_forwarding (git-fixes). - docs/conf.py: Cope with removal of language=None in Sphinx 5.0.0 (git-fixes). - Documentation: add link to stable release candidate tree (git-fixes). - Documentation: dd: Use ReST lists for return values of driver_deferred_probe_check_state() (git-fixes). - Documentation: Fix duplicate statement about raw_spinlock_t type (git-fixes). - Documentation: update stable tree link (git-fixes). - do not call utsname() after ->nsproxy is NULL (bsc#1201196). - drbd: fix an invalid memory access caused by incorrect use of list iterator (git-fixes). - drbd: fix duplicate array initializer (git-fixes). - drbd: Fix five use after free bugs in get_initial_state (git-fixes). - drbd: remove assign_p_sizes_qlim (git-fixes). - drbd: use bdev_alignment_offset instead of queue_alignment_offset (git-fixes). - drbd: use bdev based limit helpers in drbd_send_sizes (git-fixes). - driver base: fix an unlikely reference counting issue in __add_memory_block() (git-fixes). - driver base: fix compaction sysfs file leak (git-fixes). - driver: base: fix UAF when driver_attach failed (git-fixes). - driver core: dd: fix return value of __setup handler (git-fixes). - driver core: fix deadlock in __device_attach (git-fixes). - driver core: Fix wait_for_device_probe() and deferred_probe_timeout interaction (git-fixes). - driver core: Free DMA range map when device is released (git-fixes). - driver: hv: Compare cpumasks and not their weights in init_vp_index() (git-fixes). - driver: hv: log when enabling crash_kexec_post_notifiers (git-fixes). - driver: hv: Rename 'alloced' to 'allocated' (git-fixes). - driver: hv: utils: Make use of the helper macro LIST_HEAD() (git-fixes). - driver: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (git-fixes). - driver: hv: vmbus: Fix potential crash on module unload (git-fixes). - driver: hv: vmbus: Use struct_size() helper in kmalloc() (git-fixes). - driver: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers (git-fixes). - driver: net: xgene: Fix regression in CRC stripping (git-fixes). - drivers: cpufreq: Add missing of_node_put() in qoriq-cpufreq.c (git-fixes). - drivers: mmc: sdhci_am654: Add the quirk to set TESTCD bit (git-fixes). - drivers: staging: rtl8192bs: Fix deadlock in rtw_joinbss_event_prehandle() (git-fixes). - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop() (git-fixes). - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop() (git-fixes). - drivers: staging: rtl8723bs: Fix deadlock in rtw_surveydone_event_callback() (git-fixes). - drivers: tty: serial: Fix deadlock in sa1100_set_termios() (git-fixes). - drivers: usb: host: Fix deadlock in oxu_bus_suspend() (git-fixes). - drm: add a locked version of drm_is_current_master (git-fixes). - drm: Add orientation quirk for GPD Win Max (git-fixes). - drm/amd: Add USBC connector ID (git-fixes). - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj (git-fixes). - drm/amd: avoid suspend on dGPUs w/ s2idle support when runtime PM enabled (git-fixes). - drm/amd: Check if ASPM is enabled from PCIe subsystem (git-fixes). - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug (git-fixes). - drm/amd/display: Add pstate verification and recovery for DCN31 (git-fixes). - drm/amd/display: Add signal type check when verify stream backends same (git-fixes). - drm/amd/display: Avoid reading audio pattern past AUDIO_CHANNELS_COUNT (git-fixes). - drm/amd/display: Cap OLED brightness per max frame-average luminance (git-fixes). - drm/amd/display: Cap pflip irqs per max otg number (git-fixes). - drm/amd/display: Check if modulo is 0 before dividing (git-fixes). - drm/amd/display: DCN3.1: do not mark as kernel-doc (git-fixes). - drm/amd/display: Disabling Z10 on DCN31 (git-fixes). - drm/amd/display: do not ignore alpha property on pre-multiplied mode (git-fixes). - drm/amd/display: Do not reinitialize DMCUB on s0ix resume (git-fixes). - drm/amd/display: Enable power gating before init_pipes (git-fixes). - drm/amd/display: FEC check in timing validation (git-fixes). - drm/amd/display: Fix allocate_mst_payload assert on resume (git-fixes). - drm/amd/display: Fix a NULL pointer dereference in amdgpu_dm_connector_add_common_modes() (git-fixes). - drm/amd/display: fix audio format not updated after edid updated (git-fixes). - drm/amd/display: Fix memory leak (git-fixes). - drm/amd/display: Fix memory leak in dcn21_clock_source_create (bsc#1190786) - drm/amd/display: Fix OLED brightness control on eDP (git-fixes). - drm/amd/display: Fix p-state allow debug index on dcn31 (git-fixes). - drm/amd/display: fix yellow carp wm clamping (git-fixes). - drm/amd/display: Force link_rate as LINK_RATE_RBR2 for 2018 15" Apple Retina panels (git-fixes). - drm/amd/display: For vblank_disable_immediate, check PSR is really used (git-fixes). - drm/amd/display: Protect update_bw_bounding_box FPU code (git-fixes). - drm/amd/display: Read Golden Settings Table from VBIOS (git-fixes). - drm/amd/display: Remove vupdate_int_entry definition (git-fixes). - drm/amd/display: Revert FEC check in validation (git-fixes). - drm/amd/display: Update VTEM Infopacket definition (git-fixes). - drm/amd/display: Update watermark values for DCN301 (git-fixes). - drm/amd/display: Use adjusted DCN301 watermarks (git-fixes). - drm/amd/display: Use PSR version selected during set_psr_caps (git-fixes). - drm/amd/display: watermark latencies is not enough on DCN31 (git-fixes). - drm/amdgpu: add beige goby PCI ID (git-fixes). - drm/amdgpu: bypass tiling flag check in virtual display case (v2) (git-fixes). - drm/amdgpu: check vm ready by amdgpu_vm->evicting flag (git-fixes). - drm/amdgpu: conduct a proper cleanup of PDB bo (git-fixes). - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour (git-fixes). - drm/amdgpu: disable MMHUB PG for Picasso (git-fixes). - drm/amdgpu/display: add support for multiple backlights (git-fixes). - drm/amdgpu: do not do resets on APUs which do not support it (git-fixes). - drm/amdgpu: do not enable asic reset for raven2 (git-fixes). - drm/amdgpu: do not set s3 and s0ix at the same time (git-fixes). - drm/amdgpu: do not use BACO for reset in S3 (git-fixes). - drm/amdgpu: do not use passthrough mode in Xen dom0 (git-fixes). - drm/amdgpu: Drop inline from amdgpu_ras_eeprom_max_record_count (git-fixes). - drm/amdgpu: Enable gfxoff quirk on MacBook Pro (git-fixes). - drm/amdgpu: Ensure HDA function is suspended before ASIC reset (git-fixes). - drm/amdgpu: explicitly check for s0ix when evicting resources (git-fixes). - drm/amdgpu: fix amdgpu_ras_block_late_init error handler (bsc#1190497) - drm/amdgpu: fix logic inversion in check (git-fixes). - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire() (git-fixes). - drm/amdgpu: Fix recursive locking warning (git-fixes). - drm/amdgpu: fix suspend/resume hang regression (git-fixes). - drm/amdgpu/sdma: Fix incorrect calculations of the wptr of the doorbells (git-fixes). - drm/amdgpu: skipping SDMA hw_init and hw_fini for S0ix (git-fixes). - drm/amdgpu/smu10: fix SoC/fclk units in auto mode (git-fixes). - drm/amdgpu: suppress the warning about enum value 'AMD_IP_BLOCK_TYPE_NUM' (git-fixes). - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo (git-fixes). - drm/amdgpu: unify BO evicting method in amdgpu_ttm (git-fixes). - drm/amdgpu: update VCN codec support for Yellow Carp (git-fixes). - drm/amdgpu/vcn: Fix the register setting for vcn1 (git-fixes). - drm/amdgpu/vcn: improve vcn dpg stop procedure (git-fixes). - drm/amdgpu: vi: disable ASPM on Intel Alder Lake based systems (bsc#1190786) - drm/amdkfd: add pinned BOs to kfd_bo_list (git-fixes). - drm/amdkfd: Check for potential null return of kmalloc_array() (git-fixes). - drm/amdkfd: Create file descriptor after client is added to smi_clients list (git-fixes). - drm/amdkfd: Do not take process mutex for svm ioctls (git-fixes). - drm/amdkfd: Fix GWS queue count (bsc#1190786) - drm/amdkfd: Fix Incorrect VMIDs passed to HWS (git-fixes). - drm/amdkfd: make CRAT table missing message informational only (git-fixes). - drm/amdkfd: remove unused function (git-fixes). - drm/amdkfd: Separate pinned BOs destruction from general routine (bsc#1195287). - drm/amdkfd: Use mmget_not_zero in MMU notifier (git-fixes). - drm/amd/pm: correct the MGpuFanBoost support for Beige Goby (git-fixes). - drm/amd/pm: correct the sequence of sending gpu reset msg (git-fixes). - drm/amd/pm: correct UMD pstate clocks for Dimgrey Cavefish and Beige Goby (git-fixes). - drm/amd/pm: enable pm sysfs write for one VF mode (git-fixes). - drm/amd/pm: fix hwmon node of power1_label create issue (git-fixes). - drm/amd/pm: Fix missing thermal throttler status (git-fixes). - drm/amd/pm: fix some OEM SKU specific stability issues (git-fixes). - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function (git-fixes). - drm/amd/pm: update smartshift powerboost calc for smu12 (git-fixes). - drm/amd/pm: update smartshift powerboost calc for smu13 (git-fixes). - drm/amd/pm: use bitmap_{from,to}_arr32 where appropriate (git-fixes). - drm/ast: Create threshold values for AST2600 (bsc#1190786) - drm/atomic: Do not pollute crtc_state->mode_blob with error pointers (git-fixes). - drm/atomic: Force bridge self-refresh-exit on CRTC switch (git-fixes). - drm: avoid circular locks in drm_mode_getconnector (git-fixes). - drm/blend: fix typo in the comment (git-fixes). - drm/bridge: Add missing pm_runtime_disable() in __dw_mipi_dsi_probe (git-fixes). - drm/bridge: Add missing pm_runtime_put_sync (git-fixes). - drm/bridge: adv7511: clean up CEC adapter when probe fails (git-fixes). - drm: bridge: adv7511: Fix ADV7535 HPD enablement (git-fixes). - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX (git-fixes). - drm/bridge: analogix_dp: Support PSR-exit to disable transition (git-fixes). - drm/bridge: anx7625: Fix overflow issue on reading EDID (git-fixes). - drm/bridge: cdns-dsi: Make sure to to create proper aliases for dt (git-fixes). - drm/bridge: dw-hdmi: use safe format when first in bridge chain (git-fixes). - drm/bridge: Fix error handling in analogix_dp_probe (git-fixes). - drm/bridge: Fix free wrong object in sii8620_init_rcp_input_dev (git-fixes). - drm: bridge: fix unmet dependency on DRM_KMS_HELPER for DRM_PANEL_BRIDGE (git-fixes). - drm: bridge: icn6211: Fix HFP_HSW_HBP_HI and HFP_MIN handling (bsc#1190786) - drm: bridge: icn6211: Fix register layout (git-fixes). - drm: bridge: it66121: Fix the register page length (git-fixes). - drm/bridge: nwl-dsi: Fix PM disable depth imbalance in nwl_dsi_probe (git-fixes). - drm/bridge: sn65dsi83: Fix an error handling path in (bsc#1190786) - drm/bridge: ti-sn65dsi83: Handle dsi_lanes == 0 as invalid (git-fixes). - drm/bridge: ti-sn65dsi86: Properly undo autosuspend (git-fixes). - drm/cma-helper: Set VM_DONTEXPAND for mmap (git-fixes). - drm/connector: Fix typo in output format (bsc#1190786) - drm/doc: overview before functions for drm_writeback.c (git-fixes). - drm/dp: Fix OOB read when handling Post Cursor2 register (bsc#1190786) - drm/edid: Always set RGB444 (git-fixes). - drm/edid: check basic audio support on CEA extension block (git-fixes). - drm/edid: Do not clear formats if using deep color (git-fixes). - drm/edid: fix CEA extension byte #3 parsing (bsc#1190786) - drm/edid: fix invalid EDID extension block filtering (git-fixes). - drm/etnaviv: check for reaped mapping in etnaviv_iommu_unmap_gem (git-fixes). - drm/fb-helper: Mark screen buffers in system memory with FBINFO_VIRTFB (git-fixes). - drm/fourcc: fix integer type usage in uapi header (git-fixes). - drm/i915/adlp: Fix TypeC PHY-ready status readout (git-fixes). - drm/i915: Allow !join_mbus cases for adlp+ dbuf configuration (bsc#1193640). - drm/i915: Check EDID for HDR static metadata when choosing blc (bsc#1190497) - drm/i915: Correctly populate use_sagv_wm for all pipes (git-fixes). - drm/i915/dg2: Print PHY name properly on calibration error (git-fixes). - drm/i915: Disable DRRS on IVB/HSW port != A (git-fixes). - drm/i915/display: Fix HPD short pulse handling for eDP (git-fixes). - drm/i915/display: Move DRRS code its own file (git-fixes). - drm/i915/display/psr: Unset enable_psr2_sel_fetch if other checks in intel_psr2_config_valid() fails (git-fixes). - drm/i915/display: split out dpt out of intel_display.c (git-fixes). - drm/i915/dmc: Add MMIO range restrictions (git-fixes). - drm/i915/dsi: fix VBT send packet port selection for ICL+ (git-fixes). - drm/i915: Fix bw atomic check when switching between SAGV vs. no SAGV (git-fixes). - drm/i915: Fix CFI violation with show_dynamic_id() (git-fixes). - drm/i915: Fix dbuf slice config lookup (git-fixes bsc#1193640). - drm/i915: Fix mbus join config lookup (git-fixes bsc#1193640). - drm/i915: Fix PSF GV point mask when SAGV is not possible (git-fixes). - drm/i915: Fix race in __i915_vma_remove_closed (bsc#1190497) - drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses (bsc#1190497) - drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency() (git-fixes). - drm/i915/gem: add missing boundary check in vm_access (git-fixes). - drm/i915/gem: add missing else (git-fixes). - drm/i915/guc/slpc: Correct the param count for unset param (git-fixes). - drm/i915/gvt: clean up kernel-doc in gtt.c (git-fixes). - drm/i915/gvt: Make DRM_I915_GVT depend on X86 (git-fixes). - drm/i915: Implement w/a 22010492432 for adl-s (git-fixes). - drm/i915: Keep gem ctx->vm alive until the final put (bsc#1190497) - drm/i915/opregion: check port number bounds for SWSCI display power state (git-fixes). - drm/i915/overlay: Prevent divide by zero bugs in scaling (git-fixes). - drm/i915: Populate pipe dbuf slices more accurately during readout (bsc#1193640). - drm/i915/reset: Fix error_state_read ptr + offset use (git-fixes). - drm/i915: s/JSP2/ICP2/ PCH (git-fixes). - drm/i915: Treat SAGV block time 0 as SAGV disabled (git-fixes). - drm/i915/ttm: ensure we unmap when purging (git-fixes). - drm/i915/ttm: tweak priority hint selection (git-fixes). - drm/i915: Widen the QGV point mask (git-fixes). - drm/i915: Workaround broken BIOS DBUF configuration on TGL/RKL (bsc#1193640). - drm/imx: dw_hdmi-imx: Fix bailout in error cases of probe (git-fixes). - drm: imx: fix compiler warning with gcc-12 (git-fixes). - drm/imx: Fix memory leak in imx_pd_connector_get_modes (git-fixes). - drm/imx: imx-ldb: Check for null pointer after calling kmemdup (git-fixes). - drm/imx: parallel-display: Remove bus flags check in imx_pd_bridge_atomic_check() (git-fixes). - drm/kmb: Fix for build errors with Warray-bounds (git-fixes). - drm/komeda: Fix an undefined behavior bug in komeda_plane_add() (git-fixes). - drm/komeda: return early if drm_universal_plane_init() fails (git-fixes). - drm: mali-dp: potential dereference of null pointer (git-fixes). - drm/mediatek: Add vblank register/unregister callback functions (bsc#1190768) - drm/mediatek: dpi: Use mt8183 output formats for mt8192 (git-fixes). - drm/mediatek: Fix mtk_cec_mask() (git-fixes). - drm/mediatek: mtk_dsi: Reset the dsi0 hardware (git-fixes). - drm/meson: Fix error handling when afbcd.ops->init fails (git-fixes). - drm/meson: Make use of the helper function devm_platform_ioremap_resourcexxx() (git-fixes). - drm/meson: osd_afbcd: Add an exit callback to struct meson_afbcd_ops (git-fixes). - drm/meson: split out encoder from meson_dw_hdmi (git-fixes). - drm/msm/a6xx: Fix missing ARRAY_SIZE() check (git-fixes). - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init (git-fixes). - drm/msm: add missing include to msm_drv.c (git-fixes). - drm/msm: Add missing put_task_struct() in debugfs path (git-fixes). - drm/msm/disp: check the return value of kzalloc() (git-fixes). - drm/msm/disp/dpu1: set mdp clk to the maximum frequency in opp table (bsc#1190768) - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume (git-fixes). - drm/msm/dp: add fail safe mode outside of event_mutex context (git-fixes). - drm/msm/dp: always add fail-safe mode into connector mode list (git-fixes). - drm/msm/dp: Always clear mask bits to disable interrupts at dp_ctrl_reset_irq_ctrl() (git-fixes). - drm/msm/dp: check core_initialized before disable interrupts at dp_display_unbind() (git-fixes). - drm/msm/dp: do not initialize phy until plugin interrupt received (bsc#1190497) - drm/msm/dp: do not stop transmitting phy test pattern during DP phy compliance test (git-fixes). - drm/msm/dp: dp_link_parse_sink_count() return immediately if aux read failed (git-fixes). - drm/msm/dp: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/msm/dp: fix event thread stuck in wait_event after kthread_stop() (git-fixes). - drm/msm/dp: force link training for display resolution change (git-fixes). - drm/msm/dp: Modify prototype of encoder based API (git-fixes). - drm/msm/dp: populate connector of struct dp_panel (git-fixes). - drm/msm/dp: remove fail safe mode related code (git-fixes). - drm/msm/dp: reset DP controller before transmit phy test pattern (git-fixes). - drm/msm/dp: stop event kernel thread when DP unbind (bsc#1190768) - drm/msm/dp: stop link training after link training 2 failed (git-fixes). - drm/msm/dp: tear down main link at unplug handle immediately (bsc#1190768) - drm/msm/dpu: add DSPP blocks teardown (git-fixes). - drm/msm/dpu: adjust display_v_end for eDP and DP (git-fixes). - drm/msm/dpu: fix dp audio condition (git-fixes). - drm/msm/dpu: fix error check return value of irq_of_parse_and_map() (bsc#1190768) - drm/msm/dpu: handle pm_runtime_get_sync() errors in bind path (git-fixes). - drm/msm/dsi: fix address for second DSI PHY on SDM660 (git-fixes). - drm/msm/dsi: fix error checks and return values for DSI xmit functions (git-fixes). - drm/msm/dsi: Remove spurious IRQF_ONESHOT flag (git-fixes). - drm/msm/dsi: Use connector directly in msm_dsi_manager_connector_init() (git-fixes). - drm/msm/dsi: Use "ref" fw clock instead of global name for VCO parent (git-fixes). - drm/msm: Fix double pm_runtime_disable() call (git-fixes). - drm: msm: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set() (git-fixes). - drm/msm: Fix range size vs end confusion (git-fixes). - drm/msm/hdmi: check return value after calling platform_get_resource_byname() (git-fixes). - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf (git-fixes). - drm/msm/mdp5: check the return of kzalloc() (git-fixes). - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected (git-fixes). - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected (git-fixes). - drm/msm: properly add and remove internal bridges (bsc#1190768) - drm/msm: remove unused plane_property field from msm_drm_private (bsc#1190768) - drm/msm: return an error pointer in msm_gem_prime_get_sg_table() (git-fixes). - drm/msm: Switch ordering of runpm put vs devfreq_idle (git-fixes). - drm/msm: use for_each_sgtable_sg to iterate over scatterlist (git-fixes). - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl() (git-fixes). - drm/nouveau/backlight: Just set all backlight types as RAW (git-fixes). - drm/nouveau/clk: Fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name() (git-fixes). - drm/nouveau: fix off by one in BIOS boundary checking (git-fixes). - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau/pmu: Add missing callbacks for Tegra devices (git-fixes). - drm/nouveau/pmu/gm200-: use alternate falcon reset sequence (git-fixes). - drm/nouveau/subdev/bus: Ratelimit logging for fault errors (git-fixes). - drm/nouveau/tegra: Stop using iommu_present() (git-fixes). - drm: panel-orientation-quirks: Add quirk for the 1Netbook OneXPlayer (git-fixes). - drm/panel: panel-simple: Fix proper bpc for AM-1280800N3TZQW-T00H (git-fixes). - drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not initialised (git-fixes). - drm/panel/raspberrypi-touchscreen: Initialise the bridge in prepare (git-fixes). - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01 (git-fixes). - drm/panel: simple: Assign data from panel_dpi_probe() correctly (git-fixes). - drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings (git-fixes). - drm/panfrost: Check for error num after setting mask (git-fixes). - drm/plane: Move range check for format_count earlier (git-fixes). - drm/radeon: fix a possible null pointer dereference (git-fixes). - drm/radeon: Fix backlight control on iMac 12,1 (git-fixes). - drm/rockchip: dw_hdmi: Do not leave clock enabled in error case (git-fixes). - drm/rockchip: vop: Correct RK3399 VOP register fields (git-fixes). - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind() (git-fixes). - drm/selftests/test-drm_dp_mst_helper: Fix memory leak in sideband_msg_req_encode_decode (git-fixes). - drm/simpledrm: Add "panel orientation" property on non-upright mounted LCD panels (git-fixes). - drm: sti: do not use kernel-doc markers (git-fixes). - drm/sun4i: Fix crash during suspend after component bind failure (git-fixes). - drm/sun4i: mixer: Fix P010 and P210 format numbers (git-fixes). - drm/sun4i: Remove obsolete references to PHYS_OFFSET (bsc#1190786) - drm/syncobj: flatten dma_fence_chains on transfer (git-fixes). - drm/tegra: Add back arm_iommu_detach_device() (git-fixes). - drm/tegra: Fix reference leak in tegra_dsi_ganged_probe (git-fixes). - drm: use the lookup lock in drm_is_current_master (git-fixes). - drm/v3d/v3d_drv: Check for error num after setting mask (git-fixes). - drm/vc4: crtc: Fix runtime_pm reference counting (git-fixes). - drm/vc4: Fix deadlock on DSI device attach error (git-fixes). - drm/vc4: hdmi: Add debugfs prefix (bsc#1199163). - drm/vc4: hdmi: Allow DBLCLK modes even if horz timing is odd (git-fixes). - drm/vc4: hdmi: Fix build error for implicit function declaration (git-fixes). - drm/vc4: hdmi: Fix HPD GPIO detection (git-fixes). - drm/vc4: hdmi: Make sure the device is powered with CEC (git-fixes). - drm/vc4: hdmi: Split the CEC disable / enable functions in two (git-fixes). - drm/vc4: hvs: Fix frame count register readout (git-fixes). - drm/vc4: hvs: Reset muxes at probe time (git-fixes). - drm/vc4: txp: Do not set TXP_VSTART_AT_EOF (git-fixes). - drm/vc4: txp: Force alpha to be 0xff if it's disabled (git-fixes). - drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync() usage (git-fixes). - drm/virtio: Ensure that objs is not NULL in virtio_gpu_array_put_free() (git-fixes). - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes (git-fixes). - drm/vmwgfx: Disable command buffers on svga3 without gbobjects (git-fixes). - drm/vmwgfx: Fix fencing on SVGAv3 (git-fixes). - drm/vmwgfx: Initialize drm_mode_fb_cmd2 (git-fixes). - drm/vmwgfx: Remove unused compile options (bsc#1190786) - drm/vmwgfx: validate the screen formats (git-fixes). - drm/vrr: Set VRR capable prop only if it is attached to connector (git-fixes). - dt-bindings: arm: bcm: fix BCM53012 and BCM53016 SoC strings (git-fixes). - dt-bindings: can: tcan4x5x: fix mram-cfg RX FIFO config (git-fixes). - dt-bindings: display: sitronix, st7735r: Fix backlight in example (git-fixes). - dt-bindings: gpio: altera: correct interrupt-cells (git-fixes). - dt-bindings: memory: mtk-smi: No need mediatek,larb-id for mt8167 (git-fixes). - dt-bindings: mtd: nand-controller: Fix a comment in the examples (git-fixes). - dt-bindings: mtd: nand-controller: Fix the reg property description (git-fixes). - dt-bindings: net: xgmac_mdio: Remove unsupported "bus-frequency" (git-fixes). - dt-bindings: PCI: xilinx-cpm: Fix reg property order (git-fixes). - dt-bindings: phy: uniphier-usb3hs: Fix incorrect clock-names and reset-names (git-fixes). - dt-bindings: pinctrl: aspeed-g6: remove FWQSPID group (git-fixes). - dt-bindings: pinctrl: pinctrl-microchip-sgpio: Fix example (git-fixes). - dt-bindings: spi: mxic: The interrupt property is not mandatory (git-fixes). - dt-bindings: usb: ehci: Increase the number of PHYs (git-fixes). - dt-bindings: usb: hcd: correct usb-device path (git-fixes). - dt-bindings: usb: ohci: Increase the number of PHYs (git-fixes). - dt-bindings: watchdog: Require samsung,syscon-phandle for Exynos7 (git-fixes). - e1000e: Correct NVM checksum verification flow (bsc#1191663). - e1000e: Fix possible HW unit hang after an s0ix exit (jsc#SLE-18382). - e1000e: Fix possible overflow in LTR decoding (git-fixes). - e1000e: Handshake with CSME starts from ADL platforms (git-fixes). - e1000e: Separate ADP board type from TGP (git-fixes). - EDAC/altera: Fix deferred probing (bsc#1190497). - EDAC/amd64: Add new register offset support and related changes (jsc#SLE-19026). - EDAC/amd64: Set memory type per DIMM (jsc#SLE-19026). - EDAC: Fix calculation of returned address and next offset in edac_align_ptr() (bsc#1190497). - EDAC/synopsys: Read the error count from the correct register (bsc#1190497). - EDAC/xgene: Fix deferred probing (bsc#1190497). - eeprom: ee1004: limit i2c reads to I2C_SMBUS_BLOCK_MAX (git-fixes). - efi: Add missing prototype for efi_capsule_setup_info (git-fixes). - efi: Do not import certificates from UEFI Secure Boot for T2 Macs (git-fixes). - efi: fix return value of __setup handlers (git-fixes). - efivars: Respect "block" flag in efivar_entry_set_safe() (git-fixes). - epic100: fix use after free on rmmod (git-fixes). - ethernet/sfc: remove redundant rc variable (bsc#1196306). - exec: Force single empty string when argv is empty (bsc#1200571). - ext2: correct max file size computing (bsc#1197820). - ext4: avoid trim error on fs with small groups (bsc#1191271). - ext4: destroy ext4_fc_dentry_cachep kmemcache on module removal (bsc#1197917). - ext4: fix an use-after-free issue about data=journal writeback mode (bsc#1195482). - ext4: fix bug_on ext4_mb_use_inode_pa (bsc#1200810). - ext4: fix bug_on in __es_tree_search (bsc#1200809). - ext4: fix ext4_fc_stats trace point (git-fixes). - ext4: fix race condition between ext4_write and ext4_convert_inline_data (bsc#1200807). - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole (bsc#1200806). - ext4: make variable "count" signed (bsc#1200820). - ext4: reject the 'commit' option on ext2 filesystems (bsc#1200808). - extcon: Modify extcon device to be created after driver data is set (git-fixes). - extcon: ptn5150: Add queue work sync before driver release (git-fixes). - faddr2line: Fix overlapping text section failures, the sequel (git-fixes). - fbcon: Avoid 'cap' set but not used warning (bsc#1190786) - fbcon: Consistently protect deferred_takeover with console_lock() (git-fixes). - firewire: core: extend card->lock in fw_core_handle_bus_reset (git-fixes). - firewire: fix potential uaf in outbound_phy_packet_callback() (git-fixes). - firewire: remove check of list iterator against head past the loop body (git-fixes). - firmware: arm_ffa: Fix uuid parameter to ffa_partition_probe (git-fixes). - firmware: arm_ffa: Remove incorrect assignment of driver_data (git-fixes). - firmware: arm_scmi: Fix list protocols enumeration in the base protocol (git-fixes). - firmware: arm_scmi: Fix sorting of retrieved clock rates (git-fixes). - firmware: arm_scmi: Remove space in MODULE_ALIAS name (git-fixes). - firmware: arm_scmi: Validate BASE_DISCOVER_LIST_PROTOCOLS response (git-fixes). - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle (git-fixes). - firmware: google: Properly state IOMEM dependency (git-fixes). - firmware: qcom: scm: Remove reassignment to desc following initializer (git-fixes). - firmware: stratix10-svc: add missing callback parameter on RSU (git-fixes). - firmware: stratix10-svc: fix a missing check on list iterator (git-fixes). - firmware: sysfb: fix platform-device leak in error path (git-fixes). - firmware: ti_sci: Fix compilation failure when CONFIG_TI_SCI_PROTOCOL is not defined (git-fixes). - firmware: use kernel credentials when reading firmware (git-fixes). - fs: fd tables have to be multiples of BITS_PER_LONG (bsc#1200827). - fs: fix fd table size alignment properly (bsc#1200882). - fs: handle circular mappings correctly (bsc#1197918). - fsl_lpuart: Do not enable interrupts too early (git-fixes). - fsnotify: Do not insert unmergeable events in hashtable (bsc#1197922). - fsnotify: fix fsnotify hooks in pseudo filesystems (bsc#1195944 bsc#1195478). - fsnotify: fix wrong lockdep annotations (bsc#1200815). - ftrace: Clean up hash direct_functions on register failures (git-fixes). - fuse: fix fileattr op failure (bsc#1197292). - gen_init_cpio: fix short read file handling (bsc#1193289). - genirq/affinity: Consider that CPUs on nodes can be (git-fixes) - genirq: Synchronize interrupt thread startup (git-fixes) - gianfar: ethtool: Fix refcount leak in gfar_get_ts_info (git-fixes). - gma500: fix an incorrect NULL check on list iterator (git-fixes). - gpio: adp5588: Remove support for platform setup and teardown callbacks (git-fixes). - gpio: aggregator: Fix calling into sleeping GPIO controllers (git-fixes). - gpio: dwapb: Do not print error on -EPROBE_DEFER (git-fixes). - gpio: gpio-vf610: do not touch other bits when set the target bit (git-fixes). - gpiolib: acpi: Convert ACPI value of debounce to microseconds (git-fixes). - gpiolib: acpi: use correct format characters (git-fixes). - gpiolib: Never return internal error codes to user space (git-fixes). - gpiolib: of: fix bounds check for 'gpio-reserved-ranges' (git-fixes). - gpio: mvebu: drop pwm base assignment (git-fixes). - gpio: mvebu/pwm: Refuse requests with inverted polarity (git-fixes). - gpio: pca953x: fix irq_stat not updated when irq is disabled (irq_mask not set) (git-fixes). - gpio: pca953x: use the correct register address to do regcache sync (git-fixes). - gpio: Return EPROBE_DEFER if gc->to_irq is NULL (git-fixes). - gpio: Revert regression in sysfs-gpio (gpiolib.c) (git-fixes). - gpio: sifive: use the correct register to read output values (git-fixes). - gpio: tegra186: Fix chip_data type confusion (git-fixes). - gpio: ts4900: Do not set DAT and OE together (git-fixes). - gpio: visconti: Fix fwnode of GPIO IRQ (git-fixes). - gpio: winbond: Fix error code in winbond_gpio_get() (git-fixes). - gpu: host1x: Fix a memory leak in 'host1x_remove()' (git-fixes). - gpu: ipu-v3: Fix dev_dbg frequency output (git-fixes). - gup: Turn fault_in_pages_{readable,writeable} into fault_in_{readable,writeable} (git-fixes). - gve: Fix GFP flags when allocing pages (git-fixes). - gve: fix the wrong AdminQ buffer queue index check (git-fixes). - habanalabs: Add check for pci_enable_device (git-fixes). - habanalabs: fix possible memory leak in MMU DR fini (git-fixes). - hamradio: fix macro redefine warning (git-fixes). - hex2bin: fix access beyond string end (git-fixes). - HID: add mapping for KEY_ALL_APPLICATIONS (git-fixes). - HID: add mapping for KEY_DICTATE (git-fixes). - HID: Add support for open wheel and no attachment to T300 (git-fixes). - HID:Add support for UGTABLET WP5540 (git-fixes). - HID: amd_sfh: Add illuminance mask to limit ALS max value (git-fixes). - HID: amd_sfh: Correct the structure field name (git-fixes). - HID: amd_sfh: Modify the bus name (git-fixes). - HID: amd_sfh: Modify the hid name (git-fixes). - HID: bigben: fix slab-out-of-bounds Write in bigben_probe (git-fixes). - hide appended member supports_dynamic_smps_6ghz (git-fixes). - HID: elan: Fix potential double free in elan_input_configured (git-fixes). - HID: hid-led: fix maximum brightness for Dream Cheeky (git-fixes). - HID: hid-thrustmaster: fix OOB read in thrustmaster_interrupts (git-fixes). - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports (git-fixes). - HID: intel-ish-hid: Use dma_alloc_coherent for firmware update (git-fixes). - HID: logitech-dj: add new lightspeed receiver id (git-fixes). - HID: multitouch: add quirks to enable Lenovo X12 trackpoint (git-fixes). - HID: multitouch: Add support for Google Whiskers Touchpad (git-fixes). - HID: multitouch: fix Dell Precision 7550 and 7750 button type (bsc#1197243). - HID: vivaldi: fix sysfs attributes leak (git-fixes). - hinic: fix bug of wq out of bound access (git-fixes). - hv_balloon: rate-limit "Unhandled message" warning (git-fixes). - hv_netvsc: Add check for kvmalloc_array (git-fixes). - hv_utils: Add comment about max VMbus packet size in VSS driver (git-fixes). - hwmon: (dell-smm) Speed up setting of fan speed (git-fixes). - hwmon: (f71882fg) Fix negative temperature (git-fixes). - hwmon: Handle failure to register sensor with thermal zone correctly (git-fixes). - hwmon: (ibmaem) do not call platform_device_del() if platform_device_add() fails (git-fixes). - hwmon: (ltq-cputemp) restrict it to SOC_XWAY (git-fixes). - hwmon: (pmbus) Add mutex to regulator ops (git-fixes). - hwmon: (pmbus) Add Vin unit off handling (git-fixes). - hwmon: (pmbus) Check PEC support before reading other registers (git-fixes). - hwmon: (pmbus) Clear pmbus fault/warning bits after read (git-fixes). - hwmon: (pmbus) disable PEC if not enabled (git-fixes). - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING (git-fixes). - hwmon: (tmp401) Add OF device ID table (git-fixes). - hwrng: atmel - disable trng on failure path (git-fixes). - hwrng: cavium - Check health status while reading random data (git-fixes). - hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER (git-fixes). - hwrng: nomadik - Change clk_disable to clk_disable_unprepare (git-fixes). - hwrng: omap3-rom - fix using wrong clk_disable() in omap_rom_rng_runtime_resume() (git-fixes). - i2c: at91: Initialize dma_buf in at91_twi_xfer() (git-fixes). - i2c: at91: use dma safe buffers (git-fixes). - i2c: bcm2835: Avoid clock stretching timeouts (git-fixes). - i2c: bcm2835: Fix the error handling in 'bcm2835_i2c_probe()' (git-fixes). - i2c: bcm2835: Use platform_get_irq() to get the interrupt (git-fixes). - i2c: brcmstb: fix support for DSL and CM variants (git-fixes). - i2c: cadence: Increase timeout per message if necessary (git-fixes). - i2c: designware: Use standard optional ref clock implementation (git-fixes). - i2c: dev: Force case user pointers in compat_i2cdev_ioctl() (git-fixes). - i2c: ismt: prevent memory corruption in ismt_access() (git-fixes). - i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging (git-fixes). - i2c: meson: Fix wrong speed use from probe (git-fixes). - i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe() (git-fixes). - i2c: mux: demux-pinctrl: do not deactivate a master that is not active (git-fixes). - i2c: npcm7xx: Add check for platform_driver_register (git-fixes). - i2c: npcm: Correct register access width (git-fixes). - i2c: npcm: Fix timeout calculation (git-fixes). - i2c: npcm: Handle spurious interrupts (git-fixes). - i2c: piix4: Add EFCH MMIO support for SMBus port select (git-fixes). - i2c: piix4: Add EFCH MMIO support to region request and release (git-fixes). - i2c: piix4: Add EFCH MMIO support to SMBus base address detect (git-fixes). - i2c: piix4: Enable EFCH MMIO for Family 17h+ (git-fixes). - i2c: piix4: Move port I/O region request/release code into functions (git-fixes). - i2c: piix4: Move SMBus controller base address detect into function (git-fixes). - i2c: piix4: Move SMBus port selection into function (git-fixes). - i2c: piix4: Replace hardcoded memory map size with a #define (git-fixes). - i2c: qcom-cci: do not delete an unregistered adapter (git-fixes). - i2c: qcom-cci: do not put a device tree node before i2c_add_adapter() (git-fixes). - i2c: rcar: fix PM ref counts in probe error paths (git-fixes). - i2c: xiic: Make bus names unique (git-fixes). - i40e: do not reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb (git-fixes). - i40e: Fix for failed to init adminq while VF reset (git-fixes). - i40e: Fix issue when maximum queues is exceeded (git-fixes). - i40e: Fix queues reservation for XDP (git-fixes). - i40e: Fix reset bw limit when DCB enabled with 1 TC (git-fixes). - i40e: Fix reset path while removing the driver (git-fixes). - i40e: fix unsigned stat widths (git-fixes). - i40e: i40e_main: fix a missing check on list iterator (git-fixes). - i40e: Increase delay to 1 s after global EMP reset (git-fixes). - i40e: remove dead stores on XSK hotpath (jsc#SLE-18378). - i40e: respect metadata on XSK Rx to skb (git-fixes). - i40e: stop disabling VFs due to PF error responses (jsc#SLE-18378). - iavf: Add waiting so the port is initialized in remove (jsc#SLE-18385). - iavf: Fix deadlock in iavf_reset_task (jsc#SLE-18385). - iavf: Fix double free in iavf_reset_task (jsc#SLE-18385). - iavf: Fix handling of vlan strip virtual channel messages (jsc#SLE-18385). - iavf: Fix hang during reboot/shutdown (jsc#SLE-18385). - iavf: Fix __IAVF_RESETTING state usage (jsc#SLE-18385). - iavf: Fix init state closure on remove (jsc#SLE-18385). - iavf: Fix locking for VIRTCHNL_OP_GET_OFFLOAD_VLAN_V2_CAPS (jsc#SLE-18385). - iavf: Fix missing check for running netdev (git-fixes). - iavf: Fix race in init state (jsc#SLE-18385). - iavf: Rework mutexes for better synchronisation (jsc#SLE-18385 stable-5.14.6). - IB/cma: Allow XRC INI QPs to set their local ACK timeout (git-fixes). - IB/cm: Cancel mad on the DREQ event when the state is MRA_REP_RCVD (git-fixes). - IB/cm: Release previously acquired reference counter in the cm_id_priv (git-fixes). - IB/hfi1: Allow larger MTU without AIP (git-fixes). - IB/hfi1: Fix AIP early init panic (git-fixes). - IB/hfi1: Fix alloc failure with larger txqueuelen (git-fixes). - IB/hfi1: Fix panic with larger ipoib send_queue_size (jsc#SLE-19242). - IB/hfi1: Fix tstats alloc and dealloc (git-fixes). - IB/mlx5: Expose NDR speed through MAD (bsc#1196930). - ibmvnic: do not release napi in __ibmvnic_open() (bsc#1195668 ltc#195811). - ibmvnic: fix race between xmit and reset (bsc#1197302 ltc#197259). - ibmvnic: Properly dispose of all skbs during a failover (bsc#1200925). - ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815). - IB/qib: Fix duplicate sysfs directory name (git-fixes). - IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition (git-fixes). - IB/rdmavt: Validate remote_addr during loopback atomic tests (git-fixes). - ice: allow creating VFs for !CONFIG_NET_SWITCHDEV (jsc#SLE-18375). - ice: check the return of ice_ptp_gettimex64 (git-fixes). - ice: clear cmd_type_offset_bsz for TX rings (jsc#SLE-18375). - ice: Clear default forwarding VSI during VSI release (git-fixes). - ice: clear stale Tx queue settings before configuring (git-fixes). - ice: do not allow to run ice_send_event_to_aux() in atomic ctx (git-fixes). - ice: do not reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb (git-fixes). - ice: Do not use GFP_KERNEL in atomic context (git-fixes). - ice: enable parsing IPSEC SPI headers for RSS (git-fixes). - ice: fix an error code in ice_cfg_phy_fec() (git-fixes). - ice: fix concurrent reset and removal of VFs (git-fixes). - ice: fix crash in switchdev mode (jsc#SLE-18375). - ice: Fix curr_link_speed advertised speed (git-fixes). - ice: Fix incorrect locking in ice_vc_process_vf_msg() (jsc#SLE-18375). - ice: fix IPIP and SIT TSO offload (git-fixes). - ice: fix NULL pointer dereference in ice_update_vsi_tx_ring_stats() (jsc#SLE-18375). - ice: fix PTP stale Tx timestamps cleanup (git-fixes). - ice: fix setting l4 port flag when adding filter (jsc#SLE-18375). - ice: fix use-after-free when deinitializing mailbox snapshot (git-fixes). - ice: initialize local variable 'tlv' (git-fixes). - ice: kabi protect ice_pf (bsc#1200502). - ice: Protect vf_state check by cfg_lock in ice_vc_process_vf_msg() (jsc#SLE-18375). - ice: respect metadata on XSK Rx to skb (git-fixes). - ice: synchronize_rcu() when terminating rings (git-fixes). - ice: xsk: Fix indexing in ice_tx_xsk_pool() (jsc#SLE-18375). - ice: xsk: fix VSI state check in ice_xsk_wakeup() (git-fixes). - igb: refactor XDP registration (git-fixes). - igc: avoid kernel warning when changing RX ring parameters (git-fixes). - igc: do not reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb (git-fixes). - igc: Fix BUG: scheduling while atomic (git-fixes). - igc: Fix infinite loop in release_swfw_sync (git-fixes). - igc: Fix suspending when PTM is active (jsc#SLE-18377). - igc: igc_read_phy_reg_gpy: drop premature return (git-fixes). - igc: igc_write_phy_reg_gpy: drop premature return (git-fixes). - iio:accel:bma180: rearrange iio trigger get and register (git-fixes). - iio: accel: fxls8962af: add padding to regmap for SPI (git-fixes). - iio:accel:kxcjk-1013: rearrange iio trigger get and register (git-fixes). - iio: accel: mma8452: ignore the return value of reset operation (git-fixes). - iio: accel: mma8452: use the correct logic to get mma8452_data (git-fixes). - iio:accel:mxc4005: rearrange iio trigger get and register (git-fixes). - iio: adc: ad7124: fix mask used for setting AIN_BUFP and AIN_BUFM bits (git-fixes). - iio: adc: ad7124: Remove shift from scan_type (git-fixes). - iio: adc: Add check for devm_request_threaded_irq (git-fixes). - iio: adc: adi-axi-adc: Fix refcount leak in adi_axi_adc_attach_client (git-fixes). - iio: adc: axp288: Override TS pin bias current for some models (git-fixes). - iio: adc: men_z188_adc: Fix a resource leak in an error handling path (git-fixes). - iio: adc: sc27xx: Fine tune the scale calibration values (git-fixes). - iio: adc: sc27xx: fix read big scale voltage not right (git-fixes). - iio: adc: stm32: Fix ADCs iteration in irq handler (git-fixes). - iio: adc: stm32: Fix IRQs on STM32F4 by removing custom spurious IRQs message (git-fixes). - iio: adc: stm32: fix maximum clock rate for stm32mp15x (git-fixes). - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check (git-fixes). - iio: adc: ti-ads131e08: add missing fwnode_handle_put() in ads131e08_alloc_channels() (git-fixes). - iio: adc: tsc2046: fix memory corruption by preventing array overflow (git-fixes). - iio: adc: vf610: fix conversion mode sysfs node name (git-fixes). - iio: afe: rescale: Fix boolean logic bug (git-fixes). - iio: afe: rescale: use s64 for temporary scale calculations (git-fixes). - iio: buffer: Fix file related error handling in IIO_BUFFER_GET_FD_IOCTL (git-fixes). - iio:chemical:ccs811: rearrange iio trigger get and register (git-fixes). - iio: dac: ad5446: Fix read_raw not returning set value (git-fixes). - iio: dac: ad5592r: Fix the missing return value (git-fixes). - iio: dummy: iio_simple_dummy: check the return value of kstrdup() (git-fixes). - iio: Fix error handling for PM (git-fixes). - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up() (git-fixes). - iio:humidity:hts221: rearrange iio trigger get and register (git-fixes). - iio:imu:adis16480: fix buffering for devices with no burst mode (git-fixes). - iio:imu:bmi160: disable regulator in error path (git-fixes). - iio: imu: inv_icm42600: Fix I2C init possible nack (git-fixes). - iio: imu: st_lsm6dsx: wait for settling time in st_lsm6dsx_read_oneshot (git-fixes). - iio: inkern: apply consumer scale on IIO_VAL_INT cases (git-fixes). - iio: inkern: apply consumer scale when no channel scale is available (git-fixes). - iio: inkern: make a best effort on offset calculation (git-fixes). - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on() (git-fixes). - iio: magnetometer: yas530: Fix memchr_inv() misuse (git-fixes). - iio: mma8452: Fix probe failing when an i2c_device_id is used (git-fixes). - iio: mma8452: fix probe fail when device tree compatible is used (git-fixes). - iio: proximity: vl53l0x: Fix return value check of wait_for_completion_timeout (git-fixes). - iio: st_sensors: Add a local lock for protecting odr (git-fixes). - iio: trigger: sysfs: fix use-after-free on remove (git-fixes). - ima: Allow template selection with ima_template[_fmt]= after ima_hash= (git-fixes). - ima: Do not print policy rule with inactive LSM labels (git-fixes). - ima: fix reference leak in asymmetric_verify() (git-fixes). - ima: Remove ima_policy file before directory (git-fixes). - init: call time_init() before rand_initialize() (git-fixes). - init: Initialize noop_backing_dev_info early (bsc#1200822). - init/main.c: return 1 from handled __setup() functions (git-fixes). - initramfs: Check timestamp to prevent broken cpio archive (bsc#1193289). - inotify: show inotify mask flags in proc fdinfo (bsc#1200600). - Input: add bounds checking to input_set_capability() (git-fixes). - Input: aiptek - properly check endpoint type (git-fixes). - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag (git-fixes). - Input: clear BTN_RIGHT/MIDDLE on buttonpads (git-fixes). - Input: elan_i2c: Add deny list for Lenovo Yoga Slim 7 (bsc#1193064). - Input: elan_i2c - fix regulator enable count imbalance after suspend/resume (git-fixes). - Input: elan_i2c - move regulator_[en|dis]able() out of elan_[en|dis]able_power() (git-fixes). - Input: gpio-keys - cancel delayed work only in case of GPIO (git-fixes). - Input: ili210x - fix reset timing (git-fixes). - Input: omap4-keypad - fix pm_runtime_get_sync() error checking (git-fixes). - Input: samsung-keypad - properly state IOMEM dependency (git-fixes). - Input: soc_button_array - also add Lenovo Yoga Tablet2 1051F to dmi_use_low_level_irq (git-fixes). - Input: sparcspkr - fix refcount leak in bbc_beep_probe (git-fixes). - Input: stmfts - do not leave device disabled in stmfts_input_open (git-fixes). - Input: stmfts - fix reference leak in stmfts_input_open (git-fixes). - Input: synaptics - enable InterTouch on ThinkPad T14/P14s Gen 1 AMD (git-fixes). - Input: synaptics: retry query upon error (bsc#1194086). - Input: wm97xx: Simplify resource management (git-fixes). - Input: zinitix - do not report shadow fingers (git-fixes). - integrity: check the return value of audit_log_start() (git-fixes). - iocost: do not reset the inuse weight of under-weighted debtors (git-fixes). - iocost: Fix divide-by-zero on donation from low hweight cgroup (bsc#1198014). - iomap: iomap_write_failed fix (bsc#1200829). - iommu/amd: Fix loop timeout issue in iommu_ga_log_enable() (git-fixes). - iommu/amd: Increase timeout waiting for GA log enablement (bsc#1199052). - iommu/amd: Remove useless irq affinity notifier (git-fixes). - iommu/amd: Restore GA log/tail pointer on host resume (git-fixes). - iommu/amd: X2apic mode: mask/unmask interrupts on suspend/resume (git-fixes). - iommu/amd: X2apic mode: re-enable after resume (git-fixes). - iommu/amd: X2apic mode: setup the INTX registers on mask/unmask (git-fixes). - iommu: arm-smmu: disable large page mappings for Nvidia arm-smmu (bsc#1198826). - iommu/arm-smmu-qcom: Fix TTBR0 read (git-fixes). - iommu: Extend mutex lock scope in iommu_probe_device() (git-fixes). - iommu/ioasid: Introduce a helper to check for valid PASIDs (jsc#SLE-24350). - iommu/io-pgtable-arm: Fix table descriptor paddr formatting (git-fixes). - iommu/io-pgtable-arm-v7s: Add error handle for page table allocation failure (git-fixes). - iommu/iova: Fix race between FQ timeout and teardown (git-fixes). - iommu/sva: Assign a PASID to mm on PASID allocation and free it on mm exit (jsc#SLE-24350). - iommu/sva: Rename CONFIG_IOMMU_SVA_LIB to CONFIG_IOMMU_SVA (jsc#SLE-24350). - iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (git-fixes). - ionic: add FW_STOPPING state (git-fixes). - ionic: Allow flexibility for error reporting on dev commands (git-fixes). - ionic: better handling of RESET event (git-fixes). - ionic: catch transition back to RUNNING with fw_generation 0 (git-fixes). - ionic: Cleanups in the Tx hotpath code (git-fixes). - ionic: Correctly print AQ errors if completions are not received (git-fixes). - ionic: disable napi when ionic_lif_init() fails (git-fixes). - ionic: Do not send reset commands if FW isn't running (git-fixes). - ionic: fix missing pci_release_regions() on error in ionic_probe() (git-fixes). - ionic: fix type complaint in ionic_dev_cmd_clean() (git-fixes). - ionic: fix up printing of timeout error (git-fixes). - ionic: Prevent filter add/del err msgs when the device is not available (git-fixes). - ionic: Query FW when getting VF info via ndo_get_vf_config (git-fixes). - ionic: remove the dbid_inuse bitmap (git-fixes). - ionic: replace set_vf data with union (git-fixes). - ionic: start watchdog after all is setup (git-fixes). - ionic: stretch heartbeat detection (git-fixes). - io_uring: add more locking annotations for submit (bsc#1199011). - io_uring: avoid touching inode in rw prep (bsc#1199011). - io_uring: be smarter about waking multiple CQ ring waiters (bsc#1199011). - io_uring: cache __io_free_req()'d requests (bsc#1199011). - io_uring: clean io-wq callbacks (bsc#1199011). - io_uring: clean up tctx_task_work() (bsc#1199011). - io_uring: deduplicate open iopoll check (bsc#1199011). - io_uring: do not halt iopoll too early (bsc#1199011). - io_uring: drop exec checks from io_req_task_submit (bsc#1199011). - io_uring: extract a helper for ctx quiesce (bsc#1199011). - io_uring: Fix undefined-behaviour in io_issue_sqe (bsc#1199011). - io_uring: improve ctx hang handling (bsc#1199011). - io_uring: inline fixed part of io_file_get() (bsc#1199011). - io_uring: inline io_free_req_deferred (bsc#1199011). - io_uring: inline io_poll_remove_waitqs (bsc#1199011). - io_uring: inline struct io_comp_state (bsc#1199011). - io_uring: kill unused IO_IOPOLL_BATCH (bsc#1199011). - io_uring: move io_fallback_req_func() (bsc#1199011). - io_uring: move io_put_task() definition (bsc#1199011). - io_uring: move io_rsrc_node_alloc() definition (bsc#1199011). - io_uring: optimise io_cqring_wait() hot path (bsc#1199011). - io_uring: optimise putting task struct (bsc#1199011). - io_uring: refactor io_alloc_req (bsc#1199011). - io_uring: remove extra argument for overflow flush (bsc#1199011). - io_uring: remove file batch-get optimisation (bsc#1199011). - io_uring: remove IRQ aspect of io_ring_ctx completion lock (bsc#1199011). - io_uring: remove redundant args from cache_free (bsc#1199011). - io_uring: remove unnecessary PF_EXITING check (bsc#1199011). - io_uring: rename io_file_supports_async() (bsc#1199011). - io_uring: run linked timeouts from task_work (bsc#1199011). - io_uring: run regular file completions from task_work (bsc#1199011). - io_uring: run timeouts from task_work (bsc#1199011). - io_uring: use inflight_entry instead of compl.list (bsc#1199011). - io_uring: use kvmalloc for fixed files (bsc#1199011). - io-wq: get rid of FIXED worker flag (bsc#1199011). - io-wq: make worker creation resilient against signals (bsc#1199011). - io-wq: move nr_running and worker_refs out of wqe->lock protection (bsc#1199011). - io-wq: only exit on fatal signals (bsc#1199011). - io-wq: provide a way to limit max number of workers (bsc#1199011). - io-wq: split bounded and unbounded work into separate lists (bsc#1199011). - io-wq: wqe and worker locks no longer need to be IRQ safe (bsc#1199011). - ipc/sem: do not sleep with a spin lock held (bsc#1198412). - ipheth: fix EOVERFLOW in ipheth_rcvbulk_callback (git-fixes). - ipmi: bail out if init_srcu_struct fails (git-fixes). - ipmi: Fix pr_fmt to avoid compilation issues (git-fixes). - ipmi: Fix UAF when uninstall ipmi_si and ipmi_msghandler module (git-fixes). - ipmi:ssif: Check for NULL msg when handling events and messages (git-fixes). - ipvs: add sysctl_run_estimation to support disable estimation (bsc#1195504). - ipw2x00: Fix potential NULL dereference in libipw_xmit() (git-fixes). - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x (git-fixes). - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value (git-fixes). - irqchip/aspeed-scu-ic: Fix irq_of_parse_and_map() return value (git-fixes). - irqchip/exiu: Fix acknowledgment of edge triggered interrupts (git-fixes). - irqchip/gic, gic-v3: Prevent GSI to SGI translations (git-fixes). - irqchip/gic/realview: Fix refcount leak in realview_gic_of_init (git-fixes). - irqchip/gic-v3: Ensure pseudo-NMIs have an ISB between ack and handling (git-fixes). - irqchip/gic-v3: Fix error handling in gic_populate_ppi_partitions (git-fixes). - irqchip/gic-v3: Fix GICR_CTLR.RWP polling (git-fixes). - irqchip/gic-v3: Fix refcount leak in gic_populate_ppi_partitions (git-fixes). - irqchip/gic-v4: Wait for GICR_VPENDBASER.Dirty to clear before descheduling (git-fixes). - irqchip: irq-xtensa-mx: fix initial IRQ affinity (git-fixes). - irqchip/nvic: Release nvic_base upon failure (git-fixes). - irqchip/qcom-pdc: Fix broken locking (git-fixes). - irqchip/realtek-rtl: Fix refcount leak in map_interrupts (git-fixes). - irqchip/realtek-rtl: Service all pending interrupts (git-fixes). - isdn: hfcpci: check the return value of dma_set_mask() in setup_hw() (git-fixes). - ivtv: fix incorrect device_caps for ivtvfb (git-fixes). - iwlwifi: do not advertise TWT support (git-fixes). - iwlwifi: Fix -EIO error code that is never returned (git-fixes). - iwlwifi: fix use-after-free (git-fixes). - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing (git-fixes). - iwlwifi: mvm: align locking in D3 test debugfs (git-fixes). - iwlwifi: mvm: check debugfs_dir ptr before use (git-fixes). - iwlwifi: mvm: Correctly set fragmented EBS (git-fixes). - iwlwifi: mvm: Do not call iwl_mvm_sta_from_mac80211() with NULL sta (git-fixes). - iwlwifi: mvm: do not crash on invalid rate w/o STA (git-fixes). - iwlwifi: mvm: do not iterate unadded vifs when handling FW SMPS req (git-fixes). - iwlwifi: mvm: do not send SAR GEO command for 3160 devices (git-fixes). - iwlwifi: mvm: Fix an error code in iwl_mvm_up() (git-fixes). - iwlwifi: mvm: fix assert 1F04 upon reconfig (git-fixes). - iwlwifi: mvm: move only to an enabled channel (git-fixes). - iwlwifi: pcie: fix locking when "HW not ready" (git-fixes). - iwlwifi: pcie: gen2: fix locking when "HW not ready" (git-fixes). - iwlwifi: yoyo: remove DBGI_SRAM address reset writing (git-fixes). - ixgbe: do not reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb (git-fixes). - ixgbe: ensure IPsec VF - PF compatibility (git-fixes). - ixgbe: respect metadata on XSK Rx to skb (git-fixes). - ixgbe: xsk: change !netif_carrier_ok() handling in ixgbe_xmit_zc() (git-fixes). - jbd2: Fake symbols defined under CONFIG_JBD2_DEBUG (bsc#1198971). - jfs: fix divide error in dbNextAG (bsc#1200828). - kABI: fix change of iscsi_host_remove() arguments (bsc#1198410). - kABI: Fix kABI after "x86/mm/cpa: Generalize __set_memory_enc_pgtable()" (jsc#SLE-19924). - kABI fix of sysctl_run_estimation (git-fixes). - kABI: fix removal of iscsi_destroy_conn (bsc#1198410). - kABI: fix rndis_parameters locking (git-fixes). - kABI: ivtv: restore caps member (git-fixes). - kabi/severities: add exception for bcache symboles - kabi/severities: allow dropping a few invalid exported symbols (bsc#1201218) - kabi/severities: Ignore arch/x86/kvm except for kvm_x86_ops Handle this like in previous SLE kernels. - kABI workaround for fxls8962af iio accel drivers (git-fixes). - kABI workaround for pci quirks (git-fixes). - kconfig: fix failing to generate auto.conf (git-fixes). - kconfig: let 'shell' return enough output for deep path names (git-fixes). - kernel/fork: Initialize mm's PASID (jsc#SLE-24350). - kernel/resource: Introduce request_mem_region_muxed() (git-fixes). - kexec_file: drop weak attribute from arch_kexec_apply_relocations[_add] (git-fixes). - KEYS: asymmetric: enforce that sig algo matches key algo (git-fixes). - KEYS: asymmetric: properly validate hash_algo and encoding (git-fixes). - KEYS: fix length validation in keyctl_pkey_params_get_2() (git-fixes). - KEYS: trusted: Avoid calling null function trusted_key_exit (git-fixes). - KEYS: trusted: Fix trusted key backends when building as module (git-fixes). - KEYS: trusted: tpm2: Fix migratable logic (git-fixes). - kprobes: Add kretprobe_find_ret_addr() for searching return address (bsc#1193277). - kprobes: Enable stacktrace from pt_regs in kretprobe handler (bsc#1193277). - kprobes: treewide: Cleanup the error messages for kprobes (bsc#1193277). - kprobes: treewide: Make it harder to refer kretprobe_trampoline directly (bsc#1193277). - kprobes: treewide: Remove trampoline_address from kretprobe_trampoline_handler() (bsc#1193277). - kprobes: treewide: Replace arch_deref_entry_point() with dereference_symbol_descriptor() (bsc#1193277). - kprobes: treewide: Use 'kprobe_opcode_t *' for the code address in get_optimized_kprobe() (bsc#1193277). - kselftest/arm64: bti: force static linking (git-fixes). - kunit: tool: Import missing importlib.abc (git-fixes). - KVM: arm64: Avoid consuming a stale esr value when SError occur (git-fixes). - KVM: arm64: Drop unused workaround_flags vcpu field (git-fixes). - KVM: arm64: pkvm: Use the mm_ops indirection for cache maintenance (git-fixes). - KVM: arm64: Use shadow SPSR_EL1 when injecting exceptions on !VHE (git-fixes). - KVM: Clean up benign vcpu->cpu data races when kicking vCPUs (git-fixes). - KVM: Ensure local memslot copies operate on up-to-date arch-specific data (git-fixes). - KVM: fix wrong exception emulation in check_rdtsc (git-fixes). - KVM: LAPIC: Drop pending LAPIC timer injection when canceling the timer (git-fixes). - KVM: nVMX: Abide to KVM_REQ_TLB_FLUSH_GUEST request on nested vmentry/vmexit (git-fixes). - KVM: nVMX: Clear IDT vectoring on nested VM-Exit for double/triple fault (git-fixes). - KVM: nVMX: Do not clear CR3 load/store exiting bits if L1 wants 'em (git-fixes). - KVM: nVMX: Emulate guest TLB flush on nested VM-Enter with new vpid12 (git-fixes). - KVM: nVMX: Ensure vCPU honors event request if posting nested IRQ fails (git-fixes). - KVM: nVMX: Flush current VPID (L1 vs. L2) for KVM_REQ_TLB_FLUSH_GUEST (git-fixes). - KVM: nVMX: Leave most VM-Exit info fields unmodified on failed VM-Entry (git-fixes). - KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes). - KVM: s390: Ensure kvm_arch_no_poll() is read once when blocking vCPU (git-fixes). - KVM: s390: pv: add macros for UVC CC values (git-fixes). - KVM: s390: pv: avoid stalls when making pages secure (git-fixes). - KVM: s390: vsie/gmap: reduce gmap_rmap overhead (git-fixes). - KVM: selftests: Do not skip L2's VMCALL in SMM test for SVM guest (bsc#1194523). - KVM: selftests: Re-enable access_tracking_perf_test (bsc#1194526). - KVM: SEV: accept signals in sev_lock_two_vms (bsc#1194526). - KVM: SEV: do not take kvm->lock when destroying (bsc#1194526). - KVM: SEV: Fall back to vmalloc for SEV-ES scratch area if necessary (bsc#1194526). - KVM: SEV: Mark nested locking of kvm->lock (bsc#1194526). - KVM: SEV: Return appropriate error codes if SEV-ES scratch setup fails (bsc#1194526). - KVM: SVM: Allow AVIC support on system w/ physical APIC ID > 255 (bsc#1193823). - KVM: SVM: Do not terminate SEV-ES guests on GHCB validation failure (bsc#1194526). - KVM: SVM: drop unnecessary code in svm_hv_vmcb_dirty_nested_enlightenments() (git-fixes). - KVM: SVM: Emulate #INIT in response to triple fault shutdown (git-fixes). - KVM: SVM: Fix kvm_cache_regs.h inclusions for is_guest_mode() (git-fixes). - KVM: SVM: hyper-v: Enable Enlightened MSR-Bitmap support for real (git-fixes). - KVM: SVM: Never reject emulation due to SMAP errata for !SEV guests (git-fixes). - KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak (git-fixes). - KVM: VMX: Do not unblock vCPU w/ Posted IRQ if IRQs are disabled in guest (git-fixes). - KVM: VMX: Fold ept_update_paging_mode_cr0() back into vmx_set_cr0() (git-fixes). - KVM: VMX: Invert handling of CR0.WP for EPT without unrestricted guest (git-fixes). - KVM: VMX: Read Posted Interrupt "control" exactly once per loop iteration (git-fixes). - KVM: VMX: Refresh list of user return MSRs after setting guest CPUID (git-fixes). - KVM: VMX: Remove defunct "nr_active_uret_msrs" field (git-fixes). - KVM: VMX: Set failure code in prepare_vmcs02() (git-fixes). - KVM: VMX: Skip pointless MSR bitmap update when setting EFER (git-fixes). - KVM: VMX: Wake vCPU when delivering posted IRQ even if vCPU == this vCPU (git-fixes). - KVM: x86: Assume a 64-bit hypercall for guests with protected state (git-fixes). - kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU (git-fixes). - KVM: x86: Do not force set BSP bit when local APIC is managed by userspace (git-fixes). - KVM: x86: Do not mark all registers as avail/dirty during RESET/INIT (git-fixes). - KVM: x86: do not print when fail to read/write pv eoi memory (git-fixes). - KVM: x86: Drop guest CPUID check for host initiated writes to MSR_IA32_PERF_CAPABILITIES (git-fixes). - KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2 (git-fixes). - KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() (git-fixes). - KVM: X86: Ensure that dirty PDPTRs are loaded (git-fixes). - KVM: x86: Exit to userspace if emulation prepared a completion callback (git-fixes). - KVM: x86: Fix emulation in writing cr8 (git-fixes). - KVM: X86: Fix missed remote tlb flush in rmap_write_protect() (git-fixes). - KVM: x86: Fix uninitialized eoi_exit_bitmap usage in vcpu_load_eoi_exitmap() (git-fixes). - KVM: x86: Handle 32-bit wrap of EIP for EMULTYPE_SKIP with flat code seg (git-fixes). - KVM: x86: hyper-v: Fix the maximum number of sparse banks for XMM fast TLB flush hypercalls (git-fixes). - KVM: x86: Ignore sparse banks size for an "all CPUs", non-sparse IPI req (git-fixes). - KVM: x86: Mark all registers as avail/dirty at vCPU creation (git-fixes). - KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP (git-fixes). - KVM: x86/mmu: Check for present SPTE when clearing dirty bit in TDP MMU (git-fixes). - KVM: x86/mmu: Complete prefetch for trailing SPTEs for direct, legacy MMU (git-fixes). - KVM: x86/mmu: Fix TLB flush range when handling disconnected pt (git-fixes). - KVM: x86/mmu: Fix write-protection of PTs mapped by the TDP MMU (git-fixes). - KVM: x86/mmu: Passing up the error state of mmu_alloc_shadow_roots() (git-fixes). - KVM: x86/mmu: Pass parameter flush as false in kvm_tdp_mmu_zap_collapsible_sptes() (git-fixes). - KVM: x86/mmu: Remove spurious TLB flushes in TDP MMU zap collapsible path (git-fixes). - KVM: x86/mmu: Skip tlb flush if it has been done in zap_gfn_range() (git-fixes). - KVM: x86/mmu: Update number of zapped pages even if page list is stable (git-fixes). - KVM: x86/mmu: Use yield-safe TDP MMU root iter in MMU notifier unmapping (git-fixes). - KVM: x86: nSVM: restore the L1 host state prior to resuming nested guest on SMM exit (git-fixes). - KVM: x86: nSVM: skip eax alignment check for non-SVM instructions (git-fixes). - KVM: x86: nSVM: test eax for 4K alignment for GP errata workaround (git-fixes). - KVM: x86: Pend KVM_REQ_APICV_UPDATE during vCPU creation to fix a race (git-fixes). - KVM: x86/pmu: Fix reserved bits for AMD PerfEvtSeln register (git-fixes). - KVM: x86/pmu: Use AMD64_RAW_EVENT_MASK for PERF_TYPE_RAW (git-fixes). - KVM: x86: Register Processor Trace interrupt hook iff PT enabled in guest (git-fixes). - KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs (git-fixes). - KVM: x86: SVM: do not set VMLOAD/VMSAVE intercepts on vCPU reset (git-fixes). - KVM: x86: SVM: fix avic spec based definitions again (bsc#1193823 jsc#SLE-24549). - KVM: x86: SVM: move avic definitions from AMD's spec to svm.h (bsc#1193823 jsc#SLE-24549). - KVM: X86: Synchronize the shadow pagetable before link it (git-fixes). - KVM: x86: Update vCPU's runtime CPUID on write to MSR_IA32_XSS (git-fixes). - KVM: x86: Wait for IPIs to be delivered when handling Hyper-V TLB flush hypercall (git-fixes). - lib: bitmap: fix many kernel-doc warnings (git-fixes). - libbpf: Free up resources used by inner map definition (git-fixes). - lib/iov_iter: initialize "flags" in new pipe_buffer (git-fixes). - libsubcmd: Fix use-after-free for realloc(..., 0) (git-fixes). - linux/dim: Fix divide by 0 in RDMA DIM (git-fixes). - list: fix a data-race around ep->rdllist (git-fixes). - list: introduce list_is_head() helper and re-use it in list.h (git-fixes). - list: test: Add a test for list_is_head() (git-fixes). - livepatch: Do not block removal of patches that are safe to unload (bsc#1071995). - locking: Make owner_on_cpu() into linux/sched.h (bsc#1190137 bsc#1189998). - locking: Remove rt_rwlock_is_contended() (bsc#1190137 bsc#1189998). - locking/rtmutex: Add rt_mutex_lock_nest_lock() and rt_mutex_lock_killable() (bsc#1190137 bsc#1189998). - locking/rtmutex: Squash self-deadlock check for ww_rt_mutex (bsc#1190137 bsc#1189998). - locking/rwlocks: introduce write_lock_nested (bsc#1189998). - LSM: general protection fault in legacy_parse_param (git-fixes). - lz4: fix LZ4_decompress_safe_partial read out of bound (git-fixes). - mac80211: fix EAPoL rekey fail in 802.3 rx path (git-fixes). - mac80211: fix forwarded mesh frames AC and queue selection (git-fixes). - mac80211: fix potential double free on mesh join (git-fixes). - mac80211: fix rx reordering with non explicit / psmp ack policy (git-fixes). - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection (git-fixes). - mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work (git-fixes). - mac80211_hwsim: report NOACK frames in tx_status (git-fixes). - mac80211: minstrel_ht: fix where rate stats are stored (fixes debugfs output) (git-fixes). - mac80211: mlme: check for null after calling kmemdup (git-fixes). - mac80211: refuse aggregations sessions before authorized (git-fixes). - mac80211: Remove a couple of obsolete TODO (git-fixes). - mac80211: Reset MBSSID parameters upon connection (git-fixes). - mac80211: treat some SAE auth steps as final (git-fixes). - mac80211: upgrade passive scan to active scan on DFS channels after beacon rx (git-fixes). - macvlan: Fix leaking skb in source mode with nodst option (git-fixes). - mailbox: change mailbox-mpfs compatible string (git-fixes). - mailbox: imx: fix crash in resume on i.mx8ulp (git-fixes). - mailbox: imx: fix wakeup failure from freeze mode (git-fixes). - mailbox: tegra-hsp: Flush whole channel (git-fixes). - maple: fix wrong return value of maple_bus_init() (git-fixes). - md: Do not set mddev private to NULL in raid0 pers->free (git-fixes). - md: fix an incorrect NULL check in does_sb_need_changing (git-fixes). - md: fix an incorrect NULL check in md_reload_sb (git-fixes). - md: fix double free of io_acct_set bioset (git-fixes). - md: fix update super 1.0 on rdev size change (git-fixes). - md: Move alloc/free acct bioset in to personality (git-fixes). - md/raid5: play nice with PREEMPT_RT (bsc#1189998). - media: aspeed: Correct value for h-total-pixels (git-fixes). - media: atmel: atmel-isc-base: report frame sizes as full supported range (git-fixes). - media: atmel: atmel-isc: Fix PM disable depth imbalance in atmel_isc_probe (git-fixes). - media: atmel: atmel-sama5d2-isc: fix wrong mask in YUYV format check (git-fixes). - media: atmel: atmel-sama7g5-isc: fix ispck leftover (git-fixes). - media: atomisp: fix bad usage at error handling logic (git-fixes). - media: atomisp: fix dummy_ptr check to avoid duplicate active_bo (git-fixes). - media: atomisp_gmin_platform: Add DMI quirk to not turn AXP ELDO2 regulator off on some boards (git-fixes). - media: bttv: fix WARNING regression on tunerless devices (git-fixes). - media: camss: csid-170: do not enable unused irqs (git-fixes). - media: camss: csid-170: fix non-10bit formats (git-fixes). - media: camss: csid-170: remove stray comment (git-fixes). - media: camss: csid-170: set the right HALT_CMD when disabled (git-fixes). - media: camss: vfe-170: fix "VFE halt timeout" error (git-fixes). - media: ccs-core.c: fix failure to call clk_disable_unprepare (git-fixes). - media: cec-adap.c: fix is_configuring state (git-fixes). - media: cedrus: h264: Fix neighbour info buffer size (git-fixes). - media: cedrus: H265: Fix neighbour info buffer size (git-fixes). - media: coda: Fix missing put_device() call in coda_get_vdoa_data (git-fixes). - media: cx25821: Fix the warning when removing the module (git-fixes). - media: cx88-mpeg: clear interrupt status register before streaming video (git-fixes). - media: davinci: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM enable (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM get (git-fixes). - media: davinci: vpif: fix use-after-free on driver unbind (git-fixes). - media: doc: pixfmt-rgb: Fix V4L2_PIX_FMT_BGR24 format description (git-fixes). - media: doc: pixfmt-yuv: Fix V4L2-PIX-FMT-Y10P format (git-fixes). - media: em28xx: initialize refcount before kref_get (git-fixes). - media: gpio-ir-tx: fix transmit with long spaces on Orange Pi PC (git-fixes). - media: hantro: Empty encoder capture buffers by default (git-fixes). - media: hantro: Fix overfill bottom register field name (git-fixes). - media: hantro: HEVC: Fix tile info buffer value computation (git-fixes). - media: hantro: HEVC: unconditionnaly set pps_{cb/cr}_qp_offset values (git-fixes). - media: hdpvr: initialize dev->worker at hdpvr_register_videodev (git-fixes). - media: i2c: max9286: fix kernel oops when removing module (git-fixes). - media: i2c: max9286: Use dev_err_probe() helper (git-fixes). - media: i2c: max9286: Use "maxim,gpio-poc" property (git-fixes). - media: i2c: ov5648: Fix lockdep error (git-fixes). - media: i2c: ov5648: fix wrong pointer passed to IS_ERR() and PTR_ERR() (git-fixes). - media: i2c: rdacm2x: properly set subdev entity function (git-fixes). - media: imon: reorganize serialization (git-fixes). - media: imx-jpeg: fix a bug of accessing array out of bounds (git-fixes). - media: imx-jpeg: Prevent decoding NV12M jpegs into single-planar buffers (git-fixes). - media: iommu/mediatek: Add device_link between the consumer and the larb devices (git-fixes). - media: iommu/mediatek: Return ENODEV if the device is NULL (git-fixes). - media: iommu/mediatek-v1: Free the existed fwspec if the master dev already has (git-fixes). - media: ir_toy: free before error exiting (git-fixes). - media: media-entity.h: Fix documentation for media_create_intf_link (git-fixes). - media: mexon-ge2d: fixup frames size in registers (git-fixes). - media: mtk-vcodec: potential dereference of null pointer (git-fixes). - media: omap3isp: Use struct_group() for memcpy() region (git-fixes). - media: ov5640: Fix set format, v4l2_mbus_pixelcode not updated (git-fixes). - media: ov5648: Do not pack controls struct (git-fixes). - media: ov6650: Add try support to selection API operations (git-fixes). - media: ov6650: Fix crop rectangle affected by set format (git-fixes). - media: ov6650: Fix set format try processing path (git-fixes). - media: ov7670: remove ov7670_power_off from ov7670_remove (git-fixes). - media: pci: cx23885: Fix the error handling in cx23885_initdev() (git-fixes). - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init (git-fixes). - media: Revert "media: em28xx: add missing em28xx_close_extension" (git-fixes). - media: rga: fix possible memory leak in rga_probe (git-fixes). - media: rkvdec: h264: Fix bit depth wrap in pps packet (git-fixes). - media: rkvdec: h264: Fix dpb_valid implementation (git-fixes). - media: rkvdec: Stop overclocking the decoder (git-fixes). - media: rockchip/rga: do proper error checking in probe (git-fixes). - media: saa7134: fix incorrect use to determine if list is empty (git-fixes). - media: staging: media: imx: imx7-mipi-csis: Make subdev name unique (git-fixes). - media: staging: media: rkvdec: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - media: staging: media: zoran: calculate the right buffer number for zoran_reap_stat_com (git-fixes). - media: staging: media: zoran: fix usage of vb2_dma_contig_set_max_seg_size (git-fixes). - media: staging: media: zoran: fix various V4L2 compliance errors (git-fixes). - media: staging: media: zoran: move videodev alloc (git-fixes). - media: stk1160: If start stream fails, return buffers with VB2_BUF_STATE_QUEUED (git-fixes). - media: ti-vpe: cal: Fix a NULL pointer dereference in cal_ctx_v4l2_init_formats() (git-fixes). - media: usb: go7007: s2250-board: fix leak in probe() (git-fixes). - media: uvcvideo: Fix missing check to determine if element is found in list (git-fixes). - media: v4l2-core: Initialize h264 scaling matrix (git-fixes). - media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP buffers across ioctls (git-fixes). - media: v4l: Avoid unaligned access warnings when printing 4cc modifiers (git-fixes). - media: venus: hfi: avoid null dereference in deinit (git-fixes). - media: venus: hfi_cmds: List HDR10 property as unsupported for v1 and v3 (git-fixes). - media: videobuf2: Fix the size printk format (git-fixes). - media: video/hdmi: handle short reads of hdmi info frame (git-fixes). - media: vidtv: Check for null return of vzalloc (git-fixes). - mei: avoid iterator usage outside of list_for_each_entry (git-fixes). - mei: hbm: drop capability response on early shutdown (git-fixes). - mei: me: add Alder Lake N device id (git-fixes). - mei: me: add raptor lake point S DID (git-fixes). - mei: me: disable driver on the ign firmware (git-fixes). - memblock: fix memblock_phys_alloc() section mismatch error (git-fixes). - memory: atmel-ebi: Fix missing of_node_put in atmel_ebi_probe (git-fixes). - memory: emif: Add check for setup_interrupts (git-fixes). - memory: emif: check the pointer temp in get_device_details() (git-fixes). - memory: fsl_ifc: populate child nodes of buses and mfd devices (git-fixes). - memory: mtk-smi: Add error handle for smi_probe (git-fixes). - memory: renesas-rpc-if: Fix HF/OSPI data transfer in Manual Mode (git-fixes). - memory: renesas-rpc-if: fix platform-device leak in error path (git-fixes). - memory: samsung: exynos5422-dmc: Avoid some over memory allocation (git-fixes). - memory: samsung: exynos5422-dmc: Fix refcount leak in of_get_dram_timings (git-fixes). - mfd: asic3: Add missing iounmap() on error asic3_mfd_probe (git-fixes). - mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe() (git-fixes). - mfd: exynos-lpass: Drop unneeded syscon.h include (git-fixes). - mfd: ipaq-micro: Fix error check return value of platform_get_irq() (git-fixes). - mfd: mc13xxx: Add check for mc13xxx_irq_request (git-fixes). - mgag200 fix memmapsl configuration in GCTL6 register (git-fixes). - misc: alcor_pci: Fix an error handling path (git-fixes). - misc: atmel-ssc: Fix IRQ check in ssc_probe (git-fixes). - misc: fastrpc: avoid double fput() on failed usercopy (git-fixes). - misc: fastrpc: fix an incorrect NULL check on list iterator (git-fixes). - misc: ocxl: fix possible double free in ocxl_file_register_afu (git-fixes). - misc: rtsx: set NULL intfdata when probe fails (git-fixes). - misc: sgi-gru: Do not cast parameter in bit operations (git-fixes). - mISDN: Fix memory leak in dsp_pipeline_build() (git-fixes). - mlx5: kabi protect lag_mp (git-fixes). - mlxsw: spectrum: Protect driver from buggy firmware (git-fixes). - mm: Add fault_in_subpage_writeable() to probe at sub-page granularity (git-fixes) - mmc: block: Check for errors after write on SPI (git-fixes). - mmc: block: Fix CQE recovery reset success (git-fixes). - mmc: block: fix read single on recovery logic (git-fixes). - mmc: core: Allows to override the timeout value for ioctl() path (git-fixes). - mmc: core: Fixup support for writeback-cache for eMMC and SD (git-fixes). - mmc: core: Set HS clock speed before sending HS CMD13 (git-fixes). - mmc: core: Wait for command setting 'Power Off Notification' bit to complete (git-fixes). - mmc: davinci_mmc: Handle error for clk_enable (git-fixes). - mm: Change CONFIG option for mm->pasid field (jsc#SLE-24350). - mmc: host: Return an error when ->enable_sdio_irq() ops is missing (git-fixes). - mmc: jz4740: Apply DMA engine limits to maximum segment size (git-fixes). - mm/cma: provide option to opt out from exposing pages on activation failure (bsc#1195099 ltc#196102). - mmc: mediatek: wait dma stop bit reset to 0 (git-fixes). - mmc: meson: Fix usage of meson_mmc_post_req() (git-fixes). - mmc: mmci: stm32: correctly check all elements of sg list (git-fixes). - mmc: renesas_sdhi: do not overwrite TAP settings when HS400 tuning is complete (git-fixes). - mmc: rtsx: add 74 Clocks in power on flow (git-fixes). - mmc: rtsx: Fix build errors/warnings for unused variable (git-fixes). - mmc: rtsx: Let MMC core handle runtime PM (git-fixes). - mmc: rtsx: Use pm_runtime_{get,put}() to handle runtime PM (git-fixes). - mmc: sdhci_am654: Fix the driver data of AM64 SoC (git-fixes). - mmc: sdhci-msm: Reset GCC_SDCC_BCR register for SDHC (git-fixes). - mmc: sdhci-of-esdhc: Check for error num after setting mask (git-fixes). - mmc: sdhci-pci-o2micro: Fix card detect by dealing with debouncing (git-fixes). - mmc: sunxi-mmc: Fix DMA descriptors allocated above 32 bits (git-fixes). - mm: fs: fix lru_cache_disabled race in bh_lru (bsc#1197761). - mm: Fully initialize invalidate_lock, amend lock class later (bsc#1197921). - mm: memcg: synchronize objcg lists with a dedicated spinlock (bsc#1198402). - mm/page_alloc: always attempt to allocate at least one page during bulk allocation (git fixes (mm/pgalloc)). - mm/page_alloc.c: do not warn allocation failure on zone DMA if no managed pages (bsc#1197501). - mm, page_alloc: fix build_zonerefs_node() (git-fixes). - mm/scatterlist: replace the !preemptible warning in sg_miter_stop() (bsc#1189998). - mm/slub: add missing TID updates on slab deactivation (git-fixes). - mm, thp: fix incorrect unmap behavior for private pages (bsc#1198024). - mm, thp: lock filemap when truncating page cache (bsc#1198023). - mm/vmalloc: fix comments about vmap_area struct (git-fixes). - mm_zone: add function to check if managed dma zone exists (bsc#1197501). - modpost: fix removing numeric suffixes (git-fixes). - modpost: fix section mismatch check for exported init/exit sections (git-fixes). - modpost: fix undefined behavior of is_arm_mapping_symbol() (git-fixes). - modpost: restore the warning message for missing symbol versions (git-fixes). - mptcp: add missing documented NL params (git-fixes). - mt76: connac: fix sta_rec_wtbl tag len (git-fixes). - mt76: dma: initialize skip_unmap in mt76_dma_rx_fill (git-fixes). - mt76: do not attempt to reorder received 802.3 packets without agg session (git-fixes). - mt76: fix encap offload ethernet type check (git-fixes). - mt76: fix monitor mode crash with sdio driver (git-fixes). - mt76: Fix undefined behavior due to shift overflowing the constant (git-fixes). - mt76: mt7603: check sta_rates pointer in mt7603_sta_rate_tbl_update (git-fixes). - mt76: mt7615: check sta_rates pointer in mt7615_sta_rate_tbl_update (git-fixes). - mt76: mt7615: fix a leftover race in runtime-pm (git-fixes). - mt76: mt7615: Fix assigning negative values to unsigned variable (git-fixes). - mt76: mt7915: fix injected MPDU transmission to not use HW A-MSDU (git-fixes). - mt76: mt7915: use proper aid value in mt7915_mcu_sta_basic_tlv (git-fixes). - mt76: mt7915: use proper aid value in mt7915_mcu_wtbl_generic_tlv in sta mode (git-fixes). - mt76: mt7921: accept rx frames with non-standard VHT MCS10-11 (git-fixes). - mt76: mt7921e: fix possible probe failure after reboot (bsc#1198835). - mt76: mt7921: fix a leftover race in runtime-pm (git-fixes). - mt76: mt7921: fix crash when startup fails (git-fixes). - mt76: mt7921: fix mt7921_queues_acq implementation (git-fixes). - mt76: mt7921: Fix the error handling path of mt7921_pci_probe() (git-fixes). - mtd: cfi_cmdset_0002: Move and rename chip_check/chip_ready/chip_good_for_write (git-fixes). - mtd: mchp23k256: Add SPI ID table (git-fixes). - mtd: mchp48l640: Add SPI ID table (git-fixes). - mtd: onenand: Check for error irq (git-fixes). - mtd: parsers: qcom: Fix kernel panic on skipped partition (git-fixes). - mtd: parsers: qcom: Fix missing free for pparts in cleanup (git-fixes). - mtd: phram: Prevent divide by zero bug in phram_setup() (git-fixes). - mtd: rawnand: atmel: fix refcount issue in atmel_nand_controller_init (git-fixes). - mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (git-fixes). - mtd: rawnand: cadence: fix possible null-ptr-deref in cadence_nand_dt_probe() (git-fixes). - mtd: rawnand: denali: Use managed device resources (git-fixes). - mtd: rawnand: fix ecc parameters for mt7622 (git-fixes). - mtd: rawnand: Fix return value check of wait_for_completion_timeout (git-fixes). - mtd: rawnand: gpmi: do not leak PM reference in error path (git-fixes). - mtd: rawnand: gpmi: fix controller timings setting (git-fixes). - mtd: rawnand: gpmi: Fix setting busy timeout setting (git-fixes). - mtd: rawnand: ingenic: Fix missing put_device in ingenic_ecc_get (git-fixes). - mtd: rawnand: intel: fix possible null-ptr-deref in ebu_nand_probe() (git-fixes). - mtd: rawnand: pl353: Set the nand chip node as the flash node (git-fixes). - mtd: rawnand: qcom: Fix clock sequencing in qcom_nandc_probe() (git-fixes). - mtd: rawnand: qcom: fix memory corruption that causes panic (git-fixes). - mtd: spinand: gigadevice: fix Quad IO for GD5F1GQ5UExxG (git-fixes). - mtd: spi-nor: core: Check written SR value in spi_nor_write_16bit_sr_and_check() (git-fixes). - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue (git-fixes). - n64cart: convert bi_disk to bi_bdev->bd_disk fix build (git-fixes). - natsemi: sonic: stop calling netdev_boot_setup_check (git-fixes). - net: asix: add proper error handling of usb read errors (git-fixes). - net: atlantic: Avoid out-of-bounds indexing (git-fixes). - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg (git-fixes). - net: axienet: setup mdio unconditionally (git-fixes). - net: bnxt_ptp: fix compilation error (bsc#1199736). - net: dev: Always serialize on Qdisc::busylock in __dev_xmit_skb() on PREEMPT_RT (bsc#1189998). - net: dev: Change the order of the arguments for the contended condition (bsc#1189998). - net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove (git-fixes). - net: dpaa_eth: remove dead select in menuconfig FSL_DPAA_ETH (git-fixes). - net: dsa: be compatible with masters which unregister on shutdown (git-fixes). - net: dsa: hellcreek: be compatible with masters which unregister on shutdown (git-fixes). - net: dsa: microchip: ksz8863: be compatible with masters which unregister on shutdown (git-fixes). - net: dsa: xrs700x: be compatible with masters which unregister on shutdown (git-fixes). - net: ethernet: lantiq_etop: fix build errors/warnings (git-fixes). - net: ethernet: mediatek: add missing of_node_put() in mtk_sgmii_init() (git-fixes). - net: ethernet: mtk_eth_soc: fix misuse of mem alloc interface netdev[napi]_alloc_frag (git-fixes). - net: ethernet: mtk_eth_soc: out of bounds read in mtk_hwlro_get_fdir_entry() (git-fixes). - net: ethernet: ti: am65-cpsw-nuss: Fix some refcount leaks (git-fixes). - netfilter: conntrack: move synack init code to helper (bsc#1199035). - netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#1199035). - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (bsc#1199035). - netfilter: nf_conntrack_tcp: re-init for syn packets only (bsc#1199035). - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit() (git-fixes). - net: hns3: add NULL pointer check for hns3_set/get_ringparam() (git-fixes). - net: hns3: add return value for mailbox handling in PF (bsc#1190336). - net: hns3: add validity check for message data length (git-fixes). - net: hns3: add vlan list lock to protect vlan list (git-fixes). - net: hns3: align the debugfs output to the left (git-fixes). - net: hns3: clear inited state and stop client after failed to register netdev (git-fixes). - net: hns3: fix bug when PF set the duplicate MAC address for VFs (git-fixes). - net: hns3: fix phy can not link up when autoneg off and reset (git-fixes). - net: hns3: fix port base vlan add fail when concurrent with reset (git-fixes). - net: hns3: fix software vlan talbe of vlan 0 inconsistent with hardware (git-fixes). - net: hns3: handle empty unknown interrupt for VF (git-fixes). - net: hns3: modify the return code of hclge_get_ring_chain_from_mbx (git-fixes). - net: hns3: refine the process when PF set VF VLAN (git-fixes). - net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes). - net/ice: Add support for enable_iwarp and enable_roce devlink param (bsc#1200502). - net/ice: Fix boolean assignment (bsc#1200502). - net/ice: Remove unused enum (bsc#1200502). - net: ipa: disable HOLB drop when updating timer (git-fixes). - net: ipa: HOLB register sometimes must be written twice (git-fixes). - net/ipa: ipa_resource: Fix wrong for loop range (git-fixes). - net: ipv6: unexport __init-annotated seg6_hmac_init() (bsc#1201218). - net: ipv6: unexport __init-annotated seg6_hmac_net_init() (bsc#1201218). - net: macb: Align the dma and coherent dma masks (git-fixes). - net: mana: Add counter for packet dropped by XDP (bsc#1195651). - net: mana: Add counter for XDP_TX (bsc#1195651). - net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651). - net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe() (bsc#1195651). - net: mana: Reuse XDP dropped page (bsc#1195651). - net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#1195651). - net: marvell: mvpp2: increase MTU limit when XDP enabled (git-fixes). - net: marvell: prestera: fix double free issue on err path (git-fixes). - net: mdio: do not defer probe forever if PHY IRQ provider is missing (git-fixes). - net: mdio: unexport __init-annotated mdio_bus_init() (bsc#1201218). - net/mlx5: Avoid double clear or set of sync reset requested (git-fixes). - net/mlx5: Bridge, ensure dev_name is null-terminated (git-fixes). - net/mlx5: Bridge, Fix devlink deadlock on net namespace deletion (git-fixes). - net/mlx5: Bridge, take rtnl lock in init error handler (git-fixes). - net/mlx5: DR, Cache STE shadow memory (git-fixes). - net/mlx5: DR, Do not allow match on IP w/o matching on full ethertype/ip_version (git-fixes). - net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte (jsc#SLE-19253). - net/mlx5: DR, Fix the threshold that defines when pool sync is initiated (git-fixes). - net/mlx5e: Add missing increment of count (jsc#SLE-19253). - net/mlx5e: Avoid field-overflowing memcpy() (git-fixes). - net/mlx5e: Avoid implicit modify hdr for decap drop rule (jsc#SLE-19253). - net/mlx5e: CT: Fix queued up restore put() executing after relevant ft release (git-fixes). - net/mlx5e: Do not treat small ceil values as unlimited in HTB offload (git-fixes). - net/mlx5e: Fix broken SKB allocation in HW-GRO (jsc#SLE-19253). - net/mlx5e: Fix handling of wrong devices during bond netevent (git-fixes). - net/mlx5e: Fix module EEPROM query (git-fixes). - net/mlx5e: Fix the calling of update_buffer_lossy() API (git-fixes). - net/mlx5e: Fix trust state reset in reload (git-fixes). - net/mlx5e: Fix wrong calculation of header index in HW_GRO (jsc#SLE-19253). - net/mlx5e: Fix wrong return value on ioctl EEPROM query failure (git-fixes). - net/mlx5e: Fix wrong source vport matching on tunnel rule (jsc#SLE-19253). - net/mlx5e: IPsec: Fix crypto offload for non TCP/UDP encapsulated traffic (git-fixes). - net/mlx5e: IPsec: Fix tunnel mode crypto offload for non TCP/UDP traffic (git-fixes). - net/mlx5e: kTLS, Use CHECKSUM_UNNECESSARY for device-offloaded packets (git-fixes). - net/mlx5e: Lag, Do not skip fib events on current dst (git-fixes). - net/mlx5e: Lag, Fix fib_info pointer assignment (git-fixes). - net/mlx5e: Lag, Fix use-after-free in fib event handler (git-fixes). - net/mlx5e: Lag, Only handle events from highest priority multipath entry (git-fixes). - net/mlx5e: MPLSoUDP decap, fix check for unsupported matches (git-fixes). - net/mlx5e: SHAMPO, reduce TIR indication (jsc#SLE-19253). - net/mlx5: E-Switch, Fix uninitialized variable modact (git-fixes). - net/mlx5e: TC, Reject rules with drop and modify hdr action (git-fixes). - net/mlx5e: TC, Reject rules with forward and drop actions (git-fixes). - net/mlx5e: Use struct_group() for memcpy() region (git-fixes). - net/mlx5: Fix a race on command flush flow (git-fixes). - net/mlx5: Fix deadlock in sync reset flow (git-fixes). - net/mlx5: Fix matching on inner TTC (jsc#SLE-19253). - net/mlx5: Fix offloading with ESWITCH_IPV4_TTL_MODIFY_ENABLE (jsc#SLE-19253). - net/mlx5: Fix possible deadlock on rule deletion (git-fixes). - net/mlx5: Fix size field in bufferx_reg struct (git-fixes). - net/mlx5: Fix slab-out-of-bounds while reading resource dump menu (git-fixes). - net/mlx5: Fix tc max supported prio for nic mode (git-fixes). - net/mlx5: Fix wrong limitation of metadata match on ecpf (git-fixes). - net/mlx5: Update the list of the PCI supported devices (git-fixes). - net/mlx5: Use del_timer_sync in fw reset flow of halting poll (git-fixes). - net: mvmdio: fix compilation warning (git-fixes). - net: netvsc: remove break after return (git-fixes). - net: phy: ax88772a: fix lost pause advertisement configuration (git-fixes). - net: phy: broadcom: Fix brcm_fet_config_init() (git-fixes). - net: phy: correct spelling error of media in documentation (git-fixes). - net: phy: DP83822: clear MISR2 register to disable interrupts (git-fixes). - net: phy: dp83867: retrigger SGMII AN when link change (git-fixes). - net: phy: Fix race condition on link status change (git-fixes). - net: phy: marvell10g: fix return value on error (git-fixes). - net: phy: marvell: Fix invalid comparison in the resume and suspend functions (git-fixes). - net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (git-fixes). - net: phy: marvell: Fix RGMII Tx/Rx delays setting in 88e1121-compatible PHYs (git-fixes). - net: phy: mediatek: remove PHY mode check on MT7531 (git-fixes). - net: phy: meson-gxl: fix interrupt handling in forced mode (git-fixes). - net: phy: meson-gxl: improve link-up behavior (git-fixes). - net: phy: micrel: Allow probing without .driver_data (git-fixes). - net: phy: micrel: Do not use kszphy_suspend/resume for KSZ8061 (git-fixes). - net: phy: micrel: Pass .probe for KS8737 (git-fixes). - net: phy: mscc: Add MODULE_FIRMWARE macros (git-fixes). - net: phy: mscc-miim: reject clause 45 register accesses (git-fixes). - net: qlogic: check the return value of dma_alloc_coherent() in qed_vf_hw_prepare() (git-fixes). - net: rose: fix UAF bugs caused by timer handler (git-fixes). - net: sfc: add missing xdp queue reinitialization (git-fixes). - net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe() (git-fixes). - net: sfc: fix memory leak due to ptp channel (git-fixes). - net: sfc: fix using uninitialized xdp tx_queue (git-fixes). - net/smc: Avoid warning of possible recursive locking (git-fixes). - net/smc: fix connection leak (git-fixes). - net/smc: fixes for converting from "struct smc_cdc_tx_pend **" to "struct smc_wr_tx_pend_priv *" (git-fixes). - net/smc: Fix NULL pointer dereference in smc_pnet_find_ib() (git-fixes). - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error cause by server (git-fixes). - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error generated by client (git-fixes). - net/smc: non blocking recvmsg() return -EAGAIN when no data and signal_pending (git-fixes). - net/smc: postpone sk_refcnt increment in connect() (git-fixes). - net/smc: remove redundant re-assignment of pointer link (git-fixes). - net/smc: Remove unused function declaration (git-fixes). - net/smc: Reset conn->lgr when link group registration fails (git-fixes). - net/smc: set ini->smcrv2.ib_dev_v2 to NULL if SMC-Rv2 is unavailable (git-fixes). - net/smc: sync err code when tcp connection was refused (git-fixes). - net/smc: Transfer remaining wait queue entries during fallback (git-fixes). - net/smc: Transitional solution for clcsock race issue (git-fixes). - net/smc: Use a mutex for locking "struct smc_pnettable" (git-fixes). - net/smc: use memcpy instead of snprintf to avoid out of bounds read (git-fixes). - net: stmmac: fix gcc-10 -Wrestrict warning (git-fixes). - net: stmmac: Fix signed/unsigned wreckage (git-fixes). - net: stmmac: socfpga: add runtime suspend/resume callback for stratix10 platform (git-fixes). - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup (git-fixes). - net: usb: asix: do not force pause frames support (git-fixes). - net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (git-fixes). - net: usb: ax88179_178a: Fix packet receiving (git-fixes). - net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990 (git-fixes). - net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes). - Netvsc: Call hv_unmap_memory() in the netvsc_device_remove() (bsc#1183682). - net/x25: Fix null-ptr-deref caused by x25_disconnect (git-fixes). - net: xfrm: unexport __init-annotated xfrm4_protocol_init() (bsc#1201218). - nfc: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx (git-fixes). - nfc: nci: add flush_workqueue to prevent uaf (git-fixes). - nfc: nci: fix sleep in atomic context bugs caused by nci_skb_alloc (git-fixes). - nfc: netlink: fix sleep in atomic bug when firmware download timeout (git-fixes). - nfc: nfcmrvl: Fix irq_of_parse_and_map() return value (git-fixes). - nfc: nfcmrvl: Fix memory leak in nfcmrvl_play_deferred (git-fixes). - nfc: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs (git-fixes). - nfc: NULL out the dev->rfkill to prevent UAF (git-fixes). - NFC: nxp-nci: Do not issue a zero length i2c_master_read() (git-fixes). - nfc: pn533: Fix buggy cleanup order (git-fixes). - nfc: port100: fix use-after-free in port100_send_complete (git-fixes). - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling (git-fixes). - nfp: checking parameter process for rx-usecs/tx-usecs is invalid (git-fixes). - nfp: flower: Fix a potential leak in nfp_tunnel_add_shared_mac() (git-fixes). - nfp: flower: fix ida_idx not being released (git-fixes). - NFS: Avoid duplicate uncached readdir calls on eof (git-fixes). - NFSD: allow delegation state ids to be revoked and then freed (bsc#1192483). - NFSD: allow lock state ids to be revoked and then freed (bsc#1192483). - NFSD: allow open state ids to be revoked and then freed (bsc#1192483). - nfsd: destroy percpu stats counters after reply cache shutdown (git-fixes). - NFSD: do not admin-revoke NSv4.0 state ids (bsc#1192483). - NFSD: Fix a write performance regression (bsc#1197016). - NFSD: fix crash on COPY_NOTIFY with special stateid (git-fixes). - NFSD: Fix nsfd startup race (again) (git-fixes). - nfsd: Fix null-ptr-deref in nfsd_fill_super() (git-fixes). - NFSD: Fix READDIR buffer overflow (git-fixes). - NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1195957). - NFSD: Fix verifier returned in stable WRITEs (git-fixes). - NFSD: Fix zero-length NFSv3 WRITEs (git-fixes). - NFSD: more robust allocation failure handling in nfsd_file_cache_init (git-fixes). - NFSD: nfsd4_setclientid_confirm mistakenly expires confirmed client (git-fixes). - NFS: Do not loop forever in nfs_do_recoalesce() (git-fixes). - NFS: Do not overfill uncached readdir pages (git-fixes). - NFS: Do not report EINTR/ERESTARTSYS as mapping errors (git-fixes). - NFS: Do not report ENOSPC write errors twice (git-fixes). - NFS: Do not report errors from nfs_pageio_complete() more than once (git-fixes). - NFS: Do not report flush errors in nfs_write_end() (git-fixes). - NFS: Do not report writeback errors in nfs_getattr() (git-fixes). - NFS: Do not skip directory entries when doing uncached readdir (git-fixes). - NFS: do not store 'struct cred *' in struct nfs_access_entry (git-fixes). - NFSD: prepare for supporting admin-revocation of state (bsc#1192483). - NFSD: Replace use of rwsem with errseq_t (bsc#1196960). - NFS: Ensure the server had an up to date ctime before hardlinking (git-fixes). - NFS: Ensure the server had an up to date ctime before renaming (git-fixes). - NFS: fix broken handling of the softreval mount option (git-fixes). - NFS: Fix initialisation of nfs_client cl_flags field (git-fixes). - NFS: fsync() should report filesystem errors over EINTR/ERESTARTSYS (git-fixes). - NFS: Further fixes to the writeback error handling (git-fixes). - NFS: limit use of ACCESS cache for negative responses (bsc#1196570). - NFS: Memory allocation failures are not server fatal errors (git-fixes). - NFS: NFSv2/v3 clients should never be setting NFS_CAP_XATTR (git-fixes). - NFS: pass cred explicitly for access tests (git-fixes). - NFS: Remove an incorrect revalidation in nfs4_update_changeattr_locked() (git-fixes). - NFS: Return valid errors from nfs2/3_decode_dirent() (git-fixes). - NFS: Use of mapping_set_error() results in spurious errors (git-fixes). - NFSv4.1: do not retry BIND_CONN_TO_SESSION on session error (git-fixes). - NFSv4.1 mark qualified async operations as MOVEABLE tasks (git-fixes). - NFSv42: Do not fail clone() unless the OP_CLONE operation failed (git-fixes). - NFSv42: Fix pagecache invalidation after COPY/CLONE (git-fixes). - NFSv4: Do not invalidate inode attributes on delegation return (git-fixes). - NFSv4: Fix another issue with a list iterator pointing to the head (git-fixes). - NFSv4: fix open failure with O_ACCMODE flag (git-fixes). - NFSv4: nfs_atomic_open() can race when looking up a non-regular file (git-fixes). - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout (git-fixes). - nl80211: correctly check NL80211_ATTR_REG_ALPHA2 size (git-fixes). - nl80211: fix locking in nl80211_set_tx_bitrate_mask() (git-fixes). - nl80211: Handle nla_memdup failures in handle_nan_filter (git-fixes). - nl80211: show SSID for P2P_GO interfaces (git-fixes). - nl80211: Update bss channel on channel switch for P2P_CLIENT (git-fixes). - nl80211: validate S1G channel width (git-fixes). - ntb_hw_switchtec: Fix bug with more than 32 partitions (git-fixes). - ntb_hw_switchtec: Fix pff ioread to read into mmio_part_cfg_all (git-fixes). - ntb: intel: fix port config status offset for SPR (git-fixes). - n_tty: wake up poll(POLLRDNORM) on receiving data (git-fixes). - nvme: add verbose error logging (bsc#1200567). Update config files. - nvme: also mark passthrough-only namespaces ready in nvme_update_ns_info (git-fixes). - nvme: do not return an error from nvme_configure_metadata (git-fixes). - nvme: expose cntrltype and dctype through sysfs (jsc#SLE-23643). - nvme: fix a possible use-after-free in controller reset during load (git-fixes). - nvme-multipath: use vmalloc for ANA log buffer (bsc#1193787). - nvme: send uevent on connection up (jsc#SLE-23643). - objtool: Add frame-pointer-specific function ignore (bsc#1193277). - objtool: Fix code relocs vs weak symbols (git-fixes). - objtool: Fix type of reloc::addend (git-fixes). - objtool: Ignore unwind hints for ignored functions (bsc#1193277). - ocfs2: fix crash when initialize filecheck kobj fails (bsc#1197920). - octeontx2-af: Add a 'rvu_free_bitmap()' function (gix-fixes). - octeontx2-af: Fix some memory leaks in the error handling path of 'cgx_lmac_init()' (git-fixes). - of: base: Fix phandle argument length mismatch error message (git-fixes). - of: base: Improve argument length mismatch error (git-fixes). - of/fdt: Do not worry about non-memory region overlap for no-map (git-fixes). - of: overlay: do not break notify on NOTIFY_{OK|STOP} (git-fixes). - of: Support more than one crash kernel regions for kexec -s (git-fixes). - of: unittest: 64 bit dma address test requires arch support (git-fixes). - of: unittest: fix warning on PowerPC frame size warning (git-fixes). - of: unittest: update text of expected warnings (git-fixes). - pahole 1.22 required for full BTF features. also recommend pahole for kernel-source to make the kernel buildable with standard config - PCI: aardvark: Add support for DEVCAP2, DEVCTL2, LNKCAP2 and LNKCTL2 registers on emulated bridge (git-fixes). - PCI: aardvark: Add support for ERR interrupt on emulated bridge (git-fixes). - PCI: aardvark: Add support for masking MSI interrupts (git-fixes). - PCI: aardvark: Add support for PME interrupts (git-fixes). - PCI: aardvark: Assert PERST# when unbinding driver (git-fixes). - PCI: aardvark: Clear all MSIs at setup (git-fixes). - PCI: aardvark: Comment actions in driver remove method (git-fixes). - PCI: aardvark: Disable bus mastering when unbinding driver (git-fixes). - PCI: aardvark: Disable common PHY when unbinding driver (git-fixes). - PCI: aardvark: Disable link training when unbinding driver (git-fixes). - PCI: aardvark: Do not mask irq when mapping (git-fixes). - PCI: aardvark: Drop __maybe_unused from advk_pcie_disable_phy() (git-fixes). - PCI: aardvark: Enable MSI-X support (git-fixes). - PCI: aardvark: Fix memory leak in driver unbind (git-fixes). - PCI: aardvark: Fix reading MSI interrupt number (git-fixes). - PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated bridge (git-fixes). - PCI: aardvark: Fix setting MSI address (git-fixes). - PCI: aardvark: Fix support for MSI interrupts (git-fixes). - PCI: aardvark: Fix support for PME requester on emulated bridge (git-fixes). - PCI: aardvark: Make msi_domain_info structure a static driver structure (git-fixes). - PCI: aardvark: Make MSI irq_chip structures static driver structures (git-fixes). - PCI: aardvark: Mask all interrupts when unbinding driver (git-fixes). - PCI: aardvark: Optimize writing PCI_EXP_RTCTL_PMEIE and PCI_EXP_RTSTA_PME on emulated bridge (git-fixes). - PCI: aardvark: Refactor unmasking summary MSI interrupt (git-fixes). - PCI: aardvark: Remove irq_mask_ack() callback for INTx interrupts (git-fixes). - PCI: aardvark: Replace custom PCIE_CORE_INT_* macros with PCI_INTERRUPT_* (git-fixes). - PCI: aardvark: Rewrite IRQ code to chained IRQ handler (git-fixes). - PCI: aardvark: Update comment about link going down after link-up (git-fixes). - PCI: aardvark: Use dev_fwnode() instead of of_node_to_fwnode(dev->of_node) (git-fixes). - PCI: aardvark: Use separate INTA interrupt for emulated root bridge (git-fixes). - PCI/ACPI: Allow D3 only if Root Port can signal and wake from D3 (git-fixes). - PCI: Add ACS quirk for Pericom PI7C9X2G switches (bsc#1199390). - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits (git-fixes). - PCI: Avoid broken MSI on SB600 USB devices (git-fixes). - PCI: cadence: Fix find_first_zero_bit() limit (git-fixes). - PCI: dwc: Fix setting error return on MSI DMA mapping failure (git-fixes). - PCI: endpoint: Fix alignment fault error in copy tests (git-fixes). - PCI: endpoint: Fix misused goto label (git-fixes). - PCI: fu740: Force 2.5GT/s for initial device probe (git-fixes). - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314). - PCI: hv: Fix hv_arch_irq_unmask() for multi-MSI (bsc#1200845). - PCI: hv: Fix interrupt mapping for multi-MSI (bsc#1200845). - PCI: hv: Fix multi-MSI to allow more than one MSI vector (bsc#1200845). - PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology (git-fixes). - PCI: hv: Reuse existing IRTE allocation in compose_msi_msg() (bsc#1200845). - PCI: imx6: Allow to probe when dw_pcie_wait_for_link() fails (git-fixes). - PCI: imx6: Fix PERST# start-up sequence (git-fixes). - PCI: Mark all AMD Navi10 and Navi14 GPU ATS as broken (git-fixes). - PCI: microchip: Fix potential race in interrupt handling (git-fixes). - PCI: mvebu: Fix configuring secondary bus of PCIe Root Port via emulated bridge (git-fixes). - PCI: mvebu: Fix device enumeration regression (git-fixes). - PCI: mvebu: Fix support for bus mastering and PCI_COMMAND on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_BRIDGE_CTL_BUS_RESET on emulated bridge (git-fixes). - PCI: mvebu: Setup PCIe controller to Root Complex mode (git-fixes). - PCI: pci-bridge-emul: Add definitions for missing capabilities registers (git-fixes). - PCI: pci-bridge-emul: Add description for class_revision field (git-fixes). - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum (git-fixes). - PCI: pciehp: Clear cmd_busy bit in polling mode (git-fixes). - PCI/PM: Power up all devices during runtime resume (git-fixes). - PCI: qcom: Fix runtime PM imbalance on probe errors (git-fixes). - PCI: qcom: Fix unbalanced PHY init on probe errors (git-fixes). - PCI: rockchip: Fix find_first_zero_bit() limit (git-fixes). - PCI/switchtec: Add Gen4 automotive device IDs (git-fixes). - PCI: Work around Intel I210 ROM BAR overlap defect (git-fixes). - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards (git-fixes). - perf: Copy perf_event_attr::sig_data on modification (git fixes). - perf/core: Do not pass task around when ctx sched in (git-fixes). - perf/core: Fix address filter parser for multiple filters (git fixes). - perf/core: Fix cgroup event list management (git fixes). - perf/core: Fix perf_cgroup_switch() (git fixes). - perf/core: Fix perf_mmap fail when CONFIG_PERF_USE_VMALLOC enabled (git fixes). - perf: Fix list corruption in perf_cgroup_switch() (git fixes). - perf/x86/intel/pt: Fix address filter config for 32-bit kernel (git fixes). - perf/x86/intel/pt: Fix crash with stop filters in single-range mode (git fixes). - perf/x86/intel/uncore: Make uncore_discovery clean for 64 bit addresses (bsc#1197304). - perf/x86/intel: Update the FRONTEND MSR mask on Sapphire Rapids (git fixes). - phy: amlogic: fix error path in phy_g12a_usb3_pcie_probe() (git-fixes). - phy: amlogic: meson8b-usb2: fix shared reset control use (git-fixes). - phy: amlogic: meson8b-usb2: Use dev_err_probe() (git-fixes). - phy: amlogic: phy-meson-gxl-usb2: fix shared reset controller use (git-fixes). - phy: aquantia: Fix AN when higher speeds than 1G are not advertised (git-fixes). - phy: broadcom: Kconfig: Fix PHY_BRCM_USB config option (git-fixes). - phy: dphy: Correct clk_pre parameter (git-fixes). - phy: dphy: Correct lpx parameter and its derivatives(ta_{get,go,sure}) (git-fixes). - phy: mapphone-mdm6600: Fix PM error handling in phy_mdm6600_probe (git-fixes). - phy: phy-brcm-usb: fixup BCM4908 support (git-fixes). - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure (git-fixes). - phy: qcom-qmp: fix reset-controller leak on probe errors (git-fixes). - phy: qcom-qmp: fix struct clk leak on probe errors (git-fixes). - phy: samsung: exynos5250-sata: fix missing device put in probe error paths (git-fixes). - phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe (git-fixes). - phy: stm32: fix a refcount leak in stm32_usbphyc_pll_enable() (git-fixes). - phy: ti: Add missing pm_runtime_disable() in serdes_am654_probe (git-fixes). - phy: ti: Fix missing sentinel for clk_div_table (git-fixes). - phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks (git-fixes). - phy: usb: Leave some clocks running during suspend (git-fixes). - phy: xilinx: zynqmp: Fix bus width setting for SGMII (git-fixes). - pinctrl: bcm2835: Fix a few error paths (git-fixes). - pinctrl: bcm63xx: fix unmet dependency on REGMAP for GPIO_REGMAP (git-fixes). - pinctrl: fix loop in k210_pinconf_get_drive() (git-fixes). - pinctrl: intel: Fix a glitch when updating IRQ flags on a preconfigured line (git-fixes). - pinctrl: intel: fix unexpected interrupt (git-fixes). - pinctrl: k210: Fix bias-pull-up (git-fixes). - pinctrl: mediatek: Fix missing of_node_put() in mtk_pctrl_init (git-fixes). - pinctrl: mediatek: moore: Fix build error (git-fixes). - pinctrl: mediatek: mt8195: enable driver on mtk platforms (git-fixes). - pinctrl: mediatek: mt8365: fix IES control pins (git-fixes). - pinctrl: mediatek: paris: Fix "argument" argument type for mtk_pinconf_get() (git-fixes). - pinctrl: mediatek: paris: Fix PIN_CONFIG_BIAS_* readback (git-fixes). - pinctrl: mediatek: paris: Fix pingroup pin config state readback (git-fixes). - pinctrl: mediatek: paris: Skip custom extra pin config dump for virtual GPIOs (git-fixes). - pinctrl: microchip-sgpio: lock RMW access (git-fixes). - pinctrl: microchip sgpio: use reset driver (git-fixes). - pinctrl: mvebu: Fix irq_of_parse_and_map() return value (git-fixes). - pinctrl: nomadik: Add missing of_node_put() in nmk_pinctrl_probe (git-fixes). - pinctrl: npcm: Fix broken references to chip->parent_device (git-fixes). - pinctrl: nuvoton: npcm7xx: Rename DS() macro to DSTR() (git-fixes). - pinctrl: nuvoton: npcm7xx: Use %zu printk format for ARRAY_SIZE() (git-fixes). - pinctrl: pinconf-generic: Print arguments for bias-pull-* (git-fixes). - pinctrl: pinctrl-aspeed-g6: remove FWQSPID group in pinctrl (git-fixes). - pinctrl: pistachio: fix use of irq_of_parse_and_map() (git-fixes). - pinctrl: renesas: checker: Fix miscalculation of number of states (git-fixes). - pinctrl: renesas: core: Fix possible null-ptr-deref in sh_pfc_map_resources() (git-fixes). - pinctrl: renesas: r8a77470: Reduce size for narrow VIN1 channel (git-fixes). - pinctrl: renesas: r8a779a0: Fix GPIO function on I2C-capable pins (git-fixes). - pinctrl: renesas: rzn1: Fix possible null-ptr-deref in sh_pfc_map_resources() (git-fixes). - pinctrl/rockchip: Add missing of_node_put() in rockchip_pinctrl_probe (git-fixes). - pinctrl: rockchip: fix RK3308 pinmux bits (git-fixes). - pinctrl: samsung: drop pin banks references on error paths (git-fixes). - pinctrl: samsung: fix missing GPIOLIB on ARM64 Exynos config (git-fixes). - pinctrl: stm32: Do not call stm32_gpio_get() for edge triggered IRQs in EOI (git-fixes). - pinctrl: stm32: Keep pinctrl block clock enabled when LEVEL IRQ requested (git-fixes). - pinctrl: sunxi: fix f1c100s uart2 function (git-fixes). - pinctrl: sunxi: Fix H616 I2S3 pin data (git-fixes). - pinctrl: sunxi: Use unique lockdep classes for IRQs (git-fixes). - pinctrl: tegra: tegra194: drop unused pin groups (git-fixes). - pinctrl: tigerlake: Revert "Add Alder Lake-M ACPI ID" (git-fixes). - ping: fix the sk_bound_dev_if match in ping_lookup (bsc#1195826). - ping: remove pr_err from ping_lookup (bsc#1195826). - pipe: Fix missing lock in pipe_resize_ring() (git-fixes). - platform/chrome: cros_ec_debugfs: detach log reader wq from devm (git-fixes). - platform/chrome: cros_ec: fix error handling in cros_ec_register() (git-fixes). - platform/chrome: cros_ec_typec: Check for EC device (git-fixes). - platform/chrome: Re-introduce cros_ec_cmd_xfer and use it for ioctls (git-fixes). - platform: finally disallow IRQ0 in platform_get_irq() and its ilk (git-fixes). - platform/surface: aggregator: Fix initialization order when compiling as builtin module (git-fixes). - platform/surface: surface3-wmi: Simplify resource management (git-fixes). - platform/x86: Add Intel Software Defined Silicon driver (jsc#SLE-18938). - platform/x86: asus-wmi: Add support for custom fan curves (bsc#1198058). - platform/x86: asus-wmi: Delete impossible condition (bsc#1198058). - platform/x86: asus-wmi: Fix driver not binding when fan curve control probe fails (git-fixes). - platform/x86: asus-wmi: Fix regression when probing for fan curve control (bsc#1198058). - platform/x86: asus-wmi: Fix "unsigned 'retval' is never less than zero" smatch warning (bsc#1198058). - platform/x86: asus-wmi: Potential buffer overflow in asus_wmi_evaluate_method_buf() (git-fixes). - platform/x86: gigabyte-wmi: Add support for B450M DS3H-CF (git-fixes). - platform/x86: gigabyte-wmi: Add Z690M AORUS ELITE AX DDR4 support (git-fixes). - platform/x86: huawei-wmi: check the return value of device_create_file() (git-fixes). - platform/x86: intel-hid: fix _DSM function index handling (git-fixes). - platform/x86/intel/sdsi: Fix bug in multi packet reads (jsc#SLE-18901). - platform/x86/intel/sdsi: Handle leaky bucket (jsc#SLE-18901). - platform/x86/intel/sdsi: Poll on ready bit for writes (jsc#SLE-18901). - platform/x86: panasonic-laptop: de-obfuscate button codes (git-fixes). - platform/x86: panasonic-laptop: do not report duplicate brightness key-presses (git-fixes). - platform/x86: panasonic-laptop: filter out duplicate volume up/down/mute keypresses (git-fixes). - platform/x86: panasonic-laptop: revert "Resolve hotkey double trigger bug" (git-fixes). - platform/x86: panasonic-laptop: sort includes alphabetically (git-fixes). - platform/x86: samsung-laptop: Fix an unsigned comparison which can never be negative (git-fixes). - platform/x86: touchscreen_dmi: Add info for the RWC NANOTE P8 AY07J 2-in-1 (git-fixes). - PM: core: keep irq flags in device_pm_check_callbacks() (git-fixes). - PM / devfreq: exynos-ppmu: Fix refcount leak in of_get_devfreq_events (git-fixes). - PM / devfreq: rk3399_dmc: Disable edev on remove() (git-fixes). - PM: domains: Fix initialization of genpd's next_wakeup (git-fixes). - PM: domains: Fix sleep-in-atomic bug caused by genpd_debug_remove() (git-fixes). - PM: hibernate: fix __setup handler error handling (git-fixes). - PM: hibernate: Remove register_nosave_region_late() (git-fixes). - PM: s2idle: ACPI: Fix wakeup interrupts handling (git-fixes). - PM: suspend: fix return value of __setup handler (git-fixes). - PM: wakeup: simplify the output logic of pm_show_wakelocks() (git-fixes). - pNFS: Avoid a live lock condition in pnfs_update_layout() (git-fixes). - pNFS: Do not keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE (git-fixes). - powerpc/64: Move paca allocation later in boot (bsc#1190812). - powerpc/64s: Add CPU_FTRS_POWER10 to ALWAYS mask (jsc#SLE-13521 git-fixes). - powerpc/64s: Add CPU_FTRS_POWER9_DD2_2 to CPU_FTRS_ALWAYS mask (bsc#1061840 git-fixes). - powerpc/64s: Do not use DSISR for SLB faults (bsc#1194869). - powerpc/64s/radix: Fix huge vmap false positive (bsc#1156395). - powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes). - powerpc/bpf: Update ldimm64 instructions during extra pass (bsc#1194869). - powerpc: Do not select HAVE_IRQ_EXIT_ON_IRQ_STACK (bsc#1194869). - powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#159753). - powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#169948 git-fixes). - powerpc/fadump: opt out from freeing pages on cma activation failure (bsc#1195099 ltc#196102). - powerpc/fadump: register for fadump as early as possible (bsc#1179439 ltc#190038). - powerpc/idle: Fix return value of __setup() handler (bsc#1065729). - powerpc/lib/sstep: Fix 'sthcx' instruction (bsc#1156395). - powerpc/mce: Modify the real address error logging messages (jsc#SLE-18194). - powerpc/mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties() (bsc#1179639 ltc#189002 git-fixes). - powerpc/perf: Do not use perf_hw_context for trace IMC PMU (bsc#1156395). - powerpc/perf: Fix power10 event alternatives (jsc#SLE-13513 git-fixes). - powerpc/perf: Fix power9 event alternatives (bsc#1137728, LTC#178106, git-fixes). - powerpc/perf: Fix power_pmu_disable to call clear_pmi_irq_pending only if PMI is pending (bsc#1156395). - powerpc/perf: Fix the threshold compare group constraint for power10 (bsc#1194869). - powerpc/perf: Fix the threshold compare group constraint for power9 (bsc#1065729). - powerpc/powernv: Add __init attribute to eligible functions (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess flushes (bsc#1188885 ltc#193722 git-fixes). - powerpc/pseries: Fix use after free in remove_phb_dynamic() (bsc#1065729). - powerpc/pseries: Parse control memory access error (jsc#SLE-18194). - powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451). - powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (bsc#1200343 ltc#198477). - powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812). - powerpc/sysdev: fix incorrect use to determine if list is empty (bsc#1065729). - powerpc/tm: Fix more userspace r13 corruption (bsc#1065729). - powerpc/vdso: Fix incorrect CFI in gettimeofday.S (bsc#1199173 ltc#197388). - powerpc/vdso: Remove cvdso_call_time macro (bsc#1199173 ltc#197388). - powerpc/xive: Add a debugfs file to dump EQs (bsc#1194409 ltc#195810). - powerpc/xive: Add some error handling code to 'xive_spapr_init()' (git-fixes). - powerpc/xive: Change the debugfs file 'xive' into a directory (bsc#1194409 ltc#195810). - powerpc/xive: Export XIVE IPI information for online-only processors (bsc#1194409 ltc#195810). - powerpc/xive: Fix refcount leak in xive_spapr_init (git-fixes). - powerpc/xive: fix return value of __setup handler (bsc#1065729). - powerpc/xive: Introduce an helper to print out interrupt characteristics (bsc#1194409 ltc#195810). - powerpc/xive: Introduce xive_core_debugfs_create() (bsc#1194409 ltc#195810). - powerpc/xive: Rename the 'cpus' debugfs file to 'ipis' (bsc#1194409 ltc#195810). - power: reset: gemini-poweroff: Fix IRQ check in gemini_poweroff_probe (git-fixes). - power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init (git-fixes). - power: supply: axp20x_battery: properly report current when discharging (git-fixes). - power: supply: axp288-charger: Set Vhold to 4.4V (git-fixes). - power: supply: axp288_fuel_gauge: Drop BIOS version check from "T3 MRD" DMI quirk (git-fixes). - power: supply: axp288_fuel_gauge: Fix battery reporting on the One Mix 1 (git-fixes). - power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong false return (git-fixes). - power: supply: sbs-charger: Do not cancel work that is not initialized (git-fixes). - power: supply: wm8350-power: Add missing free in free_charger_irq (git-fixes). - power: supply: wm8350-power: Handle error for wm8350_register_irq (git-fixes). - pps: clients: gpio: Propagate return value from pps_gpio_probe (git-fixes). - printk: Add panic_in_progress helper (bsc#1197894). - printk: disable optimistic spin during panic (bsc#1197894). - proc: bootconfig: Add null pointer check (git-fixes). - proc: fix documentation and description of pagemap (git-fixes). - procfs: prevent unprivileged processes accessing fdinfo dir (git-fixes). - psi: fix "defined but not used" warnings when (git-fixes) - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE (bsc#1198413). - pvpanic: Fix typos in the comments (git-fixes). - pwm: lp3943: Fix duty calculation in case period was clamped (git-fixes). - pwm: lpc18xx-sct: Initialize driver data and hardware before pwmchip_add() (git-fixes). - pwm: raspberrypi-poe: Fix endianness in firmware struct (git-fixes). - qed: display VF trust config (git-fixes). - qede: confirm skb is allocated before using (git-fixes). - qed: fix ethtool register dump (jsc#SLE-19001). - qed: return status of qed_iov_get_link (git-fixes). - qla2xxx: add ->map_queues support for nvme (bsc#1195823). - qlcnic: dcb: default to returning -EOPNOTSUPP (git-fixes). - raid5: introduce MD_BROKEN (git-fixes). - random: check for signal_pending() outside of need_resched() check (git-fixes). - random: wake up /dev/random writers after zap (git-fixes). - random: wire up fops->splice_{read,write}_iter() (git-fixes). - ray_cs: Check ioremap return value (git-fixes). - RDMA/cma: Do not change route.addr.src_addr outside state checks (git-fixes). - RDMA/cma: Use correct address when leaving multicast group (git-fixes). - RDMA/core: Fix ib_qp_usecnt_dec() called when error (jsc#SLE-19249). - RDMA/core: Set MR type in ib_reg_user_mr (git-fixes). - RDMA/hfi1: Fix use-after-free bug for mm struct (git-fixes). - RDMA/ib_srp: Fix a deadlock (git-fixes). - RDMA/irdma: Fix netdev notifications for vlan's (git-fixes). - RDMA/irdma: Fix Passthrough mode in VM (git-fixes). - RDMA/irdma: Fix possible crash due to NULL netdev in notifier (git-fixes). - RDMA/irdma: Flush iWARP QP if modified to ERR from RTR state (git-fixes). - RDMA/irdma: Prevent some integer underflows (git-fixes). - RDMA/irdma: Reduce iWARP QP destroy time (git-fixes). - RDMA/irdma: Remove incorrect masking of PD (git-fixes). - RDMA/irdma: Set protocol based on PF rdma_mode flag (bsc#1200502). - RDMA/mlx4: Do not continue event handler after memory allocation failure (git-fixes). - RDMA/mlx5: Add a missing update of cache->last_add (git-fixes). - RDMA/mlx5: Do not remove cache MRs when a delay is needed (git-fixes). - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine (git-fixes). - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR (git-fixes). - RDMA/nldev: Prevent underflow in nldev_stat_set_counter_dynamic_doit() (jsc#SLE-19249). - RDMA/rtrs-clt: Fix possible double free in error case (git-fixes). - RDMA/rtrs-clt: Move free_permit from free_clt to rtrs_clt_close (git-fixes). - RDMA/rxe: Change variable and function argument to proper type (jsc#SLE-19249). - RDMA/rxe: Check the last packet by RXE_END_MASK (git-fixes). - RDMA/rxe: Fix ref error in rxe_av.c (jsc#SLE-19249). - RDMA/siw: Fix a condition race issue in MPA request processing (git-fixes). - RDMA/siw: Fix broken RDMA Read Fence/Resume logic (git-fixes). - RDMA/siw: Fix refcounting leak in siw_create_qp() (jsc#SLE-19249). - RDMA/ucma: Protect mc during concurrent multicast leaves (git-fixes). - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips (git-fixes). - regmap-irq: Fix offset/index mismatch in read_sub_irq_data() (git-fixes). - regmap-irq: Update interrupt clear register for proper reset (git-fixes). - regulator: atc260x: Fix missing active_discharge_on setting (git-fixes). - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET (git-fixes). - regulator: core: fix false positive in regulator_late_cleanup() (git-fixes). - regulator: da9121: Fix uninit-value in da9121_assign_chip_model() (git-fixes). - regulator: mt6315: Enforce regulator-compatible, not name (git-fixes). - regulator: mt6315-regulator: fix invalid allowed mode (git-fixes). - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt (git-fixes). - regulator: qcom_smd: fix for_each_child.cocci warnings (git-fixes). - regulator: qcom_smd: Fix up PM8950 regulator configuration (git-fixes). - regulator: rpi-panel: Handle I2C errors/timing to the Atmel (git-fixes). - regulator: scmi: Fix refcount leak in scmi_regulator_probe (git-fixes). - regulator: wm8994: Add an off-on delay for WM8994 variant (git-fixes). - remoteproc: Fix count check in rproc_coredump_write() (git-fixes). - remoteproc: imx_rproc: Ignore create mem entry for resource table (git-fixes). - remoteproc: qcom: Fix missing of_node_put in adsp_alloc_memory_region (git-fixes). - remoteproc: qcom_q6v5_mss: Fix some leaks in q6v5_alloc_memory_region (git-fixes). - remoteproc: qcom_wcnss: Add missing of_node_put() in wcnss_alloc_memory_region (git-fixes). - reset: tegra-bpmp: Restore Handle errors in BPMP response (git-fixes). - Revert "drm/amd/display: Fix DCN3 B0 DP Alt Mapping" (git-fixes). - Revert "drm/amdgpu/display: set vblank_disable_immediate for DC" (git-fixes). - Revert "svm: Add warning message for AVIC IPI invalid target" (git-fixes). - rfkill: make new event layout opt-in (git-fixes). - rfkill: uapi: fix RFKILL_IOCTL_MAX_SIZE ioctl request definition (git-fixes). - riscv: Fix fill_callchain return value (git fixes). - rpmsg: qcom_smd: Fix irq_of_parse_and_map() return value (git-fixes). - rpmsg: qcom_smd: Fix redundant channel->registered assignment (git-fixes). - rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails (git-fixes). - rpmsg: virtio: Fix possible double free in rpmsg_probe() (git-fixes). - rpmsg: virtio: Fix possible double free in rpmsg_virtio_add_ctrl_dev() (git-fixes). - rpmsg: virtio: Fix the unregistration of the device rpmsg_ctrl (git-fixes). - rtc: check if __rtc_read_time was successful (git-fixes). - rtc: fix use-after-free on device removal (git-fixes). - rtc: ftrtc010: Fix error handling in ftrtc010_rtc_probe (git-fixes). - rtc: ftrtc010: Use platform_get_irq() to get the interrupt (git-fixes). - rtc: mc146818-lib: fix locking in mc146818_set_time (git-fixes). - rtc: mc146818-lib: Fix the AltCentury for AMD platforms (git-fixes). - rtc: mt6397: check return value after calling platform_get_resource() (git-fixes). - rtc: mxc: Silence a clang warning (git-fixes). - rtc: pcf2127: fix bug when reading alarm registers (git-fixes). - rtc: pl031: fix rtc features null pointer dereference (git-fixes). - rtc: sun6i: Fix time overflow handling (git-fixes). - rtc: wm8350: Handle error for wm8350_register_irq (git-fixes). - rtl818x: Prevent using not initialized queues (git-fixes). - rtlwifi: Use pr_warn instead of WARN_ONCE (git-fixes). - rtw88: 8821c: fix debugfs rssi value (git-fixes). - rtw88: 8821c: support RFE type4 wifi NIC (git-fixes). - rtw88: Disable PCIe ASPM while doing NAPI poll on 8821CE (git-fixes). - rtw88: rtw8821c: enable rfe 6 devices (git-fixes). - s390/crypto: fix scatterwalk_unmap() callers in AES-GCM (git-fixes). - s390/ctcm: fix potential memory leak (git-fixes). - s390/ctcm: fix variable dereferenced before check (git-fixes). - s390/dasd: fix data corruption for ESE devices (git-fixes). - s390/dasd: Fix read for ESE with blksize 4k (git-fixes). - s390/dasd: Fix read inconsistency for ESE DASD devices (git-fixes). - s390/dasd: prevent double format of tracks for ESE devices (git-fixes). - s390/entry: fix duplicate tracking of irq nesting level (git-fixes). - s390/extable: fix exception table sorting (git-fixes). - s390/kexec_file: fix error handling when applying relocations (git-fixes). - s390/kexec: fix memory leak of ipl report buffer (git-fixes). - s390/kexec: fix return code handling (git-fixes). - s390/lcs: fix variable dereferenced before check (git-fixes). - s390/mcck: isolate SIE instruction when setting CIF_MCCK_GUEST flag (git-fixes). - s390/module: fix loading modules with a lot of relocations (git-fixes). - s390/nmi: handle guarded storage validity failures for KVM guests (git-fixes). - s390/nmi: handle vector validity failures for KVM guests (git-fixes). - s390/perf: obtain sie_block from the right address (bsc#1200315 LTC#198473). - s390/setup: avoid reserving memory above identity mapping (git-fixes). - s390/smp: sort out physical vs virtual pointers usage (git-fixes). - sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (git-fixes). - sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (git-fixes). - sc16is7xx: Fix for incorrect data being transmitted (git-fixes). - sched/core: Export pelt_thermal_tp (git-fixes) - sched/core: Fix forceidle balancing (git-fixes) - sched/core: Mitigate race (git-fixes) - sched/cpuacct: Fix charge percpu cpuusage (git-fixes) - sched/cpuacct: Fix user/system in shown cpuacct.usage* (git-fixes) - sched/debug: Remove mpol_get/put and task_lock/unlock from (git-fixes) - sched: Define and initialize a flag to identify valid PASID in the task (jsc#SLE-24350). - sched/fair: Consider CPU affinity when allowing NUMA imbalance in find_idlest_group() (bnc#1193431). - sched/fair: Fix fault in reweight_entity (git fixes (sched/core)). - sched/fair: Revise comment about lb decision matrix (git-fixes) - sched: Fix balance_push() vs __sched_setscheduler() (git-fixes) - sched: Fix yet more sched_fork() races (git fixes (sched/core)). - sched/membarrier: Fix membarrier-rseq fence command missing (git-fixes) - sched/numa: Adjust imb_numa_nr to a better approximation of memory channels (bnc#1193431). - sched/numa: Apply imbalance limitations consistently (bnc#1193431). - sched/numa: Do not swap tasks between nodes when spare capacity is available (bnc#1193431). - sched/numa: Initialise numa_migrate_retry (bnc#1193431). - sched/pasid: Add a kABI workaround (jsc#SLE-24350). - sched/pelt: Fix attach_entity_load_avg() corner case (git-fixes) - sched/pelt: Relax the sync of util_sum with util_avg (git-fixes) - sched/psi: report zeroes for CPU full at the system level (git-fixes) - sched/rt: Plug rt_mutex_setprio() vs push_rt_task() race (git-fixes) - sched/rt: Try to restart rt period timer when rt runtime (git-fixes) - sched/scs: Reset task stack state in bringup_cpu() (git-fixes) - sched/sugov: Ignore 'busy' filter when rq is capped by (git-fixes) - sched: Teach the forced-newidle balancer about CPU affinity (git-fixes) - scripts/faddr2line: Fix overlapping text section failures (git-fixes). - scsi: block: pm: Always set request queue runtime active in blk_post_runtime_resume() (bsc#1198802). - scsi: block: PM fix blk_post_runtime_resume() args (bsc#1198802). - scsi: core: Query VPD size before getting full page (git-fixes). - scsi: dc395x: Fix a missing check on list iterator (git-fixes). - scsi: elx: efct: Do not use GFP_KERNEL under spin lock (git-fixes). - scsi: fnic: Fix a tracing statement (git-fixes). - scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631). - scsi: hisi_sas: Add more logs for runtime suspend/resume (bsc#1198802). - scsi: hisi_sas: Change permission of parameter prot_mask (git-fixes). - scsi: hisi_sas: Fix rescan after deleting a disk (git-fixes). - scsi: hisi_sas: Fix some issues related to asd_sas_port->phy_list (bsc#1198802). - scsi: hisi_sas: Increase debugfs_dump_index after dump is completed (bsc#1198806). - scsi: hisi_sas: Initialise devices in .slave_alloc callback (bsc#1198802). - scsi: hisi_sas: Limit users changing debugfs BIST count value (bsc#1198803). - scsi: hisi_sas: Remove unused variable and check in hisi_sas_send_ata_reset_each_phy() (git-fixes). - scsi: hisi_sas: Wait for phyup in hisi_sas_control_phy() (bsc#1198802). - scsi: ibmvfc: Allocate/free queue resource only during probe/remove (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: ibmvfc: Store vhost pointer during subcrq allocation (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: iscsi: Add helper functions to manage iscsi_cls_conn (bsc#1198410). - scsi: iscsi: Add helper to remove a session from the kernel (bsc#1198410). - scsi: iscsi: Allow iscsi_if_stop_conn() to be called from kernel (bsc#1198410). - scsi: iscsi: Clean up bound endpoints during shutdown (bsc#1198410). - scsi: iscsi: Fix HW conn removal use after free (bsc#1198410). - scsi: iscsi: Fix session removal on shutdown (bsc#1198410). - scsi: libiscsi: Teardown iscsi_cls_conn gracefully (bsc#1198410). - scsi: libsas: Add flag SAS_HA_RESUMING (bsc#1198802). - scsi: libsas: Add spin_lock/unlock() to protect asd_sas_port->phy_list (bsc#1198802). - scsi: libsas: Defer works of new phys during suspend (bsc#1198802). - scsi: libsas: Do not always drain event workqueue for HA resume (bsc#1198802). - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands (git-fixes). - scsi: libsas: Insert PORTE_BROADCAST_RCVD event for resuming host (bsc#1198802). - scsi: libsas: Keep host active while processing events (bsc#1198802). - scsi: libsas: Refactor sas_queue_deferred_work() (bsc#1198802). - scsi: libsas: Resume host while sending SMP I/Os (bsc#1198802). - scsi: lpfc: Add more logging of cmd and cqe information for aborted NVMe cmds (bsc#1201193). - scsi: lpfc: Address NULL pointer dereference after starget_to_rport() (bsc#1201193). - scsi: lpfc: Add support for ATTO Fibre Channel devices (bsc#1201193). - scsi: lpfc: Add support for VMID tagging of NVMe I/Os (bsc#1201193). - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd completion (bsc#1201193). - scsi: lpfc: Alter FPIN stat accounting logic (bsc#1200045). - scsi: lpfc: Change FA-PWWN detection methodology (bsc#1200045). - scsi: lpfc: Change VMID registration to be based on fabric parameters (bsc#1200045). - scsi: lpfc: Clear fabric topology flag before initiating a new FLOGI (bsc#1200045). - scsi: lpfc: Commonize VMID code location (bsc#1201193). - scsi: lpfc: Copyright updates for 14.2.0.0 patches (bsc#1197675). - scsi: lpfc: Copyright updates for 14.2.0.2 patches (bsc#1200045). - scsi: lpfc: Correct BDE DMA address assignment for GEN_REQ_WQE (bsc#1200045). - scsi: lpfc: Correct BDE type for XMIT_SEQ64_WQE in lpfc_ct_reject_event() (bsc#1201193). - scsi: lpfc: Correct CRC32 calculation for congestion stats (bsc#1200045). - scsi: lpfc: Decrement outstanding gidft_inp counter if lpfc_err_lost_link() (bsc#1200045). - scsi: lpfc: Drop lpfc_no_handler() (bsc#1197675). - scsi: lpfc: Expand setting ELS_ID field in ELS_REQUEST64_WQE (bsc#1200045). - scsi: lpfc: Fill in missing ndlp kref puts in error paths (bsc#1200045). - scsi: lpfc: Fix additional reference counting in lpfc_bsg_rport_els() (bsc#1200045). - scsi: lpfc: Fix broken SLI4 abort path (bsc#1197675). - scsi: lpfc: Fix call trace observed during I/O with CMF enabled (bsc#1200045). - scsi: lpfc: Fix diagnostic fw logging after a function reset (bsc#1200045). - scsi: lpfc: Fix dmabuf ptr assignment in lpfc_ct_reject_event() (bsc#1200045). - scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4() (bsc#1200045). - scsi: lpfc: Fix field overload in lpfc_iocbq data structure (bsc#1200045). - scsi: lpfc: Fix locking for lpfc_sli_iocbq_lookup() (bsc#1197675). - scsi: lpfc: Fix ndlp put following a LOGO completion (bsc#1200045). - scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI (bsc#1200045). - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology (bsc#1201193). - scsi: lpfc: Fix queue failures when recovering from PCI parity error (bsc#1197675 bsc#1196478). - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() (bsc#1200045). - scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock (bsc#1200045). - scsi: lpfc: Fix split code for FLOGI on FCoE (bsc#1200045). - scsi: lpfc: Fix typos in comments (bsc#1197675). - scsi: lpfc: Fix unload hang after back to back PCI EEH faults (bsc#1197675 bsc#1196478). - scsi: lpfc: Improve PCI EEH Error and Recovery Handling (bsc#1197675 bsc#1196478). - scsi: lpfc: Inhibit aborts if external loopback plug is inserted (bsc#1200045). - scsi: lpfc: Introduce FC_RSCN_MEMENTO flag for tracking post RSCN completion (bsc#1200045). - scsi: lpfc: Kill lpfc_bus_reset_handler() (bsc#1197675). - scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() (bsc#1200045). - scsi: lpfc: Move MI module parameter check to handle dynamic disable (bsc#1200045). - scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT (bsc#1200045). - scsi: lpfc: Reduce log messages seen after firmware download (bsc#1197675). - scsi: lpfc: Refactor cleanup of mailbox commands (bsc#1200045). - scsi: lpfc: Register for Application Services FC-4 type in Fabric topology (bsc#1200045). - scsi: lpfc: Remove failing soft_wwn support (bsc#1197675). - scsi: lpfc: Remove false FDMI NVMe FC-4 support for NPIV ports (bsc#1200045). - scsi: lpfc: Remove NVMe support if kernel has NVME_FC disabled (bsc#1197675). - scsi: lpfc: Remove redundant flush_workqueue() call (bsc#1197675). - scsi: lpfc: Remove redundant lpfc_sli_prep_wqe() call (bsc#1200045). - scsi: lpfc: Remove unnecessary null ndlp check in lpfc_sli_prep_wqe() (bsc#1200045). - scsi: lpfc: Remove unnecessary NULL pointer assignment for ELS_RDF path (bsc#1200045). - scsi: lpfc: Remove unneeded variable (bsc#1200045). - scsi: lpfc: Requeue SCSI I/O to upper layer when fw reports link down (bsc#1200045). - scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following abort path refactoring (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following SLI path refactoring (bsc#1201193). - scsi: lpfc: Revise FDMI reporting of supported port speed for trunk groups (bsc#1200045). - scsi: lpfc: Rework FDMI initialization after link up (bsc#1200045). - scsi: lpfc: Rework lpfc_vmid_get_appid() to be protocol independent (bsc#1201193). - scsi: lpfc: SLI path split: Introduce lpfc_prep_wqe (bsc#1197675). - scsi: lpfc: SLI path split: Refactor Abort paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor base ELS paths and the FLOGI path (bsc#1197675). - scsi: lpfc: SLI path split: Refactor BSG paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor CT paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor fast and slow paths to native SLI4 (bsc#1197675). - scsi: lpfc: SLI path split: Refactor FDISC paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor lpfc_iocbq (bsc#1197675). - scsi: lpfc: SLI path split: Refactor LS_ACC paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor LS_RJT paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor misc ELS paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor PLOGI/PRLI/ADISC/LOGO paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor SCSI paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor the RSCN/SCR/RDF/EDC/FARPR paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor VMID paths (bsc#1197675). - scsi: lpfc: Transition to NPR state upon LOGO cmpl if link down or aborted (bsc#1200045). - scsi: lpfc: Tweak message log categories for ELS/FDMI/NVMe rescan (bsc#1200045). - scsi: lpfc: Update fc_prli_sent outstanding only after guaranteed IOCB submit (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.0 (bsc#1197675). - scsi: lpfc: Update lpfc version to 14.2.0.1 (bsc#1197675). - scsi: lpfc: Update lpfc version to 14.2.0.2 (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.3 (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.4 (bsc#1201193). - scsi: lpfc: Update stat accounting for READ_STATUS mbox command (bsc#1200045). - scsi: lpfc: Use fc_block_rport() (bsc#1197675). - scsi: lpfc: Use irq_set_affinity() (bsc#1197675). - scsi: lpfc: Use kcalloc() (bsc#1197675). - scsi: lpfc: Use list_for_each_entry_safe() in rscn_recovery_check() (bsc#1200045). - scsi: lpfc: Use rport as argument for lpfc_chk_tgt_mapped() (bsc#1197675). - scsi: lpfc: Use rport as argument for lpfc_send_taskmgmt() (bsc#1197675). - scsi: lpfc: Use sg_dma_address() and sg_dma_len() macros for NVMe I/O (bsc#1200045). - scsi: lpfc: Zero SLI4 fcp_cmnd buffer's fcpCntl0 field (bsc#1200045). - scsi: mpt3sas: Fix incorrect 4GB boundary check (git-fixes). - scsi: mpt3sas: Fix use after free in _scsih_expander_node_remove() (git-fixes). - scsi: mpt3sas: Page fault in reply q processing (git-fixes). - scsi: mpt3sas: Use cached ATA Information VPD page (git-fixes). - scsi: mvsas: Add spin_lock/unlock() to protect asd_sas_port->phy_list (bsc#1198802). - scsi: nvme-fc: Add new routine nvme_fc_io_getuuid() (bsc#1201193). - scsi: pm8001: Fix abort all task initialization (git-fixes). - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() (git-fixes). - scsi: pm8001: Fix command initialization in pm80XX_send_read_log() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_set_sas_protocol_timer_config() (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update() (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() (git-fixes). - scsi: pm80xx: Enable upper inbound, outbound queues (git-fixes). - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63 (git-fixes). - scsi: qedi: Fix ABBA deadlock in qedi_process_tmf_resp() and qedi_process_cmd_cleanup_resp() (git-fixes). - scsi: qedi: Use QEDI_MODE_NORMAL for error handling (bsc#1198410). - scsi: qla2xxx: Add a new v2 dport diagnostic feature (bsc#1201160). - scsi: qla2xxx: Add debug prints in the device remove path (bsc#1201160). - scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823). - scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823). - scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823). - scsi: qla2xxx: Add retry for exec firmware (bsc#1195823). - scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823). - scsi: qla2xxx: edif: Add bsg interface to read doorbell events (bsc#1201160). - scsi: qla2xxx: edif: Add retry for ELS passthrough (bsc#1201160). - scsi: qla2xxx: edif: bsg refactor (bsc#1201160). - scsi: qla2xxx: edif: Fix clang warning (bsc#1195823). - scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823). - scsi: qla2xxx: edif: Fix I/O timeout due to over-subscription (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n login retry for secure device (bsc#1201160). - scsi: qla2xxx: edif: Fix no login after app start (bsc#1201160). - scsi: qla2xxx: edif: Fix no logout on delete for N2N (bsc#1201160). - scsi: qla2xxx: edif: Fix potential stuck session in sa update (bsc#1201160). - scsi: qla2xxx: edif: Fix session thrash (bsc#1201160). - scsi: qla2xxx: edif: Fix slow session teardown (bsc#1201160). - scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823). - scsi: qla2xxx: edif: Reduce disruption due to multiple app start (bsc#1201160). - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing (bsc#1201160). - scsi: qla2xxx: edif: Reduce N2N thrashing at app_start time (bsc#1201160). - scsi: qla2xxx: edif: Remove old doorbell interface (bsc#1201160). - scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200046). - scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823). - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message (bsc#1201160). - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication application (bsc#1201160). - scsi: qla2xxx: edif: Tear down session if keys have been removed (bsc#1201160). - scsi: qla2xxx: edif: Tweak trace message (bsc#1195823). - scsi: qla2xxx: edif: Wait for app to ack on sess down (bsc#1201160). - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (bsc#1201160). - scsi: qla2xxx: Fix crash during module load unload test (bsc#1197661). - scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823). - scsi: qla2xxx: Fix disk failure to rediscover (bsc#1197661). - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection (bsc#1201160). - scsi: qla2xxx: Fix excessive I/O error messages by default (bsc#1201160). - scsi: qla2xxx: Fix hang due to session stuck (bsc#1197661). - scsi: qla2xxx: Fix incorrect reporting of task management failure (bsc#1197661). - scsi: qla2xxx: Fix laggy FC remote port session recovery (bsc#1197661). - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os (bsc#1201160). - scsi: qla2xxx: Fix losing target when it reappears during delete (bsc#1201160). - scsi: qla2xxx: Fix loss of NVMe namespaces after driver reload test (bsc#1197661). - scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200046). - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests (bsc#1197661). - scsi: qla2xxx: Fix N2N inconsistent PLOGI (bsc#1197661). - scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823). - scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823). - scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823). - scsi: qla2xxx: Fix stuck session of PRLI reject (bsc#1197661). - scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823). - scsi: qla2xxx: Fix typos in comments (bsc#1197661). - scsi: qla2xxx: Fix warning for missing error code (bsc#1195823). - scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823). - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823). - scsi: qla2xxx: Implement ref count for SRB (bsc#1195823). - scsi: qla2xxx: Increase max limit of ql2xnvme_queues (bsc#1197661). - scsi: qla2xxx: Reduce false trigger to login (bsc#1197661). - scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823). - scsi: qla2xxx: Remove a declaration (bsc#1195823). - scsi: qla2xxx: Remove free_sg command flag (bsc#1200046). - scsi: qla2xxx: Remove setting of 'req' and 'rsp' parameters (bsc#1201160). - scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200046). - scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823). - scsi: qla2xxx: Remove unused 'ql_dm_tgt_ex_pct' parameter (bsc#1201160). - scsi: qla2xxx: Stop using the SCSI pointer (bsc#1197661). - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823). - scsi: qla2xxx: Turn off multi-queue for 8G adapters (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823). - scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823). - scsi: qla2xxx: Update version to 10.02.07.400-k (bsc#1197661). - scsi: qla2xxx: Update version to 10.02.07.500-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.600-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.700-k (bsc#1201160). - scsi: qla2xxx: Use correct feature type field during RFF_ID processing (bsc#1197661). - scsi: qla2xxx: Use named initializers for port_state_str (bsc#1197661). - scsi: qla2xxx: Use named initializers for q_dev_state (bsc#1197661). - scsi: qla2xxx: Wind down adapter after PCIe error (bsc#1201160). - scsi: scsi_transport_fc: Fix FPIN Link Integrity statistics counters (git-fixes). - scsi: sr: Do not leak information in ioctl (git-fixes). - scsi: ufs: core: Exclude UECxx from SFR dump list (git-fixes). - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled (git-fixes). - scsi: ufs: qcom: Fix ufs_qcom_resume() (git-fixes). - scsi: virtio-scsi: Eliminate anonymous module_init and module_exit (git-fixes). - scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (git-fixes). - selftest: KVM: Add open sev dev helper (bsc#1194526). - selftests/bpf: Remove unused variable in tc_tunnel prog (git-fixes). - selftests: firmware: Fix the request_firmware_into_buf() test for XZ format (git-fixes). - selftests: firmware: Use smaller dictionary for XZ compression (git-fixes). - selftests: fix check for circular KVM_CAP_VM_MOVE_ENC_CONTEXT_FROM (bsc#1194526). - selftests: KVM: Add /x86_64/sev_migrate_tests to .gitignore (bsc#1194526). - selftests: KVM: Fix check for !POLLIN in demand_paging_test (bsc#1194526). - selftests: kvm: Remove absent target file (git-fixes). - selftests: KVM: sev_migrate_tests: Fix sev_ioctl() (bsc#1194526). - selftests: kvm/x86: Fix the warning in lib/x86_64/processor.c (bsc#1194526). - selftests/powerpc: Add test for real address error handling (jsc#SLE-18194). - serial: 8250: Also set sticky MCR bits in console restoration (git-fixes). - serial: 8250_aspeed_vuart: add PORT_ASPEED_VUART port type (git-fixes). - serial: 8250_aspeed_vuart: Fix potential NULL dereference in aspeed_vuart_probe (git-fixes). - serial: 8250: core: Remove unneeded linux/pm_runtime.h (git-fixes). - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device (git-fixes). - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485 (git-fixes). - serial: 8250: Fix race condition in RTS-after-send handling (git-fixes). - serial: 8250: fix XOFF/XON sending when DMA is used (git-fixes). - serial: 8250_lpss: Balance reference count for PCI DMA device (git-fixes). - serial: 8250_mid: Balance reference count for PCI DMA device (git-fixes). - serial: 8250_mtk: Fix register address for XON/XOFF character (git-fixes). - serial: 8250_mtk: Fix UART_EFR register address (git-fixes). - serial: 8250: pxa: Remove unneeded linux/pm_runtime.h (git-fixes). - serial: core: Fix the definition name in the comment of UPF_* flags (git-fixes). - serial: cpm_uart: Fix build error without CONFIG_SERIAL_CPM_CONSOLE (git-fixes). - serial: digicolor-usart: Do not allow CS5-6 (git-fixes). - serial: imx: fix overrun interrupts in DMA mode (git-fixes). - serial: meson: acquire port->lock in startup() (git-fixes). - serial: msm_serial: disable interrupts in __msm_console_write() (git-fixes). - serial: pch: do not overwrite xmit->buf[0] by x_char (git-fixes). - serial: rda-uart: Do not allow CS5-6 (git-fixes). - serial: samsung_tty: do not unlock port->lock for uart_write_wakeup() (git-fixes). - serial: sh-sci: Do not allow CS5-6 (git-fixes). - serial: sifive: Report actual baud base rather than fixed 115200 (git-fixes). - serial: sifive: Sanitize CSIZE and c_iflag (git-fixes). - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7 (git-fixes). - serial: stm32-usart: Correct CSIZE, bits, and parity (git-fixes). - serial: txx9: Do not allow CS5-6 (git-fixes). - sfc: Do not free an empty page_ring (git-fixes). - sfc: fallback for lack of xdp tx queues (bsc#1196306). - sfc: last resort fallback for lack of xdp tx queues (bsc#1196306). - sfc: Use swap() instead of open coding it (bsc#1196306). - sfc: use swap() to make code cleaner (bsc#1196306). - skbuff: fix coalescing for page_pool fragment recycling (bsc#1190336). - slimbus: qcom: Fix IRQ check in qcom_slim_probe (git-fixes). - slip: fix macro redefine warning (git-fixes). - smb3: add mount parm nosparse (bsc#1193629). - smb3: add trace point for lease not found issue (bsc#1193629). - smb3: add trace point for oplock not found (bsc#1193629). - smb3: check for null tcon (bsc#1193629). - smb3: cleanup and clarify status of tree connections (bsc#1193629). - smb3: do not set rc when used and unneeded in query_info_compound (bsc#1193629). - SMB3: EBADF/EIO errors in rename/open caused by race condition in smb2_compound_op (bsc#1193629). - smb3: fix incorrect session setup check for multiuser mounts (bsc#1193629). - smb3: fix ksmbd bigendian bug in oplock break, and move its struct to smbfs_common (bsc#1193629). - smb3: fix snapshot mount option (bsc#1193629). - smb3 improve error message when mount options conflict with posix (bsc#1193629). - smb3: move defines for ioctl protocol header and SMB2 sizes to smbfs_common (bsc#1193629). - smb3: move defines for query info and query fsinfo to smbfs_common (bsc#1193629). - smb3 move more common protocol header definitions to smbfs_common (bsc#1193629). - smb3: send NTLMSSP version information (bsc#1193629). - smp: Fix offline cpu check in flush_smp_call_function_queue() (git-fixes). - smsc911x: allow using IRQ0 (git-fixes). - soc: aspeed: lpc-ctrl: Block error printing on probe defer cases (git-fixes). - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe (git-fixes). - soc: bcm: Check for NULL return of devm_kzalloc() (git-fixes). - soc: fsl: Correct MAINTAINERS database (QUICC ENGINE LIBRARY) (git-fixes). - soc: fsl: Correct MAINTAINERS database (SOC) (git-fixes). - soc: fsl: guts: Add a missing memory allocation failure check (git-fixes). - soc: fsl: guts: Revert commit 3c0d64e867ed (git-fixes). - soc: fsl: qe: Check of ioremap return value (git-fixes). - soc: mediatek: pm-domains: Add wakeup capacity support in power domain (git-fixes). - soc: qcom: aoss: Expose send for generic usecase (git-fixes). - soc: qcom: aoss: Fix missing put_device call in qmp_get (git-fixes). - soc: qcom: aoss: remove spurious IRQF_ONESHOT flags (git-fixes). - soc: qcom: llcc: Add MODULE_DEVICE_TABLE() (git-fixes). - soc: qcom: ocmem: Fix missing put_device() call in of_get_ocmem (git-fixes). - soc: qcom: rpmpd: Check for null return of devm_kcalloc (git-fixes). - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc (git-fixes). - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc (git-fixes). - soc: rockchip: Fix refcount leak in rockchip_grf_init (git-fixes). - soc: ti: ti_sci_pm_domains: Check for null return of devm_kcalloc (git-fixes). - soc: ti: wkup_m3_ipc: Fix IRQ check in wkup_m3_ipc_probe (git-fixes). - sound/oss/dmasound: fix build when drivers are mixed =y/=m (git-fixes). - sound/oss/dmasound: fix 'dmasound_setup' defined but not used (git-fixes). - soundwire: intel: fix wrong register name in intel_shim_wake (git-fixes). - soundwire: intel: prevent pm_runtime resume prior to system suspend (git-fixes). - soundwire: qcom: adjust autoenumeration timeout (git-fixes). - speakup-dectlk: Restore pitch setting (git-fixes). - spi: atmel-quadspi: Fix the buswidth adjustment between spi-mem and controller (git-fixes). - spi: bcm-qspi: fix MSPI only access with bcm_qspi_exec_mem_op() (git-fixes). - spi: cadence-quadspi: fix incorrect supports_op() return value (git-fixes). - spi: cadence-quadspi: fix protocol setup for non-1-1-X operations (git-fixes). - spi: core: add dma_map_dev for __spi_unmap_msg() (git-fixes). - spi: Fix erroneous sgs value with min_t() (git-fixes). - spi: Fix invalid sgs value (git-fixes). - spi: Fix Tegra QSPI example (git-fixes). - spi: img-spfi: Fix pm_runtime_get_sync() error checking (git-fixes). - spi: mxic: Fix the transmit path (git-fixes). - spi: pxa2xx-pci: Balance reference count for PCI DMA device (git-fixes). - spi: qcom-qspi: Add minItems to interconnect-names (git-fixes). - spi: rockchip: Fix error in getting num-cs property (git-fixes). - spi: rockchip: fix missing error on unsupported SPI_CS_HIGH (git-fixes). - spi: rockchip: Preset cs-high and clk polarity in setup progress (git-fixes). - spi: rockchip: Stop spi slave dma receiver when cs inactive (git-fixes). - spi: rockchip: terminate dma transmission when slave abort (git-fixes). - spi: spi-cadence: Fix kernel-doc format for resume/suspend (git-fixes). - spi: spi-fsl-qspi: check return value after calling platform_get_resource_byname() (git-fixes). - spi: spi-mtk-nor: initialize spi controller after resume (git-fixes). - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction (git-fixes). - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout (git-fixes). - spi: spi-zynqmp-gqspi: Handle error for dma_set_mask (git-fixes). - spi: spi-zynq-qspi: Fix a NULL pointer dereference in zynq_qspi_exec_mem_op() (git-fixes). - spi: stm32-qspi: Fix wait_cmd timeout in APM mode (git-fixes). - spi: tegra114: Add missing IRQ check in tegra_spi_probe (git-fixes). - spi: tegra20: Use of_device_get_match_data() (git-fixes). - spi: tegra210-quad: Fix missin IRQ check in tegra_qspi_probe (git-fixes). - sr9700: sanity check for packet length (bsc#1196836). - staging: fbtft: fb_st7789v: reset display before initialization (git-fixes). - staging: fbtft: Fix error path in fbtft_driver_module_init() (git-fixes). - staging: fieldbus: Fix the error handling path in anybuss_host_common_probe() (git-fixes). - staging: gdm724x: fix use after free in gdm_lte_rx() (git-fixes). - staging:iio:adc:ad7280a: Fix handing of device address bit reversing (git-fixes). - staging: most: dim2: force fcnt=3 on Renesas GEN3 (git-fixes). - staging: most: dim2: use device release method (git-fixes). - staging: most: dim2: use if statements instead of ?: expressions (git-fixes). - staging: mt7621-dts: fix formatting (git-fixes). - staging: mt7621-dts: fix LEDs and pinctrl on GB-PC1 devicetree (git-fixes). - staging: mt7621-dts: fix pinctrl-0 items to be size-1 items on ethernet (git-fixes). - staging: mt7621-dts: fix pinctrl properties for ethernet (git-fixes). - staging: rtl8712: fix a potential memory leak in r871xu_drv_init() (git-fixes). - staging: rtl8712: fix uninit-value in r871xu_drv_init() (git-fixes). - staging: rtl8712: fix uninit-value in usb_read8() and friends (git-fixes). - staging: rtl8723bs: Fix access-point mode deadlock (git-fixes). - staging: vc04_services: shut up out-of-range warning (git-fixes). - staging: vchiq_arm: Avoid NULL ptr deref in vchiq_dump_platform_instances (git-fixes). - staging: vchiq_core: handle NULL result of find_service_by_handle (git-fixes). - staging: vchiq: Move certain declarations to vchiq_arm.h (git-fixes). - staging: vchiq: Move vchiq char driver to its own file (git-fixes). - staging: vchiq: Refactor vchiq cdev code (git-fixes). - staging: wfx: fix an error handling in wfx_init_common() (git-fixes). - stddef: Introduce DECLARE_FLEX_ARRAY() helper (git-fixes). - stm: ltdc: fix two incorrect NULL checks on list iterator (bsc#1190786) - SUNRPC: change locking for xs_swap_enable/disable (bsc#1196367). - SUNRPC: Do not dereference non-socket transports in sysfs (git-fixes). - SUNRPC: Do not dereference non-socket transports in sysfs - kabi fix (git-fixes). - SUNRPC do not resend a task on an offlined transport (git-fixes). - SUNRPC: Ensure gss-proxy connects on setup (git-fixes). - SUNRPC: Ensure that the gssproxy client can start in a connected state (git-fixes). - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer() (git-fixes). - SUNRPC: Fix the svc_deferred_event trace class (git-fixes). - SUNRPC: Handle ENOMEM in call_transmit_status() (git-fixes). - SUNRPC: Handle low memory situations in call_status() (git-fixes). - SUNRPC release the transport of a relocated task with an assigned transport (git-fixes). - SUNRPC: svc_tcp_sendmsg() should handle errors from xdr_alloc_bvec() (git-fixes). - SUNRPC: Trap RDMA segment overflows (git-fixes). - SUNRPC: use different lock keys for INET6 and LOCAL (git-fixes). - supported.conf: add intel_sdsi - supported.conf: mark pfuze100 regulator as supported (bsc#1199909) - supported.conf: Support TPM TIS SPI driver (jsc#SLE-24093) - surface: surface3_power: Fix battery readings on batteries without a serial number (git-fixes). - swiotlb: max mapping size takes min align mask into account (bsc#1197303). - sysrq: do not omit current cpu when showing backtrace of all active CPUs (git-fixes). - thermal/core: Fix memory leak in __thermal_cooling_device_register() (git-fixes). - thermal: core: Fix TZ_GET_TRIP NULL pointer dereference (git-fixes). - thermal: devfreq_cooling: use local ops instead of global ops (git-fixes). - thermal/drivers/bcm2711: Do not clamp temperature at zero (git-fixes). - thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe (git-fixes). - thermal/drivers/imx_sc_thermal: Fix refcount leak in imx_sc_thermal_probe (git-fixes). - thermal/drivers/int340x: Improve the tcc offset saving for suspend/resume (git-fixes). - thermal: int340x: Check for NULL after calling kmemdup() (git-fixes). - thermal: int340x: Fix attr.show callback prototype (git-fixes). - thermal: int340x: fix memory leak in int3400_notify() (git-fixes). - thermal: int340x: Increase bitmap size (git-fixes). - thunderbolt: Use different lane for second DisplayPort tunnel (git-fixes). - tick/nohz: unexport __init-annotated tick_nohz_full_setup() (bsc#1201218). - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator (bsc#1190786) - timekeeping: Mark NMI safe time accessors as notrace (git-fixes) - timers: Fix warning condition in __run_timers() (git-fixes) - TOMOYO: fix __setup handlers return values (git-fixes). - tools arch x86: Add Intel SDSi provisiong tool (jsc#SLE-18938). - tools: bpftool: Complete metrics list in "bpftool prog profile" doc (git-fixes). - tools: bpftool: Document and add bash completion for -L, -B options (git-fixes). - tools: bpftool: Update and synchronise option list in doc and help msg (git-fixes). - tpm: Fix buffer access in tpm2_get_tpm_pt() (git-fixes). - tpm: Fix error handling in async work (git-fixes). - tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe() (bsc#1065729). - tpm: use try_get_ops() in tpm-space.c (git-fixes). - tps6598x: clear int mask on probe failure (git-fixes). - tracing: Do not inc err_log entry count if entry allocation fails (git-fixes). - tracing: Dump stacktrace trigger to the corresponding instance (git-fixes). - tracing: Fix potential double free in create_var_ref() (git-fixes). - tracing: Fix return value of __setup handlers (git-fixes). - tracing: Fix return value of trace_pid_write() (git-fixes). - tracing: Fix smatch warning for null glob in event_hist_trigger_parse() (git-fixes). - tracing: Have trace event string test handle zero length strings (git-fixes). - tracing: Have traceon and traceoff trigger honor the instance (git-fixes). - tracing/histogram: Fix a potential memory leak for kstrdup() (git-fixes). - tracing/histogram: Fix sorting on old "cpu" value (git-fixes). - tracing/osnoise: Force quiescent states while tracing (git-fixes). - tracing: Propagate is_signed to expression (git-fixes). - tracing: Show kretprobe unknown indicator only for kretprobe_trampoline (bsc#1193277). - tty: Fix a possible resource leak in icom_probe (git-fixes). - tty: fix deadlock caused by calling printk() under tty_port->lock (git-fixes). - tty: goldfish: Fix free_irq() on remove (git-fixes). - tty: goldfish: Introduce gf_ioread32()/gf_iowrite32() (git-fixes). - tty: goldfish: Use tty_port_destroy() to destroy port (git-fixes). - tty: n_gsm: Debug output allocation must use GFP_ATOMIC (git-fixes). - tty: n_gsm: Do not ignore write return value in gsmld_output() (git-fixes). - tty: n_gsm: fix deadlock in gsmtty_open() (git-fixes). - tty: n_gsm: fix encoding of control signal octet bit DV (git-fixes). - tty: n_gsm: fix NULL pointer access due to DLCI release (git-fixes). - tty: n_gsm: Fix packet data hex dump output (git-fixes). - tty: n_gsm: fix proper link termination after failed open (git-fixes). - tty: n_gsm: fix wrong modem processing in convergence layer type 2 (git-fixes). - tty: n_gsm: fix wrong tty control line for flow control (git-fixes). - tty: n_tty: do not look ahead for EOL character past the end of the buffer (git-fixes). - tty: n_tty: Restore EOF push handling behavior (git-fixes). - tty/serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe() (git-fixes). - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id and ida_simple_get (git-fixes). - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe (git-fixes). - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean() (git-fixes). - u64_stats: Disable preemption on 32bit UP+SMP PREEMPT_RT during updates (bsc#1189998). - uapi/linux/stddef.h: Add include guards (jsc#SLE-18978). - ucounts: Enforce RLIMIT_NPROC not RLIMIT_NPROC+1 (bsc#1194191). - udmabuf: validate ubuf->pagecount (git-fixes). - udp_tunnel: Fix end of loop test in udp_tunnel_nic_unregister() (git-fixes). - usb: cdc-wdm: fix reading stuck on device close (git-fixes). - usb: cdns3: Fix issue for clear halt endpoint (git-fixes). - usb: cdnsp: fix cdnsp_decode_trb function to properly handle ret value (git-fixes). - usb: cdnsp: Fixed setting last_trb incorrectly (git-fixes). - usb: chipidea: udc: check request status before setting device address (git-fixes). - usb: core: Do not hold the device lock while sleeping in do_proc_control() (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: drd: fix soft connect when gadget is unconfigured (git-fixes). - usb: dwc2: Fix memory leak in dwc2_hcd_init (git-fixes). - usb: dwc2: gadget: do not reset gadget's driver->bus (git-fixes). - usb: dwc2: gadget: do not try to disable ep0 in dwc2_hsotg_suspend (git-fixes). - usb: dwc3: core: Fix tx/rx threshold settings (git-fixes). - usb: dwc3: core: Only handle soft-reset in DCTL (git-fixes). - usb: dwc3: Decouple USB 2.0 L1 & L2 events (git-fixes). - usb: dwc3: gadget: Change to dev_dbg() when queuing to inactive gadget/ep (git-fixes). - usb: dwc3: gadget: ep_queue simplify isoc start condition (git-fixes). - usb: dwc3: gadget: Fix IN endpoint max packet size allocation (git-fixes). - usb: dwc3: gadget: Give some time to schedule isoc (git-fixes). - usb: dwc3: gadget: Ignore Update Transfer cmd params (git-fixes). - usb: dwc3: gadget: Let the interrupt handler disable bottom halves (git-fixes). - usb: dwc3: gadget: move cmd_endtransfer to extra function (git-fixes). - usb: dwc3: gadget: Move null pinter check to proper place (git-fixes). - usb: dwc3: gadget: Prevent core from processing stale TRBs (git-fixes). - usb: dwc3: gadget: Prevent repeat pullup() (git-fixes). - usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback (git-fixes). - usb: dwc3: gadget: Return proper request status (git-fixes). - usb: dwc3: gadget: Skip checking Update Transfer status (git-fixes). - usb: dwc3: gadget: Skip reading GEVNTSIZn (git-fixes). - usb: dwc3: gadget: Wait for ep0 xfers to complete during dequeue (git-fixes). - usb: dwc3: Issue core soft reset before enabling run/stop (git-fixes). - usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on omap5evm (git-fixes). - usb: dwc3: pci: Add "snps,dis_u2_susphy_quirk" for Intel Bay Trail (git-fixes). - usb: dwc3: pci: add support for the Intel Meteor Lake-P (git-fixes). - usb: dwc3: pci: add support for the Intel Raptor Lake-S (git-fixes). - usb: dwc3: pci: Fix Bay Trail phy GPIO mappings (git-fixes). - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking (git-fixes). - usb: dwc3: pci: Set the swnode from inside dwc3_pci_quirks() (git-fixes). - usb: dwc3: Try usb-role-switch first in dwc3_drd_init (git-fixes). - usb: dwc3: xilinx: fix uninitialized return value (git-fixes). - usb: ehci: add pci device support for Aspeed platforms (git-fixes). - usb: ehci-omap: drop unused ehci_read() function (git-fixes). - usb: f_fs: Fix use-after-free for epfile (git-fixes). - usb: Fix xhci event ring dequeue pointer ERDP update issue (git-fixes). - usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind() (git-fixes). - usb: gadget: eliminate anonymous module_init and module_exit (git-fixes). - usb: gadget: f_fs: change ep->ep safe in ffs_epfile_io() (git-fixes). - usb: gadget: f_fs: change ep->status safe in ffs_epfile_io() (git-fixes). - USB: gadget: Fix double-free bug in raw_gadget driver (git-fixes). - usb: gadget: Fix non-unique driver names in raw-gadget driver (git-fixes). - usb: gadget: fix race when gadget driver register via ioctl (git-fixes). - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver (git-fixes). - usb: gadget: f_uac2: Define specific wTerminalType (git-fixes). - usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe (git-fixes). - usb: gadget: rndis: add spinlock for rndis response list (git-fixes). - usb: gadget: rndis: check size of RNDIS_MSG_SET command (git-fixes). - usb: gadget: rndis: prevent integer overflow in rndis_set_response() (git-fixes). - usb: gadget: tegra-xudc: Do not program SPARAM (git-fixes). - usb: gadget: tegra-xudc: Fix control endpoint's definitions (git-fixes). - usb: gadget: udc: renesas_usb3: Fix host to USB_ROLE_NONE transition (git-fixes). - usb: gadget: u_ether: fix regression in setting fixed MAC address (git-fixes). - usb: gadget: uvc: allow for application to cleanly shutdown (git-fixes). - usb: gadget: uvc: Fix crash when encoding data for usb request (git-fixes). - usb: gadget: uvc: rename function to be more consistent (git-fixes). - usb: gadget: validate endpoint index for xilinx udc (git-fixes). - usb: gadget: validate interface OS descriptor requests (git-fixes). - USB: hcd-pci: Fully suspend across freeze/thaw cycle (git-fixes). - usb: hcd-pci: Use PCI_STD_NUM_BARS when checking standard BARs (git-fixes). - USB: host: isp116x: check return value after calling platform_get_resource() (git-fixes). - usb: isp1760: Fix out-of-bounds array access (git-fixes). - usb: misc: fix improper handling of refcount in uss720_probe() (git-fixes). - usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes). - usb: musb: Fix missing of_node_put() in omap2430_probe (git-fixes). - usbnet: fix memory allocation in helpers (git-fixes). - USB: new quirk for Dell Gen 2 devices (git-fixes). - usb: phy: generic: Get the vbus supply (git-fixes). - usb: quirks: add a Realtek card reader (git-fixes). - usb: quirks: add STRING quirk for VCOM device (git-fixes). - usb: raw-gadget: fix handling of dual-direction-capable endpoints (git-fixes). - usb: serial: ch341: add support for GW Instek USB2.0-Serial devices (git-fixes). - usb: serial: cp210x: add CPI Bulk Coin Recycler id (git-fixes). - usb: serial: cp210x: add NCR Retail IO box id (git-fixes). - usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes). - usb: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (git-fixes). - USB: serial: io_ti: add Agilent E5805A support (git-fixes). - usb: serial: option: add Fibocom L610 modem (git-fixes). - usb: serial: option: add Fibocom MA510 modem (git-fixes). - USB: serial: option: add Quectel BG95 modem (git-fixes). - USB: serial: option: add Quectel EM05-G modem (git-fixes). - USB: serial: option: add Quectel RM500K module support (git-fixes). - USB: serial: option: add support for Cinterion MV31 with new baseline (git-fixes). - usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes). - usb: serial: option: add support for DW5829e (git-fixes). - usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions (git-fixes). - USB: serial: option: add Telit LE910Cx 0x1250 composition (git-fixes). - usb: serial: option: add Telit LE910R1 compositions (git-fixes). - usb: serial: option: add ZTE MF286D modem (git-fixes). - usb: serial: pl2303: add device id for HP LM930 Display (git-fixes). - usb: serial: pl2303: add IBM device IDs (git-fixes). - USB: serial: pl2303: add support for more HXN (G) types (git-fixes). - usb: serial: pl2303: fix GS type detection (git-fixes). - usb: serial: pl2303: fix type detection for odd device (git-fixes). - usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes). - usb: serial: simple: add Nokia phone driver (git-fixes). - usb: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS (git-fixes). - usb: storage: karma: fix rio_karma_init return (git-fixes). - usb: storage: ums-realtek: fix error code in rts51x_read_mem() (git-fixes). - usb: typec: mux: Check dev_set_name() return value (git-fixes). - usb: typec: tcpci: Do not skip cleanup in .remove() on error (git-fixes). - usb: typec: tcpci_mt6360: Update for BMC PHY setting (git-fixes). - usb: typec: tipd: Forward plug orientation to typec subsystem (git-fixes). - usb: typec: ucsi: Fix reuse of completion structure (git-fixes). - usb: typec: ucsi: Fix role swapping (git-fixes). - usb: ulpi: Call of_node_put correctly (git-fixes). - usb: ulpi: Move of_node_put to ulpi_dev_release (git-fixes). - usb: usbip: add missing device lock on tweak configuration cmd (git-fixes). - usb: usbip: eliminate anonymous module_init and module_exit (git-fixes). - usb: usbip: fix a refcount leak in stub_probe() (git-fixes). - usb: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c (git-fixes). - usb: usbtmc: Fix bug in pipe direction for control transfers (git-fixes). - usb: xhci: tegra:Fix PM usage reference leak of tegra_xusb_unpowergate_partitions (git-fixes). - usb: zaurus: support another broken Zaurus (git-fixes). - use jobs not processors in the constraints jobs is the number of vcpus available to the build, while processors is the total processor count of the machine the VM is running on. - vdpasim: allow to enable a vq repeatedly (git-fixes). - veth: Ensure eth header is in skb's linear part (git-fixes). - veth: fix races around rq->rx_notify_masked (git-fixes). - vfio/ccw: Remove unneeded GFP_DMA (git-fixes). - vhost_vdpa: do not setup irq offloading when irq_num 0 (git-fixes). - vhost/vsock: do not check owner in vhost_vsock_stop() while releasing (git-fixes). - vhost/vsock: fix incorrect used length reported to the guest (git-fixes). - video: fbdev: atari: Atari 2 bpp (STe) palette bugfix (git-fixes). - video: fbdev: atmel_lcdfb: fix an error code in atmel_lcdfb_probe() (git-fixes). - video: fbdev: cirrusfb: check pixclock to avoid divide by zero (git-fixes). - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup (git-fixes). - video: fbdev: controlfb: Fix COMPILE_TEST build (git-fixes). - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name() (git-fixes). - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to avoid black screen (git-fixes). - video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow (git-fixes). - video: fbdev: omapfb: acx565akm: replace snprintf with sysfs_emit (git-fixes). - video: fbdev: omapfb: Add missing of_node_put() in dvic_probe_of (git-fixes). - video: fbdev: omapfb: panel-dsi-cm: Use sysfs_emit() instead of snprintf() (git-fixes). - video: fbdev: omapfb: panel-tpo-td043mtea1: Use sysfs_emit() instead of snprintf() (git-fixes). - video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove() (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_read() (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_write() (git-fixes). - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe() (git-fixes). - video: fbdev: udlfb: properly check endpoint type (bsc#1190497) - video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit (git-fixes). - video: fbdev: w100fb: Reset global state (git-fixes). - virtio-blk: Do not use MAX_DISCARD_SEGMENTS if max_discard_seg is zero (git-fixes). - virtio_blk: eliminate anonymous module_init and module_exit (git-fixes). - virtio_blk: fix the discard_granularity and discard_alignment queue limits (git-fixes). - virtio_console: break out of buf poll on remove (git-fixes). - virtio_console: eliminate anonymous module_init and module_exit (git-fixes). - virtio: fix virtio transitional ids (git-fixes). - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (git-fixes). - virtio-net: fix for skb_over_panic inside big mode (git-fixes). - virtio-net: fix race between ndo_open() and virtio_device_ready() (git-fixes). - virtio_net: fix wrong buf address calculation when using xdp (git-fixes). - virtio_net: fix xdp_rxq_info bug after suspend/resume (git-fixes). - virtio-net: realign page_to_skb() after merges (git-fixes). - virtio: pci: Fix an error handling path in vp_modern_probe() (git-fixes). - virtio-pci: Remove wrong address verification in vp_del_vqs() (git-fixes). - VMCI: Fix the description of vmci_check_host_caps() (git-fixes). - vringh: Fix loop descriptors check in the indirect cases (git-fixes). - vsprintf: Fix %pK with kptr_restrict == 0 (bsc#1197889). - vsprintf: Fix potential unaligned access (bsc#1198379). - vt_ioctl: add array_index_nospec to VT_ACTIVATE (git-fixes). - vt_ioctl: fix array_index_nospec in vt_setactivate (git-fixes). - vxcan: enable local echo for sent CAN frames (git-fixes). - w1: w1_therm: fixes w1_seq for ds28ea00 sensors (git-fixes). - watchdog: rti-wdt: Add missing pm_runtime_disable() in probe function (git-fixes). - watchdog: rti-wdt: Fix pm_runtime_get_sync() error checking (git-fixes). - Watchdog: sp5100_tco: Add initialization using EFCH MMIO (bsc#1199260). - watchdog: sp5100_tco: Add support for get_timeleft (bsc#1199260). - Watchdog: sp5100_tco: Enable Family 17h+ CPUs (bsc#1199260). - Watchdog: sp5100_tco: Move timer initialization into function (bsc#1199260). - Watchdog: sp5100_tco: Refactor MMIO base address initialization (bsc#1199260). - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe (git-fixes). - watchdog: wdat_wdt: Stop watchdog when rebooting the system (git-fixes). - watch_queue: Actually free the watch (git-fixes). - watch_queue: Fix NULL dereference in error cleanup (git-fixes). - watch_queue: Free the page array when watch_queue is dismantled (git-fixes). - wcn36xx: Differentiate wcn3660 from wcn3620 (git-fixes). - wifi: mac80211: fix use-after-free in chanctx code (git-fixes). - wilc1000: fix crash observed in AP mode with cfg80211_register_netdevice() (git-fixes). - wireguard: queueing: use CFI-safe ptr_ring cleanup function (git-fixes). - wireguard: selftests: rename DEBUG_PI_LIST to DEBUG_PLIST (git-fixes). - wireguard: socket: free skb in send6 when ipv6 is disabled (git-fixes). - wireguard: socket: ignore v6 endpoints when ipv6 is disabled (git-fixes). - writeback: Avoid skipping inode writeback (bsc#1200813). - writeback: Fix inode->i_io_list not be protected by inode->i_lock error (bsc#1200821). - x86/boot: Add setup_indirect support in early_memremap_is_setup_data() (bsc#1190497). - x86/boot: Fix memremap of setup_indirect structures (bsc#1190497). - x86/cc: Move arch/x86/{kernel/cc_platform.c coco/core.c} (jsc#SLE-19924). - x86/coco: Add API to handle encryption mask (jsc#SLE-19924). - x86/coco: Explicitly declare type of confidential computing platform (jsc#SLE-19924). - x86/cpu: Add Xeon Icelake-D to list of CPUs that support PPIN (bsc#1190497). - x86/cpufeatures: Re-enable ENQCMD (jsc#SLE-24350). - x86/cpu: Load microcode during restore_processor_state() (bsc#1190497). - x86/entry: Remove skip_r11rcx (bsc#1201524). - x86/fpu: Clear PASID when copying fpstate (jsc#SLE-24350). - x86/ibt,xen: Sprinkle the ENDBR (bsc#1201471). - x86/kprobes: Add UNWIND_HINT_FUNC on kretprobe_trampoline() (bsc#1193277). - x86/kprobes: Fixup return address in generic trampoline handler (bsc#1193277). - x86/kprobes: Push a fake return address at kretprobe_trampoline (bsc#1193277). - x86/kvmclock: Fix Hyper-V Isolated VM s boot issue when vCPUs 64 (bsc#1183682). - x86/kvm: Do not waste memory if kvmclock is disabled (bsc#1183682). - x86/MCE/AMD: Allow thresholding interface updates after init (bsc#1190497). - x86/mm/cpa: Generalize __set_memory_enc_pgtable() (jsc#SLE-19924). - x86/module: Fix the paravirt vs alternative order (bsc#1190497). - x86/pm: Save the MSR validity status at context setup (bsc#1190497). - x86/ptrace: Fix xfpregs_set() incorrect xmm clearing (bsc#1190497). - x86/speculation: Restore speculation related MSRs during S3 resume (bsc#1190497). - x86/traps: Demand-populate PASID MSR via #GP (jsc#SLE-24350). - x86/traps: Mark do_int3() NOKPROBE_SYMBOL (bsc#1190497). - x86/tsx: Use MSR_TSX_CTRL to clear CPUID bits (bsc#1190497). - x86/unwind: kABI workaround for unwind_state changes (bsc#1193277). - x86/unwind: Recover kretprobe trampoline entry (bsc#1193277). - xen/blkfront: fix comment for need_copy (git-fixes). - xen: fix is_xen_pmu() (git-fixes). - xen/netback: avoid entering xenvif_rx_next_skb() with an empty rx queue (bsc#1201381). - xen: unexport __init-annotated xen_xlate_map_ballooned_pages() (bsc#1201218). - xen/x86: obtain full video frame buffer address for Dom0 also under EFI (bsc#1193556). - xen/x86: obtain upper 32 bits of video frame buffer address for Dom0 (bsc#1193556). - xfs: drop async cache flushes from CIL commits (bsc#1195669). - xhci: Allow host runtime PM as default for Intel Alder Lake N xHCI (git-fixes). - xhci: Enable runtime PM on second Alderlake controller (git-fixes). - xhci: fix garbage USBSTS being logged in some cases (git-fixes). - xhci: fix runtime PM imbalance in USB2 resume (git-fixes). - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx() (git-fixes). - xhci: increase usb U3 U0 link resume timeout from 100ms to 500ms (git-fixes). - xhci: make xhci_handshake timeout for xhci_reset() adjustable (git-fixes). - xhci-pci: Allow host runtime PM as default for Intel Meteor Lake xHCI (git-fixes). - xhci-pci: Allow host runtime PM as default for Intel Raptor Lake xHCI (git-fixes). - xhci: Prevent futile URB re-submissions due to incorrect return value (git-fixes). - xhci: re-initialize the HC during resume if HCE was set (git-fixes). - xhci: stop polling roothubs after shutdown (git-fixes). - xhci: turn off port power in shutdown (git-fixes). - xsk: Do not write NULL in SW ring at allocation failure (jsc#SLE-18375). - zsmalloc: decouple class actions from zspage works (bsc#1189998). - zsmalloc: introduce obj_allocated (bsc#1189998). - zsmalloc: introduce some helper functions (bsc#1189998). - zsmalloc: move huge compressed obj from page to zspage (bsc#1189998). - zsmalloc: remove zspage isolation for migration (bsc#1189998). - zsmalloc: rename zs_stat_type to class_stat_type (bsc#1189998). - zsmalloc: replace get_cpu_var with local_lock (bsc#1189998). - zsmalloc: replace per zpage lock with poolmigrate_lock (bsc#1189998). - zsmalloc: Stop using slab fields in struct page (bsc#1189998 bsc#1190208). cluster-md-kmp-default-5.14.21-150400.24.11.1.x86_64.rpm True dlm-kmp-default-5.14.21-150400.24.11.1.x86_64.rpm True gfs2-kmp-default-5.14.21-150400.24.11.1.x86_64.rpm True kernel-debug-5.14.21-150400.24.11.1.nosrc.rpm True kernel-debug-5.14.21-150400.24.11.1.x86_64.rpm True kernel-debug-devel-5.14.21-150400.24.11.1.x86_64.rpm True kernel-debug-livepatch-devel-5.14.21-150400.24.11.1.x86_64.rpm True kernel-default-5.14.21-150400.24.11.1.nosrc.rpm True kernel-default-5.14.21-150400.24.11.1.x86_64.rpm True kernel-default-base-5.14.21-150400.24.11.1.150400.24.3.6.src.rpm True kernel-default-base-5.14.21-150400.24.11.1.150400.24.3.6.x86_64.rpm True kernel-default-base-rebuild-5.14.21-150400.24.11.1.150400.24.3.6.x86_64.rpm True kernel-default-devel-5.14.21-150400.24.11.1.x86_64.rpm True kernel-default-extra-5.14.21-150400.24.11.1.x86_64.rpm True kernel-default-livepatch-5.14.21-150400.24.11.1.x86_64.rpm True kernel-default-livepatch-devel-5.14.21-150400.24.11.1.x86_64.rpm True kernel-default-optional-5.14.21-150400.24.11.1.x86_64.rpm True kernel-devel-5.14.21-150400.24.11.1.noarch.rpm True kernel-docs-5.14.21-150400.24.11.1.noarch.rpm True kernel-docs-5.14.21-150400.24.11.1.nosrc.rpm True kernel-docs-html-5.14.21-150400.24.11.1.noarch.rpm True kernel-kvmsmall-5.14.21-150400.24.11.1.nosrc.rpm True kernel-kvmsmall-5.14.21-150400.24.11.1.x86_64.rpm True kernel-kvmsmall-devel-5.14.21-150400.24.11.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.11.1.x86_64.rpm True kernel-macros-5.14.21-150400.24.11.1.noarch.rpm True kernel-obs-build-5.14.21-150400.24.11.1.src.rpm True kernel-obs-build-5.14.21-150400.24.11.1.x86_64.rpm True kernel-obs-qa-5.14.21-150400.24.11.1.src.rpm True kernel-obs-qa-5.14.21-150400.24.11.1.x86_64.rpm True kernel-source-5.14.21-150400.24.11.1.noarch.rpm True kernel-source-5.14.21-150400.24.11.1.src.rpm True kernel-source-vanilla-5.14.21-150400.24.11.1.noarch.rpm True kernel-syms-5.14.21-150400.24.11.1.src.rpm True kernel-syms-5.14.21-150400.24.11.1.x86_64.rpm True kselftests-kmp-default-5.14.21-150400.24.11.1.x86_64.rpm True ocfs2-kmp-default-5.14.21-150400.24.11.1.x86_64.rpm True reiserfs-kmp-default-5.14.21-150400.24.11.1.x86_64.rpm True cluster-md-kmp-default-5.14.21-150400.24.11.1.s390x.rpm True dlm-kmp-default-5.14.21-150400.24.11.1.s390x.rpm True gfs2-kmp-default-5.14.21-150400.24.11.1.s390x.rpm True kernel-default-5.14.21-150400.24.11.1.s390x.rpm True kernel-default-base-5.14.21-150400.24.11.1.150400.24.3.6.s390x.rpm True kernel-default-base-rebuild-5.14.21-150400.24.11.1.150400.24.3.6.s390x.rpm True kernel-default-devel-5.14.21-150400.24.11.1.s390x.rpm True kernel-default-extra-5.14.21-150400.24.11.1.s390x.rpm True kernel-default-livepatch-5.14.21-150400.24.11.1.s390x.rpm True kernel-default-livepatch-devel-5.14.21-150400.24.11.1.s390x.rpm True kernel-default-optional-5.14.21-150400.24.11.1.s390x.rpm True kernel-obs-build-5.14.21-150400.24.11.1.s390x.rpm True kernel-obs-qa-5.14.21-150400.24.11.1.s390x.rpm True kernel-syms-5.14.21-150400.24.11.1.s390x.rpm True kernel-zfcpdump-5.14.21-150400.24.11.1.nosrc.rpm True kernel-zfcpdump-5.14.21-150400.24.11.1.s390x.rpm True kselftests-kmp-default-5.14.21-150400.24.11.1.s390x.rpm True ocfs2-kmp-default-5.14.21-150400.24.11.1.s390x.rpm True reiserfs-kmp-default-5.14.21-150400.24.11.1.s390x.rpm True cluster-md-kmp-default-5.14.21-150400.24.11.1.ppc64le.rpm True dlm-kmp-default-5.14.21-150400.24.11.1.ppc64le.rpm True gfs2-kmp-default-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-debug-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-debug-devel-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-default-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-default-base-5.14.21-150400.24.11.1.150400.24.3.6.ppc64le.rpm True kernel-default-base-rebuild-5.14.21-150400.24.11.1.150400.24.3.6.ppc64le.rpm True kernel-default-devel-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-default-extra-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-default-livepatch-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-default-livepatch-devel-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-default-optional-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-kvmsmall-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-kvmsmall-devel-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-obs-build-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-obs-qa-5.14.21-150400.24.11.1.ppc64le.rpm True kernel-syms-5.14.21-150400.24.11.1.ppc64le.rpm True kselftests-kmp-default-5.14.21-150400.24.11.1.ppc64le.rpm True ocfs2-kmp-default-5.14.21-150400.24.11.1.ppc64le.rpm True reiserfs-kmp-default-5.14.21-150400.24.11.1.ppc64le.rpm True cluster-md-kmp-64kb-5.14.21-150400.24.11.1.aarch64.rpm True cluster-md-kmp-default-5.14.21-150400.24.11.1.aarch64.rpm True dlm-kmp-64kb-5.14.21-150400.24.11.1.aarch64.rpm True dlm-kmp-default-5.14.21-150400.24.11.1.aarch64.rpm True dtb-aarch64-5.14.21-150400.24.11.1.src.rpm True dtb-allwinner-5.14.21-150400.24.11.1.aarch64.rpm True dtb-altera-5.14.21-150400.24.11.1.aarch64.rpm True dtb-amazon-5.14.21-150400.24.11.1.aarch64.rpm True dtb-amd-5.14.21-150400.24.11.1.aarch64.rpm True dtb-amlogic-5.14.21-150400.24.11.1.aarch64.rpm True dtb-apm-5.14.21-150400.24.11.1.aarch64.rpm True dtb-apple-5.14.21-150400.24.11.1.aarch64.rpm True dtb-arm-5.14.21-150400.24.11.1.aarch64.rpm True dtb-broadcom-5.14.21-150400.24.11.1.aarch64.rpm True dtb-cavium-5.14.21-150400.24.11.1.aarch64.rpm True dtb-exynos-5.14.21-150400.24.11.1.aarch64.rpm True dtb-freescale-5.14.21-150400.24.11.1.aarch64.rpm True dtb-hisilicon-5.14.21-150400.24.11.1.aarch64.rpm True dtb-lg-5.14.21-150400.24.11.1.aarch64.rpm True dtb-marvell-5.14.21-150400.24.11.1.aarch64.rpm True dtb-mediatek-5.14.21-150400.24.11.1.aarch64.rpm True dtb-nvidia-5.14.21-150400.24.11.1.aarch64.rpm True dtb-qcom-5.14.21-150400.24.11.1.aarch64.rpm True dtb-renesas-5.14.21-150400.24.11.1.aarch64.rpm True dtb-rockchip-5.14.21-150400.24.11.1.aarch64.rpm True dtb-socionext-5.14.21-150400.24.11.1.aarch64.rpm True dtb-sprd-5.14.21-150400.24.11.1.aarch64.rpm True dtb-xilinx-5.14.21-150400.24.11.1.aarch64.rpm True gfs2-kmp-64kb-5.14.21-150400.24.11.1.aarch64.rpm True gfs2-kmp-default-5.14.21-150400.24.11.1.aarch64.rpm True kernel-64kb-5.14.21-150400.24.11.1.aarch64.rpm True kernel-64kb-5.14.21-150400.24.11.1.nosrc.rpm True kernel-64kb-devel-5.14.21-150400.24.11.1.aarch64.rpm True kernel-64kb-extra-5.14.21-150400.24.11.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.14.21-150400.24.11.1.aarch64.rpm True kernel-64kb-optional-5.14.21-150400.24.11.1.aarch64.rpm True kernel-default-5.14.21-150400.24.11.1.aarch64.rpm True kernel-default-base-5.14.21-150400.24.11.1.150400.24.3.6.aarch64.rpm True kernel-default-base-rebuild-5.14.21-150400.24.11.1.150400.24.3.6.aarch64.rpm True kernel-default-devel-5.14.21-150400.24.11.1.aarch64.rpm True kernel-default-extra-5.14.21-150400.24.11.1.aarch64.rpm True kernel-default-livepatch-5.14.21-150400.24.11.1.aarch64.rpm True kernel-default-livepatch-devel-5.14.21-150400.24.11.1.aarch64.rpm True kernel-default-optional-5.14.21-150400.24.11.1.aarch64.rpm True kernel-kvmsmall-5.14.21-150400.24.11.1.aarch64.rpm True kernel-kvmsmall-devel-5.14.21-150400.24.11.1.aarch64.rpm True kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.11.1.aarch64.rpm True kernel-obs-build-5.14.21-150400.24.11.1.aarch64.rpm True kernel-obs-qa-5.14.21-150400.24.11.1.aarch64.rpm True kernel-syms-5.14.21-150400.24.11.1.aarch64.rpm True kselftests-kmp-64kb-5.14.21-150400.24.11.1.aarch64.rpm True kselftests-kmp-default-5.14.21-150400.24.11.1.aarch64.rpm True ocfs2-kmp-64kb-5.14.21-150400.24.11.1.aarch64.rpm True ocfs2-kmp-default-5.14.21-150400.24.11.1.aarch64.rpm True reiserfs-kmp-64kb-5.14.21-150400.24.11.1.aarch64.rpm True reiserfs-kmp-default-5.14.21-150400.24.11.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2094 important SUSE Updates openSUSE-SLE 15.4 This update for fence-agents fixes the following issues: - Fix and issue where 'fence-agents' is broken in GCP due to missing "--zone" parameter (bsc#1198872) fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.src.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.x86_64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.11.1.x86_64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.11.1.x86_64.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.s390x.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.11.1.s390x.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.11.1.s390x.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.ppc64le.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.11.1.ppc64le.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.11.1.ppc64le.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.11.1.aarch64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.11.1.aarch64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.11.1.aarch64.rpm openSUSE-SLE-15.4-2022-2546 important SUSE Updates openSUSE-SLE 15.4 This update for gpg2 fixes the following issues: - CVE-2022-34903: Fixed a status injection vulnerability (bsc#1201225). - Use AES as default cipher instead of 3DES when we are in FIPS mode. (bsc#1196125) dirmngr-2.2.27-150300.3.5.1.x86_64.rpm gpg2-2.2.27-150300.3.5.1.src.rpm gpg2-2.2.27-150300.3.5.1.x86_64.rpm gpg2-lang-2.2.27-150300.3.5.1.noarch.rpm dirmngr-2.2.27-150300.3.5.1.s390x.rpm gpg2-2.2.27-150300.3.5.1.s390x.rpm dirmngr-2.2.27-150300.3.5.1.ppc64le.rpm gpg2-2.2.27-150300.3.5.1.ppc64le.rpm dirmngr-2.2.27-150300.3.5.1.aarch64.rpm gpg2-2.2.27-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2108 important SUSE Updates openSUSE-SLE 15.4 This update for rubygem-actionpack-5_1 and rubygem-activesupport-5_1 fixes the following issues: - CVE-2021-22904: Fixed possible DoS Vulnerability in Action Controller Token Authentication (bsc#1185780) - CVE-2022-23633: Fixed possible exposure of information vulnerability in Action Pack (bsc#1196182) ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1.x86_64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.12.1.x86_64.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1.x86_64.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.6.1.x86_64.rpm rubygem-actionpack-5_1-5.1.4-150000.3.12.1.src.rpm rubygem-activesupport-5_1-5.1.4-150000.3.6.1.src.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1.s390x.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.12.1.s390x.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1.s390x.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.6.1.s390x.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1.ppc64le.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.12.1.ppc64le.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1.aarch64.rpm ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.12.1.aarch64.rpm ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1.aarch64.rpm ruby2.5-rubygem-activesupport-doc-5_1-5.1.4-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-2107 important SUSE Updates openSUSE-SLE 15.4 This update for mariadb fixes the following issues: - CVE-2021-46669 (bsc#1199928) - CVE-2022-21427 (bsc#1199928) - CVE-2022-27377 (bsc#1198603) - CVE-2022-27378 (bsc#1198604) - CVE-2022-27380 (bsc#1198606) - CVE-2022-27381 (bsc#1198607) - CVE-2022-27383 (bsc#1198610) - CVE-2022-27384 (bsc#1198611) - CVE-2022-27386 (bsc#1198612) - CVE-2022-27387 (bsc#1198613) - CVE-2022-27445 (bsc#1198629) libmysqld-devel-10.2.44-150000.3.54.1.x86_64.rpm libmysqld19-10.2.44-150000.3.54.1.x86_64.rpm mariadb-10.2.44-150000.3.54.1.src.rpm libmysqld-devel-10.2.44-150000.3.54.1.s390x.rpm libmysqld19-10.2.44-150000.3.54.1.s390x.rpm libmysqld-devel-10.2.44-150000.3.54.1.ppc64le.rpm libmysqld19-10.2.44-150000.3.54.1.ppc64le.rpm libmysqld-devel-10.2.44-150000.3.54.1.aarch64.rpm libmysqld19-10.2.44-150000.3.54.1.aarch64.rpm openSUSE-SLE-15.4-2022-2056 important SUSE Updates openSUSE-SLE 15.4 This update for u-boot fixes the following issues: - A large buffer overflow could have lead to a denial of service in the IP Packet deframentation code. (CVE-2022-30552, bsc#1200363) - A Hole Descriptor Overwrite could have lead to an arbitrary out of bounds write primitive. (CVE-2022-30790, bsc#1200364) u-boot-xilinxzynqmpgeneric-2020.01-150200.10.12.1.aarch64.rpm u-boot-xilinxzynqmpgeneric-2020.01-150200.10.12.1.src.rpm u-boot-xilinxzynqmpgeneric-doc-2020.01-150200.10.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-2323 low SUSE Updates openSUSE-SLE 15.4 This update for systemd-presets-branding-SLE fixes the following issues: - Enable suseconnect-keepalive.timer for SUSEConnect (jsc#SLE-23312) systemd-presets-branding-SLE-15.1-150100.20.11.1.noarch.rpm systemd-presets-branding-SLE-15.1-150100.20.11.1.src.rpm openSUSE-SLE-15.4-2022-2615 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP4 kernel was updated. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-34918: Fixed a buffer overflow with nft_set_elem_init() that could be used by a local attacker to escalate privileges (bnc#1201171). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). - CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges (bsc#1201251). - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762). - CVE-2022-33743: Fixed a Denial of Service related to XDP (bsc#1200763). - CVE-2022-1966: Fixed a use-after-free vulnerability in the Netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-1852: Fixed a null-ptr-deref in the kvm module which can lead to DoS. (bsc#1199875) - CVE-2022-1789: Fixed a NULL pointer dereference when shadow paging is enabled. (bnc#1199674) - CVE-2022-1508: Fixed an out-of-bounds read flaw that could cause the system to crash. (bsc#1198968) - CVE-2022-1671: Fixed a null-ptr-deref bugs in net/rxrpc/server_key.c, unprivileged users could easily trigger it via ioctl. (bsc#1199439) - CVE-2022-1651: Fixed a bug in ACRN Device Model emulates virtual NICs in VM. This flaw may allow a local privileged attacker to leak kernel unauthorized information and also cause a denial of service problem. (bsc#1199433) - CVE-2022-29582: Fixed a use-after-free due to a race condition in io_uring timeouts. This can be triggered by a local user who has no access to any user namespace; however, the race condition perhaps can only be exploited infrequently. (bnc#1198811) - CVE-2022-0494: Fixed a kernel information leak flaw in the scsi_ioctl function. This flaw allowed a local attacker with a special user privilege to create issues with confidentiality. (bnc#1197386) - CVE-2021-4204: Fixed a vulnerability that allows local attackers to escalate privileges on affected installations via ebpf. (bnc#1194111) - CVE-2022-23222: Fixed a bug that allowed local users to gain privileges. (bnc#1194765) - CVE-2022-0264: Fixed a vulnerability in the Linux kernel's eBPF verifier when handling internal data structures. Internal memory locations could be returned to userspace. A local attacker with the permissions to insert eBPF code to the kernel can use this to leak internal kernel memory details defeating some of the exploit mitigations in place for the kernel. (bnc#1194826) - CVE-2022-1016: Fixed a vulnerability in the nf_tables component of the netfilter subsystem. This vulnerability gives an attacker a powerful primitive that can be used to both read from and write to relative stack data, which can lead to arbitrary code execution. (bsc#1197227) - CVE-2022-1205: Fixed null pointer dereference and use-after-free vulnerabilities that allow an attacker to crash the linux kernel by simulating Amateur Radio. (bsc#1198027) - CVE-2022-1198: Fixed an use-after-free vulnerability that allow an attacker to crash the linux kernel by simulating Amateur Radio (bsc#1198030). - CVE-2022-1972: Fixed a buffer overflow in nftable that could lead to privilege escalation. (bsc#1200019) - CVE-2022-21127: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21123: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21125: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21180: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-21166: Fixed a stale MMIO data transient which can be exploited to speculatively/transiently disclose information via spectre like attacks. (bsc#1199650) - CVE-2022-1729: Fixed a sys_perf_event_open() race condition against self (bsc#1199507). - CVE-2022-1652: Fixed a statically allocated error counter inside the floppy kernel module (bsc#1199063). - CVE-2022-30594: Fixed restriction bypass on setting the PT_SUSPEND_SECCOMP flag (bnc#1199505). - CVE-2021-33061: Fixed insufficient control flow management for the Intel(R) 82599 Ethernet Controllers and Adapters that may have allowed an authenticated user to potentially enable denial of service via local access (bnc#1196426). - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144) - CVE-2022-21499: Reinforce the kernel lockdown feature, until now it's been trivial to break out of it with kgdb or kdb. (bsc#1199426) - CVE-2022-1184: Fixed an use-after-free and memory errors in ext4 when mounting and operating on a corrupted image. (bsc#1198577) - CVE-2022-1734: Fixed a r/w use-after-free when non synchronized between cleanup routine and firmware download routine. (bnc#1199605) - CVE-2021-44879: In gc_data_segment() in fs/f2fs/gc.c, special files were not considered, which lead to a move_data_page NULL pointer dereference (bsc#1195987). - CVE-2022-0617: Fixed a null pointer dereference in UDF file system functionality. A local user could crash the system by triggering udf_file_write_iter() via a malicious UDF image. (bsc#1196079) - CVE-2022-26490: Fixed a buffer overflow in the st21nfca driver. An attacker with adjacent NFC access could crash the system or corrupt the system memory. (bsc#1196830) - CVE-2021-45402: The check_alu_op function in kernel/bpf/verifier.c did not properly update bounds while handling the mov32 instruction, which allowed local users to obtain potentially sensitive address information (bsc#1196130). - CVE-2022-1679: Fixed use-after-free in ath9k in ath9k_hif_usb_rx_cb (bsc#1199487). - CVE-2022-20132: Fixed several potential out of bounds reads via malicious HID device (bsc#1200619). - CVE-2022-1012: Fixed an information leak in net/ipv4/tcp.c (bsc#1199482). - CVE-2022-33981: Fixed use-after-free in floppy driver (bnc#1200692). - CVE-2022-1998: Fixed use-after-free in fanotify (bnc#1200284). The following non-security bugs were fixed: - ACPI: APEI: fix return value of __setup handlers (git-fixes). - ACPI/APEI: Limit printable size of BERT table data (git-fixes). - ACPI: battery: Add device HID and quirk for Microsoft Surface Go 3 (git-fixes). - ACPI: bus: Avoid using CPPC if not supported by firmware (bsc#1199793). - ACPICA: Avoid cache flush inside virtual machines (git-fixes). - ACPICA: Avoid walking the ACPI Namespace if it is not there (git-fixes). - ACPI: CPPC: Assume no transition latency if no PCCT (git-fixes). - ACPI: CPPC: Avoid out of bounds access when parsing _CPC data (git-fixes). - ACPI: docs: enumeration: Amend PWM enumeration ASL example (git-fixes). - ACPI: docs: enumeration: Discourage to use custom _DSM methods (git-fixes). - ACPI: docs: enumeration: Remove redundant .owner assignment (git-fixes). - ACPI: docs: enumeration: Update UART serial bus resource documentation (git-fixes). - ACPI/IORT: Check node revision for PMCG resources (git-fixes). - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default (git-fixes). - ACPI: PM: Revert "Only mark EC GPE for wakeup on Intel systems" (git-fixes). - ACPI: PM: s2idle: Cancel wakeup before dispatching EC GPE (git-fixes). - ACPI: processor idle: Allow playing dead in C3 state (git-fixes). - ACPI: processor: idle: Avoid falling back to C3 type C-states (git-fixes). - ACPI: processor idle: Check for architectural support for LPI (git-fixes). - ACPI: processor: idle: fix lockup regression on 32-bit ThinkPad T40 (git-fixes). - ACPI: properties: Consistently return -ENOENT if there are no more references (git-fixes). - ACPI: property: Release subnode properties with data nodes (git-fixes). - ACPI: sysfs: Fix BERT error region memory mapping (git-fixes). - ACPI: video: Change how we determine if brightness key-presses are handled (git-fixes). - ACPI: video: Force backlight native for Clevo NL5xRU and NL5xNU (git-fixes). - ACPI / x86: Work around broken XSDT on Advantech DAC-BJ01 board (git-fixes). - Add missing recommends of kernel-install-tools to kernel-source-vanilla (bsc#1200442) - Add references to IBM bugs - Add various fsctl structs (bsc#1193629). - Adjust cifssb maximum read size (bsc#1193629). - af_key: add __GFP_ZERO flag for compose_sadb_supported in function pfkey_register (git-fixes). - aio: Fix incorrect usage of eventfd_signal_allowed() (git-fixes). - ALSA: cmipci: Restore aux vol on suspend/resume (git-fixes). - ALSA: core: Add snd_card_free_on_error() helper (git-fixes). - ALSA: cs4236: fix an incorrect NULL check on list iterator (git-fixes). - ALSA: ctxfi: Add SB046x PCI ID (git-fixes). - ALSA: firewire-lib: fix uninitialized flag for AV/C deferred transaction (git-fixes). - ALSA: fireworks: fix wrong return count shorter than expected by 4 bytes (git-fixes). - ALSA: hda: Add AlderLake-PS variant PCI ID (git-fixes). - ALSA: hda: Add PCI and HDMI IDs for Intel Raptor Lake (git-fixes). - ALSA: hda: Avoid unsol event during RPM suspending (git-fixes). - ALSA: hda/conexant - Fix loopback issue with CX20632 (git-fixes). - ALSA: hda/conexant: Fix missing beep setup (git-fixes). - ALSA: hda: Fix discovery of i915 graphics PCI device (bsc#1200611). - ALSA: hda: Fix driver index handling at re-binding (git-fixes). - ALSA: hda: Fix missing codec probe on Shenker Dock 15 (git-fixes). - ALSA: hda: Fix regression on forced probe mask option (git-fixes). - ALSA: hda: Fix signedness of sscanf() arguments (git-fixes). - ALSA: hda - fix unused Realtek function when PM is not enabled (git-fixes). - ALSA: hda/hdmi: fix warning about PCM count when used with SOF (git-fixes). - ALSA: hda/i915: Fix one too many pci_dev_put() (git-fixes). - ALSA: hda/i915 - skip acomp init if no matching display (git-fixes). - ALSA: hda: intel-dspcfg: use SOF for UpExtreme and UpExtreme11 boards (git-fixes). - ALSA: hda: intel-dsp-config: update AlderLake PCI IDs (git-fixes). - ALSA: hda: intel-nhlt: remove use of __func__ in dev_dbg (git-fixes). - ALSA: hda/realtek: Add alc256-samsung-headphone fixup (git-fixes). - ALSA: hda/realtek - Add HW8326 support (git-fixes). - ALSA: hda/realtek: Add missing fixup-model entry for Gigabyte X570 ALC1220 quirks (git-fixes). - ALSA: hda/realtek: Add mute LED quirk for HP Omen laptop (git-fixes). - ALSA: hda/realtek - Add new type for ALC245 (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GA402 (git-fixes). - ALSA: hda/realtek: Add quirk for ASUS GU603 (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP50PNJ (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP70PNJ (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NP70PNP (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo NS50PU (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD50PNT (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD70PNT (git-fixes). - ALSA: hda/realtek: Add quirk for Dell Latitude 7520 (git-fixes). - ALSA: hda/realtek: Add quirk for HP Dev One (git-fixes). - ALSA: hda/realtek: Add quirk for Legion Y9000X 2019 (git-fixes). - ALSA: hda/realtek: add quirk for Lenovo Thinkpad X12 speakers (git-fixes). - ALSA: hda/realtek: Add quirk for the Framework Laptop (git-fixes). - ALSA: hda/realtek: Add quirk for TongFang devices with pop noise (git-fixes). - ALSA: hda/realtek: Add quirk for Yoga Duet 7 13ITL6 speakers (git-fixes). - ALSA: hda/realtek - ALC897 headset MIC no sound (git-fixes). - ALSA: hda/realtek: Apply fixup for Lenovo Yoga Duet 7 properly (git-fixes). - ALSA: hda/realtek: Enable 4-speaker output for Dell XPS 15 9520 laptop (git-fixes). - ALSA: hda/realtek: Enable headset mic on Lenovo P360 (git-fixes). - ALSA: hda/realtek: Fix audio regression on Mi Notebook Pro 2020 (git-fixes). - ALSA: hda/realtek: Fix deadlock by COEF mutex (bsc#1195913). - ALSA: hda/realtek: Fix for quirk to enable speaker output on the Lenovo Yoga DuetITL 2021 (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes). - ALSA: hda/realtek - Fix microphone noise on ASUS TUF B550M-PLUS (git-fixes). - ALSA: hda: realtek: Fix race at concurrent COEF updates (git-fixes). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machine (git-fixes). - ALSA: hda/realtek: fix right sounds and mute/micmute LEDs for HP machines (git-fixes). - ALSA: hda/realtek: Fix silent output on Gigabyte X570 Aorus Xtreme after reboot from Windows (git-fixes). - ALSA: hda/realtek: Fix silent output on Gigabyte X570S Aorus Master (newer chipset) (git-fixes). - ALSA: hda: Set max DMA segment size (git-fixes). - ALSA: hda: Skip codec shutdown in case the codec is not registered (git-fixes). - ALSA: hda/via: Fix missing beep setup (git-fixes). - ALSA: intel_hdmi: Fix reference to PCM buffer address (git-fixes). - ALSA: memalloc: Fix dma_need_sync() checks (bsc#1195913). - ALSA: memalloc: invalidate SG pages before sync (bsc#1195913). - ALSA: oss: Fix PCM OSS buffer allocation overflow (git-fixes). - ALSA: pci: fix reading of swapped values from pcmreg in AC97 codec (git-fixes). - ALSA: pcm: Add stream lock during PCM reset ioctl operations (git-fixes). - ALSA: pcm: Check for null pointer of pointer substream before dereferencing it (git-fixes). - ALSA: pcm: Fix races among concurrent hw_params and hw_free calls (git-fixes). - ALSA: pcm: Fix races among concurrent prealloc proc writes (git-fixes). - ALSA: pcm: Fix races among concurrent prepare and hw_params/hw_free calls (git-fixes). - ALSA: pcm: Fix races among concurrent read/write and buffer changes (git-fixes). - ALSA: pcm: Test for "silence" field in struct "pcm_format_data" (git-fixes). - ALSA: spi: Add check for clk_enable() (git-fixes). - ALSA: usb-audio: add mapping for MSI MAG X570S Torpedo MAX (git-fixes). - ALSA: usb-audio: add mapping for new Corsair Virtuoso SE (git-fixes). - ALSA: usb-audio: Add missing ep_idx in fixed EP quirks (git-fixes). - ALSA: usb-audio: Add mute TLV for playback volumes on RODE NT-USB (git-fixes). - ALSA: usb-audio: Add quirk bits for enabling/disabling generic implicit fb (git-fixes). - ALSA: usb-audio: Cancel pending work at closing a MIDI substream (git-fixes). - ALSA: usb-audio: Cap upper limits of buffer/period bytes for implicit fb (git-fixes). - ALSA: usb-audio: Clear MIDI port active flag after draining (git-fixes). - ALSA: usb-audio: Configure sync endpoints before data (git-fixes). - ALSA: usb-audio: Correct quirk for VF0770 (git-fixes). - ALSA: usb-audio: Do not abort resume upon errors (bsc#1195913). - ALSA: usb-audio: Do not get sample rate for MCT Trigger 5 USB-to-HDMI (git-fixes). - ALSA: usb-audio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - ALSA: usb-audio: Increase max buffer size (git-fixes). - ALSA: usb-audio: initialize variables that could ignore errors (git-fixes). - ALSA: usb-audio: Limit max buffer and period sizes per time (git-fixes). - ALSA: usb-audio: Move generic implicit fb quirk entries into quirks.c (git-fixes). - ALSA: usb-audio: Optimize TEAC clock quirk (git-fixes). - ALSA: usb-audio: Restore Rane SL-1 quirk (git-fixes). - ALSA: usb-audio: revert to IMPLICIT_FB_FIXED_DEV for M-Audio FastTrack Ultra (git-fixes). - ALSA: usb-audio: Set up (implicit) sync for Saffire 6 (git-fixes). - ALSA: usb-audio: Skip generic sync EP parse for secondary EP (git-fixes). - ALSA: usb-audio: US16x08: Move overflow check before array access (git-fixes). - ALSA: usb-audio: Workaround for clock setup on TEAC devices (git-fixes). - ALSA: wavefront: Proper check of get_user() error (git-fixes). - ALSA: x86: intel_hdmi_audio: enable pm_runtime and set autosuspend delay (git-fixes). - ALSA: x86: intel_hdmi_audio: use pm_runtime_resume_and_get() (git-fixes). - alx: acquire mutex for alx_reinit in alx_change_mtu (git-fixes). - amd/display: set backlight only if required (git-fixes). - arch/arm64: Fix topology initialization for core scheduling (git-fixes). - arm64: Add Cortex-A510 CPU part definition (git-fixes). - arm64: Add part number for Arm Cortex-A78AE (git-fixes). - arm64: Add support for user sub-page fault probing (git-fixes) - arm64: alternatives: mark patch_alternative() as `noinstr` (git-fixes). - arm64: avoid fixmap race condition when create pud mapping (git-fixes). - arm64: compat: Do not treat syscall number as ESR_ELx for a bad syscall (git-fixes). - arm64: Correct wrong label in macro __init_el2_gicv3 (git-fixes). - arm64: defconfig: build imx-sdma as a module (git-fixes). - arm64: do not abuse pfn_valid() to ensure presence of linear map (git-fixes). - arm64: Do not defer reserve_crashkernel() for platforms with no DMA memory zones (git-fixes). - arm64: Do not include __READ_ONCE() block in assembly files (git-fixes). - arm64: dts: agilex: use the compatible "intel,socfpga-agilex-hsotg" (git-fixes). - arm64: dts: armada-3720-turris-mox: Add missing ethernet0 alias (git-fixes). - arm64: dts: broadcom: bcm4908: use proper TWD binding (git-fixes). - arm64: dts: broadcom: Fix sata nodename (git-fixes). - arm64: dts: imx8mm-beacon: Enable RTS-CTS on UART3 (git-fixes). - arm64: dts: imx8mm-venice: fix spi2 pin configuration (git-fixes) - arm64: dts: imx8mn-beacon: Enable RTS-CTS on UART3 (git-fixes). - arm64: dts: imx8mn-ddr4-evk: Describe the 32.768 kHz PMIC clock (git-fixes) - arm64: dts: imx8mn: Fix SAI nodes (git-fixes) - arm64: dts: imx8mp-evk: correct eqos pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct gpio-led pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct I2C1 pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct I2C3 pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct mmc pad settings (git-fixes). - arm64: dts: imx8mp-evk: correct the uart2 pinctl value (git-fixes). - arm64: dts: imx8mp-evk: correct vbus pad settings (git-fixes). - arm64: dts: imx8mp-phyboard-pollux-rdk: correct eqos pad settings (git-fixes). - arm64: dts: imx8mp-phyboard-pollux-rdk: correct i2c2 & mmc settings (git-fixes). - arm64: dts: imx8mp-phyboard-pollux-rdk: correct uart pad settings (git-fixes). - arm64: dts: imx8mq: fix lcdif port node (git-fixes). - arm64: dts: imx8qm: Correct SCU clock controller's compatible (git-fixes) - arm64: dts: imx: Fix imx8*-var-som touchscreen property sizes (git-fixes). - arm64: dts: juno: Remove GICv2m dma-range (git-fixes). - arm64: dts: ls1028a-qds: move rtc node to the correct i2c bus (git-fixes). - arm64: dts: ls1043a: Update i2c dma properties (git-fixes). - arm64: dts: ls1046a: Update i2c node dma properties (git-fixes). - arm64: dts: marvell: armada-37xx: Remap IO space to bus address 0x0 (git-fixes). - arm64: dts: marvell: espressobin-ultra: enable front USB3 port (git-fixes). - arm64: dts: marvell: espressobin-ultra: fix SPI-NOR config (git-fixes). - arm64: dts: meson-g12: add ATF BL32 reserved-memory region (git-fixes). - arm64: dts: meson-g12b-odroid-n2: fix typo 'dio2133' (git-fixes). - arm64: dts: meson-g12: drop BL32 region from SEI510/SEI610 (git-fixes). - arm64: dts: meson-gx: add ATF BL32 reserved-memory region (git-fixes). - arm64: dts: meson: remove CPU opps below 1GHz for G12B boards (git-fixes). - arm64: dts: meson: remove CPU opps below 1GHz for SM1 boards (git-fixes). - arm64: dts: meson-sm1-bananapi-m5: fix wrong GPIO domain for GPIOE_2 (git-fixes). - arm64: dts: meson-sm1-bananapi-m5: fix wrong GPIO pin labeling for CON1 (git-fixes). - arm64: dts: meson-sm1-odroid: fix boot loop after reboot (git-fixes). - arm64: dts: meson-sm1-odroid: use correct enable-gpio pin for tf-io regulator (git-fixes). - arm64: dts: mt8192: Fix nor_flash status disable typo (git-fixes). - arm64: dts: ns2: Fix spi-cpol and spi-cpha property (git-fixes). - arm64: dts: qcom: ipq8074: fix the sleep clock frequency (git-fixes). - arm64: dts: qcom: msm8916-huawei-g7: Clarify installation instructions (git-fixes). - arm64: dts: qcom: msm8994: Fix BLSP[12]_DMA channels count (git-fixes). - arm64: dts: qcom: msm8994: Fix CPU6/7 reg values (git-fixes). - arm64: dts: qcom: msm8994: Fix the cont_splash_mem address (git-fixes). - arm64: dts: qcom: msm8996: Drop flags for mdss irqs (git-fixes). - arm64: dts: qcom: msm8996: remove snps,dw-pcie compatibles (git-fixes). - arm64: dts: qcom: pm8350c: stop depending on thermal_zones label (git-fixes). - arm64: dts: qcom: pmr735a: stop depending on thermal_zones label (git-fixes). - arm64: dts: qcom: qrb5165-rb5: Fix can-clock node name (git-fixes). - arm64: dts: qcom: sdm845-db845c: add wifi variant property (git-fixes). - arm64: dts: qcom: sdm845: Drop flags for mdss irqs (git-fixes). - arm64: dts: qcom: sdm845: fix microphone bias properties and values (git-fixes). - arm64: dts: qcom: sdm845: remove snps,dw-pcie compatibles (git-fixes). - arm64: dts: qcom: sdm845-xiaomi-beryllium: fix typo in panel's vddio-supply property (git-fixes). - arm64: dts: qcom: sm8150: Correct TCS configuration for apps rsc (git-fixes). - arm64: dts: qcom: sm8250: Drop flags for mdss irqs (git-fixes). - arm64: dts: qcom: sm8250: Fix MSI IRQ for PCIe1 and PCIe2 (git-fixes). - arm64: dts: qcom: sm8250: fix PCIe bindings to follow schema (git-fixes). - arm64: dts: qcom: sm8350: Correct TCS configuration for apps rsc (git-fixes). - arm64: dts: qcom: sm8350: Correct UFS symbol clocks (git-fixes). - arm64: dts: qcom: sm8350: Describe GCC dependency clocks (git-fixes). - arm64: dts: qcom: sm8350: Shorten camera-thermal-bottom name (git-fixes). - arm64: dts: renesas: Fix thermal bindings (git-fixes). - arm64: dts: renesas: ulcb-kf: fix wrong comment (git-fixes). - arm64: dts: rockchip: align pl330 node name with dtschema (git-fixes). - arm64: dts: rockchip: fix rk3399-puma eMMC HS400 signal integrity (git-fixes). - arm64: dts: rockchip: fix rk3399-puma-haikou USB OTG mode (git-fixes). - arm64: dts: rockchip: Fix SDIO regulator supply properties on rk3399-firefly (git-fixes). - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399 (git-fixes). - arm64: dts: rockchip: reorder rk3399 hdmi clocks (git-fixes). - arm64: dts: rockchip: Switch RK3399-Gru DP to SPDIF output (git-fixes). - arm64: dts: ti: j7200-main: Fix 'dtbs_check' serdes_ln_ctrl node (git-fixes). - arm64: dts: ti: j721e-main: Fix 'dtbs_check' in serdes_ln_ctrl node (git-fixes). - arm64: dts: ti: k3-am64: Fix gic-v3 compatible regs (git-fixes). - arm64: dts: ti: k3-am64-main: Remove support for HS400 speed mode (git-fixes). - arm64: dts: ti: k3-am64-mcu: remove incorrect UART base clock rates (git-fixes). - arm64: dts: ti: k3-am65: Fix gic-v3 compatible regs (git-fixes). - arm64: dts: ti: k3-j7200: Fix gic-v3 compatible regs (git-fixes). - arm64: dts: ti: k3-j721e: Fix gic-v3 compatible regs (git-fixes). - arm64: Enable repeat tlbi workaround on KRYO4XX gold CPUs (git-fixes). - arm64: Ensure execute-only permissions are not allowed without EPAN (git-fixes) - arm64: fix clang warning about TRAMP_VALIAS (git-fixes). - arm64: fix types in copy_highpage() (git-fixes). - arm64: ftrace: consistently handle PLTs (git-fixes). - arm64: ftrace: fix branch range checks (git-fixes). - arm64: kasan: fix include error in MTE functions (git-fixes). - arm64: kvm: keep the field workaround_flags in structure kvm_vcpu_arch (git-fixes). - arm64: Mark start_backtrace() notrace and NOKPROBE_SYMBOL (git-fixes) - arm64: mm: Drop 'const' from conditional arm64_dma_phys_limit definition (git-fixes). - arm64: mm: fix p?d_leaf() (git-fixes). - arm64: module: remove (NOLOAD) from linker script (git-fixes). - arm64: mte: Ensure the cleared tags are visible before setting the PTE (git-fixes). - arm64: paravirt: Use RCU read locks to guard stolen_time (git-fixes). - arm64: patch_text: Fixup last cpu should be master (git-fixes). - arm64: prevent instrumentation of bp hardening callbacks (git-fixes). - arm64: signal: nofpsimd: Do not allocate fp/simd context when not available (git-fixes). - arm64: stackleak: fix current_top_of_stack() (git-fixes). - arm64: supported.conf: mark PHY_FSL_IMX8MQ_USB as supported (bsc#1199909) - arm64: tegra: Add missing DFLL reset on Tegra210 (git-fixes). - arm64: tegra: Adjust length of CCPLEX cluster MMIO region (git-fixes). - arm64: Update config files. (bsc#1199909) Add pfuze100 regulator as module - arm64: vdso: fix makefile dependency on vdso.so (git-fixes). - ARM: 9178/1: fix unmet dependency on BITREVERSE for HAVE_ARCH_BITREVERSE (git-fixes). - ARM: 9182/1: mmu: fix returns from early_param() and __setup() functions (git-fixes). - ARM: 9187/1: JIVE: fix return value of __setup handler (git-fixes). - ARM: 9191/1: arm/stacktrace, kasan: Silence KASAN warnings in unwind_frame() (git-fixes). - ARM: 9196/1: spectre-bhb: enable for Cortex-A15 (git-fixes). - ARM: 9197/1: spectre-bhb: fix loop8 sequence for Thumb2 (git-fixes). - ARM: at91: fix soc detection for SAM9X60 SiPs (git-fixes). - ARM: at91: pm: use proper compatible for sama5d2's rtc (git-fixes). - ARM: at91: pm: use proper compatibles for sam9x60's rtc and rtt (git-fixes). - ARM: boot: dts: bcm2711: Fix HVS register range (git-fixes). - ARM: cns3xxx: Fix refcount leak in cns3xxx_init (git-fixes). - ARM: configs: multi_v5_defconfig: re-enable CONFIG_V4L_PLATFORM_DRIVERS (git-fixes). - ARM: configs: multi_v5_defconfig: re-enable DRM_PANEL and FB_xxx (git-fixes). - ARM: config: u8500: Re-enable AB8500 battery charging (git-fixes). - ARM: davinci: da850-evm: Avoid NULL pointer dereference (git-fixes). - ARM: Do not use NOCROSSREFS directive with ld.lld (git-fixes). - ARM: dts: am3517-evm: Fix misc pinmuxing (git-fixes). - ARM: dts: aspeed: Add ADC for AST2600 and enable for Rainier and Everest (git-fixes). - ARM: dts: aspeed: Add secure boot controller node (git-fixes). - ARM: dts: aspeed: Add video engine to g6 (git-fixes). - ARM: dts: aspeed: ast2600-evb: Enable RX delay for MAC0/MAC1 (git-fixes). - ARM: dts: aspeed: Fix AST2600 quad spi group (git-fixes). - ARM: dts: aspeed-g6: fix SPI1/SPI2 quad pin group (git-fixes). - ARM: dts: aspeed-g6: remove FWQSPID group in pinctrl dtsi (git-fixes). - ARM: dts: at91: fix pinctrl phandles (git-fixes). - ARM: dts: at91: Map MCLK for wm8731 on at91sam9g20ek (git-fixes). - ARM: dts: at91: sam9x60ek: fix eeprom compatible and size (git-fixes). - ARM: dts: at91: sama5d2: Fix PMERRLOC resource size (git-fixes). - ARM: dts: at91: sama5d2_icp: fix eeprom compatibles (git-fixes). - ARM: dts: at91: sama5d4_xplained: fix pinctrl phandle name (git-fixes). - ARM: dts: bcm2711: Add the missing L1/L2 cache information (git-fixes). - ARM: dts: bcm2711-rpi-400: Fix GPIO line names (git-fixes). - ARM: dts: bcm2835-rpi-b: Fix GPIO line names (git-fixes). - ARM: dts: bcm2835-rpi-zero-w: Fix GPIO line name for Wifi/BT (git-fixes). - ARM: dts: bcm2837: Add the missing L1/L2 cache information (git-fixes). - ARM: dts: bcm2837-rpi-3-b-plus: Fix GPIO line name of power LED (git-fixes). - ARM: dts: bcm2837-rpi-cm3-io3: Fix GPIO line names for SMPS I2C (git-fixes). - ARM: dts: BCM5301X: update CRU block description (git-fixes). - ARM: dts: BCM5301X: Update pin controller node name (git-fixes). - ARM: dts: ci4x10: Adapt to changes in imx6qdl.dtsi regarding fec clocks (git-fixes). - ARM: dts: dra7: Fix suspend warning for vpe powerdomain (git-fixes). - ARM: dts: exynos: add atmel,24c128 fallback to Samsung EEPROM (git-fixes). - ARM: dts: exynos: add missing HDMI supplies on SMDK5250 (git-fixes). - ARM: dts: exynos: add missing HDMI supplies on SMDK5420 (git-fixes). - ARM: dts: exynos: fix UART3 pins configuration in Exynos5250 (git-fixes). - ARM: dts: Fix boot regression on Skomer (git-fixes). - ARM: dts: Fix mmc order for omap3-gta04 (git-fixes). - ARM: dts: Fix OpenBMC flash layout label addresses (git-fixes). - ARM: dts: Fix timer regression for beagleboard revision c (git-fixes). - ARM: dts: imx23-evk: Remove MX23_PAD_SSP1_DETECT from hog group (git-fixes). - ARM: dts: imx6dl-colibri: Fix I2C pinmuxing (git-fixes). - ARM: dts: imx6qdl-apalis: Fix sgtl5000 detection issue (git-fixes). - ARM: dts: imx6qdl: correct PU regulator ramp delay (git-fixes). - ARM: dts: imx6qdl-udoo: Properly describe the SD card detect (git-fixes). - ARM: dts: imx6ull-colibri: fix vqmmc regulator (git-fixes). - ARM: dts: imx7: Move hsic_phy power domain to HSIC PHY node (git-fixes). - ARM: dts: imx7ulp: Fix 'assigned-clocks-parents' typo (git-fixes). - ARM: dts: imx7: Use audio_mclk_post_div instead audio_mclk_root_clk (git-fixes). - ARM: dts: imx8mm-venice-gw{71xx,72xx,73xx}: fix OTG controller OC (git-fixes) - ARM: dts: imx: Add missing LVDS decoder on M53Menlo (git-fixes). - ARM: dts: logicpd-som-lv: Fix wrong pinmuxing on OMAP35 (git-fixes). - ARM: dts: meson8b: Fix the UART device-tree schema validation (git-fixes). - ARM: dts: meson8: Fix the UART device-tree schema validation (git-fixes). - ARM: dts: meson: Fix the UART compatible strings (git-fixes). - ARM: dts: ox820: align interrupt controller node name with dtschema (git-fixes). - ARM: dts: qcom: fix gic_irq_domain_translate warnings for msm8960 (git-fixes). - ARM: dts: qcom: ipq4019: fix sleep clock (git-fixes). - ARM: dts: qcom: msm8974: Drop flags for mdss irqs (git-fixes). - ARM: dts: qcom: sdx55: fix IPA interconnect definitions (git-fixes). - ARM: dts: rockchip: fix a typo on rk3288 crypto-controller (git-fixes). - ARM: dts: rockchip: reorder rk322x hmdi clocks (git-fixes). - ARM: dts: s5pv210: align DMA channels with dtschema (git-fixes). - ARM: dts: s5pv210: Correct interrupt name for bluetooth in Aries (git-fixes). - ARM: dts: s5pv210: Remove spi-cs-high on panel in Aries (git-fixes). - ARM: dts: socfpga: align interrupt controller node name with dtschema (git-fixes). - ARM: dts: socfpga: change qspi to "intel,socfpga-qspi" (git-fixes). - ARM: dts: spear1340: Update serial node properties (git-fixes). - ARM: dts: spear13xx: Update SPI dma properties (git-fixes). - ARM: dts: stm32: fix AV96 board SAI2 pin muxing on stm32mp15 (git-fixes). - ARM: dts: stm32: Fix PHY post-reset delay on Avenger96 (git-fixes). - ARM: dts: sun8i: v3s: Move the csi1 block to follow address order (git-fixes). - ARM: dts: suniv: F1C100: fix watchdog compatible (git-fixes). - ARM: dts: switch timer config to common devkit8000 devicetree (git-fixes). - ARM: dts: Use 32KiHz oscillator on devkit8000 (git-fixes). - ARM: exynos: Fix refcount leak in exynos_map_pmu (git-fixes). - ARM: fix build warning in proc-v7-bugs.c (git-fixes). - ARM: fix co-processor register typo (git-fixes). - ARM: Fix kgdb breakpoint for Thumb2 (git-fixes). - ARM: Fix refcount leak in axxia_boot_secondary (git-fixes). - ARM: fix Thumb2 regression with Spectre BHB (git-fixes). - ARM: ftrace: avoid redundant loads or clobbering IP (git-fixes). - ARM: ftrace: ensure that ADR takes the Thumb bit into account (git-fixes). - ARM: hisi: Add missing of_node_put after of_find_compatible_node (git-fixes). - ARM: iop32x: offset IRQ numbers by 1 (git-fixes). - ARM: kprobes: Make space for instruction pointer on stack (bsc#1193277). - ARM: mediatek: select arch timer for mt7629 (git-fixes). - ARM: meson: Fix refcount leak in meson_smp_prepare_cpus (git-fixes). - ARM: mmp: Fix failure to remove sram device (git-fixes). - ARM: mstar: Select HAVE_ARM_ARCH_TIMER (git-fixes). - ARM: mxs_defconfig: Enable the framebuffer (git-fixes). - ARM: omap1: ams-delta: remove camera leftovers (git-fixes). - ARM: OMAP1: clock: Fix UART rate reporting algorithm (git-fixes). - ARM: OMAP2+: adjust the location of put_device() call in omapdss_init_of (git-fixes). - ARM: OMAP2+: Fix refcount leak in omap_gic_of_init (git-fixes). - ARM: OMAP2+: hwmod: Add of_node_put() before break (git-fixes). - ARM: pxa: maybe fix gpio lookup tables (git-fixes). - ARM: socfpga: fix missing RESET_CONTROLLER (git-fixes). - ARM: Spectre-BHB: provide empty stub for non-config (git-fixes). - ARM: tegra: tamonten: Fix I2C3 pad setting (git-fixes). - ARM: vexpress/spc: Avoid negative array index when !SMP (git-fixes). - ASoC: amd: Fix reference to PCM buffer address (git-fixes). - ASoC: amd: vg: fix for pm resume callback sequence (git-fixes). - ASoC: atmel: Add missing of_node_put() in at91sam9g20ek_audio_probe (git-fixes). - ASoC: atmel-classd: Remove endianness flag on class d component (git-fixes). - ASoC: atmel: Fix error handling in sam9x5_wm8731_driver_probe (git-fixes). - ASoC: atmel: Fix error handling in snd_proto_probe (git-fixes). - ASoC: atmel-pdmic: Remove endianness flag on pdmic component (git-fixes). - ASoC: atmel: Remove system clock tree configuration for at91sam9g20ek (git-fixes). - ASoC: atmel_ssc_dai: Handle errors for clk_enable (git-fixes). - ASoC: codecs: Check for error pointer after calling devm_regmap_init_mmio (git-fixes). - ASoC: codecs: lpass-rx-macro: fix sidetone register offsets (git-fixes). - ASoC: codecs: rx-macro: fix accessing array out of bounds for enum type (git-fixes). - ASoC: codecs: rx-macro: fix accessing compander for aux (git-fixes). - ASoC: codecs: va-macro: fix accessing array out of bounds for enum type (git-fixes). - ASoC: codecs: wc938x: fix accessing array out of bounds for enum type (git-fixes). - ASoC: codecs: wcd934x: Add missing of_node_put() in wcd934x_codec_parse_data (git-fixes). - ASoC: codecs: wcd934x: do not switch off SIDO Buck when codec is in use (git-fixes). - ASoC: codecs: wcd934x: fix kcontrol max values (git-fixes). - ASoC: codecs: wcd934x: fix return value of wcd934x_rx_hph_mode_put (git-fixes). - ASoC: codecs: wcd938x: fix return value of mixer put function (git-fixes). - ASoC: cpcap: Check for NULL pointer after calling of_get_child_by_name (git-fixes). - ASoC: cs35l36: Update digital volume TLV (git-fixes). - ASoC: cs4265: Fix the duplicated control name (git-fixes). - ASoC: cs42l51: Correct minimum value for SX volume control (git-fixes). - ASoC: cs42l52: Correct TLV for Bypass Volume (git-fixes). - ASoC: cs42l52: Fix TLV scales for mixer controls (git-fixes). - ASoC: cs42l56: Correct typo in minimum level for SX volume controls (git-fixes). - ASoC: cs53l30: Correct number of volume levels on SX controls (git-fixes). - ASoC: da7219: Fix change notifications for tone generator frequency (git-fixes). - ASoC: dapm: Do not fold register value changes into notifications (git-fixes). - ASoC: dmaengine: do not use a NULL prepare_slave_config() callback (git-fixes). - ASoC: dmaengine: Restore NULL prepare_slave_config() callback (git-fixes). - ASoC: dwc-i2s: Handle errors for clk_enable (git-fixes). - ASoC: es8328: Fix event generation for deemphasis control (git-fixes). - ASoC: fsi: Add check for clk_enable (git-fixes). - ASoC: fsl: Add missing error handling in pcm030_fabric_probe (git-fixes). - ASoC: fsl: Fix refcount leak in imx_sgtl5000_probe (git-fixes). - ASoC: fsl_sai: Fix FSL_SAI_xDR/xFR definition (git-fixes). - ASoC: fsl_spdif: Disable TX clock when stop (git-fixes). - ASoC: fsl: Use dev_err_probe() helper (git-fixes). - ASoC: hdmi-codec: Fix OOB memory accesses (git-fixes). - ASoC: imx-es8328: Fix error return code in imx_es8328_probe() (git-fixes). - ASoC: imx-hdmi: Fix refcount leak in imx_hdmi_probe (git-fixes). - ASoC: Intel: bytcr_rt5640: Add quirk for the HP Pro Tablet 408 (git-fixes). - ASoC: intel: skylake: Set max DMA segment size (git-fixes). - ASoC: Intel: soc-acpi: correct device endpoints for max98373 (git-fixes). - ASoC: Intel: sof_sdw: fix quirks for 2022 HP Spectre x360 13" (git-fixes). - ASoC: madera: Add dependencies on MFD (git-fixes). - ASoC: max9759: fix underflow in speaker_gain_control_put() (git-fixes). - ASoC: max98090: Generate notifications on changes for custom control (git-fixes). - ASoC: max98090: Move check for invalid values before casting in max98090_put_enab_tlv() (git-fixes). - ASoC: max98090: Reject invalid values in custom control put() (git-fixes). - ASoC: max98357a: remove dependency on GPIOLIB (git-fixes). - ASoC: mediatek: Fix error handling in mt8173_max98090_dev_probe (git-fixes). - ASoC: mediatek: Fix missing of_node_put in mt2701_wm8960_machine_probe (git-fixes). - ASoC: mediatek: mt6358: add missing EXPORT_SYMBOLs (git-fixes). - ASoC: mediatek: mt8192-mt6359: Fix error handling in mt8192_mt6359_dev_probe (git-fixes). - ASoC: mediatek: use of_device_get_match_data() (git-fixes). - ASoC: meson: Fix event generation for AUI ACODEC mux (git-fixes). - ASoC: meson: Fix event generation for AUI CODEC mux (git-fixes). - ASoC: meson: Fix event generation for G12A tohdmi mux (git-fixes). - ASoC: msm8916-wcd-analog: Fix error handling in pm8916_wcd_analog_spmi_probe (git-fixes). - ASoC: msm8916-wcd-digital: Check failure for devm_snd_soc_register_component (git-fixes). - ASoC: msm8916-wcd-digital: Fix missing clk_disable_unprepare() in msm8916_wcd_digital_probe (git-fixes). - ASoC: mxs: Fix error handling in mxs_sgtl5000_probe (git-fixes). - ASoC: mxs-saif: Fix refcount leak in mxs_saif_probe (git-fixes). - ASoC: mxs-saif: Handle errors for clk_enable (git-fixes). - ASoC: nau8822: Add operation for internal PLL off and on (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_range() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_volsw_sx() (git-fixes). - ASoC: ops: Fix stereo change notifications in snd_soc_put_xr_sx() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_volsw_sx() (git-fixes). - ASoC: ops: Reject out of bounds values in snd_soc_put_xr_sx() (git-fixes). - ASoC: ops: Shift tested values in snd_soc_put_volsw() by +min (git-fixes). - ASoC: ops: Validate input values in snd_soc_put_volsw_range() (git-fixes). - ASoC: qcom: Actually clear DMA interrupt register for HDMI (git-fixes). - ASoC: rk3328: fix disabling mclk on pclk probe failure (git-fixes). - ASoC: rk817: Fix missing clk_disable_unprepare() in rk817_platform_probe (git-fixes). - ASoC: rk817: Use devm_clk_get() in rk817_platform_probe (git-fixes). - ASoC: rockchip: i2s: Fix missing clk_disable_unprepare() in rockchip_i2s_probe (git-fixes). - ASoC: rsnd: care default case on rsnd_ssiu_busif_err_status_clear() (git-fixes). - ASoC: rsnd: care return value from rsnd_node_fixed_index() (git-fixes). - ASoC: rt1015p: remove dependency on GPIOLIB (git-fixes). - ASoC: rt5514: Fix event generation for "DSP Voice Wake Up" control (git-fixes). - ASoC: rt5645: Fix errorenous cleanup order (git-fixes). - ASoC: rt5663: check the return value of devm_kzalloc() in rt5663_parse_dp() (git-fixes). - ASoC: rt5668: do not block workqueue if card is unbound (git-fixes). - ASoC: rt5682: do not block workqueue if card is unbound (git-fixes). - ASoC: samsung: Fix refcount leak in aries_audio_probe (git-fixes). - ASoC: samsung: Use dev_err_probe() helper (git-fixes). - ASoC: simple-card: fix probe failure on platform component (git-fixes). - ASoC: simple-card-utils: Set sysclk on all components (git-fixes). - ASoC: soc-compress: Change the check for codec_dai (git-fixes). - ASoC: soc-compress: prevent the potentially use of null pointer (git-fixes). - ASoC: soc-core: skip zero num_dai component in searching dai name (git-fixes). - ASoC: soc-dapm: fix two incorrect uses of list iterator (git-fixes). - ASoC: soc-ops: fix error handling (git-fixes). - ASoC: SOF: Add missing of_node_put() in imx8m_probe (git-fixes). - ASoC: SOF: Fix NULL pointer exception in sof_pci_probe callback (git-fixes). - ASoC: SOF: hda: Set max DMA segment size (git-fixes). - ASoC: SOF: Intel: enable DMI L1 for playback streams (git-fixes). - ASoC: SOF: Intel: Fix build error without SND_SOC_SOF_PCI_DEV (git-fixes). - ASoC: SOF: Intel: Fix NULL ptr dereference when ENOMEM (git-fixes). - ASoC: SOF: Intel: match sdw version on link_slaves_found (git-fixes). - ASoC: SOF: topology: remove redundant code (git-fixes). - ASoC: sti: Fix deadlock via snd_pcm_stop_xrun() call (git-fixes). - ASoC: tas2770: Insert post reset delay (git-fixes). - ASoC: ti: davinci-i2s: Add check for clk_enable() (git-fixes). - ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_* (git-fixes). - ASoC: topology: Allow TLV control to be either read or write (git-fixes). - ASoC: topology: Correct error handling in soc_tplg_dapm_widget_create() (git-fixes). - ASoC: topology: Optimize soc_tplg_dapm_graph_elems_load behavior (git-fixes). - ASoC: tscs454: Add endianness flag in snd_soc_component_driver (git-fixes). - ASoC: wm2000: fix missing clk_disable_unprepare() on error in wm2000_anc_transition() (git-fixes). - ASoC: wm8350: Handle error for wm8350_register_irq (git-fixes). - ASoC: wm8958: Fix change notifications for DSP controls (git-fixes). - ASoC: wm8962: Fix suspend while playing music (git-fixes). - ASoC: wm_adsp: Fix event generation for wm_adsp_fw_put() (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Handle sysclk setting (git-fixes). - ASoC: xilinx: xlnx_formatter_pcm: Make buffer bytes multiple of period bytes (git-fixes). - assoc_array: Fix BUG_ON during garbage collect (git-fixes). - asus-wmi: Add dgpu disable method (bsc#1198058). - asus-wmi: Add egpu enable method (bsc#1198058). - asus-wmi: Add panel overdrive functionality (bsc#1198058). - asus-wmi: Add support for platform_profile (bsc#1198058). - ata: libata: add qc->flags in ata_qc_complete_template tracepoint (git-fixes). - ata: libata-core: Disable READ LOG DMA EXT for Samsung 840 EVOs (git-fixes). - ata: libata-core: Disable TRIM on M88V29 (git-fixes). - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() (git-fixes). - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files (git-fixes). - ata: pata_hpt37x: disable primary channel on HPT371 (git-fixes). - ata: pata_hpt37x: fix PCI clock detection (git-fixes). - ata: pata_marvell: Check the 'bmdma_addr' beforing reading (git-fixes). - ata: pata_octeon_cf: Fix refcount leak in octeon_cf_probe (git-fixes). - ata: sata_dwc_460ex: Fix crash due to OOB write (git-fixes). - ath10k: Fix error handling in ath10k_setup_msa_resources (git-fixes). - ath10k: fix memory overwrite of the WoWLAN wakeup packet pattern (git-fixes). - ath10k: skip ath10k_halt during suspend for driver state RESTARTING (git-fixes). - ath11k: acquire ab->base_lock in unassign when finding the peer by addr (git-fixes). - ath11k: disable spectral scan during spectral deinit (git-fixes). - ath11k: Do not check arvif->is_started before sending management frames (git-fixes). - ath11k: fix kernel panic during unload/load ath11k modules (git-fixes). - ath11k: mhi: use mhi_sync_power_up() (git-fixes). - ath11k: pci: fix crash on suspend if board file is not found (git-fixes). - ath11k: set correct NL80211_FEATURE_DYNAMIC_SMPS for WCN6855 (git-fixes). - ath5k: fix OOB in ath5k_eeprom_read_pcal_info_5111 (git-fixes). - ath9k: fix ar9003_get_eepmisc (git-fixes). - ath9k: fix QCA9561 PA bias level (git-fixes). - ath9k: Fix usage of driver-private space in tx_info (git-fixes). - ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix (git-fixes). - ath9k_htc: fix uninit value bugs (git-fixes). - ath9k: Properly clear TX status area before reporting to mac80211 (git-fixes). - atl1c: fix tx timeout after link flap on Mikrotik 10/25G NIC (git-fixes). - atm: eni: Add check for dma_map_single (git-fixes). - atm: firestream: check the return value of ioremap() in fs_init() (git-fixes). - atomics: Fix atomic64_{read_acquire,set_release} fallbacks (git-fixes). - audit: ensure userspace is penalized the same as the kernel when under pressure (git-fixes). - audit: improve audit queue handling when "audit=1" on cmdline (git-fixes). - audit: improve robustness of the audit queue handling (git-fixes). - auxdisplay: lcd2s: Fix lcd2s_redefine_char() feature (git-fixes). - auxdisplay: lcd2s: Fix memory leak in ->remove() (git-fixes). - auxdisplay: lcd2s: Use proper API to free the instance of charlcd object (git-fixes). - ax25: Fix NULL pointer dereference in ax25_kill_by_device (git-fixes). - ax25: improve the incomplete fix to avoid UAF and NPD bugs (git-fixes). - b43: Fix assigning negative value to unsigned variable (git-fixes). - b43legacy: Fix assigning negative value to unsigned variable (git-fixes). - bareudp: use ipv6_mod_enabled to check if IPv6 enabled (git-fixes). - batman-adv: Do not expect inter-netns unique iflink indices (git-fixes). - batman-adv: Do not skb_split skbuffs with frag_list (git-fixes). - batman-adv: Request iflink once in batadv_get_real_netdevice (git-fixes). - batman-adv: Request iflink once in batadv-on-batadv check (git-fixes). - bcache: avoid journal no-space deadlock by reserving 1 journal bucket (git-fixes). - bcache: avoid unnecessary soft lockup in kworker update_writeback_rate() (bsc#1197362). - bcache: fixup multiple threads crash (git-fixes). - bcache: fix use-after-free problem in bcache_device_free() (git-fixes). - bcache: improve multithreaded bch_btree_check() (git-fixes). - bcache: improve multithreaded bch_sectors_dirty_init() (git-fixes). - bcache: memset on stack variables in bch_btree_check() and bch_sectors_dirty_init() (git-fixes). - bcache: remove incremental dirty sector counting for bch_sectors_dirty_init() (git-fixes). - bfq: Allow current waker to defend against a tentative one (bsc#1195915). - bfq: Avoid false marking of bic as stably merged (bsc#1197926). - bfq: Avoid merging queues with different parents (bsc#1197926). - bfq: Do not let waker requests skip proper accounting (bsc#1184318). - bfq: Drop pointless unlock-lock pair (bsc#1197926). - bfq: Fix warning in bfqq_request_over_limit() (bsc#1200812). - bfq: Get rid of __bio_blkcg() usage (bsc#1197926). - bfq: Limit number of requests consumed by each cgroup (bsc#1184318). - bfq: Limit waker detection in time (bsc#1184318). - bfq: Make sure bfqg for which we are queueing requests is online (bsc#1197926). - bfq: Relax waker detection for shared queues (bsc#1184318). - bfq: Remove pointless bfq_init_rq() calls (bsc#1197926). - bfq: Split shared queues on move between cgroups (bsc#1197926). - bfq: Store full bitmap depth in bfq_data (bsc#1184318). - bfq: Track number of allocated requests in bfq_entity (bsc#1184318). - bfq: Track whether bfq_group is still online (bsc#1197926). - bfq: Update cgroup information before merging bio (bsc#1197926). - binfmt_flat: do not stop relocating GOT entries prematurely on riscv (git-fixes). - bitfield: add explicit inclusions to the example (git-fixes). - blkcg: Remove extra blkcg_bio_issue_init (bsc#1194585). - blk-cgroup: move blkcg_{get,set}_fc_appid out of line (bsc#1200045). - blk-cgroup: set blkg iostat after percpu stat aggregation (bsc#1198018). - blk-iolatency: Fix inflight count imbalances and IO hangs on offline (bsc#1200825). - blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and disk_release() (bsc#1198034). - blk-mq: do not touch ->tagset in blk_mq_get_sq_hctx (bsc#1200824). - blk-mq: do not update io_ticks with passthrough requests (bsc#1200816). - blk-mq: fix tag_get wait task can't be awakened (bsc#1200263). - blk-mq: Fix wrong wakeup batch configuration which will cause hang (bsc#1200263). - blktrace: fix use after free for struct blk_trace (bsc#1198017). - block: assign bi_bdev for cloned bios in blk_rq_prep_clone (bsc#1198016). - block: avoid to quiesce queue in elevator_init_mq (bsc#1198013). - block, bfq: fix UAF problem in bfqg_stats_init() (bsc#1194583). - block: bio-integrity: Advance seed correctly for larger interval sizes (git-fixes). - block: Check ADMIN before NICE for IOPRIO_CLASS_RT (bsc#1198012). - block: do not delete queue kobject before its children (bsc#1198019). - block: do not merge across cgroup boundaries if blkcg is enabled (bsc#1198020). - block: fix async_depth sysfs interface for mq-deadline (bsc#1198015). - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq (bsc#1200259). - block: Fix handling of offline queues in blk_mq_alloc_request_hctx() (git-fixes). - block: fix ioprio_get(IOPRIO_WHO_PGRP) vs setuid(2) (bsc#1194586). - block: Fix the maximum minor value is blk_alloc_ext_minor() (bsc#1198021). - block: Fix up kabi after blkcg merge fix (bsc#1198020). - block: Hold invalidate_lock in BLKRESETZONE ioctl (bsc#1198010). - block: limit request dispatch loop duration (bsc#1198022). - block/mq-deadline: Improve request accounting further (bsc#1198009). - block: Provide blk_mq_sched_get_icq() (bsc#1184318). - block: update io_ticks when io hang (bsc#1197817). - block/wbt: fix negative inflight counter when remove scsi device (bsc#1197819). - Bluetooth: btintel: Fix WBS setting for Intel legacy ROM products (git-fixes). - Bluetooth: btmtksdio: Fix kernel oops in btmtksdio_interrupt (git-fixes). - Bluetooth: btusb: Add another Realtek 8761BU (git-fixes). - Bluetooth: btusb: Add missing Chicony device for Realtek RTL8723BE (bsc#1196779). - Bluetooth: btusb: Add one more Bluetooth part for the Realtek RTL8852AE (git-fixes). - Bluetooth: btusb: Whitespace fixes for btusb_setup_csr() (git-fixes). - Bluetooth: call hci_le_conn_failed with hdev lock in hci_le_conn_failed (git-fixes). - Bluetooth: fix dangling sco_conn and use-after-free in sco_sock_timeout (git-fixes). - Bluetooth: Fix not checking for valid hdev on bt_dev_{info,warn,err,dbg} (git-fixes). - Bluetooth: Fix the creation of hdev->name (git-fixes). - Bluetooth: Fix use after free in hci_send_acl (git-fixes). - Bluetooth: hci_qca: Use del_timer_sync() before freeing (git-fixes). - Bluetooth: hci_serdev: call init_rwsem() before p->open() (git-fixes). - Bluetooth: use hdev lock for accept_list and reject_list in conn req (git-fixes). - Bluetooth: use hdev lock in activate_scan for hci_is_adv_monitoring (git-fixes). - Bluetooth: use memset avoid memory leaks (git-fixes). - bnx2x: fix napi API usage sequence (bsc#1198217). - bnxt_en: Do not destroy health reporters during reset (bsc#1199736). - bnxt_en: Eliminate unintended link toggle during FW reset (bsc#1199736). - bnxt_en: Fix active FEC reporting to ethtool (git-fixes). - bnxt_en: Fix devlink fw_activate (jsc#SLE-18978). - bnxt_en: Fix incorrect multicast rx mask setting when not requested (git-fixes). - bnxt_en: Fix occasional ethtool -t loopback test failures (git-fixes). - bnxt_en: Fix offline ethtool selftest with RDMA enabled (git-fixes). - bnxt_en: Fix possible bnxt_open() failure caused by wrong RFS flag (git-fixes). - bnxt_en: Fix unnecessary dropping of RX packets (git-fixes). - bnxt_en: Increase firmware message response DMA wait time (git-fixes). - bnxt_en: Prevent XDP redirect from running when stopping TX queue (git-fixes). - bnxt_en: reserve space inside receive page for skb_shared_info (git-fixes). - bnxt_en: Restore the resets_reliable flag in bnxt_open() (jsc#SLE-18978). - bnxt_en: Synchronize tx when xdp redirects happen on same ring (git-fixes). - bonding: fix data-races around agg_select_timer (git-fixes). - bonding: force carrier update when releasing slave (git-fixes). - bonding: pair enable_port with slave_arr_updates (git-fixes). - bpf: Add check_func_arg_reg_off function (git-fixes). - bpf: add config to allow loading modules with BTF mismatches (bsc#1194501). - bpf: Avoid races in __bpf_prog_run() for 32bit arches (git-fixes). - bpf: Disallow negative offset in check_ptr_off_reg (git-fixes). - bpf: Fix comment for helper bpf_current_task_under_cgroup() (git-fixes). - bpf: Fix kernel address leakage in atomic cmpxchg's r0 aux reg (git-fixes). - bpf: Fix PTR_TO_BTF_ID var_off check (git-fixes). - bpf: Fix UAF due to race between btf_try_get_module and load_module (git-fixes). - bpf: Mark PTR_TO_FUNC register initially with zero offset (git-fixes). - bpf: Resolve to prog->aux->dst_prog->type only for BPF_PROG_TYPE_EXT (git-fixes). - bpf: selftests: adapt bpf_iter_task_vma to get_inode_dev() (bsc#927455 bsc#1198585). - bpf, selftests: Fix racing issue in btf_skc_cls_ingress test (git-fixes). - bpf, selftests: Update test case for atomic cmpxchg on r0 with pointer (git-fixes). - bpftool: Fix memory leak in prog_dump() (git-fixes). - bpftool: Remove inclusion of utilities.mak from Makefiles (git-fixes). - bpftool: Remove unused includes to bpf/bpf_gen_internal.h (git-fixes). - bpftool: Remove useless #include to perf-sys.h from map_perf_ring.c (git-fixes). - brcmfmac: firmware: Allocate space for default boardrev in nvram (git-fixes). - brcmfmac: firmware: Fix crash in brcm_alt_fw_path (git-fixes). - brcmfmac: pcie: Declare missing firmware files in pcie.c (git-fixes). - brcmfmac: pcie: Fix crashes due to early IRQs (git-fixes). - brcmfmac: pcie: Release firmwares in the brcmf_pcie_setup error path (git-fixes). - brcmfmac: pcie: Replace brcmf_pcie_copy_mem_todev with memcpy_toio (git-fixes). - brcmfmac: sdio: Fix undefined behavior due to shift overflowing the constant (git-fixes). - btrfs: add a BTRFS_FS_ERROR helper (bsc#1197915). - btrfs: add btrfs_set_item_*_nr() helpers (bsc#1197915). - btrfs: add helper to truncate inode items when logging inode (bsc#1197915). - btrfs: add missing run of delayed items after unlink during log replay (bsc#1197915). - btrfs: add ro compat flags to inodes (bsc#1197915). - btrfs: always update the logged transaction when logging new names (bsc#1197915). - btrfs: assert that extent buffers are write locked instead of only locked (bsc#1197915). - btrfs: avoid attempt to drop extents when logging inode for the first time (bsc#1197915). - btrfs: avoid expensive search when dropping inode items from log (bsc#1197915). - btrfs: avoid expensive search when truncating inode items from the log (bsc#1197915). - btrfs: Avoid live-lock in search_ioctl() on hardware with sub-page (git-fixes) - btrfs: avoid search for logged i_size when logging inode if possible (bsc#1197915). - btrfs: avoid unnecessarily logging directories that had no changes (bsc#1197915). - btrfs: avoid unnecessary lock and leaf splits when updating inode in the log (bsc#1197915). - btrfs: avoid unnecessary log mutex contention when syncing log (bsc#1197915). - btrfs: change error handling for btrfs_delete_*_in_log (bsc#1197915). - btrfs: change handle_fs_error in recover_log_trees to aborts (bsc#1197915). - btrfs: check if a log tree exists at inode_logged() (bsc#1197915). - btrfs: constify and cleanup variables in comparators (bsc#1197915). - btrfs: do not commit delayed inode when logging a file in full sync mode (bsc#1197915). - btrfs: do not log new dentries when logging that a new name exists (bsc#1197915). - btrfs: do not pin logs too early during renames (bsc#1197915). - btrfs: drop the _nr from the item helpers (bsc#1197915). - btrfs: eliminate some false positives when checking if inode was logged (bsc#1197915). - btrfs: factor out the copying loop of dir items from log_dir_items() (bsc#1197915). - btrfs: fix lost prealloc extents beyond eof after full fsync (bsc#1197915). - btrfs: fix lzo_decompress_bio() kmap leakage (bsc#1193852). - btrfs: fix memory leak in __add_inode_ref() (bsc#1197915). - btrfs: fix missing last dir item offset update when logging directory (bsc#1197915). - btrfs: fix re-dirty process of tree-log nodes (bsc#1197915). - btrfs: improve the batch insertion of delayed items (bsc#1197915). - btrfs: insert items in batches when logging a directory when possible (bsc#1197915). - btrfs: introduce btrfs_lookup_match_dir (bsc#1197915). - btrfs: introduce item_nr token variant helpers (bsc#1197915). - btrfs: keep track of the last logged keys when logging a directory (bsc#1197915). - btrfs: loop only once over data sizes array when inserting an item batch (bsc#1197915). - btrfs: make btrfs_file_extent_inline_item_len take a slot (bsc#1197915). - btrfs: only copy dir index keys when logging a directory (bsc#1197915). - btrfs: remove no longer needed checks for NULL log context (bsc#1197915). - btrfs: remove no longer needed full sync flag check at inode_logged() (bsc#1197915). - btrfs: remove no longer needed logic for replaying directory deletes (bsc#1197915). - btrfs: remove redundant log root assignment from log_dir_items() (bsc#1197915). - btrfs: remove root argument from add_link() (bsc#1197915). - btrfs: remove root argument from btrfs_log_inode() and its callees (bsc#1197915). - btrfs: remove root argument from btrfs_unlink_inode() (bsc#1197915). - btrfs: remove root argument from check_item_in_log() (bsc#1197915). - btrfs: remove root argument from drop_one_dir_item() (bsc#1197915). - btrfs: remove the btrfs_item_end() helper (bsc#1197915). - btrfs: remove unnecessary list head initialization when syncing log (bsc#1197915). - btrfs: remove unneeded return variable in btrfs_lookup_file_extent (bsc#1197915). - btrfs: rename btrfs_item_end_nr to btrfs_item_data_end (bsc#1197915). - btrfs: stop doing GFP_KERNEL memory allocations in the ref verify tool (bsc#1197915). - btrfs: unexport setup_items_for_insert() (bsc#1197915). - btrfs: unify lookup return value when dir entry is missing (bsc#1197915). - btrfs: update comment at log_conflicting_inodes() (bsc#1197915). - btrfs: use btrfs_item_size_nr/btrfs_item_offset_nr everywhere (bsc#1197915). - btrfs: use btrfs_next_leaf instead of btrfs_next_item when slots > nritems (bsc#1197915). - btrfs: use single bulk copy operations when logging directories (bsc#1197915). - bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() (git-fixes). - bus: sunxi-rsb: Fix the return value of sunxi_rsb_device_create() (git-fixes). - bus: ti-sysc: Fix warnings for unbind for serial (git-fixes). - bus: ti-sysc: Make omap3 gpt12 quirk handling SoC specific (git-fixes). - caif_virtio: fix race between virtio_device_ready() and ndo_open() (git-fixes). - can: ems_usb: ems_usb_start_xmit(): fix double dev_kfree_skb() in error path (git-fixes). - can: etas_es58x: change opened_channel_cnt's type from atomic_t to u8 (git-fixes). - can: etas_es58x: es58x_fd_rx_event_msg(): initialize rx_event_msg before calling es58x_check_msg_len() (git-fixes). - can: grcan: grcan_close(): fix deadlock (git-fixes). - can: grcan: grcan_probe(): fix broken system id check for errata workaround needs (git-fixes). - can: grcan: only use the NAPI poll budget for RX (git-fixes). - can: grcan: use ofdev->dev when allocating DMA memory (git-fixes). - can: gs_usb: change active_channels's type from atomic_t to u8 (git-fixes). - can: isotp: fix error path in isotp_sendmsg() to unlock wait queue (git-fixes). - can: isotp: fix potential CAN frame reception race in isotp_rcv() (git-fixes). - can: isotp: restore accidentally removed MSG_PEEK feature (git-fixes). - can: isotp: return -EADDRNOTAVAIL when reading from unbound socket (git-fixes). - can: isotp: set default value for N_As to 50 micro seconds (git-fixes). - can: isotp: stop timeout monitoring when no first frame was sent (git-fixes). - can: isotp: support MSG_TRUNC flag when reading from socket (git-fixes). - can: m_can: m_can_tx_handler(): fix use after free of skb (git-fixes). - can: mcba_usb: mcba_usb_start_xmit(): fix double dev_kfree_skb in error path (git-fixes). - can: mcba_usb: properly check endpoint type (git-fixes). - can: mcp251xfd: mcp251xfd_register_get_dev_id(): fix return of error value (git-fixes). - can: mcp251xfd: silence clang's -Wunaligned-access warning (git-fixes). - can: rcar_canfd: rcar_canfd_channel_probe(): register the CAN device when fully ready (git-fixes). - can: usb_8dev: usb_8dev_start_xmit(): fix double dev_kfree_skb() in error path (git-fixes). - can: xilinx_can: mark bit timing constants as const (git-fixes). - carl9170: fix missing bit-wise or operator for tx_params (git-fixes). - carl9170: tx: fix an incorrect use of list iterator (git-fixes). - CDC-NCM: avoid overflow in sanity checking (git-fixes). - ceph: fix setting of xattrs on async created inodes (bsc#1199611). - certs/blacklist_hashes.c: fix const confusion in certs blacklist (git-fixes). - cfg80211: declare MODULE_FIRMWARE for regulatory.db (git-fixes). - cfg80211: do not add non transmitted BSS to 6GHz scanned channels (git-fixes). - cfg80211: fix race in netlink owner interface destruction (git-fixes). - cfg80211: hold bss_lock while updating nontrans_list (git-fixes). - cgroup/cpuset: Fix a race between cpuset_attach() and cpu hotplug (bsc#1196869). - cgroup/cpuset: Fix "suspicious RCU usage" lockdep warning (bsc#1196868). - cgroup/cpuset: Remove cpus_allowed/mems_allowed setup in cpuset_init_smp() (bsc#1199839). - cgroup-v1: Correct privileges check in release_agent writes (bsc#1196723). - char: tpm: cr50_i2c: Suppress duplicated error message in .remove() (git-fixes). - char: xillybus: fix a refcount leak in cleanup_dev() (git-fixes). - cifs: add WARN_ON for when chan_count goes below minimum (bsc#1193629). - cifs: adjust DebugData to use chans_need_reconnect for conn status (bsc#1193629). - cifs: alloc_path_with_tree_prefix: do not append sep. if the path is empty (bsc#1193629). - cifs: avoid parallel session setups on same channel (bsc#1193629). - cifs: avoid race during socket reconnect between send and recv (bsc#1193629). - cifs: call cifs_reconnect when a connection is marked (bsc#1193629). - cifs: call helper functions for marking channels for reconnect (bsc#1193629). - cifs: change smb2_query_info_compound to use a cached fid, if available (bsc#1193629). - cifs: check for smb1 in open_cached_dir() (bsc#1193629). - cifs: check reconnects for channels of active tcons too (bsc#1193629). - cifs: Check the IOCB_DIRECT flag, not O_DIRECT (bsc#1193629). - cifs: cifs_ses_mark_for_reconnect should also update reconnect bits (bsc#1193629). - cifs: clean up an inconsistent indenting (bsc#1193629). - cifs: convert the path to utf16 in smb2_query_info_compound (bsc#1193629). - cifs: destage any unwritten data to the server before calling copychunk_write (bsc#1193629). - cifs: do not build smb1ops if legacy support is disabled (bsc#1193629). - cifs: do not call cifs_dfs_query_info_nonascii_quirk() if nodfs was set (bsc#1193629). - cifs: do not skip link targets when an I/O fails (bsc#1194625). - cifs: do not use tcpStatus after negotiate completes (bsc#1193629). - cifs: do not use uninitialized data in the owner/group sid (bsc#1193629). - cifs: fix bad fids sent over wire (bsc#1197157). - cifs: fix confusing unneeded warning message on smb2.1 and earlier (bsc#1193629). - cifs: fix double free race when mount fails in cifs_get_root() (bsc#1193629). - cifs: fix FILE_BOTH_DIRECTORY_INFO definition (bsc#1193629). - cifs: fix handlecache and multiuser (bsc#1193629). - cifs: fix hang on cifs_get_next_mid() (bsc#1193629). - cifs: fix incorrect use of list iterator after the loop (bsc#1193629). - cifs: fix minor compile warning (bsc#1193629). - cifs: fix NULL ptr dereference in refresh_mounts() (bsc#1193629). - cifs: fix potential deadlock in direct reclaim (bsc#1193629). - cifs: fix potential double free during failed mount (bsc#1193629). - cifs: fix potential race with cifsd thread (bsc#1193629). - cifs: fix set of group SID via NTSD xattrs (bsc#1193629). - cifs: fix signed integer overflow when fl_end is OFFSET_MAX (bsc#1193629). - cifs: Fix smb311_update_preauth_hash() kernel-doc comment (bsc#1193629). - cifs: fix the cifs_reconnect path for DFS (bsc#1193629). - cifs: fix the connection state transitions with multichannel (bsc#1193629). - cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1193629). - cifs: fix workstation_name for multiuser mounts (bsc#1193629). - cifs: force new session setup and tcon for dfs (bsc#1193629). - cifs: free ntlmsspblob allocated in negotiate (bsc#1193629). - cifs: maintain a state machine for tcp/smb/tcon sessions (bsc#1193629). - cifs: make status checks in version independent callers (bsc#1193629). - cifs: mark sessions for reconnection in helper function (bsc#1193629). - cifs: modefromsids must add an ACE for authenticated users (bsc#1193629). - cifs: move definition of cifs_fattr earlier in cifsglob.h (bsc#1193629). - cifs: move superblock magic defitions to magic.h (bsc#1193629). - cifs: potential buffer overflow in handling symlinks (bsc#1193629). - cifs: print TIDs as hex (bsc#1193629). - cifs: protect all accesses to chan_* with chan_lock (bsc#1193629). - cifs: quirk for STATUS_OBJECT_NAME_INVALID returned for non-ASCII dfs refs (bsc#1193629). - cifs: reconnect only the connection and not smb session where possible (bsc#1193629). - cifs: release cached dentries only if mount is complete (bsc#1193629). - cifs: remove check of list iterator against head past the loop body (bsc#1193629). - cifs: remove redundant assignment to pointer p (bsc#1193629). - cifs: remove repeated debug message on cifs_put_smb_ses() (bsc#1193629). - cifs: remove repeated state change in dfs tree connect (bsc#1193629). - cifs: remove unused variable ses_selected (bsc#1193629). - cifs: return ENOENT for DFS lookup_cache_entry() (bsc#1193629). - cifs: return the more nuanced writeback error on close() (bsc#1193629). - cifs: serialize all mount attempts (bsc#1193629). - cifs: set the CREATE_NOT_FILE when opening the directory in use_cached_dir() (bsc#1193629). - cifs: skip trailing separators of prefix paths (bsc#1193629). - cifs: smbd: fix typo in comment (bsc#1193629). - cifs: Split the smb3_add_credits tracepoint (bsc#1193629). - cifs: take cifs_tcp_ses_lock for status checks (bsc#1193629). - cifs: track individual channel status using chans_need_reconnect (bsc#1193629). - cifs: unlock chan_lock before calling cifs_put_tcp_session (bsc#1193629). - cifs: update internal module number (bsc#1193629). - cifs: update tcpStatus during negotiate and sess setup (bsc#1193629). - cifs: use a different reconnect helper for non-cifsd threads (bsc#1193629). - cifs: use correct lock type in cifs_reconnect() (bsc#1193629). - cifs: Use kzalloc instead of kmalloc/memset (bsc#1193629). - cifs: use new enum for ses_status (bsc#1193629). - cifs: use the chans_need_reconnect bitmap for reconnect status (bsc#1193629). - cifs: verify that tcon is valid before dereference in cifs_kill_sb (bsc#1193629). - cifs: version operations for smb20 unneeded when legacy support disabled (bsc#1193629). - cifs: we do not need a spinlock around the tree access during umount (bsc#1193629). - cifs: when extending a file with falloc we should make files not-sparse (bsc#1193629). - cifs: writeback fix (bsc#1193629). - clk: actions: Terminate clk_div_table with sentinel element (git-fixes). - clk: at91: generated: consider range when calculating best rate (git-fixes). - clk: at91: sama7g5: fix parents of PDMCs' GCLK (git-fixes). - clk: bcm2835: fix bcm2835_clock_choose_div (git-fixes). - clk: bcm2835: Remove unused variable (git-fixes). - clk: clps711x: Terminate clk_div_table with sentinel element (git-fixes). - clk: Enforce that disjoints limits are invalid (git-fixes). - clk: Fix clk_hw_get_clk() when dev is NULL (git-fixes). - clk: hisilicon: Terminate clk_div_table with sentinel element (git-fixes). - clk: imx7d: Remove audio_mclk_root_clk (git-fixes). - clk: imx8mp: fix usb_root_clk parent (git-fixes). - clk: imx: Add check for kcalloc (git-fixes). - clk: imx: off by one in imx_lpcg_parse_clks_from_dt() (git-fixes). - clk: imx: scu: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync() usage (git-fixes). - clk: Initialize orphan req_rate (git-fixes). - clk: jz4725b: fix mmc0 clock gating (git-fixes). - clk: loongson1: Terminate clk_div_table with sentinel element (git-fixes). - clk: nxp: Remove unused variable (git-fixes). - clk: qcom: clk-rcg2: Update logic to calculate D value for RCG (git-fixes). - clk: qcom: clk-rcg2: Update the frac table for pixel clock (git-fixes). - clk: qcom: gcc-msm8994: Fix gpll4 width (git-fixes). - clk: qcom: ipq8074: fix PCI-E clock oops (git-fixes). - clk: qcom: ipq8074: Use floor ops for SDCC1 clock (git-fixes). - clk: renesas: r9a06g032: Fix the RTC hclock description (git-fixes). - clk: rockchip: drop CLK_SET_RATE_PARENT from dclk_vop* on rk3568 (git-fixes). - clk: si5341: fix reported clk_rate when output divider is 2 (git-fixes). - clk: sunxi: sun9i-mmc: check return value after calling platform_get_resource() (git-fixes). - clk: tegra: Add missing reset deassertion (git-fixes). - clk: tegra: tegra124-emc: Fix missing put_device() call in emc_ensure_emc_driver (git-fixes). - clk: ti: Preserve node in ti_dt_clocks_register() (git-fixes). - clk: uniphier: Fix fixed-rate initialization (git-fixes). - clocksource: acpi_pm: fix return value of __setup handler (git-fixes). - clocksource/drivers/exynos_mct: Handle DTS with higher number of interrupts (git-fixes). - clocksource/drivers/exynos_mct: Refactor resources allocation (git-fixes). - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value (git-fixes). - clocksource/drivers/sp804: Avoid error on multiple instances (git-fixes). - clocksource/drivers/timer-microchip-pit64b: Use notrace (git-fixes). - clocksource/drivers/timer-of: Check return value of of_iomap in timer_of_base_init() (git-fixes). - clocksource/drivers/timer-ti-dm: Fix regression from errata i940 fix (git-fixes). - clocksource: hyper-v: unexport __init-annotated hv_init_clocksource() (bsc#1201218). - comedi: drivers: ni_routes: Use strcmp() instead of memcmp() (git-fixes). - comedi: vmk80xx: fix expression for tx buffer size (git-fixes). - copy_process(): Move fd_install() out of sighand->siglock critical section (bsc#1199626). - cpufreq-fix-memory-leak-in-sun50i_cpufreq_nvmem_prob.patch: (git-fixes). - cpufreq: intel_pstate: Add Ice Lake server to out-of-band IDs (bsc#1201228). - cpufreq: qcom-cpufreq-nvmem: fix reading of PVS Valid fuse (git-fixes). - cpuidle,intel_idle: Fix CPUIDLE_FLAG_IRQ_ENABLE (git-fixes). - cpuidle: intel_idle: Update intel_idle() kerneldoc comment (git-fixes). - cpuset: Fix the bug that subpart_cpus updated wrongly in update_cpumask() (bsc#1196866). - cputime, cpuacct: Include guest time in user time in (git-fixes) - crypto: amlogic - call finalize with bh disabled (git-fixes). - crypto: api - Move cryptomgr soft dependency into algapi (git-fixes). - crypto: arm/aes-neonbs-cbc - Select generic cbc and aes (git-fixes). - crypto: authenc - Fix sleep in atomic context in decrypt_tail (git-fixes). - crypto: caam - fix i.MX6SX entropy delay value (git-fixes). - crypto: cavium/nitrox - do not cast parameter in bit operations (git-fixes). - crypto: ccp - ccp_dmaengine_unregister release dma channels (git-fixes). - crypto: ccree - do not attempt 0 len DMA mappings (git-fixes). - crypto: ccree - Fix use after free in cc_cipher_exit() (git-fixes). - crypto: ccree - use fine grained DMA mapping dir (git-fixes). - crypto: cryptd - Protect per-CPU resource by disabling BH (git-fixes). - crypto: ecrdsa - Fix incorrect use of vli_cmp (git-fixes). - crypto: engine - check if BH is disabled during completion (git-fixes). - crypto: gemini - call finalize with bh disabled (git-fixes). - crypto: hisilicon/qm - cleanup warning in qm_vf_read_qos (git-fixes). - crypto: hisilicon/sec - fix the aead software fallback for engine (git-fixes). - crypto: hisilicon/sec - not need to enable sm4 extra mode at HW V3 (git-fixes). - crypto: marvell/cesa - ECB does not IV (git-fixes). - crypto: mxs-dcp - Fix scatterlist processing (git-fixes). - crypto: octeontx2 - remove CONFIG_DM_CRYPT check (git-fixes). - crypto: qat - disable registration of algorithms (git-fixes). - crypto: qat - do not cast parameter in bit operations (git-fixes). - crypto: qcom-rng - ensure buffer for generate is completely filled (git-fixes). - crypto: qcom-rng - fix infinite loop on requests not multiple of WORD_SZ (git-fixes). - crypto: rockchip - ECB does not need IV (git-fixes). - crypto: rsa-pkcs1pad - correctly get hash from source scatterlist (git-fixes). - crypto: rsa-pkcs1pad - fix buffer overread in pkcs1pad_verify_complete() (git-fixes). - crypto: rsa-pkcs1pad - only allow with rsa (git-fixes). - crypto: rsa-pkcs1pad - restore signature length check (git-fixes). - crypto: stm32 - fix reference leak in stm32_crc_remove (git-fixes). - crypto: sun8i-ce - call finalize with bh disabled (git-fixes). - crypto: sun8i-ss - call finalize with bh disabled (git-fixes). - crypto: sun8i-ss - handle zero sized sg (git-fixes). - crypto: sun8i-ss - really disable hash on A80 (git-fixes). - crypto: sun8i-ss - rework handling of IV (git-fixes). - crypto: vmx - add missing dependencies (git-fixes). - crypto: x86/chacha20 - Avoid spurious jumps to other functions (git-fixes). - crypto: x86 - eliminate anonymous module_init and module_exit (git-fixes). - crypto: xts - Add softdep on ecb (git-fixes). - dax: fix cache flush on PMD-mapped pages (bsc#1200830). - devlink: Add 'enable_iwarp' generic device param (bsc#1200502). - dim: initialize all struct fields (git-fixes). - display/amd: decrease message verbosity about watermarks table failure (git-fixes). - dma: at_xdmac: fix a missing check on list iterator (git-fixes). - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace (git-fixes). - dma-buf: heaps: Fix potential spectre v1 gadget (git-fixes). - dma-debug: fix return value of __setup handlers (git-fixes). - dma-direct: avoid redundant memory sync for swiotlb (git-fixes). - dmaengine: dw-edma: Fix unaligned 64bit access (git-fixes). - dmaengine: hisi_dma: fix MSI allocate fail when reload hisi_dma (git-fixes). - dmaengine: idxd: add missing callback function to support DMA_INTERRUPT (git-fixes). - dmaengine: idxd: add RO check for wq max_batch_size write (git-fixes). - dmaengine: idxd: add RO check for wq max_transfer_size write (git-fixes). - dmaengine: idxd: check GENCAP config support for gencfg register (git-fixes). - dmaengine: idxd: fix device cleanup on disable (git-fixes). - dmaengine: idxd: Fix the error handling path in idxd_cdev_register() (git-fixes). - dmaengine: idxd: restore traffic class defaults after wq reset (git-fixes). - dmaengine: idxd: set DMA_INTERRUPT cap bit (git-fixes). - dmaengine: idxd: skip clearing device context when device is read-only (git-fixes). - dmaengine: imx-sdma: Fix error checking in sdma_event_remap (git-fixes). - dmaengine: mediatek:Fix PM usage reference leak of mtk_uart_apdma_alloc_chan_resources (git-fixes). - dmaengine: ptdma: fix concurrency issue with multiple dma transfer (jsc#SLE-21315). - dmaengine: ptdma: Fix the error handling path in pt_core_init() (git-fixes). - dmaengine: ptdma: handle the cases based on DMA is complete (jsc#SLE-21315). - dmaengine: Revert "dmaengine: shdma: Fix runtime PM imbalance on error" (git-fixes). - dmaengine: shdma: Fix runtime PM imbalance on error (git-fixes). - dmaengine: sh: rcar-dmac: Check for error num after dma_set_max_seg_size (git-fixes). - dmaengine: sh: rcar-dmac: Check for error num after setting mask (git-fixes). - dmaengine: stm32-dmamux: Fix PM disable depth imbalance in stm32_dmamux_probe (git-fixes). - dmaengine: stm32-mdma: fix chan initialization in stm32_mdma_irq_handler() (git-fixes). - dmaengine: stm32-mdma: remove GISR1 register (git-fixes). - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type (git-fixes). - dma-mapping: remove bogus test for pfn_valid from dma_map_resource (git-fixes). - dma/pool: create dma atomic pool only if dma zone has managed pages (bsc#1197501). - dm crypt: fix get_key_size compiler warning if !CONFIG_KEYS (git-fixes). - dm: fix use-after-free in dm_cleanup_zoned_dev() (git-fixes). - dm integrity: fix error code in dm_integrity_ctr() (git-fixes). - dm integrity: set journal entry unused when shrinking device (git-fixes). - dm mirror log: round up region bitmap size to BITS_PER_LONG (git-fixes). - dm mpath: only use ktime_get_ns() in historical selector (git-fixes). - dm verity: set DM_TARGET_IMMUTABLE feature flag (git-fixes). - doc/ip-sysctl: add bc_forwarding (git-fixes). - docs/conf.py: Cope with removal of language=None in Sphinx 5.0.0 (git-fixes). - Documentation: add link to stable release candidate tree (git-fixes). - Documentation: dd: Use ReST lists for return values of driver_deferred_probe_check_state() (git-fixes). - Documentation: Fix duplicate statement about raw_spinlock_t type (git-fixes). - Documentation: update stable tree link (git-fixes). - do not call utsname() after ->nsproxy is NULL (bsc#1201196). - drbd: fix an invalid memory access caused by incorrect use of list iterator (git-fixes). - drbd: fix duplicate array initializer (git-fixes). - drbd: Fix five use after free bugs in get_initial_state (git-fixes). - drbd: remove assign_p_sizes_qlim (git-fixes). - drbd: use bdev_alignment_offset instead of queue_alignment_offset (git-fixes). - drbd: use bdev based limit helpers in drbd_send_sizes (git-fixes). - driver base: fix an unlikely reference counting issue in __add_memory_block() (git-fixes). - driver base: fix compaction sysfs file leak (git-fixes). - driver: base: fix UAF when driver_attach failed (git-fixes). - driver core: dd: fix return value of __setup handler (git-fixes). - driver core: fix deadlock in __device_attach (git-fixes). - driver core: Fix wait_for_device_probe() and deferred_probe_timeout interaction (git-fixes). - driver core: Free DMA range map when device is released (git-fixes). - driver: hv: Compare cpumasks and not their weights in init_vp_index() (git-fixes). - driver: hv: log when enabling crash_kexec_post_notifiers (git-fixes). - driver: hv: Rename 'alloced' to 'allocated' (git-fixes). - driver: hv: utils: Make use of the helper macro LIST_HEAD() (git-fixes). - driver: hv: vmbus: Fix memory leak in vmbus_add_channel_kobj (git-fixes). - driver: hv: vmbus: Fix potential crash on module unload (git-fixes). - driver: hv: vmbus: Use struct_size() helper in kmalloc() (git-fixes). - driver: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers (git-fixes). - driver: net: xgene: Fix regression in CRC stripping (git-fixes). - drivers: cpufreq: Add missing of_node_put() in qoriq-cpufreq.c (git-fixes). - drivers: mmc: sdhci_am654: Add the quirk to set TESTCD bit (git-fixes). - drivers: staging: rtl8192bs: Fix deadlock in rtw_joinbss_event_prehandle() (git-fixes). - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop() (git-fixes). - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop() (git-fixes). - drivers: staging: rtl8723bs: Fix deadlock in rtw_surveydone_event_callback() (git-fixes). - drivers: tty: serial: Fix deadlock in sa1100_set_termios() (git-fixes). - drivers: usb: host: Fix deadlock in oxu_bus_suspend() (git-fixes). - drm: add a locked version of drm_is_current_master (git-fixes). - drm: Add orientation quirk for GPD Win Max (git-fixes). - drm/amd: Add USBC connector ID (git-fixes). - drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj (git-fixes). - drm/amd: avoid suspend on dGPUs w/ s2idle support when runtime PM enabled (git-fixes). - drm/amd: Check if ASPM is enabled from PCIe subsystem (git-fixes). - drm/amd/display: Add affected crtcs to atomic state for dsc mst unplug (git-fixes). - drm/amd/display: Add pstate verification and recovery for DCN31 (git-fixes). - drm/amd/display: Add signal type check when verify stream backends same (git-fixes). - drm/amd/display: Avoid reading audio pattern past AUDIO_CHANNELS_COUNT (git-fixes). - drm/amd/display: Cap OLED brightness per max frame-average luminance (git-fixes). - drm/amd/display: Cap pflip irqs per max otg number (git-fixes). - drm/amd/display: Check if modulo is 0 before dividing (git-fixes). - drm/amd/display: DCN3.1: do not mark as kernel-doc (git-fixes). - drm/amd/display: Disabling Z10 on DCN31 (git-fixes). - drm/amd/display: do not ignore alpha property on pre-multiplied mode (git-fixes). - drm/amd/display: Do not reinitialize DMCUB on s0ix resume (git-fixes). - drm/amd/display: Enable power gating before init_pipes (git-fixes). - drm/amd/display: FEC check in timing validation (git-fixes). - drm/amd/display: Fix allocate_mst_payload assert on resume (git-fixes). - drm/amd/display: Fix a NULL pointer dereference in amdgpu_dm_connector_add_common_modes() (git-fixes). - drm/amd/display: fix audio format not updated after edid updated (git-fixes). - drm/amd/display: Fix memory leak (git-fixes). - drm/amd/display: Fix memory leak in dcn21_clock_source_create (bsc#1190786) - drm/amd/display: Fix OLED brightness control on eDP (git-fixes). - drm/amd/display: Fix p-state allow debug index on dcn31 (git-fixes). - drm/amd/display: fix yellow carp wm clamping (git-fixes). - drm/amd/display: Force link_rate as LINK_RATE_RBR2 for 2018 15" Apple Retina panels (git-fixes). - drm/amd/display: For vblank_disable_immediate, check PSR is really used (git-fixes). - drm/amd/display: Protect update_bw_bounding_box FPU code (git-fixes). - drm/amd/display: Read Golden Settings Table from VBIOS (git-fixes). - drm/amd/display: Remove vupdate_int_entry definition (git-fixes). - drm/amd/display: Revert FEC check in validation (git-fixes). - drm/amd/display: Update VTEM Infopacket definition (git-fixes). - drm/amd/display: Update watermark values for DCN301 (git-fixes). - drm/amd/display: Use adjusted DCN301 watermarks (git-fixes). - drm/amd/display: Use PSR version selected during set_psr_caps (git-fixes). - drm/amd/display: watermark latencies is not enough on DCN31 (git-fixes). - drm/amdgpu: add beige goby PCI ID (git-fixes). - drm/amdgpu: bypass tiling flag check in virtual display case (v2) (git-fixes). - drm/amdgpu: check vm ready by amdgpu_vm->evicting flag (git-fixes). - drm/amdgpu: conduct a proper cleanup of PDB bo (git-fixes). - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour (git-fixes). - drm/amdgpu: disable MMHUB PG for Picasso (git-fixes). - drm/amdgpu/display: add support for multiple backlights (git-fixes). - drm/amdgpu: do not do resets on APUs which do not support it (git-fixes). - drm/amdgpu: do not enable asic reset for raven2 (git-fixes). - drm/amdgpu: do not set s3 and s0ix at the same time (git-fixes). - drm/amdgpu: do not use BACO for reset in S3 (git-fixes). - drm/amdgpu: do not use passthrough mode in Xen dom0 (git-fixes). - drm/amdgpu: Drop inline from amdgpu_ras_eeprom_max_record_count (git-fixes). - drm/amdgpu: Enable gfxoff quirk on MacBook Pro (git-fixes). - drm/amdgpu: Ensure HDA function is suspended before ASIC reset (git-fixes). - drm/amdgpu: explicitly check for s0ix when evicting resources (git-fixes). - drm/amdgpu: fix amdgpu_ras_block_late_init error handler (bsc#1190497) - drm/amdgpu: fix logic inversion in check (git-fixes). - drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire() (git-fixes). - drm/amdgpu: Fix recursive locking warning (git-fixes). - drm/amdgpu: fix suspend/resume hang regression (git-fixes). - drm/amdgpu/sdma: Fix incorrect calculations of the wptr of the doorbells (git-fixes). - drm/amdgpu: skipping SDMA hw_init and hw_fini for S0ix (git-fixes). - drm/amdgpu/smu10: fix SoC/fclk units in auto mode (git-fixes). - drm/amdgpu: suppress the warning about enum value 'AMD_IP_BLOCK_TYPE_NUM' (git-fixes). - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo (git-fixes). - drm/amdgpu: unify BO evicting method in amdgpu_ttm (git-fixes). - drm/amdgpu: update VCN codec support for Yellow Carp (git-fixes). - drm/amdgpu/vcn: Fix the register setting for vcn1 (git-fixes). - drm/amdgpu/vcn: improve vcn dpg stop procedure (git-fixes). - drm/amdgpu: vi: disable ASPM on Intel Alder Lake based systems (bsc#1190786) - drm/amdkfd: add pinned BOs to kfd_bo_list (git-fixes). - drm/amdkfd: Check for potential null return of kmalloc_array() (git-fixes). - drm/amdkfd: Create file descriptor after client is added to smi_clients list (git-fixes). - drm/amdkfd: Do not take process mutex for svm ioctls (git-fixes). - drm/amdkfd: Fix GWS queue count (bsc#1190786) - drm/amdkfd: Fix Incorrect VMIDs passed to HWS (git-fixes). - drm/amdkfd: make CRAT table missing message informational only (git-fixes). - drm/amdkfd: remove unused function (git-fixes). - drm/amdkfd: Separate pinned BOs destruction from general routine (bsc#1195287). - drm/amdkfd: Use mmget_not_zero in MMU notifier (git-fixes). - drm/amd/pm: correct the MGpuFanBoost support for Beige Goby (git-fixes). - drm/amd/pm: correct the sequence of sending gpu reset msg (git-fixes). - drm/amd/pm: correct UMD pstate clocks for Dimgrey Cavefish and Beige Goby (git-fixes). - drm/amd/pm: enable pm sysfs write for one VF mode (git-fixes). - drm/amd/pm: fix hwmon node of power1_label create issue (git-fixes). - drm/amd/pm: Fix missing thermal throttler status (git-fixes). - drm/amd/pm: fix some OEM SKU specific stability issues (git-fixes). - drm/amd/pm: return -ENOTSUPP if there is no get_dpm_ultimate_freq function (git-fixes). - drm/amd/pm: update smartshift powerboost calc for smu12 (git-fixes). - drm/amd/pm: update smartshift powerboost calc for smu13 (git-fixes). - drm/amd/pm: use bitmap_{from,to}_arr32 where appropriate (git-fixes). - drm/ast: Create threshold values for AST2600 (bsc#1190786) - drm/atomic: Do not pollute crtc_state->mode_blob with error pointers (git-fixes). - drm/atomic: Force bridge self-refresh-exit on CRTC switch (git-fixes). - drm: avoid circular locks in drm_mode_getconnector (git-fixes). - drm/blend: fix typo in the comment (git-fixes). - drm/bridge: Add missing pm_runtime_disable() in __dw_mipi_dsi_probe (git-fixes). - drm/bridge: Add missing pm_runtime_put_sync (git-fixes). - drm/bridge: adv7511: clean up CEC adapter when probe fails (git-fixes). - drm: bridge: adv7511: Fix ADV7535 HPD enablement (git-fixes). - drm/bridge: analogix_dp: Grab runtime PM reference for DP-AUX (git-fixes). - drm/bridge: analogix_dp: Support PSR-exit to disable transition (git-fixes). - drm/bridge: anx7625: Fix overflow issue on reading EDID (git-fixes). - drm/bridge: cdns-dsi: Make sure to to create proper aliases for dt (git-fixes). - drm/bridge: dw-hdmi: use safe format when first in bridge chain (git-fixes). - drm/bridge: Fix error handling in analogix_dp_probe (git-fixes). - drm/bridge: Fix free wrong object in sii8620_init_rcp_input_dev (git-fixes). - drm: bridge: fix unmet dependency on DRM_KMS_HELPER for DRM_PANEL_BRIDGE (git-fixes). - drm: bridge: icn6211: Fix HFP_HSW_HBP_HI and HFP_MIN handling (bsc#1190786) - drm: bridge: icn6211: Fix register layout (git-fixes). - drm: bridge: it66121: Fix the register page length (git-fixes). - drm/bridge: nwl-dsi: Fix PM disable depth imbalance in nwl_dsi_probe (git-fixes). - drm/bridge: sn65dsi83: Fix an error handling path in (bsc#1190786) - drm/bridge: ti-sn65dsi83: Handle dsi_lanes == 0 as invalid (git-fixes). - drm/bridge: ti-sn65dsi86: Properly undo autosuspend (git-fixes). - drm/cma-helper: Set VM_DONTEXPAND for mmap (git-fixes). - drm/connector: Fix typo in output format (bsc#1190786) - drm/doc: overview before functions for drm_writeback.c (git-fixes). - drm/dp: Fix OOB read when handling Post Cursor2 register (bsc#1190786) - drm/edid: Always set RGB444 (git-fixes). - drm/edid: check basic audio support on CEA extension block (git-fixes). - drm/edid: Do not clear formats if using deep color (git-fixes). - drm/edid: fix CEA extension byte #3 parsing (bsc#1190786) - drm/edid: fix invalid EDID extension block filtering (git-fixes). - drm/etnaviv: check for reaped mapping in etnaviv_iommu_unmap_gem (git-fixes). - drm/fb-helper: Mark screen buffers in system memory with FBINFO_VIRTFB (git-fixes). - drm/fourcc: fix integer type usage in uapi header (git-fixes). - drm/i915/adlp: Fix TypeC PHY-ready status readout (git-fixes). - drm/i915: Allow !join_mbus cases for adlp+ dbuf configuration (bsc#1193640). - drm/i915: Check EDID for HDR static metadata when choosing blc (bsc#1190497) - drm/i915: Correctly populate use_sagv_wm for all pipes (git-fixes). - drm/i915/dg2: Print PHY name properly on calibration error (git-fixes). - drm/i915: Disable DRRS on IVB/HSW port != A (git-fixes). - drm/i915/display: Fix HPD short pulse handling for eDP (git-fixes). - drm/i915/display: Move DRRS code its own file (git-fixes). - drm/i915/display/psr: Unset enable_psr2_sel_fetch if other checks in intel_psr2_config_valid() fails (git-fixes). - drm/i915/display: split out dpt out of intel_display.c (git-fixes). - drm/i915/dmc: Add MMIO range restrictions (git-fixes). - drm/i915/dsi: fix VBT send packet port selection for ICL+ (git-fixes). - drm/i915: Fix bw atomic check when switching between SAGV vs. no SAGV (git-fixes). - drm/i915: Fix CFI violation with show_dynamic_id() (git-fixes). - drm/i915: Fix dbuf slice config lookup (git-fixes bsc#1193640). - drm/i915: Fix mbus join config lookup (git-fixes bsc#1193640). - drm/i915: Fix PSF GV point mask when SAGV is not possible (git-fixes). - drm/i915: Fix race in __i915_vma_remove_closed (bsc#1190497) - drm/i915: Fix SEL_FETCH_PLANE_*(PIPE_B+) register addresses (bsc#1190497) - drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency() (git-fixes). - drm/i915/gem: add missing boundary check in vm_access (git-fixes). - drm/i915/gem: add missing else (git-fixes). - drm/i915/guc/slpc: Correct the param count for unset param (git-fixes). - drm/i915/gvt: clean up kernel-doc in gtt.c (git-fixes). - drm/i915/gvt: Make DRM_I915_GVT depend on X86 (git-fixes). - drm/i915: Implement w/a 22010492432 for adl-s (git-fixes). - drm/i915: Keep gem ctx->vm alive until the final put (bsc#1190497) - drm/i915/opregion: check port number bounds for SWSCI display power state (git-fixes). - drm/i915/overlay: Prevent divide by zero bugs in scaling (git-fixes). - drm/i915: Populate pipe dbuf slices more accurately during readout (bsc#1193640). - drm/i915/reset: Fix error_state_read ptr + offset use (git-fixes). - drm/i915: s/JSP2/ICP2/ PCH (git-fixes). - drm/i915: Treat SAGV block time 0 as SAGV disabled (git-fixes). - drm/i915/ttm: ensure we unmap when purging (git-fixes). - drm/i915/ttm: tweak priority hint selection (git-fixes). - drm/i915: Widen the QGV point mask (git-fixes). - drm/i915: Workaround broken BIOS DBUF configuration on TGL/RKL (bsc#1193640). - drm/imx: dw_hdmi-imx: Fix bailout in error cases of probe (git-fixes). - drm: imx: fix compiler warning with gcc-12 (git-fixes). - drm/imx: Fix memory leak in imx_pd_connector_get_modes (git-fixes). - drm/imx: imx-ldb: Check for null pointer after calling kmemdup (git-fixes). - drm/imx: parallel-display: Remove bus flags check in imx_pd_bridge_atomic_check() (git-fixes). - drm/kmb: Fix for build errors with Warray-bounds (git-fixes). - drm/komeda: Fix an undefined behavior bug in komeda_plane_add() (git-fixes). - drm/komeda: return early if drm_universal_plane_init() fails (git-fixes). - drm: mali-dp: potential dereference of null pointer (git-fixes). - drm/mediatek: Add vblank register/unregister callback functions (bsc#1190768) - drm/mediatek: dpi: Use mt8183 output formats for mt8192 (git-fixes). - drm/mediatek: Fix mtk_cec_mask() (git-fixes). - drm/mediatek: mtk_dsi: Reset the dsi0 hardware (git-fixes). - drm/meson: Fix error handling when afbcd.ops->init fails (git-fixes). - drm/meson: Make use of the helper function devm_platform_ioremap_resourcexxx() (git-fixes). - drm/meson: osd_afbcd: Add an exit callback to struct meson_afbcd_ops (git-fixes). - drm/meson: split out encoder from meson_dw_hdmi (git-fixes). - drm/msm/a6xx: Fix missing ARRAY_SIZE() check (git-fixes). - drm/msm/a6xx: Fix refcount leak in a6xx_gpu_init (git-fixes). - drm/msm: add missing include to msm_drv.c (git-fixes). - drm/msm: Add missing put_task_struct() in debugfs path (git-fixes). - drm/msm/disp: check the return value of kzalloc() (git-fixes). - drm/msm/disp/dpu1: set mdp clk to the maximum frequency in opp table (bsc#1190768) - drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory free during pm runtime resume (git-fixes). - drm/msm/dp: add fail safe mode outside of event_mutex context (git-fixes). - drm/msm/dp: always add fail-safe mode into connector mode list (git-fixes). - drm/msm/dp: Always clear mask bits to disable interrupts at dp_ctrl_reset_irq_ctrl() (git-fixes). - drm/msm/dp: check core_initialized before disable interrupts at dp_display_unbind() (git-fixes). - drm/msm/dp: do not initialize phy until plugin interrupt received (bsc#1190497) - drm/msm/dp: do not stop transmitting phy test pattern during DP phy compliance test (git-fixes). - drm/msm/dp: dp_link_parse_sink_count() return immediately if aux read failed (git-fixes). - drm/msm/dp: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/msm/dp: fix event thread stuck in wait_event after kthread_stop() (git-fixes). - drm/msm/dp: force link training for display resolution change (git-fixes). - drm/msm/dp: Modify prototype of encoder based API (git-fixes). - drm/msm/dp: populate connector of struct dp_panel (git-fixes). - drm/msm/dp: remove fail safe mode related code (git-fixes). - drm/msm/dp: reset DP controller before transmit phy test pattern (git-fixes). - drm/msm/dp: stop event kernel thread when DP unbind (bsc#1190768) - drm/msm/dp: stop link training after link training 2 failed (git-fixes). - drm/msm/dp: tear down main link at unplug handle immediately (bsc#1190768) - drm/msm/dpu: add DSPP blocks teardown (git-fixes). - drm/msm/dpu: adjust display_v_end for eDP and DP (git-fixes). - drm/msm/dpu: fix dp audio condition (git-fixes). - drm/msm/dpu: fix error check return value of irq_of_parse_and_map() (bsc#1190768) - drm/msm/dpu: handle pm_runtime_get_sync() errors in bind path (git-fixes). - drm/msm/dsi: fix address for second DSI PHY on SDM660 (git-fixes). - drm/msm/dsi: fix error checks and return values for DSI xmit functions (git-fixes). - drm/msm/dsi: Remove spurious IRQF_ONESHOT flag (git-fixes). - drm/msm/dsi: Use connector directly in msm_dsi_manager_connector_init() (git-fixes). - drm/msm/dsi: Use "ref" fw clock instead of global name for VCO parent (git-fixes). - drm/msm: Fix double pm_runtime_disable() call (git-fixes). - drm: msm: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm: msm: fix possible memory leak in mdp5_crtc_cursor_set() (git-fixes). - drm/msm: Fix range size vs end confusion (git-fixes). - drm/msm/hdmi: check return value after calling platform_get_resource_byname() (git-fixes). - drm/msm/hdmi: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf (git-fixes). - drm/msm/mdp5: check the return of kzalloc() (git-fixes). - drm/msm/mdp5: Return error code in mdp5_mixer_release when deadlock is detected (git-fixes). - drm/msm/mdp5: Return error code in mdp5_pipe_release when deadlock is detected (git-fixes). - drm/msm: properly add and remove internal bridges (bsc#1190768) - drm/msm: remove unused plane_property field from msm_drm_private (bsc#1190768) - drm/msm: return an error pointer in msm_gem_prime_get_sg_table() (git-fixes). - drm/msm: Switch ordering of runpm put vs devfreq_idle (git-fixes). - drm/msm: use for_each_sgtable_sg to iterate over scatterlist (git-fixes). - drm/nouveau/acr: Fix undefined behavior in nvkm_acr_hsfw_load_bl() (git-fixes). - drm/nouveau/backlight: Just set all backlight types as RAW (git-fixes). - drm/nouveau/clk: Fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau: Fix a potential theorical leak in nouveau_get_backlight_name() (git-fixes). - drm/nouveau: fix off by one in BIOS boundary checking (git-fixes). - drm/nouveau/kms/nv50-: atom: fix an incorrect NULL check on list iterator (git-fixes). - drm/nouveau/pmu: Add missing callbacks for Tegra devices (git-fixes). - drm/nouveau/pmu/gm200-: use alternate falcon reset sequence (git-fixes). - drm/nouveau/subdev/bus: Ratelimit logging for fault errors (git-fixes). - drm/nouveau/tegra: Stop using iommu_present() (git-fixes). - drm: panel-orientation-quirks: Add quirk for the 1Netbook OneXPlayer (git-fixes). - drm/panel: panel-simple: Fix proper bpc for AM-1280800N3TZQW-T00H (git-fixes). - drm/panel/raspberrypi-touchscreen: Avoid NULL deref if not initialised (git-fixes). - drm/panel/raspberrypi-touchscreen: Initialise the bridge in prepare (git-fixes). - drm/panel: simple: Add missing bus flags for Innolux G070Y2-L01 (git-fixes). - drm/panel: simple: Assign data from panel_dpi_probe() correctly (git-fixes). - drm/panel: simple: Fix Innolux G070Y2-L01 BPP settings (git-fixes). - drm/panfrost: Check for error num after setting mask (git-fixes). - drm/plane: Move range check for format_count earlier (git-fixes). - drm/radeon: fix a possible null pointer dereference (git-fixes). - drm/radeon: Fix backlight control on iMac 12,1 (git-fixes). - drm/rockchip: dw_hdmi: Do not leave clock enabled in error case (git-fixes). - drm/rockchip: vop: Correct RK3399 VOP register fields (git-fixes). - drm/rockchip: vop: fix possible null-ptr-deref in vop_bind() (git-fixes). - drm/selftests/test-drm_dp_mst_helper: Fix memory leak in sideband_msg_req_encode_decode (git-fixes). - drm/simpledrm: Add "panel orientation" property on non-upright mounted LCD panels (git-fixes). - drm: sti: do not use kernel-doc markers (git-fixes). - drm/sun4i: Fix crash during suspend after component bind failure (git-fixes). - drm/sun4i: mixer: Fix P010 and P210 format numbers (git-fixes). - drm/sun4i: Remove obsolete references to PHYS_OFFSET (bsc#1190786) - drm/syncobj: flatten dma_fence_chains on transfer (git-fixes). - drm/tegra: Add back arm_iommu_detach_device() (git-fixes). - drm/tegra: Fix reference leak in tegra_dsi_ganged_probe (git-fixes). - drm: use the lookup lock in drm_is_current_master (git-fixes). - drm/v3d/v3d_drv: Check for error num after setting mask (git-fixes). - drm/vc4: crtc: Fix runtime_pm reference counting (git-fixes). - drm/vc4: Fix deadlock on DSI device attach error (git-fixes). - drm/vc4: hdmi: Add debugfs prefix (bsc#1199163). - drm/vc4: hdmi: Allow DBLCLK modes even if horz timing is odd (git-fixes). - drm/vc4: hdmi: Fix build error for implicit function declaration (git-fixes). - drm/vc4: hdmi: Fix HPD GPIO detection (git-fixes). - drm/vc4: hdmi: Make sure the device is powered with CEC (git-fixes). - drm/vc4: hdmi: Split the CEC disable / enable functions in two (git-fixes). - drm/vc4: hvs: Fix frame count register readout (git-fixes). - drm/vc4: hvs: Reset muxes at probe time (git-fixes). - drm/vc4: txp: Do not set TXP_VSTART_AT_EOF (git-fixes). - drm/vc4: txp: Force alpha to be 0xff if it's disabled (git-fixes). - drm/vc4: Use pm_runtime_resume_and_get to fix pm_runtime_get_sync() usage (git-fixes). - drm/virtio: Ensure that objs is not NULL in virtio_gpu_array_put_free() (git-fixes). - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes (git-fixes). - drm/vmwgfx: Disable command buffers on svga3 without gbobjects (git-fixes). - drm/vmwgfx: Fix fencing on SVGAv3 (git-fixes). - drm/vmwgfx: Initialize drm_mode_fb_cmd2 (git-fixes). - drm/vmwgfx: Remove unused compile options (bsc#1190786) - drm/vmwgfx: validate the screen formats (git-fixes). - drm/vrr: Set VRR capable prop only if it is attached to connector (git-fixes). - dt-bindings: arm: bcm: fix BCM53012 and BCM53016 SoC strings (git-fixes). - dt-bindings: can: tcan4x5x: fix mram-cfg RX FIFO config (git-fixes). - dt-bindings: display: sitronix, st7735r: Fix backlight in example (git-fixes). - dt-bindings: gpio: altera: correct interrupt-cells (git-fixes). - dt-bindings: memory: mtk-smi: No need mediatek,larb-id for mt8167 (git-fixes). - dt-bindings: mtd: nand-controller: Fix a comment in the examples (git-fixes). - dt-bindings: mtd: nand-controller: Fix the reg property description (git-fixes). - dt-bindings: net: xgmac_mdio: Remove unsupported "bus-frequency" (git-fixes). - dt-bindings: PCI: xilinx-cpm: Fix reg property order (git-fixes). - dt-bindings: phy: uniphier-usb3hs: Fix incorrect clock-names and reset-names (git-fixes). - dt-bindings: pinctrl: aspeed-g6: remove FWQSPID group (git-fixes). - dt-bindings: pinctrl: pinctrl-microchip-sgpio: Fix example (git-fixes). - dt-bindings: spi: mxic: The interrupt property is not mandatory (git-fixes). - dt-bindings: usb: ehci: Increase the number of PHYs (git-fixes). - dt-bindings: usb: hcd: correct usb-device path (git-fixes). - dt-bindings: usb: ohci: Increase the number of PHYs (git-fixes). - dt-bindings: watchdog: Require samsung,syscon-phandle for Exynos7 (git-fixes). - e1000e: Correct NVM checksum verification flow (bsc#1191663). - e1000e: Fix possible HW unit hang after an s0ix exit (jsc#SLE-18382). - e1000e: Fix possible overflow in LTR decoding (git-fixes). - e1000e: Handshake with CSME starts from ADL platforms (git-fixes). - e1000e: Separate ADP board type from TGP (git-fixes). - EDAC/altera: Fix deferred probing (bsc#1190497). - EDAC/amd64: Add new register offset support and related changes (jsc#SLE-19026). - EDAC/amd64: Set memory type per DIMM (jsc#SLE-19026). - EDAC: Fix calculation of returned address and next offset in edac_align_ptr() (bsc#1190497). - EDAC/synopsys: Read the error count from the correct register (bsc#1190497). - EDAC/xgene: Fix deferred probing (bsc#1190497). - eeprom: ee1004: limit i2c reads to I2C_SMBUS_BLOCK_MAX (git-fixes). - efi: Add missing prototype for efi_capsule_setup_info (git-fixes). - efi: Do not import certificates from UEFI Secure Boot for T2 Macs (git-fixes). - efi: fix return value of __setup handlers (git-fixes). - efivars: Respect "block" flag in efivar_entry_set_safe() (git-fixes). - enable DRM_BOCHS as module (bsc#1200572) - epic100: fix use after free on rmmod (git-fixes). - ethernet/sfc: remove redundant rc variable (bsc#1196306). - exec: Force single empty string when argv is empty (bsc#1200571). - ext2: correct max file size computing (bsc#1197820). - ext4: avoid trim error on fs with small groups (bsc#1191271). - ext4: destroy ext4_fc_dentry_cachep kmemcache on module removal (bsc#1197917). - ext4: fix an use-after-free issue about data=journal writeback mode (bsc#1195482). - ext4: fix bug_on ext4_mb_use_inode_pa (bsc#1200810). - ext4: fix bug_on in __es_tree_search (bsc#1200809). - ext4: fix ext4_fc_stats trace point (git-fixes). - ext4: fix race condition between ext4_write and ext4_convert_inline_data (bsc#1200807). - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole (bsc#1200806). - ext4: make variable "count" signed (bsc#1200820). - ext4: reject the 'commit' option on ext2 filesystems (bsc#1200808). - extcon: Modify extcon device to be created after driver data is set (git-fixes). - extcon: ptn5150: Add queue work sync before driver release (git-fixes). - faddr2line: Fix overlapping text section failures, the sequel (git-fixes). - fbcon: Avoid 'cap' set but not used warning (bsc#1190786) - fbcon: Consistently protect deferred_takeover with console_lock() (git-fixes). - firewire: core: extend card->lock in fw_core_handle_bus_reset (git-fixes). - firewire: fix potential uaf in outbound_phy_packet_callback() (git-fixes). - firewire: remove check of list iterator against head past the loop body (git-fixes). - firmware: arm_ffa: Fix uuid parameter to ffa_partition_probe (git-fixes). - firmware: arm_ffa: Remove incorrect assignment of driver_data (git-fixes). - firmware: arm_scmi: Fix list protocols enumeration in the base protocol (git-fixes). - firmware: arm_scmi: Fix sorting of retrieved clock rates (git-fixes). - firmware: arm_scmi: Remove space in MODULE_ALIAS name (git-fixes). - firmware: arm_scmi: Validate BASE_DISCOVER_LIST_PROTOCOLS response (git-fixes). - firmware: dmi-sysfs: Fix memory leak in dmi_sysfs_register_handle (git-fixes). - firmware: google: Properly state IOMEM dependency (git-fixes). - firmware: qcom: scm: Remove reassignment to desc following initializer (git-fixes). - firmware: stratix10-svc: add missing callback parameter on RSU (git-fixes). - firmware: stratix10-svc: fix a missing check on list iterator (git-fixes). - firmware: sysfb: fix platform-device leak in error path (git-fixes). - firmware: ti_sci: Fix compilation failure when CONFIG_TI_SCI_PROTOCOL is not defined (git-fixes). - firmware: use kernel credentials when reading firmware (git-fixes). - Fix a warning about a malformed kernel doc comment in cifs (bsc#1193629). - fs: fd tables have to be multiples of BITS_PER_LONG (bsc#1200827). - fs: fix fd table size alignment properly (bsc#1200882). - fs: handle circular mappings correctly (bsc#1197918). - fsl_lpuart: Do not enable interrupts too early (git-fixes). - fsnotify: Do not insert unmergeable events in hashtable (bsc#1197922). - fsnotify: fix fsnotify hooks in pseudo filesystems (bsc#1195944 bsc#1195478). - fsnotify: fix wrong lockdep annotations (bsc#1200815). - ftrace: Clean up hash direct_functions on register failures (git-fixes). - fuse: fix fileattr op failure (bsc#1197292). - gen_init_cpio: fix short read file handling (bsc#1193289). - genirq/affinity: Consider that CPUs on nodes can be (git-fixes) - genirq: Synchronize interrupt thread startup (git-fixes) - gianfar: ethtool: Fix refcount leak in gfar_get_ts_info (git-fixes). - gma500: fix an incorrect NULL check on list iterator (git-fixes). - gpio: adp5588: Remove support for platform setup and teardown callbacks (git-fixes). - gpio: aggregator: Fix calling into sleeping GPIO controllers (git-fixes). - gpio: dwapb: Do not print error on -EPROBE_DEFER (git-fixes). - gpio: gpio-vf610: do not touch other bits when set the target bit (git-fixes). - gpiolib: acpi: Convert ACPI value of debounce to microseconds (git-fixes). - gpiolib: acpi: use correct format characters (git-fixes). - gpiolib: Never return internal error codes to user space (git-fixes). - gpiolib: of: fix bounds check for 'gpio-reserved-ranges' (git-fixes). - gpio: mvebu: drop pwm base assignment (git-fixes). - gpio: mvebu/pwm: Refuse requests with inverted polarity (git-fixes). - gpio: pca953x: fix irq_stat not updated when irq is disabled (irq_mask not set) (git-fixes). - gpio: pca953x: use the correct register address to do regcache sync (git-fixes). - gpio: Return EPROBE_DEFER if gc->to_irq is NULL (git-fixes). - gpio: Revert regression in sysfs-gpio (gpiolib.c) (git-fixes). - gpio: sifive: use the correct register to read output values (git-fixes). - gpio: tegra186: Fix chip_data type confusion (git-fixes). - gpio: ts4900: Do not set DAT and OE together (git-fixes). - gpio: visconti: Fix fwnode of GPIO IRQ (git-fixes). - gpio: winbond: Fix error code in winbond_gpio_get() (git-fixes). - gpu: host1x: Fix a memory leak in 'host1x_remove()' (git-fixes). - gpu: ipu-v3: Fix dev_dbg frequency output (git-fixes). - gup: Turn fault_in_pages_{readable,writeable} into fault_in_{readable,writeable} (git-fixes). - gve: Fix GFP flags when allocing pages (git-fixes). - gve: fix the wrong AdminQ buffer queue index check (git-fixes). - habanalabs: Add check for pci_enable_device (git-fixes). - habanalabs: fix possible memory leak in MMU DR fini (git-fixes). - hamradio: fix macro redefine warning (git-fixes). - hex2bin: fix access beyond string end (git-fixes). - HID: add mapping for KEY_ALL_APPLICATIONS (git-fixes). - HID: add mapping for KEY_DICTATE (git-fixes). - HID: Add support for open wheel and no attachment to T300 (git-fixes). - HID:Add support for UGTABLET WP5540 (git-fixes). - HID: amd_sfh: Add illuminance mask to limit ALS max value (git-fixes). - HID: amd_sfh: Correct the structure field name (git-fixes). - HID: amd_sfh: Modify the bus name (git-fixes). - HID: amd_sfh: Modify the hid name (git-fixes). - HID: bigben: fix slab-out-of-bounds Write in bigben_probe (git-fixes). - hide appended member supports_dynamic_smps_6ghz (git-fixes). - HID: elan: Fix potential double free in elan_input_configured (git-fixes). - HID: hid-led: fix maximum brightness for Dream Cheeky (git-fixes). - HID: hid-thrustmaster: fix OOB read in thrustmaster_interrupts (git-fixes). - HID: i2c-hid: fix GET/SET_REPORT for unnumbered reports (git-fixes). - HID: intel-ish-hid: Use dma_alloc_coherent for firmware update (git-fixes). - HID: logitech-dj: add new lightspeed receiver id (git-fixes). - HID: multitouch: add quirks to enable Lenovo X12 trackpoint (git-fixes). - HID: multitouch: Add support for Google Whiskers Touchpad (git-fixes). - HID: multitouch: fix Dell Precision 7550 and 7750 button type (bsc#1197243). - HID: vivaldi: fix sysfs attributes leak (git-fixes). - hinic: fix bug of wq out of bound access (git-fixes). - hv_balloon: rate-limit "Unhandled message" warning (git-fixes). - hv_netvsc: Add check for kvmalloc_array (git-fixes). - hv_utils: Add comment about max VMbus packet size in VSS driver (git-fixes). - hwmon: (dell-smm) Speed up setting of fan speed (git-fixes). - hwmon: (f71882fg) Fix negative temperature (git-fixes). - hwmon: Handle failure to register sensor with thermal zone correctly (git-fixes). - hwmon: (ibmaem) do not call platform_device_del() if platform_device_add() fails (git-fixes). - hwmon: (ltq-cputemp) restrict it to SOC_XWAY (git-fixes). - hwmon: (pmbus) Add mutex to regulator ops (git-fixes). - hwmon: (pmbus) Add Vin unit off handling (git-fixes). - hwmon: (pmbus) Check PEC support before reading other registers (git-fixes). - hwmon: (pmbus) Clear pmbus fault/warning bits after read (git-fixes). - hwmon: (pmbus) disable PEC if not enabled (git-fixes). - hwmon: (sch56xx-common) Replace WDOG_ACTIVE with WDOG_HW_RUNNING (git-fixes). - hwmon: (tmp401) Add OF device ID table (git-fixes). - hwrng: atmel - disable trng on failure path (git-fixes). - hwrng: cavium - Check health status while reading random data (git-fixes). - hwrng: cavium - HW_RANDOM_CAVIUM should depend on ARCH_THUNDER (git-fixes). - hwrng: nomadik - Change clk_disable to clk_disable_unprepare (git-fixes). - hwrng: omap3-rom - fix using wrong clk_disable() in omap_rom_rng_runtime_resume() (git-fixes). - i2c: at91: Initialize dma_buf in at91_twi_xfer() (git-fixes). - i2c: at91: use dma safe buffers (git-fixes). - i2c: bcm2835: Avoid clock stretching timeouts (git-fixes). - i2c: bcm2835: Fix the error handling in 'bcm2835_i2c_probe()' (git-fixes). - i2c: bcm2835: Use platform_get_irq() to get the interrupt (git-fixes). - i2c: brcmstb: fix support for DSL and CM variants (git-fixes). - i2c: cadence: Increase timeout per message if necessary (git-fixes). - i2c: designware: Use standard optional ref clock implementation (git-fixes). - i2c: dev: Force case user pointers in compat_i2cdev_ioctl() (git-fixes). - i2c: ismt: prevent memory corruption in ismt_access() (git-fixes). - i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging (git-fixes). - i2c: meson: Fix wrong speed use from probe (git-fixes). - i2c: mt7621: fix missing clk_disable_unprepare() on error in mtk_i2c_probe() (git-fixes). - i2c: mux: demux-pinctrl: do not deactivate a master that is not active (git-fixes). - i2c: npcm7xx: Add check for platform_driver_register (git-fixes). - i2c: npcm: Correct register access width (git-fixes). - i2c: npcm: Fix timeout calculation (git-fixes). - i2c: npcm: Handle spurious interrupts (git-fixes). - i2c: piix4: Add EFCH MMIO support for SMBus port select (git-fixes). - i2c: piix4: Add EFCH MMIO support to region request and release (git-fixes). - i2c: piix4: Add EFCH MMIO support to SMBus base address detect (git-fixes). - i2c: piix4: Enable EFCH MMIO for Family 17h+ (git-fixes). - i2c: piix4: Move port I/O region request/release code into functions (git-fixes). - i2c: piix4: Move SMBus controller base address detect into function (git-fixes). - i2c: piix4: Move SMBus port selection into function (git-fixes). - i2c: piix4: Replace hardcoded memory map size with a #define (git-fixes). - i2c: qcom-cci: do not delete an unregistered adapter (git-fixes). - i2c: qcom-cci: do not put a device tree node before i2c_add_adapter() (git-fixes). - i2c: rcar: fix PM ref counts in probe error paths (git-fixes). - i2c: xiic: Make bus names unique (git-fixes). - i40e: do not reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb (git-fixes). - i40e: Fix for failed to init adminq while VF reset (git-fixes). - i40e: Fix issue when maximum queues is exceeded (git-fixes). - i40e: Fix queues reservation for XDP (git-fixes). - i40e: Fix reset bw limit when DCB enabled with 1 TC (git-fixes). - i40e: Fix reset path while removing the driver (git-fixes). - i40e: fix unsigned stat widths (git-fixes). - i40e: i40e_main: fix a missing check on list iterator (git-fixes). - i40e: Increase delay to 1 s after global EMP reset (git-fixes). - i40e: remove dead stores on XSK hotpath (jsc#SLE-18378). - i40e: respect metadata on XSK Rx to skb (git-fixes). - i40e: stop disabling VFs due to PF error responses (jsc#SLE-18378). - iavf: Add waiting so the port is initialized in remove (jsc#SLE-18385). - iavf: Fix deadlock in iavf_reset_task (jsc#SLE-18385). - iavf: Fix double free in iavf_reset_task (jsc#SLE-18385). - iavf: Fix handling of vlan strip virtual channel messages (jsc#SLE-18385). - iavf: Fix hang during reboot/shutdown (jsc#SLE-18385). - iavf: Fix __IAVF_RESETTING state usage (jsc#SLE-18385). - iavf: Fix init state closure on remove (jsc#SLE-18385). - iavf: Fix locking for VIRTCHNL_OP_GET_OFFLOAD_VLAN_V2_CAPS (jsc#SLE-18385). - iavf: Fix missing check for running netdev (git-fixes). - iavf: Fix race in init state (jsc#SLE-18385). - iavf: Rework mutexes for better synchronisation (jsc#SLE-18385 stable-5.14.6). - IB/cma: Allow XRC INI QPs to set their local ACK timeout (git-fixes). - IB/cm: Cancel mad on the DREQ event when the state is MRA_REP_RCVD (git-fixes). - IB/cm: Release previously acquired reference counter in the cm_id_priv (git-fixes). - IB/hfi1: Allow larger MTU without AIP (git-fixes). - IB/hfi1: Fix AIP early init panic (git-fixes). - IB/hfi1: Fix alloc failure with larger txqueuelen (git-fixes). - IB/hfi1: Fix panic with larger ipoib send_queue_size (jsc#SLE-19242). - IB/hfi1: Fix tstats alloc and dealloc (git-fixes). - IB/mlx5: Expose NDR speed through MAD (bsc#1196930). - ibmvnic: do not release napi in __ibmvnic_open() (bsc#1195668 ltc#195811). - ibmvnic: fix race between xmit and reset (bsc#1197302 ltc#197259). - ibmvnic: Properly dispose of all skbs during a failover (bsc#1200925). - ibmvnic: schedule failover only if vioctl fails (bsc#1196400 ltc#195815). - IB/qib: Fix duplicate sysfs directory name (git-fixes). - IB/rdmavt: add lock to call to rvt_error_qp to prevent a race condition (git-fixes). - IB/rdmavt: Validate remote_addr during loopback atomic tests (git-fixes). - ice: allow creating VFs for !CONFIG_NET_SWITCHDEV (jsc#SLE-18375). - ice: check the return of ice_ptp_gettimex64 (git-fixes). - ice: clear cmd_type_offset_bsz for TX rings (jsc#SLE-18375). - ice: Clear default forwarding VSI during VSI release (git-fixes). - ice: clear stale Tx queue settings before configuring (git-fixes). - ice: do not allow to run ice_send_event_to_aux() in atomic ctx (git-fixes). - ice: do not reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb (git-fixes). - ice: Do not use GFP_KERNEL in atomic context (git-fixes). - ice: enable parsing IPSEC SPI headers for RSS (git-fixes). - ice: fix an error code in ice_cfg_phy_fec() (git-fixes). - ice: fix concurrent reset and removal of VFs (git-fixes). - ice: fix crash in switchdev mode (jsc#SLE-18375). - ice: Fix curr_link_speed advertised speed (git-fixes). - ice: Fix incorrect locking in ice_vc_process_vf_msg() (jsc#SLE-18375). - ice: fix IPIP and SIT TSO offload (git-fixes). - ice: fix NULL pointer dereference in ice_update_vsi_tx_ring_stats() (jsc#SLE-18375). - ice: fix PTP stale Tx timestamps cleanup (git-fixes). - ice: fix setting l4 port flag when adding filter (jsc#SLE-18375). - ice: fix use-after-free when deinitializing mailbox snapshot (git-fixes). - ice: initialize local variable 'tlv' (git-fixes). - ice: kabi protect ice_pf (bsc#1200502). - ice: Protect vf_state check by cfg_lock in ice_vc_process_vf_msg() (jsc#SLE-18375). - ice: respect metadata on XSK Rx to skb (git-fixes). - ice: synchronize_rcu() when terminating rings (git-fixes). - ice: xsk: Fix indexing in ice_tx_xsk_pool() (jsc#SLE-18375). - ice: xsk: fix VSI state check in ice_xsk_wakeup() (git-fixes). - igb: refactor XDP registration (git-fixes). - igc: avoid kernel warning when changing RX ring parameters (git-fixes). - igc: do not reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb (git-fixes). - igc: Fix BUG: scheduling while atomic (git-fixes). - igc: Fix infinite loop in release_swfw_sync (git-fixes). - igc: Fix suspending when PTM is active (jsc#SLE-18377). - igc: igc_read_phy_reg_gpy: drop premature return (git-fixes). - igc: igc_write_phy_reg_gpy: drop premature return (git-fixes). - iio:accel:bma180: rearrange iio trigger get and register (git-fixes). - iio: accel: fxls8962af: add padding to regmap for SPI (git-fixes). - iio:accel:kxcjk-1013: rearrange iio trigger get and register (git-fixes). - iio: accel: mma8452: ignore the return value of reset operation (git-fixes). - iio: accel: mma8452: use the correct logic to get mma8452_data (git-fixes). - iio:accel:mxc4005: rearrange iio trigger get and register (git-fixes). - iio: adc: ad7124: fix mask used for setting AIN_BUFP and AIN_BUFM bits (git-fixes). - iio: adc: ad7124: Remove shift from scan_type (git-fixes). - iio: adc: Add check for devm_request_threaded_irq (git-fixes). - iio: adc: adi-axi-adc: Fix refcount leak in adi_axi_adc_attach_client (git-fixes). - iio: adc: axp288: Override TS pin bias current for some models (git-fixes). - iio: adc: men_z188_adc: Fix a resource leak in an error handling path (git-fixes). - iio: adc: sc27xx: Fine tune the scale calibration values (git-fixes). - iio: adc: sc27xx: fix read big scale voltage not right (git-fixes). - iio: adc: stm32: Fix ADCs iteration in irq handler (git-fixes). - iio: adc: stm32: Fix IRQs on STM32F4 by removing custom spurious IRQs message (git-fixes). - iio: adc: stm32: fix maximum clock rate for stm32mp15x (git-fixes). - iio: adc: stmpe-adc: Fix wait_for_completion_timeout return value check (git-fixes). - iio: adc: ti-ads131e08: add missing fwnode_handle_put() in ads131e08_alloc_channels() (git-fixes). - iio: adc: tsc2046: fix memory corruption by preventing array overflow (git-fixes). - iio: adc: vf610: fix conversion mode sysfs node name (git-fixes). - iio: afe: rescale: Fix boolean logic bug (git-fixes). - iio: afe: rescale: use s64 for temporary scale calculations (git-fixes). - iio: buffer: Fix file related error handling in IIO_BUFFER_GET_FD_IOCTL (git-fixes). - iio:chemical:ccs811: rearrange iio trigger get and register (git-fixes). - iio: dac: ad5446: Fix read_raw not returning set value (git-fixes). - iio: dac: ad5592r: Fix the missing return value (git-fixes). - iio: dummy: iio_simple_dummy: check the return value of kstrdup() (git-fixes). - iio: Fix error handling for PM (git-fixes). - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up() (git-fixes). - iio:humidity:hts221: rearrange iio trigger get and register (git-fixes). - iio:imu:adis16480: fix buffering for devices with no burst mode (git-fixes). - iio:imu:bmi160: disable regulator in error path (git-fixes). - iio: imu: inv_icm42600: Fix I2C init possible nack (git-fixes). - iio: imu: st_lsm6dsx: wait for settling time in st_lsm6dsx_read_oneshot (git-fixes). - iio: inkern: apply consumer scale on IIO_VAL_INT cases (git-fixes). - iio: inkern: apply consumer scale when no channel scale is available (git-fixes). - iio: inkern: make a best effort on offset calculation (git-fixes). - iio: magnetometer: ak8975: Fix the error handling in ak8975_power_on() (git-fixes). - iio: magnetometer: yas530: Fix memchr_inv() misuse (git-fixes). - iio: mma8452: Fix probe failing when an i2c_device_id is used (git-fixes). - iio: mma8452: fix probe fail when device tree compatible is used (git-fixes). - iio: proximity: vl53l0x: Fix return value check of wait_for_completion_timeout (git-fixes). - iio: st_sensors: Add a local lock for protecting odr (git-fixes). - iio: trigger: sysfs: fix use-after-free on remove (git-fixes). - ima: Allow template selection with ima_template[_fmt]= after ima_hash= (git-fixes). - ima: Do not print policy rule with inactive LSM labels (git-fixes). - ima: fix reference leak in asymmetric_verify() (git-fixes). - ima: Remove ima_policy file before directory (git-fixes). - init: call time_init() before rand_initialize() (git-fixes). - init: Initialize noop_backing_dev_info early (bsc#1200822). - init/main.c: return 1 from handled __setup() functions (git-fixes). - initramfs: Check timestamp to prevent broken cpio archive (bsc#1193289). - inotify: show inotify mask flags in proc fdinfo (bsc#1200600). - Input: add bounds checking to input_set_capability() (git-fixes). - Input: aiptek - properly check endpoint type (git-fixes). - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag (git-fixes). - Input: clear BTN_RIGHT/MIDDLE on buttonpads (git-fixes). - Input: elan_i2c: Add deny list for Lenovo Yoga Slim 7 (bsc#1193064). - Input: elan_i2c - fix regulator enable count imbalance after suspend/resume (git-fixes). - Input: elan_i2c - move regulator_[en|dis]able() out of elan_[en|dis]able_power() (git-fixes). - Input: gpio-keys - cancel delayed work only in case of GPIO (git-fixes). - Input: ili210x - fix reset timing (git-fixes). - Input: omap4-keypad - fix pm_runtime_get_sync() error checking (git-fixes). - Input: samsung-keypad - properly state IOMEM dependency (git-fixes). - Input: soc_button_array - also add Lenovo Yoga Tablet2 1051F to dmi_use_low_level_irq (git-fixes). - Input: sparcspkr - fix refcount leak in bbc_beep_probe (git-fixes). - Input: stmfts - do not leave device disabled in stmfts_input_open (git-fixes). - Input: stmfts - fix reference leak in stmfts_input_open (git-fixes). - Input: synaptics - enable InterTouch on ThinkPad T14/P14s Gen 1 AMD (git-fixes). - Input: synaptics: retry query upon error (bsc#1194086). - Input: wm97xx: Simplify resource management (git-fixes). - Input: zinitix - do not report shadow fingers (git-fixes). - integrity: check the return value of audit_log_start() (git-fixes). - iocost: do not reset the inuse weight of under-weighted debtors (git-fixes). - iocost: Fix divide-by-zero on donation from low hweight cgroup (bsc#1198014). - iomap: iomap_write_failed fix (bsc#1200829). - iommu/amd: Fix loop timeout issue in iommu_ga_log_enable() (git-fixes). - iommu/amd: Increase timeout waiting for GA log enablement (bsc#1199052). - iommu/amd: Remove useless irq affinity notifier (git-fixes). - iommu/amd: Restore GA log/tail pointer on host resume (git-fixes). - iommu/amd: X2apic mode: mask/unmask interrupts on suspend/resume (git-fixes). - iommu/amd: X2apic mode: re-enable after resume (git-fixes). - iommu/amd: X2apic mode: setup the INTX registers on mask/unmask (git-fixes). - iommu: arm-smmu: disable large page mappings for Nvidia arm-smmu (bsc#1198826). - iommu/arm-smmu-qcom: Fix TTBR0 read (git-fixes). - iommu: Extend mutex lock scope in iommu_probe_device() (git-fixes). - iommu/ioasid: Introduce a helper to check for valid PASIDs (jsc#SLE-24350). - iommu/io-pgtable-arm: Fix table descriptor paddr formatting (git-fixes). - iommu/io-pgtable-arm-v7s: Add error handle for page table allocation failure (git-fixes). - iommu/iova: Fix race between FQ timeout and teardown (git-fixes). - iommu/sva: Assign a PASID to mm on PASID allocation and free it on mm exit (jsc#SLE-24350). - iommu/sva: Rename CONFIG_IOMMU_SVA_LIB to CONFIG_IOMMU_SVA (jsc#SLE-24350). - iommu/vt-d: Fix potential memory leak in intel_setup_irq_remapping() (git-fixes). - ionic: add FW_STOPPING state (git-fixes). - ionic: Allow flexibility for error reporting on dev commands (git-fixes). - ionic: better handling of RESET event (git-fixes). - ionic: catch transition back to RUNNING with fw_generation 0 (git-fixes). - ionic: Cleanups in the Tx hotpath code (git-fixes). - ionic: Correctly print AQ errors if completions are not received (git-fixes). - ionic: disable napi when ionic_lif_init() fails (git-fixes). - ionic: Do not send reset commands if FW isn't running (git-fixes). - ionic: fix missing pci_release_regions() on error in ionic_probe() (git-fixes). - ionic: fix type complaint in ionic_dev_cmd_clean() (git-fixes). - ionic: fix up printing of timeout error (git-fixes). - ionic: Prevent filter add/del err msgs when the device is not available (git-fixes). - ionic: Query FW when getting VF info via ndo_get_vf_config (git-fixes). - ionic: remove the dbid_inuse bitmap (git-fixes). - ionic: replace set_vf data with union (git-fixes). - ionic: start watchdog after all is setup (git-fixes). - ionic: stretch heartbeat detection (git-fixes). - io_uring: add more locking annotations for submit (bsc#1199011). - io_uring: avoid touching inode in rw prep (bsc#1199011). - io_uring: be smarter about waking multiple CQ ring waiters (bsc#1199011). - io_uring: cache __io_free_req()'d requests (bsc#1199011). - io_uring: clean io-wq callbacks (bsc#1199011). - io_uring: clean up tctx_task_work() (bsc#1199011). - io_uring: deduplicate open iopoll check (bsc#1199011). - io_uring: do not halt iopoll too early (bsc#1199011). - io_uring: drop exec checks from io_req_task_submit (bsc#1199011). - io_uring: extract a helper for ctx quiesce (bsc#1199011). - io_uring: Fix undefined-behaviour in io_issue_sqe (bsc#1199011). - io_uring: improve ctx hang handling (bsc#1199011). - io_uring: inline fixed part of io_file_get() (bsc#1199011). - io_uring: inline io_free_req_deferred (bsc#1199011). - io_uring: inline io_poll_remove_waitqs (bsc#1199011). - io_uring: inline struct io_comp_state (bsc#1199011). - io_uring: kill unused IO_IOPOLL_BATCH (bsc#1199011). - io_uring: move io_fallback_req_func() (bsc#1199011). - io_uring: move io_put_task() definition (bsc#1199011). - io_uring: move io_rsrc_node_alloc() definition (bsc#1199011). - io_uring: optimise io_cqring_wait() hot path (bsc#1199011). - io_uring: optimise putting task struct (bsc#1199011). - io_uring: refactor io_alloc_req (bsc#1199011). - io_uring: remove extra argument for overflow flush (bsc#1199011). - io_uring: remove file batch-get optimisation (bsc#1199011). - io_uring: remove IRQ aspect of io_ring_ctx completion lock (bsc#1199011). - io_uring: remove redundant args from cache_free (bsc#1199011). - io_uring: remove unnecessary PF_EXITING check (bsc#1199011). - io_uring: rename io_file_supports_async() (bsc#1199011). - io_uring: run linked timeouts from task_work (bsc#1199011). - io_uring: run regular file completions from task_work (bsc#1199011). - io_uring: run timeouts from task_work (bsc#1199011). - io_uring: use inflight_entry instead of compl.list (bsc#1199011). - io_uring: use kvmalloc for fixed files (bsc#1199011). - io-wq: get rid of FIXED worker flag (bsc#1199011). - io-wq: make worker creation resilient against signals (bsc#1199011). - io-wq: move nr_running and worker_refs out of wqe->lock protection (bsc#1199011). - io-wq: only exit on fatal signals (bsc#1199011). - io-wq: provide a way to limit max number of workers (bsc#1199011). - io-wq: split bounded and unbounded work into separate lists (bsc#1199011). - io-wq: wqe and worker locks no longer need to be IRQ safe (bsc#1199011). - ipc/sem: do not sleep with a spin lock held (bsc#1198412). - ipheth: fix EOVERFLOW in ipheth_rcvbulk_callback (git-fixes). - ipmi: bail out if init_srcu_struct fails (git-fixes). - ipmi: Fix pr_fmt to avoid compilation issues (git-fixes). - ipmi: Fix UAF when uninstall ipmi_si and ipmi_msghandler module (git-fixes). - ipmi:ssif: Check for NULL msg when handling events and messages (git-fixes). - ipvs: add sysctl_run_estimation to support disable estimation (bsc#1195504). - ipw2x00: Fix potential NULL dereference in libipw_xmit() (git-fixes). - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x (git-fixes). - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value (git-fixes). - irqchip/aspeed-scu-ic: Fix irq_of_parse_and_map() return value (git-fixes). - irqchip/exiu: Fix acknowledgment of edge triggered interrupts (git-fixes). - irqchip/gic, gic-v3: Prevent GSI to SGI translations (git-fixes). - irqchip/gic/realview: Fix refcount leak in realview_gic_of_init (git-fixes). - irqchip/gic-v3: Ensure pseudo-NMIs have an ISB between ack and handling (git-fixes). - irqchip/gic-v3: Fix error handling in gic_populate_ppi_partitions (git-fixes). - irqchip/gic-v3: Fix GICR_CTLR.RWP polling (git-fixes). - irqchip/gic-v3: Fix refcount leak in gic_populate_ppi_partitions (git-fixes). - irqchip/gic-v4: Wait for GICR_VPENDBASER.Dirty to clear before descheduling (git-fixes). - irqchip: irq-xtensa-mx: fix initial IRQ affinity (git-fixes). - irqchip/nvic: Release nvic_base upon failure (git-fixes). - irqchip/qcom-pdc: Fix broken locking (git-fixes). - irqchip/realtek-rtl: Fix refcount leak in map_interrupts (git-fixes). - irqchip/realtek-rtl: Service all pending interrupts (git-fixes). - isdn: hfcpci: check the return value of dma_set_mask() in setup_hw() (git-fixes). - ivtv: fix incorrect device_caps for ivtvfb (git-fixes). - iwlwifi: do not advertise TWT support (git-fixes). - iwlwifi: Fix -EIO error code that is never returned (git-fixes). - iwlwifi: fix use-after-free (git-fixes). - iwlwifi: iwl-dbg: Use del_timer_sync() before freeing (git-fixes). - iwlwifi: mvm: align locking in D3 test debugfs (git-fixes). - iwlwifi: mvm: check debugfs_dir ptr before use (git-fixes). - iwlwifi: mvm: Correctly set fragmented EBS (git-fixes). - iwlwifi: mvm: Do not call iwl_mvm_sta_from_mac80211() with NULL sta (git-fixes). - iwlwifi: mvm: do not crash on invalid rate w/o STA (git-fixes). - iwlwifi: mvm: do not iterate unadded vifs when handling FW SMPS req (git-fixes). - iwlwifi: mvm: do not send SAR GEO command for 3160 devices (git-fixes). - iwlwifi: mvm: Fix an error code in iwl_mvm_up() (git-fixes). - iwlwifi: mvm: fix assert 1F04 upon reconfig (git-fixes). - iwlwifi: mvm: move only to an enabled channel (git-fixes). - iwlwifi: pcie: fix locking when "HW not ready" (git-fixes). - iwlwifi: pcie: gen2: fix locking when "HW not ready" (git-fixes). - iwlwifi: yoyo: remove DBGI_SRAM address reset writing (git-fixes). - ixgbe: do not reserve excessive XDP_PACKET_HEADROOM on XSK Rx to skb (git-fixes). - ixgbe: ensure IPsec VF - PF compatibility (git-fixes). - ixgbe: respect metadata on XSK Rx to skb (git-fixes). - ixgbe: xsk: change !netif_carrier_ok() handling in ixgbe_xmit_zc() (git-fixes). - jbd2: Fake symbols defined under CONFIG_JBD2_DEBUG (bsc#1198971). - jfs: fix divide error in dbNextAG (bsc#1200828). - kABI: Fix kABI after "x86/mm/cpa: Generalize __set_memory_enc_pgtable()" (jsc#SLE-19924). - kABI fix of sysctl_run_estimation (git-fixes). - kABI: fix rndis_parameters locking (git-fixes). - kABI: ivtv: restore caps member (git-fixes). - kabi/severities: allow dropping a few invalid exported symbols (bsc#1201218) - kabi/severities: Ignore arch/x86/kvm except for kvm_x86_ops Handle this like in previous SLE kernels. - kABI workaround for fxls8962af iio accel drivers (git-fixes). - kABI workaround for pci quirks (git-fixes). - kconfig: fix failing to generate auto.conf (git-fixes). - kconfig: let 'shell' return enough output for deep path names (git-fixes). - kernel/fork: Initialize mm's PASID (jsc#SLE-24350). - kernel/resource: Introduce request_mem_region_muxed() (git-fixes). - kexec_file: drop weak attribute from arch_kexec_apply_relocations[_add] (git-fixes). - KEYS: asymmetric: enforce that sig algo matches key algo (git-fixes). - KEYS: asymmetric: properly validate hash_algo and encoding (git-fixes). - KEYS: fix length validation in keyctl_pkey_params_get_2() (git-fixes). - KEYS: trusted: Avoid calling null function trusted_key_exit (git-fixes). - KEYS: trusted: Fix trusted key backends when building as module (git-fixes). - KEYS: trusted: tpm2: Fix migratable logic (git-fixes). - kprobes: Add kretprobe_find_ret_addr() for searching return address (bsc#1193277). - kprobes: Enable stacktrace from pt_regs in kretprobe handler (bsc#1193277). - kprobes: treewide: Cleanup the error messages for kprobes (bsc#1193277). - kprobes: treewide: Make it harder to refer kretprobe_trampoline directly (bsc#1193277). - kprobes: treewide: Remove trampoline_address from kretprobe_trampoline_handler() (bsc#1193277). - kprobes: treewide: Replace arch_deref_entry_point() with dereference_symbol_descriptor() (bsc#1193277). - kprobes: treewide: Use 'kprobe_opcode_t *' for the code address in get_optimized_kprobe() (bsc#1193277). - kselftest/arm64: bti: force static linking (git-fixes). - kunit: tool: Import missing importlib.abc (git-fixes). - KVM: arm64: Avoid consuming a stale esr value when SError occur (git-fixes). - KVM: arm64: Drop unused workaround_flags vcpu field (git-fixes). - KVM: arm64: pkvm: Use the mm_ops indirection for cache maintenance (git-fixes). - KVM: arm64: Use shadow SPSR_EL1 when injecting exceptions on !VHE (git-fixes). - KVM: Clean up benign vcpu->cpu data races when kicking vCPUs (git-fixes). - KVM: Ensure local memslot copies operate on up-to-date arch-specific data (git-fixes). - KVM: fix wrong exception emulation in check_rdtsc (git-fixes). - KVM: LAPIC: Drop pending LAPIC timer injection when canceling the timer (git-fixes). - KVM: nVMX: Abide to KVM_REQ_TLB_FLUSH_GUEST request on nested vmentry/vmexit (git-fixes). - KVM: nVMX: Clear IDT vectoring on nested VM-Exit for double/triple fault (git-fixes). - KVM: nVMX: Do not clear CR3 load/store exiting bits if L1 wants 'em (git-fixes). - KVM: nVMX: Emulate guest TLB flush on nested VM-Enter with new vpid12 (git-fixes). - KVM: nVMX: Ensure vCPU honors event request if posting nested IRQ fails (git-fixes). - KVM: nVMX: Flush current VPID (L1 vs. L2) for KVM_REQ_TLB_FLUSH_GUEST (git-fixes). - KVM: nVMX: Leave most VM-Exit info fields unmodified on failed VM-Entry (git-fixes). - KVM: PPC: Fix TCE handling for VFIO (bsc#1061840 git-fixes). - KVM: s390: Ensure kvm_arch_no_poll() is read once when blocking vCPU (git-fixes). - KVM: s390: pv: add macros for UVC CC values (git-fixes). - KVM: s390: pv: avoid stalls when making pages secure (git-fixes). - KVM: s390: vsie/gmap: reduce gmap_rmap overhead (git-fixes). - KVM: selftests: Do not skip L2's VMCALL in SMM test for SVM guest (bsc#1194523). - KVM: selftests: Re-enable access_tracking_perf_test (bsc#1194526). - KVM: SEV: accept signals in sev_lock_two_vms (bsc#1194526). - KVM: SEV: do not take kvm->lock when destroying (bsc#1194526). - KVM: SEV: Fall back to vmalloc for SEV-ES scratch area if necessary (bsc#1194526). - KVM: SEV: Mark nested locking of kvm->lock (bsc#1194526). - KVM: SEV: Return appropriate error codes if SEV-ES scratch setup fails (bsc#1194526). - KVM: SVM: Allow AVIC support on system w/ physical APIC ID > 255 (bsc#1193823). - KVM: SVM: Do not terminate SEV-ES guests on GHCB validation failure (bsc#1194526). - KVM: SVM: drop unnecessary code in svm_hv_vmcb_dirty_nested_enlightenments() (git-fixes). - KVM: SVM: Emulate #INIT in response to triple fault shutdown (git-fixes). - KVM: SVM: Fix kvm_cache_regs.h inclusions for is_guest_mode() (git-fixes). - KVM: SVM: hyper-v: Enable Enlightened MSR-Bitmap support for real (git-fixes). - KVM: SVM: Never reject emulation due to SMAP errata for !SEV guests (git-fixes). - KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak (git-fixes). - KVM: VMX: Do not unblock vCPU w/ Posted IRQ if IRQs are disabled in guest (git-fixes). - KVM: VMX: Fold ept_update_paging_mode_cr0() back into vmx_set_cr0() (git-fixes). - KVM: VMX: Invert handling of CR0.WP for EPT without unrestricted guest (git-fixes). - KVM: VMX: Read Posted Interrupt "control" exactly once per loop iteration (git-fixes). - KVM: VMX: Refresh list of user return MSRs after setting guest CPUID (git-fixes). - KVM: VMX: Remove defunct "nr_active_uret_msrs" field (git-fixes). - KVM: VMX: Set failure code in prepare_vmcs02() (git-fixes). - KVM: VMX: Skip pointless MSR bitmap update when setting EFER (git-fixes). - KVM: VMX: Wake vCPU when delivering posted IRQ even if vCPU == this vCPU (git-fixes). - KVM: x86: Assume a 64-bit hypercall for guests with protected state (git-fixes). - kvm: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU (git-fixes). - KVM: x86: Do not force set BSP bit when local APIC is managed by userspace (git-fixes). - KVM: x86: Do not mark all registers as avail/dirty during RESET/INIT (git-fixes). - KVM: x86: do not print when fail to read/write pv eoi memory (git-fixes). - KVM: x86: Drop guest CPUID check for host initiated writes to MSR_IA32_PERF_CAPABILITIES (git-fixes). - KVM: x86: Drop WARNs that assert a triple fault never "escapes" from L2 (git-fixes). - KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() (git-fixes). - KVM: X86: Ensure that dirty PDPTRs are loaded (git-fixes). - KVM: x86: Exit to userspace if emulation prepared a completion callback (git-fixes). - KVM: x86: Fix emulation in writing cr8 (git-fixes). - KVM: X86: Fix missed remote tlb flush in rmap_write_protect() (git-fixes). - KVM: x86: Fix uninitialized eoi_exit_bitmap usage in vcpu_load_eoi_exitmap() (git-fixes). - KVM: x86: Handle 32-bit wrap of EIP for EMULTYPE_SKIP with flat code seg (git-fixes). - KVM: x86: hyper-v: Fix the maximum number of sparse banks for XMM fast TLB flush hypercalls (git-fixes). - KVM: x86: Ignore sparse banks size for an "all CPUs", non-sparse IPI req (git-fixes). - KVM: x86: Mark all registers as avail/dirty at vCPU creation (git-fixes). - KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP (git-fixes). - KVM: x86/mmu: Check for present SPTE when clearing dirty bit in TDP MMU (git-fixes). - KVM: x86/mmu: Complete prefetch for trailing SPTEs for direct, legacy MMU (git-fixes). - KVM: x86/mmu: Fix TLB flush range when handling disconnected pt (git-fixes). - KVM: x86/mmu: Fix write-protection of PTs mapped by the TDP MMU (git-fixes). - KVM: x86/mmu: Passing up the error state of mmu_alloc_shadow_roots() (git-fixes). - KVM: x86/mmu: Pass parameter flush as false in kvm_tdp_mmu_zap_collapsible_sptes() (git-fixes). - KVM: x86/mmu: Remove spurious TLB flushes in TDP MMU zap collapsible path (git-fixes). - KVM: x86/mmu: Skip tlb flush if it has been done in zap_gfn_range() (git-fixes). - KVM: x86/mmu: Update number of zapped pages even if page list is stable (git-fixes). - KVM: x86/mmu: Use yield-safe TDP MMU root iter in MMU notifier unmapping (git-fixes). - KVM: x86: nSVM: restore the L1 host state prior to resuming nested guest on SMM exit (git-fixes). - KVM: x86: nSVM: skip eax alignment check for non-SVM instructions (git-fixes). - KVM: x86: nSVM: test eax for 4K alignment for GP errata workaround (git-fixes). - KVM: x86: Pend KVM_REQ_APICV_UPDATE during vCPU creation to fix a race (git-fixes). - KVM: x86/pmu: Fix reserved bits for AMD PerfEvtSeln register (git-fixes). - KVM: x86/pmu: Use AMD64_RAW_EVENT_MASK for PERF_TYPE_RAW (git-fixes). - KVM: x86: Register Processor Trace interrupt hook iff PT enabled in guest (git-fixes). - KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs (git-fixes). - KVM: x86: SVM: do not set VMLOAD/VMSAVE intercepts on vCPU reset (git-fixes). - KVM: x86: SVM: fix avic spec based definitions again (bsc#1193823 jsc#SLE-24549). - KVM: x86: SVM: move avic definitions from AMD's spec to svm.h (bsc#1193823 jsc#SLE-24549). - KVM: X86: Synchronize the shadow pagetable before link it (git-fixes). - KVM: x86: Update vCPU's runtime CPUID on write to MSR_IA32_XSS (git-fixes). - KVM: x86: Wait for IPIs to be delivered when handling Hyper-V TLB flush hypercall (git-fixes). - lib: bitmap: fix many kernel-doc warnings (git-fixes). - libbpf: Free up resources used by inner map definition (git-fixes). - lib/iov_iter: initialize "flags" in new pipe_buffer (git-fixes). - libsubcmd: Fix use-after-free for realloc(..., 0) (git-fixes). - linux/dim: Fix divide by 0 in RDMA DIM (git-fixes). - list: fix a data-race around ep->rdllist (git-fixes). - list: introduce list_is_head() helper and re-use it in list.h (git-fixes). - list: test: Add a test for list_is_head() (git-fixes). - livepatch: Do not block removal of patches that are safe to unload (bsc#1071995). - locking: Make owner_on_cpu() into linux/sched.h (bsc#1190137 bsc#1189998). - locking: Remove rt_rwlock_is_contended() (bsc#1190137 bsc#1189998). - locking/rtmutex: Add rt_mutex_lock_nest_lock() and rt_mutex_lock_killable() (bsc#1190137 bsc#1189998). - locking/rtmutex: Squash self-deadlock check for ww_rt_mutex (bsc#1190137 bsc#1189998). - locking/rwlocks: introduce write_lock_nested (bsc#1189998). - LSM: general protection fault in legacy_parse_param (git-fixes). - lz4: fix LZ4_decompress_safe_partial read out of bound (git-fixes). - mac80211: fix EAPoL rekey fail in 802.3 rx path (git-fixes). - mac80211: fix forwarded mesh frames AC and queue selection (git-fixes). - mac80211: fix potential double free on mesh join (git-fixes). - mac80211: fix rx reordering with non explicit / psmp ack policy (git-fixes). - mac80211_hwsim: call ieee80211_tx_prepare_skb under RCU protection (git-fixes). - mac80211_hwsim: initialize ieee80211_tx_info at hw_scan_work (git-fixes). - mac80211_hwsim: report NOACK frames in tx_status (git-fixes). - mac80211: minstrel_ht: fix where rate stats are stored (fixes debugfs output) (git-fixes). - mac80211: mlme: check for null after calling kmemdup (git-fixes). - mac80211: refuse aggregations sessions before authorized (git-fixes). - mac80211: Remove a couple of obsolete TODO (git-fixes). - mac80211: Reset MBSSID parameters upon connection (git-fixes). - mac80211: treat some SAE auth steps as final (git-fixes). - mac80211: upgrade passive scan to active scan on DFS channels after beacon rx (git-fixes). - macros.kernel-source: Fix conditional expansion. Fixes: bb95fef3cf19 ("rpm: Use bash for %() expansion (jsc#SLE-18234).") - macvlan: Fix leaking skb in source mode with nodst option (git-fixes). - mailbox: change mailbox-mpfs compatible string (git-fixes). - mailbox: imx: fix crash in resume on i.mx8ulp (git-fixes). - mailbox: imx: fix wakeup failure from freeze mode (git-fixes). - mailbox: tegra-hsp: Flush whole channel (git-fixes). - maple: fix wrong return value of maple_bus_init() (git-fixes). - md: Do not set mddev private to NULL in raid0 pers->free (git-fixes). - md: fix an incorrect NULL check in does_sb_need_changing (git-fixes). - md: fix an incorrect NULL check in md_reload_sb (git-fixes). - md: fix double free of io_acct_set bioset (git-fixes). - md: fix update super 1.0 on rdev size change (git-fixes). - md: Move alloc/free acct bioset in to personality (git-fixes). - md/raid5: play nice with PREEMPT_RT (bsc#1189998). - media: aspeed: Correct value for h-total-pixels (git-fixes). - media: atmel: atmel-isc-base: report frame sizes as full supported range (git-fixes). - media: atmel: atmel-isc: Fix PM disable depth imbalance in atmel_isc_probe (git-fixes). - media: atmel: atmel-sama5d2-isc: fix wrong mask in YUYV format check (git-fixes). - media: atmel: atmel-sama7g5-isc: fix ispck leftover (git-fixes). - media: atomisp: fix bad usage at error handling logic (git-fixes). - media: atomisp: fix dummy_ptr check to avoid duplicate active_bo (git-fixes). - media: atomisp_gmin_platform: Add DMI quirk to not turn AXP ELDO2 regulator off on some boards (git-fixes). - media: bttv: fix WARNING regression on tunerless devices (git-fixes). - media: camss: csid-170: do not enable unused irqs (git-fixes). - media: camss: csid-170: fix non-10bit formats (git-fixes). - media: camss: csid-170: remove stray comment (git-fixes). - media: camss: csid-170: set the right HALT_CMD when disabled (git-fixes). - media: camss: vfe-170: fix "VFE halt timeout" error (git-fixes). - media: ccs-core.c: fix failure to call clk_disable_unprepare (git-fixes). - media: cec-adap.c: fix is_configuring state (git-fixes). - media: cedrus: h264: Fix neighbour info buffer size (git-fixes). - media: cedrus: H265: Fix neighbour info buffer size (git-fixes). - media: coda: Fix missing put_device() call in coda_get_vdoa_data (git-fixes). - media: cx25821: Fix the warning when removing the module (git-fixes). - media: cx88-mpeg: clear interrupt status register before streaming video (git-fixes). - media: davinci: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM enable (git-fixes). - media: davinci: vpif: fix unbalanced runtime PM get (git-fixes). - media: davinci: vpif: fix use-after-free on driver unbind (git-fixes). - media: doc: pixfmt-rgb: Fix V4L2_PIX_FMT_BGR24 format description (git-fixes). - media: doc: pixfmt-yuv: Fix V4L2-PIX-FMT-Y10P format (git-fixes). - media: em28xx: initialize refcount before kref_get (git-fixes). - media: gpio-ir-tx: fix transmit with long spaces on Orange Pi PC (git-fixes). - media: hantro: Empty encoder capture buffers by default (git-fixes). - media: hantro: Fix overfill bottom register field name (git-fixes). - media: hantro: HEVC: Fix tile info buffer value computation (git-fixes). - media: hantro: HEVC: unconditionnaly set pps_{cb/cr}_qp_offset values (git-fixes). - media: hdpvr: initialize dev->worker at hdpvr_register_videodev (git-fixes). - media: i2c: max9286: fix kernel oops when removing module (git-fixes). - media: i2c: max9286: Use dev_err_probe() helper (git-fixes). - media: i2c: max9286: Use "maxim,gpio-poc" property (git-fixes). - media: i2c: ov5648: Fix lockdep error (git-fixes). - media: i2c: ov5648: fix wrong pointer passed to IS_ERR() and PTR_ERR() (git-fixes). - media: i2c: rdacm2x: properly set subdev entity function (git-fixes). - media: imon: reorganize serialization (git-fixes). - media: imx-jpeg: fix a bug of accessing array out of bounds (git-fixes). - media: imx-jpeg: Prevent decoding NV12M jpegs into single-planar buffers (git-fixes). - media: iommu/mediatek: Add device_link between the consumer and the larb devices (git-fixes). - media: iommu/mediatek: Return ENODEV if the device is NULL (git-fixes). - media: iommu/mediatek-v1: Free the existed fwspec if the master dev already has (git-fixes). - media: ir_toy: free before error exiting (git-fixes). - media: media-entity.h: Fix documentation for media_create_intf_link (git-fixes). - media: mexon-ge2d: fixup frames size in registers (git-fixes). - media: mtk-vcodec: potential dereference of null pointer (git-fixes). - media: omap3isp: Use struct_group() for memcpy() region (git-fixes). - media: ov5640: Fix set format, v4l2_mbus_pixelcode not updated (git-fixes). - media: ov5648: Do not pack controls struct (git-fixes). - media: ov6650: Add try support to selection API operations (git-fixes). - media: ov6650: Fix crop rectangle affected by set format (git-fixes). - media: ov6650: Fix set format try processing path (git-fixes). - media: ov7670: remove ov7670_power_off from ov7670_remove (git-fixes). - media: pci: cx23885: Fix the error handling in cx23885_initdev() (git-fixes). - media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init (git-fixes). - media: Revert "media: em28xx: add missing em28xx_close_extension" (git-fixes). - media: rga: fix possible memory leak in rga_probe (git-fixes). - media: rkvdec: h264: Fix bit depth wrap in pps packet (git-fixes). - media: rkvdec: h264: Fix dpb_valid implementation (git-fixes). - media: rkvdec: Stop overclocking the decoder (git-fixes). - media: rockchip/rga: do proper error checking in probe (git-fixes). - media: saa7134: fix incorrect use to determine if list is empty (git-fixes). - media: staging: media: imx: imx7-mipi-csis: Make subdev name unique (git-fixes). - media: staging: media: rkvdec: Make use of the helper function devm_platform_ioremap_resource() (git-fixes). - media: staging: media: zoran: calculate the right buffer number for zoran_reap_stat_com (git-fixes). - media: staging: media: zoran: fix usage of vb2_dma_contig_set_max_seg_size (git-fixes). - media: staging: media: zoran: fix various V4L2 compliance errors (git-fixes). - media: staging: media: zoran: move videodev alloc (git-fixes). - media: stk1160: If start stream fails, return buffers with VB2_BUF_STATE_QUEUED (git-fixes). - media: ti-vpe: cal: Fix a NULL pointer dereference in cal_ctx_v4l2_init_formats() (git-fixes). - media: usb: go7007: s2250-board: fix leak in probe() (git-fixes). - media: uvcvideo: Fix missing check to determine if element is found in list (git-fixes). - media: v4l2-core: Initialize h264 scaling matrix (git-fixes). - media: v4l2-mem2mem: Apply DST_QUEUE_OFF_BASE on MMAP buffers across ioctls (git-fixes). - media: v4l: Avoid unaligned access warnings when printing 4cc modifiers (git-fixes). - media: venus: hfi: avoid null dereference in deinit (git-fixes). - media: venus: hfi_cmds: List HDR10 property as unsupported for v1 and v3 (git-fixes). - media: videobuf2: Fix the size printk format (git-fixes). - media: video/hdmi: handle short reads of hdmi info frame (git-fixes). - media: vidtv: Check for null return of vzalloc (git-fixes). - mei: avoid iterator usage outside of list_for_each_entry (git-fixes). - mei: hbm: drop capability response on early shutdown (git-fixes). - mei: me: add Alder Lake N device id (git-fixes). - mei: me: add raptor lake point S DID (git-fixes). - mei: me: disable driver on the ign firmware (git-fixes). - memblock: fix memblock_phys_alloc() section mismatch error (git-fixes). - memory: atmel-ebi: Fix missing of_node_put in atmel_ebi_probe (git-fixes). - memory: emif: Add check for setup_interrupts (git-fixes). - memory: emif: check the pointer temp in get_device_details() (git-fixes). - memory: fsl_ifc: populate child nodes of buses and mfd devices (git-fixes). - memory: mtk-smi: Add error handle for smi_probe (git-fixes). - memory: renesas-rpc-if: Fix HF/OSPI data transfer in Manual Mode (git-fixes). - memory: renesas-rpc-if: fix platform-device leak in error path (git-fixes). - memory: samsung: exynos5422-dmc: Avoid some over memory allocation (git-fixes). - memory: samsung: exynos5422-dmc: Fix refcount leak in of_get_dram_timings (git-fixes). - mfd: asic3: Add missing iounmap() on error asic3_mfd_probe (git-fixes). - mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe() (git-fixes). - mfd: exynos-lpass: Drop unneeded syscon.h include (git-fixes). - mfd: ipaq-micro: Fix error check return value of platform_get_irq() (git-fixes). - mfd: mc13xxx: Add check for mc13xxx_irq_request (git-fixes). - mgag200 fix memmapsl configuration in GCTL6 register (git-fixes). - misc: alcor_pci: Fix an error handling path (git-fixes). - misc: atmel-ssc: Fix IRQ check in ssc_probe (git-fixes). - misc: fastrpc: avoid double fput() on failed usercopy (git-fixes). - misc: fastrpc: fix an incorrect NULL check on list iterator (git-fixes). - misc: ocxl: fix possible double free in ocxl_file_register_afu (git-fixes). - misc: rtsx: set NULL intfdata when probe fails (git-fixes). - misc: sgi-gru: Do not cast parameter in bit operations (git-fixes). - mISDN: Fix memory leak in dsp_pipeline_build() (git-fixes). - mlx5: kabi protect lag_mp (git-fixes). - mlxsw: spectrum: Protect driver from buggy firmware (git-fixes). - mm: Add fault_in_subpage_writeable() to probe at sub-page granularity (git-fixes) - mmc: block: Check for errors after write on SPI (git-fixes). - mmc: block: fix read single on recovery logic (git-fixes). - mmc: core: Allows to override the timeout value for ioctl() path (git-fixes). - mmc: core: Fixup support for writeback-cache for eMMC and SD (git-fixes). - mmc: core: Set HS clock speed before sending HS CMD13 (git-fixes). - mmc: core: Wait for command setting 'Power Off Notification' bit to complete (git-fixes). - mmc: davinci_mmc: Handle error for clk_enable (git-fixes). - mm: Change CONFIG option for mm->pasid field (jsc#SLE-24350). - mmc: host: Return an error when ->enable_sdio_irq() ops is missing (git-fixes). - mmc: jz4740: Apply DMA engine limits to maximum segment size (git-fixes). - mm/cma: provide option to opt out from exposing pages on activation failure (bsc#1195099 ltc#196102). - mmc: mediatek: wait dma stop bit reset to 0 (git-fixes). - mmc: meson: Fix usage of meson_mmc_post_req() (git-fixes). - mmc: mmci: stm32: correctly check all elements of sg list (git-fixes). - mmc: renesas_sdhi: do not overwrite TAP settings when HS400 tuning is complete (git-fixes). - mmc: rtsx: add 74 Clocks in power on flow (git-fixes). - mmc: rtsx: Fix build errors/warnings for unused variable (git-fixes). - mmc: rtsx: Let MMC core handle runtime PM (git-fixes). - mmc: rtsx: Use pm_runtime_{get,put}() to handle runtime PM (git-fixes). - mmc: sdhci_am654: Fix the driver data of AM64 SoC (git-fixes). - mmc: sdhci-msm: Reset GCC_SDCC_BCR register for SDHC (git-fixes). - mmc: sdhci-of-esdhc: Check for error num after setting mask (git-fixes). - mmc: sdhci-pci-o2micro: Fix card detect by dealing with debouncing (git-fixes). - mmc: sunxi-mmc: Fix DMA descriptors allocated above 32 bits (git-fixes). - mm: fs: fix lru_cache_disabled race in bh_lru (bsc#1197761). - mm: Fully initialize invalidate_lock, amend lock class later (bsc#1197921). - mm: memcg: synchronize objcg lists with a dedicated spinlock (bsc#1198402). - mm/page_alloc: always attempt to allocate at least one page during bulk allocation (git fixes (mm/pgalloc)). - mm/page_alloc.c: do not warn allocation failure on zone DMA if no managed pages (bsc#1197501). - mm, page_alloc: fix build_zonerefs_node() (git-fixes). - mm/scatterlist: replace the !preemptible warning in sg_miter_stop() (bsc#1189998). - mm/slub: add missing TID updates on slab deactivation (git-fixes). - mm, thp: fix incorrect unmap behavior for private pages (bsc#1198024). - mm, thp: lock filemap when truncating page cache (bsc#1198023). - mm/vmalloc: fix comments about vmap_area struct (git-fixes). - mm_zone: add function to check if managed dma zone exists (bsc#1197501). - modpost: fix removing numeric suffixes (git-fixes). - modpost: fix section mismatch check for exported init/exit sections (git-fixes). - modpost: fix undefined behavior of is_arm_mapping_symbol() (git-fixes). - modpost: restore the warning message for missing symbol versions (git-fixes). - Move upstreamed ALSA fix into sorted section - Move upstreamed x86 patches into sorted section - mptcp: add missing documented NL params (git-fixes). - mt76: connac: fix sta_rec_wtbl tag len (git-fixes). - mt76: dma: initialize skip_unmap in mt76_dma_rx_fill (git-fixes). - mt76: do not attempt to reorder received 802.3 packets without agg session (git-fixes). - mt76: fix encap offload ethernet type check (git-fixes). - mt76: fix monitor mode crash with sdio driver (git-fixes). - mt76: Fix undefined behavior due to shift overflowing the constant (git-fixes). - mt76: mt7603: check sta_rates pointer in mt7603_sta_rate_tbl_update (git-fixes). - mt76: mt7615: check sta_rates pointer in mt7615_sta_rate_tbl_update (git-fixes). - mt76: mt7615: fix a leftover race in runtime-pm (git-fixes). - mt76: mt7615: Fix assigning negative values to unsigned variable (git-fixes). - mt76: mt7915: fix injected MPDU transmission to not use HW A-MSDU (git-fixes). - mt76: mt7915: use proper aid value in mt7915_mcu_sta_basic_tlv (git-fixes). - mt76: mt7915: use proper aid value in mt7915_mcu_wtbl_generic_tlv in sta mode (git-fixes). - mt76: mt7921: accept rx frames with non-standard VHT MCS10-11 (git-fixes). - mt76: mt7921e: fix possible probe failure after reboot (bsc#1198835). - mt76: mt7921: fix a leftover race in runtime-pm (git-fixes). - mt76: mt7921: fix crash when startup fails (git-fixes). - mt76: mt7921: fix mt7921_queues_acq implementation (git-fixes). - mt76: mt7921: Fix the error handling path of mt7921_pci_probe() (git-fixes). - mtd: cfi_cmdset_0002: Move and rename chip_check/chip_ready/chip_good_for_write (git-fixes). - mtd: mchp23k256: Add SPI ID table (git-fixes). - mtd: mchp48l640: Add SPI ID table (git-fixes). - mtd: onenand: Check for error irq (git-fixes). - mtd: parsers: qcom: Fix kernel panic on skipped partition (git-fixes). - mtd: parsers: qcom: Fix missing free for pparts in cleanup (git-fixes). - mtd: phram: Prevent divide by zero bug in phram_setup() (git-fixes). - mtd: rawnand: atmel: fix refcount issue in atmel_nand_controller_init (git-fixes). - mtd: rawnand: brcmnand: Fixed incorrect sub-page ECC status (git-fixes). - mtd: rawnand: cadence: fix possible null-ptr-deref in cadence_nand_dt_probe() (git-fixes). - mtd: rawnand: denali: Use managed device resources (git-fixes). - mtd: rawnand: fix ecc parameters for mt7622 (git-fixes). - mtd: rawnand: Fix return value check of wait_for_completion_timeout (git-fixes). - mtd: rawnand: gpmi: do not leak PM reference in error path (git-fixes). - mtd: rawnand: gpmi: fix controller timings setting (git-fixes). - mtd: rawnand: gpmi: Fix setting busy timeout setting (git-fixes). - mtd: rawnand: ingenic: Fix missing put_device in ingenic_ecc_get (git-fixes). - mtd: rawnand: intel: fix possible null-ptr-deref in ebu_nand_probe() (git-fixes). - mtd: rawnand: pl353: Set the nand chip node as the flash node (git-fixes). - mtd: rawnand: qcom: Fix clock sequencing in qcom_nandc_probe() (git-fixes). - mtd: rawnand: qcom: fix memory corruption that causes panic (git-fixes). - mtd: spinand: gigadevice: fix Quad IO for GD5F1GQ5UExxG (git-fixes). - mtd: spi-nor: core: Check written SR value in spi_nor_write_16bit_sr_and_check() (git-fixes). - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue (git-fixes). - n64cart: convert bi_disk to bi_bdev->bd_disk fix build (git-fixes). - natsemi: sonic: stop calling netdev_boot_setup_check (git-fixes). - net: asix: add proper error handling of usb read errors (git-fixes). - net: atlantic: Avoid out-of-bounds indexing (git-fixes). - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg (git-fixes). - net: axienet: setup mdio unconditionally (git-fixes). - net: bnxt_ptp: fix compilation error (bsc#1199736). - net: dev: Always serialize on Qdisc::busylock in __dev_xmit_skb() on PREEMPT_RT (bsc#1189998). - net: dev: Change the order of the arguments for the contended condition (bsc#1189998). - net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove (git-fixes). - net: ethernet: lantiq_etop: fix build errors/warnings (git-fixes). - net: ethernet: mediatek: add missing of_node_put() in mtk_sgmii_init() (git-fixes). - net: ethernet: mtk_eth_soc: fix misuse of mem alloc interface netdev[napi]_alloc_frag (git-fixes). - net: ethernet: mtk_eth_soc: out of bounds read in mtk_hwlro_get_fdir_entry() (git-fixes). - net: ethernet: ti: am65-cpsw-nuss: Fix some refcount leaks (git-fixes). - netfilter: conntrack: move synack init code to helper (bsc#1199035). - netfilter: conntrack: re-init state for retransmitted syn-ack (bsc#1199035). - netfilter: nf_conntrack_tcp: preserve liberal flag in tcp options (bsc#1199035). - netfilter: nf_conntrack_tcp: re-init for syn packets only (bsc#1199035). - net: handle ARPHRD_PIMREG in dev_is_mac_header_xmit() (git-fixes). - net: hns3: add NULL pointer check for hns3_set/get_ringparam() (git-fixes). - net: hns3: add return value for mailbox handling in PF (bsc#1190336). - net: hns3: add validity check for message data length (git-fixes). - net: hns3: add vlan list lock to protect vlan list (git-fixes). - net: hns3: align the debugfs output to the left (git-fixes). - net: hns3: clear inited state and stop client after failed to register netdev (git-fixes). - net: hns3: fix bug when PF set the duplicate MAC address for VFs (git-fixes). - net: hns3: fix phy can not link up when autoneg off and reset (git-fixes). - net: hns3: fix port base vlan add fail when concurrent with reset (git-fixes). - net: hns3: fix software vlan talbe of vlan 0 inconsistent with hardware (git-fixes). - net: hns3: handle empty unknown interrupt for VF (git-fixes). - net: hns3: modify the return code of hclge_get_ring_chain_from_mbx (git-fixes). - net: hns3: refine the process when PF set VF VLAN (git-fixes). - net/ibmvnic: Cleanup workaround doing an EOI after partition migration (bsc#1089644 ltc#166495 ltc#165544 git-fixes). - net/ice: Add support for enable_iwarp and enable_roce devlink param (bsc#1200502). - net/ice: Fix boolean assignment (bsc#1200502). - net/ice: Remove unused enum (bsc#1200502). - net: ipa: disable HOLB drop when updating timer (git-fixes). - net: ipa: HOLB register sometimes must be written twice (git-fixes). - net/ipa: ipa_resource: Fix wrong for loop range (git-fixes). - net: ipv6: unexport __init-annotated seg6_hmac_init() (bsc#1201218). - net: ipv6: unexport __init-annotated seg6_hmac_net_init() (bsc#1201218). - net: macb: Align the dma and coherent dma masks (git-fixes). - net: mana: Add counter for packet dropped by XDP (bsc#1195651). - net: mana: Add counter for XDP_TX (bsc#1195651). - net: mana: Add handling of CQE_RX_TRUNCATED (bsc#1195651). - net: mana: Remove unnecessary check of cqe_type in mana_process_rx_cqe() (bsc#1195651). - net: mana: Reuse XDP dropped page (bsc#1195651). - net: mana: Use struct_size() helper in mana_gd_create_dma_region() (bsc#1195651). - net: marvell: mvpp2: increase MTU limit when XDP enabled (git-fixes). - net: marvell: prestera: fix double free issue on err path (git-fixes). - net: mdio: do not defer probe forever if PHY IRQ provider is missing (git-fixes). - net: mdio: unexport __init-annotated mdio_bus_init() (bsc#1201218). - net/mlx5: Avoid double clear or set of sync reset requested (git-fixes). - net/mlx5: Bridge, ensure dev_name is null-terminated (git-fixes). - net/mlx5: Bridge, Fix devlink deadlock on net namespace deletion (git-fixes). - net/mlx5: Bridge, take rtnl lock in init error handler (git-fixes). - net/mlx5: DR, Cache STE shadow memory (git-fixes). - net/mlx5: DR, Do not allow match on IP w/o matching on full ethertype/ip_version (git-fixes). - net/mlx5: DR, Fix slab-out-of-bounds in mlx5_cmd_dr_create_fte (jsc#SLE-19253). - net/mlx5: DR, Fix the threshold that defines when pool sync is initiated (git-fixes). - net/mlx5e: Add missing increment of count (jsc#SLE-19253). - net/mlx5e: Avoid field-overflowing memcpy() (git-fixes). - net/mlx5e: Avoid implicit modify hdr for decap drop rule (jsc#SLE-19253). - net/mlx5e: CT: Fix queued up restore put() executing after relevant ft release (git-fixes). - net/mlx5e: Do not treat small ceil values as unlimited in HTB offload (git-fixes). - net/mlx5e: Fix broken SKB allocation in HW-GRO (jsc#SLE-19253). - net/mlx5e: Fix handling of wrong devices during bond netevent (git-fixes). - net/mlx5e: Fix module EEPROM query (git-fixes). - net/mlx5e: Fix the calling of update_buffer_lossy() API (git-fixes). - net/mlx5e: Fix trust state reset in reload (git-fixes). - net/mlx5e: Fix wrong calculation of header index in HW_GRO (jsc#SLE-19253). - net/mlx5e: Fix wrong return value on ioctl EEPROM query failure (git-fixes). - net/mlx5e: Fix wrong source vport matching on tunnel rule (jsc#SLE-19253). - net/mlx5e: IPsec: Fix crypto offload for non TCP/UDP encapsulated traffic (git-fixes). - net/mlx5e: IPsec: Fix tunnel mode crypto offload for non TCP/UDP traffic (git-fixes). - net/mlx5e: kTLS, Use CHECKSUM_UNNECESSARY for device-offloaded packets (git-fixes). - net/mlx5e: Lag, Do not skip fib events on current dst (git-fixes). - net/mlx5e: Lag, Fix fib_info pointer assignment (git-fixes). - net/mlx5e: Lag, Fix use-after-free in fib event handler (git-fixes). - net/mlx5e: Lag, Only handle events from highest priority multipath entry (git-fixes). - net/mlx5e: MPLSoUDP decap, fix check for unsupported matches (git-fixes). - net/mlx5e: SHAMPO, reduce TIR indication (jsc#SLE-19253). - net/mlx5: E-Switch, Fix uninitialized variable modact (git-fixes). - net/mlx5e: TC, Reject rules with drop and modify hdr action (git-fixes). - net/mlx5e: TC, Reject rules with forward and drop actions (git-fixes). - net/mlx5e: Use struct_group() for memcpy() region (git-fixes). - net/mlx5: Fix a race on command flush flow (git-fixes). - net/mlx5: Fix deadlock in sync reset flow (git-fixes). - net/mlx5: Fix matching on inner TTC (jsc#SLE-19253). - net/mlx5: Fix offloading with ESWITCH_IPV4_TTL_MODIFY_ENABLE (jsc#SLE-19253). - net/mlx5: Fix possible deadlock on rule deletion (git-fixes). - net/mlx5: Fix size field in bufferx_reg struct (git-fixes). - net/mlx5: Fix slab-out-of-bounds while reading resource dump menu (git-fixes). - net/mlx5: Fix tc max supported prio for nic mode (git-fixes). - net/mlx5: Fix wrong limitation of metadata match on ecpf (git-fixes). - net/mlx5: Update the list of the PCI supported devices (git-fixes). - net/mlx5: Use del_timer_sync in fw reset flow of halting poll (git-fixes). - net: mvmdio: fix compilation warning (git-fixes). - net: netvsc: remove break after return (git-fixes). - net: phy: ax88772a: fix lost pause advertisement configuration (git-fixes). - net: phy: broadcom: Fix brcm_fet_config_init() (git-fixes). - net: phy: correct spelling error of media in documentation (git-fixes). - net: phy: DP83822: clear MISR2 register to disable interrupts (git-fixes). - net: phy: dp83867: retrigger SGMII AN when link change (git-fixes). - net: phy: Fix race condition on link status change (git-fixes). - net: phy: marvell10g: fix return value on error (git-fixes). - net: phy: marvell: Fix invalid comparison in the resume and suspend functions (git-fixes). - net: phy: marvell: Fix MDI-x polarity setting in 88e1118-compatible PHYs (git-fixes). - net: phy: marvell: Fix RGMII Tx/Rx delays setting in 88e1121-compatible PHYs (git-fixes). - net: phy: mediatek: remove PHY mode check on MT7531 (git-fixes). - net: phy: meson-gxl: fix interrupt handling in forced mode (git-fixes). - net: phy: meson-gxl: improve link-up behavior (git-fixes). - net: phy: micrel: Allow probing without .driver_data (git-fixes). - net: phy: micrel: Do not use kszphy_suspend/resume for KSZ8061 (git-fixes). - net: phy: micrel: Pass .probe for KS8737 (git-fixes). - net: phy: mscc: Add MODULE_FIRMWARE macros (git-fixes). - net: phy: mscc-miim: reject clause 45 register accesses (git-fixes). - net: qlogic: check the return value of dma_alloc_coherent() in qed_vf_hw_prepare() (git-fixes). - net: rose: fix UAF bugs caused by timer handler (git-fixes). - net: sfc: add missing xdp queue reinitialization (git-fixes). - net: sfc: ef10: fix memory leak in efx_ef10_mtd_probe() (git-fixes). - net: sfc: fix memory leak due to ptp channel (git-fixes). - net: sfc: fix using uninitialized xdp tx_queue (git-fixes). - net/smc: Avoid warning of possible recursive locking (git-fixes). - net/smc: fix connection leak (git-fixes). - net/smc: fixes for converting from "struct smc_cdc_tx_pend **" to "struct smc_wr_tx_pend_priv *" (git-fixes). - net/smc: Fix NULL pointer dereference in smc_pnet_find_ib() (git-fixes). - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error cause by server (git-fixes). - net/smc: fix unexpected SMC_CLC_DECL_ERR_REGRMB error generated by client (git-fixes). - net/smc: non blocking recvmsg() return -EAGAIN when no data and signal_pending (git-fixes). - net/smc: postpone sk_refcnt increment in connect() (git-fixes). - net/smc: remove redundant re-assignment of pointer link (git-fixes). - net/smc: Remove unused function declaration (git-fixes). - net/smc: Reset conn->lgr when link group registration fails (git-fixes). - net/smc: set ini->smcrv2.ib_dev_v2 to NULL if SMC-Rv2 is unavailable (git-fixes). - net/smc: sync err code when tcp connection was refused (git-fixes). - net/smc: Transfer remaining wait queue entries during fallback (git-fixes). - net/smc: Transitional solution for clcsock race issue (git-fixes). - net/smc: Use a mutex for locking "struct smc_pnettable" (git-fixes). - net/smc: use memcpy instead of snprintf to avoid out of bounds read (git-fixes). - net: stmmac: fix gcc-10 -Wrestrict warning (git-fixes). - net: stmmac: Fix signed/unsigned wreckage (git-fixes). - net: stmmac: socfpga: add runtime suspend/resume callback for stratix10 platform (git-fixes). - net: usb: aqc111: Fix out-of-bounds accesses in RX fixup (git-fixes). - net: usb: asix: do not force pause frames support (git-fixes). - net: usb: ax88179_178a: Fix out-of-bounds accesses in RX fixup (git-fixes). - net: usb: ax88179_178a: Fix packet receiving (git-fixes). - net: usb: cdc_mbim: avoid altsetting toggling for Telit FN990 (git-fixes). - net: usb: qmi_wwan: Add support for Dell DW5829e (git-fixes). - Netvsc: Call hv_unmap_memory() in the netvsc_device_remove() (bsc#1183682). - net/x25: Fix null-ptr-deref caused by x25_disconnect (git-fixes). - net: xfrm: unexport __init-annotated xfrm4_protocol_init() (bsc#1201218). - nfc: hci: fix sleep in atomic context bugs in nfc_hci_hcp_message_tx (git-fixes). - nfc: nci: add flush_workqueue to prevent uaf (git-fixes). - nfc: nci: fix sleep in atomic context bugs caused by nci_skb_alloc (git-fixes). - nfc: netlink: fix sleep in atomic bug when firmware download timeout (git-fixes). - nfc: nfcmrvl: Fix irq_of_parse_and_map() return value (git-fixes). - nfc: nfcmrvl: Fix memory leak in nfcmrvl_play_deferred (git-fixes). - nfc: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs (git-fixes). - nfc: NULL out the dev->rfkill to prevent UAF (git-fixes). - NFC: nxp-nci: Do not issue a zero length i2c_master_read() (git-fixes). - nfc: pn533: Fix buggy cleanup order (git-fixes). - nfc: port100: fix use-after-free in port100_send_complete (git-fixes). - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling (git-fixes). - nfp: checking parameter process for rx-usecs/tx-usecs is invalid (git-fixes). - nfp: flower: Fix a potential leak in nfp_tunnel_add_shared_mac() (git-fixes). - nfp: flower: fix ida_idx not being released (git-fixes). - NFS: Avoid duplicate uncached readdir calls on eof (git-fixes). - NFSD: allow delegation state ids to be revoked and then freed (bsc#1192483). - NFSD: allow lock state ids to be revoked and then freed (bsc#1192483). - NFSD: allow open state ids to be revoked and then freed (bsc#1192483). - nfsd: destroy percpu stats counters after reply cache shutdown (git-fixes). - NFSD: do not admin-revoke NSv4.0 state ids (bsc#1192483). - NFSD: Fix a write performance regression (bsc#1197016). - NFSD: fix crash on COPY_NOTIFY with special stateid (git-fixes). - NFSD: Fix nsfd startup race (again) (git-fixes). - nfsd: Fix null-ptr-deref in nfsd_fill_super() (git-fixes). - NFSD: Fix READDIR buffer overflow (git-fixes). - NFSD: Fix the behavior of READ near OFFSET_MAX (bsc#1195957). - NFSD: Fix verifier returned in stable WRITEs (git-fixes). - NFSD: Fix zero-length NFSv3 WRITEs (git-fixes). - NFSD: more robust allocation failure handling in nfsd_file_cache_init (git-fixes). - NFSD: nfsd4_setclientid_confirm mistakenly expires confirmed client (git-fixes). - NFS: Do not loop forever in nfs_do_recoalesce() (git-fixes). - NFS: Do not overfill uncached readdir pages (git-fixes). - NFS: Do not report EINTR/ERESTARTSYS as mapping errors (git-fixes). - NFS: Do not report ENOSPC write errors twice (git-fixes). - NFS: Do not report errors from nfs_pageio_complete() more than once (git-fixes). - NFS: Do not report flush errors in nfs_write_end() (git-fixes). - NFS: Do not report writeback errors in nfs_getattr() (git-fixes). - NFS: Do not skip directory entries when doing uncached readdir (git-fixes). - NFS: do not store 'struct cred *' in struct nfs_access_entry (git-fixes). - NFSD: prepare for supporting admin-revocation of state (bsc#1192483). - NFSD: Replace use of rwsem with errseq_t (bsc#1196960). - NFS: Ensure the server had an up to date ctime before hardlinking (git-fixes). - NFS: Ensure the server had an up to date ctime before renaming (git-fixes). - NFS: fix broken handling of the softreval mount option (git-fixes). - NFS: Fix initialisation of nfs_client cl_flags field (git-fixes). - NFS: fsync() should report filesystem errors over EINTR/ERESTARTSYS (git-fixes). - NFS: Further fixes to the writeback error handling (git-fixes). - NFS: limit use of ACCESS cache for negative responses (bsc#1196570). - NFS: Memory allocation failures are not server fatal errors (git-fixes). - NFS: NFSv2/v3 clients should never be setting NFS_CAP_XATTR (git-fixes). - NFS: pass cred explicitly for access tests (git-fixes). - NFS: Remove an incorrect revalidation in nfs4_update_changeattr_locked() (git-fixes). - NFS: Return valid errors from nfs2/3_decode_dirent() (git-fixes). - NFS: Use of mapping_set_error() results in spurious errors (git-fixes). - NFSv4.1: do not retry BIND_CONN_TO_SESSION on session error (git-fixes). - NFSv4.1 mark qualified async operations as MOVEABLE tasks (git-fixes). - NFSv42: Do not fail clone() unless the OP_CLONE operation failed (git-fixes). - NFSv42: Fix pagecache invalidation after COPY/CLONE (git-fixes). - NFSv4: Do not invalidate inode attributes on delegation return (git-fixes). - NFSv4: Fix another issue with a list iterator pointing to the head (git-fixes). - NFSv4: fix open failure with O_ACCMODE flag (git-fixes). - NFSv4: nfs_atomic_open() can race when looking up a non-regular file (git-fixes). - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout (git-fixes). - nl80211: correctly check NL80211_ATTR_REG_ALPHA2 size (git-fixes). - nl80211: fix locking in nl80211_set_tx_bitrate_mask() (git-fixes). - nl80211: Handle nla_memdup failures in handle_nan_filter (git-fixes). - nl80211: show SSID for P2P_GO interfaces (git-fixes). - nl80211: Update bss channel on channel switch for P2P_CLIENT (git-fixes). - nl80211: validate S1G channel width (git-fixes). - ntb_hw_switchtec: Fix bug with more than 32 partitions (git-fixes). - ntb_hw_switchtec: Fix pff ioread to read into mmio_part_cfg_all (git-fixes). - ntb: intel: fix port config status offset for SPR (git-fixes). - n_tty: wake up poll(POLLRDNORM) on receiving data (git-fixes). - nvme: add verbose error logging (bsc#1200567). Update config files. - nvme: also mark passthrough-only namespaces ready in nvme_update_ns_info (git-fixes). - nvme: do not return an error from nvme_configure_metadata (git-fixes). - nvme: expose cntrltype and dctype through sysfs (jsc#SLE-23643). - nvme: fix a possible use-after-free in controller reset during load (git-fixes). - nvme-multipath: use vmalloc for ANA log buffer (bsc#1193787). - nvme: send uevent on connection up (jsc#SLE-23643). - objtool: Add frame-pointer-specific function ignore (bsc#1193277). - objtool: Fix code relocs vs weak symbols (git-fixes). - objtool: Fix type of reloc::addend (git-fixes). - objtool: Ignore unwind hints for ignored functions (bsc#1193277). - ocfs2: fix crash when initialize filecheck kobj fails (bsc#1197920). - of: base: Fix phandle argument length mismatch error message (git-fixes). - of: base: Improve argument length mismatch error (git-fixes). - of/fdt: Do not worry about non-memory region overlap for no-map (git-fixes). - of: overlay: do not break notify on NOTIFY_{OK|STOP} (git-fixes). - of: Support more than one crash kernel regions for kexec -s (git-fixes). - of: unittest: 64 bit dma address test requires arch support (git-fixes). - of: unittest: fix warning on PowerPC frame size warning (git-fixes). - of: unittest: update text of expected warnings (git-fixes). - pahole 1.22 required for full BTF features. also recommend pahole for kernel-source to make the kernel buildable with standard config - PCI: aardvark: Add support for DEVCAP2, DEVCTL2, LNKCAP2 and LNKCTL2 registers on emulated bridge (git-fixes). - PCI: aardvark: Add support for ERR interrupt on emulated bridge (git-fixes). - PCI: aardvark: Add support for masking MSI interrupts (git-fixes). - PCI: aardvark: Add support for PME interrupts (git-fixes). - PCI: aardvark: Assert PERST# when unbinding driver (git-fixes). - PCI: aardvark: Clear all MSIs at setup (git-fixes). - PCI: aardvark: Comment actions in driver remove method (git-fixes). - PCI: aardvark: Disable bus mastering when unbinding driver (git-fixes). - PCI: aardvark: Disable common PHY when unbinding driver (git-fixes). - PCI: aardvark: Disable link training when unbinding driver (git-fixes). - PCI: aardvark: Do not mask irq when mapping (git-fixes). - PCI: aardvark: Drop __maybe_unused from advk_pcie_disable_phy() (git-fixes). - PCI: aardvark: Enable MSI-X support (git-fixes). - PCI: aardvark: Fix memory leak in driver unbind (git-fixes). - PCI: aardvark: Fix reading MSI interrupt number (git-fixes). - PCI: aardvark: Fix reading PCI_EXP_RTSTA_PME bit on emulated bridge (git-fixes). - PCI: aardvark: Fix setting MSI address (git-fixes). - PCI: aardvark: Fix support for MSI interrupts (git-fixes). - PCI: aardvark: Fix support for PME requester on emulated bridge (git-fixes). - PCI: aardvark: Make msi_domain_info structure a static driver structure (git-fixes). - PCI: aardvark: Make MSI irq_chip structures static driver structures (git-fixes). - PCI: aardvark: Mask all interrupts when unbinding driver (git-fixes). - PCI: aardvark: Optimize writing PCI_EXP_RTCTL_PMEIE and PCI_EXP_RTSTA_PME on emulated bridge (git-fixes). - PCI: aardvark: Refactor unmasking summary MSI interrupt (git-fixes). - PCI: aardvark: Remove irq_mask_ack() callback for INTx interrupts (git-fixes). - PCI: aardvark: Replace custom PCIE_CORE_INT_* macros with PCI_INTERRUPT_* (git-fixes). - PCI: aardvark: Rewrite IRQ code to chained IRQ handler (git-fixes). - PCI: aardvark: Update comment about link going down after link-up (git-fixes). - PCI: aardvark: Use dev_fwnode() instead of of_node_to_fwnode(dev->of_node) (git-fixes). - PCI: aardvark: Use separate INTA interrupt for emulated root bridge (git-fixes). - PCI/ACPI: Allow D3 only if Root Port can signal and wake from D3 (git-fixes). - PCI: Add ACS quirk for Pericom PI7C9X2G switches (bsc#1199390). - PCI/AER: Clear MULTI_ERR_COR/UNCOR_RCV bits (git-fixes). - PCI: Avoid broken MSI on SB600 USB devices (git-fixes). - PCI: cadence: Fix find_first_zero_bit() limit (git-fixes). - PCI: dwc: Fix setting error return on MSI DMA mapping failure (git-fixes). - PCI: endpoint: Fix alignment fault error in copy tests (git-fixes). - PCI: endpoint: Fix misused goto label (git-fixes). - PCI: fu740: Force 2.5GT/s for initial device probe (git-fixes). - PCI: hv: Do not set PCI_COMMAND_MEMORY to reduce VM boot time (bsc#1199314). - PCI: hv: Fix hv_arch_irq_unmask() for multi-MSI (bsc#1200845). - PCI: hv: Fix interrupt mapping for multi-MSI (bsc#1200845). - PCI: hv: Fix multi-MSI to allow more than one MSI vector (bsc#1200845). - PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology (git-fixes). - PCI: hv: Reuse existing IRTE allocation in compose_msi_msg() (bsc#1200845). - PCI: imx6: Allow to probe when dw_pcie_wait_for_link() fails (git-fixes). - PCI: imx6: Fix PERST# start-up sequence (git-fixes). - PCI: Mark all AMD Navi10 and Navi14 GPU ATS as broken (git-fixes). - PCI: microchip: Fix potential race in interrupt handling (git-fixes). - PCI: mvebu: Fix configuring secondary bus of PCIe Root Port via emulated bridge (git-fixes). - PCI: mvebu: Fix device enumeration regression (git-fixes). - PCI: mvebu: Fix support for bus mastering and PCI_COMMAND on emulated bridge (git-fixes). - PCI: mvebu: Fix support for PCI_BRIDGE_CTL_BUS_RESET on emulated bridge (git-fixes). - PCI: mvebu: Setup PCIe controller to Root Complex mode (git-fixes). - PCI: pci-bridge-emul: Add definitions for missing capabilities registers (git-fixes). - PCI: pci-bridge-emul: Add description for class_revision field (git-fixes). - PCI: pciehp: Add Qualcomm quirk for Command Completed erratum (git-fixes). - PCI: pciehp: Clear cmd_busy bit in polling mode (git-fixes). - PCI/PM: Power up all devices during runtime resume (git-fixes). - PCI: qcom: Fix runtime PM imbalance on probe errors (git-fixes). - PCI: qcom: Fix unbalanced PHY init on probe errors (git-fixes). - PCI: rockchip: Fix find_first_zero_bit() limit (git-fixes). - PCI/switchtec: Add Gen4 automotive device IDs (git-fixes). - PCI: Work around Intel I210 ROM BAR overlap defect (git-fixes). - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards (git-fixes). - perf: Copy perf_event_attr::sig_data on modification (git fixes). - perf/core: Do not pass task around when ctx sched in (git-fixes). - perf/core: Fix address filter parser for multiple filters (git fixes). - perf/core: Fix cgroup event list management (git fixes). - perf/core: Fix perf_cgroup_switch() (git fixes). - perf/core: Fix perf_mmap fail when CONFIG_PERF_USE_VMALLOC enabled (git fixes). - perf: Fix list corruption in perf_cgroup_switch() (git fixes). - perf/x86/intel/pt: Fix address filter config for 32-bit kernel (git fixes). - perf/x86/intel/pt: Fix crash with stop filters in single-range mode (git fixes). - perf/x86/intel/uncore: Make uncore_discovery clean for 64 bit addresses (bsc#1197304). - perf/x86/intel: Update the FRONTEND MSR mask on Sapphire Rapids (git fixes). - phy: amlogic: fix error path in phy_g12a_usb3_pcie_probe() (git-fixes). - phy: amlogic: meson8b-usb2: fix shared reset control use (git-fixes). - phy: amlogic: meson8b-usb2: Use dev_err_probe() (git-fixes). - phy: amlogic: phy-meson-gxl-usb2: fix shared reset controller use (git-fixes). - phy: aquantia: Fix AN when higher speeds than 1G are not advertised (git-fixes). - phy: broadcom: Kconfig: Fix PHY_BRCM_USB config option (git-fixes). - phy: dphy: Correct clk_pre parameter (git-fixes). - phy: dphy: Correct lpx parameter and its derivatives(ta_{get,go,sure}) (git-fixes). - phy: mapphone-mdm6600: Fix PM error handling in phy_mdm6600_probe (git-fixes). - phy: phy-brcm-usb: fixup BCM4908 support (git-fixes). - phy: qcom-qmp: fix pipe-clock imbalance on power-on failure (git-fixes). - phy: qcom-qmp: fix reset-controller leak on probe errors (git-fixes). - phy: qcom-qmp: fix struct clk leak on probe errors (git-fixes). - phy: samsung: exynos5250-sata: fix missing device put in probe error paths (git-fixes). - phy: samsung: Fix missing of_node_put() in exynos_sata_phy_probe (git-fixes). - phy: stm32: fix a refcount leak in stm32_usbphyc_pll_enable() (git-fixes). - phy: ti: Add missing pm_runtime_disable() in serdes_am654_probe (git-fixes). - phy: ti: Fix missing sentinel for clk_div_table (git-fixes). - phy: ti: omap-usb2: Fix error handling in omap_usb2_enable_clocks (git-fixes). - phy: usb: Leave some clocks running during suspend (git-fixes). - phy: xilinx: zynqmp: Fix bus width setting for SGMII (git-fixes). - pinctrl: bcm2835: Fix a few error paths (git-fixes). - pinctrl: bcm63xx: fix unmet dependency on REGMAP for GPIO_REGMAP (git-fixes). - pinctrl: fix loop in k210_pinconf_get_drive() (git-fixes). - pinctrl: intel: Fix a glitch when updating IRQ flags on a preconfigured line (git-fixes). - pinctrl: intel: fix unexpected interrupt (git-fixes). - pinctrl: k210: Fix bias-pull-up (git-fixes). - pinctrl: mediatek: Fix missing of_node_put() in mtk_pctrl_init (git-fixes). - pinctrl: mediatek: moore: Fix build error (git-fixes). - pinctrl: mediatek: mt8195: enable driver on mtk platforms (git-fixes). - pinctrl: mediatek: mt8365: fix IES control pins (git-fixes). - pinctrl: mediatek: paris: Fix "argument" argument type for mtk_pinconf_get() (git-fixes). - pinctrl: mediatek: paris: Fix PIN_CONFIG_BIAS_* readback (git-fixes). - pinctrl: mediatek: paris: Fix pingroup pin config state readback (git-fixes). - pinctrl: mediatek: paris: Skip custom extra pin config dump for virtual GPIOs (git-fixes). - pinctrl: microchip-sgpio: lock RMW access (git-fixes). - pinctrl: microchip sgpio: use reset driver (git-fixes). - pinctrl: mvebu: Fix irq_of_parse_and_map() return value (git-fixes). - pinctrl: nomadik: Add missing of_node_put() in nmk_pinctrl_probe (git-fixes). - pinctrl: npcm: Fix broken references to chip->parent_device (git-fixes). - pinctrl: nuvoton: npcm7xx: Rename DS() macro to DSTR() (git-fixes). - pinctrl: nuvoton: npcm7xx: Use %zu printk format for ARRAY_SIZE() (git-fixes). - pinctrl: pinconf-generic: Print arguments for bias-pull-* (git-fixes). - pinctrl: pinctrl-aspeed-g6: remove FWQSPID group in pinctrl (git-fixes). - pinctrl: pistachio: fix use of irq_of_parse_and_map() (git-fixes). - pinctrl: renesas: checker: Fix miscalculation of number of states (git-fixes). - pinctrl: renesas: core: Fix possible null-ptr-deref in sh_pfc_map_resources() (git-fixes). - pinctrl: renesas: r8a77470: Reduce size for narrow VIN1 channel (git-fixes). - pinctrl: renesas: r8a779a0: Fix GPIO function on I2C-capable pins (git-fixes). - pinctrl: renesas: rzn1: Fix possible null-ptr-deref in sh_pfc_map_resources() (git-fixes). - pinctrl/rockchip: Add missing of_node_put() in rockchip_pinctrl_probe (git-fixes). - pinctrl: rockchip: fix RK3308 pinmux bits (git-fixes). - pinctrl: samsung: drop pin banks references on error paths (git-fixes). - pinctrl: samsung: fix missing GPIOLIB on ARM64 Exynos config (git-fixes). - pinctrl: stm32: Do not call stm32_gpio_get() for edge triggered IRQs in EOI (git-fixes). - pinctrl: stm32: Keep pinctrl block clock enabled when LEVEL IRQ requested (git-fixes). - pinctrl: sunxi: fix f1c100s uart2 function (git-fixes). - pinctrl: sunxi: Fix H616 I2S3 pin data (git-fixes). - pinctrl: sunxi: Use unique lockdep classes for IRQs (git-fixes). - pinctrl: tegra: tegra194: drop unused pin groups (git-fixes). - pinctrl: tigerlake: Revert "Add Alder Lake-M ACPI ID" (git-fixes). - ping: fix the sk_bound_dev_if match in ping_lookup (bsc#1195826). - ping: remove pr_err from ping_lookup (bsc#1195826). - pipe: Fix missing lock in pipe_resize_ring() (git-fixes). - platform/chrome: cros_ec_debugfs: detach log reader wq from devm (git-fixes). - platform/chrome: cros_ec: fix error handling in cros_ec_register() (git-fixes). - platform/chrome: cros_ec_typec: Check for EC device (git-fixes). - platform/chrome: Re-introduce cros_ec_cmd_xfer and use it for ioctls (git-fixes). - platform: finally disallow IRQ0 in platform_get_irq() and its ilk (git-fixes). - platform/surface: aggregator: Fix initialization order when compiling as builtin module (git-fixes). - platform/surface: surface3-wmi: Simplify resource management (git-fixes). - platform/x86: Add Intel Software Defined Silicon driver (jsc#SLE-18938). - platform/x86: asus-wmi: Add support for custom fan curves (bsc#1198058). - platform/x86: asus-wmi: Delete impossible condition (bsc#1198058). - platform/x86: asus-wmi: Fix driver not binding when fan curve control probe fails (git-fixes). - platform/x86: asus-wmi: Fix regression when probing for fan curve control (bsc#1198058). - platform/x86: asus-wmi: Fix "unsigned 'retval' is never less than zero" smatch warning (bsc#1198058). - platform/x86: asus-wmi: Potential buffer overflow in asus_wmi_evaluate_method_buf() (git-fixes). - platform/x86: gigabyte-wmi: Add support for B450M DS3H-CF (git-fixes). - platform/x86: gigabyte-wmi: Add Z690M AORUS ELITE AX DDR4 support (git-fixes). - platform/x86: huawei-wmi: check the return value of device_create_file() (git-fixes). - platform/x86: intel-hid: fix _DSM function index handling (git-fixes). - platform/x86/intel/sdsi: Fix bug in multi packet reads (jsc#SLE-18901). - platform/x86/intel/sdsi: Handle leaky bucket (jsc#SLE-18901). - platform/x86/intel/sdsi: Poll on ready bit for writes (jsc#SLE-18901). - platform/x86: panasonic-laptop: de-obfuscate button codes (git-fixes). - platform/x86: panasonic-laptop: do not report duplicate brightness key-presses (git-fixes). - platform/x86: panasonic-laptop: filter out duplicate volume up/down/mute keypresses (git-fixes). - platform/x86: panasonic-laptop: revert "Resolve hotkey double trigger bug" (git-fixes). - platform/x86: panasonic-laptop: sort includes alphabetically (git-fixes). - platform/x86: samsung-laptop: Fix an unsigned comparison which can never be negative (git-fixes). - platform/x86: touchscreen_dmi: Add info for the RWC NANOTE P8 AY07J 2-in-1 (git-fixes). - PM: core: keep irq flags in device_pm_check_callbacks() (git-fixes). - PM / devfreq: exynos-ppmu: Fix refcount leak in of_get_devfreq_events (git-fixes). - PM / devfreq: rk3399_dmc: Disable edev on remove() (git-fixes). - PM: domains: Fix initialization of genpd's next_wakeup (git-fixes). - PM: domains: Fix sleep-in-atomic bug caused by genpd_debug_remove() (git-fixes). - PM: hibernate: fix __setup handler error handling (git-fixes). - PM: hibernate: Remove register_nosave_region_late() (git-fixes). - PM: s2idle: ACPI: Fix wakeup interrupts handling (git-fixes). - PM: suspend: fix return value of __setup handler (git-fixes). - PM: wakeup: simplify the output logic of pm_show_wakelocks() (git-fixes). - pNFS: Avoid a live lock condition in pnfs_update_layout() (git-fixes). - pNFS: Do not keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE (git-fixes). - powerpc/64: Move paca allocation later in boot (bsc#1190812). - powerpc/64s: Add CPU_FTRS_POWER10 to ALWAYS mask (jsc#SLE-13521 git-fixes). - powerpc/64s: Add CPU_FTRS_POWER9_DD2_2 to CPU_FTRS_ALWAYS mask (bsc#1061840 git-fixes). - powerpc/64s: Do not use DSISR for SLB faults (bsc#1194869). - powerpc/64s/radix: Fix huge vmap false positive (bsc#1156395). - powerpc: add link stack flush mitigation status in debugfs (bsc#1157038 bsc#1157923 ltc#182612 git-fixes). - powerpc/bpf: Update ldimm64 instructions during extra pass (bsc#1194869). - powerpc: Do not select HAVE_IRQ_EXIT_ON_IRQ_STACK (bsc#1194869). - powerpc: Enable the DAWR on POWER9 DD2.3 and above (bsc#1055117 ltc#159753). - powerpc/fadump: fix PT_LOAD segment for boot memory area (bsc#1103269 ltc#169948 git-fixes). - powerpc/fadump: opt out from freeing pages on cma activation failure (bsc#1195099 ltc#196102). - powerpc/fadump: register for fadump as early as possible (bsc#1179439 ltc#190038). - powerpc/idle: Fix return value of __setup() handler (bsc#1065729). - powerpc/lib/sstep: Fix 'sthcx' instruction (bsc#1156395). - powerpc/mce: Modify the real address error logging messages (jsc#SLE-18194). - powerpc/mm/numa: skip NUMA_NO_NODE onlining in parse_numa_properties() (bsc#1179639 ltc#189002 git-fixes). - powerpc/perf: Do not use perf_hw_context for trace IMC PMU (bsc#1156395). - powerpc/perf: Fix power10 event alternatives (jsc#SLE-13513 git-fixes). - powerpc/perf: Fix power9 event alternatives (bsc#1137728, LTC#178106, git-fixes). - powerpc/perf: Fix power_pmu_disable to call clear_pmi_irq_pending only if PMI is pending (bsc#1156395). - powerpc/perf: Fix the threshold compare group constraint for power10 (bsc#1194869). - powerpc/perf: Fix the threshold compare group constraint for power9 (bsc#1065729). - powerpc/powernv: Add __init attribute to eligible functions (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get L1D flush requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Get STF barrier requirements from device-tree (bsc#1188885 ltc#193722 git-fixes). - powerpc/powernv: Remove POWER9 PVR version check for entry and uaccess flushes (bsc#1188885 ltc#193722 git-fixes). - powerpc/pseries: Fix use after free in remove_phb_dynamic() (bsc#1065729). - powerpc/pseries: Parse control memory access error (jsc#SLE-18194). - powerpc/pseries: read the lpar name from the firmware (bsc#1187716 ltc#193451). - powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (bsc#1200343 ltc#198477). - powerpc: Set crashkernel offset to mid of RMA region (bsc#1190812). - powerpc/sysdev: fix incorrect use to determine if list is empty (bsc#1065729). - powerpc/tm: Fix more userspace r13 corruption (bsc#1065729). - powerpc/vdso: Fix incorrect CFI in gettimeofday.S (bsc#1199173 ltc#197388). - powerpc/vdso: Remove cvdso_call_time macro (bsc#1199173 ltc#197388). - powerpc/xive: Add a debugfs file to dump EQs (bsc#1194409 ltc#195810). - powerpc/xive: Add some error handling code to 'xive_spapr_init()' (git-fixes). - powerpc/xive: Change the debugfs file 'xive' into a directory (bsc#1194409 ltc#195810). - powerpc/xive: Export XIVE IPI information for online-only processors (bsc#1194409 ltc#195810). - powerpc/xive: Fix refcount leak in xive_spapr_init (git-fixes). - powerpc/xive: fix return value of __setup handler (bsc#1065729). - powerpc/xive: Introduce an helper to print out interrupt characteristics (bsc#1194409 ltc#195810). - powerpc/xive: Introduce xive_core_debugfs_create() (bsc#1194409 ltc#195810). - powerpc/xive: Rename the 'cpus' debugfs file to 'ipis' (bsc#1194409 ltc#195810). - power: reset: gemini-poweroff: Fix IRQ check in gemini_poweroff_probe (git-fixes). - power: supply: ab8500: Fix memory leak in ab8500_fg_sysfs_init (git-fixes). - power: supply: axp20x_battery: properly report current when discharging (git-fixes). - power: supply: axp288-charger: Set Vhold to 4.4V (git-fixes). - power: supply: axp288_fuel_gauge: Drop BIOS version check from "T3 MRD" DMI quirk (git-fixes). - power: supply: axp288_fuel_gauge: Fix battery reporting on the One Mix 1 (git-fixes). - power: supply: bq24190_charger: Fix bq24190_vbus_is_enabled() wrong false return (git-fixes). - power: supply: sbs-charger: Do not cancel work that is not initialized (git-fixes). - power: supply: wm8350-power: Add missing free in free_charger_irq (git-fixes). - power: supply: wm8350-power: Handle error for wm8350_register_irq (git-fixes). - pps: clients: gpio: Propagate return value from pps_gpio_probe (git-fixes). - printk: Add panic_in_progress helper (bsc#1197894). - printk: disable optimistic spin during panic (bsc#1197894). - proc: bootconfig: Add null pointer check (git-fixes). - proc: fix documentation and description of pagemap (git-fixes). - procfs: prevent unprivileged processes accessing fdinfo dir (git-fixes). - psi: fix "defined but not used" warnings when (git-fixes) - ptrace: Check PTRACE_O_SUSPEND_SECCOMP permission on PTRACE_SEIZE (bsc#1198413). - pvpanic: Fix typos in the comments (git-fixes). - pwm: lp3943: Fix duty calculation in case period was clamped (git-fixes). - pwm: lpc18xx-sct: Initialize driver data and hardware before pwmchip_add() (git-fixes). - pwm: raspberrypi-poe: Fix endianness in firmware struct (git-fixes). - qed: display VF trust config (git-fixes). - qede: confirm skb is allocated before using (git-fixes). - qed: fix ethtool register dump (jsc#SLE-19001). - qed: return status of qed_iov_get_link (git-fixes). - qla2xxx: add ->map_queues support for nvme (bsc#1195823). - qlcnic: dcb: default to returning -EOPNOTSUPP (git-fixes). - raid5: introduce MD_BROKEN (git-fixes). - random: check for signal_pending() outside of need_resched() check (git-fixes). - random: wake up /dev/random writers after zap (git-fixes). - random: wire up fops->splice_{read,write}_iter() (git-fixes). - ray_cs: Check ioremap return value (git-fixes). - RDMA/cma: Do not change route.addr.src_addr outside state checks (git-fixes). - RDMA/cma: Use correct address when leaving multicast group (git-fixes). - RDMA/core: Fix ib_qp_usecnt_dec() called when error (jsc#SLE-19249). - RDMA/core: Set MR type in ib_reg_user_mr (git-fixes). - RDMA/hfi1: Fix use-after-free bug for mm struct (git-fixes). - RDMA/ib_srp: Fix a deadlock (git-fixes). - RDMA/irdma: Fix netdev notifications for vlan's (git-fixes). - RDMA/irdma: Fix Passthrough mode in VM (git-fixes). - RDMA/irdma: Fix possible crash due to NULL netdev in notifier (git-fixes). - RDMA/irdma: Flush iWARP QP if modified to ERR from RTR state (git-fixes). - RDMA/irdma: Prevent some integer underflows (git-fixes). - RDMA/irdma: Reduce iWARP QP destroy time (git-fixes). - RDMA/irdma: Remove incorrect masking of PD (git-fixes). - RDMA/irdma: Set protocol based on PF rdma_mode flag (bsc#1200502). - RDMA/mlx4: Do not continue event handler after memory allocation failure (git-fixes). - RDMA/mlx5: Add a missing update of cache->last_add (git-fixes). - RDMA/mlx5: Do not remove cache MRs when a delay is needed (git-fixes). - RDMA/mlx5: Fix memory leak in error flow for subscribe event routine (git-fixes). - RDMA/mlx5: Fix the flow of a miss in the allocation of a cache ODP MR (git-fixes). - RDMA/nldev: Prevent underflow in nldev_stat_set_counter_dynamic_doit() (jsc#SLE-19249). - RDMA/rtrs-clt: Fix possible double free in error case (git-fixes). - RDMA/rtrs-clt: Move free_permit from free_clt to rtrs_clt_close (git-fixes). - RDMA/rxe: Change variable and function argument to proper type (jsc#SLE-19249). - RDMA/rxe: Check the last packet by RXE_END_MASK (git-fixes). - RDMA/rxe: Fix ref error in rxe_av.c (jsc#SLE-19249). - RDMA/siw: Fix a condition race issue in MPA request processing (git-fixes). - RDMA/siw: Fix broken RDMA Read Fence/Resume logic (git-fixes). - RDMA/siw: Fix refcounting leak in siw_create_qp() (jsc#SLE-19249). - RDMA/ucma: Protect mc during concurrent multicast leaves (git-fixes). - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips (git-fixes). - regmap-irq: Fix offset/index mismatch in read_sub_irq_data() (git-fixes). - regmap-irq: Update interrupt clear register for proper reset (git-fixes). - regulator: atc260x: Fix missing active_discharge_on setting (git-fixes). - regulator: core: Fix enable_count imbalance with EXCLUSIVE_GET (git-fixes). - regulator: core: fix false positive in regulator_late_cleanup() (git-fixes). - regulator: da9121: Fix uninit-value in da9121_assign_chip_model() (git-fixes). - regulator: mt6315: Enforce regulator-compatible, not name (git-fixes). - regulator: mt6315-regulator: fix invalid allowed mode (git-fixes). - regulator: pfuze100: Fix refcount leak in pfuze_parse_regulators_dt (git-fixes). - regulator: qcom_smd: fix for_each_child.cocci warnings (git-fixes). - regulator: qcom_smd: Fix up PM8950 regulator configuration (git-fixes). - regulator: rpi-panel: Handle I2C errors/timing to the Atmel (git-fixes). - regulator: scmi: Fix refcount leak in scmi_regulator_probe (git-fixes). - regulator: wm8994: Add an off-on delay for WM8994 variant (git-fixes). - remoteproc: Fix count check in rproc_coredump_write() (git-fixes). - remoteproc: imx_rproc: Ignore create mem entry for resource table (git-fixes). - remoteproc: qcom: Fix missing of_node_put in adsp_alloc_memory_region (git-fixes). - remoteproc: qcom_q6v5_mss: Fix some leaks in q6v5_alloc_memory_region (git-fixes). - remoteproc: qcom_wcnss: Add missing of_node_put() in wcnss_alloc_memory_region (git-fixes). - reset: tegra-bpmp: Restore Handle errors in BPMP response (git-fixes). - Revert "drm/amd/display: Fix DCN3 B0 DP Alt Mapping" (git-fixes). - Revert "svm: Add warning message for AVIC IPI invalid target" (git-fixes). - rfkill: make new event layout opt-in (git-fixes). - rfkill: uapi: fix RFKILL_IOCTL_MAX_SIZE ioctl request definition (git-fixes). - riscv: Fix fill_callchain return value (git fixes). - rpmsg: qcom_smd: Fix irq_of_parse_and_map() return value (git-fixes). - rpmsg: qcom_smd: Fix redundant channel->registered assignment (git-fixes). - rpmsg: qcom_smd: Fix returning 0 if irq_of_parse_and_map() fails (git-fixes). - rpmsg: virtio: Fix possible double free in rpmsg_probe() (git-fixes). - rpmsg: virtio: Fix possible double free in rpmsg_virtio_add_ctrl_dev() (git-fixes). - rpmsg: virtio: Fix the unregistration of the device rpmsg_ctrl (git-fixes). - rtc: check if __rtc_read_time was successful (git-fixes). - rtc: fix use-after-free on device removal (git-fixes). - rtc: ftrtc010: Fix error handling in ftrtc010_rtc_probe (git-fixes). - rtc: ftrtc010: Use platform_get_irq() to get the interrupt (git-fixes). - rtc: mc146818-lib: fix locking in mc146818_set_time (git-fixes). - rtc: mc146818-lib: Fix the AltCentury for AMD platforms (git-fixes). - rtc: mt6397: check return value after calling platform_get_resource() (git-fixes). - rtc: mxc: Silence a clang warning (git-fixes). - rtc: pcf2127: fix bug when reading alarm registers (git-fixes). - rtc: pl031: fix rtc features null pointer dereference (git-fixes). - rtc: sun6i: Fix time overflow handling (git-fixes). - rtc: wm8350: Handle error for wm8350_register_irq (git-fixes). - rtl818x: Prevent using not initialized queues (git-fixes). - rtlwifi: Use pr_warn instead of WARN_ONCE (git-fixes). - rtw88: 8821c: fix debugfs rssi value (git-fixes). - rtw88: 8821c: support RFE type4 wifi NIC (git-fixes). - rtw88: Disable PCIe ASPM while doing NAPI poll on 8821CE (git-fixes). - rtw88: rtw8821c: enable rfe 6 devices (git-fixes). - s390/crypto: fix scatterwalk_unmap() callers in AES-GCM (git-fixes). - s390/ctcm: fix potential memory leak (git-fixes). - s390/ctcm: fix variable dereferenced before check (git-fixes). - s390-dasd-fix-data-corruption-for-ESE-devices (bsc#1200205 LTC#198456). - s390/dasd: fix data corruption for ESE devices (git-fixes). - s390-dasd-Fix-read-for-ESE-with-blksize-4k (bsc#1200211 LTC#198457). - s390/dasd: Fix read for ESE with blksize 4k (git-fixes). - s390-dasd-Fix-read-inconsistency-for-ESE-DASD-devices (bsc#1200211 LTC#198457). - s390/dasd: Fix read inconsistency for ESE DASD devices (git-fixes). - s390-dasd-prevent-double-format-of-tracks-for-ESE-devices (bsc#1200205 LTC#198456). - s390/dasd: prevent double format of tracks for ESE devices (git-fixes). - s390/entry: fix duplicate tracking of irq nesting level (git-fixes). - s390/extable: fix exception table sorting (git-fixes). - s390/kexec_file: fix error handling when applying relocations (git-fixes). - s390/kexec: fix memory leak of ipl report buffer (git-fixes). - s390/kexec: fix return code handling (git-fixes). - s390/lcs: fix variable dereferenced before check (git-fixes). - s390/mcck: isolate SIE instruction when setting CIF_MCCK_GUEST flag (git-fixes). - s390/module: fix loading modules with a lot of relocations (git-fixes). - s390/nmi: handle guarded storage validity failures for KVM guests (git-fixes). - s390/nmi: handle vector validity failures for KVM guests (git-fixes). - s390/perf: obtain sie_block from the right address (bsc#1200315 LTC#198473). - s390/setup: avoid reserving memory above identity mapping (git-fixes). - s390/smp: sort out physical vs virtual pointers usage (git-fixes). - sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl (git-fixes). - sata_fsl: fix warning in remove_proc_entry when rmmod sata_fsl (git-fixes). - sc16is7xx: Fix for incorrect data being transmitted (git-fixes). - sched/core: Export pelt_thermal_tp (git-fixes) - sched/core: Fix forceidle balancing (git-fixes) - sched/core: Mitigate race (git-fixes) - sched/cpuacct: Fix charge percpu cpuusage (git-fixes) - sched/cpuacct: Fix user/system in shown cpuacct.usage* (git-fixes) - sched/debug: Remove mpol_get/put and task_lock/unlock from (git-fixes) - sched: Define and initialize a flag to identify valid PASID in the task (jsc#SLE-24350). - sched/fair: Consider CPU affinity when allowing NUMA imbalance in find_idlest_group() (bnc#1193431). - sched/fair: Fix fault in reweight_entity (git fixes (sched/core)). - sched/fair: Revise comment about lb decision matrix (git-fixes) - sched: Fix balance_push() vs __sched_setscheduler() (git-fixes) - sched: Fix yet more sched_fork() races (git fixes (sched/core)). - sched/membarrier: Fix membarrier-rseq fence command missing (git-fixes) - sched/numa: Adjust imb_numa_nr to a better approximation of memory channels (bnc#1193431). - sched/numa: Apply imbalance limitations consistently (bnc#1193431). - sched/numa: Do not swap tasks between nodes when spare capacity is available (bnc#1193431). - sched/numa: Initialise numa_migrate_retry (bnc#1193431). - sched/pasid: Add a kABI workaround (jsc#SLE-24350). - sched/pelt: Fix attach_entity_load_avg() corner case (git-fixes) - sched/pelt: Relax the sync of util_sum with util_avg (git-fixes) - sched/psi: report zeroes for CPU full at the system level (git-fixes) - sched/rt: Plug rt_mutex_setprio() vs push_rt_task() race (git-fixes) - sched/rt: Try to restart rt period timer when rt runtime (git-fixes) - sched/scs: Reset task stack state in bringup_cpu() (git-fixes) - sched/sugov: Ignore busy filter when rq is capped by (git-fixes) - sched: Teach the forced-newidle balancer about CPU affinity (git-fixes) - scripts/faddr2line: Fix overlapping text section failures (git-fixes). - scsi: block: pm: Always set request queue runtime active in blk_post_runtime_resume() (bsc#1198802). - scsi: block: PM fix blk_post_runtime_resume() args (bsc#1198802). - scsi: core: Query VPD size before getting full page (git-fixes). - scsi: dc395x: Fix a missing check on list iterator (git-fixes). - scsi: elx: efct: Do not use GFP_KERNEL under spin lock (git-fixes). - scsi: fnic: Fix a tracing statement (git-fixes). - scsi: fnic: Replace DMA mask of 64 bits with 47 bits (bsc#1199631). - scsi: hisi_sas: Add more logs for runtime suspend/resume (bsc#1198802). - scsi: hisi_sas: Change permission of parameter prot_mask (git-fixes). - scsi: hisi_sas: Fix rescan after deleting a disk (git-fixes). - scsi: hisi_sas: Fix some issues related to asd_sas_port-phy_list (bsc#1198802). - scsi: hisi_sas: Increase debugfs_dump_index after dump is completed (bsc#1198806). - scsi: hisi_sas: Initialise devices in .slave_alloc callback (bsc#1198802). - scsi: hisi_sas: Limit users changing debugfs BIST count value (bsc#1198803). - scsi: hisi_sas: Remove unused variable and check in hisi_sas_send_ata_reset_each_phy() (git-fixes). - scsi: hisi_sas: Wait for phyup in hisi_sas_control_phy() (bsc#1198802). - scsi: ibmvfc: Allocate/free queue resource only during probe/remove (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: ibmvfc: Store vhost pointer during subcrq allocation (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: libsas: Add flag SAS_HA_RESUMING (bsc#1198802). - scsi: libsas: Add spin_lock/unlock() to protect asd_sas_port->phy_list (bsc#1198802). - scsi: libsas: Defer works of new phys during suspend (bsc#1198802). - scsi: libsas: Do not always drain event workqueue for HA resume (bsc#1198802). - scsi: libsas: Fix sas_ata_qc_issue() handling of NCQ NON DATA commands (git-fixes). - scsi: libsas: Insert PORTE_BROADCAST_RCVD event for resuming host (bsc#1198802). - scsi: libsas: Keep host active while processing events (bsc#1198802). - scsi: libsas: Refactor sas_queue_deferred_work() (bsc#1198802). - scsi: libsas: Resume host while sending SMP I/Os (bsc#1198802). - scsi: lpfc: Add more logging of cmd and cqe information for aborted NVMe cmds (bsc#1201193). - scsi: lpfc: Address NULL pointer dereference after starget_to_rport() (bsc#1201193). - scsi: lpfc: Add support for ATTO Fibre Channel devices (bsc#1201193). - scsi: lpfc: Add support for VMID tagging of NVMe I/Os (bsc#1201193). - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd completion (bsc#1201193). - scsi: lpfc: Alter FPIN stat accounting logic (bsc#1200045). - scsi: lpfc: Change FA-PWWN detection methodology (bsc#1200045). - scsi: lpfc: Change VMID registration to be based on fabric parameters (bsc#1200045). - scsi: lpfc: Clear fabric topology flag before initiating a new FLOGI (bsc#1200045). - scsi: lpfc: Commonize VMID code location (bsc#1201193). - scsi: lpfc: Copyright updates for 14.2.0.0 patches (bsc#1197675). - scsi: lpfc: Copyright updates for 14.2.0.2 patches (bsc#1200045). - scsi: lpfc: Correct BDE DMA address assignment for GEN_REQ_WQE (bsc#1200045). - scsi: lpfc: Correct BDE type for XMIT_SEQ64_WQE in lpfc_ct_reject_event() (bsc#1201193). - scsi: lpfc: Correct CRC32 calculation for congestion stats (bsc#1200045). - scsi: lpfc: Decrement outstanding gidft_inp counter if lpfc_err_lost_link() (bsc#1200045). - scsi: lpfc: Drop lpfc_no_handler() (bsc#1197675). - scsi: lpfc: Expand setting ELS_ID field in ELS_REQUEST64_WQE (bsc#1200045). - scsi: lpfc: Fill in missing ndlp kref puts in error paths (bsc#1200045). - scsi: lpfc: Fix additional reference counting in lpfc_bsg_rport_els() (bsc#1200045). - scsi: lpfc: Fix broken SLI4 abort path (bsc#1197675). - scsi: lpfc: Fix call trace observed during I/O with CMF enabled (bsc#1200045). - scsi: lpfc: Fix diagnostic fw logging after a function reset (bsc#1200045). - scsi: lpfc: Fix dmabuf ptr assignment in lpfc_ct_reject_event() (bsc#1200045). - scsi: lpfc: Fix element offset in __lpfc_sli_release_iocbq_s4() (bsc#1200045). - scsi: lpfc: Fix field overload in lpfc_iocbq data structure (bsc#1200045). - scsi: lpfc: Fix locking for lpfc_sli_iocbq_lookup() (bsc#1197675). - scsi: lpfc: Fix ndlp put following a LOGO completion (bsc#1200045). - scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI and PLOGI (bsc#1200045). - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology (bsc#1201193). - scsi: lpfc: Fix queue failures when recovering from PCI parity error (bsc#1197675 bsc#1196478). - scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() (bsc#1200045). - scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock (bsc#1200045). - scsi: lpfc: Fix split code for FLOGI on FCoE (bsc#1200045). - scsi: lpfc: Fix typos in comments (bsc#1197675). - scsi: lpfc: Fix unload hang after back to back PCI EEH faults (bsc#1197675 bsc#1196478). - scsi: lpfc: Improve PCI EEH Error and Recovery Handling (bsc#1197675 bsc#1196478). - scsi: lpfc: Inhibit aborts if external loopback plug is inserted (bsc#1200045). - scsi: lpfc: Introduce FC_RSCN_MEMENTO flag for tracking post RSCN completion (bsc#1200045). - scsi: lpfc: Kill lpfc_bus_reset_handler() (bsc#1197675). - scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() (bsc#1200045). - scsi: lpfc: Move MI module parameter check to handle dynamic disable (bsc#1200045). - scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT (bsc#1200045). - scsi: lpfc: Reduce log messages seen after firmware download (bsc#1197675). - scsi: lpfc: Refactor cleanup of mailbox commands (bsc#1200045). - scsi: lpfc: Register for Application Services FC-4 type in Fabric topology (bsc#1200045). - scsi: lpfc: Remove failing soft_wwn support (bsc#1197675). - scsi: lpfc: Remove false FDMI NVMe FC-4 support for NPIV ports (bsc#1200045). - scsi: lpfc: Remove NVMe support if kernel has NVME_FC disabled (bsc#1197675). - scsi: lpfc: Remove redundant flush_workqueue() call (bsc#1197675). - scsi: lpfc: Remove redundant lpfc_sli_prep_wqe() call (bsc#1200045). - scsi: lpfc: Remove unnecessary null ndlp check in lpfc_sli_prep_wqe() (bsc#1200045). - scsi: lpfc: Remove unnecessary NULL pointer assignment for ELS_RDF path (bsc#1200045). - scsi: lpfc: Remove unneeded variable (bsc#1200045). - scsi: lpfc: Requeue SCSI I/O to upper layer when fw reports link down (bsc#1200045). - scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following abort path refactoring (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following SLI path refactoring (bsc#1201193). - scsi: lpfc: Revise FDMI reporting of supported port speed for trunk groups (bsc#1200045). - scsi: lpfc: Rework FDMI initialization after link up (bsc#1200045). - scsi: lpfc: Rework lpfc_vmid_get_appid() to be protocol independent (bsc#1201193). - scsi: lpfc: SLI path split: Introduce lpfc_prep_wqe (bsc#1197675). - scsi: lpfc: SLI path split: Refactor Abort paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor base ELS paths and the FLOGI path (bsc#1197675). - scsi: lpfc: SLI path split: Refactor BSG paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor CT paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor fast and slow paths to native SLI4 (bsc#1197675). - scsi: lpfc: SLI path split: Refactor FDISC paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor lpfc_iocbq (bsc#1197675). - scsi: lpfc: SLI path split: Refactor LS_ACC paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor LS_RJT paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor misc ELS paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor PLOGI/PRLI/ADISC/LOGO paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor SCSI paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor the RSCN/SCR/RDF/EDC/FARPR paths (bsc#1197675). - scsi: lpfc: SLI path split: Refactor VMID paths (bsc#1197675). - scsi: lpfc: Transition to NPR state upon LOGO cmpl if link down or aborted (bsc#1200045). - scsi: lpfc: Tweak message log categories for ELS/FDMI/NVMe rescan (bsc#1200045). - scsi: lpfc: Update fc_prli_sent outstanding only after guaranteed IOCB submit (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.0 (bsc#1197675). - scsi: lpfc: Update lpfc version to 14.2.0.1 (bsc#1197675). - scsi: lpfc: Update lpfc version to 14.2.0.2 (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.3 (bsc#1200045). - scsi: lpfc: Update lpfc version to 14.2.0.4 (bsc#1201193). - scsi: lpfc: Update stat accounting for READ_STATUS mbox command (bsc#1200045). - scsi: lpfc: Use fc_block_rport() (bsc#1197675). - scsi: lpfc: Use irq_set_affinity() (bsc#1197675). - scsi: lpfc: Use kcalloc() (bsc#1197675). - scsi: lpfc: Use list_for_each_entry_safe() in rscn_recovery_check() (bsc#1200045). - scsi: lpfc: Use rport as argument for lpfc_chk_tgt_mapped() (bsc#1197675). - scsi: lpfc: Use rport as argument for lpfc_send_taskmgmt() (bsc#1197675). - scsi: lpfc: Use sg_dma_address() and sg_dma_len() macros for NVMe I/O (bsc#1200045). - scsi: lpfc: Zero SLI4 fcp_cmnd buffer's fcpCntl0 field (bsc#1200045). - scsi: mpt3sas: Fix incorrect 4GB boundary check (git-fixes). - scsi: mpt3sas: Fix use after free in _scsih_expander_node_remove() (git-fixes). - scsi: mpt3sas: Page fault in reply q processing (git-fixes). - scsi: mpt3sas: Use cached ATA Information VPD page (git-fixes). - scsi: mvsas: Add spin_lock/unlock() to protect asd_sas_port->phy_list (bsc#1198802). - scsi: nvme-fc: Add new routine nvme_fc_io_getuuid() (bsc#1201193). - scsi: pm8001: Fix abort all task initialization (git-fixes). - scsi: pm8001: Fix command initialization in pm8001_chip_ssp_tm_req() (git-fixes). - scsi: pm8001: Fix command initialization in pm80XX_send_read_log() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_sata_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_chip_ssp_io_req() (git-fixes). - scsi: pm8001: Fix le32 values handling in pm80xx_set_sas_protocol_timer_config() (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command completion handling (git-fixes). - scsi: pm8001: Fix NCQ NON DATA command task initialization (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_encrypt_update() (git-fixes). - scsi: pm8001: Fix payload initialization in pm80xx_set_thermal_config() (git-fixes). - scsi: pm80xx: Enable upper inbound, outbound queues (git-fixes). - scsi: pm80xx: Mask and unmask upper interrupt vectors 32-63 (git-fixes). - scsi: qedi: Fix ABBA deadlock in qedi_process_tmf_resp() and qedi_process_cmd_cleanup_resp() (git-fixes). - scsi: qla2xxx: Add a new v2 dport diagnostic feature (bsc#1201160). - scsi: qla2xxx: Add debug prints in the device remove path (bsc#1201160). - scsi: qla2xxx: Add devids and conditionals for 28xx (bsc#1195823). - scsi: qla2xxx: Add ql2xnvme_queues module param to configure number of NVMe queues (bsc#1195823). - scsi: qla2xxx: Add qla2x00_async_done() for async routines (bsc#1195823). - scsi: qla2xxx: Add retry for exec firmware (bsc#1195823). - scsi: qla2xxx: Check for firmware dump already collected (bsc#1195823). - scsi: qla2xxx: edif: Add bsg interface to read doorbell events (bsc#1201160). - scsi: qla2xxx: edif: Add retry for ELS passthrough (bsc#1201160). - scsi: qla2xxx: edif: bsg refactor (bsc#1201160). - scsi: qla2xxx: edif: Fix clang warning (bsc#1195823). - scsi: qla2xxx: edif: Fix inconsistent check of db_flags (bsc#1195823). - scsi: qla2xxx: edif: Fix I/O timeout due to over-subscription (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n login retry for secure device (bsc#1201160). - scsi: qla2xxx: edif: Fix no login after app start (bsc#1201160). - scsi: qla2xxx: edif: Fix no logout on delete for N2N (bsc#1201160). - scsi: qla2xxx: edif: Fix potential stuck session in sa update (bsc#1201160). - scsi: qla2xxx: edif: Fix session thrash (bsc#1201160). - scsi: qla2xxx: edif: Fix slow session teardown (bsc#1201160). - scsi: qla2xxx: edif: Reduce connection thrash (bsc#1195823). - scsi: qla2xxx: edif: Reduce disruption due to multiple app start (bsc#1201160). - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing (bsc#1201160). - scsi: qla2xxx: edif: Reduce N2N thrashing at app_start time (bsc#1201160). - scsi: qla2xxx: edif: Remove old doorbell interface (bsc#1201160). - scsi: qla2xxx: edif: Remove unneeded variable (bsc#1200046). - scsi: qla2xxx: edif: Replace list_for_each_safe with list_for_each_entry_safe (bsc#1195823). - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message (bsc#1201160). - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication application (bsc#1201160). - scsi: qla2xxx: edif: Tear down session if keys have been removed (bsc#1201160). - scsi: qla2xxx: edif: Tweak trace message (bsc#1195823). - scsi: qla2xxx: edif: Wait for app to ack on sess down (bsc#1201160). - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (bsc#1201160). - scsi: qla2xxx: Fix crash during module load unload test (bsc#1197661). - scsi: qla2xxx: Fix device reconnect in loop topology (bsc#1195823). - scsi: qla2xxx: Fix disk failure to rediscover (bsc#1197661). - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection (bsc#1201160). - scsi: qla2xxx: Fix excessive I/O error messages by default (bsc#1201160). - scsi: qla2xxx: Fix hang due to session stuck (bsc#1197661). - scsi: qla2xxx: Fix incorrect reporting of task management failure (bsc#1197661). - scsi: qla2xxx: Fix laggy FC remote port session recovery (bsc#1197661). - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os (bsc#1201160). - scsi: qla2xxx: Fix losing target when it reappears during delete (bsc#1201160). - scsi: qla2xxx: Fix loss of NVMe namespaces after driver reload test (bsc#1197661). - scsi: qla2xxx: Fix missed DMA unmap for aborted commands (bsc#1200046). - scsi: qla2xxx: Fix missed DMA unmap for NVMe ls requests (bsc#1197661). - scsi: qla2xxx: Fix N2N inconsistent PLOGI (bsc#1197661). - scsi: qla2xxx: Fix premature hw access after PCI error (bsc#1195823). - scsi: qla2xxx: Fix scheduling while atomic (bsc#1195823). - scsi: qla2xxx: Fix stuck session in gpdb (bsc#1195823). - scsi: qla2xxx: Fix stuck session of PRLI reject (bsc#1197661). - scsi: qla2xxx: Fix T10 PI tag escape and IP guard options for 28XX adapters (bsc#1195823). - scsi: qla2xxx: Fix typos in comments (bsc#1197661). - scsi: qla2xxx: Fix warning for missing error code (bsc#1195823). - scsi: qla2xxx: Fix warning message due to adisc being flushed (bsc#1195823). - scsi: qla2xxx: Fix wrong FDMI data for 64G adapter (bsc#1195823). - scsi: qla2xxx: Implement ref count for SRB (bsc#1195823). - scsi: qla2xxx: Increase max limit of ql2xnvme_queues (bsc#1197661). - scsi: qla2xxx: Reduce false trigger to login (bsc#1197661). - scsi: qla2xxx: Refactor asynchronous command initialization (bsc#1195823). - scsi: qla2xxx: Remove a declaration (bsc#1195823). - scsi: qla2xxx: Remove free_sg command flag (bsc#1200046). - scsi: qla2xxx: Remove setting of 'req' and 'rsp' parameters (bsc#1201160). - scsi: qla2xxx: Remove unneeded flush_workqueue() (bsc#1200046). - scsi: qla2xxx: Remove unused qla_sess_op_cmd_list from scsi_qla_host_t (bsc#1195823). - scsi: qla2xxx: Remove unused 'ql_dm_tgt_ex_pct' parameter (bsc#1201160). - scsi: qla2xxx: Stop using the SCSI pointer (bsc#1197661). - scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair() (bsc#1195823). - scsi: qla2xxx: Turn off multi-queue for 8G adapters (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.200-k (bsc#1195823). - scsi: qla2xxx: Update version to 10.02.07.300-k (bsc#1195823). - scsi: qla2xxx: Update version to 10.02.07.400-k (bsc#1197661). - scsi: qla2xxx: Update version to 10.02.07.500-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.600-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.700-k (bsc#1201160). - scsi: qla2xxx: Use correct feature type field during RFF_ID processing (bsc#1197661). - scsi: qla2xxx: Use named initializers for port_state_str (bsc#1197661). - scsi: qla2xxx: Use named initializers for q_dev_state (bsc#1197661). - scsi: qla2xxx: Wind down adapter after PCIe error (bsc#1201160). - scsi: scsi_transport_fc: Fix FPIN Link Integrity statistics counters (git-fixes). - scsi: sr: Do not leak information in ioctl (git-fixes). - scsi: ufs: core: Exclude UECxx from SFR dump list (git-fixes). - scsi: ufs: qcom: Add a readl() to make sure ref_clk gets enabled (git-fixes). - scsi: ufs: qcom: Fix ufs_qcom_resume() (git-fixes). - scsi: virtio-scsi: Eliminate anonymous module_init and module_exit (git-fixes). - scsi: zorro7xx: Fix a resource leak in zorro7xx_remove_one() (git-fixes). - selftest: KVM: Add open sev dev helper (bsc#1194526). - selftests/bpf: Remove unused variable in tc_tunnel prog (git-fixes). - selftests: firmware: Fix the request_firmware_into_buf() test for XZ format (git-fixes). - selftests: firmware: Use smaller dictionary for XZ compression (git-fixes). - selftests: fix check for circular KVM_CAP_VM_MOVE_ENC_CONTEXT_FROM (bsc#1194526). - selftests: KVM: Add /x86_64/sev_migrate_tests to .gitignore (bsc#1194526). - selftests: KVM: Fix check for !POLLIN in demand_paging_test (bsc#1194526). - selftests: kvm: Remove absent target file (git-fixes). - selftests: KVM: sev_migrate_tests: Fix sev_ioctl() (bsc#1194526). - selftests: kvm/x86: Fix the warning in lib/x86_64/processor.c (bsc#1194526). - selftests/powerpc: Add test for real address error handling (jsc#SLE-18194). - serial: 8250: Also set sticky MCR bits in console restoration (git-fixes). - serial: 8250_aspeed_vuart: add PORT_ASPEED_VUART port type (git-fixes). - serial: 8250_aspeed_vuart: Fix potential NULL dereference in aspeed_vuart_probe (git-fixes). - serial: 8250: core: Remove unneeded linux/pm_runtime.h (git-fixes). - serial: 8250: Correct the clock for EndRun PTP/1588 PCIe device (git-fixes). - serial: 8250_fintek: Check SER_RS485_RTS_* only with RS485 (git-fixes). - serial: 8250: Fix race condition in RTS-after-send handling (git-fixes). - serial: 8250: fix XOFF/XON sending when DMA is used (git-fixes). - serial: 8250_lpss: Balance reference count for PCI DMA device (git-fixes). - serial: 8250_mid: Balance reference count for PCI DMA device (git-fixes). - serial: 8250_mtk: Fix register address for XON/XOFF character (git-fixes). - serial: 8250_mtk: Fix UART_EFR register address (git-fixes). - serial: 8250: pxa: Remove unneeded linux/pm_runtime.h (git-fixes). - serial: core: Fix the definition name in the comment of UPF_* flags (git-fixes). - serial: cpm_uart: Fix build error without CONFIG_SERIAL_CPM_CONSOLE (git-fixes). - serial: digicolor-usart: Do not allow CS5-6 (git-fixes). - serial: imx: fix overrun interrupts in DMA mode (git-fixes). - serial: meson: acquire port->lock in startup() (git-fixes). - serial: msm_serial: disable interrupts in __msm_console_write() (git-fixes). - serial: pch: do not overwrite xmit->buf[0] by x_char (git-fixes). - serial: rda-uart: Do not allow CS5-6 (git-fixes). - serial: samsung_tty: do not unlock port->lock for uart_write_wakeup() (git-fixes). - serial: sh-sci: Do not allow CS5-6 (git-fixes). - serial: sifive: Report actual baud base rather than fixed 115200 (git-fixes). - serial: sifive: Sanitize CSIZE and c_iflag (git-fixes). - serial: st-asc: Sanitize CSIZE and correct PARENB for CS7 (git-fixes). - serial: stm32-usart: Correct CSIZE, bits, and parity (git-fixes). - serial: txx9: Do not allow CS5-6 (git-fixes). - sfc: Do not free an empty page_ring (git-fixes). - sfc: fallback for lack of xdp tx queues (bsc#1196306). - sfc: last resort fallback for lack of xdp tx queues (bsc#1196306). - sfc: Use swap() instead of open coding it (bsc#1196306). - sfc: use swap() to make code cleaner (bsc#1196306). - skbuff: fix coalescing for page_pool fragment recycling (bsc#1190336). - slimbus: qcom: Fix IRQ check in qcom_slim_probe (git-fixes). - slip: fix macro redefine warning (git-fixes). - smb3: add mount parm nosparse (bsc#1193629). - smb3: add trace point for lease not found issue (bsc#1193629). - smb3: add trace point for oplock not found (bsc#1193629). - smb3: check for null tcon (bsc#1193629). - smb3: cleanup and clarify status of tree connections (bsc#1193629). - smb3: do not set rc when used and unneeded in query_info_compound (bsc#1193629). - SMB3: EBADF/EIO errors in rename/open caused by race condition in smb2_compound_op (bsc#1193629). - smb3: fix incorrect session setup check for multiuser mounts (bsc#1193629). - smb3: fix ksmbd bigendian bug in oplock break, and move its struct to smbfs_common (bsc#1193629). - smb3: fix snapshot mount option (bsc#1193629). - [smb3] improve error message when mount options conflict with posix (bsc#1193629). - smb3: move defines for ioctl protocol header and SMB2 sizes to smbfs_common (bsc#1193629). - smb3: move defines for query info and query fsinfo to smbfs_common (bsc#1193629). - [smb3] move more common protocol header definitions to smbfs_common (bsc#1193629). - smb3: send NTLMSSP version information (bsc#1193629). - smp: Fix offline cpu check in flush_smp_call_function_queue() (git-fixes). - smsc911x: allow using IRQ0 (git-fixes). - soc: aspeed: lpc-ctrl: Block error printing on probe defer cases (git-fixes). - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe (git-fixes). - soc: bcm: Check for NULL return of devm_kzalloc() (git-fixes). - soc: fsl: Correct MAINTAINERS database (QUICC ENGINE LIBRARY) (git-fixes). - soc: fsl: Correct MAINTAINERS database (SOC) (git-fixes). - soc: fsl: guts: Add a missing memory allocation failure check (git-fixes). - soc: fsl: guts: Revert commit 3c0d64e867ed (git-fixes). - soc: fsl: qe: Check of ioremap return value (git-fixes). - soc: mediatek: pm-domains: Add wakeup capacity support in power domain (git-fixes). - soc: qcom: aoss: Expose send for generic usecase (git-fixes). - soc: qcom: aoss: Fix missing put_device call in qmp_get (git-fixes). - soc: qcom: aoss: remove spurious IRQF_ONESHOT flags (git-fixes). - soc: qcom: llcc: Add MODULE_DEVICE_TABLE() (git-fixes). - soc: qcom: ocmem: Fix missing put_device() call in of_get_ocmem (git-fixes). - soc: qcom: rpmpd: Check for null return of devm_kcalloc (git-fixes). - soc: qcom: smp2p: Fix missing of_node_put() in smp2p_parse_ipc (git-fixes). - soc: qcom: smsm: Fix missing of_node_put() in smsm_parse_ipc (git-fixes). - soc: rockchip: Fix refcount leak in rockchip_grf_init (git-fixes). - soc: ti: ti_sci_pm_domains: Check for null return of devm_kcalloc (git-fixes). - soc: ti: wkup_m3_ipc: Fix IRQ check in wkup_m3_ipc_probe (git-fixes). - sound/oss/dmasound: fix build when drivers are mixed =y/=m (git-fixes). - sound/oss/dmasound: fix 'dmasound_setup' defined but not used (git-fixes). - soundwire: intel: fix wrong register name in intel_shim_wake (git-fixes). - soundwire: intel: prevent pm_runtime resume prior to system suspend (git-fixes). - soundwire: qcom: adjust autoenumeration timeout (git-fixes). - speakup-dectlk: Restore pitch setting (git-fixes). - spi: atmel-quadspi: Fix the buswidth adjustment between spi-mem and controller (git-fixes). - spi: bcm-qspi: fix MSPI only access with bcm_qspi_exec_mem_op() (git-fixes). - spi: cadence-quadspi: fix incorrect supports_op() return value (git-fixes). - spi: cadence-quadspi: fix protocol setup for non-1-1-X operations (git-fixes). - spi: core: add dma_map_dev for __spi_unmap_msg() (git-fixes). - spi: Fix erroneous sgs value with min_t() (git-fixes). - spi: Fix invalid sgs value (git-fixes). - spi: Fix Tegra QSPI example (git-fixes). - spi: img-spfi: Fix pm_runtime_get_sync() error checking (git-fixes). - spi: mxic: Fix the transmit path (git-fixes). - spi: pxa2xx-pci: Balance reference count for PCI DMA device (git-fixes). - spi: qcom-qspi: Add minItems to interconnect-names (git-fixes). - spi: rockchip: Fix error in getting num-cs property (git-fixes). - spi: rockchip: fix missing error on unsupported SPI_CS_HIGH (git-fixes). - spi: rockchip: Preset cs-high and clk polarity in setup progress (git-fixes). - spi: rockchip: Stop spi slave dma receiver when cs inactive (git-fixes). - spi: rockchip: terminate dma transmission when slave abort (git-fixes). - spi: spi-cadence: Fix kernel-doc format for resume/suspend (git-fixes). - spi: spi-fsl-qspi: check return value after calling platform_get_resource_byname() (git-fixes). - spi: spi-mtk-nor: initialize spi controller after resume (git-fixes). - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction (git-fixes). - spi: spi-ti-qspi: Fix return value handling of wait_for_completion_timeout (git-fixes). - spi: spi-zynqmp-gqspi: Handle error for dma_set_mask (git-fixes). - spi: spi-zynq-qspi: Fix a NULL pointer dereference in zynq_qspi_exec_mem_op() (git-fixes). - spi: stm32-qspi: Fix wait_cmd timeout in APM mode (git-fixes). - spi: tegra114: Add missing IRQ check in tegra_spi_probe (git-fixes). - spi: tegra20: Use of_device_get_match_data() (git-fixes). - spi: tegra210-quad: Fix missin IRQ check in tegra_qspi_probe (git-fixes). - sr9700: sanity check for packet length (bsc#1196836). - staging: fbtft: fb_st7789v: reset display before initialization (git-fixes). - staging: fbtft: Fix error path in fbtft_driver_module_init() (git-fixes). - staging: fieldbus: Fix the error handling path in anybuss_host_common_probe() (git-fixes). - staging: gdm724x: fix use after free in gdm_lte_rx() (git-fixes). - staging:iio:adc:ad7280a: Fix handing of device address bit reversing (git-fixes). - staging: most: dim2: force fcnt=3 on Renesas GEN3 (git-fixes). - staging: most: dim2: use device release method (git-fixes). - staging: most: dim2: use if statements instead of ?: expressions (git-fixes). - staging: mt7621-dts: fix formatting (git-fixes). - staging: mt7621-dts: fix LEDs and pinctrl on GB-PC1 devicetree (git-fixes). - staging: mt7621-dts: fix pinctrl-0 items to be size-1 items on ethernet (git-fixes). - staging: mt7621-dts: fix pinctrl properties for ethernet (git-fixes). - staging: rtl8712: fix a potential memory leak in r871xu_drv_init() (git-fixes). - staging: rtl8712: fix uninit-value in r871xu_drv_init() (git-fixes). - staging: rtl8712: fix uninit-value in usb_read8() and friends (git-fixes). - staging: rtl8723bs: Fix access-point mode deadlock (git-fixes). - staging: vc04_services: shut up out-of-range warning (git-fixes). - staging: vchiq_arm: Avoid NULL ptr deref in vchiq_dump_platform_instances (git-fixes). - staging: vchiq_core: handle NULL result of find_service_by_handle (git-fixes). - staging: vchiq: Move certain declarations to vchiq_arm.h (git-fixes). - staging: vchiq: Move vchiq char driver to its own file (git-fixes). - staging: vchiq: Refactor vchiq cdev code (git-fixes). - staging: wfx: fix an error handling in wfx_init_common() (git-fixes). - stddef: Introduce DECLARE_FLEX_ARRAY() helper (git-fixes). - stm: ltdc: fix two incorrect NULL checks on list iterator (bsc#1190786) - SUNRPC: change locking for xs_swap_enable/disable (bsc#1196367). - SUNRPC: Do not dereference non-socket transports in sysfs (git-fixes). - SUNRPC: Do not dereference non-socket transports in sysfs - kabi fix (git-fixes). - SUNRPC do not resend a task on an offlined transport (git-fixes). - SUNRPC: Ensure gss-proxy connects on setup (git-fixes). - SUNRPC: Ensure that the gssproxy client can start in a connected state (git-fixes). - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer() (git-fixes). - SUNRPC: Fix the svc_deferred_event trace class (git-fixes). - SUNRPC: Handle ENOMEM in call_transmit_status() (git-fixes). - SUNRPC: Handle low memory situations in call_status() (git-fixes). - SUNRPC release the transport of a relocated task with an assigned transport (git-fixes). - SUNRPC: svc_tcp_sendmsg() should handle errors from xdr_alloc_bvec() (git-fixes). - SUNRPC: Trap RDMA segment overflows (git-fixes). - SUNRPC: use different lock keys for INET6 and LOCAL (git-fixes). - supported.conf: add intel_sdsi - supported.conf: mark pfuze100 regulator as supported (bsc#1199909) - supported.conf: Support TPM TIS SPI driver (jsc#SLE-24093) - surface: surface3_power: Fix battery readings on batteries without a serial number (git-fixes). - swiotlb: max mapping size takes min align mask into account (bsc#1197303). - sysrq: do not omit current cpu when showing backtrace of all active CPUs (git-fixes). - thermal/core: Fix memory leak in __thermal_cooling_device_register() (git-fixes). - thermal: core: Fix TZ_GET_TRIP NULL pointer dereference (git-fixes). - thermal: devfreq_cooling: use local ops instead of global ops (git-fixes). - thermal/drivers/bcm2711: Do not clamp temperature at zero (git-fixes). - thermal/drivers/broadcom: Fix potential NULL dereference in sr_thermal_probe (git-fixes). - thermal/drivers/imx_sc_thermal: Fix refcount leak in imx_sc_thermal_probe (git-fixes). - thermal/drivers/int340x: Improve the tcc offset saving for suspend/resume (git-fixes). - thermal: int340x: Check for NULL after calling kmemdup() (git-fixes). - thermal: int340x: Fix attr.show callback prototype (git-fixes). - thermal: int340x: fix memory leak in int3400_notify() (git-fixes). - thermal: int340x: Increase bitmap size (git-fixes). - thunderbolt: Use different lane for second DisplayPort tunnel (git-fixes). - tick/nohz: unexport __init-annotated tick_nohz_full_setup() (bsc#1201218). - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator (bsc#1190786) - timekeeping: Mark NMI safe time accessors as notrace (git-fixes) - timers: Fix warning condition in __run_timers() (git-fixes) - TOMOYO: fix __setup handlers return values (git-fixes). - tools arch x86: Add Intel SDSi provisiong tool (jsc#SLE-18938). - tools: bpftool: Complete metrics list in "bpftool prog profile" doc (git-fixes). - tools: bpftool: Document and add bash completion for -L, -B options (git-fixes). - tools: bpftool: Update and synchronise option list in doc and help msg (git-fixes). - tpm: Fix buffer access in tpm2_get_tpm_pt() (git-fixes). - tpm: Fix error handling in async work (git-fixes). - tpm: ibmvtpm: Correct the return value in tpm_ibmvtpm_probe() (bsc#1065729). - tpm: use try_get_ops() in tpm-space.c (git-fixes). - tps6598x: clear int mask on probe failure (git-fixes). - tracing: Do not inc err_log entry count if entry allocation fails (git-fixes). - tracing: Dump stacktrace trigger to the corresponding instance (git-fixes). - tracing: Fix potential double free in create_var_ref() (git-fixes). - tracing: Fix return value of __setup handlers (git-fixes). - tracing: Fix return value of trace_pid_write() (git-fixes). - tracing: Fix smatch warning for null glob in event_hist_trigger_parse() (git-fixes). - tracing: Have trace event string test handle zero length strings (git-fixes). - tracing: Have traceon and traceoff trigger honor the instance (git-fixes). - tracing/histogram: Fix a potential memory leak for kstrdup() (git-fixes). - tracing/histogram: Fix sorting on old "cpu" value (git-fixes). - tracing/osnoise: Force quiescent states while tracing (git-fixes). - tracing: Propagate is_signed to expression (git-fixes). - tracing: Show kretprobe unknown indicator only for kretprobe_trampoline (bsc#1193277). - tty: Fix a possible resource leak in icom_probe (git-fixes). - tty: fix deadlock caused by calling printk() under tty_port->lock (git-fixes). - tty: goldfish: Fix free_irq() on remove (git-fixes). - tty: goldfish: Introduce gf_ioread32()/gf_iowrite32() (git-fixes). - tty: goldfish: Use tty_port_destroy() to destroy port (git-fixes). - tty: n_gsm: Debug output allocation must use GFP_ATOMIC (git-fixes). - tty: n_gsm: Do not ignore write return value in gsmld_output() (git-fixes). - tty: n_gsm: fix deadlock in gsmtty_open() (git-fixes). - tty: n_gsm: fix encoding of control signal octet bit DV (git-fixes). - tty: n_gsm: fix NULL pointer access due to DLCI release (git-fixes). - tty: n_gsm: Fix packet data hex dump output (git-fixes). - tty: n_gsm: fix proper link termination after failed open (git-fixes). - tty: n_gsm: fix wrong modem processing in convergence layer type 2 (git-fixes). - tty: n_gsm: fix wrong tty control line for flow control (git-fixes). - tty: n_tty: do not look ahead for EOL character past the end of the buffer (git-fixes). - tty: n_tty: Restore EOF push handling behavior (git-fixes). - tty/serial: digicolor: fix possible null-ptr-deref in digicolor_uart_probe() (git-fixes). - tty: serial: fsl_lpuart: fix potential bug when using both of_alias_get_id and ida_simple_get (git-fixes). - tty: serial: owl: Fix missing clk_disable_unprepare() in owl_uart_probe (git-fixes). - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean() (git-fixes). - u64_stats: Disable preemption on 32bit UP+SMP PREEMPT_RT during updates (bsc#1189998). - uapi/linux/stddef.h: Add include guards (jsc#SLE-18978). - ucounts: Enforce RLIMIT_NPROC not RLIMIT_NPROC+1 (bsc#1194191). - udmabuf: validate ubuf->pagecount (git-fixes). - udp_tunnel: Fix end of loop test in udp_tunnel_nic_unregister() (git-fixes). - usb: cdc-wdm: fix reading stuck on device close (git-fixes). - usb: cdns3: Fix issue for clear halt endpoint (git-fixes). - usb: cdnsp: fix cdnsp_decode_trb function to properly handle ret value (git-fixes). - usb: cdnsp: Fixed setting last_trb incorrectly (git-fixes). - usb: chipidea: udc: check request status before setting device address (git-fixes). - usb: core: Do not hold the device lock while sleeping in do_proc_control() (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: drd: fix soft connect when gadget is unconfigured (git-fixes). - usb: dwc2: Fix memory leak in dwc2_hcd_init (git-fixes). - usb: dwc2: gadget: do not reset gadget's driver->bus (git-fixes). - usb: dwc2: gadget: do not try to disable ep0 in dwc2_hsotg_suspend (git-fixes). - usb: dwc3: core: Fix tx/rx threshold settings (git-fixes). - usb: dwc3: core: Only handle soft-reset in DCTL (git-fixes). - usb: dwc3: Decouple USB 2.0 L1 & L2 events (git-fixes). - usb: dwc3: gadget: Change to dev_dbg() when queuing to inactive gadget/ep (git-fixes). - usb: dwc3: gadget: ep_queue simplify isoc start condition (git-fixes). - usb: dwc3: gadget: Fix IN endpoint max packet size allocation (git-fixes). - usb: dwc3: gadget: Give some time to schedule isoc (git-fixes). - usb: dwc3: gadget: Ignore Update Transfer cmd params (git-fixes). - usb: dwc3: gadget: Let the interrupt handler disable bottom halves (git-fixes). - usb: dwc3: gadget: move cmd_endtransfer to extra function (git-fixes). - usb: dwc3: gadget: Move null pinter check to proper place (git-fixes). - usb: dwc3: gadget: Prevent core from processing stale TRBs (git-fixes). - usb: dwc3: gadget: Prevent repeat pullup() (git-fixes). - usb: dwc3: gadget: Replace list_for_each_entry_safe() if using giveback (git-fixes). - usb: dwc3: gadget: Return proper request status (git-fixes). - usb: dwc3: gadget: Skip checking Update Transfer status (git-fixes). - usb: dwc3: gadget: Skip reading GEVNTSIZn (git-fixes). - usb: dwc3: gadget: Wait for ep0 xfers to complete during dequeue (git-fixes). - usb: dwc3: Issue core soft reset before enabling run/stop (git-fixes). - usb: dwc3: omap: fix "unbalanced disables for smps10_out1" on omap5evm (git-fixes). - usb: dwc3: pci: Add "snps,dis_u2_susphy_quirk" for Intel Bay Trail (git-fixes). - usb: dwc3: pci: add support for the Intel Meteor Lake-P (git-fixes). - usb: dwc3: pci: add support for the Intel Raptor Lake-S (git-fixes). - usb: dwc3: pci: Fix Bay Trail phy GPIO mappings (git-fixes). - usb: dwc3: pci: Fix pm_runtime_get_sync() error checking (git-fixes). - usb: dwc3: pci: Set the swnode from inside dwc3_pci_quirks() (git-fixes). - usb: dwc3: Try usb-role-switch first in dwc3_drd_init (git-fixes). - usb: dwc3: xilinx: fix uninitialized return value (git-fixes). - usb: ehci: add pci device support for Aspeed platforms (git-fixes). - usb: ehci-omap: drop unused ehci_read() function (git-fixes). - usb: f_fs: Fix use-after-free for epfile (git-fixes). - usb: Fix xhci event ring dequeue pointer ERDP update issue (git-fixes). - usb: gadget: configfs: clear deactivation flag in configfs_composite_unbind() (git-fixes). - usb: gadget: eliminate anonymous module_init and module_exit (git-fixes). - usb: gadget: f_fs: change ep->ep safe in ffs_epfile_io() (git-fixes). - usb: gadget: f_fs: change ep->status safe in ffs_epfile_io() (git-fixes). - USB: gadget: Fix double-free bug in raw_gadget driver (git-fixes). - usb: gadget: Fix non-unique driver names in raw-gadget driver (git-fixes). - usb: gadget: fix race when gadget driver register via ioctl (git-fixes). - usb: gadget: Fix use-after-free bug by not setting udc->dev.driver (git-fixes). - usb: gadget: f_uac2: Define specific wTerminalType (git-fixes). - usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe (git-fixes). - usb: gadget: rndis: add spinlock for rndis response list (git-fixes). - usb: gadget: rndis: check size of RNDIS_MSG_SET command (git-fixes). - usb: gadget: rndis: prevent integer overflow in rndis_set_response() (git-fixes). - usb: gadget: tegra-xudc: Do not program SPARAM (git-fixes). - usb: gadget: tegra-xudc: Fix control endpoint's definitions (git-fixes). - usb: gadget: udc: renesas_usb3: Fix host to USB_ROLE_NONE transition (git-fixes). - usb: gadget: u_ether: fix regression in setting fixed MAC address (git-fixes). - usb: gadget: uvc: allow for application to cleanly shutdown (git-fixes). - usb: gadget: uvc: Fix crash when encoding data for usb request (git-fixes). - usb: gadget: uvc: rename function to be more consistent (git-fixes). - usb: gadget: validate endpoint index for xilinx udc (git-fixes). - usb: gadget: validate interface OS descriptor requests (git-fixes). - usb: hcd-pci: Fully suspend across freeze/thaw cycle (git-fixes). - usb: hcd-pci: Use PCI_STD_NUM_BARS when checking standard BARs (git-fixes). - usb: host: isp116x: check return value after calling platform_get_resource() (git-fixes). - usb: isp1760: Fix out-of-bounds array access (git-fixes). - usb: misc: fix improper handling of refcount in uss720_probe() (git-fixes). - usb: mtu3: fix USB 3.0 dual-role-switch from device to host (git-fixes). - usb: musb: Fix missing of_node_put() in omap2430_probe (git-fixes). - usbnet: fix memory allocation in helpers (git-fixes). - usb: new quirk for Dell Gen 2 devices (git-fixes). - usb: phy: generic: Get the vbus supply (git-fixes). - usb: quirks: add a Realtek card reader (git-fixes). - usb: quirks: add STRING quirk for VCOM device (git-fixes). - usb: raw-gadget: fix handling of dual-direction-capable endpoints (git-fixes). - usb: serial: ch341: add support for GW Instek USB2.0-Serial devices (git-fixes). - usb: serial: cp210x: add CPI Bulk Coin Recycler id (git-fixes). - usb: serial: cp210x: add NCR Retail IO box id (git-fixes). - usb: serial: cp210x: add PIDs for Kamstrup USB Meter Reader (git-fixes). - usb: serial: ftdi_sio: add support for Brainboxes US-159/235/320 (git-fixes). - usb: serial: io_ti: add Agilent E5805A support (git-fixes). - usb: serial: option: add Fibocom L610 modem (git-fixes). - usb: serial: option: add Fibocom MA510 modem (git-fixes). - usb: serial: option: add Quectel BG95 modem (git-fixes). - USB: serial: option: add Quectel EM05-G modem (git-fixes). - USB: serial: option: add Quectel RM500K module support (git-fixes). - usb: serial: option: add support for Cinterion MV31 with new baseline (git-fixes). - usb: serial: option: add support for Cinterion MV32-WA/MV32-WB (git-fixes). - usb: serial: option: add support for DW5829e (git-fixes). - usb: serial: option: add Telit 0x1057, 0x1058, 0x1075 compositions (git-fixes). - USB: serial: option: add Telit LE910Cx 0x1250 composition (git-fixes). - usb: serial: option: add Telit LE910R1 compositions (git-fixes). - usb: serial: option: add ZTE MF286D modem (git-fixes). - usb: serial: pl2303: add device id for HP LM930 Display (git-fixes). - usb: serial: pl2303: add IBM device IDs (git-fixes). - USB: serial: pl2303: add support for more HXN (G) types (git-fixes). - usb: serial: pl2303: fix GS type detection (git-fixes). - usb: serial: pl2303: fix type detection for odd device (git-fixes). - usb: serial: qcserial: add support for Sierra Wireless EM7590 (git-fixes). - usb: serial: simple: add Nokia phone driver (git-fixes). - usb: serial: whiteheat: fix heap overflow in WHITEHEAT_GET_DTR_RTS (git-fixes). - usb: storage: karma: fix rio_karma_init return (git-fixes). - usb: storage: ums-realtek: fix error code in rts51x_read_mem() (git-fixes). - usb: typec: mux: Check dev_set_name() return value (git-fixes). - usb: typec: tcpci: Do not skip cleanup in .remove() on error (git-fixes). - usb: typec: tcpci_mt6360: Update for BMC PHY setting (git-fixes). - usb: typec: tipd: Forward plug orientation to typec subsystem (git-fixes). - usb: typec: ucsi: Fix reuse of completion structure (git-fixes). - usb: typec: ucsi: Fix role swapping (git-fixes). - usb: ulpi: Call of_node_put correctly (git-fixes). - usb: ulpi: Move of_node_put to ulpi_dev_release (git-fixes). - usb: usbip: add missing device lock on tweak configuration cmd (git-fixes). - usb: usbip: eliminate anonymous module_init and module_exit (git-fixes). - usb: usbip: fix a refcount leak in stub_probe() (git-fixes). - usb: usb-storage: Fix use of bitfields for hardware data in ene_ub6250.c (git-fixes). - usb: usbtmc: Fix bug in pipe direction for control transfers (git-fixes). - usb: xhci: tegra:Fix PM usage reference leak of tegra_xusb_unpowergate_partitions (git-fixes). - usb: zaurus: support another broken Zaurus (git-fixes). - vdpasim: allow to enable a vq repeatedly (git-fixes). - veth: Ensure eth header is in skb's linear part (git-fixes). - veth: fix races around rq->rx_notify_masked (git-fixes). - vfio/ccw: Remove unneeded GFP_DMA (git-fixes). - vhost_vdpa: do not setup irq offloading when irq_num 0 (git-fixes). - vhost/vsock: do not check owner in vhost_vsock_stop() while releasing (git-fixes). - vhost/vsock: fix incorrect used length reported to the guest (git-fixes). - video: fbdev: atari: Atari 2 bpp (STe) palette bugfix (git-fixes). - video: fbdev: atmel_lcdfb: fix an error code in atmel_lcdfb_probe() (git-fixes). - video: fbdev: cirrusfb: check pixclock to avoid divide by zero (git-fixes). - video: fbdev: clcdfb: Fix refcount leak in clcdfb_of_vram_setup (git-fixes). - video: fbdev: controlfb: Fix COMPILE_TEST build (git-fixes). - video: fbdev: fbcvt.c: fix printing in fb_cvt_print_name() (git-fixes). - video: fbdev: matroxfb: set maxvram of vbG200eW to the same as vbG200 to avoid black screen (git-fixes). - video: fbdev: nvidiafb: Use strscpy() to prevent buffer overflow (git-fixes). - video: fbdev: omapfb: acx565akm: replace snprintf with sysfs_emit (git-fixes). - video: fbdev: omapfb: Add missing of_node_put() in dvic_probe_of (git-fixes). - video: fbdev: omapfb: panel-dsi-cm: Use sysfs_emit() instead of snprintf() (git-fixes). - video: fbdev: omapfb: panel-tpo-td043mtea1: Use sysfs_emit() instead of snprintf() (git-fixes). - video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove() (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_read() (git-fixes). - video: fbdev: sm712fb: Fix crash in smtcfb_write() (git-fixes). - video: fbdev: smscufx: Fix null-ptr-deref in ufx_usb_probe() (git-fixes). - video: fbdev: udlfb: properly check endpoint type (bsc#1190497) - video: fbdev: udlfb: replace snprintf in show functions with sysfs_emit (git-fixes). - video: fbdev: w100fb: Reset global state (git-fixes). - virtio-blk: Do not use MAX_DISCARD_SEGMENTS if max_discard_seg is zero (git-fixes). - virtio_blk: eliminate anonymous module_init and module_exit (git-fixes). - virtio_blk: fix the discard_granularity and discard_alignment queue limits (git-fixes). - virtio_console: break out of buf poll on remove (git-fixes). - virtio_console: eliminate anonymous module_init and module_exit (git-fixes). - virtio: fix virtio transitional ids (git-fixes). - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (git-fixes). - virtio-net: fix for skb_over_panic inside big mode (git-fixes). - virtio-net: fix race between ndo_open() and virtio_device_ready() (git-fixes). - virtio_net: fix wrong buf address calculation when using xdp (git-fixes). - virtio_net: fix xdp_rxq_info bug after suspend/resume (git-fixes). - virtio-net: realign page_to_skb() after merges (git-fixes). - virtio: pci: Fix an error handling path in vp_modern_probe() (git-fixes). - virtio-pci: Remove wrong address verification in vp_del_vqs() (git-fixes). - VMCI: Fix the description of vmci_check_host_caps() (git-fixes). - vringh: Fix loop descriptors check in the indirect cases (git-fixes). - vsprintf: Fix %pK with kptr_restrict == 0 (bsc#1197889). - vsprintf: Fix potential unaligned access (bsc#1198379). - vt_ioctl: add array_index_nospec to VT_ACTIVATE (git-fixes). - vt_ioctl: fix array_index_nospec in vt_setactivate (git-fixes). - vxcan: enable local echo for sent CAN frames (git-fixes). - w1: w1_therm: fixes w1_seq for ds28ea00 sensors (git-fixes). - watchdog: rti-wdt: Add missing pm_runtime_disable() in probe function (git-fixes). - watchdog: rti-wdt: Fix pm_runtime_get_sync() error checking (git-fixes). - Watchdog: sp5100_tco: Add initialization using EFCH MMIO (bsc#1199260). - watchdog: sp5100_tco: Add support for get_timeleft (bsc#1199260). - Watchdog: sp5100_tco: Enable Family 17h+ CPUs (bsc#1199260). - Watchdog: sp5100_tco: Move timer initialization into function (bsc#1199260). - Watchdog: sp5100_tco: Refactor MMIO base address initialization (bsc#1199260). - watchdog: ts4800_wdt: Fix refcount leak in ts4800_wdt_probe (git-fixes). - watchdog: wdat_wdt: Stop watchdog when rebooting the system (git-fixes). - watch_queue: Actually free the watch (git-fixes). - watch_queue: Fix NULL dereference in error cleanup (git-fixes). - watch_queue: Free the page array when watch_queue is dismantled (git-fixes). - wcn36xx: Differentiate wcn3660 from wcn3620 (git-fixes). - wifi: mac80211: fix use-after-free in chanctx code (git-fixes). - wilc1000: fix crash observed in AP mode with cfg80211_register_netdevice() (git-fixes). - wireguard: queueing: use CFI-safe ptr_ring cleanup function (git-fixes). - wireguard: selftests: rename DEBUG_PI_LIST to DEBUG_PLIST (git-fixes). - wireguard: socket: free skb in send6 when ipv6 is disabled (git-fixes). - wireguard: socket: ignore v6 endpoints when ipv6 is disabled (git-fixes). - writeback: Avoid skipping inode writeback (bsc#1200813). - writeback: Fix inode->i_io_list not be protected by inode->i_lock error (bsc#1200821). - x86/boot: Add setup_indirect support in early_memremap_is_setup_data() (bsc#1190497). - x86/boot: Fix memremap of setup_indirect structures (bsc#1190497). - x86/cc: Move arch/x86/{kernel/cc_platform.c coco/core.c} (jsc#SLE-19924). - x86/coco: Add API to handle encryption mask (jsc#SLE-19924). - x86/coco: Explicitly declare type of confidential computing platform (jsc#SLE-19924). - x86/cpu: Add Xeon Icelake-D to list of CPUs that support PPIN (bsc#1190497). - x86/cpufeatures: Re-enable ENQCMD (jsc#SLE-24350). - x86/cpu: Load microcode during restore_processor_state() (bsc#1190497). - x86/fpu: Clear PASID when copying fpstate (jsc#SLE-24350). - x86/kprobes: Add UNWIND_HINT_FUNC on kretprobe_trampoline() (bsc#1193277). - x86/kprobes: Fixup return address in generic trampoline handler (bsc#1193277). - x86/kprobes: Push a fake return address at kretprobe_trampoline (bsc#1193277). - x86/kvmclock: Fix Hyper-V Isolated VM boot issue when vCPUs 64 (bsc#1183682). - x86/kvm: Do not waste memory if kvmclock is disabled (bsc#1183682). - x86/MCE/AMD: Allow thresholding interface updates after init (bsc#1190497). - x86/mm/cpa: Generalize __set_memory_enc_pgtable() (jsc#SLE-19924). - x86/module: Fix the paravirt vs alternative order (bsc#1190497). - x86/pm: Save the MSR validity status at context setup (bsc#1190497). - x86/ptrace: Fix xfpregs_set() incorrect xmm clearing (bsc#1190497). - x86/speculation: Restore speculation related MSRs during S3 resume (bsc#1190497). - x86/traps: Demand-populate PASID MSR via #GP (jsc#SLE-24350). - x86/traps: Mark do_int3() NOKPROBE_SYMBOL (bsc#1190497). - x86/tsx: Use MSR_TSX_CTRL to clear CPUID bits (bsc#1190497). - x86/unwind: kABI workaround for unwind_state changes (bsc#1193277). - x86/unwind: Recover kretprobe trampoline entry (bsc#1193277). - xen/blkfront: fix comment for need_copy (git-fixes). - xen: fix is_xen_pmu() (git-fixes). - xen: unexport __init-annotated xen_xlate_map_ballooned_pages() (bsc#1201218). - xen/x86: obtain full video frame buffer address for Dom0 also under EFI (bsc#1193556). - xen/x86: obtain upper 32 bits of video frame buffer address for Dom0 (bsc#1193556). - xfs: drop async cache flushes from CIL commits (bsc#1195669). - xhci: Allow host runtime PM as default for Intel Alder Lake N xHCI (git-fixes). - xhci: Enable runtime PM on second Alderlake controller (git-fixes). - xhci: fix garbage USBSTS being logged in some cases (git-fixes). - xhci: fix runtime PM imbalance in USB2 resume (git-fixes). - xhci: fix uninitialized string returned by xhci_decode_ctrl_ctx() (git-fixes). - xhci: increase usb U3 U0 link resume timeout from 100ms to 500ms (git-fixes). - xhci: make xhci_handshake timeout for xhci_reset() adjustable (git-fixes). - xhci-pci: Allow host runtime PM as default for Intel Meteor Lake xHCI (git-fixes). - xhci-pci: Allow host runtime PM as default for Intel Raptor Lake xHCI (git-fixes). - xhci: Prevent futile URB re-submissions due to incorrect return value (git-fixes). - xhci: re-initialize the HC during resume if HCE was set (git-fixes). - xhci: stop polling roothubs after shutdown (git-fixes). - xhci: turn off port power in shutdown (git-fixes). - xsk: Do not write NULL in SW ring at allocation failure (jsc#SLE-18375). - zsmalloc: decouple class actions from zspage works (bsc#1189998). - zsmalloc: introduce obj_allocated (bsc#1189998). - zsmalloc: introduce some helper functions (bsc#1189998). - zsmalloc: move huge compressed obj from page to zspage (bsc#1189998). - zsmalloc: remove zspage isolation for migration (bsc#1189998). - zsmalloc: rename zs_stat_type to class_stat_type (bsc#1189998). - zsmalloc: replace get_cpu_var with local_lock (bsc#1189998). - zsmalloc: replace per zpage lock with pool migrate_lock (bsc#1189998). - zsmalloc: Stop using slab fields in struct page (bsc#1189998 bsc#1190208). cluster-md-kmp-azure-5.14.21-150400.14.7.1.x86_64.rpm True dlm-kmp-azure-5.14.21-150400.14.7.1.x86_64.rpm True gfs2-kmp-azure-5.14.21-150400.14.7.1.x86_64.rpm True kernel-azure-5.14.21-150400.14.7.1.nosrc.rpm True kernel-azure-5.14.21-150400.14.7.1.x86_64.rpm True kernel-azure-devel-5.14.21-150400.14.7.1.x86_64.rpm True kernel-azure-extra-5.14.21-150400.14.7.1.x86_64.rpm True kernel-azure-livepatch-devel-5.14.21-150400.14.7.1.x86_64.rpm True kernel-azure-optional-5.14.21-150400.14.7.1.x86_64.rpm True kernel-devel-azure-5.14.21-150400.14.7.1.noarch.rpm True kernel-source-azure-5.14.21-150400.14.7.1.noarch.rpm True kernel-source-azure-5.14.21-150400.14.7.1.src.rpm True kernel-syms-azure-5.14.21-150400.14.7.1.src.rpm True kernel-syms-azure-5.14.21-150400.14.7.1.x86_64.rpm True kselftests-kmp-azure-5.14.21-150400.14.7.1.x86_64.rpm True ocfs2-kmp-azure-5.14.21-150400.14.7.1.x86_64.rpm True reiserfs-kmp-azure-5.14.21-150400.14.7.1.x86_64.rpm True cluster-md-kmp-azure-5.14.21-150400.14.7.1.aarch64.rpm True dlm-kmp-azure-5.14.21-150400.14.7.1.aarch64.rpm True gfs2-kmp-azure-5.14.21-150400.14.7.1.aarch64.rpm True kernel-azure-5.14.21-150400.14.7.1.aarch64.rpm True kernel-azure-devel-5.14.21-150400.14.7.1.aarch64.rpm True kernel-azure-extra-5.14.21-150400.14.7.1.aarch64.rpm True kernel-azure-livepatch-devel-5.14.21-150400.14.7.1.aarch64.rpm True kernel-azure-optional-5.14.21-150400.14.7.1.aarch64.rpm True kernel-syms-azure-5.14.21-150400.14.7.1.aarch64.rpm True kselftests-kmp-azure-5.14.21-150400.14.7.1.aarch64.rpm True ocfs2-kmp-azure-5.14.21-150400.14.7.1.aarch64.rpm True reiserfs-kmp-azure-5.14.21-150400.14.7.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2344 important SUSE Updates openSUSE-SLE 15.4 This update for python fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module (bsc#1198511). libpython2_7-1_0-2.7.18-150000.41.1.x86_64.rpm libpython2_7-1_0-32bit-2.7.18-150000.41.1.x86_64.rpm python-2.7.18-150000.41.1.src.rpm python-2.7.18-150000.41.1.x86_64.rpm python-32bit-2.7.18-150000.41.1.x86_64.rpm python-base-2.7.18-150000.41.1.src.rpm python-base-2.7.18-150000.41.1.x86_64.rpm python-base-32bit-2.7.18-150000.41.1.x86_64.rpm python-curses-2.7.18-150000.41.1.x86_64.rpm python-demo-2.7.18-150000.41.1.x86_64.rpm python-devel-2.7.18-150000.41.1.x86_64.rpm python-doc-2.7.18-150000.41.1.noarch.rpm python-doc-2.7.18-150000.41.1.src.rpm python-doc-pdf-2.7.18-150000.41.1.noarch.rpm python-gdbm-2.7.18-150000.41.1.x86_64.rpm python-idle-2.7.18-150000.41.1.x86_64.rpm python-tk-2.7.18-150000.41.1.x86_64.rpm python-xml-2.7.18-150000.41.1.x86_64.rpm libpython2_7-1_0-2.7.18-150000.41.1.s390x.rpm python-2.7.18-150000.41.1.s390x.rpm python-base-2.7.18-150000.41.1.s390x.rpm python-curses-2.7.18-150000.41.1.s390x.rpm python-demo-2.7.18-150000.41.1.s390x.rpm python-devel-2.7.18-150000.41.1.s390x.rpm python-gdbm-2.7.18-150000.41.1.s390x.rpm python-idle-2.7.18-150000.41.1.s390x.rpm python-tk-2.7.18-150000.41.1.s390x.rpm python-xml-2.7.18-150000.41.1.s390x.rpm libpython2_7-1_0-2.7.18-150000.41.1.ppc64le.rpm python-2.7.18-150000.41.1.ppc64le.rpm python-base-2.7.18-150000.41.1.ppc64le.rpm python-curses-2.7.18-150000.41.1.ppc64le.rpm python-demo-2.7.18-150000.41.1.ppc64le.rpm python-devel-2.7.18-150000.41.1.ppc64le.rpm python-gdbm-2.7.18-150000.41.1.ppc64le.rpm python-idle-2.7.18-150000.41.1.ppc64le.rpm python-tk-2.7.18-150000.41.1.ppc64le.rpm python-xml-2.7.18-150000.41.1.ppc64le.rpm libpython2_7-1_0-2.7.18-150000.41.1.aarch64.rpm python-2.7.18-150000.41.1.aarch64.rpm python-base-2.7.18-150000.41.1.aarch64.rpm python-curses-2.7.18-150000.41.1.aarch64.rpm python-demo-2.7.18-150000.41.1.aarch64.rpm python-devel-2.7.18-150000.41.1.aarch64.rpm python-gdbm-2.7.18-150000.41.1.aarch64.rpm python-idle-2.7.18-150000.41.1.aarch64.rpm python-tk-2.7.18-150000.41.1.aarch64.rpm python-xml-2.7.18-150000.41.1.aarch64.rpm openSUSE-SLE-15.4-2022-2357 important SUSE Updates openSUSE-SLE 15.4 This update for python3 fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module (bsc#1198511). libpython3_6m1_0-3.6.15-150300.10.27.1.x86_64.rpm libpython3_6m1_0-32bit-3.6.15-150300.10.27.1.x86_64.rpm python3-3.6.15-150300.10.27.1.src.rpm python3-3.6.15-150300.10.27.1.x86_64.rpm python3-base-3.6.15-150300.10.27.1.x86_64.rpm python3-core-3.6.15-150300.10.27.1.src.rpm python3-curses-3.6.15-150300.10.27.1.x86_64.rpm python3-dbm-3.6.15-150300.10.27.1.x86_64.rpm python3-devel-3.6.15-150300.10.27.1.x86_64.rpm python3-doc-3.6.15-150300.10.27.1.x86_64.rpm python3-doc-devhelp-3.6.15-150300.10.27.1.x86_64.rpm python3-documentation-3.6.15-150300.10.27.1.src.rpm python3-idle-3.6.15-150300.10.27.1.x86_64.rpm python3-testsuite-3.6.15-150300.10.27.1.x86_64.rpm python3-tk-3.6.15-150300.10.27.1.x86_64.rpm python3-tools-3.6.15-150300.10.27.1.x86_64.rpm libpython3_6m1_0-3.6.15-150300.10.27.1.s390x.rpm python3-3.6.15-150300.10.27.1.s390x.rpm python3-base-3.6.15-150300.10.27.1.s390x.rpm python3-curses-3.6.15-150300.10.27.1.s390x.rpm python3-dbm-3.6.15-150300.10.27.1.s390x.rpm python3-devel-3.6.15-150300.10.27.1.s390x.rpm python3-doc-3.6.15-150300.10.27.1.s390x.rpm python3-doc-devhelp-3.6.15-150300.10.27.1.s390x.rpm python3-idle-3.6.15-150300.10.27.1.s390x.rpm python3-testsuite-3.6.15-150300.10.27.1.s390x.rpm python3-tk-3.6.15-150300.10.27.1.s390x.rpm python3-tools-3.6.15-150300.10.27.1.s390x.rpm libpython3_6m1_0-3.6.15-150300.10.27.1.ppc64le.rpm python3-3.6.15-150300.10.27.1.ppc64le.rpm python3-base-3.6.15-150300.10.27.1.ppc64le.rpm python3-curses-3.6.15-150300.10.27.1.ppc64le.rpm python3-dbm-3.6.15-150300.10.27.1.ppc64le.rpm python3-devel-3.6.15-150300.10.27.1.ppc64le.rpm python3-doc-3.6.15-150300.10.27.1.ppc64le.rpm python3-doc-devhelp-3.6.15-150300.10.27.1.ppc64le.rpm python3-idle-3.6.15-150300.10.27.1.ppc64le.rpm python3-testsuite-3.6.15-150300.10.27.1.ppc64le.rpm python3-tk-3.6.15-150300.10.27.1.ppc64le.rpm python3-tools-3.6.15-150300.10.27.1.ppc64le.rpm libpython3_6m1_0-3.6.15-150300.10.27.1.aarch64.rpm python3-3.6.15-150300.10.27.1.aarch64.rpm python3-base-3.6.15-150300.10.27.1.aarch64.rpm python3-curses-3.6.15-150300.10.27.1.aarch64.rpm python3-dbm-3.6.15-150300.10.27.1.aarch64.rpm python3-devel-3.6.15-150300.10.27.1.aarch64.rpm python3-doc-3.6.15-150300.10.27.1.aarch64.rpm python3-doc-devhelp-3.6.15-150300.10.27.1.aarch64.rpm python3-idle-3.6.15-150300.10.27.1.aarch64.rpm python3-testsuite-3.6.15-150300.10.27.1.aarch64.rpm python3-tk-3.6.15-150300.10.27.1.aarch64.rpm python3-tools-3.6.15-150300.10.27.1.aarch64.rpm openSUSE-SLE-15.4-2022-2299 moderate SUSE Updates openSUSE-SLE 15.4 This update for yast2-kdump fixes the following issues: - Do not limit to kdumptool MaxLow when using fadump. (jsc#SLE-21644) yast2-kdump-4.4.4-150400.3.3.1.src.rpm yast2-kdump-4.4.4-150400.3.3.1.x86_64.rpm yast2-kdump-4.4.4-150400.3.3.1.s390x.rpm yast2-kdump-4.4.4-150400.3.3.1.ppc64le.rpm yast2-kdump-4.4.4-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2102 important SUSE Updates openSUSE-SLE 15.4 This update for vim fixes the following issues: - CVE-2017-17087: Fixed information leak via .swp files (bsc#1070955). - CVE-2021-3875: Fixed heap-based buffer overflow (bsc#1191770). - CVE-2021-3903: Fixed heap-based buffer overflow (bsc#1192167). - CVE-2021-3968: Fixed heap-based buffer overflow (bsc#1192902). - CVE-2021-3973: Fixed heap-based buffer overflow (bsc#1192903). - CVE-2021-3974: Fixed use-after-free (bsc#1192904). - CVE-2021-4069: Fixed use-after-free in ex_open()in src/ex_docmd.c (bsc#1193466). - CVE-2021-4136: Fixed heap-based buffer overflow (bsc#1193905). - CVE-2021-4166: Fixed out-of-bounds read (bsc#1194093). - CVE-2021-4192: Fixed use-after-free (bsc#1194217). - CVE-2021-4193: Fixed out-of-bounds read (bsc#1194216). - CVE-2022-0128: Fixed out-of-bounds read (bsc#1194388). - CVE-2022-0213: Fixed heap-based buffer overflow (bsc#1194885). - CVE-2022-0261: Fixed heap-based buffer overflow (bsc#1194872). - CVE-2022-0318: Fixed heap-based buffer overflow (bsc#1195004). - CVE-2022-0359: Fixed heap-based buffer overflow in init_ccline() in ex_getln.c (bsc#1195203). - CVE-2022-0392: Fixed heap-based buffer overflow (bsc#1195332). - CVE-2022-0407: Fixed heap-based buffer overflow (bsc#1195354). - CVE-2022-0696: Fixed NULL pointer dereference (bsc#1196361). - CVE-2022-1381: Fixed global heap buffer overflow in skip_range (bsc#1198596). - CVE-2022-1420: Fixed out-of-range pointer offset (bsc#1198748). - CVE-2022-1616: Fixed use-after-free in append_command (bsc#1199331). - CVE-2022-1619: Fixed heap-based Buffer Overflow in function cmdline_erase_chars (bsc#1199333). - CVE-2022-1620: Fixed NULL pointer dereference in function vim_regexec_string (bsc#1199334). - CVE-2022-1733: Fixed heap-based buffer overflow in cindent.c (bsc#1199655). - CVE-2022-1735: Fixed heap-based buffer overflow (bsc#1199651). - CVE-2022-1771: Fixed stack exhaustion (bsc#1199693). - CVE-2022-1785: Fixed out-of-bounds write (bsc#1199745). - CVE-2022-1796: Fixed use-after-free in find_pattern_in_path (bsc#1199747). - CVE-2022-1851: Fixed out-of-bounds read (bsc#1199936). - CVE-2022-1897: Fixed out-of-bounds write (bsc#1200010). - CVE-2022-1898: Fixed use-after-free (bsc#1200011). - CVE-2022-1927: Fixed buffer over-read (bsc#1200012). gvim-8.2.5038-150000.5.21.1.x86_64.rpm vim-8.2.5038-150000.5.21.1.src.rpm vim-8.2.5038-150000.5.21.1.x86_64.rpm vim-data-8.2.5038-150000.5.21.1.noarch.rpm vim-data-common-8.2.5038-150000.5.21.1.noarch.rpm vim-small-8.2.5038-150000.5.21.1.x86_64.rpm gvim-8.2.5038-150000.5.21.1.s390x.rpm vim-8.2.5038-150000.5.21.1.s390x.rpm vim-small-8.2.5038-150000.5.21.1.s390x.rpm gvim-8.2.5038-150000.5.21.1.ppc64le.rpm vim-8.2.5038-150000.5.21.1.ppc64le.rpm vim-small-8.2.5038-150000.5.21.1.ppc64le.rpm gvim-8.2.5038-150000.5.21.1.aarch64.rpm vim-8.2.5038-150000.5.21.1.aarch64.rpm vim-small-8.2.5038-150000.5.21.1.aarch64.rpm openSUSE-SLE-15.4-2022-2300 moderate SUSE Updates openSUSE-SLE 15.4 This update for open-iscsi fixes the following issues: - Set initiatorname in %post (at end of install), for cases where root is read-only at startup time (bsc#1198457) - Update to latest upstream, including: Added 'distclean' to Makefile targets. Ensure Makefile '.PHONY' targets set up correctly. Fix an iscsid logout bug generating a false error and cleanup logout error messages. Updated/fixed test script. Updated build system. Syntax error in ibft-rule-generator. (bsc#1199264) iscsiuio-0.7.8.6-150400.39.3.1.x86_64.rpm libopeniscsiusr0_2_0-2.1.7-150400.39.3.1.x86_64.rpm open-iscsi-2.1.7-150400.39.3.1.src.rpm open-iscsi-2.1.7-150400.39.3.1.x86_64.rpm open-iscsi-devel-2.1.7-150400.39.3.1.x86_64.rpm iscsiuio-0.7.8.6-150400.39.3.1.s390x.rpm libopeniscsiusr0_2_0-2.1.7-150400.39.3.1.s390x.rpm open-iscsi-2.1.7-150400.39.3.1.s390x.rpm open-iscsi-devel-2.1.7-150400.39.3.1.s390x.rpm iscsiuio-0.7.8.6-150400.39.3.1.ppc64le.rpm libopeniscsiusr0_2_0-2.1.7-150400.39.3.1.ppc64le.rpm open-iscsi-2.1.7-150400.39.3.1.ppc64le.rpm open-iscsi-devel-2.1.7-150400.39.3.1.ppc64le.rpm iscsiuio-0.7.8.6-150400.39.3.1.aarch64.rpm libopeniscsiusr0_2_0-2.1.7-150400.39.3.1.aarch64.rpm open-iscsi-2.1.7-150400.39.3.1.aarch64.rpm open-iscsi-devel-2.1.7-150400.39.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2390 moderate SUSE Updates openSUSE-SLE 15.4 This feature update for build, obs-scm-bridge, obs-service-tar_scm, osc fixes the following issues: Support the Multi Factor Authentication and the git based workflow. (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) Please, see the following details changes for more information. Upgrade build from version 20210120 to 20220613 as obs-scm-bridge dependency (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) - Stop building aarch64_ilp32 baselibs for aarch64 - avod aio=io_uring for now on SLE15-SP4 workers - Update SLE 15 SP4 and Leap 15.4 build config (bsc#1198740) - Use aio=io_uring if available (bsc#1197699) - debian cross build support via multi-arch (obsoleting cbinstall remnants) - Tumbleweed config synced - documentation updates - rename --debug to --debuginfo to be more exact. - docu: add buildflags:ccachtype and OBS-DoNotAppendProfileToContainername - Use git+https instead of git-https as url schema - add oops=panic kernel parameter - Updated distribution configurations (esp. Leap 15.4 and Tumbleweed) - new preinstallimages are using zstd by default - source subdirectories are used in git managed sources - supporting kvm builds as non-root user - Extend stage selection support for rpm builds - various distribution config updates - Support "BuildFlags: cumulaterpms" (was done only via suse_version before) - docker: * Add support for --root and --installroot global zypper options * improve registry handling * initial Dockerfile.dapper support * support 'curl' commands in docker builds * strip known domains from container name * support container alias names - pbuild: * add --debug option for building debuginfo packages * Use /.dockerenv as marker for docker environment * support privileged docker/nspawn mode * move --cap-add=SYS_ADMIN --cap-add=MKNOD to privileged mode * initvm: do not attempt to mount /proc and binfmt_misc handler if present * rename --hide-timestamps to --no-timestamps * reuse options from older builds * revised --single build mode * support ccache * Implement SCC calculation * Improve --shell-after-build and --single options * initial documentation of pbuild - Kiwi: * always append the profile name to kiwi container names * Add support for OBS-RemoteAsset and OBS-CopyToImage directives - container builds: * support newer podman versions * supporting multiple containers for multi-stage builds * FROM scratch build support - Other fixes: * Avoid shutdown of host when using nspawn * change sccache default size limit * speed up improvements in - vm shutdown - rpm preinstall - avoid calling external commands in a loop - using zstd for preinstallimages - no more unpacking progress indicators to avoid slowdown - virtio handling * fixed vm-type=qemu * multiple smaller bugfixes and speed improvements * Load selinux policy when using a preinstall image * Use the pax format for preinstall images if bsdtar is available * Add %riscv to std_macros * Fix combine_configs dropping newlines * epoch handling in debian builds * catch more cases where a failed build is marked as host error * fixing wrong status reporting when a job got killed * hugetlbfs handling fixes * try mounting selinuxfs in VM * Create the /sys dir when preinstalling (to satisfy dracut) - Features: * Add arm32 and loongarch definitions * Add compatibility code to initvm * Use upstream way of binfmt argv0 preservation (bsc#1197298) * Add template support for Build::SimpleJSON * download_assets: add --outdir --clean --show-dir-srcmd5 parameters support multiple --arch arguments * asset support for golang modules * add support for LXC 4. * new shortcuts for rpm building: --rpm-noprep, --rpm-build-in-place, --rpm-build-in-place-noprep for building directly from upstream git repositories without any tar ball. * mount securityfs if not mounted by kernel-obs-build * collect steal time during VM builds in statistics. * declare armv8 and armv7 compatible * support OBS Debuginfo build flag for Red Hat variants * setup rpmmacros for all build types and earlier * introducing --verbose option, currently only showing kernel messages. * support cpio creation for special files * handle QEMU >= 6.0 on POWER9 * deb zstd support (for Ubuntu 21.10) * support KVM builds with enabled network * modulemd support improvements * Support a "Distmacro" directive for recipe parser-only macros * initial config for Leap 15.4 * Unify ccache and sccache handling * Fix unpacking of deb/arch archives without bsdtar * cross architecture build support (for rpm and kiwi) * modulemd meta data support * supporting external asset stores for source files * support multiple post build checks placed in the directory: /usr/lib/build/post-build-checks/ * sccache support * New --shell-after-fail option * allow to disable squashfs in SimpleImage * supporting aarch64 kernel on armv?l distributions * Supporting URL's in Flatpak manifests Provide obs-scm-bridge on version 0.2: (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) * no shallow clone when used with osc * support for LFS fetch * Fixes for _config file export and path handling * Fix a traceback when a project or a package is managed in scm, print a warning instead. Update osc from version 0.172.0 to 0.179.0 (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) - 0.179.0 - signature (ssh key) authetication fixes (RSA key support, skip binary files) - commandline: handle calls without arguments gracefully - use percent-quoted url for download url generation - osc co/up: highlight pending requests' header - get_results(): fix check for empty details - another exception for github URLs for "osc add" - update Sphinx configuration, documentation fixes - make Sphinx optional in setup.py not to break package builds - support flavors in aggregatepac - check if repos provided to aggregatepac command exist - several coding style fixes - 0.178.0 - EXPERIMENTAL: git repository handling * init command is working inside of a git repository * downloadassets command fetches references assets from build description * checkout is cloning from git - EXPERIMENTAL: signature (ssh key) authetication * allow to configure 'sshkey' option in the config * try to guess ssh key from the keys added to ssh-agent * rename OscHTTPBasicAuthHandler to OscHTTPAuthHandler * simplify bad auth retry workaround needed for old python versions - add support for building preinstall images - add support for building Helm charts - show the md5s that are failing to validate after fetching a package - add missing space to copypac completion - never require login in the help command - linkdiff: raise an exception when an added file is missing - run tests via calling 'setup.py test' - several coding style fixes - spec file: - run tests via calling 'setup.py test' - disabled tests in debian.rules - 0.177.0 * switch to python3 in osc-wrapper and make python3 explicit * allow formatting of the sccache uri * show repository state and details * a few minor fixes and improvements in credentials handling * order credential managers by priority * kernel keyring is now supported as credential manager * support regex based name filtering in core.get_prj_results() * revision parsing parseRevisionOption(): cleanup and make logic consistent * use sr_ids[0] for superseding (fixes issues with superseding requests containing many packages * download logs and metadata in subdirs named by packages when osc getbinaries is issued on project level or in multibuild case - spec file: * recommed python-keyring-keyutils for new kernel keyring backend - 0.176.0 * add -F option to osc submitreq * add --verbose option to build command * fix getbinaries command to fetch also multibuild packages * fix getbinaries -M/--multibuild-package option usage * skip fetching metadata and logs in the getbinaries command * do not download a bdep with a hdrmd5 from the api by default * re-download file from API when hdrmd5 doesn't match * honor --download-api-only option * remove Windows from the supported operating systems * fix license in setup.py * add py3.10 and py3.11 to the classifiers in setup.py * use the latest version of COPYING file from gnu.org * fix crash on terminal resize during download * do not fail with a traceback in case of a config error * preserve oscrc symlink when writing conf file * escape % character in binary download URLs * fix printing paths to built debian packages - 0.175.1: * Modified SPEC file to be more compatible with KOJI and COPR. ** Modified SPEC file to use python3 for CentOS/RHEL 7 ** Modified SPEC file use fedora/rhel version macros. ** Changed perl to sed in %install section of SPEC file. - 0.175.0: * do not crash when running "osc search --binary --verbose foo" * don't run source services when building outside of an OSC package working copy * fix XDG_CONFIG_HOME * offer a force ("f") choice in metafile.edit's error handling code path * fix XPath used in search requests * add support for creating a workflow token via "osc token" * handle missing os.sysconf more gracefully * detachbranch: remove _link when link target got removed * improve error message in case of an URLError * fix downloading from mirrors * avoid sending entire projects on "osc mr" * fix hdmrd5 check of local cached files * improve logic for conffile mode handling - 0.174.0: * fix password deletion via "osc config -d <apiurl> pass" * support changing the password store via "osc config <apiurl> --select-password-store") * support slash syntax in osc browse ("osc browse prj/pkg" is equivalent to "osc browse prj pkg") * fix the commit of a frozen package wc * fix local product builds using obsrepositories:/ directives * print a meaningful message when trying to a commit a non-existent package - force Mageia >= 8 builds to python3; python2 is deprecated in Mageia 8 and up. - 0.173.0: * add showlinked command to show all references of packages linking to a given one * add build --shell-after-build flag. It can also be set via .oscrc. * add build --stage flag. Useful for example for fixing file lists and just running the install section to see the result of it (use --stage=i=). Check the help for more details. * allow to run build script as non-root, by setting su-wrapper empty => osc is not guessing anymore if user builds are wanted * add support for cross arch local build using a sysroot * support slash notation in "osc creq -a <action type> args" * add "--force" option to the "osc add" command (can be used to override the exclude_glob config option) * support the commit of arbitrary sized files * add support for sccache - Install macros.osc to %{_rpmmacrodir}, not to /etc/rpm. Update obs-service-tar_scm from version 0.10.22.1615538418.07a353d to version 0.10.30.1641990734.bdad8f9 (bsc#1200148) - Update to version 0.10.30.1641990734.bdad8f9: * fixes for python2.7 compatibility * fix test cases * fix various linter problems with pylint 2.11.1 * disable consider-using-f-string in pylint * added TC for _stash_pop_required * assertTarIsDeeply now more verbose in case of failure * remove tearDown/Trace from testenv.py * fix regression to keep local changes when running in osc * various fixes to make linter happy * fix tests for python 2.7 - Update to version 0.10.29.1634038025.85bfc3f: * fix test cases * fix various linter problems with pylint 2.11.1 * disable consider-using-f-string in pylint * added TC for _stash_pop_required * assertTarIsDeeply now more verbose in case of failure * remove tearDown/Trace from testenv.py * fix regression to keep local changes when running in osc - Update to version 0.10.28.1632141620.a8837d3: * fix missing "checkout" when running in osc * fix breakage on version detection * change locale - Update to version 0.10.27.1626072657.0fb7a03: * [ci] enhanced github actions for multiple python versions * Create main.yml * Change date format from short to %Y%m%d. - Update to version 0.10.26.1624258505.aed4969: * almalinux in spec file * fix include filters for obscpio files * fix python interpreter for mageia 8 * TarScm: use owner/group root in .obscpio files - Update to version 0.10.26.1623775884.87f49a8: * fixed include/exclude filtering * add '--' to git log command if file/dir equal revision exists * add '--source' to git log command * disabled consider-using-with in .pylint*rc * package .gitignore files * Fix version _none_ generate tarball with '-' * Prevent KeyError in check_for_branch_request method * removed skipped test case (obsolete since 5 yrs) * testing for obscpio/obsinfo * fix regression - obsinfo included the version string * Revert "remove useless variables" * remove useless variables * added param --without-version * extracted dstname to _dstname * cleanup TarSCM/tasks.py for pylint * add date/time to logging output for better debugging * Fix typos obs-scm-bridge-0.2-150100.3.3.1.noarch.rpm obs-scm-bridge-0.2-150100.3.3.1.src.rpm obs-service-appimage-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-obs_scm-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-obs_scm-common-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-snapcraft-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-tar-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-tar_scm-0.10.30.1641990734.bdad8f9-150000.3.15.1.noarch.rpm obs-service-tar_scm-0.10.30.1641990734.bdad8f9-150000.3.15.1.src.rpm osc-0.179.0-150100.3.29.1.noarch.rpm osc-0.179.0-150100.3.29.1.src.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.src.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.x86_64.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.src.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.x86_64.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.s390x.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.s390x.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.ppc64le.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.ppc64le.rpm perl-Crypt-SSLeay-0.72-150000.5.5.1.aarch64.rpm perl-YAML-LibYAML-0.69-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2060 moderate SUSE Updates openSUSE-SLE 15.4 This recommended update for geronimo-specs provides the following fix: - Ship geronimo-annotation-1_0-api to SUSE Manager server as it is now needed by google-gson. (bsc#1200426) geronimo-annotation-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-commonj-1_1-apis-1.2-150200.15.2.1.noarch.rpm geronimo-corba-1_0-apis-1.2-150200.15.2.1.noarch.rpm geronimo-corba-2_3-apis-1.2-150200.15.2.1.noarch.rpm geronimo-ejb-2_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-ejb-3_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-el-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-interceptor-3_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-1_4-apis-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-connector-1_5-api-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-deployment-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-management-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-j2ee-management-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jacc-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-jacc-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jaf-1_0_2-api-1.2-150200.15.2.1.noarch.rpm geronimo-jaf-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-javaee-deployment-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-javamail-1_3_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-javamail-1_4-api-1.2-150200.15.2.1.noarch.rpm geronimo-jaxr-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-jaxrpc-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jms-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jpa-3_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-jsp-2_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-jsp-2_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-jta-1_0_1B-api-1.2-150200.15.2.1.noarch.rpm geronimo-jta-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-qname-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-saaj-1_1-api-1.2-150200.15.2.1.noarch.rpm geronimo-servlet-2_4-api-1.2-150200.15.2.1.noarch.rpm geronimo-servlet-2_5-api-1.2-150200.15.2.1.noarch.rpm geronimo-specs-1.2-150200.15.2.1.src.rpm geronimo-stax-1_0-api-1.2-150200.15.2.1.noarch.rpm geronimo-ws-metadata-2_0-api-1.2-150200.15.2.1.noarch.rpm openSUSE-SLE-15.4-2022-2543 important SUSE Updates openSUSE-SLE 15.4 This update of s390-tools fixes the following issues: - Fixed KMIP plugin failing to connection to KMIP server. When a zkey key repository is bound to the KMIP plugin, and the connection to the KMIP server is to be configired using command 'zkey kms configure --kmip-server <server>', it fails to connect to the specified KMIP server. (bsc#1199649) - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) libekmfweb1-2.19.0-150400.7.4.1.s390x.rpm libekmfweb1-devel-2.19.0-150400.7.4.1.s390x.rpm libkmipclient1-2.19.0-150400.7.4.1.s390x.rpm libkmipclient1-devel-2.19.0-150400.7.4.1.s390x.rpm osasnmpd-2.19.0-150400.7.4.1.s390x.rpm s390-tools-2.19.0-150400.7.4.1.s390x.rpm s390-tools-2.19.0-150400.7.4.1.src.rpm s390-tools-chreipl-fcp-mpath-2.19.0-150400.7.4.1.s390x.rpm s390-tools-hmcdrvfs-2.19.0-150400.7.4.1.s390x.rpm s390-tools-zdsfs-2.19.0-150400.7.4.1.s390x.rpm openSUSE-SLE-15.4-2022-2322 important SUSE Updates openSUSE-SLE 15.4 This update of fwupd fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) fwupd-1.5.8-150300.3.5.1.src.rpm fwupdtpmevlog-1.5.8-150300.3.5.1.x86_64.rpm libfwupdplugin1-1.5.8-150300.3.5.1.x86_64.rpm fwupdtpmevlog-1.5.8-150300.3.5.1.s390x.rpm libfwupdplugin1-1.5.8-150300.3.5.1.s390x.rpm fwupdtpmevlog-1.5.8-150300.3.5.1.ppc64le.rpm libfwupdplugin1-1.5.8-150300.3.5.1.ppc64le.rpm fwupdtpmevlog-1.5.8-150300.3.5.1.aarch64.rpm libfwupdplugin1-1.5.8-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2655 moderate SUSE Updates openSUSE-SLE 15.4 This update for postgresql-jdbc fixes the following issues: - CVE-2022-26520: Fixed arbitrary File Write Vulnerability (bsc#1197356) postgresql-jdbc-42.2.25-150400.3.3.2.noarch.rpm postgresql-jdbc-42.2.25-150400.3.3.2.src.rpm postgresql-jdbc-javadoc-42.2.25-150400.3.3.2.noarch.rpm openSUSE-SLE-15.4-2022-2291 important SUSE Updates openSUSE-SLE 15.4 This update for python310 fixes the following issues: - CVE-2015-20107: avoid command injection in the mailcap module (bsc#1198511). - Update to 3.10.5: - Core and Builtins - gh-93418: Fixed an assert where an f-string has an equal sign '=' following an expression, but there's no trailing brace. For example, f"{i=". - gh-91924: Fix __ltrace__ debug feature if the stdout encoding is not UTF-8. Patch by Victor Stinner. - gh-93061: Backward jumps after async for loops are no longer given dubious line numbers. - gh-93065: Fix contextvars HAMT implementation to handle iteration over deep trees. - The bug was discovered and fixed by Eli Libman. See MagicStack/immutables#84 for more details. - gh-92311: Fixed a bug where setting frame.f_lineno to jump over a list comprehension could misbehave or crash. - gh-92112: Fix crash triggered by an evil custom mro() on a metaclass. - gh-92036: Fix a crash in subinterpreters related to the garbage collector. When a subinterpreter is deleted, untrack all objects tracked by its GC. To prevent a crash in deallocator functions expecting objects to be tracked by the GC, leak a strong reference to these objects on purpose, so they are never deleted and their deallocator functions are not called. Patch by Victor Stinner. - gh-91421: Fix a potential integer overflow in _Py_DecodeUTF8Ex. - bpo-47212: Raise IndentationError instead of SyntaxError for a bare except with no following indent. Improve SyntaxError locations for an un-parenthesized generator used as arguments. Patch by Matthieu Dartiailh. - bpo-47182: Fix a crash when using a named unicode character like "\N{digit nine}" after the main interpreter has been initialized a second time. - bpo-47117: Fix a crash if we fail to decode characters in interactive mode if the tokenizer buffers are uninitialized. Patch by Pablo Galindo. - bpo-39829: Removed the __len__() call when initializing a list and moved initializing to list_extend. Patch by Jeremiah Pascual. - bpo-46962: Classes and functions that unconditionally declared their docstrings ignoring the --without-doc-strings compilation flag no longer do so. - The classes affected are ctypes.UnionType, pickle.PickleBuffer, testcapi.RecursingInfinitelyError, and types.GenericAlias. - The functions affected are 24 methods in ctypes. - Patch by Oleg Iarygin. - bpo-36819: Fix crashes in built-in encoders with error handlers that return position less or equal than the starting position of non-encodable characters. - Library - gh-93156: Accessing the pathlib.PurePath.parents sequence of an absolute path using negative index values produced incorrect results. - gh-89973: Fix re.error raised in fnmatch if the pattern contains a character range with upper bound lower than lower bound (e.g. [c-a]). Now such ranges are interpreted as empty ranges. - gh-93010: In a very special case, the email package tried to append the nonexistent InvalidHeaderError to the defect list. It should have been InvalidHeaderDefect. - gh-92839: Fixed crash resulting from calling bisect.insort() or bisect.insort_left() with the key argument not equal to None. - gh-91581: utcfromtimestamp() no longer attempts to resolve fold in the pure Python implementation, since the fold is never 1 in UTC. In addition to being slightly faster in the common case, this also prevents some errors when the timestamp is close to datetime.min. Patch by Paul Ganssle. - gh-92530: Fix an issue that occurred after interrupting threading.Condition.notify(). - gh-92049: Forbid pickling constants re._constants.SUCCESS etc. Previously, pickling did not fail, but the result could not be unpickled. - bpo-47029: Always close the read end of the pipe used by multiprocessing.Queue after the last write of buffered data to the write end of the pipe to avoid BrokenPipeError at garbage collection and at multiprocessing.Queue.close() calls. Patch by Géry Ogam. - gh-91401: Provide a fail-safe way to disable subprocess use of vfork() via a private subprocess._USE_VFORK attribute. While there is currently no known need for this, if you find a need please only set it to False. File a CPython issue as to why you needed it and link to that from a comment in your code. This attribute is documented as a footnote in 3.11. - gh-91910: Add missing f prefix to f-strings in error messages from the multiprocessing and asyncio modules. - gh-91810: ElementTree method write() and function tostring() now use the text file's encoding ("UTF-8" if not available) instead of locale encoding in XML declaration when encoding="unicode" is specified. - gh-91832: Add required attribute to argparse.Action repr output. - gh-91700: Compilation of regular expression containing a conditional expression (?(group)...) now raises an appropriate re.error if the group number refers to not defined group. Previously an internal RuntimeError was raised. - gh-91676: Fix unittest.IsolatedAsyncioTestCase to shutdown the per test event loop executor before returning from its run method so that a not yet stopped or garbage collected executor state does not persist beyond the test. - gh-90568: Parsing \N escapes of Unicode Named Character Sequences in a regular expression raises now re.error instead of TypeError. - gh-91595: Fix the comparison of character and integer inside Tools.gdb.libpython.write_repr(). Patch by Yu Liu. - gh-90622: Worker processes for concurrent.futures.ProcessPoolExecutor are no longer spawned on demand (a feature added in 3.9) when the multiprocessing context start method is "fork" as that can lead to deadlocks in the child processes due to a fork happening while threads are running. - gh-91575: Update case-insensitive matching in the re module to the latest Unicode version. - gh-91581: Remove an unhandled error case in the C implementation of calls to datetime.fromtimestamp with no time zone (i.e. getting a local time from an epoch timestamp). This should have no user-facing effect other than giving a possibly more accurate error message when called with timestamps that fall on 10000-01-01 in the local time. Patch by Paul Ganssle. - bpo-47260: Fix os.closerange() potentially being a no-op in a Linux seccomp sandbox. - bpo-39064: zipfile.ZipFile now raises zipfile.BadZipFile instead of ValueError when reading a corrupt zip file in which the central directory offset is negative. - bpo-47151: When subprocess tries to use vfork, it now falls back to fork if vfork returns an error. This allows use in situations where vfork isn't allowed by the OS kernel. - bpo-27929: Fix asyncio.loop.sock_connect() to only resolve names for socket.AF_INET or socket.AF_INET6 families. Resolution may not make sense for other families, like socket.AF_BLUETOOTH and socket.AF_UNIX. - bpo-43323: Fix errors in the email module if the charset itself contains undecodable/unencodable characters. - bpo-47101: hashlib.algorithms_available now lists only algorithms that are provided by activated crypto providers on OpenSSL 3.0. Legacy algorithms are not listed unless the legacy provider has been loaded into the default OSSL context. - bpo-46787: Fix concurrent.futures.ProcessPoolExecutor exception memory leak - bpo-45393: Fix the formatting for await x and not x in the operator precedence table when using the help() system. - bpo-46415: Fix ipaddress.ip_{address,interface,network} raising TypeError instead of ValueError if given invalid tuple as address parameter. - bpo-28249: Set doctest.DocTest.lineno to None when object does not have __doc__. - bpo-45138: Fix a regression in the sqlite3 trace callback where bound parameters were not expanded in the passed statement string. The regression was introduced in Python 3.10 by bpo-40318. Patch by Erlend E. Aasland. - bpo-44493: Add missing terminated NUL in sockaddr_un's length - This was potentially observable when using non-abstract AF_UNIX datagram sockets to processes written in another programming language. - bpo-42627: Fix incorrect parsing of Windows registry proxy settings - bpo-36073: Raise ProgrammingError instead of segfaulting on recursive usage of cursors in sqlite3 converters. Patch by Sergey Fedoseev. - Documentation - gh-86438: Clarify that -W and PYTHONWARNINGS are matched literally and case-insensitively, rather than as regular expressions, in warnings. - gh-92240: Added release dates for "What's New in Python 3.X" for 3.0, 3.1, 3.2, 3.8 and 3.10 - gh-91888: Add a new gh role to the documentation to link to GitHub issues. - gh-91783: Document security issues concerning the use of the function shutil.unpack_archive() - gh-91547: Remove "Undocumented modules" page. - bpo-44347: Clarify the meaning of dirs_exist_ok, a kwarg of shutil.copytree(). - bpo-38668: Update the introduction to documentation for os.path to remove warnings that became irrelevant after the implementations of PEP 383 and PEP 529. - bpo-47138: Pin Jinja to a version compatible with Sphinx version 3.2.1. - bpo-46962: All docstrings in code snippets are now wrapped into PyDoc_STR() to follow the guideline of PEP 7's Documentation Strings paragraph. Patch by Oleg Iarygin. - bpo-26792: Improve the docstrings of runpy.run_module() and runpy.run_path(). Original patch by Andrew Brezovsky. - bpo-40838: Document that inspect.getdoc(), inspect.getmodule(), and inspect.getsourcefile() might return None. - bpo-45790: Adjust inaccurate phrasing in Defining Extension Types: Tutorial about the ob_base field and the macros used to access its contents. - bpo-42340: Document that in some circumstances KeyboardInterrupt may cause the code to enter an inconsistent state. Provided a sample workaround to avoid it if needed. - bpo-41233: Link the errnos referenced in Doc/library/exceptions.rst to their respective section in Doc/library/errno.rst, and vice versa. Previously this was only done for EINTR and InterruptedError. Patch by Yan "yyyyyyyan" Orestes. - bpo-38056: Overhaul the Error Handlers documentation in codecs. - bpo-13553: Document tkinter.Tk args. - Tests - gh-92886: Fixing tests that fail when running with optimizations (-O) in test_imaplib.py. - gh-92670: Skip test_shutil.TestCopy.test_copyfile_nonexistent_dir test on AIX as the test uses a trailing slash to force the OS consider the path as a directory, but on AIX the trailing slash has no effect and is considered as a file. - gh-91904: Fix initialization of PYTHONREGRTEST_UNICODE_GUARD which prevented running regression tests on non-UTF-8 locale. - gh-91607: Fix test_concurrent_futures to test the correct multiprocessing start method context in several cases where the test logic mixed this up. - bpo-47205: Skip test for sched_getaffinity() and sched_setaffinity() error case on FreeBSD. - bpo-47104: Rewrite asyncio.to_thread() tests to use unittest.IsolatedAsyncioTestCase. - bpo-29890: Add tests for ipaddress.IPv4Interface and ipaddress.IPv6Interface construction with tuple arguments. Original patch and tests by louisom. - Tools/Demos - gh-91583: Fix regression in the code generated by Argument Clinic for functions with the defining_class parameter. - Update to 3.10.4: - bpo-46968: Check for the existence of the "sys/auxv.h" header in faulthandler to avoid compilation problems in systems where this header doesn't exist. Patch by Pablo Galindo - bpo-23691: Protect the re.finditer() iterator from re-entering. - bpo-42369: Fix thread safety of zipfile._SharedFile.tell() to avoid a "zipfile.BadZipFile: Bad CRC-32 for file" exception when reading a ZipFile from multiple threads. - bpo-38256: Fix binascii.crc32() when it is compiled to use zlib'c crc32 to work properly on inputs 4+GiB in length instead of returning the wrong result. The workaround prior to this was to always feed the function data in increments smaller than 4GiB or to just call the zlib module function. - bpo-39394: A warning about inline flags not at the start of the regular expression now contains the position of the flag. - bpo-47061: Deprecate the various modules listed by PEP 594: - aifc, asynchat, asyncore, audioop, cgi, cgitb, chunk, crypt, imghdr, msilib, nntplib, nis, ossaudiodev, pipes, smtpd, sndhdr, spwd, sunau, telnetlib, uu, xdrlib - bpo-2604: Fix bug where doctests using globals would fail when run multiple times. - bpo-45997: Fix asyncio.Semaphore re-aquiring FIFO order. - bpo-47022: The asynchat, asyncore and smtpd modules have been deprecated since at least Python 3.6. Their documentation and deprecation warnings and have now been updated to note they will removed in Python 3.12 (PEP 594). - bpo-46421: Fix a unittest issue where if the command was invoked as python -m unittest and the filename(s) began with a dot (.), a ValueError is returned. - bpo-40296: Fix supporting generic aliases in pydoc. - Update to 3.10.3: - bpo-46940: Avoid overriding AttributeError metadata information for nested attribute access calls. Patch by Pablo Galindo. - bpo-46852: Rename the private undocumented float.__set_format__() method to float.__setformat__() to fix a typo introduced in Python 3.7. The method is only used by test_float. Patch by Victor Stinner. - bpo-46794: Bump up the libexpat version into 2.4.6 - bpo-46820: Fix parsing a numeric literal immediately (without spaces) followed by "not in" keywords, like in 1not in x. Now the parser only emits a warning, not a syntax error. - bpo-46762: Fix an assert failure in debug builds when a '<', '>', or '=' is the last character in an f-string that's missing a closing right brace. - bpo-46724: Make sure that all backwards jumps use the JUMP_ABSOLUTE instruction, rather than JUMP_FORWARD with an argument of (2**32)+offset. - bpo-46732: Correct the docstring for the __bool__() method. Patch by Jelle Zijlstra. - bpo-46707: Avoid potential exponential backtracking when producing some syntax errors involving lots of brackets. Patch by Pablo Galindo. - bpo-40479: Add a missing call to va_end() in Modules/_hashopenssl.c. - bpo-46615: When iterating over sets internally in setobject.c, acquire strong references to the resulting items from the set. This prevents crashes in corner-cases of various set operations where the set gets mutated. - bpo-45773: Remove two invalid "peephole" optimizations from the bytecode compiler. - bpo-43721: Fix docstrings of getter, setter, and deleter to clarify that they create a new copy of the property. - bpo-46503: Fix an assert when parsing some invalid N escape sequences in f-strings. - bpo-46417: Fix a race condition on setting a type __bases__ attribute: the internal function add_subclass() now gets the PyTypeObject.tp_subclasses member after calling PyWeakref_NewRef() which can trigger a garbage collection which can indirectly modify PyTypeObject.tp_subclasses. Patch by Victor Stinner. - bpo-46383: Fix invalid signature of _zoneinfo's module_free function to resolve a crash on wasm32-emscripten platform. - bpo-46070: Py_EndInterpreter() now explicitly untracks all objects currently tracked by the GC. Previously, if an object was used later by another interpreter, calling PyObject_GC_UnTrack() on the object crashed if the previous or the next object of the PyGC_Head structure became a dangling pointer. Patch by Victor Stinner. - bpo-46339: Fix a crash in the parser when retrieving the error text for multi-line f-strings expressions that do not start in the first line of the string. Patch by Pablo Galindo - bpo-46240: Correct the error message for unclosed parentheses when the tokenizer doesn't reach the end of the source when the error is reported. Patch by Pablo Galindo - bpo-46091: Correctly calculate indentation levels for lines with whitespace character that are ended by line continuation characters. Patch by Pablo Galindo - bpo-43253: Fix a crash when closing transports where the underlying socket handle is already invalid on the Proactor event loop. - bpo-47004: Apply bugfixes from importlib_metadata 4.11.3, including bugfix for EntryPoint.extras, which was returning match objects and not the extras strings. - bpo-46985: Upgrade pip wheel bundled with ensurepip (pip 22.0.4) - bpo-46968: faulthandler: On Linux 5.14 and newer, dynamically determine size of signal handler stack size CPython allocates using getauxval(AT_MINSIGSTKSZ). This changes allows for Python extension's request to Linux kernel to use AMX_TILE instruction set on Sapphire Rapids Xeon processor to succeed, unblocking use of the ISA in frameworks. - bpo-46955: Expose asyncio.base_events.Server as asyncio.Server. Patch by Stefan Zabka. - bpo-23325: The signal module no longer assumes that SIG_IGN and SIG_DFL are small int singletons. - bpo-46932: Update bundled libexpat to 2.4.7 - bpo-25707: Fixed a file leak in xml.etree.ElementTree.iterparse() when the iterator is not exhausted. Patch by Jacob Walls. - bpo-44886: Inherit asyncio proactor datagram transport from asyncio.DatagramTransport. - bpo-46827: Support UDP sockets in asyncio.loop.sock_connect() for selector-based event loops. Patch by Thomas Grainger. - bpo-46811: Make test suite support Expat >=2.4.5 - bpo-46252: Raise TypeError if ssl.SSLSocket is passed to transport-based APIs. - bpo-46784: Fix libexpat symbols collisions with user dynamically loaded or statically linked libexpat in embedded Python. - bpo-39327: shutil.rmtree() can now work with VirtualBox shared folders when running from the guest operating-system. - bpo-46756: Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI example.org/foobar was allowed if the user was authorized for URI example.org/foo. - bpo-46643: In typing.get_type_hints(), support evaluating stringified ParamSpecArgs and ParamSpecKwargs annotations. Patch by Gregory Beauregard. - bpo-45863: When the tarfile module creates a pax format archive, it will put an integer representation of timestamps in the ustar header (if possible) for the benefit of older unarchivers, in addition to the existing full-precision timestamps in the pax extended header. - bpo-46676: Make typing.ParamSpec args and kwargs equal to themselves. Patch by Gregory Beauregard. - bpo-46672: Fix NameError in asyncio.gather() when initial type check fails. - bpo-46655: In typing.get_type_hints(), support evaluating bare stringified TypeAlias annotations. Patch by Gregory Beauregard. - bpo-45948: Fixed a discrepancy in the C implementation of the xml.etree.ElementTree module. Now, instantiating an xml.etree.ElementTree.XMLParser with a target=None keyword provides a default xml.etree.ElementTree.TreeBuilder target as the Python implementation does. - bpo-46521: Fix a bug in the codeop module that was incorrectly identifying invalid code involving string quotes as valid code. - bpo-46581: Brings ParamSpec propagation for GenericAlias in line with Concatenate (and others). - bpo-46591: Make the IDLE doc URL on the About IDLE dialog clickable. - bpo-46400: expat: Update libexpat from 2.4.1 to 2.4.4 - bpo-46487: Add the get_write_buffer_limits method to asyncio.transports.WriteTransport and to the SSL transport. - bpo-45173: Note the configparser deprecations will be removed in Python 3.12. - bpo-46539: In typing.get_type_hints(), support evaluating stringified ClassVar and Final annotations inside Annotated. Patch by Gregory Beauregard. - bpo-46491: Allow typing.Annotated to wrap typing.Final and typing.ClassVar. Patch by Gregory Beauregard. - bpo-46436: Fix command-line option -d/--directory in module http.server which is ignored when combined with command-line option --cgi. Patch by Géry Ogam. - bpo-41403: Make mock.patch() raise a TypeError with a relevant error message on invalid arg. Previously it allowed a cryptic AttributeError to escape. - bpo-46474: In importlib.metadata.EntryPoint.pattern, avoid potential REDoS by limiting ambiguity in consecutive whitespace. - bpo-46469: asyncio generic classes now return types.GenericAlias in __class_getitem__ instead of the same class. - bpo-46434: pdb now gracefully handles help when __doc__ is missing, for example when run with pregenerated optimized .pyc files. - bpo-46333: The __eq__() and __hash__() methods of typing.ForwardRef now honor the module parameter of typing.ForwardRef. Forward references from different modules are now differentiated. - bpo-46246: Add missing __slots__ to importlib.metadata.DeprecatedList. Patch by Arie Bovenberg. - bpo-46266: Improve day constants in calendar. - Now all constants (MONDAY ... SUNDAY) are documented, tested, and added to __all__. - bpo-46232: The ssl module now handles certificates with bit strings in DN correctly. - bpo-43118: Fix a bug in inspect.signature() that was causing it to fail on some subclasses of classes with a __text_signature__ referencing module globals. Patch by Weipeng Hong. - bpo-26552: Fixed case where failing asyncio.ensure_future() did not close the coroutine. Patch by Kumar Aditya. - bpo-21987: Fix an issue with tarfile.TarFile.getmember() getting a directory name with a trailing slash. - bpo-20392: Fix inconsistency with uppercase file extensions in MimeTypes.guess_type(). Patch by Kumar Aditya. - bpo-46080: Fix exception in argparse help text generation if a argparse.BooleanOptionalAction argument's default is argparse.SUPPRESS and it has help specified. Patch by Felix Fontein. - bpo-44439: Fix .write() method of a member file in ZipFile, when the input data is an object that supports the buffer protocol, the file length may be wrong. - bpo-45703: When a namespace package is imported before another module from the same namespace is created/installed in a different sys.path location while the program is running, calling the importlib.invalidate_caches() function will now also guarantee the new module is noticed. - bpo-24959: Fix bug where unittest sometimes drops frames from tracebacks of exceptions raised in tests. - bpo-44791: Fix substitution of ParamSpec in Concatenate with different parameter expressions. Substitution with a list of types returns now a tuple of types. Substitution with Concatenate returns now a Concatenate with concatenated lists of arguments. - bpo-14156: argparse.FileType now supports an argument of '-' in binary mode, returning the .buffer attribute of sys.stdin/sys.stdout as appropriate. Modes including 'x' and 'a' are treated equivalently to 'w' when argument is '-'. Patch contributed by Josh Rosenberg - bpo-46463: Fixes escape4chm.py script used when building the CHM documentation file - bpo-46913: Fix test_faulthandler.test_sigfpe() if Python is built with undefined behavior sanitizer (UBSAN): disable UBSAN on the faulthandler_sigfpe() function. Patch by Victor Stinner. - bpo-46708: Prevent default asyncio event loop policy modification warning after test_asyncio execution. - bpo-46678: The function make_legacy_pyc in Lib/test/support/import_helper.py no longer fails when PYTHONPYCACHEPREFIX is set to a directory on a different device from where tempfiles are stored. - bpo-46616: Ensures test_importlib.test_windows cleans up registry keys after completion. - bpo-44359: test_ftplib now silently ignores socket errors to prevent logging unhandled threading exceptions. Patch by Victor Stinner. - bpo-46542: Fix a Python crash in test_lib2to3 when using Python built in debug mode: limit the recursion limit. Patch by Victor Stinner. - bpo-46576: test_peg_generator now disables compiler optimization when testing compilation of its own C extensions to significantly speed up the testing on non-debug builds of CPython. - bpo-46542: Fix test_json tests checking for RecursionError: modify these tests to use support.infinite_recursion(). Patch by Victor Stinner. - bpo-13886: Skip test_builtin PTY tests on non-ASCII characters if the readline module is loaded. The readline module changes input() behavior, but test_builtin is not intented to test the readline module. Patch by Victor Stinner. - bpo-38472: Fix GCC detection in setup.py when cross-compiling. The C compiler is now run with LC_ALL=C. Previously, the detection failed with a German locale. - bpo-46513: configure no longer uses AC_C_CHAR_UNSIGNED macro and pyconfig.h no longer defines reserved symbol __CHAR_UNSIGNED__. - bpo-45296: Clarify close, quit, and exit in IDLE. In the File menu, 'Close' and 'Exit' are now 'Close Window' (the current one) and 'Exit' is now 'Exit IDLE' (by closing all windows). In Shell, 'quit()' and 'exit()' mean 'close Shell'. If there are no other windows, this also exits IDLE. - bpo-45447: Apply IDLE syntax highlighting to pyi files. Patch by Alex Waygood and Terry Jan Reedy. - bpo-46433: The internal function _PyType_GetModuleByDef now correctly handles inheritance patterns involving static types. - bpo-14916: Fixed bug in the tokenizer that prevented PyRun_InteractiveOne from parsing from the provided FD. libpython3_10-1_0-3.10.5-150400.4.7.1.x86_64.rpm libpython3_10-1_0-32bit-3.10.5-150400.4.7.1.x86_64.rpm python310-3.10.5-150400.4.7.1.src.rpm python310-3.10.5-150400.4.7.1.x86_64.rpm python310-32bit-3.10.5-150400.4.7.1.x86_64.rpm python310-base-3.10.5-150400.4.7.1.x86_64.rpm python310-base-32bit-3.10.5-150400.4.7.1.x86_64.rpm python310-core-3.10.5-150400.4.7.1.src.rpm python310-curses-3.10.5-150400.4.7.1.x86_64.rpm python310-dbm-3.10.5-150400.4.7.1.x86_64.rpm python310-devel-3.10.5-150400.4.7.1.x86_64.rpm python310-doc-3.10.5-150400.4.7.1.x86_64.rpm python310-doc-devhelp-3.10.5-150400.4.7.1.x86_64.rpm python310-documentation-3.10.5-150400.4.7.1.src.rpm python310-idle-3.10.5-150400.4.7.1.x86_64.rpm python310-testsuite-3.10.5-150400.4.7.1.x86_64.rpm python310-tk-3.10.5-150400.4.7.1.x86_64.rpm python310-tools-3.10.5-150400.4.7.1.x86_64.rpm libpython3_10-1_0-3.10.5-150400.4.7.1.s390x.rpm python310-3.10.5-150400.4.7.1.s390x.rpm python310-base-3.10.5-150400.4.7.1.s390x.rpm python310-curses-3.10.5-150400.4.7.1.s390x.rpm python310-dbm-3.10.5-150400.4.7.1.s390x.rpm python310-devel-3.10.5-150400.4.7.1.s390x.rpm python310-doc-3.10.5-150400.4.7.1.s390x.rpm python310-doc-devhelp-3.10.5-150400.4.7.1.s390x.rpm python310-idle-3.10.5-150400.4.7.1.s390x.rpm python310-testsuite-3.10.5-150400.4.7.1.s390x.rpm python310-tk-3.10.5-150400.4.7.1.s390x.rpm python310-tools-3.10.5-150400.4.7.1.s390x.rpm libpython3_10-1_0-3.10.5-150400.4.7.1.ppc64le.rpm python310-3.10.5-150400.4.7.1.ppc64le.rpm python310-base-3.10.5-150400.4.7.1.ppc64le.rpm python310-curses-3.10.5-150400.4.7.1.ppc64le.rpm python310-dbm-3.10.5-150400.4.7.1.ppc64le.rpm python310-devel-3.10.5-150400.4.7.1.ppc64le.rpm python310-doc-3.10.5-150400.4.7.1.ppc64le.rpm python310-doc-devhelp-3.10.5-150400.4.7.1.ppc64le.rpm python310-idle-3.10.5-150400.4.7.1.ppc64le.rpm python310-testsuite-3.10.5-150400.4.7.1.ppc64le.rpm python310-tk-3.10.5-150400.4.7.1.ppc64le.rpm python310-tools-3.10.5-150400.4.7.1.ppc64le.rpm libpython3_10-1_0-3.10.5-150400.4.7.1.aarch64.rpm python310-3.10.5-150400.4.7.1.aarch64.rpm python310-base-3.10.5-150400.4.7.1.aarch64.rpm python310-curses-3.10.5-150400.4.7.1.aarch64.rpm python310-dbm-3.10.5-150400.4.7.1.aarch64.rpm python310-devel-3.10.5-150400.4.7.1.aarch64.rpm python310-doc-3.10.5-150400.4.7.1.aarch64.rpm python310-doc-devhelp-3.10.5-150400.4.7.1.aarch64.rpm python310-idle-3.10.5-150400.4.7.1.aarch64.rpm python310-testsuite-3.10.5-150400.4.7.1.aarch64.rpm python310-tk-3.10.5-150400.4.7.1.aarch64.rpm python310-tools-3.10.5-150400.4.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-2810 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-kiwi fixes the following issues: - Preserve the LABEL= setting when the grub config file is re-generated. (bsc#1197616) - Add ensure empty tmpdirs option for OCI containers. (bsc#1197783) - Set /.snapshots subvolume to mode 0700 (bsc#1194992) dracut-kiwi-lib-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-live-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-oem-dump-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-oem-repart-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-overlay-9.24.36-150100.3.53.2.x86_64.rpm kiwi-man-pages-9.24.36-150100.3.53.2.x86_64.rpm kiwi-pxeboot-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-bootloaders-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-containers-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-core-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-disk-images-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-filesystems-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-image-validation-9.24.36-150100.3.53.2.x86_64.rpm kiwi-systemdeps-iso-media-9.24.36-150100.3.53.2.x86_64.rpm kiwi-tools-9.24.36-150100.3.53.2.x86_64.rpm python-kiwi-9.24.36-150100.3.53.2.src.rpm python3-kiwi-9.24.36-150100.3.53.2.x86_64.rpm dracut-kiwi-lib-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-live-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-oem-dump-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-oem-repart-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-overlay-9.24.36-150100.3.53.2.s390x.rpm kiwi-man-pages-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-bootloaders-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-containers-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-core-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-disk-images-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-filesystems-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-image-validation-9.24.36-150100.3.53.2.s390x.rpm kiwi-systemdeps-iso-media-9.24.36-150100.3.53.2.s390x.rpm kiwi-tools-9.24.36-150100.3.53.2.s390x.rpm python3-kiwi-9.24.36-150100.3.53.2.s390x.rpm dracut-kiwi-lib-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-live-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-oem-dump-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-oem-repart-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-overlay-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-man-pages-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-bootloaders-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-containers-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-core-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-disk-images-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-filesystems-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-image-validation-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-systemdeps-iso-media-9.24.36-150100.3.53.2.ppc64le.rpm kiwi-tools-9.24.36-150100.3.53.2.ppc64le.rpm python3-kiwi-9.24.36-150100.3.53.2.ppc64le.rpm dracut-kiwi-lib-9.24.36-150100.3.53.2.aarch64.rpm dracut-kiwi-live-9.24.36-150100.3.53.2.aarch64.rpm dracut-kiwi-oem-dump-9.24.36-150100.3.53.2.aarch64.rpm dracut-kiwi-oem-repart-9.24.36-150100.3.53.2.aarch64.rpm dracut-kiwi-overlay-9.24.36-150100.3.53.2.aarch64.rpm kiwi-man-pages-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-bootloaders-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-containers-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-core-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-disk-images-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-filesystems-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-image-validation-9.24.36-150100.3.53.2.aarch64.rpm kiwi-systemdeps-iso-media-9.24.36-150100.3.53.2.aarch64.rpm kiwi-tools-9.24.36-150100.3.53.2.aarch64.rpm python3-kiwi-9.24.36-150100.3.53.2.aarch64.rpm openSUSE-SLE-15.4-2022-2259 moderate SUSE Updates openSUSE-SLE 15.4 This update for ImageMagick fixes the following issues: - CVE-2019-17540: Fixed heap-based buffer overflow in ReadPSInfo in coders/ps.c. (bsc#1153866) - CVE-2022-32545: Fixed an outside the range of representable values of type. (bsc#1200388) - CVE-2022-32546: Fixed an outside the range of representable values of type. (bsc#1200389) - CVE-2022-32547: Fixed a load of misaligned address at MagickCore/property.c. (bsc#1200387) ImageMagick-7.0.7.34-150200.10.31.1.src.rpm libMagick++-7_Q16HDRI4-32bit-7.0.7.34-150200.10.31.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.31.1.x86_64.rpm libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-150200.10.31.1.x86_64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.31.1.x86_64.rpm libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-150200.10.31.1.x86_64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.31.1.x86_64.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.31.1.s390x.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.31.1.s390x.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.31.1.s390x.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.31.1.ppc64le.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.31.1.ppc64le.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.31.1.ppc64le.rpm libMagick++-7_Q16HDRI4-7.0.7.34-150200.10.31.1.aarch64.rpm libMagickCore-7_Q16HDRI6-7.0.7.34-150200.10.31.1.aarch64.rpm libMagickWand-7_Q16HDRI6-7.0.7.34-150200.10.31.1.aarch64.rpm openSUSE-SLE-15.4-2022-2301 moderate SUSE Updates openSUSE-SLE 15.4 This update for ImageMagick fixes the following issues: - CVE-2022-32545: Fixed an outside the range of representable values of type. (bsc#1200388) - CVE-2022-32546: Fixed an outside the range of representable values of type. (bsc#1200389) - CVE-2022-32547: Fixed a load of misaligned address at MagickCore/property.c. (bsc#1200387) ImageMagick-7.1.0.9-150400.6.3.1.src.rpm ImageMagick-7.1.0.9-150400.6.3.1.x86_64.rpm ImageMagick-config-7-SUSE-7.1.0.9-150400.6.3.1.x86_64.rpm ImageMagick-config-7-upstream-7.1.0.9-150400.6.3.1.x86_64.rpm ImageMagick-devel-32bit-7.1.0.9-150400.6.3.1.x86_64.rpm ImageMagick-devel-7.1.0.9-150400.6.3.1.x86_64.rpm ImageMagick-doc-7.1.0.9-150400.6.3.1.noarch.rpm ImageMagick-extra-7.1.0.9-150400.6.3.1.x86_64.rpm libMagick++-7_Q16HDRI5-32bit-7.1.0.9-150400.6.3.1.x86_64.rpm libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.3.1.x86_64.rpm libMagick++-devel-32bit-7.1.0.9-150400.6.3.1.x86_64.rpm libMagick++-devel-7.1.0.9-150400.6.3.1.x86_64.rpm libMagickCore-7_Q16HDRI10-32bit-7.1.0.9-150400.6.3.1.x86_64.rpm libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.3.1.x86_64.rpm libMagickWand-7_Q16HDRI10-32bit-7.1.0.9-150400.6.3.1.x86_64.rpm libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.3.1.x86_64.rpm perl-PerlMagick-7.1.0.9-150400.6.3.1.x86_64.rpm ImageMagick-7.1.0.9-150400.6.3.1.s390x.rpm ImageMagick-config-7-SUSE-7.1.0.9-150400.6.3.1.s390x.rpm ImageMagick-config-7-upstream-7.1.0.9-150400.6.3.1.s390x.rpm ImageMagick-devel-7.1.0.9-150400.6.3.1.s390x.rpm ImageMagick-extra-7.1.0.9-150400.6.3.1.s390x.rpm libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.3.1.s390x.rpm libMagick++-devel-7.1.0.9-150400.6.3.1.s390x.rpm libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.3.1.s390x.rpm libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.3.1.s390x.rpm perl-PerlMagick-7.1.0.9-150400.6.3.1.s390x.rpm ImageMagick-7.1.0.9-150400.6.3.1.ppc64le.rpm ImageMagick-config-7-SUSE-7.1.0.9-150400.6.3.1.ppc64le.rpm ImageMagick-config-7-upstream-7.1.0.9-150400.6.3.1.ppc64le.rpm ImageMagick-devel-7.1.0.9-150400.6.3.1.ppc64le.rpm ImageMagick-extra-7.1.0.9-150400.6.3.1.ppc64le.rpm libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.3.1.ppc64le.rpm libMagick++-devel-7.1.0.9-150400.6.3.1.ppc64le.rpm libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.3.1.ppc64le.rpm libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.3.1.ppc64le.rpm perl-PerlMagick-7.1.0.9-150400.6.3.1.ppc64le.rpm ImageMagick-7.1.0.9-150400.6.3.1.aarch64.rpm ImageMagick-config-7-SUSE-7.1.0.9-150400.6.3.1.aarch64.rpm ImageMagick-config-7-upstream-7.1.0.9-150400.6.3.1.aarch64.rpm ImageMagick-devel-7.1.0.9-150400.6.3.1.aarch64.rpm ImageMagick-extra-7.1.0.9-150400.6.3.1.aarch64.rpm libMagick++-7_Q16HDRI5-7.1.0.9-150400.6.3.1.aarch64.rpm libMagick++-devel-7.1.0.9-150400.6.3.1.aarch64.rpm libMagickCore-7_Q16HDRI10-7.1.0.9-150400.6.3.1.aarch64.rpm libMagickWand-7_Q16HDRI10-7.1.0.9-150400.6.3.1.aarch64.rpm perl-PerlMagick-7.1.0.9-150400.6.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2302 important SUSE Updates openSUSE-SLE 15.4 This update for apache2 fixes the following issues: - CVE-2022-26377: Fixed possible request smuggling in mod_proxy_ajp (bsc#1200338) - CVE-2022-28614: Fixed read beyond bounds via ap_rwrite() (bsc#1200340) - CVE-2022-28615: Fixed read beyond bounds in ap_strcmp_match() (bsc#1200341) - CVE-2022-29404: Fixed denial of service in mod_lua r:parsebody (bsc#1200345) - CVE-2022-30556: Fixed information disclosure in mod_lua with websockets (bsc#1200350) - CVE-2022-30522: Fixed mod_sed denial of service (bsc#1200352) - CVE-2022-31813: Fixed mod_proxy X-Forwarded-For dropped by hop-by-hop mechanism (bsc#1200348) apache2-2.4.51-150400.6.3.1.src.rpm apache2-2.4.51-150400.6.3.1.x86_64.rpm apache2-devel-2.4.51-150400.6.3.1.x86_64.rpm apache2-doc-2.4.51-150400.6.3.1.noarch.rpm apache2-event-2.4.51-150400.6.3.1.x86_64.rpm apache2-example-pages-2.4.51-150400.6.3.1.x86_64.rpm apache2-prefork-2.4.51-150400.6.3.1.x86_64.rpm apache2-utils-2.4.51-150400.6.3.1.x86_64.rpm apache2-worker-2.4.51-150400.6.3.1.x86_64.rpm apache2-2.4.51-150400.6.3.1.s390x.rpm apache2-devel-2.4.51-150400.6.3.1.s390x.rpm apache2-event-2.4.51-150400.6.3.1.s390x.rpm apache2-example-pages-2.4.51-150400.6.3.1.s390x.rpm apache2-prefork-2.4.51-150400.6.3.1.s390x.rpm apache2-utils-2.4.51-150400.6.3.1.s390x.rpm apache2-worker-2.4.51-150400.6.3.1.s390x.rpm apache2-2.4.51-150400.6.3.1.ppc64le.rpm apache2-devel-2.4.51-150400.6.3.1.ppc64le.rpm apache2-event-2.4.51-150400.6.3.1.ppc64le.rpm apache2-example-pages-2.4.51-150400.6.3.1.ppc64le.rpm apache2-prefork-2.4.51-150400.6.3.1.ppc64le.rpm apache2-utils-2.4.51-150400.6.3.1.ppc64le.rpm apache2-worker-2.4.51-150400.6.3.1.ppc64le.rpm apache2-2.4.51-150400.6.3.1.aarch64.rpm apache2-devel-2.4.51-150400.6.3.1.aarch64.rpm apache2-event-2.4.51-150400.6.3.1.aarch64.rpm apache2-example-pages-2.4.51-150400.6.3.1.aarch64.rpm apache2-prefork-2.4.51-150400.6.3.1.aarch64.rpm apache2-utils-2.4.51-150400.6.3.1.aarch64.rpm apache2-worker-2.4.51-150400.6.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2114 moderate SUSE Updates openSUSE-SLE 15.4 This feature update for build provides the following changes: Support the Multi Factor Authentication in osc (jsc#SLE-24657, jsc#SLE-24652, jsc#SLE-24653) - Upgrade build from version 20220422 to version 20220613: * deb: defer dpkg triggers until all packages are installed, and disable man-db altogether * Add support of Debian Source format 3.0 (quilt) and changelog modification * Stop building aarch64_ilp32 baselibs for aarch64 build-20220613-150200.12.1.noarch.rpm build-20220613-150200.12.1.src.rpm build-initvm-x86_64-20220613-150200.12.1.noarch.rpm build-mkbaselibs-20220613-150200.12.1.noarch.rpm build-mkdrpms-20220613-150200.12.1.noarch.rpm build-initvm-s390x-20220613-150200.12.1.noarch.rpm build-initvm-powerpc64le-20220613-150200.12.1.noarch.rpm build-initvm-aarch64-20220613-150200.12.1.noarch.rpm openSUSE-SLE-15.4-2022-2399 moderate SUSE Updates openSUSE-SLE 15.4 This update for scap-security-guide fixes the following issues: ComplianceAsCode was updated to 0.1.62 (jsc#ECO-3319): - Update rhel8 stig to v1r6 - OL7 STIG v2r7 update - Initial definition of ANSSI BP28 minmal profile for SUSE Linux Enterprise scap-security-guide-0.1.62-150000.1.39.1.noarch.rpm scap-security-guide-0.1.62-150000.1.39.1.src.rpm scap-security-guide-debian-0.1.62-150000.1.39.1.noarch.rpm scap-security-guide-redhat-0.1.62-150000.1.39.1.noarch.rpm scap-security-guide-ubuntu-0.1.62-150000.1.39.1.noarch.rpm openSUSE-SLE-15.4-2022-2851 moderate SUSE Updates openSUSE-SLE 15.4 This update for rustup fixes the following issues: - added correct provides to the obsoletes of older rust subpackages, to get correct provides obsoletes pairs and allow better transition between RPMs. (bsc#1200499) rustup-1.24.3~git1.0a74fef5-150400.3.4.1.src.rpm rustup-1.24.3~git1.0a74fef5-150400.3.4.1.x86_64.rpm rustup-1.24.3~git1.0a74fef5-150400.3.4.1.aarch64.rpm openSUSE-SLE-15.4-2022-2340 important SUSE Updates openSUSE-SLE 15.4 This update of fwupdate fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) fwupdate-12-150100.11.10.1.src.rpm fwupdate-12-150100.11.10.1.x86_64.rpm fwupdate-devel-12-150100.11.10.1.x86_64.rpm fwupdate-efi-12-150100.11.10.1.x86_64.rpm libfwup1-12-150100.11.10.1.x86_64.rpm fwupdate-12-150100.11.10.1.aarch64.rpm fwupdate-devel-12-150100.11.10.1.aarch64.rpm fwupdate-efi-12-150100.11.10.1.aarch64.rpm libfwup1-12-150100.11.10.1.aarch64.rpm openSUSE-SLE-15.4-2022-2156 important SUSE Updates openSUSE-SLE 15.4 - Add python3-dnspython and python3-zypp-plugin to unrestricted channels. python-dnspython-1.15.0-150000.3.2.1.src.rpm python3-dnspython-1.15.0-150000.3.2.1.noarch.rpm python3-zypp-plugin-0.6.3-150000.4.2.1.noarch.rpm zypp-plugin-0.6.3-150000.4.2.1.src.rpm openSUSE-SLE-15.4-2022-2490 important SUSE Updates openSUSE-SLE 15.4 This update for release-notes-sles fixes the following issues: Update the release notes to version 15.4.20220714 (bsc#933411) - Provided information on a solution for a qemu error (bsc#1200422) - Provided information about improved AES-GCM performance (jsc#SLE-18132) - Provided information about iotop (bsc#1200669) - Updated information to include product version (bsc#1200927) - Provided information about removing driver versions from modinfo (bsc#1200070) - Updated information on LPM and DPAR (bsc#1198415) - Provided information on the libmodman removal (jsc#SLE-20923) - Provided information on the removal of pam_ldap and nss_ldap (jsc#SLE-11448) - Provided information about virt-manager SEV detection (jsc#SLE-14424) - Provided information about NFS readahead size reduction (bsc#1197001) release-notes-sles-15.4.20220714-150400.3.4.2.noarch.rpm release-notes-sles-15.4.20220714-150400.3.4.2.src.rpm openSUSE-SLE-15.4-2022-2168 important SUSE Updates openSUSE-SLE 15.4 This update of drbd fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) drbd-9.0.29~0+git.9a7bc817-150300.3.5.1.src.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.x86_64.rpm drbd-kmp-rt-9.0.29~0+git.9a7bc817_k5.3.18_8.13-150300.3.5.1.x86_64.rpm drbd-kmp-preempt-9.0.29~0+git.9a7bc817_k5.3.18_150300.59.71-150300.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2656 important SUSE Updates openSUSE-SLE 15.4 This update of drbd fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) drbd-9.0.30~1+git.10bee2d5-150400.3.2.9.src.rpm drbd-9.0.30~1+git.10bee2d5-150400.3.2.9.x86_64.rpm drbd-kmp-default-9.0.30~1+git.10bee2d5_k5.14.21_150400.24.11-150400.3.2.9.x86_64.rpm drbd-9.0.30~1+git.10bee2d5-150400.3.2.9.s390x.rpm drbd-kmp-default-9.0.30~1+git.10bee2d5_k5.14.21_150400.24.11-150400.3.2.9.s390x.rpm drbd-9.0.30~1+git.10bee2d5-150400.3.2.9.ppc64le.rpm drbd-kmp-default-9.0.30~1+git.10bee2d5_k5.14.21_150400.24.11-150400.3.2.9.ppc64le.rpm drbd-9.0.30~1+git.10bee2d5-150400.3.2.9.aarch64.rpm drbd-kmp-64kb-9.0.30~1+git.10bee2d5_k5.14.21_150400.24.11-150400.3.2.9.aarch64.rpm drbd-kmp-default-9.0.30~1+git.10bee2d5_k5.14.21_150400.24.11-150400.3.2.9.aarch64.rpm openSUSE-SLE-15.4-2022-2563 moderate SUSE Updates openSUSE-SLE 15.4 This update for suse-migration-services fixes the following issues: - Enable prechecks as a systemd process - Add an EnvironmentFile to 'suse-migration-prepare.service' (bsc#1199028) - Add fix option to pre-checks - Remove --no-kernel from host independant initrd - Add an unsupported caveat for hpc - Add multiversion kernel checks to pre-checks - Enable prechecks for SLES15-Migration - Add fix for setup in tests - Add more details around migration_proudct - Add an option to create a 'fat' initrd - Fix pytest 7 compatibility - Mocks the command call for tests that run in an environment with no partitions or partitions have not been defined - Add zypper migration plugin verbosity - This fixes issue with migration in 'DMS'. (bsc#1191634) - Add migration_product to documentation - Show config file content in the migration log suse-migration-services-2.0.33-150000.1.46.1.noarch.rpm suse-migration-services-2.0.33-150000.1.46.1.src.rpm openSUSE-SLE-15.4-2022-2564 moderate SUSE Updates openSUSE-SLE 15.4 This update for suse-migration-rpm fixes the following issues: Update for suse-migration-rpm. suse-migration-rpm-1.0.1-150000.1.12.1.src.rpm suse-migration-rpm-1.0.1-150000.1.12.1.x86_64.rpm suse-migration-rpm-1.0.1-150000.1.12.1.s390x.rpm suse-migration-rpm-1.0.1-150000.1.12.1.ppc64le.rpm suse-migration-rpm-1.0.1-150000.1.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-2157 moderate SUSE Updates openSUSE-SLE 15.4 This update for binutils fixes the following issues: - For building the shim 15.6~rc1 and later versions aarch64 image, objcopy needs to support efi-app-aarch64 target. (bsc#1198458) binutils-2.37-150100.7.37.1.src.rpm binutils-2.37-150100.7.37.1.x86_64.rpm binutils-devel-2.37-150100.7.37.1.x86_64.rpm binutils-devel-32bit-2.37-150100.7.37.1.x86_64.rpm binutils-gold-2.37-150100.7.37.1.x86_64.rpm bpftrace-0.14.0-150400.3.2.2.src.rpm bpftrace-0.14.0-150400.3.2.2.x86_64.rpm bpftrace-tools-0.14.0-150400.3.2.2.noarch.rpm cross-aarch64-binutils-2.37-150100.7.37.1.src.rpm cross-aarch64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-arm-binutils-2.37-150100.7.37.1.src.rpm cross-arm-binutils-2.37-150100.7.37.1.x86_64.rpm cross-avr-binutils-2.37-150100.7.37.1.src.rpm cross-avr-binutils-2.37-150100.7.37.1.x86_64.rpm cross-epiphany-binutils-2.37-150100.7.37.1.src.rpm cross-epiphany-binutils-2.37-150100.7.37.1.x86_64.rpm cross-hppa-binutils-2.37-150100.7.37.1.src.rpm cross-hppa-binutils-2.37-150100.7.37.1.x86_64.rpm cross-hppa64-binutils-2.37-150100.7.37.1.src.rpm cross-hppa64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-i386-binutils-2.37-150100.7.37.1.src.rpm cross-i386-binutils-2.37-150100.7.37.1.x86_64.rpm cross-ia64-binutils-2.37-150100.7.37.1.src.rpm cross-ia64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-m68k-binutils-2.37-150100.7.37.1.src.rpm cross-m68k-binutils-2.37-150100.7.37.1.x86_64.rpm cross-mips-binutils-2.37-150100.7.37.1.src.rpm cross-mips-binutils-2.37-150100.7.37.1.x86_64.rpm cross-ppc-binutils-2.37-150100.7.37.1.src.rpm cross-ppc-binutils-2.37-150100.7.37.1.x86_64.rpm cross-ppc64-binutils-2.37-150100.7.37.1.src.rpm cross-ppc64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-ppc64le-binutils-2.37-150100.7.37.1.src.rpm cross-ppc64le-binutils-2.37-150100.7.37.1.x86_64.rpm cross-riscv64-binutils-2.37-150100.7.37.1.src.rpm cross-riscv64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-rx-binutils-2.37-150100.7.37.1.src.rpm cross-rx-binutils-2.37-150100.7.37.1.x86_64.rpm cross-s390-binutils-2.37-150100.7.37.1.src.rpm cross-s390-binutils-2.37-150100.7.37.1.x86_64.rpm cross-s390x-binutils-2.37-150100.7.37.1.src.rpm cross-s390x-binutils-2.37-150100.7.37.1.x86_64.rpm cross-sparc-binutils-2.37-150100.7.37.1.src.rpm cross-sparc-binutils-2.37-150100.7.37.1.x86_64.rpm cross-sparc64-binutils-2.37-150100.7.37.1.src.rpm cross-sparc64-binutils-2.37-150100.7.37.1.x86_64.rpm cross-spu-binutils-2.37-150100.7.37.1.src.rpm cross-spu-binutils-2.37-150100.7.37.1.x86_64.rpm libctf-nobfd0-2.37-150100.7.37.1.x86_64.rpm libctf0-2.37-150100.7.37.1.x86_64.rpm binutils-2.37-150100.7.37.1.s390x.rpm binutils-devel-2.37-150100.7.37.1.s390x.rpm binutils-gold-2.37-150100.7.37.1.s390x.rpm bpftrace-0.14.0-150400.3.2.2.s390x.rpm cross-aarch64-binutils-2.37-150100.7.37.1.s390x.rpm cross-arm-binutils-2.37-150100.7.37.1.s390x.rpm cross-avr-binutils-2.37-150100.7.37.1.s390x.rpm cross-epiphany-binutils-2.37-150100.7.37.1.s390x.rpm cross-hppa-binutils-2.37-150100.7.37.1.s390x.rpm cross-hppa64-binutils-2.37-150100.7.37.1.s390x.rpm cross-i386-binutils-2.37-150100.7.37.1.s390x.rpm cross-ia64-binutils-2.37-150100.7.37.1.s390x.rpm cross-m68k-binutils-2.37-150100.7.37.1.s390x.rpm cross-mips-binutils-2.37-150100.7.37.1.s390x.rpm cross-ppc-binutils-2.37-150100.7.37.1.s390x.rpm cross-ppc64-binutils-2.37-150100.7.37.1.s390x.rpm cross-ppc64le-binutils-2.37-150100.7.37.1.s390x.rpm cross-riscv64-binutils-2.37-150100.7.37.1.s390x.rpm cross-rx-binutils-2.37-150100.7.37.1.s390x.rpm cross-s390-binutils-2.37-150100.7.37.1.s390x.rpm cross-sparc-binutils-2.37-150100.7.37.1.s390x.rpm cross-sparc64-binutils-2.37-150100.7.37.1.s390x.rpm cross-spu-binutils-2.37-150100.7.37.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.37.1.s390x.rpm cross-x86_64-binutils-2.37-150100.7.37.1.src.rpm libctf-nobfd0-2.37-150100.7.37.1.s390x.rpm libctf0-2.37-150100.7.37.1.s390x.rpm binutils-2.37-150100.7.37.1.ppc64le.rpm binutils-devel-2.37-150100.7.37.1.ppc64le.rpm binutils-gold-2.37-150100.7.37.1.ppc64le.rpm bpftrace-0.14.0-150400.3.2.2.ppc64le.rpm cross-aarch64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-arm-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-avr-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-epiphany-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-hppa-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-hppa64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-i386-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-ia64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-m68k-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-mips-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-ppc-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-ppc64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-riscv64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-rx-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-s390-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-s390x-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-sparc-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-sparc64-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-spu-binutils-2.37-150100.7.37.1.ppc64le.rpm cross-x86_64-binutils-2.37-150100.7.37.1.ppc64le.rpm libctf-nobfd0-2.37-150100.7.37.1.ppc64le.rpm libctf0-2.37-150100.7.37.1.ppc64le.rpm binutils-2.37-150100.7.37.1.aarch64.rpm binutils-devel-2.37-150100.7.37.1.aarch64.rpm binutils-gold-2.37-150100.7.37.1.aarch64.rpm bpftrace-0.14.0-150400.3.2.2.aarch64.rpm cross-arm-binutils-2.37-150100.7.37.1.aarch64.rpm cross-avr-binutils-2.37-150100.7.37.1.aarch64.rpm cross-epiphany-binutils-2.37-150100.7.37.1.aarch64.rpm cross-hppa-binutils-2.37-150100.7.37.1.aarch64.rpm cross-hppa64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-i386-binutils-2.37-150100.7.37.1.aarch64.rpm cross-ia64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-m68k-binutils-2.37-150100.7.37.1.aarch64.rpm cross-mips-binutils-2.37-150100.7.37.1.aarch64.rpm cross-ppc-binutils-2.37-150100.7.37.1.aarch64.rpm cross-ppc64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-ppc64le-binutils-2.37-150100.7.37.1.aarch64.rpm cross-riscv64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-rx-binutils-2.37-150100.7.37.1.aarch64.rpm cross-s390-binutils-2.37-150100.7.37.1.aarch64.rpm cross-s390x-binutils-2.37-150100.7.37.1.aarch64.rpm cross-sparc-binutils-2.37-150100.7.37.1.aarch64.rpm cross-sparc64-binutils-2.37-150100.7.37.1.aarch64.rpm cross-spu-binutils-2.37-150100.7.37.1.aarch64.rpm cross-x86_64-binutils-2.37-150100.7.37.1.aarch64.rpm libctf-nobfd0-2.37-150100.7.37.1.aarch64.rpm libctf0-2.37-150100.7.37.1.aarch64.rpm openSUSE-SLE-15.4-2022-2173 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP3 kernel was updated. The following security bugs were fixed: - CVE-2022-1966: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue. (bnc#1200015) - CVE-2022-1975: Fixed a sleep-in-atomic bug that allows attacker to crash linux kernel by simulating nfc device from user-space. (bsc#1200143) - CVE-2022-1974: Fixed an use-after-free that could causes kernel crash by simulating an nfc device from user-space. (bsc#1200144) - CVE-2020-26541: Enforce the secure boot forbidden signature database (aka dbx) protection mechanism. (bnc#1177282) - The following non-security bugs were fixed: - ACPI: PM: Block ASUS B1400CEAE from suspend to idle by default (git-fixes). - ACPI: sysfs: Fix BERT error region memory mapping (git-fixes). - ACPI: sysfs: Make sparse happy about address space in use (git-fixes). - ALSA: hda/conexant - Fix loopback issue with CX20632 (git-fixes). - ALSA: usb-audio: Optimize TEAC clock quirk (git-fixes). - ALSA: usb-audio: Set up (implicit) sync for Saffire 6 (git-fixes). - ALSA: usb-audio: Skip generic sync EP parse for secondary EP (git-fixes). - ALSA: usb-audio: Workaround for clock setup on TEAC devices (git-fixes). - ASoC: dapm: Do not fold register value changes into notifications (git-fixes). - ASoC: max98357a: remove dependency on GPIOLIB (git-fixes). - ASoC: rt5645: Fix errorenous cleanup order (git-fixes). - ASoC: tscs454: Add endianness flag in snd_soc_component_driver (git-fixes). - ata: libata-transport: fix {dma|pio|xfer}_mode sysfs files (git-fixes). - ath9k: fix QCA9561 PA bias level (git-fixes). - b43: Fix assigning negative value to unsigned variable (git-fixes). - b43legacy: Fix assigning negative value to unsigned variable (git-fixes). - blk-mq: fix tag_get wait task can't be awakened (bsc#1200263). - blk-mq: Fix wrong wakeup batch configuration which will cause hang (bsc#1200263). - block: fix bio_clone_blkg_association() to associate with proper blkcg_gq (bsc#1200259). - btrfs: tree-checker: fix incorrect printk format (bsc#1200249). - cfg80211: set custom regdomain after wiphy registration (git-fixes). - clocksource/drivers/oxnas-rps: Fix irq_of_parse_and_map() return value (git-fixes). - clocksource/drivers/sp804: Avoid error on multiple instances (git-fixes). - dma-buf: fix use of DMA_BUF_SET_NAME_{A,B} in userspace (git-fixes). - dmaengine: zynqmp_dma: In struct zynqmp_dma_chan fix desc_size data type (git-fixes). - drivers: i2c: thunderx: Allow driver to work with ACPI defined TWSI controllers (git-fixes). - drivers: staging: rtl8192e: Fix deadlock in rtllib_beacons_stop() (git-fixes). - drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop() (git-fixes). - drivers: tty: serial: Fix deadlock in sa1100_set_termios() (git-fixes). - drivers: usb: host: Fix deadlock in oxu_bus_suspend() (git-fixes). - drm: imx: fix compiler warning with gcc-12 (git-fixes). - drm: msm: fix error check return value of irq_of_parse_and_map() (git-fixes). - drm/amdgpu/cs: make commands with 0 chunks illegal behaviour (git-fixes). - drm/amdgpu/smu10: fix SoC/fclk units in auto mode (git-fixes). - drm/amdgpu/ucode: Remove firmware load type check in amdgpu_ucode_free_bo (git-fixes). - drm/atomic: Force bridge self-refresh-exit on CRTC switch (git-fixes). - drm/bridge: analogix_dp: Support PSR-exit to disable transition (git-fixes). - drm/i915: Fix -Wstringop-overflow warning in call to intel_read_wm_latency() (git-fixes). - drm/i915: fix i915_globals_exit() section mismatch error (git-fixes). - drm/komeda: return early if drm_universal_plane_init() fails (git-fixes). - drm/msm/dsi: fix address for second DSI PHY on SDM660 (git-fixes). - drm/plane: Move range check for format_count earlier (git-fixes). - drm/radeon: fix a possible null pointer dereference (git-fixes). - drm/virtio: fix NULL pointer dereference in virtio_gpu_conn_get_modes (git-fixes). - efi: Add missing prototype for efi_capsule_setup_info (git-fixes). - efi: Do not import certificates from UEFI Secure Boot for T2 Macs (git-fixes). - fbcon: Consistently protect deferred_takeover with console_lock() (git-fixes). - ftrace: Clean up hash direct_functions on register failures (git-fixes). - HID: bigben: fix slab-out-of-bounds Write in bigben_probe (git-fixes). - HID: multitouch: Add support for Google Whiskers Touchpad (git-fixes). - hwmon: Make chip parameter for with_info API mandatory (git-fixes). - i2c: cadence: Increase timeout per message if necessary (git-fixes). - i2c: ismt: Provide a DMA buffer for Interrupt Cause Logging (git-fixes). - iio: dummy: iio_simple_dummy: check the return value of kstrdup() (git-fixes). - Input: bcm5974 - set missing URB_NO_TRANSFER_DMA_MAP urb flag (git-fixes). - Input: goodix - fix spurious key release events (git-fixes). - ipw2x00: Fix potential NULL dereference in libipw_xmit() (git-fixes). - irqchip: irq-xtensa-mx: fix initial IRQ affinity (git-fixes). - irqchip/armada-370-xp: Do not touch Performance Counter Overflow on A375, A38x, A39x (git-fixes). - irqchip/aspeed-i2c-ic: Fix irq_of_parse_and_map() return value (git-fixes). - irqchip/exiu: Fix acknowledgment of edge triggered interrupts (git-fixes). - iwlwifi: mvm: fix assert 1F04 upon reconfig (git-fixes). - KVM: fix wrong exception emulation in check_rdtsc (git-fixes). - KVM: nVMX: Invalidate all roots when emulating INVVPID without EPT (git-fixes). - KVM: nVMX: Query current VMCS when determining if MSR bitmaps are in use (git-fixes). - KVM: nVMX: Set LDTR to its architecturally defined value on nested VM-Exit (git-fixes). - KVM: nVMX: Unconditionally clear nested.pi_pending on nested VM-Enter (git-fixes). - KVM: s390: pv: add macros for UVC CC values (git-fixes). - KVM: s390: pv: avoid double free of sida page (git-fixes). - KVM: s390: pv: avoid stalls for kvm_s390_pv_init_vm (git-fixes). - KVM: s390: vsie/gmap: reduce gmap_rmap overhead (git-fixes). - KVM: VMX: Flush all EPTP/VPID contexts on remote TLB flush (git-fixes). - KVM: VMX: Use current VMCS to query WAITPKG support for MSR emulation (git-fixes). - KVM: x86: clflushopt should be treated as a no-op by emulation (git-fixes). - KVM: x86: Do not force set BSP bit when local APIC is managed by userspace (git-fixes). - KVM: x86: Fix emulation in writing cr8 (git-fixes). - KVM: x86: Fix off-by-one error in kvm_vcpu_ioctl_x86_setup_mce (git-fixes). - KVM: x86: Immediately reset the MMU context when the SMM flag is cleared (git-fixes). - KVM: x86: Inject #GP if guest attempts to toggle CR4.LA57 in 64-bit mode (git-fixes). - KVM: x86: Mark CR4.TSD as being possibly owned by the guest (git-fixes). - KVM: x86: Migrate the PIT only if vcpu0 is migrated, not any BSP (git-fixes). - KVM: x86: Toggling CR4.PKE does not load PDPTEs in PAE mode (git-fixes). - KVM: x86: Toggling CR4.SMAP does not load PDPTEs in PAE mode (git-fixes). - KVM: x86/cpuid: Only provide CPUID leaf 0xA if host has architectural PMU (git-fixes). - KVM: x86/emulator: Defer not-present segment check in __load_segment_descriptor() (git-fixes). - KVM: x86/pmu: Fix HW_REF_CPU_CYCLES event pseudo-encoding in intel_arch_events[] (git-fixes). - mac80211: upgrade passive scan to active scan on DFS channels after beacon rx (git-fixes). - md: fix an incorrect NULL check in does_sb_need_changing (git-fixes). - md: fix an incorrect NULL check in md_reload_sb (git-fixes). - media: cx25821: Fix the warning when removing the module (git-fixes). - media: netup_unidvb: Do not leak SPI master in probe error path (git-fixes). - media: pci: cx23885: Fix the error handling in cx23885_initdev() (git-fixes). - media: venus: hfi: avoid null dereference in deinit (git-fixes). - misc: rtsx: set NULL intfdata when probe fails (git-fixes). - mmc: block: Fix CQE recovery reset success (git-fixes). - mmc: jz4740: Apply DMA engine limits to maximum segment size (git-fixes). - modpost: fix removing numeric suffixes (git-fixes). - modpost: fix undefined behavior of is_arm_mapping_symbol() (git-fixes). - mt76: check return value of mt76_txq_send_burst in mt76_txq_schedule_list (git-fixes). - mwifiex: add mutex lock for call in mwifiex_dfs_chan_sw_work_queue (git-fixes). - net: rtlwifi: properly check for alloc_workqueue() failure (git-fixes). - nfc: st21nfca: fix incorrect sizing calculations in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix incorrect validating logic in EVT_TRANSACTION (git-fixes). - nfc: st21nfca: fix memory leaks in EVT_TRANSACTION handling (git-fixes). - NFS: Do not report ENOSPC write errors twice (git-fixes). - nfsd: Fix null-ptr-deref in nfsd_fill_super() (git-fixes). - PCI: hv: Fix NUMA node assignment when kernel boots with custom NUMA topology (bsc#1199365). - pcmcia: db1xxx_ss: restrict to MIPS_DB1XXX boards (git-fixes). - pinctrl: sunxi: fix f1c100s uart2 function (git-fixes). - platform/chrome: cros_ec_proto: Send command again when timeout occurs (git-fixes). - platform/x86: wmi: Fix driver->notify() vs ->probe() race (git-fixes). - platform/x86: wmi: Replace read_takes_no_args with a flags field (git-fixes). - devfreq: rk3399_dmc: Disable edev on remove() (git-fixes). - raid5: introduce MD_BROKEN (git-fixes). - rtl818x: Prevent using not initialized queues (git-fixes). - rtlwifi: Use pr_warn instead of WARN_ONCE (git-fixes). - s390: fix detection of vector enhancements facility 1 vs. vector packed decimal facility (git-fixes). - s390: fix strrchr() implementation (git-fixes). - s390/cio: dont call css_wait_for_slow_path() inside a lock (git-fixes). - s390/cio: Fix the "type" field in s390_cio_tpi tracepoint (git-fixes). - s390/crypto: fix scatterwalk_unmap() callers in AES-GCM (git-fixes). - s390/ctcm: fix potential memory leak (git-fixes). - s390/ctcm: fix variable dereferenced before check (git-fixes). - s390/dasd: fix data corruption for ESE devices (bsc#1200207 LTC#198454). - s390/dasd: Fix read for ESE with blksize 4k (bsc#1200206 LTC#198455). - s390/dasd: Fix read inconsistency for ESE DASD devices (bsc#1200206 LTC#198455). - s390/dasd: prevent double format of tracks for ESE devices (bsc#1200207 LTC#198454). - s390/ftrace: fix ftrace_update_ftrace_func implementation (git-fixes). - s390/lcs: fix variable dereferenced before check (git-fixes). - s390/mcck: fix invalid KVM guest condition check (git-fixes). - s390/mcck: isolate SIE instruction when setting CIF_MCCK_GUEST flag (git-fixes). - s390/nmi: handle guarded storage validity failures for KVM guests (git-fixes). - s390/nmi: handle vector validity failures for KVM guests (git-fixes). - s390/pv: fix the forcing of the swiotlb (git-fixes). - s390/qdio: cancel the ESTABLISH ccw after timeout (git-fixes). - s390/qdio: fix roll-back after timeout on ESTABLISH ccw (git-fixes). - s390/vfio-ap: fix circular lockdep when setting/clearing crypto masks (git-fixes). - serial: msm_serial: disable interrupts in __msm_console_write() (git-fixes). - spi: Introduce device-managed SPI controller allocation (git-fixes). - spi: spi-rspi: Remove setting {src,dst}_{addr,addr_width} based on DMA direction (git-fixes). - spi: stm32-qspi: Fix wait_cmd timeout in APM mode (git-fixes). - staging: rtl8712: fix uninit-value in r871xu_drv_init() (git-fixes). - staging: rtl8712: fix uninit-value in usb_read8() and friends (git-fixes). - tilcdc: tilcdc_external: fix an incorrect NULL check on list iterator (git-fixes). - tty: Fix a possible resource leak in icom_probe (git-fixes). - tty: synclink_gt: Fix null-pointer-dereference in slgt_clean() (git-fixes). - usb: core: hcd: Add support for deferring roothub registration (git-fixes). - usb: dwc2: gadget: do not reset gadget's driver->bus (git-fixes). - usb: hcd-pci: Fully suspend across freeze/thaw cycle (git-fixes). - usb: host: isp116x: check return value after calling platform_get_resource() (git-fixes). - usb: new quirk for Dell Gen 2 devices (git-fixes). - usb: serial: option: add Quectel BG95 modem (git-fixes). - vfio-ccw: Check initialized flag in cp_init() (git-fixes). - vfio/ccw: Remove unneeded GFP_DMA (git-fixes). - video: fbdev: pxa3xx-gcu: release the resources correctly in pxa3xx_gcu_probe/remove() (git-fixes). - virtio/s390: implement virtio-ccw revision 2 correctly (git-fixes). - vringh: Fix loop descriptors check in the indirect cases (git-fixes). - watchdog: wdat_wdt: Stop watchdog when rebooting the system (git-fixes). cluster-md-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True dlm-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-5.3.18-150300.59.76.1.nosrc.rpm True kernel-preempt-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-extra-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.76.1.x86_64.rpm True kernel-preempt-optional-5.3.18-150300.59.76.1.x86_64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.76.1.x86_64.rpm True cluster-md-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True dlm-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True dtb-aarch64-5.3.18-150300.59.76.1.src.rpm True dtb-al-5.3.18-150300.59.76.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.76.1.aarch64.rpm True gfs2-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-devel-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-extra-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-livepatch-devel-5.3.18-150300.59.76.1.aarch64.rpm True kernel-preempt-optional-5.3.18-150300.59.76.1.aarch64.rpm True kselftests-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True ocfs2-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True reiserfs-kmp-preempt-5.3.18-150300.59.76.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2364 moderate SUSE Updates openSUSE-SLE 15.4 This update for mdadm fixes the following issue: - Resource RAID failed during cluster patch, Mdadm gets floating point error (bsc#1197158) mdadm-4.1-150300.24.15.1.src.rpm mdadm-4.1-150300.24.15.1.x86_64.rpm mdadm-4.1-150300.24.15.1.s390x.rpm mdadm-4.1-150300.24.15.1.ppc64le.rpm mdadm-4.1-150300.24.15.1.aarch64.rpm openSUSE-SLE-15.4-2022-2395 important SUSE Updates openSUSE-SLE 15.4 This update for virglrenderer fixes the following issues: - CVE-2022-0135: Fix OOB in read_transfer_data. (bsc#1195389) libvirglrenderer1-0.9.1-150400.3.3.1.x86_64.rpm virglrenderer-0.9.1-150400.3.3.1.src.rpm virglrenderer-devel-0.9.1-150400.3.3.1.x86_64.rpm virglrenderer-test-server-0.9.1-150400.3.3.1.x86_64.rpm libvirglrenderer1-0.9.1-150400.3.3.1.s390x.rpm virglrenderer-devel-0.9.1-150400.3.3.1.s390x.rpm virglrenderer-test-server-0.9.1-150400.3.3.1.s390x.rpm libvirglrenderer1-0.9.1-150400.3.3.1.ppc64le.rpm virglrenderer-devel-0.9.1-150400.3.3.1.ppc64le.rpm virglrenderer-test-server-0.9.1-150400.3.3.1.ppc64le.rpm libvirglrenderer1-0.9.1-150400.3.3.1.aarch64.rpm virglrenderer-devel-0.9.1-150400.3.3.1.aarch64.rpm virglrenderer-test-server-0.9.1-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2619 moderate SUSE Updates openSUSE-SLE 15.4 This update for gimp fixes the following issues: - CVE_2022-30067: Fixed an out of memory when reading. (bsc#1199653) gimp-2.10.30-150400.3.3.1.src.rpm gimp-2.10.30-150400.3.3.1.x86_64.rpm gimp-devel-2.10.30-150400.3.3.1.x86_64.rpm gimp-lang-2.10.30-150400.3.3.1.noarch.rpm gimp-plugin-aa-2.10.30-150400.3.3.1.x86_64.rpm libgimp-2_0-0-2.10.30-150400.3.3.1.x86_64.rpm libgimp-2_0-0-32bit-2.10.30-150400.3.3.1.x86_64.rpm libgimpui-2_0-0-2.10.30-150400.3.3.1.x86_64.rpm libgimpui-2_0-0-32bit-2.10.30-150400.3.3.1.x86_64.rpm gimp-2.10.30-150400.3.3.1.s390x.rpm gimp-devel-2.10.30-150400.3.3.1.s390x.rpm gimp-plugin-aa-2.10.30-150400.3.3.1.s390x.rpm libgimp-2_0-0-2.10.30-150400.3.3.1.s390x.rpm libgimpui-2_0-0-2.10.30-150400.3.3.1.s390x.rpm gimp-2.10.30-150400.3.3.1.ppc64le.rpm gimp-devel-2.10.30-150400.3.3.1.ppc64le.rpm gimp-plugin-aa-2.10.30-150400.3.3.1.ppc64le.rpm libgimp-2_0-0-2.10.30-150400.3.3.1.ppc64le.rpm libgimpui-2_0-0-2.10.30-150400.3.3.1.ppc64le.rpm gimp-2.10.30-150400.3.3.1.aarch64.rpm gimp-devel-2.10.30-150400.3.3.1.aarch64.rpm gimp-plugin-aa-2.10.30-150400.3.3.1.aarch64.rpm libgimp-2_0-0-2.10.30-150400.3.3.1.aarch64.rpm libgimpui-2_0-0-2.10.30-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2292 important SUSE Updates openSUSE-SLE 15.4 This update for php7 fixes the following issues: - CVE-2021-21707: Fixed a special character breaks path in xml parsing. (bsc#1193041) - CVE-2022-31625: Fixed uninitialized pointers free in Postgres extension. (bsc#1200645) - CVE-2022-31626: Fixed buffer overflow via user-supplied password when using pdo_mysql extension with mysqlnd driver. (bsc#1200628) apache2-mod_php7-7.4.25-150400.4.8.1.src.rpm apache2-mod_php7-7.4.25-150400.4.8.1.x86_64.rpm php7-7.4.25-150400.4.8.1.src.rpm php7-7.4.25-150400.4.8.1.x86_64.rpm php7-bcmath-7.4.25-150400.4.8.1.x86_64.rpm php7-bz2-7.4.25-150400.4.8.1.x86_64.rpm php7-calendar-7.4.25-150400.4.8.1.x86_64.rpm php7-cli-7.4.25-150400.4.8.1.x86_64.rpm php7-ctype-7.4.25-150400.4.8.1.x86_64.rpm php7-curl-7.4.25-150400.4.8.1.x86_64.rpm php7-dba-7.4.25-150400.4.8.1.x86_64.rpm php7-devel-7.4.25-150400.4.8.1.x86_64.rpm php7-dom-7.4.25-150400.4.8.1.x86_64.rpm php7-embed-7.4.25-150400.4.8.1.src.rpm php7-embed-7.4.25-150400.4.8.1.x86_64.rpm php7-enchant-7.4.25-150400.4.8.1.x86_64.rpm php7-exif-7.4.25-150400.4.8.1.x86_64.rpm php7-fastcgi-7.4.25-150400.4.8.1.src.rpm php7-fastcgi-7.4.25-150400.4.8.1.x86_64.rpm php7-fileinfo-7.4.25-150400.4.8.1.x86_64.rpm php7-fpm-7.4.25-150400.4.8.1.src.rpm php7-fpm-7.4.25-150400.4.8.1.x86_64.rpm php7-ftp-7.4.25-150400.4.8.1.x86_64.rpm php7-gd-7.4.25-150400.4.8.1.x86_64.rpm php7-gettext-7.4.25-150400.4.8.1.x86_64.rpm php7-gmp-7.4.25-150400.4.8.1.x86_64.rpm php7-iconv-7.4.25-150400.4.8.1.x86_64.rpm php7-intl-7.4.25-150400.4.8.1.x86_64.rpm php7-json-7.4.25-150400.4.8.1.x86_64.rpm php7-ldap-7.4.25-150400.4.8.1.x86_64.rpm php7-mbstring-7.4.25-150400.4.8.1.x86_64.rpm php7-mysql-7.4.25-150400.4.8.1.x86_64.rpm php7-odbc-7.4.25-150400.4.8.1.x86_64.rpm php7-opcache-7.4.25-150400.4.8.1.x86_64.rpm php7-openssl-7.4.25-150400.4.8.1.x86_64.rpm php7-pcntl-7.4.25-150400.4.8.1.x86_64.rpm php7-pdo-7.4.25-150400.4.8.1.x86_64.rpm php7-pgsql-7.4.25-150400.4.8.1.x86_64.rpm php7-phar-7.4.25-150400.4.8.1.x86_64.rpm php7-posix-7.4.25-150400.4.8.1.x86_64.rpm php7-readline-7.4.25-150400.4.8.1.x86_64.rpm php7-shmop-7.4.25-150400.4.8.1.x86_64.rpm php7-snmp-7.4.25-150400.4.8.1.x86_64.rpm php7-soap-7.4.25-150400.4.8.1.x86_64.rpm php7-sockets-7.4.25-150400.4.8.1.x86_64.rpm php7-sodium-7.4.25-150400.4.8.1.x86_64.rpm php7-sqlite-7.4.25-150400.4.8.1.x86_64.rpm php7-sysvmsg-7.4.25-150400.4.8.1.x86_64.rpm php7-sysvsem-7.4.25-150400.4.8.1.x86_64.rpm php7-sysvshm-7.4.25-150400.4.8.1.x86_64.rpm php7-test-7.4.25-150400.4.8.1.src.rpm php7-test-7.4.25-150400.4.8.1.x86_64.rpm php7-tidy-7.4.25-150400.4.8.1.x86_64.rpm php7-tokenizer-7.4.25-150400.4.8.1.x86_64.rpm php7-xmlreader-7.4.25-150400.4.8.1.x86_64.rpm php7-xmlrpc-7.4.25-150400.4.8.1.x86_64.rpm php7-xmlwriter-7.4.25-150400.4.8.1.x86_64.rpm php7-xsl-7.4.25-150400.4.8.1.x86_64.rpm php7-zip-7.4.25-150400.4.8.1.x86_64.rpm php7-zlib-7.4.25-150400.4.8.1.x86_64.rpm apache2-mod_php7-7.4.25-150400.4.8.1.s390x.rpm php7-7.4.25-150400.4.8.1.s390x.rpm php7-bcmath-7.4.25-150400.4.8.1.s390x.rpm php7-bz2-7.4.25-150400.4.8.1.s390x.rpm php7-calendar-7.4.25-150400.4.8.1.s390x.rpm php7-cli-7.4.25-150400.4.8.1.s390x.rpm php7-ctype-7.4.25-150400.4.8.1.s390x.rpm php7-curl-7.4.25-150400.4.8.1.s390x.rpm php7-dba-7.4.25-150400.4.8.1.s390x.rpm php7-devel-7.4.25-150400.4.8.1.s390x.rpm php7-dom-7.4.25-150400.4.8.1.s390x.rpm php7-embed-7.4.25-150400.4.8.1.s390x.rpm php7-enchant-7.4.25-150400.4.8.1.s390x.rpm php7-exif-7.4.25-150400.4.8.1.s390x.rpm php7-fastcgi-7.4.25-150400.4.8.1.s390x.rpm php7-fileinfo-7.4.25-150400.4.8.1.s390x.rpm php7-fpm-7.4.25-150400.4.8.1.s390x.rpm php7-ftp-7.4.25-150400.4.8.1.s390x.rpm php7-gd-7.4.25-150400.4.8.1.s390x.rpm php7-gettext-7.4.25-150400.4.8.1.s390x.rpm php7-gmp-7.4.25-150400.4.8.1.s390x.rpm php7-iconv-7.4.25-150400.4.8.1.s390x.rpm php7-intl-7.4.25-150400.4.8.1.s390x.rpm php7-json-7.4.25-150400.4.8.1.s390x.rpm php7-ldap-7.4.25-150400.4.8.1.s390x.rpm php7-mbstring-7.4.25-150400.4.8.1.s390x.rpm php7-mysql-7.4.25-150400.4.8.1.s390x.rpm php7-odbc-7.4.25-150400.4.8.1.s390x.rpm php7-opcache-7.4.25-150400.4.8.1.s390x.rpm php7-openssl-7.4.25-150400.4.8.1.s390x.rpm php7-pcntl-7.4.25-150400.4.8.1.s390x.rpm php7-pdo-7.4.25-150400.4.8.1.s390x.rpm php7-pgsql-7.4.25-150400.4.8.1.s390x.rpm php7-phar-7.4.25-150400.4.8.1.s390x.rpm php7-posix-7.4.25-150400.4.8.1.s390x.rpm php7-readline-7.4.25-150400.4.8.1.s390x.rpm php7-shmop-7.4.25-150400.4.8.1.s390x.rpm php7-snmp-7.4.25-150400.4.8.1.s390x.rpm php7-soap-7.4.25-150400.4.8.1.s390x.rpm php7-sockets-7.4.25-150400.4.8.1.s390x.rpm php7-sodium-7.4.25-150400.4.8.1.s390x.rpm php7-sqlite-7.4.25-150400.4.8.1.s390x.rpm php7-sysvmsg-7.4.25-150400.4.8.1.s390x.rpm php7-sysvsem-7.4.25-150400.4.8.1.s390x.rpm php7-sysvshm-7.4.25-150400.4.8.1.s390x.rpm php7-test-7.4.25-150400.4.8.1.s390x.rpm php7-tidy-7.4.25-150400.4.8.1.s390x.rpm php7-tokenizer-7.4.25-150400.4.8.1.s390x.rpm php7-xmlreader-7.4.25-150400.4.8.1.s390x.rpm php7-xmlrpc-7.4.25-150400.4.8.1.s390x.rpm php7-xmlwriter-7.4.25-150400.4.8.1.s390x.rpm php7-xsl-7.4.25-150400.4.8.1.s390x.rpm php7-zip-7.4.25-150400.4.8.1.s390x.rpm php7-zlib-7.4.25-150400.4.8.1.s390x.rpm apache2-mod_php7-7.4.25-150400.4.8.1.ppc64le.rpm php7-7.4.25-150400.4.8.1.ppc64le.rpm php7-bcmath-7.4.25-150400.4.8.1.ppc64le.rpm php7-bz2-7.4.25-150400.4.8.1.ppc64le.rpm php7-calendar-7.4.25-150400.4.8.1.ppc64le.rpm php7-cli-7.4.25-150400.4.8.1.ppc64le.rpm php7-ctype-7.4.25-150400.4.8.1.ppc64le.rpm php7-curl-7.4.25-150400.4.8.1.ppc64le.rpm php7-dba-7.4.25-150400.4.8.1.ppc64le.rpm php7-devel-7.4.25-150400.4.8.1.ppc64le.rpm php7-dom-7.4.25-150400.4.8.1.ppc64le.rpm php7-embed-7.4.25-150400.4.8.1.ppc64le.rpm php7-enchant-7.4.25-150400.4.8.1.ppc64le.rpm php7-exif-7.4.25-150400.4.8.1.ppc64le.rpm php7-fastcgi-7.4.25-150400.4.8.1.ppc64le.rpm php7-fileinfo-7.4.25-150400.4.8.1.ppc64le.rpm php7-fpm-7.4.25-150400.4.8.1.ppc64le.rpm php7-ftp-7.4.25-150400.4.8.1.ppc64le.rpm php7-gd-7.4.25-150400.4.8.1.ppc64le.rpm php7-gettext-7.4.25-150400.4.8.1.ppc64le.rpm php7-gmp-7.4.25-150400.4.8.1.ppc64le.rpm php7-iconv-7.4.25-150400.4.8.1.ppc64le.rpm php7-intl-7.4.25-150400.4.8.1.ppc64le.rpm php7-json-7.4.25-150400.4.8.1.ppc64le.rpm php7-ldap-7.4.25-150400.4.8.1.ppc64le.rpm php7-mbstring-7.4.25-150400.4.8.1.ppc64le.rpm php7-mysql-7.4.25-150400.4.8.1.ppc64le.rpm php7-odbc-7.4.25-150400.4.8.1.ppc64le.rpm php7-opcache-7.4.25-150400.4.8.1.ppc64le.rpm php7-openssl-7.4.25-150400.4.8.1.ppc64le.rpm php7-pcntl-7.4.25-150400.4.8.1.ppc64le.rpm php7-pdo-7.4.25-150400.4.8.1.ppc64le.rpm php7-pgsql-7.4.25-150400.4.8.1.ppc64le.rpm php7-phar-7.4.25-150400.4.8.1.ppc64le.rpm php7-posix-7.4.25-150400.4.8.1.ppc64le.rpm php7-readline-7.4.25-150400.4.8.1.ppc64le.rpm php7-shmop-7.4.25-150400.4.8.1.ppc64le.rpm php7-snmp-7.4.25-150400.4.8.1.ppc64le.rpm php7-soap-7.4.25-150400.4.8.1.ppc64le.rpm php7-sockets-7.4.25-150400.4.8.1.ppc64le.rpm php7-sodium-7.4.25-150400.4.8.1.ppc64le.rpm php7-sqlite-7.4.25-150400.4.8.1.ppc64le.rpm php7-sysvmsg-7.4.25-150400.4.8.1.ppc64le.rpm php7-sysvsem-7.4.25-150400.4.8.1.ppc64le.rpm php7-sysvshm-7.4.25-150400.4.8.1.ppc64le.rpm php7-test-7.4.25-150400.4.8.1.ppc64le.rpm php7-tidy-7.4.25-150400.4.8.1.ppc64le.rpm php7-tokenizer-7.4.25-150400.4.8.1.ppc64le.rpm php7-xmlreader-7.4.25-150400.4.8.1.ppc64le.rpm php7-xmlrpc-7.4.25-150400.4.8.1.ppc64le.rpm php7-xmlwriter-7.4.25-150400.4.8.1.ppc64le.rpm php7-xsl-7.4.25-150400.4.8.1.ppc64le.rpm php7-zip-7.4.25-150400.4.8.1.ppc64le.rpm php7-zlib-7.4.25-150400.4.8.1.ppc64le.rpm apache2-mod_php7-7.4.25-150400.4.8.1.aarch64.rpm php7-7.4.25-150400.4.8.1.aarch64.rpm php7-bcmath-7.4.25-150400.4.8.1.aarch64.rpm php7-bz2-7.4.25-150400.4.8.1.aarch64.rpm php7-calendar-7.4.25-150400.4.8.1.aarch64.rpm php7-cli-7.4.25-150400.4.8.1.aarch64.rpm php7-ctype-7.4.25-150400.4.8.1.aarch64.rpm php7-curl-7.4.25-150400.4.8.1.aarch64.rpm php7-dba-7.4.25-150400.4.8.1.aarch64.rpm php7-devel-7.4.25-150400.4.8.1.aarch64.rpm php7-dom-7.4.25-150400.4.8.1.aarch64.rpm php7-embed-7.4.25-150400.4.8.1.aarch64.rpm php7-enchant-7.4.25-150400.4.8.1.aarch64.rpm php7-exif-7.4.25-150400.4.8.1.aarch64.rpm php7-fastcgi-7.4.25-150400.4.8.1.aarch64.rpm php7-fileinfo-7.4.25-150400.4.8.1.aarch64.rpm php7-fpm-7.4.25-150400.4.8.1.aarch64.rpm php7-ftp-7.4.25-150400.4.8.1.aarch64.rpm php7-gd-7.4.25-150400.4.8.1.aarch64.rpm php7-gettext-7.4.25-150400.4.8.1.aarch64.rpm php7-gmp-7.4.25-150400.4.8.1.aarch64.rpm php7-iconv-7.4.25-150400.4.8.1.aarch64.rpm php7-intl-7.4.25-150400.4.8.1.aarch64.rpm php7-json-7.4.25-150400.4.8.1.aarch64.rpm php7-ldap-7.4.25-150400.4.8.1.aarch64.rpm php7-mbstring-7.4.25-150400.4.8.1.aarch64.rpm php7-mysql-7.4.25-150400.4.8.1.aarch64.rpm php7-odbc-7.4.25-150400.4.8.1.aarch64.rpm php7-opcache-7.4.25-150400.4.8.1.aarch64.rpm php7-openssl-7.4.25-150400.4.8.1.aarch64.rpm php7-pcntl-7.4.25-150400.4.8.1.aarch64.rpm php7-pdo-7.4.25-150400.4.8.1.aarch64.rpm php7-pgsql-7.4.25-150400.4.8.1.aarch64.rpm php7-phar-7.4.25-150400.4.8.1.aarch64.rpm php7-posix-7.4.25-150400.4.8.1.aarch64.rpm php7-readline-7.4.25-150400.4.8.1.aarch64.rpm php7-shmop-7.4.25-150400.4.8.1.aarch64.rpm php7-snmp-7.4.25-150400.4.8.1.aarch64.rpm php7-soap-7.4.25-150400.4.8.1.aarch64.rpm php7-sockets-7.4.25-150400.4.8.1.aarch64.rpm php7-sodium-7.4.25-150400.4.8.1.aarch64.rpm php7-sqlite-7.4.25-150400.4.8.1.aarch64.rpm php7-sysvmsg-7.4.25-150400.4.8.1.aarch64.rpm php7-sysvsem-7.4.25-150400.4.8.1.aarch64.rpm php7-sysvshm-7.4.25-150400.4.8.1.aarch64.rpm php7-test-7.4.25-150400.4.8.1.aarch64.rpm php7-tidy-7.4.25-150400.4.8.1.aarch64.rpm php7-tokenizer-7.4.25-150400.4.8.1.aarch64.rpm php7-xmlreader-7.4.25-150400.4.8.1.aarch64.rpm php7-xmlrpc-7.4.25-150400.4.8.1.aarch64.rpm php7-xmlwriter-7.4.25-150400.4.8.1.aarch64.rpm php7-xsl-7.4.25-150400.4.8.1.aarch64.rpm php7-zip-7.4.25-150400.4.8.1.aarch64.rpm php7-zlib-7.4.25-150400.4.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-2303 important SUSE Updates openSUSE-SLE 15.4 This update for php8 fixes the following issues: - CVE-2021-21707: Fixed a special character that breaks path in xml parsing. (bsc#1193041) - CVE-2022-31625: Fixed uninitialized pointers free in Postgres extension. (bsc#1200645) - CVE-2022-31626: Fixed buffer overflow via user-supplied password when using pdo_mysql extension with mysqlnd driver. (bsc#1200628) apache2-mod_php8-8.0.10-150400.4.8.1.src.rpm apache2-mod_php8-8.0.10-150400.4.8.1.x86_64.rpm php8-8.0.10-150400.4.8.1.src.rpm php8-8.0.10-150400.4.8.1.x86_64.rpm php8-bcmath-8.0.10-150400.4.8.1.x86_64.rpm php8-bz2-8.0.10-150400.4.8.1.x86_64.rpm php8-calendar-8.0.10-150400.4.8.1.x86_64.rpm php8-cli-8.0.10-150400.4.8.1.x86_64.rpm php8-ctype-8.0.10-150400.4.8.1.x86_64.rpm php8-curl-8.0.10-150400.4.8.1.x86_64.rpm php8-dba-8.0.10-150400.4.8.1.x86_64.rpm php8-devel-8.0.10-150400.4.8.1.x86_64.rpm php8-dom-8.0.10-150400.4.8.1.x86_64.rpm php8-embed-8.0.10-150400.4.8.1.src.rpm php8-embed-8.0.10-150400.4.8.1.x86_64.rpm php8-enchant-8.0.10-150400.4.8.1.x86_64.rpm php8-exif-8.0.10-150400.4.8.1.x86_64.rpm php8-fastcgi-8.0.10-150400.4.8.1.src.rpm php8-fastcgi-8.0.10-150400.4.8.1.x86_64.rpm php8-fileinfo-8.0.10-150400.4.8.1.x86_64.rpm php8-fpm-8.0.10-150400.4.8.1.src.rpm php8-fpm-8.0.10-150400.4.8.1.x86_64.rpm php8-ftp-8.0.10-150400.4.8.1.x86_64.rpm php8-gd-8.0.10-150400.4.8.1.x86_64.rpm php8-gettext-8.0.10-150400.4.8.1.x86_64.rpm php8-gmp-8.0.10-150400.4.8.1.x86_64.rpm php8-iconv-8.0.10-150400.4.8.1.x86_64.rpm php8-intl-8.0.10-150400.4.8.1.x86_64.rpm php8-ldap-8.0.10-150400.4.8.1.x86_64.rpm php8-mbstring-8.0.10-150400.4.8.1.x86_64.rpm php8-mysql-8.0.10-150400.4.8.1.x86_64.rpm php8-odbc-8.0.10-150400.4.8.1.x86_64.rpm php8-opcache-8.0.10-150400.4.8.1.x86_64.rpm php8-openssl-8.0.10-150400.4.8.1.x86_64.rpm php8-pcntl-8.0.10-150400.4.8.1.x86_64.rpm php8-pdo-8.0.10-150400.4.8.1.x86_64.rpm php8-pgsql-8.0.10-150400.4.8.1.x86_64.rpm php8-phar-8.0.10-150400.4.8.1.x86_64.rpm php8-posix-8.0.10-150400.4.8.1.x86_64.rpm php8-readline-8.0.10-150400.4.8.1.x86_64.rpm php8-shmop-8.0.10-150400.4.8.1.x86_64.rpm php8-snmp-8.0.10-150400.4.8.1.x86_64.rpm php8-soap-8.0.10-150400.4.8.1.x86_64.rpm php8-sockets-8.0.10-150400.4.8.1.x86_64.rpm php8-sodium-8.0.10-150400.4.8.1.x86_64.rpm php8-sqlite-8.0.10-150400.4.8.1.x86_64.rpm php8-sysvmsg-8.0.10-150400.4.8.1.x86_64.rpm php8-sysvsem-8.0.10-150400.4.8.1.x86_64.rpm php8-sysvshm-8.0.10-150400.4.8.1.x86_64.rpm php8-test-8.0.10-150400.4.8.1.src.rpm php8-test-8.0.10-150400.4.8.1.x86_64.rpm php8-tidy-8.0.10-150400.4.8.1.x86_64.rpm php8-tokenizer-8.0.10-150400.4.8.1.x86_64.rpm php8-xmlreader-8.0.10-150400.4.8.1.x86_64.rpm php8-xmlwriter-8.0.10-150400.4.8.1.x86_64.rpm php8-xsl-8.0.10-150400.4.8.1.x86_64.rpm php8-zip-8.0.10-150400.4.8.1.x86_64.rpm php8-zlib-8.0.10-150400.4.8.1.x86_64.rpm apache2-mod_php8-8.0.10-150400.4.8.1.s390x.rpm php8-8.0.10-150400.4.8.1.s390x.rpm php8-bcmath-8.0.10-150400.4.8.1.s390x.rpm php8-bz2-8.0.10-150400.4.8.1.s390x.rpm php8-calendar-8.0.10-150400.4.8.1.s390x.rpm php8-cli-8.0.10-150400.4.8.1.s390x.rpm php8-ctype-8.0.10-150400.4.8.1.s390x.rpm php8-curl-8.0.10-150400.4.8.1.s390x.rpm php8-dba-8.0.10-150400.4.8.1.s390x.rpm php8-devel-8.0.10-150400.4.8.1.s390x.rpm php8-dom-8.0.10-150400.4.8.1.s390x.rpm php8-embed-8.0.10-150400.4.8.1.s390x.rpm php8-enchant-8.0.10-150400.4.8.1.s390x.rpm php8-exif-8.0.10-150400.4.8.1.s390x.rpm php8-fastcgi-8.0.10-150400.4.8.1.s390x.rpm php8-fileinfo-8.0.10-150400.4.8.1.s390x.rpm php8-fpm-8.0.10-150400.4.8.1.s390x.rpm php8-ftp-8.0.10-150400.4.8.1.s390x.rpm php8-gd-8.0.10-150400.4.8.1.s390x.rpm php8-gettext-8.0.10-150400.4.8.1.s390x.rpm php8-gmp-8.0.10-150400.4.8.1.s390x.rpm php8-iconv-8.0.10-150400.4.8.1.s390x.rpm php8-intl-8.0.10-150400.4.8.1.s390x.rpm php8-ldap-8.0.10-150400.4.8.1.s390x.rpm php8-mbstring-8.0.10-150400.4.8.1.s390x.rpm php8-mysql-8.0.10-150400.4.8.1.s390x.rpm php8-odbc-8.0.10-150400.4.8.1.s390x.rpm php8-opcache-8.0.10-150400.4.8.1.s390x.rpm php8-openssl-8.0.10-150400.4.8.1.s390x.rpm php8-pcntl-8.0.10-150400.4.8.1.s390x.rpm php8-pdo-8.0.10-150400.4.8.1.s390x.rpm php8-pgsql-8.0.10-150400.4.8.1.s390x.rpm php8-phar-8.0.10-150400.4.8.1.s390x.rpm php8-posix-8.0.10-150400.4.8.1.s390x.rpm php8-readline-8.0.10-150400.4.8.1.s390x.rpm php8-shmop-8.0.10-150400.4.8.1.s390x.rpm php8-snmp-8.0.10-150400.4.8.1.s390x.rpm php8-soap-8.0.10-150400.4.8.1.s390x.rpm php8-sockets-8.0.10-150400.4.8.1.s390x.rpm php8-sodium-8.0.10-150400.4.8.1.s390x.rpm php8-sqlite-8.0.10-150400.4.8.1.s390x.rpm php8-sysvmsg-8.0.10-150400.4.8.1.s390x.rpm php8-sysvsem-8.0.10-150400.4.8.1.s390x.rpm php8-sysvshm-8.0.10-150400.4.8.1.s390x.rpm php8-test-8.0.10-150400.4.8.1.s390x.rpm php8-tidy-8.0.10-150400.4.8.1.s390x.rpm php8-tokenizer-8.0.10-150400.4.8.1.s390x.rpm php8-xmlreader-8.0.10-150400.4.8.1.s390x.rpm php8-xmlwriter-8.0.10-150400.4.8.1.s390x.rpm php8-xsl-8.0.10-150400.4.8.1.s390x.rpm php8-zip-8.0.10-150400.4.8.1.s390x.rpm php8-zlib-8.0.10-150400.4.8.1.s390x.rpm apache2-mod_php8-8.0.10-150400.4.8.1.ppc64le.rpm php8-8.0.10-150400.4.8.1.ppc64le.rpm php8-bcmath-8.0.10-150400.4.8.1.ppc64le.rpm php8-bz2-8.0.10-150400.4.8.1.ppc64le.rpm php8-calendar-8.0.10-150400.4.8.1.ppc64le.rpm php8-cli-8.0.10-150400.4.8.1.ppc64le.rpm php8-ctype-8.0.10-150400.4.8.1.ppc64le.rpm php8-curl-8.0.10-150400.4.8.1.ppc64le.rpm php8-dba-8.0.10-150400.4.8.1.ppc64le.rpm php8-devel-8.0.10-150400.4.8.1.ppc64le.rpm php8-dom-8.0.10-150400.4.8.1.ppc64le.rpm php8-embed-8.0.10-150400.4.8.1.ppc64le.rpm php8-enchant-8.0.10-150400.4.8.1.ppc64le.rpm php8-exif-8.0.10-150400.4.8.1.ppc64le.rpm php8-fastcgi-8.0.10-150400.4.8.1.ppc64le.rpm php8-fileinfo-8.0.10-150400.4.8.1.ppc64le.rpm php8-fpm-8.0.10-150400.4.8.1.ppc64le.rpm php8-ftp-8.0.10-150400.4.8.1.ppc64le.rpm php8-gd-8.0.10-150400.4.8.1.ppc64le.rpm php8-gettext-8.0.10-150400.4.8.1.ppc64le.rpm php8-gmp-8.0.10-150400.4.8.1.ppc64le.rpm php8-iconv-8.0.10-150400.4.8.1.ppc64le.rpm php8-intl-8.0.10-150400.4.8.1.ppc64le.rpm php8-ldap-8.0.10-150400.4.8.1.ppc64le.rpm php8-mbstring-8.0.10-150400.4.8.1.ppc64le.rpm php8-mysql-8.0.10-150400.4.8.1.ppc64le.rpm php8-odbc-8.0.10-150400.4.8.1.ppc64le.rpm php8-opcache-8.0.10-150400.4.8.1.ppc64le.rpm php8-openssl-8.0.10-150400.4.8.1.ppc64le.rpm php8-pcntl-8.0.10-150400.4.8.1.ppc64le.rpm php8-pdo-8.0.10-150400.4.8.1.ppc64le.rpm php8-pgsql-8.0.10-150400.4.8.1.ppc64le.rpm php8-phar-8.0.10-150400.4.8.1.ppc64le.rpm php8-posix-8.0.10-150400.4.8.1.ppc64le.rpm php8-readline-8.0.10-150400.4.8.1.ppc64le.rpm php8-shmop-8.0.10-150400.4.8.1.ppc64le.rpm php8-snmp-8.0.10-150400.4.8.1.ppc64le.rpm php8-soap-8.0.10-150400.4.8.1.ppc64le.rpm php8-sockets-8.0.10-150400.4.8.1.ppc64le.rpm php8-sodium-8.0.10-150400.4.8.1.ppc64le.rpm php8-sqlite-8.0.10-150400.4.8.1.ppc64le.rpm php8-sysvmsg-8.0.10-150400.4.8.1.ppc64le.rpm php8-sysvsem-8.0.10-150400.4.8.1.ppc64le.rpm php8-sysvshm-8.0.10-150400.4.8.1.ppc64le.rpm php8-test-8.0.10-150400.4.8.1.ppc64le.rpm php8-tidy-8.0.10-150400.4.8.1.ppc64le.rpm php8-tokenizer-8.0.10-150400.4.8.1.ppc64le.rpm php8-xmlreader-8.0.10-150400.4.8.1.ppc64le.rpm php8-xmlwriter-8.0.10-150400.4.8.1.ppc64le.rpm php8-xsl-8.0.10-150400.4.8.1.ppc64le.rpm php8-zip-8.0.10-150400.4.8.1.ppc64le.rpm php8-zlib-8.0.10-150400.4.8.1.ppc64le.rpm apache2-mod_php8-8.0.10-150400.4.8.1.aarch64.rpm php8-8.0.10-150400.4.8.1.aarch64.rpm php8-bcmath-8.0.10-150400.4.8.1.aarch64.rpm php8-bz2-8.0.10-150400.4.8.1.aarch64.rpm php8-calendar-8.0.10-150400.4.8.1.aarch64.rpm php8-cli-8.0.10-150400.4.8.1.aarch64.rpm php8-ctype-8.0.10-150400.4.8.1.aarch64.rpm php8-curl-8.0.10-150400.4.8.1.aarch64.rpm php8-dba-8.0.10-150400.4.8.1.aarch64.rpm php8-devel-8.0.10-150400.4.8.1.aarch64.rpm php8-dom-8.0.10-150400.4.8.1.aarch64.rpm php8-embed-8.0.10-150400.4.8.1.aarch64.rpm php8-enchant-8.0.10-150400.4.8.1.aarch64.rpm php8-exif-8.0.10-150400.4.8.1.aarch64.rpm php8-fastcgi-8.0.10-150400.4.8.1.aarch64.rpm php8-fileinfo-8.0.10-150400.4.8.1.aarch64.rpm php8-fpm-8.0.10-150400.4.8.1.aarch64.rpm php8-ftp-8.0.10-150400.4.8.1.aarch64.rpm php8-gd-8.0.10-150400.4.8.1.aarch64.rpm php8-gettext-8.0.10-150400.4.8.1.aarch64.rpm php8-gmp-8.0.10-150400.4.8.1.aarch64.rpm php8-iconv-8.0.10-150400.4.8.1.aarch64.rpm php8-intl-8.0.10-150400.4.8.1.aarch64.rpm php8-ldap-8.0.10-150400.4.8.1.aarch64.rpm php8-mbstring-8.0.10-150400.4.8.1.aarch64.rpm php8-mysql-8.0.10-150400.4.8.1.aarch64.rpm php8-odbc-8.0.10-150400.4.8.1.aarch64.rpm php8-opcache-8.0.10-150400.4.8.1.aarch64.rpm php8-openssl-8.0.10-150400.4.8.1.aarch64.rpm php8-pcntl-8.0.10-150400.4.8.1.aarch64.rpm php8-pdo-8.0.10-150400.4.8.1.aarch64.rpm php8-pgsql-8.0.10-150400.4.8.1.aarch64.rpm php8-phar-8.0.10-150400.4.8.1.aarch64.rpm php8-posix-8.0.10-150400.4.8.1.aarch64.rpm php8-readline-8.0.10-150400.4.8.1.aarch64.rpm php8-shmop-8.0.10-150400.4.8.1.aarch64.rpm php8-snmp-8.0.10-150400.4.8.1.aarch64.rpm php8-soap-8.0.10-150400.4.8.1.aarch64.rpm php8-sockets-8.0.10-150400.4.8.1.aarch64.rpm php8-sodium-8.0.10-150400.4.8.1.aarch64.rpm php8-sqlite-8.0.10-150400.4.8.1.aarch64.rpm php8-sysvmsg-8.0.10-150400.4.8.1.aarch64.rpm php8-sysvsem-8.0.10-150400.4.8.1.aarch64.rpm php8-sysvshm-8.0.10-150400.4.8.1.aarch64.rpm php8-test-8.0.10-150400.4.8.1.aarch64.rpm php8-tidy-8.0.10-150400.4.8.1.aarch64.rpm php8-tokenizer-8.0.10-150400.4.8.1.aarch64.rpm php8-xmlreader-8.0.10-150400.4.8.1.aarch64.rpm php8-xmlwriter-8.0.10-150400.4.8.1.aarch64.rpm php8-xsl-8.0.10-150400.4.8.1.aarch64.rpm php8-zip-8.0.10-150400.4.8.1.aarch64.rpm php8-zlib-8.0.10-150400.4.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-2272 important SUSE Updates openSUSE-SLE 15.4 This update of dpdk fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) dpdk-18.11.9-150100.4.16.1.src.rpm libdpdk-18_11-18.11.9-150100.4.16.1.x86_64.rpm libdpdk-18_11-18.11.9-150100.4.16.1.ppc64le.rpm libdpdk-18_11-18.11.9-150100.4.16.1.aarch64.rpm openSUSE-SLE-15.4-2022-2306 important SUSE Updates openSUSE-SLE 15.4 This update for openssl-3 fixes the following issues: - CVE-2022-2068: Fixed more shell code injection issues in c_rehash. (bsc#1200550) - CVE-2022-1292: Properly sanitise shell metacharacters in c_rehash script. (bsc#1199166) - CVE-2022-1343: Fixed incorrect signature verification in OCSP_basic_verify (bsc#1199167). - CVE-2022-2097: Fixed partial missing encryption in AES OCB mode (bsc#1201099). - CVE-2022-1434: Fixed incorrect MAC key used in the RC4-MD5 ciphersuite (bsc#1199168). - CVE-2022-1473: Fixed resource leakage when decoding certificates and keys (bsc#1199169). libopenssl-3-devel-3.0.1-150400.4.7.1.x86_64.rpm libopenssl-3-devel-32bit-3.0.1-150400.4.7.1.x86_64.rpm libopenssl3-3.0.1-150400.4.7.1.x86_64.rpm libopenssl3-32bit-3.0.1-150400.4.7.1.x86_64.rpm openssl-3-3.0.1-150400.4.7.1.src.rpm openssl-3-3.0.1-150400.4.7.1.x86_64.rpm openssl-3-doc-3.0.1-150400.4.7.1.noarch.rpm libopenssl-3-devel-3.0.1-150400.4.7.1.s390x.rpm libopenssl3-3.0.1-150400.4.7.1.s390x.rpm openssl-3-3.0.1-150400.4.7.1.s390x.rpm libopenssl-3-devel-3.0.1-150400.4.7.1.ppc64le.rpm libopenssl3-3.0.1-150400.4.7.1.ppc64le.rpm openssl-3-3.0.1-150400.4.7.1.ppc64le.rpm libopenssl-3-devel-3.0.1-150400.4.7.1.aarch64.rpm libopenssl3-3.0.1-150400.4.7.1.aarch64.rpm openssl-3-3.0.1-150400.4.7.1.aarch64.rpm openSUSE-SLE-15.4-2022-2880 important SUSE Updates openSUSE-SLE 15.4 This update of dpdk fixes the following issue: - Fix to read PCI device name as UTF strings (bsc#1198873) - Allow configuring thread granularity of Kernel NIC Interface (bsc#1195172) - Rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) dpdk-19.11.10-150400.4.4.1.src.rpm dpdk-19.11.10-150400.4.4.1.x86_64.rpm dpdk-devel-19.11.10-150400.4.4.1.x86_64.rpm dpdk-doc-19.11.10-150400.4.4.1.noarch.rpm dpdk-examples-19.11.10-150400.4.4.1.x86_64.rpm dpdk-kmp-default-19.11.10_k5.14.21_150400.24.11-150400.4.4.1.x86_64.rpm dpdk-tools-19.11.10-150400.4.4.1.x86_64.rpm libdpdk-20_0-19.11.10-150400.4.4.1.x86_64.rpm dpdk-19.11.10-150400.4.4.1.ppc64le.rpm dpdk-devel-19.11.10-150400.4.4.1.ppc64le.rpm dpdk-examples-19.11.10-150400.4.4.1.ppc64le.rpm dpdk-kmp-default-19.11.10_k5.14.21_150400.24.11-150400.4.4.1.ppc64le.rpm dpdk-tools-19.11.10-150400.4.4.1.ppc64le.rpm libdpdk-20_0-19.11.10-150400.4.4.1.ppc64le.rpm dpdk-19.11.10-150400.4.4.1.aarch64.rpm dpdk-devel-19.11.10-150400.4.4.1.aarch64.rpm dpdk-examples-19.11.10-150400.4.4.1.aarch64.rpm dpdk-kmp-default-19.11.10_k5.14.21_150400.24.11-150400.4.4.1.aarch64.rpm dpdk-thunderx-19.11.10-150400.4.4.1.aarch64.rpm dpdk-thunderx-19.11.10-150400.4.4.1.src.rpm dpdk-thunderx-devel-19.11.10-150400.4.4.1.aarch64.rpm dpdk-thunderx-doc-19.11.10-150400.4.4.1.noarch.rpm dpdk-thunderx-examples-19.11.10-150400.4.4.1.aarch64.rpm dpdk-thunderx-kmp-default-19.11.10_k5.14.21_150400.24.11-150400.4.4.1.aarch64.rpm dpdk-thunderx-tools-19.11.10-150400.4.4.1.aarch64.rpm dpdk-tools-19.11.10-150400.4.4.1.aarch64.rpm libdpdk-20_0-19.11.10-150400.4.4.1.aarch64.rpm openSUSE-SLE-15.4-2022-2400 important SUSE Updates openSUSE-SLE 15.4 This update of oracleasm fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) oracleasm-2.0.8-150300.19.5.3.src.rpm oracleasm-kmp-rt-2.0.8_k5.3.18_8.13-150300.19.5.3.x86_64.rpm openSUSE-SLE-15.4-2022-2657 important SUSE Updates openSUSE-SLE 15.4 This update of oracleasm fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) oracleasm-2.0.8-150400.25.2.8.src.rpm oracleasm-kmp-default-2.0.8_k5.14.21_150400.24.11-150400.25.2.8.x86_64.rpm oracleasm-kmp-default-2.0.8_k5.14.21_150400.24.11-150400.25.2.8.s390x.rpm oracleasm-kmp-default-2.0.8_k5.14.21_150400.24.11-150400.25.2.8.ppc64le.rpm oracleasm-kmp-64kb-2.0.8_k5.14.21_150400.24.11-150400.25.2.8.aarch64.rpm oracleasm-kmp-default-2.0.8_k5.14.21_150400.24.11-150400.25.2.8.aarch64.rpm openSUSE-SLE-15.4-2022-2304 important SUSE Updates openSUSE-SLE 15.4 This update for salt fixes the following issues: - CVE-2022-22967: Fixed missing check for PAM_ACCT_MGM return value that could be used to bypass authentication when using PAM (bsc#1200566) python3-salt-3004-150400.8.8.1.x86_64.rpm True salt-3004-150400.8.8.1.src.rpm True salt-3004-150400.8.8.1.x86_64.rpm True salt-api-3004-150400.8.8.1.x86_64.rpm True salt-bash-completion-3004-150400.8.8.1.noarch.rpm True salt-cloud-3004-150400.8.8.1.x86_64.rpm True salt-doc-3004-150400.8.8.1.x86_64.rpm True salt-fish-completion-3004-150400.8.8.1.noarch.rpm True salt-master-3004-150400.8.8.1.x86_64.rpm True salt-minion-3004-150400.8.8.1.x86_64.rpm True salt-proxy-3004-150400.8.8.1.x86_64.rpm True salt-ssh-3004-150400.8.8.1.x86_64.rpm True salt-standalone-formulas-configuration-3004-150400.8.8.1.x86_64.rpm True salt-syndic-3004-150400.8.8.1.x86_64.rpm True salt-transactional-update-3004-150400.8.8.1.x86_64.rpm True salt-zsh-completion-3004-150400.8.8.1.noarch.rpm True python3-salt-3004-150400.8.8.1.s390x.rpm True salt-3004-150400.8.8.1.s390x.rpm True salt-api-3004-150400.8.8.1.s390x.rpm True salt-cloud-3004-150400.8.8.1.s390x.rpm True salt-doc-3004-150400.8.8.1.s390x.rpm True salt-master-3004-150400.8.8.1.s390x.rpm True salt-minion-3004-150400.8.8.1.s390x.rpm True salt-proxy-3004-150400.8.8.1.s390x.rpm True salt-ssh-3004-150400.8.8.1.s390x.rpm True salt-standalone-formulas-configuration-3004-150400.8.8.1.s390x.rpm True salt-syndic-3004-150400.8.8.1.s390x.rpm True salt-transactional-update-3004-150400.8.8.1.s390x.rpm True python3-salt-3004-150400.8.8.1.ppc64le.rpm True salt-3004-150400.8.8.1.ppc64le.rpm True salt-api-3004-150400.8.8.1.ppc64le.rpm True salt-cloud-3004-150400.8.8.1.ppc64le.rpm True salt-doc-3004-150400.8.8.1.ppc64le.rpm True salt-master-3004-150400.8.8.1.ppc64le.rpm True salt-minion-3004-150400.8.8.1.ppc64le.rpm True salt-proxy-3004-150400.8.8.1.ppc64le.rpm True salt-ssh-3004-150400.8.8.1.ppc64le.rpm True salt-standalone-formulas-configuration-3004-150400.8.8.1.ppc64le.rpm True salt-syndic-3004-150400.8.8.1.ppc64le.rpm True salt-transactional-update-3004-150400.8.8.1.ppc64le.rpm True python3-salt-3004-150400.8.8.1.aarch64.rpm True salt-3004-150400.8.8.1.aarch64.rpm True salt-api-3004-150400.8.8.1.aarch64.rpm True salt-cloud-3004-150400.8.8.1.aarch64.rpm True salt-doc-3004-150400.8.8.1.aarch64.rpm True salt-master-3004-150400.8.8.1.aarch64.rpm True salt-minion-3004-150400.8.8.1.aarch64.rpm True salt-proxy-3004-150400.8.8.1.aarch64.rpm True salt-ssh-3004-150400.8.8.1.aarch64.rpm True salt-standalone-formulas-configuration-3004-150400.8.8.1.aarch64.rpm True salt-syndic-3004-150400.8.8.1.aarch64.rpm True salt-transactional-update-3004-150400.8.8.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2402 important SUSE Updates openSUSE-SLE 15.4 This update for python-PyJWT fixes the following issues: - CVE-2022-29217: Fixed key confusion through non-blocklisted public key format (bsc#1199756). python-PyJWT-1.7.1-150200.3.3.1.src.rpm python3-PyJWT-1.7.1-150200.3.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2185 important SUSE Updates openSUSE-SLE 15.4 This update for php7 fixes the following issues: - CVE-2022-31625: Fixed uninitialized pointers free in Postgres extension. (bsc#1200645) - CVE-2022-31626: Fixed buffer overflow via user-supplied password when using pdo_mysql extension with mysqlnd driver. (bsc#1200628). php7-7.4.6-150200.3.41.1.src.rpm php7-firebird-7.4.6-150200.3.41.1.x86_64.rpm php7-firebird-7.4.6-150200.3.41.1.s390x.rpm php7-firebird-7.4.6-150200.3.41.1.ppc64le.rpm php7-firebird-7.4.6-150200.3.41.1.aarch64.rpm openSUSE-SLE-15.4-2022-2275 important SUSE Updates openSUSE-SLE 15.4 This update for php7 fixes the following issues: - CVE-2022-31625: Fixed uninitialized pointers free in Postgres extension. (bsc#1200645) - CVE-2022-31626: Fixed buffer overflow via user-supplied password when using pdo_mysql extension with mysqlnd driver. (bsc#1200628). php7-7.2.5-150000.4.95.1.src.rpm php7-wddx-7.2.5-150000.4.95.1.x86_64.rpm php7-wddx-7.2.5-150000.4.95.1.s390x.rpm php7-wddx-7.2.5-150000.4.95.1.ppc64le.rpm php7-wddx-7.2.5-150000.4.95.1.aarch64.rpm openSUSE-SLE-15.4-2022-2866 moderate SUSE Updates openSUSE-SLE 15.4 This update for systemd-presets-common-SUSE fixes the following issues: - CVE-2022-1706: Fixed accessible configs from unprivileged containers in VMs running on VMware products (bsc#1199524). The following non-security bugs were fixed: - Modify branding-preset-states to fix systemd-presets-common-SUSE not enabling new user systemd service preset configuration just as it handles system service presets. By passing an (optional) second parameter "user", the save/apply-changes commands now work with user services instead of system ones (bsc#1200485) - Add the wireplumber user service preset to enable it by default in SLE15-SP4 where it replaced pipewire-media-session, but keep pipewire-media-session preset so we don't have to branch the systemd-presets-common-SUSE package for SP4 (bsc#1200485) systemd-presets-common-SUSE-15-150100.8.17.1.noarch.rpm systemd-presets-common-SUSE-15-150100.8.17.1.src.rpm openSUSE-SLE-15.4-2022-2355 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-cryptography fixes the following issues: python-cryptography was updated to 3.3.2. update to 3.3.0: * BACKWARDS INCOMPATIBLE: The GCM and AESGCM now require 64-bit to 1024-bit (8 byte to 128 byte) initialization vectors. This change is to conform with an upcoming OpenSSL release that will no longer support sizes outside this window. * BACKWARDS INCOMPATIBLE: When deserializing asymmetric keys we now raise ValueError rather than UnsupportedAlgorithm when an unsupported cipher is used. This change is to conform with an upcoming OpenSSL release that will no longer distinguish between error types. * BACKWARDS INCOMPATIBLE: We no longer allow loading of finite field Diffie-Hellman parameters of less than 512 bits in length. This change is to conform with an upcoming OpenSSL release that no longer supports smaller sizes. These keys were already wildly insecure and should not have been used in any application outside of testing. * Added the recover_data_from_signature() function to RSAPublicKey for recovering the signed data from an RSA signature. Update to 3.2.1: Disable blinding on RSA public keys to address an error with some versions of OpenSSL. update to 3.2 (bsc#1178168, CVE-2020-25659): * CVE-2020-25659: Attempted to make RSA PKCS#1v1.5 decryption more constant time, to protect against Bleichenbacher vulnerabilities. Due to limitations imposed by our API, we cannot completely mitigate this vulnerability. * Added basic support for PKCS7 signing (including SMIME) via PKCS7SignatureBuilder. update to 3.1: * **BACKWARDS INCOMPATIBLE:** Removed support for ``idna`` based :term:`U-label` parsing in various X.509 classes. This support was originally deprecated in version 2.1 and moved to an extra in 2.5. * ``backend`` arguments to functions are no longer required and the default backend will automatically be selected if no ``backend`` is provided. * Added initial support for parsing certificates from PKCS7 files with :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_pem_pkcs7_certificates` and :func:`~cryptography.hazmat.primitives.serialization.pkcs7.load_der_pkcs7_certificates` . * Calling ``update`` or ``update_into`` on :class:`~cryptography.hazmat.primitives.ciphers.CipherContext` with ``data`` longer than 2\ :sup:`31` bytes no longer raises an ``OverflowError``. This also resolves the same issue in :doc:`/fernet`. update to 3.0: * RSA generate_private_key() no longer accepts public_exponent values except 65537 and 3 (the latter for legacy purposes). * X.509 certificate parsing now enforces that the version field contains a valid value, rather than deferring this check until version is accessed. * Deprecated support for Python 2 * Added support for OpenSSH serialization format for ec, ed25519, rsa and dsa private keys: load_ssh_private_key() for loading and OpenSSH for writing. * Added support for OpenSSH certificates to load_ssh_public_key(). * Added encrypt_at_time() and decrypt_at_time() to Fernet. * Added support for the SubjectInformationAccess X.509 extension. * Added support for parsing SignedCertificateTimestamps in OCSP responses. * Added support for parsing attributes in certificate signing requests via get_attribute_for_oid(). * Added support for encoding attributes in certificate signing requests via add_attribute(). * On OpenSSL 1.1.1d and higher cryptography now uses OpenSSL’s built-in CSPRNG instead of its own OS random engine because these versions of OpenSSL properly reseed on fork. * Added initial support for creating PKCS12 files with serialize_key_and_certificates(). Update to 2.9: * BACKWARDS INCOMPATIBLE: Support for Python 3.4 has been removed due to low usage and maintenance burden. * BACKWARDS INCOMPATIBLE: Support for OpenSSL 1.0.1 has been removed. Users on older version of OpenSSL will need to upgrade. * BACKWARDS INCOMPATIBLE: Support for LibreSSL 2.6.x has been removed. * Removed support for calling public_bytes() with no arguments, as per our deprecation policy. You must now pass encoding and format. * BACKWARDS INCOMPATIBLE: Reversed the order in which rfc4514_string() returns the RDNs as required by RFC 4514. * Added support for parsing single_extensions in an OCSP response. * NameAttribute values can now be empty strings. python-cryptography-3.3.2-150400.16.3.1.src.rpm python-cryptography-vectors-3.3.2-150400.7.3.1.src.rpm python3-cryptography-3.3.2-150400.16.3.1.x86_64.rpm python3-cryptography-vectors-3.3.2-150400.7.3.1.noarch.rpm python3-cryptography-3.3.2-150400.16.3.1.s390x.rpm python3-cryptography-3.3.2-150400.16.3.1.ppc64le.rpm python3-cryptography-3.3.2-150400.16.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2658 important SUSE Updates openSUSE-SLE 15.4 This update for keylime fixes the following issues: Update to version 6.3.2, including fixes for: - CVE-2022-1053: Fixed Tenant and Verifier might not use the same registrar data (bsc#1199253). - CVE-2022-31250: Fixed %post scriplet allows for privilege escalation from keylime user to root (bsc#1200885). keylime-6.3.2-150400.4.11.1.src.rpm keylime-agent-6.3.2-150400.4.11.1.noarch.rpm keylime-config-6.3.2-150400.4.11.1.noarch.rpm keylime-firewalld-6.3.2-150400.4.11.1.noarch.rpm keylime-registrar-6.3.2-150400.4.11.1.noarch.rpm keylime-tpm_cert_store-6.3.2-150400.4.11.1.noarch.rpm keylime-verifier-6.3.2-150400.4.11.1.noarch.rpm python3-keylime-6.3.2-150400.4.11.1.noarch.rpm openSUSE-SLE-15.4-2022-2192 critical SUSE Updates openSUSE-SLE 15.4 This update for rubygem-rack fixes the following issues: - CVE-2022-30122: Fixed crafted multipart POST request may cause a DoS (bsc#1200748) - CVE-2022-30123: Fixed crafted requests can cause shell escape sequences (bsc#1200750) ruby2.5-rubygem-rack-2.0.8-150000.3.6.1.x86_64.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.6.1.x86_64.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.6.1.x86_64.rpm rubygem-rack-2.0.8-150000.3.6.1.src.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.6.1.s390x.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.6.1.s390x.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.6.1.s390x.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.6.1.ppc64le.rpm ruby2.5-rubygem-rack-2.0.8-150000.3.6.1.aarch64.rpm ruby2.5-rubygem-rack-doc-2.0.8-150000.3.6.1.aarch64.rpm ruby2.5-rubygem-rack-testsuite-2.0.8-150000.3.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-2361 important SUSE Updates openSUSE-SLE 15.4 This update for pcre fixes the following issues: - CVE-2022-1586: Fixed unicode property matching issue. (bsc#1199232) libpcre1-32bit-8.45-150000.20.13.1.x86_64.rpm libpcre1-8.45-150000.20.13.1.x86_64.rpm libpcre16-0-32bit-8.45-150000.20.13.1.x86_64.rpm libpcre16-0-8.45-150000.20.13.1.x86_64.rpm libpcrecpp0-32bit-8.45-150000.20.13.1.x86_64.rpm libpcrecpp0-8.45-150000.20.13.1.x86_64.rpm libpcreposix0-32bit-8.45-150000.20.13.1.x86_64.rpm libpcreposix0-8.45-150000.20.13.1.x86_64.rpm pcre-8.45-150000.20.13.1.src.rpm pcre-devel-8.45-150000.20.13.1.x86_64.rpm pcre-devel-static-8.45-150000.20.13.1.x86_64.rpm pcre-doc-8.45-150000.20.13.1.noarch.rpm pcre-tools-8.45-150000.20.13.1.x86_64.rpm libpcre1-8.45-150000.20.13.1.s390x.rpm libpcre16-0-8.45-150000.20.13.1.s390x.rpm libpcrecpp0-8.45-150000.20.13.1.s390x.rpm libpcreposix0-8.45-150000.20.13.1.s390x.rpm pcre-devel-8.45-150000.20.13.1.s390x.rpm pcre-devel-static-8.45-150000.20.13.1.s390x.rpm pcre-tools-8.45-150000.20.13.1.s390x.rpm libpcre1-8.45-150000.20.13.1.ppc64le.rpm libpcre16-0-8.45-150000.20.13.1.ppc64le.rpm libpcrecpp0-8.45-150000.20.13.1.ppc64le.rpm libpcreposix0-8.45-150000.20.13.1.ppc64le.rpm pcre-devel-8.45-150000.20.13.1.ppc64le.rpm pcre-devel-static-8.45-150000.20.13.1.ppc64le.rpm pcre-tools-8.45-150000.20.13.1.ppc64le.rpm libpcre1-8.45-150000.20.13.1.aarch64.rpm libpcre16-0-8.45-150000.20.13.1.aarch64.rpm libpcrecpp0-8.45-150000.20.13.1.aarch64.rpm libpcreposix0-8.45-150000.20.13.1.aarch64.rpm pcre-devel-8.45-150000.20.13.1.aarch64.rpm pcre-devel-static-8.45-150000.20.13.1.aarch64.rpm pcre-tools-8.45-150000.20.13.1.aarch64.rpm openSUSE-SLE-15.4-2022-2360 important SUSE Updates openSUSE-SLE 15.4 This update for pcre2 fixes the following issues: - CVE-2022-1586: Fixed unicode property matching issue. (bsc#1199232) libpcre2-16-0-10.39-150400.4.3.1.x86_64.rpm libpcre2-16-0-32bit-10.39-150400.4.3.1.x86_64.rpm libpcre2-32-0-10.39-150400.4.3.1.x86_64.rpm libpcre2-32-0-32bit-10.39-150400.4.3.1.x86_64.rpm libpcre2-8-0-10.39-150400.4.3.1.x86_64.rpm libpcre2-8-0-32bit-10.39-150400.4.3.1.x86_64.rpm libpcre2-posix2-10.39-150400.4.3.1.x86_64.rpm libpcre2-posix2-32bit-10.39-150400.4.3.1.x86_64.rpm pcre2-10.39-150400.4.3.1.src.rpm pcre2-devel-10.39-150400.4.3.1.x86_64.rpm pcre2-devel-static-10.39-150400.4.3.1.x86_64.rpm pcre2-doc-10.39-150400.4.3.1.noarch.rpm pcre2-tools-10.39-150400.4.3.1.x86_64.rpm libpcre2-16-0-10.39-150400.4.3.1.s390x.rpm libpcre2-32-0-10.39-150400.4.3.1.s390x.rpm libpcre2-8-0-10.39-150400.4.3.1.s390x.rpm libpcre2-posix2-10.39-150400.4.3.1.s390x.rpm pcre2-devel-10.39-150400.4.3.1.s390x.rpm pcre2-devel-static-10.39-150400.4.3.1.s390x.rpm pcre2-tools-10.39-150400.4.3.1.s390x.rpm libpcre2-16-0-10.39-150400.4.3.1.ppc64le.rpm libpcre2-32-0-10.39-150400.4.3.1.ppc64le.rpm libpcre2-8-0-10.39-150400.4.3.1.ppc64le.rpm libpcre2-posix2-10.39-150400.4.3.1.ppc64le.rpm pcre2-devel-10.39-150400.4.3.1.ppc64le.rpm pcre2-devel-static-10.39-150400.4.3.1.ppc64le.rpm pcre2-tools-10.39-150400.4.3.1.ppc64le.rpm libpcre2-16-0-10.39-150400.4.3.1.aarch64.rpm libpcre2-32-0-10.39-150400.4.3.1.aarch64.rpm libpcre2-8-0-10.39-150400.4.3.1.aarch64.rpm libpcre2-posix2-10.39-150400.4.3.1.aarch64.rpm pcre2-devel-10.39-150400.4.3.1.aarch64.rpm pcre2-devel-static-10.39-150400.4.3.1.aarch64.rpm pcre2-tools-10.39-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2313 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaFirefox fixes the following issues: Update to Firefox Extended Support Release 91.11.0 ESR (MFSA 2022-25) (bsc#1200793): - CVE-2022-2200: Undesired attributes could be set as part of prototype pollution (bmo#1771381) - CVE-2022-31744: CSP bypass enabling stylesheet injection (bmo#1757604) - CVE-2022-34468: CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI (bmo#1768537) - CVE-2022-34470: Use-after-free in nsSHistory (bmo#1765951) - CVE-2022-34472: Unavailable PAC file resulted in OCSP requests being blocked (bmo#1770123) - CVE-2022-34478: Microsoft protocols can be attacked if a user accepts a prompt (bmo#1773717) - CVE-2022-34479: A popup window could be resized in a way to overlay the address bar with web content (bmo#1745595) - CVE-2022-34481: Potential integer overflow in ReplaceElementsAt (bmo#1497246) - CVE-2022-34484: Memory safety bugs fixed in Firefox 102 and Firefox ESR 91.11 (bmo#1763634, bmo#1772651) MozillaFirefox-91.11.0-150200.152.48.1.src.rpm MozillaFirefox-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-branding-upstream-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-devel-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-translations-common-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-translations-other-91.11.0-150200.152.48.1.x86_64.rpm MozillaFirefox-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-branding-upstream-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-devel-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-translations-common-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-translations-other-91.11.0-150200.152.48.1.s390x.rpm MozillaFirefox-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-devel-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-translations-common-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-translations-other-91.11.0-150200.152.48.1.ppc64le.rpm MozillaFirefox-91.11.0-150200.152.48.1.aarch64.rpm MozillaFirefox-branding-upstream-91.11.0-150200.152.48.1.aarch64.rpm MozillaFirefox-devel-91.11.0-150200.152.48.1.aarch64.rpm MozillaFirefox-translations-common-91.11.0-150200.152.48.1.aarch64.rpm MozillaFirefox-translations-other-91.11.0-150200.152.48.1.aarch64.rpm openSUSE-SLE-15.4-2022-2359 important SUSE Updates openSUSE-SLE 15.4 This update for squid fixes the following issues: - CVE-2021-46784: Fixed DoS when processing gopher server responses. (bsc#1200907) - Update to 5.6: - Improve handling of Gopher responses - Changes in 5.5: - fixes regression Bug 5192: esi_parser default is incorrect - Bug 5177: clientca certificates sent to https_port clients - Bug 5090: Must(!request->pinnedConnection()) violation - Kid restart leads to persistent queue overflows, delays/timeouts squid-5.6-150400.3.3.1.src.rpm squid-5.6-150400.3.3.1.x86_64.rpm squid-5.6-150400.3.3.1.s390x.rpm squid-5.6-150400.3.3.1.ppc64le.rpm squid-5.6-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2406 moderate SUSE Updates openSUSE-SLE 15.4 This update for glibc fixes the following issues: - powerpc: Fix VSX register number on __strncpy_power9 (bsc#1200334) - Disable warnings due to deprecated libselinux symbols used by nss and nscd (bsc#1197718) - i386: Remove broken CAN_USE_REGISTER_ASM_EBP (bsc#1197718) - rtld: Avoid using up static TLS surplus for optimizations (bsc#1200855, BZ #25051) This readds the s390 32bit glibc and libcrypt1 libraries (glibc-32bit, glibc-locale-base-32bit, libcrypt1-32bit). glibc-2.31-150300.31.2.src.rpm glibc-2.31-150300.31.2.x86_64.rpm glibc-32bit-2.31-150300.31.2.x86_64.rpm glibc-devel-2.31-150300.31.2.x86_64.rpm glibc-devel-32bit-2.31-150300.31.2.x86_64.rpm glibc-devel-static-2.31-150300.31.2.x86_64.rpm glibc-devel-static-32bit-2.31-150300.31.2.x86_64.rpm glibc-extra-2.31-150300.31.2.x86_64.rpm glibc-html-2.31-150300.31.2.noarch.rpm glibc-i18ndata-2.31-150300.31.2.noarch.rpm glibc-info-2.31-150300.31.2.noarch.rpm glibc-lang-2.31-150300.31.2.noarch.rpm glibc-locale-2.31-150300.31.2.x86_64.rpm glibc-locale-base-2.31-150300.31.2.x86_64.rpm glibc-locale-base-32bit-2.31-150300.31.2.x86_64.rpm glibc-profile-2.31-150300.31.2.x86_64.rpm glibc-profile-32bit-2.31-150300.31.2.x86_64.rpm glibc-utils-2.31-150300.31.1.x86_64.rpm glibc-utils-32bit-2.31-150300.31.1.x86_64.rpm glibc-utils-src-2.31-150300.31.1.src.rpm libcrypt1-32bit-4.4.15-150300.4.4.3.x86_64.rpm libcrypt1-4.4.15-150300.4.4.3.x86_64.rpm libxcrypt-4.4.15-150300.4.4.3.src.rpm libxcrypt-devel-32bit-4.4.15-150300.4.4.3.x86_64.rpm libxcrypt-devel-4.4.15-150300.4.4.3.x86_64.rpm libxcrypt-devel-static-4.4.15-150300.4.4.3.x86_64.rpm nscd-2.31-150300.31.2.x86_64.rpm glibc-2.31-150300.31.2.s390x.rpm glibc-devel-2.31-150300.31.2.s390x.rpm glibc-devel-static-2.31-150300.31.2.s390x.rpm glibc-extra-2.31-150300.31.2.s390x.rpm glibc-locale-2.31-150300.31.2.s390x.rpm glibc-locale-base-2.31-150300.31.2.s390x.rpm glibc-profile-2.31-150300.31.2.s390x.rpm glibc-utils-2.31-150300.31.1.s390x.rpm libcrypt1-4.4.15-150300.4.4.3.s390x.rpm libxcrypt-devel-4.4.15-150300.4.4.3.s390x.rpm libxcrypt-devel-static-4.4.15-150300.4.4.3.s390x.rpm nscd-2.31-150300.31.2.s390x.rpm glibc-2.31-150300.31.2.ppc64le.rpm glibc-devel-2.31-150300.31.2.ppc64le.rpm glibc-devel-static-2.31-150300.31.2.ppc64le.rpm glibc-extra-2.31-150300.31.2.ppc64le.rpm glibc-locale-2.31-150300.31.2.ppc64le.rpm glibc-locale-base-2.31-150300.31.2.ppc64le.rpm glibc-profile-2.31-150300.31.2.ppc64le.rpm glibc-utils-2.31-150300.31.1.ppc64le.rpm libcrypt1-4.4.15-150300.4.4.3.ppc64le.rpm libxcrypt-devel-4.4.15-150300.4.4.3.ppc64le.rpm libxcrypt-devel-static-4.4.15-150300.4.4.3.ppc64le.rpm nscd-2.31-150300.31.2.ppc64le.rpm glibc-2.31-150300.31.2.aarch64.rpm glibc-devel-2.31-150300.31.2.aarch64.rpm glibc-devel-static-2.31-150300.31.2.aarch64.rpm glibc-extra-2.31-150300.31.2.aarch64.rpm glibc-locale-2.31-150300.31.2.aarch64.rpm glibc-locale-base-2.31-150300.31.2.aarch64.rpm glibc-profile-2.31-150300.31.2.aarch64.rpm glibc-utils-2.31-150300.31.1.aarch64.rpm libcrypt1-4.4.15-150300.4.4.3.aarch64.rpm libxcrypt-devel-4.4.15-150300.4.4.3.aarch64.rpm libxcrypt-devel-static-4.4.15-150300.4.4.3.aarch64.rpm nscd-2.31-150300.31.2.aarch64.rpm openSUSE-SLE-15.4-2022-2470 important SUSE Updates openSUSE-SLE 15.4 This update for systemd fixes the following issues: - Allow control characters in environment variable values (bsc#1200170) - Call pam_loginuid when creating user@.service (bsc#1198507) - Fix parsing error in s390 udev rules conversion script (bsc#1198732) - Fix issues with multipath setup (bsc#1137373, bsc#1181658, bsc#1194708, bsc#1195157, bsc#1197570) - Flagsify EscapeStyle and make ESCAPE_BACKSLASH_ONELINE implicit - Revert "basic/env-util: (mostly) follow POSIX for what variable names are allowed" - basic/env-util: (mostly) follow POSIX for what variable names are allowed - basic/env-util: make function shorter - basic/escape: add mode where empty arguments are still shown as "" - basic/escape: always escape newlines in shell_escape() - basic/escape: escape control characters, but not utf-8, in shell quoting - basic/escape: use consistent location for "*" in function declarations - basic/string-util: inline iterator variable declarations - basic/string-util: simplify how str_realloc() is used - basic/string-util: split out helper function - core/device: device_coldplug(): don't set DEVICE_DEAD - core/device: do not downgrade device state if it is already enumerated - core/device: drop unnecessary condition - string-util: explicitly cast character to unsigned - string-util: fix build error on aarch64 - test-env-util: Verify that \r is disallowed in env var values - test-env-util: print function headers nss-mymachines-246.16-150300.7.48.1.x86_64.rpm True nss-mymachines-32bit-246.16-150300.7.48.1.x86_64.rpm True nss-resolve-246.16-150300.7.48.1.x86_64.rpm True systemd-246.16-150300.7.48.1.src.rpm True systemd-logger-246.16-150300.7.48.1.x86_64.rpm True nss-mymachines-246.16-150300.7.48.1.s390x.rpm True nss-resolve-246.16-150300.7.48.1.s390x.rpm True systemd-logger-246.16-150300.7.48.1.s390x.rpm True nss-mymachines-246.16-150300.7.48.1.ppc64le.rpm True nss-resolve-246.16-150300.7.48.1.ppc64le.rpm True systemd-logger-246.16-150300.7.48.1.ppc64le.rpm True nss-mymachines-246.16-150300.7.48.1.aarch64.rpm True nss-resolve-246.16-150300.7.48.1.aarch64.rpm True systemd-logger-246.16-150300.7.48.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2469 important SUSE Updates openSUSE-SLE 15.4 This update for systemd fixes the following issues: - Make {/etc,/usr/lib}/systemd/network owned by both udev and systemd-network. The configuration files put in these directories are read by both udevd and systemd-networkd (bsc#1201276) - Allow control characters in environment variable values (bsc#1200170) - Fix issues with multipath setup (bsc#1137373, bsc#1181658, bsc#1194708, bsc#1195157, bsc#1197570) - Fix parsing error in s390 udev rules conversion script (bsc#1198732) - core/device: device_coldplug(): don't set DEVICE_DEAD - core/device: do not downgrade device state if it is already enumerated - core/device: drop unnecessary condition libsystemd0-249.11-150400.8.5.1.x86_64.rpm True libsystemd0-32bit-249.11-150400.8.5.1.x86_64.rpm True libudev1-249.11-150400.8.5.1.x86_64.rpm True libudev1-32bit-249.11-150400.8.5.1.x86_64.rpm True nss-myhostname-249.11-150400.8.5.1.x86_64.rpm True nss-myhostname-32bit-249.11-150400.8.5.1.x86_64.rpm True nss-systemd-249.11-150400.8.5.1.x86_64.rpm True systemd-249.11-150400.8.5.1.src.rpm True systemd-249.11-150400.8.5.1.x86_64.rpm True systemd-32bit-249.11-150400.8.5.1.x86_64.rpm True systemd-container-249.11-150400.8.5.1.x86_64.rpm True systemd-coredump-249.11-150400.8.5.1.x86_64.rpm True systemd-devel-249.11-150400.8.5.1.x86_64.rpm True systemd-doc-249.11-150400.8.5.1.x86_64.rpm True systemd-experimental-249.11-150400.8.5.1.x86_64.rpm True systemd-journal-remote-249.11-150400.8.5.1.x86_64.rpm True systemd-lang-249.11-150400.8.5.1.noarch.rpm True systemd-network-249.11-150400.8.5.1.x86_64.rpm True systemd-portable-249.11-150400.8.5.1.x86_64.rpm True systemd-sysvinit-249.11-150400.8.5.1.x86_64.rpm True systemd-testsuite-249.11-150400.8.5.1.x86_64.rpm True udev-249.11-150400.8.5.1.x86_64.rpm True libsystemd0-249.11-150400.8.5.1.s390x.rpm True libudev1-249.11-150400.8.5.1.s390x.rpm True nss-myhostname-249.11-150400.8.5.1.s390x.rpm True nss-systemd-249.11-150400.8.5.1.s390x.rpm True systemd-249.11-150400.8.5.1.s390x.rpm True systemd-container-249.11-150400.8.5.1.s390x.rpm True systemd-coredump-249.11-150400.8.5.1.s390x.rpm True systemd-devel-249.11-150400.8.5.1.s390x.rpm True systemd-doc-249.11-150400.8.5.1.s390x.rpm True systemd-experimental-249.11-150400.8.5.1.s390x.rpm True systemd-journal-remote-249.11-150400.8.5.1.s390x.rpm True systemd-network-249.11-150400.8.5.1.s390x.rpm True systemd-portable-249.11-150400.8.5.1.s390x.rpm True systemd-sysvinit-249.11-150400.8.5.1.s390x.rpm True systemd-testsuite-249.11-150400.8.5.1.s390x.rpm True udev-249.11-150400.8.5.1.s390x.rpm True libsystemd0-249.11-150400.8.5.1.ppc64le.rpm True libudev1-249.11-150400.8.5.1.ppc64le.rpm True nss-myhostname-249.11-150400.8.5.1.ppc64le.rpm True nss-systemd-249.11-150400.8.5.1.ppc64le.rpm True systemd-249.11-150400.8.5.1.ppc64le.rpm True systemd-container-249.11-150400.8.5.1.ppc64le.rpm True systemd-coredump-249.11-150400.8.5.1.ppc64le.rpm True systemd-devel-249.11-150400.8.5.1.ppc64le.rpm True systemd-doc-249.11-150400.8.5.1.ppc64le.rpm True systemd-experimental-249.11-150400.8.5.1.ppc64le.rpm True systemd-journal-remote-249.11-150400.8.5.1.ppc64le.rpm True systemd-network-249.11-150400.8.5.1.ppc64le.rpm True systemd-portable-249.11-150400.8.5.1.ppc64le.rpm True systemd-sysvinit-249.11-150400.8.5.1.ppc64le.rpm True systemd-testsuite-249.11-150400.8.5.1.ppc64le.rpm True udev-249.11-150400.8.5.1.ppc64le.rpm True libsystemd0-249.11-150400.8.5.1.aarch64.rpm True libudev1-249.11-150400.8.5.1.aarch64.rpm True nss-myhostname-249.11-150400.8.5.1.aarch64.rpm True nss-systemd-249.11-150400.8.5.1.aarch64.rpm True systemd-249.11-150400.8.5.1.aarch64.rpm True systemd-container-249.11-150400.8.5.1.aarch64.rpm True systemd-coredump-249.11-150400.8.5.1.aarch64.rpm True systemd-devel-249.11-150400.8.5.1.aarch64.rpm True systemd-doc-249.11-150400.8.5.1.aarch64.rpm True systemd-experimental-249.11-150400.8.5.1.aarch64.rpm True systemd-journal-remote-249.11-150400.8.5.1.aarch64.rpm True systemd-network-249.11-150400.8.5.1.aarch64.rpm True systemd-portable-249.11-150400.8.5.1.aarch64.rpm True systemd-sysvinit-249.11-150400.8.5.1.aarch64.rpm True systemd-testsuite-249.11-150400.8.5.1.aarch64.rpm True udev-249.11-150400.8.5.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2471 important SUSE Updates openSUSE-SLE 15.4 This update for systemd fixes the following issues: - Allow control characters in environment variable values (bsc#1200170) - basic/env-util: Allow newlines in values of environment variables - man: tweak description of auto/noauto (bsc#1191502) - shared/install: avoid overwriting 'r' counter with a partial result (bsc#1148309) - shared/install: fix error codes returned by install_context_apply() - shared/install: ignore failures for auxiliary files - systemctl: suppress enable/disable messages when `-q` is given - test-env-util: Verify that \r is disallowed in env var values - test-env-util: print function headers - udev: 60-persistent-storage-tape.rules: handle duplicate device ID (bsc#1195529) systemd-234-150000.24.111.1.src.rpm True systemd-bash-completion-234-150000.24.111.1.noarch.rpm True openSUSE-SLE-15.4-2022-2668 moderate SUSE Updates openSUSE-SLE 15.4 This update of ldns fixes the following issue: - ldns is shipped to the unsupported packagehub module as dependency of unbound. (bsc#1200843) ldns-1.7.0-150000.4.8.1.src.rpm ldns-1.7.0-150000.4.8.1.x86_64.rpm ldns-devel-1.7.0-150000.4.8.1.x86_64.rpm libldns2-1.7.0-150000.4.8.1.x86_64.rpm libunbound2-1.6.8-150100.10.8.1.x86_64.rpm perl-DNS-LDNS-1.7.0-150000.4.8.1.x86_64.rpm python3-ldns-1.7.0-150000.4.8.1.x86_64.rpm unbound-1.6.8-150100.10.8.1.src.rpm unbound-1.6.8-150100.10.8.1.x86_64.rpm unbound-anchor-1.6.8-150100.10.8.1.x86_64.rpm unbound-devel-1.6.8-150100.10.8.1.x86_64.rpm unbound-munin-1.6.8-150100.10.8.1.noarch.rpm unbound-python-1.6.8-150100.10.8.1.x86_64.rpm ldns-1.7.0-150000.4.8.1.s390x.rpm ldns-devel-1.7.0-150000.4.8.1.s390x.rpm libldns2-1.7.0-150000.4.8.1.s390x.rpm libunbound2-1.6.8-150100.10.8.1.s390x.rpm perl-DNS-LDNS-1.7.0-150000.4.8.1.s390x.rpm python3-ldns-1.7.0-150000.4.8.1.s390x.rpm unbound-1.6.8-150100.10.8.1.s390x.rpm unbound-anchor-1.6.8-150100.10.8.1.s390x.rpm unbound-devel-1.6.8-150100.10.8.1.s390x.rpm unbound-python-1.6.8-150100.10.8.1.s390x.rpm ldns-1.7.0-150000.4.8.1.ppc64le.rpm ldns-devel-1.7.0-150000.4.8.1.ppc64le.rpm libldns2-1.7.0-150000.4.8.1.ppc64le.rpm libunbound2-1.6.8-150100.10.8.1.ppc64le.rpm perl-DNS-LDNS-1.7.0-150000.4.8.1.ppc64le.rpm python3-ldns-1.7.0-150000.4.8.1.ppc64le.rpm unbound-1.6.8-150100.10.8.1.ppc64le.rpm unbound-anchor-1.6.8-150100.10.8.1.ppc64le.rpm unbound-devel-1.6.8-150100.10.8.1.ppc64le.rpm unbound-python-1.6.8-150100.10.8.1.ppc64le.rpm ldns-1.7.0-150000.4.8.1.aarch64.rpm ldns-devel-1.7.0-150000.4.8.1.aarch64.rpm libldns2-1.7.0-150000.4.8.1.aarch64.rpm libunbound2-1.6.8-150100.10.8.1.aarch64.rpm perl-DNS-LDNS-1.7.0-150000.4.8.1.aarch64.rpm python3-ldns-1.7.0-150000.4.8.1.aarch64.rpm unbound-1.6.8-150100.10.8.1.aarch64.rpm unbound-anchor-1.6.8-150100.10.8.1.aarch64.rpm unbound-devel-1.6.8-150100.10.8.1.aarch64.rpm unbound-python-1.6.8-150100.10.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-2320 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaThunderbird fixes the following issues: - CVE-2022-2200: Undesired attributes could be set as part of prototype pollution (bmo#1771381) - CVE-2022-2226: An email with a mismatching OpenPGP signature date was accepted as valid (bmo#1775441) - CVE-2022-31744: CSP bypass enabling stylesheet injection (bmo#1757604) - CVE-2022-34468: CSP sandbox header without `allow-scripts` can be bypassed via retargeted javascript: URI (bmo#1768537) - CVE-2022-34470: Use-after-free in nsSHistory (bmo#1765951) - CVE-2022-34472: Unavailable PAC file resulted in OCSP requests being blocked (bmo#1770123) - CVE-2022-34478: Microsoft protocols can be attacked if a user accepts a prompt (bmo#1773717) - CVE-2022-34479: A popup window could be resized in a way to overlay the address bar with web content (bmo#1745595) - CVE-2022-34481: Potential integer overflow in ReplaceElementsAt (bmo#1497246) - CVE-2022-34484: Memory safety bugs fixed in Thunderbird 91.11 and Thunderbird 102 (bmo#1763634, bmo#1772651) MozillaThunderbird-91.11.0-150200.8.76.1.src.rpm MozillaThunderbird-91.11.0-150200.8.76.1.x86_64.rpm MozillaThunderbird-translations-common-91.11.0-150200.8.76.1.x86_64.rpm MozillaThunderbird-translations-other-91.11.0-150200.8.76.1.x86_64.rpm MozillaThunderbird-91.11.0-150200.8.76.1.s390x.rpm MozillaThunderbird-translations-common-91.11.0-150200.8.76.1.s390x.rpm MozillaThunderbird-translations-other-91.11.0-150200.8.76.1.s390x.rpm MozillaThunderbird-91.11.0-150200.8.76.1.ppc64le.rpm MozillaThunderbird-translations-common-91.11.0-150200.8.76.1.ppc64le.rpm MozillaThunderbird-translations-other-91.11.0-150200.8.76.1.ppc64le.rpm MozillaThunderbird-91.11.0-150200.8.76.1.aarch64.rpm MozillaThunderbird-translations-common-91.11.0-150200.8.76.1.aarch64.rpm MozillaThunderbird-translations-other-91.11.0-150200.8.76.1.aarch64.rpm openSUSE-SLE-15.4-2022-2753 moderate SUSE Updates openSUSE-SLE 15.4 This update for libpulp fixes the following issues: - Fix ulp tool not patching on high process count (bsc#1200316). - Implement a timeout feature in case of deadlocks. - Fix ulp tool crashing on high process count (bsc#1200316). - Avoid parsing /proc/<pid>/comm when not needed. Update package with libpulp-0.2.4. - Fix dlsym interposition changing program behaviour (bsc#1200129) - Fix free call of mmap'ed buffers (bsc#1200129) - Fix error message when user has no permission to open livepatch. Update package with libpulp-0.2.3 (jsc#SLE-20049). - Add support for endbr64 instructions on function beginning. - Fix use-after-free bug. - Fix compilation in Tumbleweed. libpulp-0.2.4-150400.3.3.1.src.rpm libpulp-tools-0.2.4-150400.3.3.1.x86_64.rpm libpulp0-0.2.4-150400.3.3.1.x86_64.rpm openSUSE-SLE-15.4-2022-2270 low SUSE Updates openSUSE-SLE 15.4 This updates for python-M2Crypto and SUSEConnect fixes the following issues: - This is a re-release, no souce changes. This releases the packages to some extra repositories. (jsc#PM-3081) python-M2Crypto-0.35.2-150000.3.11.1.src.rpm openSUSE-SLE-15.4-2022-2530 important SUSE Updates openSUSE-SLE 15.4 This update for java-1_8_0-openjdk fixes the following issues: Update to version jdk8u332 - April 2022 CPU (icedtea-3.23.0) - CVE-2022-21426: Better XPath expression handling (bsc#1198672) - CVE-2022-21443: Improved Object Identification (bsc#1198675) - CVE-2022-21434: Better invocation handler handling (bsc#1198674) - CVE-2022-21476: Improve Santuario processing (bsc#1198671) - CVE-2022-21496: Improve URL supports (bsc#1198673) And further Security fixes, Import of OpenJDK 8 u332, Backports and Bug fixes. java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.src.rpm java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.332-150000.3.67.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.332-150000.3.67.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-src-1.8.0.332-150000.3.67.1.s390x.rpm java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.332-150000.3.67.1.ppc64le.rpm java-1_8_0-openjdk-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.332-150000.3.67.1.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.332-150000.3.67.1.aarch64.rpm openSUSE-SLE-15.4-2022-2646 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-numpy fixes the following issues: - CVE-2021-41495: Fixed Null Pointer Dereference in numpy.sort (bsc#1193911). python-numpy-1.17.3-150400.23.3.1.src.rpm python-numpy_1_17_3-gnu-hpc-1.17.3-150400.23.3.1.src.rpm python3-numpy-1.17.3-150400.23.3.1.x86_64.rpm python3-numpy-devel-1.17.3-150400.23.3.1.x86_64.rpm python3-numpy-gnu-hpc-1.17.3-150400.23.3.1.x86_64.rpm python3-numpy-gnu-hpc-devel-1.17.3-150400.23.3.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-150400.23.3.1.x86_64.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-150400.23.3.1.x86_64.rpm python3-numpy-1.17.3-150400.23.3.1.s390x.rpm python3-numpy-devel-1.17.3-150400.23.3.1.s390x.rpm python3-numpy-gnu-hpc-1.17.3-150400.23.3.1.s390x.rpm python3-numpy-gnu-hpc-devel-1.17.3-150400.23.3.1.s390x.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-150400.23.3.1.s390x.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-150400.23.3.1.s390x.rpm python3-numpy-1.17.3-150400.23.3.1.ppc64le.rpm python3-numpy-devel-1.17.3-150400.23.3.1.ppc64le.rpm python3-numpy-gnu-hpc-1.17.3-150400.23.3.1.ppc64le.rpm python3-numpy-gnu-hpc-devel-1.17.3-150400.23.3.1.ppc64le.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-150400.23.3.1.ppc64le.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-150400.23.3.1.ppc64le.rpm python3-numpy-1.17.3-150400.23.3.1.aarch64.rpm python3-numpy-devel-1.17.3-150400.23.3.1.aarch64.rpm python3-numpy-gnu-hpc-1.17.3-150400.23.3.1.aarch64.rpm python3-numpy-gnu-hpc-devel-1.17.3-150400.23.3.1.aarch64.rpm python3-numpy_1_17_3-gnu-hpc-1.17.3-150400.23.3.1.aarch64.rpm python3-numpy_1_17_3-gnu-hpc-devel-1.17.3-150400.23.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2426 moderate SUSE Updates openSUSE-SLE 15.4 This update for rsyslog fixes the following issues: - Remove inotify watch descriptor in imfile on inode change detected (bsc#1198939) rsyslog-8.2106.0-150400.5.3.1.src.rpm rsyslog-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-diag-tools-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-doc-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-dbi-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-elasticsearch-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-gcrypt-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-gssapi-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-gtls-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-kafka-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-mmnormalize-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-mysql-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-omamqp1-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-omhttpfs-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-omtcl-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-ossl-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-pgsql-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-relp-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-snmp-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-module-udpspoof-8.2106.0-150400.5.3.1.x86_64.rpm rsyslog-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-diag-tools-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-doc-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-dbi-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-elasticsearch-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-gcrypt-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-gssapi-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-gtls-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-kafka-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-mmnormalize-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-mysql-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-omamqp1-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-omhttpfs-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-omtcl-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-ossl-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-pgsql-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-relp-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-snmp-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-module-udpspoof-8.2106.0-150400.5.3.1.s390x.rpm rsyslog-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-diag-tools-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-doc-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-dbi-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-elasticsearch-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-gcrypt-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-gssapi-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-gtls-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-kafka-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-mmnormalize-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-mysql-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-omamqp1-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-omhttpfs-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-omtcl-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-ossl-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-pgsql-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-relp-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-snmp-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-module-udpspoof-8.2106.0-150400.5.3.1.ppc64le.rpm rsyslog-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-diag-tools-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-doc-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-dbi-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-elasticsearch-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-gcrypt-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-gssapi-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-gtls-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-kafka-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-mmnormalize-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-mysql-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-omamqp1-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-omhttpfs-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-omtcl-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-ossl-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-pgsql-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-relp-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-snmp-8.2106.0-150400.5.3.1.aarch64.rpm rsyslog-module-udpspoof-8.2106.0-150400.5.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2473 moderate SUSE Updates openSUSE-SLE 15.4 This update for firewalld fixes the following issues: - Fix regression introduced in previous patch (an api change to a function also needed backporting) (bsc#1198814) firewall-applet-0.9.3-150400.8.6.1.noarch.rpm firewall-config-0.9.3-150400.8.6.1.noarch.rpm firewall-macros-0.9.3-150400.8.6.1.noarch.rpm firewalld-0.9.3-150400.8.6.1.noarch.rpm firewalld-0.9.3-150400.8.6.1.src.rpm firewalld-lang-0.9.3-150400.8.6.1.noarch.rpm python3-firewall-0.9.3-150400.8.6.1.noarch.rpm openSUSE-SLE-15.4-2022-2370 important SUSE Updates openSUSE-SLE 15.4 This update for xorg-x11-server fixes the following issues: - CVE-2022-2319: Fixed out-of-bounds access in _CheckSetSections() (ZDI-CAN-16062) (bsc#1194179). - CVE-2022-2320: Fixed out-of-bounds access in CheckSetDeviceIndicators() (ZDI-CAN-16070) (bsc#1194181). - Fix Xserver crash on keyboard remapping (bsc#1200076) xorg-x11-server-1.20.3-150400.38.5.1.src.rpm xorg-x11-server-1.20.3-150400.38.5.1.x86_64.rpm xorg-x11-server-extra-1.20.3-150400.38.5.1.x86_64.rpm xorg-x11-server-sdk-1.20.3-150400.38.5.1.x86_64.rpm xorg-x11-server-source-1.20.3-150400.38.5.1.x86_64.rpm xorg-x11-server-1.20.3-150400.38.5.1.s390x.rpm xorg-x11-server-extra-1.20.3-150400.38.5.1.s390x.rpm xorg-x11-server-sdk-1.20.3-150400.38.5.1.s390x.rpm xorg-x11-server-source-1.20.3-150400.38.5.1.s390x.rpm xorg-x11-server-1.20.3-150400.38.5.1.ppc64le.rpm xorg-x11-server-extra-1.20.3-150400.38.5.1.ppc64le.rpm xorg-x11-server-sdk-1.20.3-150400.38.5.1.ppc64le.rpm xorg-x11-server-source-1.20.3-150400.38.5.1.ppc64le.rpm xorg-x11-server-1.20.3-150400.38.5.1.aarch64.rpm xorg-x11-server-extra-1.20.3-150400.38.5.1.aarch64.rpm xorg-x11-server-sdk-1.20.3-150400.38.5.1.aarch64.rpm xorg-x11-server-source-1.20.3-150400.38.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2305 important SUSE Updates openSUSE-SLE 15.4 This update for curl fixes the following issues: - CVE-2022-32205: Set-Cookie denial of service (bsc#1200734) - CVE-2022-32206: HTTP compression denial of service (bsc#1200735) - CVE-2022-32207: Unpreserved file permissions (bsc#1200736) - CVE-2022-32208: FTP-KRB bad message verification (bsc#1200737) curl-7.79.1-150400.5.3.1.src.rpm curl-7.79.1-150400.5.3.1.x86_64.rpm libcurl-devel-32bit-7.79.1-150400.5.3.1.x86_64.rpm libcurl-devel-7.79.1-150400.5.3.1.x86_64.rpm libcurl4-32bit-7.79.1-150400.5.3.1.x86_64.rpm libcurl4-7.79.1-150400.5.3.1.x86_64.rpm curl-7.79.1-150400.5.3.1.s390x.rpm libcurl-devel-7.79.1-150400.5.3.1.s390x.rpm libcurl4-7.79.1-150400.5.3.1.s390x.rpm curl-7.79.1-150400.5.3.1.ppc64le.rpm libcurl-devel-7.79.1-150400.5.3.1.ppc64le.rpm libcurl4-7.79.1-150400.5.3.1.ppc64le.rpm curl-7.79.1-150400.5.3.1.aarch64.rpm libcurl-devel-7.79.1-150400.5.3.1.aarch64.rpm libcurl4-7.79.1-150400.5.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2581 moderate SUSE Updates openSUSE-SLE 15.4 This update for libguestfs fixes the following issues: - CVE-2022-2211: Fixed a buffer overflow in get_keys (bsc#1201064). guestfs-data-1.44.2-150400.3.3.1.x86_64.rpm guestfs-tools-1.44.2-150400.3.3.1.x86_64.rpm guestfs-winsupport-1.44.2-150400.3.3.1.x86_64.rpm guestfsd-1.44.2-150400.3.3.1.x86_64.rpm libguestfs-1.44.2-150400.3.3.1.src.rpm libguestfs-devel-1.44.2-150400.3.3.1.x86_64.rpm libguestfs-test-1.44.2-150400.3.3.1.x86_64.rpm libguestfs0-1.44.2-150400.3.3.1.x86_64.rpm lua-libguestfs-1.44.2-150400.3.3.1.x86_64.rpm ocaml-libguestfs-1.44.2-150400.3.3.1.x86_64.rpm ocaml-libguestfs-devel-1.44.2-150400.3.3.1.x86_64.rpm perl-Sys-Guestfs-1.44.2-150400.3.3.1.x86_64.rpm python3-libguestfs-1.44.2-150400.3.3.1.x86_64.rpm rubygem-libguestfs-1.44.2-150400.3.3.1.x86_64.rpm guestfs-data-1.44.2-150400.3.3.1.s390x.rpm guestfs-tools-1.44.2-150400.3.3.1.s390x.rpm guestfs-winsupport-1.44.2-150400.3.3.1.s390x.rpm guestfsd-1.44.2-150400.3.3.1.s390x.rpm libguestfs-devel-1.44.2-150400.3.3.1.s390x.rpm libguestfs-test-1.44.2-150400.3.3.1.s390x.rpm libguestfs0-1.44.2-150400.3.3.1.s390x.rpm lua-libguestfs-1.44.2-150400.3.3.1.s390x.rpm ocaml-libguestfs-1.44.2-150400.3.3.1.s390x.rpm ocaml-libguestfs-devel-1.44.2-150400.3.3.1.s390x.rpm perl-Sys-Guestfs-1.44.2-150400.3.3.1.s390x.rpm python3-libguestfs-1.44.2-150400.3.3.1.s390x.rpm rubygem-libguestfs-1.44.2-150400.3.3.1.s390x.rpm guestfs-data-1.44.2-150400.3.3.1.ppc64le.rpm guestfs-tools-1.44.2-150400.3.3.1.ppc64le.rpm guestfs-winsupport-1.44.2-150400.3.3.1.ppc64le.rpm guestfsd-1.44.2-150400.3.3.1.ppc64le.rpm libguestfs-devel-1.44.2-150400.3.3.1.ppc64le.rpm libguestfs-test-1.44.2-150400.3.3.1.ppc64le.rpm libguestfs0-1.44.2-150400.3.3.1.ppc64le.rpm lua-libguestfs-1.44.2-150400.3.3.1.ppc64le.rpm ocaml-libguestfs-1.44.2-150400.3.3.1.ppc64le.rpm ocaml-libguestfs-devel-1.44.2-150400.3.3.1.ppc64le.rpm perl-Sys-Guestfs-1.44.2-150400.3.3.1.ppc64le.rpm python3-libguestfs-1.44.2-150400.3.3.1.ppc64le.rpm rubygem-libguestfs-1.44.2-150400.3.3.1.ppc64le.rpm guestfs-data-1.44.2-150400.3.3.1.aarch64.rpm guestfs-tools-1.44.2-150400.3.3.1.aarch64.rpm guestfs-winsupport-1.44.2-150400.3.3.1.aarch64.rpm guestfsd-1.44.2-150400.3.3.1.aarch64.rpm libguestfs-devel-1.44.2-150400.3.3.1.aarch64.rpm libguestfs-test-1.44.2-150400.3.3.1.aarch64.rpm libguestfs0-1.44.2-150400.3.3.1.aarch64.rpm lua-libguestfs-1.44.2-150400.3.3.1.aarch64.rpm ocaml-libguestfs-1.44.2-150400.3.3.1.aarch64.rpm ocaml-libguestfs-devel-1.44.2-150400.3.3.1.aarch64.rpm perl-Sys-Guestfs-1.44.2-150400.3.3.1.aarch64.rpm python3-libguestfs-1.44.2-150400.3.3.1.aarch64.rpm rubygem-libguestfs-1.44.2-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2408 moderate SUSE Updates openSUSE-SLE 15.4 This update for kguiaddons fixes the following issues: - Fix a clipboard memory leak on Wayland (kde#454590) kguiaddons-5.90.0-150400.3.3.1.src.rpm kguiaddons-devel-5.90.0-150400.3.3.1.x86_64.rpm libKF5GuiAddons5-5.90.0-150400.3.3.1.x86_64.rpm kguiaddons-devel-5.90.0-150400.3.3.1.s390x.rpm libKF5GuiAddons5-5.90.0-150400.3.3.1.s390x.rpm kguiaddons-devel-5.90.0-150400.3.3.1.ppc64le.rpm libKF5GuiAddons5-5.90.0-150400.3.3.1.ppc64le.rpm kguiaddons-devel-5.90.0-150400.3.3.1.aarch64.rpm libKF5GuiAddons5-5.90.0-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2692 important SUSE Updates openSUSE-SLE 15.4 This update of crash fixes the following issue: - rebuild with new secure boot key due to grub2 boothole 3 issues (bsc#1198581) crash-7.3.0-150400.3.2.6.src.rpm crash-7.3.0-150400.3.2.6.x86_64.rpm crash-devel-7.3.0-150400.3.2.6.x86_64.rpm crash-doc-7.3.0-150400.3.2.6.x86_64.rpm crash-eppic-7.3.0-150400.3.2.6.x86_64.rpm crash-gcore-7.3.0-150400.3.2.6.x86_64.rpm crash-kmp-default-7.3.0_k5.14.21_150400.24.11-150400.3.2.6.x86_64.rpm crash-7.3.0-150400.3.2.6.s390x.rpm crash-devel-7.3.0-150400.3.2.6.s390x.rpm crash-doc-7.3.0-150400.3.2.6.s390x.rpm crash-eppic-7.3.0-150400.3.2.6.s390x.rpm crash-kmp-default-7.3.0_k5.14.21_150400.24.11-150400.3.2.6.s390x.rpm crash-7.3.0-150400.3.2.6.ppc64le.rpm crash-devel-7.3.0-150400.3.2.6.ppc64le.rpm crash-doc-7.3.0-150400.3.2.6.ppc64le.rpm crash-eppic-7.3.0-150400.3.2.6.ppc64le.rpm crash-kmp-default-7.3.0_k5.14.21_150400.24.11-150400.3.2.6.ppc64le.rpm crash-7.3.0-150400.3.2.6.aarch64.rpm crash-devel-7.3.0-150400.3.2.6.aarch64.rpm crash-doc-7.3.0-150400.3.2.6.aarch64.rpm crash-eppic-7.3.0-150400.3.2.6.aarch64.rpm crash-kmp-64kb-7.3.0_k5.14.21_150400.24.11-150400.3.2.6.aarch64.rpm crash-kmp-default-7.3.0_k5.14.21_150400.24.11-150400.3.2.6.aarch64.rpm openSUSE-SLE-15.4-2022-2593 moderate SUSE Updates openSUSE-SLE 15.4 This update for perl-IO-Socket-SSL fixes the following issues: - Follow system crypto-policies "PROFILE=SYSTEM" on OpenSSL ciphers (bsc#1200295) perl-IO-Socket-SSL-2.066-150400.7.3.1.noarch.rpm perl-IO-Socket-SSL-2.066-150400.7.3.1.src.rpm openSUSE-SLE-15.4-2022-2736 moderate SUSE Updates openSUSE-SLE 15.4 This update for libqt5-qttools fixes the following issues: - Increase the disk constraint to 4.5G (bsc#1200152) libQt5Designer5-32bit-5.15.2+kde17-150400.3.3.1.x86_64.rpm libQt5Designer5-5.15.2+kde17-150400.3.3.1.x86_64.rpm libQt5DesignerComponents5-32bit-5.15.2+kde17-150400.3.3.1.x86_64.rpm libQt5DesignerComponents5-5.15.2+kde17-150400.3.3.1.x86_64.rpm libQt5Help5-32bit-5.15.2+kde17-150400.3.3.1.x86_64.rpm libQt5Help5-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-linguist-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-linguist-devel-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qdbus-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qtpaths-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qttools-32bit-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qttools-5.15.2+kde17-150400.3.3.1.src.rpm libqt5-qttools-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qttools-devel-32bit-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qttools-devel-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qttools-doc-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qttools-example-plugins-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qttools-examples-5.15.2+kde17-150400.3.3.1.x86_64.rpm libqt5-qttools-private-headers-devel-5.15.2+kde17-150400.3.3.1.noarch.rpm libqt5-qttools-qhelpgenerator-5.15.2+kde17-150400.3.3.1.x86_64.rpm libQt5Designer5-5.15.2+kde17-150400.3.3.1.s390x.rpm libQt5DesignerComponents5-5.15.2+kde17-150400.3.3.1.s390x.rpm libQt5Help5-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-linguist-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-linguist-devel-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-qdbus-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-qtpaths-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-qttools-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-qttools-devel-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-qttools-doc-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-qttools-example-plugins-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-qttools-examples-5.15.2+kde17-150400.3.3.1.s390x.rpm libqt5-qttools-qhelpgenerator-5.15.2+kde17-150400.3.3.1.s390x.rpm libQt5Designer5-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libQt5DesignerComponents5-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libQt5Help5-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-linguist-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-linguist-devel-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-qdbus-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-qtpaths-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-qttools-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-qttools-devel-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-qttools-doc-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-qttools-example-plugins-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-qttools-examples-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libqt5-qttools-qhelpgenerator-5.15.2+kde17-150400.3.3.1.ppc64le.rpm libQt5Designer5-5.15.2+kde17-150400.3.3.1.aarch64.rpm libQt5DesignerComponents5-5.15.2+kde17-150400.3.3.1.aarch64.rpm libQt5Help5-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-linguist-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-linguist-devel-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-qdbus-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-qtpaths-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-qttools-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-qttools-devel-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-qttools-doc-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-qttools-example-plugins-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-qttools-examples-5.15.2+kde17-150400.3.3.1.aarch64.rpm libqt5-qttools-qhelpgenerator-5.15.2+kde17-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2447 important SUSE Updates openSUSE-SLE 15.4 This update for virt-manager fixes the following issues: - Add support for AMD Secure Encrypted Virtualization-Encrypted State (SEV-ES) (bsc#1196806, jsc#SLE-18732) - Add firmware features to description tooltip when mouse hovers over the selected firmware file - SLES 15 SP4 GMC --os-variant tag shouldn't be mandatory on s390x (bsc#1200691, bsc#1200422) - Make package xorriso a required dependency virt-install-4.0.0-150400.3.3.1.noarch.rpm virt-manager-4.0.0-150400.3.3.1.noarch.rpm virt-manager-4.0.0-150400.3.3.1.src.rpm virt-manager-common-4.0.0-150400.3.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2422 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. NOTE: This update has been retracted, as it has caused regressions on multiple machines types. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-34918: Fixed a buffer overflow with nft_set_elem_init() that could be used by a local attacker to escalate privileges (bnc#1201171). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487). - CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619). - CVE-2022-1012: Fixed information leak caused by small table perturb size in the TCP source port generation algorithm (bsc#1199482). - CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692) - CVE-2022-20141: Fixed a possible use after free due to improper locking in ip_check_mc_rcu() (bsc#1200604). - CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). The following non-security bugs were fixed: - ALSA: hda/conexant: Fix missing beep setup (git-fixes). - ALSA: hda/realtek - Add HW8326 support (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD70PNT (git-fixes). - ALSA: hda/realtek - ALC897 headset MIC no sound (git-fixes). - ALSA: hda/via: Fix missing beep setup (git-fixes). - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399 (git-fixes) - arm64: ftrace: fix branch range checks (git-fixes) - ASoC: cs35l36: Update digital volume TLV (git-fixes). - ASoC: cs42l52: Correct TLV for Bypass Volume (git-fixes). - ASoC: cs42l52: Fix TLV scales for mixer controls (git-fixes). - ASoC: cs42l56: Correct typo in minimum level for SX volume controls (git-fixes). - ASoC: cs53l30: Correct number of volume levels on SX controls (git-fixes). - ASoC: es8328: Fix event generation for deemphasis control (git-fixes). - ASoC: nau8822: Add operation for internal PLL off and on (git-fixes). - ASoC: wm8962: Fix suspend while playing music (git-fixes). - ASoC: wm_adsp: Fix event generation for wm_adsp_fw_put() (git-fixes). - ata: libata: add qc->flags in ata_qc_complete_template tracepoint (git-fixes). - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() (git-fixes). - bcache: avoid journal no-space deadlock by reserving 1 journal bucket (git-fixes). - bcache: avoid unnecessary soft lockup in kworker update_writeback_rate() (bsc#1197362). - bcache: fixup multiple threads crash (git-fixes). - bcache: improve multithreaded bch_btree_check() (git-fixes). - bcache: improve multithreaded bch_sectors_dirty_init() (git-fixes). - bcache: memset on stack variables in bch_btree_check() and bch_sectors_dirty_init() (git-fixes). - bcache: remove incremental dirty sector counting for bch_sectors_dirty_init() (git-fixes). - bio: fix page leak bio_add_hw_page failure (git-fixes). - blk-cgroup: fix a hd_struct leak in blkcg_fill_root_iostats (git-fixes). - blk-iolatency: Fix inflight count imbalances and IO hangs on offline (bsc#1200825). - blk-mq: clear active_queues before clearing BLK_MQ_F_TAG_QUEUE_SHARED (bsc#1200263). - blk-mq: do not update io_ticks with passthrough requests (bsc#1200816). - blk-mq: drop workarounds for cpu hotplug queue management (bsc#1185762) - blk-mq: update hctx->dispatch_busy in case of real scheduler (git-fixes). - block: advance iov_iter on bio_add_hw_page failure (git-fixes). - block: do not merge across cgroup boundaries if blkcg is enabled (bsc#1198020). - block: Fix handling of offline queues in blk_mq_alloc_request_hctx() (bsc#1185762). - block: Fix kABI in blk-merge.c (bsc#1198020). - block/keyslot-manager: prevent crash when num_slots=1 (git-fixes). - bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() (git-fixes). - caif_virtio: fix race between virtio_device_ready() and ndo_open() (git-fixes). - ceph: add some lockdep assertions around snaprealm handling (bsc#1201147). - ceph: clean up locking annotation for ceph_get_snap_realm and __lookup_snap_realm (bsc#1201149). - certs/blacklist_hashes.c: fix const confusion in certs blacklist (git-fixes). - cifs: add WARN_ON for when chan_count goes below minimum (bsc#1200217). - cifs: adjust DebugData to use chans_need_reconnect for conn status (bsc#1200217). - cifs: alloc_path_with_tree_prefix: do not append sep. if the path is empty (bsc#1200217). - cifs: avoid parallel session setups on same channel (bsc#1200217). - cifs: avoid race during socket reconnect between send and recv (bsc#1200217). - cifs: call cifs_reconnect when a connection is marked (bsc#1200217). - cifs: call helper functions for marking channels for reconnect (bsc#1200217). - cifs: change smb2_query_info_compound to use a cached fid, if available (bsc#1200217). - cifs: check for smb1 in open_cached_dir() (bsc#1200217). - cifs: check reconnects for channels of active tcons too (bsc#1200217). - cifs: Check the IOCB_DIRECT flag, not O_DIRECT (bsc#1200217). - cifs: cifs_ses_mark_for_reconnect should also update reconnect bits (bsc#1200217). - cifs: clean up an inconsistent indenting (bsc#1200217). - cifs: destage any unwritten data to the server before calling copychunk_write (bsc#1200217). - cifs: do not build smb1ops if legacy support is disabled (bsc#1200217). - cifs: do not call cifs_dfs_query_info_nonascii_quirk() if nodfs was set (bsc#1200217). - cifs: do not use tcpStatus after negotiate completes (bsc#1200217). - cifs: do not use uninitialized data in the owner/group sid (bsc#1200217). - cifs: fix confusing unneeded warning message on smb2.1 and earlier (bsc#1200217). - cifs: fix double free race when mount fails in cifs_get_root() (bsc#1200217). - cifs: fix FILE_BOTH_DIRECTORY_INFO definition (bsc#1200217). - cifs: fix handlecache and multiuser (bsc#1200217). - cifs: fix hang on cifs_get_next_mid() (bsc#1200217). - cifs: fix incorrect use of list iterator after the loop (bsc#1200217). - cifs: fix minor compile warning (bsc#1200217). - cifs: fix missed refcounting of ipc tcon (bsc#1200217). - cifs: fix ntlmssp auth when there is no key exchange (bsc#1200217). - cifs: fix NULL ptr dereference in refresh_mounts() (bsc#1200217). - cifs: fix potential deadlock in direct reclaim (bsc#1200217). - cifs: fix potential double free during failed mount (bsc#1200217). - cifs: fix potential race with cifsd thread (bsc#1200217). - cifs: fix set of group SID via NTSD xattrs (bsc#1200217). - cifs: fix signed integer overflow when fl_end is OFFSET_MAX (bsc#1200217). - cifs: Fix smb311_update_preauth_hash() kernel-doc comment (bsc#1200217). - cifs: fix the cifs_reconnect path for DFS (bsc#1200217). - cifs: fix the connection state transitions with multichannel (bsc#1200217). - cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1200217). - cifs: fix workstation_name for multiuser mounts (bsc#1200217). - cifs: force new session setup and tcon for dfs (bsc#1200217). - cifs: free ntlmsspblob allocated in negotiate (bsc#1200217). - cifs: ignore resource_id while getting fscache super cookie (bsc#1200217). - cifs: maintain a state machine for tcp/smb/tcon sessions (bsc#1200217). - cifs: make status checks in version independent callers (bsc#1200217). - cifs: mark sessions for reconnection in helper function (bsc#1200217). - cifs: modefromsids must add an ACE for authenticated users (bsc#1200217). - cifs: move definition of cifs_fattr earlier in cifsglob.h (bsc#1200217). - cifs: move superblock magic defitions to magic.h (bsc#1200217). - cifs: potential buffer overflow in handling symlinks (bsc#1200217). - cifs: print TIDs as hex (bsc#1200217). - cifs: protect all accesses to chan_* with chan_lock (bsc#1200217). - cifs: quirk for STATUS_OBJECT_NAME_INVALID returned for non-ASCII dfs refs (bsc#1200217). - cifs: reconnect only the connection and not smb session where possible (bsc#1200217). - cifs: release cached dentries only if mount is complete (bsc#1200217). - cifs: remove check of list iterator against head past the loop body (bsc#1200217). - cifs: remove redundant assignment to pointer p (bsc#1200217). - cifs: remove repeated debug message on cifs_put_smb_ses() (bsc#1200217). - cifs: remove repeated state change in dfs tree connect (bsc#1200217). - cifs: remove unused variable ses_selected (bsc#1200217). - cifs: return ENOENT for DFS lookup_cache_entry() (bsc#1200217). - cifs: return the more nuanced writeback error on close() (bsc#1200217). - cifs: sanitize multiple delimiters in prepath (bsc#1200217). - cifs: serialize all mount attempts (bsc#1200217). - cifs: set the CREATE_NOT_FILE when opening the directory in use_cached_dir() (bsc#1200217). - cifs: skip trailing separators of prefix paths (bsc#1200217). - cifs: smbd: fix typo in comment (bsc#1200217). - cifs: Split the smb3_add_credits tracepoint (bsc#1200217). - cifs: take cifs_tcp_ses_lock for status checks (bsc#1200217). - cifs: track individual channel status using chans_need_reconnect (bsc#1200217). - cifs: unlock chan_lock before calling cifs_put_tcp_session (bsc#1200217). - cifs: update internal module number (bsc#1193629). - cifs: update internal module number (bsc#1200217). - cifs: update tcpStatus during negotiate and sess setup (bsc#1200217). - cifs: use a different reconnect helper for non-cifsd threads (bsc#1200217). - cifs: use correct lock type in cifs_reconnect() (bsc#1200217). - cifs: Use kzalloc instead of kmalloc/memset (bsc#1200217). - cifs: use new enum for ses_status (bsc#1200217). - cifs: use the chans_need_reconnect bitmap for reconnect status (bsc#1200217). - cifs: verify that tcon is valid before dereference in cifs_kill_sb (bsc#1200217). - cifs: version operations for smb20 unneeded when legacy support disabled (bsc#1200217). - cifs: wait for tcon resource_id before getting fscache super (bsc#1200217). - cifs: we do not need a spinlock around the tree access during umount (bsc#1200217). - cifs: when extending a file with falloc we should make files not-sparse (bsc#1200217). - drivers: cpufreq: Add missing of_node_put() in qoriq-cpufreq.c (git-fixes). - drm/i915/reset: Fix error_state_read ptr + offset use (git-fixes). - drm/i915: Update TGL and RKL DMC firmware versions (bsc#1198924). - drm/msm: Fix double pm_runtime_disable() call (git-fixes). - drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf (git-fixes). - drm/sun4i: Fix crash during suspend after component bind failure (git-fixes). - exec: Force single empty string when argv is empty (bsc#1200571). - ext4: add check to prevent attempting to resize an fs with sparse_super2 (bsc#1197754). - ext4: fix bug_on ext4_mb_use_inode_pa (bsc#1200810). - ext4: fix bug_on in __es_tree_search (bsc#1200809). - ext4: fix race condition between ext4_write and ext4_convert_inline_data (bsc#1200807). - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole (bsc#1200806). - ext4: make variable "count" signed (bsc#1200820). - Fix a warning about a malformed kernel doc comment in cifs (bsc#1200217). - fuse: annotate lock in fuse_reverse_inval_entry() (bsc#1201143). - gpio: winbond: Fix error code in winbond_gpio_get() (git-fixes). - gtp: use icmp_ndo_send helper (git-fixes). - hwmon: (ibmaem) do not call platform_device_del() if platform_device_add() fails (git-fixes). - i2c: designware: Use standard optional ref clock implementation (git-fixes). - ibmvnic: Properly dispose of all skbs during a failover (bsc#1200925). - iio:accel:bma180: rearrange iio trigger get and register (git-fixes). - iio: accel: mma8452: ignore the return value of reset operation (git-fixes). - iio: adc: axp288: Override TS pin bias current for some models (git-fixes). - iio: adc: vf610: fix conversion mode sysfs node name (git-fixes). - iio:chemical:ccs811: rearrange iio trigger get and register (git-fixes). - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up() (git-fixes). - iio: trigger: sysfs: fix use-after-free on remove (git-fixes). - init: Initialize noop_backing_dev_info early (bsc#1200822). - inotify: show inotify mask flags in proc fdinfo (bsc#1200600). - iomap: iomap_write_failed fix (bsc#1200829). - ipvs: add sysctl_run_estimation to support disable estimation (bsc#1195504). - jfs: fix divide error in dbNextAG (bsc#1200828). - kABI fix of sysctl_run_estimation (git-fixes). - kabi: nvme workaround header include (bsc#1201193). - kabi/severities: ignore KABI for NVMe target (bsc#1192761) - linux/dim: Fix divide by 0 in RDMA DIM (git-fixes). - md: fix update super 1.0 on rdev size change (git-fixes). - move devm_allocate to end of structure for kABI (git-fixes). - mtd: rawnand: gpmi: Fix setting busy timeout setting (git-fixes). - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg (git-fixes). - net: ethernet: stmmac: Disable hardware multicast filter (git-fixes). - net: ieee802154: ca8210: Stop leaking skb's (git-fixes). - net: lantiq: Add locking for TX DMA channel (git-fixes). - net: rose: fix UAF bugs caused by timer handler (git-fixes). - net: stmmac: reset Tx desc base address before restarting Tx (git-fixes). - net: usb: ax88179_178a: Fix packet receiving (git-fixes). - nfc: nfcmrvl: Fix irq_of_parse_and_map() return value (git-fixes). - nfc: nfcmrvl: Fix memory leak in nfcmrvl_play_deferred (git-fixes). - NFC: nxp-nci: Do not issue a zero length i2c_master_read() (git-fixes). - NFS: Do not report EINTR/ERESTARTSYS as mapping errors (git-fixes). - NFS: Do not report errors from nfs_pageio_complete() more than once (git-fixes). - NFS: Do not report flush errors in nfs_write_end() (git-fixes). - NFS: Further fixes to the writeback error handling (git-fixes). - NFS: Memory allocation failures are not server fatal errors (git-fixes). - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout (git-fixes). - nvdimm: Fix firmware activation deadlock scenarios (git-fixes). - nvdimm/region: Fix default alignment for small regions (git-fixes). - nvme: add CNTRLTYPE definitions for 'identify controller' (bsc#1192761). - nvme: Add connect option 'discovery' (bsc#1192761). - nvme: add new discovery log page entry definitions (bsc#1192761). - nvme: display correct subsystem NQN (bsc#1192761). - nvme: expose subsystem type in sysfs attribute 'subsystype' (bsc#1192761). - nvme: kabi fix nvme subsystype change (bsc#1192761) - nvmet: add nvmet_is_disc_subsys() helper (bsc#1192761). - nvmet: add nvmet_req_subsys() helper (bsc#1192761). - nvme-tcp: fix H2CData PDU send accounting (again) (git-fixes). - nvmet: do not check iosqes,iocqes for discovery controllers (bsc#1192761). - nvmet: fix freeing unallocated p2pmem (git-fixes). - nvmet: make discovery NQN configurable (bsc#1192761). - nvmet-rdma: Fix NULL deref when SEND is completed with error (git-fixes). - nvmet-rdma: Fix NULL deref when setting pi_enable and traddr INADDR_ANY (git-fixes). - nvmet: register discovery subsystem as 'current' (bsc#1192761). - nvmet: set 'CNTRLTYPE' in the identify controller data (bsc#1192761). - nvmet: switch check for subsystem type (bsc#1192761). - phy: aquantia: Fix AN when higher speeds than 1G are not advertised (git-fixes). - pNFS: Do not keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE (git-fixes). - powerpc/idle: Fix return value of __setup() handler (bsc#1065729). - powerpc/perf: Fix the threshold compare group constraint for power9 (bsc#1065729). - powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (bsc#1200343 ltc#198477). - random: Add and use pr_fmt() (bsc#1184924). - random: remove unnecessary unlikely() (bsc#1184924). - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips (git-fixes). - Revert "block: Fix a lockdep complaint triggered by request queue flushing" (git-fixes). - scsi: core: Show SCMD_LAST in text form (git-fixes). - scsi: ibmvfc: Allocate/free queue resource only during probe/remove (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: ibmvfc: Store vhost pointer during subcrq allocation (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: lpfc: Add more logging of cmd and cqe information for aborted NVMe cmds (bsc#1201193). - scsi: lpfc: Address NULL pointer dereference after starget_to_rport() (bsc#1201193). - scsi: lpfc: Add support for ATTO Fibre Channel devices (bsc#1201193). - scsi: lpfc: Add support for VMID tagging of NVMe I/Os (bsc#1201193). - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd completion (bsc#1201193). - scsi: lpfc: Commonize VMID code location (bsc#1201193). - scsi: lpfc: Correct BDE type for XMIT_SEQ64_WQE in lpfc_ct_reject_event() (bsc#1201193). - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology (bsc#1201193). - scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following abort path refactoring (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following SLI path refactoring (bsc#1201193). - scsi: lpfc: Rework lpfc_vmid_get_appid() to be protocol independent (bsc#1201193). - scsi: lpfc: Update lpfc version to 14.2.0.4 (bsc#1201193). - scsi: nvme: Added a new sysfs attribute appid_store (bsc#1201193). - scsi: nvme-fc: Add new routine nvme_fc_io_getuuid() (bsc#1201193). - scsi: qla2xxx: Add a new v2 dport diagnostic feature (bsc#1201160). - scsi: qla2xxx: Add debug prints in the device remove path (bsc#1201160). - scsi: qla2xxx: edif: Add bsg interface to read doorbell events (bsc#1201160). - scsi: qla2xxx: edif: Add retry for ELS passthrough (bsc#1201160). - scsi: qla2xxx: edif: bsg refactor (bsc#1201160). - scsi: qla2xxx: edif: Fix I/O timeout due to over-subscription (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n login retry for secure device (bsc#1201160). - scsi: qla2xxx: edif: Fix no login after app start (bsc#1201160). - scsi: qla2xxx: edif: Fix no logout on delete for N2N (bsc#1201160). - scsi: qla2xxx: edif: Fix potential stuck session in sa update (bsc#1201160). - scsi: qla2xxx: edif: Fix session thrash (bsc#1201160). - scsi: qla2xxx: edif: Fix slow session teardown (bsc#1201160). - scsi: qla2xxx: edif: Reduce disruption due to multiple app start (bsc#1201160). - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing (bsc#1201160). - scsi: qla2xxx: edif: Reduce N2N thrashing at app_start time (bsc#1201160). - scsi: qla2xxx: edif: Remove old doorbell interface (bsc#1201160). - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message (bsc#1201160). - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication application (bsc#1201160). - scsi: qla2xxx: edif: Tear down session if keys have been removed (bsc#1201160). - scsi: qla2xxx: edif: Wait for app to ack on sess down (bsc#1201160). - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (bsc#1201160). - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection (bsc#1201160). - scsi: qla2xxx: Fix excessive I/O error messages by default (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os (bsc#1201160). - scsi: qla2xxx: Fix losing target when it reappears during delete (bsc#1201160). - scsi: qla2xxx: Remove setting of 'req' and 'rsp' parameters (bsc#1201160). - scsi: qla2xxx: Remove unused 'ql_dm_tgt_ex_pct' parameter (bsc#1201160). - scsi: qla2xxx: Turn off multi-queue for 8G adapters (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.500-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.600-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.700-k (bsc#1201160). - scsi: qla2xxx: Wind down adapter after PCIe error (bsc#1201160). - scsi: sd: sd_zbc: Do not pass GFP_NOIO to kvcalloc (git-fixes). - scsi: sd: sd_zbc: Fix handling of host-aware ZBC disks (git-fixes). - scsi: sd: sd_zbc: Fix ZBC disk initialization (git-fixes). - scsi: sd: Signal drive managed SMR disks (git-fixes). - scsi: sd_zbc: Do not limit max_zone_append sectors to (git-fixes). - scsi: sd_zbc: Ensure buffer size is aligned to SECTOR_SIZE (git-fixes). - scsi: sd_zbc: Improve zone revalidation (git-fixes). - scsi: sd_zbc: Remove unused inline functions (git-fixes). - scsi: sd_zbc: Support disks with more than 2**32 logical (git-fixes). - scsi: smartpqi: create module parameters for LUN reset (bsc#1179195 bsc#1200622). - smb3: add mount parm nosparse (bsc#1200217). - smb3: add trace point for lease not found issue (bsc#1200217). - smb3: add trace point for oplock not found (bsc#1200217). - smb3: check for null tcon (bsc#1200217). - smb3: cleanup and clarify status of tree connections (bsc#1200217). - smb3: do not set rc when used and unneeded in query_info_compound (bsc#1200217). - SMB3: EBADF/EIO errors in rename/open caused by race condition in smb2_compound_op (bsc#1200217). - smb3: fix incorrect session setup check for multiuser mounts (bsc#1200217). - smb3: fix ksmbd bigendian bug in oplock break, and move its struct to smbfs_common (bsc#1200217). - smb3: fix snapshot mount option (bsc#1200217). - smb3 improve error message when mount options conflict with posix (bsc#1200217). - smb3: move defines for ioctl protocol header and SMB2 sizes to smbfs_common (bsc#1200217). - smb3: move defines for query info and query fsinfo to smbfs_common (bsc#1200217). - smb3: move more common protocol header definitions to smbfs_common (bsc#1200217). - smb3: send NTLMSSP version information (bsc#1200217). - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe (git-fixes). - spi: Fix use-after-free with devm_spi_alloc_* (git-fixes). - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer() (git-fixes). - sunvnet: use icmp_ndo_send helper (git-fixes). - tty: goldfish: Fix free_irq() on remove (git-fixes). - usb: chipidea: udc: check request status before setting device address (git-fixes). - usb: dwc2: Fix memory leak in dwc2_hcd_init (git-fixes). - usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe (git-fixes). - usb: gadget: u_ether: fix regression in setting fixed MAC address (git-fixes). - usbnet: fix memory allocation in helpers (git-fixes). - USB: serial: io_ti: add Agilent E5805A support (git-fixes). - USB: serial: option: add Quectel EM05-G modem (git-fixes). - USB: serial: option: add Quectel RM500K module support (git-fixes). - USB: serial: option: add support for Cinterion MV31 with new baseline (git-fixes). - USB: serial: option: add Telit LE910Cx 0x1250 composition (git-fixes). - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC (git-fixes). - veth: fix races around rq->rx_notify_masked (git-fixes). - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (git-fixes). - virtio-net: fix race between ndo_open() and virtio_device_ready() (git-fixes). - virtio_net: fix xdp_rxq_info bug after suspend/resume (git-fixes). - virtio-pci: Remove wrong address verification in vp_del_vqs() (git-fixes). - vmxnet3: fix minimum vectors alloc issue (bsc#1199489). - writeback: Avoid skipping inode writeback (bsc#1200813). - writeback: Fix inode->i_io_list not be protected by inode->i_lock error (bsc#1200821). - xhci: Add reset resume quirk for AMD xhci controller (git-fixes). dtb-aarch64-5.3.18-150300.59.81.1.src.rpm True dtb-al-5.3.18-150300.59.81.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.81.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2647 low SUSE Updates openSUSE-SLE 15.4 This update for tiff fixes the following issues: - CVE-2022-2056: Fixed a division by zero denial of service (bsc#1201176). - CVE-2022-2057: Fixed a division by zero denial of service (bsc#1201175). - CVE-2022-2058: Fixed a division by zero denial of service (bsc#1201174). libtiff-devel-32bit-4.0.9-150000.45.11.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.11.1.x86_64.rpm libtiff5-32bit-4.0.9-150000.45.11.1.x86_64.rpm libtiff5-4.0.9-150000.45.11.1.x86_64.rpm tiff-4.0.9-150000.45.11.1.src.rpm tiff-4.0.9-150000.45.11.1.x86_64.rpm libtiff-devel-4.0.9-150000.45.11.1.s390x.rpm libtiff5-4.0.9-150000.45.11.1.s390x.rpm tiff-4.0.9-150000.45.11.1.s390x.rpm libtiff-devel-4.0.9-150000.45.11.1.ppc64le.rpm libtiff5-4.0.9-150000.45.11.1.ppc64le.rpm tiff-4.0.9-150000.45.11.1.ppc64le.rpm libtiff-devel-4.0.9-150000.45.11.1.aarch64.rpm libtiff5-4.0.9-150000.45.11.1.aarch64.rpm tiff-4.0.9-150000.45.11.1.aarch64.rpm openSUSE-SLE-15.4-2022-2535 important SUSE Updates openSUSE-SLE 15.4 This update for git fixes the following issues: - CVE-2022-29187: Incomplete fix for CVE-2022-24765: potential command injection via git worktree (bsc#1201431). - Allow to opt-out from the check added in the security fix for CVE-2022-24765 (bsc#1200119) git-2.26.2-150000.41.1.src.rpm openSUSE-SLE-15.4-2022-2735 moderate SUSE Updates openSUSE-SLE 15.4 This update for tar fixes the following issues: - Fix race condition while creating intermediate subdirectories (bsc#1200657) tar-1.34-150000.3.15.1.src.rpm tar-1.34-150000.3.15.1.x86_64.rpm tar-backup-scripts-1.34-150000.3.15.1.noarch.rpm tar-doc-1.34-150000.3.15.1.noarch.rpm tar-lang-1.34-150000.3.15.1.noarch.rpm tar-rmt-1.34-150000.3.15.1.x86_64.rpm tar-tests-1.34-150000.3.15.1.x86_64.rpm tar-1.34-150000.3.15.1.s390x.rpm tar-rmt-1.34-150000.3.15.1.s390x.rpm tar-tests-1.34-150000.3.15.1.s390x.rpm tar-1.34-150000.3.15.1.ppc64le.rpm tar-rmt-1.34-150000.3.15.1.ppc64le.rpm tar-tests-1.34-150000.3.15.1.ppc64le.rpm tar-1.34-150000.3.15.1.aarch64.rpm tar-rmt-1.34-150000.3.15.1.aarch64.rpm tar-tests-1.34-150000.3.15.1.aarch64.rpm openSUSE-SLE-15.4-2022-2523 important SUSE Updates openSUSE-SLE 15.4 This update for webkit2gtk3 fixes the following issues: Update to version 2.36.4 (bsc#1201221): - CVE-2022-22662: Processing maliciously crafted web content may disclose sensitive user information. - CVE-2022-22677: The video in a webRTC call may be interrupted if the audio capture gets interrupted. - CVE-2022-26710: Processing maliciously crafted web content may lead to arbitrary code execution. WebKit2GTK-4.0-lang-2.36.4-150400.4.6.2.noarch.rpm WebKit2GTK-4.1-lang-2.36.4-150400.4.6.2.noarch.rpm WebKit2GTK-5.0-lang-2.36.4-150400.4.6.2.noarch.rpm libjavascriptcoregtk-4_0-18-2.36.4-150400.4.6.2.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.4-150400.4.6.2.x86_64.rpm libjavascriptcoregtk-4_1-0-2.36.4-150400.4.6.2.x86_64.rpm libjavascriptcoregtk-4_1-0-32bit-2.36.4-150400.4.6.2.x86_64.rpm libjavascriptcoregtk-5_0-0-2.36.4-150400.4.6.2.x86_64.rpm libwebkit2gtk-4_0-37-2.36.4-150400.4.6.2.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.4-150400.4.6.2.x86_64.rpm libwebkit2gtk-4_1-0-2.36.4-150400.4.6.2.x86_64.rpm libwebkit2gtk-4_1-0-32bit-2.36.4-150400.4.6.2.x86_64.rpm libwebkit2gtk-5_0-0-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-JavaScriptCore-4_1-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-JavaScriptCore-5_0-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-WebKit2-4_1-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-WebKit2-5_0-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.4-150400.4.6.2.x86_64.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.4-150400.4.6.2.x86_64.rpm webkit-jsc-4-2.36.4-150400.4.6.2.x86_64.rpm webkit-jsc-4.1-2.36.4-150400.4.6.2.x86_64.rpm webkit-jsc-5.0-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk-4_1-injected-bundles-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk-5_0-injected-bundles-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk3-2.36.4-150400.4.6.2.src.rpm webkit2gtk3-devel-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk3-minibrowser-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk3-soup2-2.36.4-150400.4.6.2.src.rpm webkit2gtk3-soup2-devel-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk3-soup2-minibrowser-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk4-2.36.4-150400.4.6.2.src.rpm webkit2gtk4-devel-2.36.4-150400.4.6.2.x86_64.rpm webkit2gtk4-minibrowser-2.36.4-150400.4.6.2.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.4-150400.4.6.2.s390x.rpm libjavascriptcoregtk-4_1-0-2.36.4-150400.4.6.2.s390x.rpm libjavascriptcoregtk-5_0-0-2.36.4-150400.4.6.2.s390x.rpm libwebkit2gtk-4_0-37-2.36.4-150400.4.6.2.s390x.rpm libwebkit2gtk-4_1-0-2.36.4-150400.4.6.2.s390x.rpm libwebkit2gtk-5_0-0-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-JavaScriptCore-4_1-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-JavaScriptCore-5_0-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-WebKit2-4_1-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-WebKit2-5_0-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.4-150400.4.6.2.s390x.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.4-150400.4.6.2.s390x.rpm webkit-jsc-4-2.36.4-150400.4.6.2.s390x.rpm webkit-jsc-4.1-2.36.4-150400.4.6.2.s390x.rpm webkit-jsc-5.0-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk-4_1-injected-bundles-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk-5_0-injected-bundles-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk3-devel-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk3-minibrowser-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk3-soup2-devel-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk3-soup2-minibrowser-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk4-devel-2.36.4-150400.4.6.2.s390x.rpm webkit2gtk4-minibrowser-2.36.4-150400.4.6.2.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.4-150400.4.6.2.ppc64le.rpm libjavascriptcoregtk-4_1-0-2.36.4-150400.4.6.2.ppc64le.rpm libjavascriptcoregtk-5_0-0-2.36.4-150400.4.6.2.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.4-150400.4.6.2.ppc64le.rpm libwebkit2gtk-4_1-0-2.36.4-150400.4.6.2.ppc64le.rpm libwebkit2gtk-5_0-0-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-JavaScriptCore-4_1-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-JavaScriptCore-5_0-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-WebKit2-4_1-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-WebKit2-5_0-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.4-150400.4.6.2.ppc64le.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.4-150400.4.6.2.ppc64le.rpm webkit-jsc-4-2.36.4-150400.4.6.2.ppc64le.rpm webkit-jsc-4.1-2.36.4-150400.4.6.2.ppc64le.rpm webkit-jsc-5.0-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk-4_1-injected-bundles-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk-5_0-injected-bundles-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk3-devel-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk3-minibrowser-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk3-soup2-devel-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk3-soup2-minibrowser-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk4-devel-2.36.4-150400.4.6.2.ppc64le.rpm webkit2gtk4-minibrowser-2.36.4-150400.4.6.2.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.4-150400.4.6.2.aarch64.rpm libjavascriptcoregtk-4_1-0-2.36.4-150400.4.6.2.aarch64.rpm libjavascriptcoregtk-5_0-0-2.36.4-150400.4.6.2.aarch64.rpm libwebkit2gtk-4_0-37-2.36.4-150400.4.6.2.aarch64.rpm libwebkit2gtk-4_1-0-2.36.4-150400.4.6.2.aarch64.rpm libwebkit2gtk-5_0-0-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-JavaScriptCore-4_1-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-JavaScriptCore-5_0-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-WebKit2-4_1-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-WebKit2-5_0-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.4-150400.4.6.2.aarch64.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.4-150400.4.6.2.aarch64.rpm webkit-jsc-4-2.36.4-150400.4.6.2.aarch64.rpm webkit-jsc-4.1-2.36.4-150400.4.6.2.aarch64.rpm webkit-jsc-5.0-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk-4_1-injected-bundles-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk-5_0-injected-bundles-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk3-devel-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk3-minibrowser-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk3-soup2-devel-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk3-soup2-minibrowser-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk4-devel-2.36.4-150400.4.6.2.aarch64.rpm webkit2gtk4-minibrowser-2.36.4-150400.4.6.2.aarch64.rpm openSUSE-SLE-15.4-2022-2525 important SUSE Updates openSUSE-SLE 15.4 This update for webkit2gtk3 fixes the following issues: Update to version 2.36.4 (bsc#1201221): - CVE-2022-22662: Processing maliciously crafted web content may disclose sensitive user information. - CVE-2022-22677: The video in a webRTC call may be interrupted if the audio capture gets interrupted. - CVE-2022-26710: Processing maliciously crafted web content may lead to arbitrary code execution. libwebkit2gtk3-lang-2.36.4-150200.38.2.noarch.rpm webkit2gtk3-2.36.4-150200.38.2.src.rpm openSUSE-SLE-15.4-2022-2375 important SUSE Updates openSUSE-SLE 15.4 This update for xorg-x11-server fixes the following issues: - CVE-2022-2319: Fixed out-of-bounds access in _CheckSetSections() (ZDI-CAN-16062) (bsc#1194179). - CVE-2022-2320: Fixed out-of-bounds access in CheckSetDeviceIndicators() (ZDI-CAN-16070) (bsc#1194181). xorg-x11-server-1.20.3-150200.22.5.55.1.src.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.55.1.x86_64.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.55.1.s390x.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.55.1.ppc64le.rpm xorg-x11-server-wayland-1.20.3-150200.22.5.55.1.aarch64.rpm openSUSE-SLE-15.4-2022-2354 critical SUSE Updates openSUSE-SLE 15.4 This update for freerdp fixes the following issues: - CVE-2022-24882: Fixed incorrect check parameters in NTLM (bsc#1198919). - CVE-2022-24883: Fixed authentication against invalid SAM files (bsc#1198921). freerdp-2.4.0-150400.3.3.1.src.rpm freerdp-2.4.0-150400.3.3.1.x86_64.rpm freerdp-devel-2.4.0-150400.3.3.1.x86_64.rpm freerdp-proxy-2.4.0-150400.3.3.1.x86_64.rpm freerdp-server-2.4.0-150400.3.3.1.x86_64.rpm freerdp-wayland-2.4.0-150400.3.3.1.x86_64.rpm libfreerdp2-2.4.0-150400.3.3.1.x86_64.rpm libuwac0-0-2.4.0-150400.3.3.1.x86_64.rpm libwinpr2-2.4.0-150400.3.3.1.x86_64.rpm uwac0-0-devel-2.4.0-150400.3.3.1.x86_64.rpm winpr2-devel-2.4.0-150400.3.3.1.x86_64.rpm freerdp-2.4.0-150400.3.3.1.s390x.rpm freerdp-devel-2.4.0-150400.3.3.1.s390x.rpm freerdp-proxy-2.4.0-150400.3.3.1.s390x.rpm freerdp-server-2.4.0-150400.3.3.1.s390x.rpm freerdp-wayland-2.4.0-150400.3.3.1.s390x.rpm libfreerdp2-2.4.0-150400.3.3.1.s390x.rpm libuwac0-0-2.4.0-150400.3.3.1.s390x.rpm libwinpr2-2.4.0-150400.3.3.1.s390x.rpm uwac0-0-devel-2.4.0-150400.3.3.1.s390x.rpm winpr2-devel-2.4.0-150400.3.3.1.s390x.rpm freerdp-2.4.0-150400.3.3.1.ppc64le.rpm freerdp-devel-2.4.0-150400.3.3.1.ppc64le.rpm freerdp-proxy-2.4.0-150400.3.3.1.ppc64le.rpm freerdp-server-2.4.0-150400.3.3.1.ppc64le.rpm freerdp-wayland-2.4.0-150400.3.3.1.ppc64le.rpm libfreerdp2-2.4.0-150400.3.3.1.ppc64le.rpm libuwac0-0-2.4.0-150400.3.3.1.ppc64le.rpm libwinpr2-2.4.0-150400.3.3.1.ppc64le.rpm uwac0-0-devel-2.4.0-150400.3.3.1.ppc64le.rpm winpr2-devel-2.4.0-150400.3.3.1.ppc64le.rpm freerdp-2.4.0-150400.3.3.1.aarch64.rpm freerdp-devel-2.4.0-150400.3.3.1.aarch64.rpm freerdp-proxy-2.4.0-150400.3.3.1.aarch64.rpm freerdp-server-2.4.0-150400.3.3.1.aarch64.rpm freerdp-wayland-2.4.0-150400.3.3.1.aarch64.rpm libfreerdp2-2.4.0-150400.3.3.1.aarch64.rpm libuwac0-0-2.4.0-150400.3.3.1.aarch64.rpm libwinpr2-2.4.0-150400.3.3.1.aarch64.rpm uwac0-0-devel-2.4.0-150400.3.3.1.aarch64.rpm winpr2-devel-2.4.0-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2488 moderate SUSE Updates openSUSE-SLE 15.4 This feature update for python-python-debian provides: - Rename python-debian to python-python-debian according to the Python packaging guidelines (jsc#SLE-24672) - Provide python-python-debian version 0.1.44 (jsc#SLE-24672) * Add support for zstd compression in .deb files * Use logging.warning rather than warnings for data problems. * Support for finding files (including changelog.Debian.gz) that are beyond a symlink within the package * Update packaging for zstd compressed .deb code * Annotate binutils build-dep with <!nocheck> * Update Standards-Version to 4.6.1 * Various improvements to the round-trip-safe deb822 parser * Support the Files-Included field in debian/copyright * Fix URL for API documentation in README.rst * RTS parser: minor documentation fixes * Declare minimum Python version of 3.5 for most modules except the RTS parser. Add CI testing with Python 3.5 * RTS parser: Handle leading tabs for setting values * RTS parser: Preserve original field case * RTS parser: Expose str type for keys in paragraphs * Use logging for warnings about data that's being read, rather than the warnings module * Fix type checks for mypy 0.910 * Silence lintian complaint about touching the dpkg database in the examples * Add RTS parser to setup.py so that it is installed. * Add copyright attribution for RTS parser * RTS parser: Accept tabs as continuation line marker * Interpretation: Preserve tab as continuation line if used * RTS parser: Make value interpretation tokenization consistent * RTS parser: Add interpretation for Uploaders field * Add contextmanager to DebFile * Added format/comment preserving deb822 parser as debian._deb822_repro. * Add Build-Depends-Arch, Build-Conflicts-Arch to list of relationship fields * In debian.changelog.get_maintainer, cope with unknown UIDs * Numerous enhancements to the deb822.BuildInfo class * Include portability patch for pwd module on Windows * Drop the deb822.BuildInfo.get_debian_suite function * Move re.compile calls out of functions * Revert unintended renaming of Changelog.get_version/set_version * Add a type for .buildinfo files (deb822.BuildInfo) * Add support for SHA1-Download and SHA256-* variants in PdiffIndex class for .diff/Index files * Permit single-character package names in dependency relationship specifications * Update to debhelper-compat (= 13) * Update examples to use #!/usr/bin/python3 * Fix tabs vs spaces in examples. * Provide accessor for source package version for binary packages * Allow debian_support.PackageFile to accept StringIO as well as BytesIO * Change handling of case-insensitive field names to allow Deb822 objects to be serialised * Add SHA265 support to handling of pdiffs * Add support for additional headers for merged pdiffs to PDiffIndex * Add a debian.watch module for parsing watch files * Prevent stripping of last newline in initial lines before changelog files * Add a Copyright.files_excluded field * Allow specifying allow_missing_author when reserializing changelog entries * Drop python2 support (from version 0.1.37) * Add Rules-Requires-Root: no * Parse Built-Using relationship fields * Extend Deb822 parser to allow underscores in the field name * Add accessors for Version objects from Deb822 - Remove superfluous devel dependency for noarch package python-python-debian-0.1.44-150400.9.3.1.src.rpm python3-python-debian-0.1.44-150400.9.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2454 important SUSE Updates openSUSE-SLE 15.4 This update for SAPHanaSR fixes the following issues: - Version bump to 0.160.1 - fix HANA_CALL function to support MCOS environments again (bsc#1198780) - fix SAPHanaSR-replay-archive to handle hb_report archives again (bsc#1198897) - add HANA_CALL_TIMEOUT parameter back to the resource agents and read the setting from the cluster configuration, if available. Defaults to '60'. Related to github issue#36 - add new HA/DR provider hook susTkOver (jsc#SLE-16347) - add new hook script for SAP HANA System Replication Scale-Up Cost Optimized Scenario. (jsc#SLE-18613) - add a new instance parameter 'REMOVE_SAP_SOCKETS'. It is an optional parameter and defaults to 'true'. Now you can control, if the RA should remove the unix domain sockets related to sapstartsrv before (re-)start sapstartsrv or if it should try to adjust the permissions and ownership of these files instead. SAPHanaSR-0.160.1-150000.4.20.1.noarch.rpm SAPHanaSR-0.160.1-150000.4.20.1.src.rpm SAPHanaSR-doc-0.160.1-150000.4.20.1.noarch.rpm openSUSE-SLE-15.4-2022-2487 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-urlgrabber fixes the following issues: - Fix wrong logic on `find_proxy` method causing proxy not being used python-urlgrabber-4.1.0-150400.4.3.1.src.rpm python3-urlgrabber-4.1.0-150400.4.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2448 important SUSE Updates openSUSE-SLE 15.4 This update for dovecot23 fixes the following issues: - CVE-2022-30550: Fixed privilege escalation in dovecot when similar master and non-master passdbs are used (bsc#1201267). dovecot23-2.3.15-150200.62.1.src.rpm dovecot23-2.3.15-150200.62.1.x86_64.rpm dovecot23-backend-mysql-2.3.15-150200.62.1.x86_64.rpm dovecot23-backend-pgsql-2.3.15-150200.62.1.x86_64.rpm dovecot23-backend-sqlite-2.3.15-150200.62.1.x86_64.rpm dovecot23-devel-2.3.15-150200.62.1.x86_64.rpm dovecot23-fts-2.3.15-150200.62.1.x86_64.rpm dovecot23-fts-lucene-2.3.15-150200.62.1.x86_64.rpm dovecot23-fts-solr-2.3.15-150200.62.1.x86_64.rpm dovecot23-fts-squat-2.3.15-150200.62.1.x86_64.rpm dovecot23-2.3.15-150200.62.1.s390x.rpm dovecot23-backend-mysql-2.3.15-150200.62.1.s390x.rpm dovecot23-backend-pgsql-2.3.15-150200.62.1.s390x.rpm dovecot23-backend-sqlite-2.3.15-150200.62.1.s390x.rpm dovecot23-devel-2.3.15-150200.62.1.s390x.rpm dovecot23-fts-2.3.15-150200.62.1.s390x.rpm dovecot23-fts-lucene-2.3.15-150200.62.1.s390x.rpm dovecot23-fts-solr-2.3.15-150200.62.1.s390x.rpm dovecot23-fts-squat-2.3.15-150200.62.1.s390x.rpm dovecot23-2.3.15-150200.62.1.ppc64le.rpm dovecot23-backend-mysql-2.3.15-150200.62.1.ppc64le.rpm dovecot23-backend-pgsql-2.3.15-150200.62.1.ppc64le.rpm dovecot23-backend-sqlite-2.3.15-150200.62.1.ppc64le.rpm dovecot23-devel-2.3.15-150200.62.1.ppc64le.rpm dovecot23-fts-2.3.15-150200.62.1.ppc64le.rpm dovecot23-fts-lucene-2.3.15-150200.62.1.ppc64le.rpm dovecot23-fts-solr-2.3.15-150200.62.1.ppc64le.rpm dovecot23-fts-squat-2.3.15-150200.62.1.ppc64le.rpm dovecot23-2.3.15-150200.62.1.aarch64.rpm dovecot23-backend-mysql-2.3.15-150200.62.1.aarch64.rpm dovecot23-backend-pgsql-2.3.15-150200.62.1.aarch64.rpm dovecot23-backend-sqlite-2.3.15-150200.62.1.aarch64.rpm dovecot23-devel-2.3.15-150200.62.1.aarch64.rpm dovecot23-fts-2.3.15-150200.62.1.aarch64.rpm dovecot23-fts-lucene-2.3.15-150200.62.1.aarch64.rpm dovecot23-fts-solr-2.3.15-150200.62.1.aarch64.rpm dovecot23-fts-squat-2.3.15-150200.62.1.aarch64.rpm openSUSE-SLE-15.4-2022-2411 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487). - CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619). - CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692) - CVE-2022-20141: Fixed a possible use after free due to improper locking in ip_check_mc_rcu() (bsc#1200604). - CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). - CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges (bsc#1201251). - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). The following non-security bugs were fixed: - exec: Force single empty string when argv is empty (bsc#1200571). kernel-debug-4.12.14-150100.197.117.1.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.117.1.x86_64.rpm True kernel-default-4.12.14-150100.197.117.1.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.117.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.117.1.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.117.1.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.117.1.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.117.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.117.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.117.1.x86_64.rpm True kernel-default-man-4.12.14-150100.197.117.1.s390x.rpm True kernel-vanilla-4.12.14-150100.197.117.1.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.117.1.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.117.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.117.1.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.117.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.117.1.s390x.rpm True kernel-debug-base-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.117.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.117.1.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.117.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.117.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.117.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2632 important SUSE Updates openSUSE-SLE 15.4 This update for permissions fixes the following issues: * apptainer: fix starter-suid location (bsc#1198720) * static permissions: remove deprecated bind / named chroot entries (bsc#1200747) * postfix: add postlog setgid for maildrop binary (bsc#1201385) permissions-20201225-150400.5.8.1.src.rpm permissions-20201225-150400.5.8.1.x86_64.rpm permissions-zypp-plugin-20201225-150400.5.8.1.noarch.rpm rpmlint-mini-1.10-150400.23.2.1.src.rpm rpmlint-mini-1.10-150400.23.2.1.x86_64.rpm permissions-20201225-150400.5.8.1.s390x.rpm rpmlint-mini-1.10-150400.23.2.1.s390x.rpm permissions-20201225-150400.5.8.1.ppc64le.rpm rpmlint-mini-1.10-150400.23.2.1.ppc64le.rpm permissions-20201225-150400.5.8.1.aarch64.rpm rpmlint-mini-1.10-150400.23.2.1.aarch64.rpm openSUSE-SLE-15.4-2022-2491 important SUSE Updates openSUSE-SLE 15.4 This update for nodejs16 fixes the following issues: - CVE-2022-32212: Fixed DNS rebinding in --inspect via invalid IP addresses (bsc#1201328). - CVE-2022-32213: Fixed HTTP request smuggling due to flawed parsing of Transfer-Encoding (bsc#1201325). - CVE-2022-32214: Fixed HTTP request smuggling due to improper delimiting of header fields (bsc#1201326). - CVE-2022-32215: Fixed HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding (bsc#1201327). corepack16-16.16.0-150400.3.3.2.x86_64.rpm nodejs16-16.16.0-150400.3.3.2.src.rpm nodejs16-16.16.0-150400.3.3.2.x86_64.rpm nodejs16-devel-16.16.0-150400.3.3.2.x86_64.rpm nodejs16-docs-16.16.0-150400.3.3.2.noarch.rpm npm16-16.16.0-150400.3.3.2.x86_64.rpm corepack16-16.16.0-150400.3.3.2.s390x.rpm nodejs16-16.16.0-150400.3.3.2.s390x.rpm nodejs16-devel-16.16.0-150400.3.3.2.s390x.rpm npm16-16.16.0-150400.3.3.2.s390x.rpm corepack16-16.16.0-150400.3.3.2.ppc64le.rpm nodejs16-16.16.0-150400.3.3.2.ppc64le.rpm nodejs16-devel-16.16.0-150400.3.3.2.ppc64le.rpm npm16-16.16.0-150400.3.3.2.ppc64le.rpm corepack16-16.16.0-150400.3.3.2.aarch64.rpm nodejs16-16.16.0-150400.3.3.2.aarch64.rpm nodejs16-devel-16.16.0-150400.3.3.2.aarch64.rpm npm16-16.16.0-150400.3.3.2.aarch64.rpm openSUSE-SLE-15.4-2022-2573 moderate SUSE Updates openSUSE-SLE 15.4 This update for libzypp, zypper fixes the following issues: libzypp: - appdata plugin: Pass path to the repodata/ directory inside the cache (bsc#1197684) - zypp-rpm: flush rpm script output buffer before sending endOfScriptTag - PluginRepoverification: initial version hooked into repo::Downloader and repo refresh - Immediately start monitoring the download.transfer_timeout. Do not wait until the first data arrived (bsc#1199042) - singletrans: no dry-run commit if doing just download-only - Work around cases where sat repo.start points to an invalid solvable. May happen if (wrong arch) solvables were removed at the beginning of the repo. - Fix misplaced #endif SINGLE_RPMTRANS_AS_DEFAULT_FOR_ZYPPER zypper: - Basic JobReport for "cmdout/monitor" - versioncmp: if verbose, also print the edition 'parts' which are compared - Make sure MediaAccess is closed on exception (bsc#1194550) - Display plus-content hint conditionally - Honor the NO_COLOR environment variable when auto-detecting whether to use color - Define table columns which should be sorted natural [case insensitive] - lr/ls: Use highlight color on name and alias as well libzypp-17.30.2-150400.3.3.1.src.rpm True libzypp-17.30.2-150400.3.3.1.x86_64.rpm True libzypp-devel-17.30.2-150400.3.3.1.x86_64.rpm True libzypp-devel-doc-17.30.2-150400.3.3.1.x86_64.rpm True zypper-1.14.53-150400.3.3.1.src.rpm True zypper-1.14.53-150400.3.3.1.x86_64.rpm True zypper-aptitude-1.14.53-150400.3.3.1.noarch.rpm True zypper-log-1.14.53-150400.3.3.1.noarch.rpm True zypper-needs-restarting-1.14.53-150400.3.3.1.noarch.rpm True libzypp-17.30.2-150400.3.3.1.s390x.rpm True libzypp-devel-17.30.2-150400.3.3.1.s390x.rpm True libzypp-devel-doc-17.30.2-150400.3.3.1.s390x.rpm True zypper-1.14.53-150400.3.3.1.s390x.rpm True libzypp-17.30.2-150400.3.3.1.ppc64le.rpm True libzypp-devel-17.30.2-150400.3.3.1.ppc64le.rpm True libzypp-devel-doc-17.30.2-150400.3.3.1.ppc64le.rpm True zypper-1.14.53-150400.3.3.1.ppc64le.rpm True libzypp-17.30.2-150400.3.3.1.aarch64.rpm True libzypp-devel-17.30.2-150400.3.3.1.aarch64.rpm True libzypp-devel-doc-17.30.2-150400.3.3.1.aarch64.rpm True zypper-1.14.53-150400.3.3.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2425 important SUSE Updates openSUSE-SLE 15.4 This update for nodejs14 fixes the following issues: - CVE-2022-32212: Fixed DNS rebinding in --inspect via invalid IP addresses (bsc#1201328). - CVE-2022-32213: Fixed HTTP request smuggling due to flawed parsing of Transfer-Encoding (bsc#1201325). - CVE-2022-32214: Fixed HTTP request smuggling due to improper delimiting of header fields (bsc#1201326). - CVE-2022-32215: Fixed HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding (bsc#1201327). corepack14-14.20.0-150200.15.34.1.x86_64.rpm nodejs14-14.20.0-150200.15.34.1.src.rpm nodejs14-14.20.0-150200.15.34.1.x86_64.rpm nodejs14-devel-14.20.0-150200.15.34.1.x86_64.rpm nodejs14-docs-14.20.0-150200.15.34.1.noarch.rpm npm14-14.20.0-150200.15.34.1.x86_64.rpm corepack14-14.20.0-150200.15.34.1.s390x.rpm nodejs14-14.20.0-150200.15.34.1.s390x.rpm nodejs14-devel-14.20.0-150200.15.34.1.s390x.rpm npm14-14.20.0-150200.15.34.1.s390x.rpm corepack14-14.20.0-150200.15.34.1.ppc64le.rpm nodejs14-14.20.0-150200.15.34.1.ppc64le.rpm nodejs14-devel-14.20.0-150200.15.34.1.ppc64le.rpm npm14-14.20.0-150200.15.34.1.ppc64le.rpm corepack14-14.20.0-150200.15.34.1.aarch64.rpm nodejs14-14.20.0-150200.15.34.1.aarch64.rpm nodejs14-devel-14.20.0-150200.15.34.1.aarch64.rpm npm14-14.20.0-150200.15.34.1.aarch64.rpm openSUSE-SLE-15.4-2022-2583 important SUSE Updates openSUSE-SLE 15.4 This update for aws-iam-authenticator fixes the following issues: - CVE-2022-2385: Fixed AccessKeyID validation bypass (bsc#1201395). aws-iam-authenticator-0.5.3-150000.1.9.1.src.rpm aws-iam-authenticator-0.5.3-150000.1.9.1.x86_64.rpm aws-iam-authenticator-0.5.3-150000.1.9.1.s390x.rpm aws-iam-authenticator-0.5.3-150000.1.9.1.ppc64le.rpm aws-iam-authenticator-0.5.3-150000.1.9.1.aarch64.rpm openSUSE-SLE-15.4-2022-2430 important SUSE Updates openSUSE-SLE 15.4 This update for nodejs12 fixes the following issues: - CVE-2022-32212: Fixed DNS rebinding in --inspect via invalid IP addresses (bsc#1201328). - CVE-2022-32213: Fixed HTTP request smuggling due to flawed parsing of Transfer-Encoding (bsc#1201325). - CVE-2022-32214: Fixed HTTP request smuggling due to improper delimiting of header fields (bsc#1201326). - CVE-2022-32215: Fixed HTTP request smuggling due to incorrect parsing of multi-line Transfer-Encoding (bsc#1201327). nodejs12-12.22.12-150200.4.35.1.src.rpm nodejs12-12.22.12-150200.4.35.1.x86_64.rpm nodejs12-devel-12.22.12-150200.4.35.1.x86_64.rpm nodejs12-docs-12.22.12-150200.4.35.1.noarch.rpm npm12-12.22.12-150200.4.35.1.x86_64.rpm nodejs12-12.22.12-150200.4.35.1.s390x.rpm nodejs12-devel-12.22.12-150200.4.35.1.s390x.rpm npm12-12.22.12-150200.4.35.1.s390x.rpm nodejs12-12.22.12-150200.4.35.1.ppc64le.rpm nodejs12-devel-12.22.12-150200.4.35.1.ppc64le.rpm npm12-12.22.12-150200.4.35.1.ppc64le.rpm nodejs12-12.22.12-150200.4.35.1.aarch64.rpm nodejs12-devel-12.22.12-150200.4.35.1.aarch64.rpm npm12-12.22.12-150200.4.35.1.aarch64.rpm openSUSE-SLE-15.4-2022-2671 important SUSE Updates openSUSE-SLE 15.4 This update for go1.17 fixes the following issues: Update to go version 1.17.13 (bsc#1190649): - CVE-2022-32189: encoding/gob, math/big: decoding big.Float and big.Rat can panic (bsc#1202035). - CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode (bsc#1201444). - CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read (bsc#1201437). - CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions (bsc#1201448). - CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip (bsc#1201443). - CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding header (bsc#1201434) - CVE-2022-30630: io/fs: stack exhaustion in Glob (bsc#1201447). - CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working (bsc#1201436) - CVE-2022-30632: path/filepath: stack exhaustion in Glob (bsc#1201445). - CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal (bsc#1201440). go1.17-1.17.13-150000.1.42.1.src.rpm go1.17-1.17.13-150000.1.42.1.x86_64.rpm go1.17-doc-1.17.13-150000.1.42.1.x86_64.rpm go1.17-race-1.17.13-150000.1.42.1.x86_64.rpm go1.17-1.17.13-150000.1.42.1.s390x.rpm go1.17-doc-1.17.13-150000.1.42.1.s390x.rpm go1.17-1.17.13-150000.1.42.1.ppc64le.rpm go1.17-doc-1.17.13-150000.1.42.1.ppc64le.rpm go1.17-1.17.13-150000.1.42.1.aarch64.rpm go1.17-doc-1.17.13-150000.1.42.1.aarch64.rpm go1.17-race-1.17.13-150000.1.42.1.aarch64.rpm openSUSE-SLE-15.4-2022-2672 important SUSE Updates openSUSE-SLE 15.4 This update for go1.18 fixes the following issues: Update to go version 1.18.5 (bsc#1193742): - CVE-2022-32189: encoding/gob, math/big: decoding big.Float and big.Rat can panic (bsc#1202035). - CVE-2022-1705: net/http: improper sanitization of Transfer-Encoding header (bsc#1201434) - CVE-2022-32148: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working (bsc#1201436) - CVE-2022-30631: compress/gzip: stack exhaustion in Reader.Read (bsc#1201437). - CVE-2022-30633: encoding/xml: stack exhaustion in Unmarshal (bsc#1201440). - CVE-2022-28131: encoding/xml: stack exhaustion in Decoder.Skip (bsc#1201443). - CVE-2022-30635: encoding/gob: stack exhaustion in Decoder.Decode (bsc#1201444). - CVE-2022-30632: path/filepath: stack exhaustion in Glob (bsc#1201445). - CVE-2022-30630: io/fs: stack exhaustion in Glob (bsc#1201447). - CVE-2022-1962: go/parser: stack exhaustion in all Parse* functions (bsc#1201448). go1.18-1.18.5-150000.1.25.1.src.rpm go1.18-1.18.5-150000.1.25.1.x86_64.rpm go1.18-doc-1.18.5-150000.1.25.1.x86_64.rpm go1.18-race-1.18.5-150000.1.25.1.x86_64.rpm go1.18-1.18.5-150000.1.25.1.s390x.rpm go1.18-doc-1.18.5-150000.1.25.1.s390x.rpm go1.18-1.18.5-150000.1.25.1.ppc64le.rpm go1.18-doc-1.18.5-150000.1.25.1.ppc64le.rpm go1.18-1.18.5-150000.1.25.1.aarch64.rpm go1.18-doc-1.18.5-150000.1.25.1.aarch64.rpm go1.18-race-1.18.5-150000.1.25.1.aarch64.rpm openSUSE-SLE-15.4-2022-2562 important SUSE Updates openSUSE-SLE 15.4 This update for python-M2Crypto fixes the following issues: - CVE-2020-25657: Fixed Bleichenbacher timing attacks in the RSA decryption API (bsc#1178829). python-M2Crypto-0.35.2-150000.3.14.1.src.rpm openSUSE-SLE-15.4-2022-2626 important SUSE Updates openSUSE-SLE 15.4 This update for openCryptoki fixes the following issues: - Add the installation of the configuration file p11sak_defined_attrs.conf (bsc#1199862) openCryptoki-3.17.0-150400.4.3.1.src.rpm openCryptoki-3.17.0-150400.4.3.1.x86_64.rpm openCryptoki-64bit-3.17.0-150400.4.3.1.x86_64.rpm openCryptoki-devel-3.17.0-150400.4.3.1.x86_64.rpm openCryptoki-3.17.0-150400.4.3.1.s390x.rpm openCryptoki-64bit-3.17.0-150400.4.3.1.s390x.rpm openCryptoki-devel-3.17.0-150400.4.3.1.s390x.rpm openCryptoki-3.17.0-150400.4.3.1.ppc64le.rpm openCryptoki-64bit-3.17.0-150400.4.3.1.ppc64le.rpm openCryptoki-devel-3.17.0-150400.4.3.1.ppc64le.rpm openCryptoki-3.17.0-150400.4.3.1.aarch64.rpm openCryptoki-64bit-3.17.0-150400.4.3.1.aarch64.rpm openCryptoki-devel-3.17.0-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2659 important SUSE Updates openSUSE-SLE 15.4 This update for ldb, samba fixes the following issues: - CVE-2022-32746: Fixed a use-after-free occurring in database audit logging (bsc#1201490). - CVE-2022-32745: Fixed a remote server crash with an LDAP add or modify request (bsc#1201492). - CVE-2022-2031: Fixed AD restrictions bypass associated with changing passwords (bsc#1201495). - CVE-2022-32742: Fixed a memory leak in SMB1 (bsc#1201496). - CVE-2022-32744: Fixed an arbitrary password change request for any AD user (bsc#1201493). The following non-security bug were fixed: ldb was updated to version 2.4.3: + Fix build problems, waf produces incorrect names for python extensions; (bso#15071); samba was updated to 4.15.8: * Use pathref fd instead of io fd in vfs_default_durable_cookie; (bso#15042); * Setting fruit:resource = stream in vfs_fruit causes a panic; (bso#15099); * Add support for bind 9.18; (bso#14986); * logging dsdb audit to specific files does not work; (bso#15076); * vfs_gpfs with vfs_shadowcopy2 fail to restore file if original file had been deleted; (bso#15069); * netgroups support removed; (bso#15087); (bsc#1199247); * net ads info shows LDAP Server: 0.0.0.0 depending on contacted server; (bso#14674); (bsc#1199734); * waf produces incorrect names for python extensions with Python 3.11; (bso#15071); * smbclient commands del & deltree fail with NT_STATUS_OBJECT_PATH_NOT_FOUND with DFS; (bso#15100); (bsc#1200556); * vfs_gpfs recalls=no option prevents listing files; (bso#15055); * waf produces incorrect names for python extensions with Python 3.11; (bso#15071); * Compile error in source3/utils/regedit_hexedit.c; (bso#15091); * ldconfig: /lib64/libsmbconf.so.0 is not a symbolic link; (bso#15108); * smbd doesn't handle UPNs for looking up names; (bso#15054); * Out-by-4 error in smbd read reply max_send clamp; (bso#14443); - Move pdb backends from package samba-libs to package samba-client-libs and remove samba-libs requirement from samba-winbind; (bsc#1200964); (bsc#1198255); - Use the canonical realm name to refresh the Kerberos tickets; (bsc#1196224); (bso#14979); - Fix smbclient commands del & deltree failing with NT_STATUS_OBJECT_PATH_NOT_FOUND with DFS; (bso#15100); (bsc#1200556). ctdb-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm ctdb-pcp-pmda-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm ldb-2.4.3-150400.4.8.1.src.rpm ldb-tools-2.4.3-150400.4.8.1.x86_64.rpm libldb-devel-2.4.3-150400.4.8.1.x86_64.rpm libldb2-2.4.3-150400.4.8.1.x86_64.rpm libldb2-32bit-2.4.3-150400.4.8.1.x86_64.rpm libsamba-policy-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm libsamba-policy-python3-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm libsamba-policy0-python3-32bit-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm libsamba-policy0-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm python3-ldb-2.4.3-150400.4.8.1.x86_64.rpm python3-ldb-32bit-2.4.3-150400.4.8.1.x86_64.rpm python3-ldb-devel-2.4.3-150400.4.8.1.x86_64.rpm samba-4.15.8+git.500.d5910280cc7-150400.3.11.1.src.rpm samba-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-ad-dc-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-ad-dc-libs-32bit-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-ad-dc-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-ceph-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-client-32bit-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-client-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-client-libs-32bit-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-client-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-devel-32bit-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-doc-4.15.8+git.500.d5910280cc7-150400.3.11.1.noarch.rpm samba-dsdb-modules-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-gpupdate-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-ldb-ldap-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-libs-32bit-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-libs-python3-32bit-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-libs-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-test-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-tool-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-winbind-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-winbind-libs-32bit-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm samba-winbind-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.x86_64.rpm ctdb-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm ctdb-pcp-pmda-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm ldb-tools-2.4.3-150400.4.8.1.s390x.rpm libldb-devel-2.4.3-150400.4.8.1.s390x.rpm libldb2-2.4.3-150400.4.8.1.s390x.rpm libsamba-policy-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm libsamba-policy-python3-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm libsamba-policy0-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm python3-ldb-2.4.3-150400.4.8.1.s390x.rpm python3-ldb-devel-2.4.3-150400.4.8.1.s390x.rpm samba-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-ad-dc-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-ad-dc-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-client-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-client-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-dsdb-modules-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-gpupdate-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-ldb-ldap-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-libs-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-test-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-tool-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-winbind-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm samba-winbind-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.s390x.rpm ctdb-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm ctdb-pcp-pmda-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm ldb-tools-2.4.3-150400.4.8.1.ppc64le.rpm libldb-devel-2.4.3-150400.4.8.1.ppc64le.rpm libldb2-2.4.3-150400.4.8.1.ppc64le.rpm libsamba-policy-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm libsamba-policy-python3-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm libsamba-policy0-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm python3-ldb-2.4.3-150400.4.8.1.ppc64le.rpm python3-ldb-devel-2.4.3-150400.4.8.1.ppc64le.rpm samba-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-ad-dc-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-ad-dc-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-client-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-client-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-dsdb-modules-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-gpupdate-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-ldb-ldap-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-libs-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-test-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-tool-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-winbind-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm samba-winbind-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.ppc64le.rpm ctdb-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm ctdb-pcp-pmda-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm ldb-tools-2.4.3-150400.4.8.1.aarch64.rpm libldb-devel-2.4.3-150400.4.8.1.aarch64.rpm libldb2-2.4.3-150400.4.8.1.aarch64.rpm libsamba-policy-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm libsamba-policy-python3-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm libsamba-policy0-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm python3-ldb-2.4.3-150400.4.8.1.aarch64.rpm python3-ldb-devel-2.4.3-150400.4.8.1.aarch64.rpm samba-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-ad-dc-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-ad-dc-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-ceph-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-client-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-client-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-devel-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-dsdb-modules-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-gpupdate-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-ldb-ldap-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-libs-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-python3-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-test-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-tool-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-winbind-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm samba-winbind-libs-4.15.8+git.500.d5910280cc7-150400.3.11.1.aarch64.rpm openSUSE-SLE-15.4-2022-2550 important SUSE Updates openSUSE-SLE 15.4 This update for git fixes the following issues: - CVE-2022-29187: Incomplete fix for CVE-2022-24765: potential command injection via git worktree (bsc#1201431). git-2.35.3-150300.10.15.1.src.rpm git-2.35.3-150300.10.15.1.x86_64.rpm git-arch-2.35.3-150300.10.15.1.x86_64.rpm git-core-2.35.3-150300.10.15.1.x86_64.rpm git-credential-gnome-keyring-2.35.3-150300.10.15.1.x86_64.rpm git-credential-libsecret-2.35.3-150300.10.15.1.x86_64.rpm git-cvs-2.35.3-150300.10.15.1.x86_64.rpm git-daemon-2.35.3-150300.10.15.1.x86_64.rpm git-doc-2.35.3-150300.10.15.1.noarch.rpm git-email-2.35.3-150300.10.15.1.x86_64.rpm git-gui-2.35.3-150300.10.15.1.x86_64.rpm git-p4-2.35.3-150300.10.15.1.x86_64.rpm git-svn-2.35.3-150300.10.15.1.x86_64.rpm git-web-2.35.3-150300.10.15.1.x86_64.rpm gitk-2.35.3-150300.10.15.1.x86_64.rpm perl-Git-2.35.3-150300.10.15.1.x86_64.rpm git-2.35.3-150300.10.15.1.s390x.rpm git-arch-2.35.3-150300.10.15.1.s390x.rpm git-core-2.35.3-150300.10.15.1.s390x.rpm git-credential-gnome-keyring-2.35.3-150300.10.15.1.s390x.rpm git-credential-libsecret-2.35.3-150300.10.15.1.s390x.rpm git-cvs-2.35.3-150300.10.15.1.s390x.rpm git-daemon-2.35.3-150300.10.15.1.s390x.rpm git-email-2.35.3-150300.10.15.1.s390x.rpm git-gui-2.35.3-150300.10.15.1.s390x.rpm git-p4-2.35.3-150300.10.15.1.s390x.rpm git-svn-2.35.3-150300.10.15.1.s390x.rpm git-web-2.35.3-150300.10.15.1.s390x.rpm gitk-2.35.3-150300.10.15.1.s390x.rpm perl-Git-2.35.3-150300.10.15.1.s390x.rpm git-2.35.3-150300.10.15.1.ppc64le.rpm git-arch-2.35.3-150300.10.15.1.ppc64le.rpm git-core-2.35.3-150300.10.15.1.ppc64le.rpm git-credential-gnome-keyring-2.35.3-150300.10.15.1.ppc64le.rpm git-credential-libsecret-2.35.3-150300.10.15.1.ppc64le.rpm git-cvs-2.35.3-150300.10.15.1.ppc64le.rpm git-daemon-2.35.3-150300.10.15.1.ppc64le.rpm git-email-2.35.3-150300.10.15.1.ppc64le.rpm git-gui-2.35.3-150300.10.15.1.ppc64le.rpm git-p4-2.35.3-150300.10.15.1.ppc64le.rpm git-svn-2.35.3-150300.10.15.1.ppc64le.rpm git-web-2.35.3-150300.10.15.1.ppc64le.rpm gitk-2.35.3-150300.10.15.1.ppc64le.rpm perl-Git-2.35.3-150300.10.15.1.ppc64le.rpm git-2.35.3-150300.10.15.1.aarch64.rpm git-arch-2.35.3-150300.10.15.1.aarch64.rpm git-core-2.35.3-150300.10.15.1.aarch64.rpm git-credential-gnome-keyring-2.35.3-150300.10.15.1.aarch64.rpm git-credential-libsecret-2.35.3-150300.10.15.1.aarch64.rpm git-cvs-2.35.3-150300.10.15.1.aarch64.rpm git-daemon-2.35.3-150300.10.15.1.aarch64.rpm git-email-2.35.3-150300.10.15.1.aarch64.rpm git-gui-2.35.3-150300.10.15.1.aarch64.rpm git-p4-2.35.3-150300.10.15.1.aarch64.rpm git-svn-2.35.3-150300.10.15.1.aarch64.rpm git-web-2.35.3-150300.10.15.1.aarch64.rpm gitk-2.35.3-150300.10.15.1.aarch64.rpm perl-Git-2.35.3-150300.10.15.1.aarch64.rpm openSUSE-SLE-15.4-2022-2874 moderate SUSE Updates openSUSE-SLE 15.4 This update for perl-HTTP-Daemon fixes the following issues: - CVE-2022-31081: Fixed request smuggling in HTTP::Daemon (bsc#1201157). perl-HTTP-Daemon-6.01-150000.3.5.1.noarch.rpm perl-HTTP-Daemon-6.01-150000.3.5.1.src.rpm openSUSE-SLE-15.4-2022-2752 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-codecov fixes the following issues: - CVE-2019-10800: Fixed sanitization of gcov arguments before being being provided to the popen method (bsc#1201494). python-codecov-2.0.15-150100.3.3.1.src.rpm python3-codecov-2.0.15-150100.3.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2532 important SUSE Updates openSUSE-SLE 15.4 This update for python-M2Crypto fixes the following issues: - CVE-2020-25657: Fixed Bleichenbacher timing attacks in the RSA decryption API (bsc#1178829). python-M2Crypto-0.38.0-150400.3.3.1.src.rpm python-M2Crypto-doc-0.38.0-150400.3.3.1.noarch.rpm python3-M2Crypto-0.38.0-150400.3.3.1.x86_64.rpm python3-M2Crypto-0.38.0-150400.3.3.1.s390x.rpm python3-M2Crypto-0.38.0-150400.3.3.1.ppc64le.rpm python3-M2Crypto-0.38.0-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2818 important SUSE Updates openSUSE-SLE 15.4 This update for ceph fixes the following issues: - Update to 16.2.9-536-g41a9f9a5573: + (bsc#1195359, bsc#1200553) rgw: check bucket shard init status in RGWRadosBILogTrimCR + (bsc#1194131) ceph-volume: honour osd_dmcrypt_key_size option (CVE-2021-3979) - Update to 16.2.9-158-gd93952c7eea: + cmake: check for python(\d)\.(\d+) when building boost + make-dist: patch boost source to support python 3.10 - Update to ceph-16.2.9-58-ge2e5cb80063: + (bsc#1200064, pr#480) Remove last vestiges of docker.io image paths - Update to 16.2.9.50-g7d9f12156fb: + (jsc#SES-2515) High-availability NFS export + (bsc#1196044) cephadm: prometheus: The generatorURL in alerts is only using hostname + (bsc#1196785) cephadm: avoid crashing on expected non-zero exit - Update to 16.2.7-969-g6195a460d89 + (jsc#SES-2515) High-availability NFS export ceph-16.2.9.536+g41a9f9a5573-150400.3.3.1.src.rpm ceph-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-base-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-common-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-fuse-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-grafana-dashboards-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm ceph-immutable-object-cache-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-mds-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-mgr-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-mgr-cephadm-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm ceph-mgr-dashboard-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm ceph-mgr-diskprediction-local-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm ceph-mgr-k8sevents-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm ceph-mgr-modules-core-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm ceph-mgr-rook-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm ceph-mon-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-osd-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-prometheus-alerts-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm ceph-radosgw-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-test-16.2.9.536+g41a9f9a5573-150400.3.3.1.src.rpm ceph-test-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm cephadm-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm cephfs-mirror-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm cephfs-shell-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm cephfs-top-16.2.9.536+g41a9f9a5573-150400.3.3.1.noarch.rpm libcephfs-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm libcephfs2-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm libcephsqlite-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm libcephsqlite-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm librados-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm librados2-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm libradospp-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm librbd-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm librbd1-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm librgw-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm librgw2-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm python3-ceph-argparse-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm python3-ceph-common-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm python3-cephfs-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm python3-rados-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm python3-rbd-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm python3-rgw-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm rados-objclass-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm rbd-fuse-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm rbd-mirror-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm rbd-nbd-16.2.9.536+g41a9f9a5573-150400.3.3.1.x86_64.rpm ceph-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-base-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-common-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-fuse-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-immutable-object-cache-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-mds-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-mgr-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-mon-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-osd-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-radosgw-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm cephfs-mirror-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm cephfs-shell-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm libcephfs-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm libcephfs2-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm libcephsqlite-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm libcephsqlite-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm librados-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm librados2-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm libradospp-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm librbd-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm librbd1-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm librgw-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm librgw2-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm python3-ceph-argparse-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm python3-ceph-common-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm python3-cephfs-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm python3-rados-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm python3-rbd-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm python3-rgw-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm rados-objclass-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm rbd-fuse-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm rbd-mirror-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm rbd-nbd-16.2.9.536+g41a9f9a5573-150400.3.3.1.s390x.rpm ceph-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-base-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-common-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-fuse-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-immutable-object-cache-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-mds-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-mgr-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-mon-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-osd-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-radosgw-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm cephfs-mirror-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm cephfs-shell-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm libcephfs-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm libcephfs2-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm libcephsqlite-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm libcephsqlite-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm librados-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm librados2-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm libradospp-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm librbd-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm librbd1-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm librgw-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm librgw2-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm python3-ceph-argparse-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm python3-ceph-common-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm python3-cephfs-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm python3-rados-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm python3-rbd-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm python3-rgw-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm rados-objclass-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm rbd-fuse-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm rbd-mirror-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm rbd-nbd-16.2.9.536+g41a9f9a5573-150400.3.3.1.ppc64le.rpm ceph-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-base-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-common-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-fuse-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-immutable-object-cache-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-mds-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-mgr-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-mon-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-osd-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm ceph-radosgw-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm cephfs-mirror-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm cephfs-shell-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm libcephfs-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm libcephfs2-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm libcephsqlite-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm libcephsqlite-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm librados-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm librados2-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm libradospp-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm librbd-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm librbd1-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm librgw-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm librgw2-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm python3-ceph-argparse-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm python3-ceph-common-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm python3-cephfs-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm python3-rados-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm python3-rbd-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm python3-rgw-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm rados-objclass-devel-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm rbd-fuse-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm rbd-mirror-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm rbd-nbd-16.2.9.536+g41a9f9a5573-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2756 moderate SUSE Updates openSUSE-SLE 15.4 This update for rust-cbindgen fixes the following issues: rust-cbindgen was updated to version 0.23.0+git0: * constant: Make const.allow_constexpr default to true. * constant: Allow more constexpr constants. * Update syn dependency to at least 1.0.88 Update to version 0.22.0+git0: * Support rename rule for union body members. * constant: Add support for other expressions WebRender uses. * constant: Add support for associated constant expressions. * Fix regression in CamelCase rename rule (should be lowerCamelCase) * enumeration: simplify standard types in variants. * Avoid generating and writing bindings when called recursively * Cython: Omit per-variant tags in unions generated for Rust enums * Update various dependencies. * v0.21.0 Update to version 0.21.0+git0: * Remove etesync from readme. * Update docs.md * Remove wgpu-native from users. * Address clippy lint. * unraw the identifiers * Silence some dead_code warnings. Update to version 0.20.0+git0: * Don't use `check` profile when expanding code on a release build * Update --pretty=expanded to -Zunpretty=expanded * Fix some clippy lints. * Simplify Pin<T> to T * add `Builder::with_using_namespaces` * Ignore PhantomPinned * Move the target-guessing code from #676 to its own function. * Only fetch dependencies for current platform by default (#676) - Update vendored dependencies to resolve potential memory corruption in dependency ( RUSTSEC-2021-0003 ) rust-cbindgen-0.23.0+git0-150000.1.12.1.src.rpm rust-cbindgen-0.23.0+git0-150000.1.12.1.x86_64.rpm rust-cbindgen-0.23.0+git0-150000.1.12.1.s390x.rpm rust-cbindgen-0.23.0+git0-150000.1.12.1.ppc64le.rpm rust-cbindgen-0.23.0+git0-150000.1.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-2717 moderate SUSE Updates openSUSE-SLE 15.4 This update for ncurses fixes the following issues: - CVE-2022-29458: Fixed segfaulting out-of-bounds read in convert_strings in tinfo/read_entry.c (bsc#1198627). libncurses5-32bit-6.1-150000.5.12.1.x86_64.rpm libncurses5-6.1-150000.5.12.1.x86_64.rpm libncurses6-32bit-6.1-150000.5.12.1.x86_64.rpm libncurses6-6.1-150000.5.12.1.x86_64.rpm ncurses-6.1-150000.5.12.1.src.rpm ncurses-devel-32bit-6.1-150000.5.12.1.x86_64.rpm ncurses-devel-6.1-150000.5.12.1.x86_64.rpm ncurses-utils-6.1-150000.5.12.1.x86_64.rpm ncurses5-devel-32bit-6.1-150000.5.12.1.x86_64.rpm ncurses5-devel-6.1-150000.5.12.1.x86_64.rpm tack-6.1-150000.5.12.1.x86_64.rpm terminfo-6.1-150000.5.12.1.x86_64.rpm terminfo-base-6.1-150000.5.12.1.x86_64.rpm terminfo-iterm-6.1-150000.5.12.1.x86_64.rpm terminfo-screen-6.1-150000.5.12.1.x86_64.rpm libncurses5-6.1-150000.5.12.1.s390x.rpm libncurses6-6.1-150000.5.12.1.s390x.rpm ncurses-devel-6.1-150000.5.12.1.s390x.rpm ncurses-utils-6.1-150000.5.12.1.s390x.rpm ncurses5-devel-6.1-150000.5.12.1.s390x.rpm tack-6.1-150000.5.12.1.s390x.rpm terminfo-6.1-150000.5.12.1.s390x.rpm terminfo-base-6.1-150000.5.12.1.s390x.rpm terminfo-iterm-6.1-150000.5.12.1.s390x.rpm terminfo-screen-6.1-150000.5.12.1.s390x.rpm libncurses5-6.1-150000.5.12.1.ppc64le.rpm libncurses6-6.1-150000.5.12.1.ppc64le.rpm ncurses-devel-6.1-150000.5.12.1.ppc64le.rpm ncurses-utils-6.1-150000.5.12.1.ppc64le.rpm ncurses5-devel-6.1-150000.5.12.1.ppc64le.rpm tack-6.1-150000.5.12.1.ppc64le.rpm terminfo-6.1-150000.5.12.1.ppc64le.rpm terminfo-base-6.1-150000.5.12.1.ppc64le.rpm terminfo-iterm-6.1-150000.5.12.1.ppc64le.rpm terminfo-screen-6.1-150000.5.12.1.ppc64le.rpm libncurses5-6.1-150000.5.12.1.aarch64.rpm libncurses6-6.1-150000.5.12.1.aarch64.rpm ncurses-devel-6.1-150000.5.12.1.aarch64.rpm ncurses-utils-6.1-150000.5.12.1.aarch64.rpm ncurses5-devel-6.1-150000.5.12.1.aarch64.rpm tack-6.1-150000.5.12.1.aarch64.rpm terminfo-6.1-150000.5.12.1.aarch64.rpm terminfo-base-6.1-150000.5.12.1.aarch64.rpm terminfo-iterm-6.1-150000.5.12.1.aarch64.rpm terminfo-screen-6.1-150000.5.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-2493 moderate SUSE Updates openSUSE-SLE 15.4 This update for rpm-config-SUSE fixes the following issues: - Add SBAT values macros for other packages (bsc#1193282) rpm-config-SUSE-1-150400.14.3.1.noarch.rpm rpm-config-SUSE-1-150400.14.3.1.src.rpm openSUSE-SLE-15.4-2022-2588 moderate SUSE Updates openSUSE-SLE 15.4 This update for fence-agents fixes the following issue: - Azure fence agent doesn't work correctly on SLES15 SP3 - fence_azure_arm fails with error 'MSIAuthentication' object has no attribute 'get_token' (bsc#1195891) fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.src.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.x86_64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.14.1.x86_64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.14.1.x86_64.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.s390x.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.14.1.s390x.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.14.1.s390x.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.ppc64le.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.14.1.ppc64le.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.14.1.ppc64le.rpm fence-agents-4.9.0+git.1624456340.8d746be9-150300.3.14.1.aarch64.rpm fence-agents-amt_ws-4.9.0+git.1624456340.8d746be9-150300.3.14.1.aarch64.rpm fence-agents-devel-4.9.0+git.1624456340.8d746be9-150300.3.14.1.aarch64.rpm openSUSE-SLE-15.4-2022-2677 important SUSE Updates openSUSE-SLE 15.4 This update for hwinfo fixes the following issues: - Keep NVMe's namespace output consistency when the option `nvme_core.multipath=1` (bsc#1199948) hwinfo-21.82-150400.3.3.1.src.rpm hwinfo-21.82-150400.3.3.1.x86_64.rpm hwinfo-devel-21.82-150400.3.3.1.x86_64.rpm hwinfo-21.82-150400.3.3.1.s390x.rpm hwinfo-devel-21.82-150400.3.3.1.s390x.rpm hwinfo-21.82-150400.3.3.1.ppc64le.rpm hwinfo-devel-21.82-150400.3.3.1.ppc64le.rpm hwinfo-21.82-150400.3.3.1.aarch64.rpm hwinfo-devel-21.82-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2795 moderate SUSE Updates openSUSE-SLE 15.4 This optional update provides the following changes: - Fix grafana missing binaries in SUSE Linux Enterprise Desktop 15 Service Pack 4 via PackageHub (bsc#1201055) - Affected source packages: grafana grafana-piechart-panel grafana-status-panel system-user-grafana grafana-8.3.5-150200.3.23.1.src.rpm grafana-8.3.5-150200.3.23.1.x86_64.rpm grafana-piechart-panel-1.6.1-150200.3.8.1.noarch.rpm grafana-piechart-panel-1.6.1-150200.3.8.1.src.rpm grafana-status-panel-1.0.11-150200.3.10.1.noarch.rpm grafana-status-panel-1.0.11-150200.3.10.1.src.rpm system-user-grafana-1.0.0-150200.5.5.1.noarch.rpm system-user-grafana-1.0.0-150200.5.5.1.src.rpm grafana-8.3.5-150200.3.23.1.s390x.rpm grafana-8.3.5-150200.3.23.1.ppc64le.rpm grafana-8.3.5-150200.3.23.1.aarch64.rpm openSUSE-SLE-15.4-2022-2494 important SUSE Updates openSUSE-SLE 15.4 This update for glibc fixes the following issues: - Remove tunables from static tls surplus patch which caused crashes (bsc#1200855) - i386: Disable check_consistency for GCC 5 and above (bsc#1201640, BZ #25788) glibc-2.31-150300.37.1.src.rpm glibc-2.31-150300.37.1.x86_64.rpm glibc-32bit-2.31-150300.37.1.x86_64.rpm glibc-devel-2.31-150300.37.1.x86_64.rpm glibc-devel-32bit-2.31-150300.37.1.x86_64.rpm glibc-devel-static-2.31-150300.37.1.x86_64.rpm glibc-devel-static-32bit-2.31-150300.37.1.x86_64.rpm glibc-extra-2.31-150300.37.1.x86_64.rpm glibc-html-2.31-150300.37.1.noarch.rpm glibc-i18ndata-2.31-150300.37.1.noarch.rpm glibc-info-2.31-150300.37.1.noarch.rpm glibc-lang-2.31-150300.37.1.noarch.rpm glibc-locale-2.31-150300.37.1.x86_64.rpm glibc-locale-base-2.31-150300.37.1.x86_64.rpm glibc-locale-base-32bit-2.31-150300.37.1.x86_64.rpm glibc-profile-2.31-150300.37.1.x86_64.rpm glibc-profile-32bit-2.31-150300.37.1.x86_64.rpm glibc-utils-2.31-150300.37.1.x86_64.rpm glibc-utils-32bit-2.31-150300.37.1.x86_64.rpm glibc-utils-src-2.31-150300.37.1.src.rpm nscd-2.31-150300.37.1.x86_64.rpm glibc-2.31-150300.37.1.s390x.rpm glibc-devel-2.31-150300.37.1.s390x.rpm glibc-devel-static-2.31-150300.37.1.s390x.rpm glibc-extra-2.31-150300.37.1.s390x.rpm glibc-locale-2.31-150300.37.1.s390x.rpm glibc-locale-base-2.31-150300.37.1.s390x.rpm glibc-profile-2.31-150300.37.1.s390x.rpm glibc-utils-2.31-150300.37.1.s390x.rpm nscd-2.31-150300.37.1.s390x.rpm glibc-2.31-150300.37.1.ppc64le.rpm glibc-devel-2.31-150300.37.1.ppc64le.rpm glibc-devel-static-2.31-150300.37.1.ppc64le.rpm glibc-extra-2.31-150300.37.1.ppc64le.rpm glibc-locale-2.31-150300.37.1.ppc64le.rpm glibc-locale-base-2.31-150300.37.1.ppc64le.rpm glibc-profile-2.31-150300.37.1.ppc64le.rpm glibc-utils-2.31-150300.37.1.ppc64le.rpm nscd-2.31-150300.37.1.ppc64le.rpm glibc-2.31-150300.37.1.aarch64.rpm glibc-devel-2.31-150300.37.1.aarch64.rpm glibc-devel-static-2.31-150300.37.1.aarch64.rpm glibc-extra-2.31-150300.37.1.aarch64.rpm glibc-locale-2.31-150300.37.1.aarch64.rpm glibc-locale-base-2.31-150300.37.1.aarch64.rpm glibc-profile-2.31-150300.37.1.aarch64.rpm glibc-utils-2.31-150300.37.1.aarch64.rpm nscd-2.31-150300.37.1.aarch64.rpm openSUSE-SLE-15.4-2022-2650 important SUSE Updates openSUSE-SLE 15.4 This update for java-1_8_0-ibm fixes the following issues: Update to Java 8.0 Service Refresh 7 Fix Pack 10 [bsc#1201643] - CVE-2022-21476 (bsc#1198671), CVE-2022-21449 (bsc#1198670), CVE-2022-21496 (bsc#1198673), CVE-2022-21434 (bsc#1198674), CVE-2022-21426 (bsc#1198672), CVE-2022-21443 (bsc#1198675), CVE-2021-35561 (bsc#1191912), CVE-2022-21299 (bsc#1194931). java-1_8_0-ibm-1.8.0_sr7.10-150000.3.59.1.nosrc.rpm java-1_8_0-ibm-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-32bit-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-alsa-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-demo-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-devel-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-devel-32bit-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-plugin-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-src-1.8.0_sr7.10-150000.3.59.1.x86_64.rpm java-1_8_0-ibm-1.8.0_sr7.10-150000.3.59.1.s390x.rpm java-1_8_0-ibm-demo-1.8.0_sr7.10-150000.3.59.1.s390x.rpm java-1_8_0-ibm-devel-1.8.0_sr7.10-150000.3.59.1.s390x.rpm java-1_8_0-ibm-src-1.8.0_sr7.10-150000.3.59.1.s390x.rpm java-1_8_0-ibm-1.8.0_sr7.10-150000.3.59.1.ppc64le.rpm java-1_8_0-ibm-demo-1.8.0_sr7.10-150000.3.59.1.ppc64le.rpm java-1_8_0-ibm-devel-1.8.0_sr7.10-150000.3.59.1.ppc64le.rpm java-1_8_0-ibm-src-1.8.0_sr7.10-150000.3.59.1.ppc64le.rpm openSUSE-SLE-15.4-2022-2597 important SUSE Updates openSUSE-SLE 15.4 This update for xen fixes the following issues: - CVE-2022-26363, CVE-2022-26364: Fixed insufficient care with non-coherent mappings (XSA-402) (bsc#1199966). - CVE-2022-21123, CVE-2022-21125, CVE-2022-21166: Fixed MMIO stale data vulnerabilities on x86 (XSA-404) (bsc#1200549). - CVE-2022-26362: Fixed a race condition in typeref acquisition (XSA-401) (bsc#1199965). - CVE-2022-33745: Fixed insufficient TLB flush for x86 PV guests in shadow mode (XSA-408) (bsc#1201394). - CVE-2022-23816, CVE-2022-23825, CVE-2022-29900: Fixed RETBLEED vulnerability, arbitrary speculative code execution with return instructions (XSA-407) (bsc#1201469). Fixed several upstream bugs (bsc#1027519). xen-4.16.1_06-150400.4.8.1.src.rpm True xen-4.16.1_06-150400.4.8.1.x86_64.rpm True xen-devel-4.16.1_06-150400.4.8.1.x86_64.rpm True xen-doc-html-4.16.1_06-150400.4.8.1.x86_64.rpm True xen-libs-32bit-4.16.1_06-150400.4.8.1.x86_64.rpm True xen-libs-4.16.1_06-150400.4.8.1.x86_64.rpm True xen-tools-4.16.1_06-150400.4.8.1.x86_64.rpm True xen-tools-domU-4.16.1_06-150400.4.8.1.x86_64.rpm True xen-tools-xendomains-wait-disk-4.16.1_06-150400.4.8.1.noarch.rpm True xen-4.16.1_06-150400.4.8.1.aarch64.rpm True xen-devel-4.16.1_06-150400.4.8.1.aarch64.rpm True xen-doc-html-4.16.1_06-150400.4.8.1.aarch64.rpm True xen-libs-4.16.1_06-150400.4.8.1.aarch64.rpm True xen-tools-4.16.1_06-150400.4.8.1.aarch64.rpm True xen-tools-domU-4.16.1_06-150400.4.8.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2566 important SUSE Updates openSUSE-SLE 15.4 This update for pcre2 fixes the following issues: - CVE-2022-1587: Fixed out-of-bounds read due to bug in recursions (bsc#1199235). libpcre2-16-0-10.39-150400.4.6.1.x86_64.rpm libpcre2-16-0-32bit-10.39-150400.4.6.1.x86_64.rpm libpcre2-32-0-10.39-150400.4.6.1.x86_64.rpm libpcre2-32-0-32bit-10.39-150400.4.6.1.x86_64.rpm libpcre2-8-0-10.39-150400.4.6.1.x86_64.rpm libpcre2-8-0-32bit-10.39-150400.4.6.1.x86_64.rpm libpcre2-posix2-10.39-150400.4.6.1.x86_64.rpm libpcre2-posix2-32bit-10.39-150400.4.6.1.x86_64.rpm pcre2-10.39-150400.4.6.1.src.rpm pcre2-devel-10.39-150400.4.6.1.x86_64.rpm pcre2-devel-static-10.39-150400.4.6.1.x86_64.rpm pcre2-doc-10.39-150400.4.6.1.noarch.rpm pcre2-tools-10.39-150400.4.6.1.x86_64.rpm libpcre2-16-0-10.39-150400.4.6.1.s390x.rpm libpcre2-32-0-10.39-150400.4.6.1.s390x.rpm libpcre2-8-0-10.39-150400.4.6.1.s390x.rpm libpcre2-posix2-10.39-150400.4.6.1.s390x.rpm pcre2-devel-10.39-150400.4.6.1.s390x.rpm pcre2-devel-static-10.39-150400.4.6.1.s390x.rpm pcre2-tools-10.39-150400.4.6.1.s390x.rpm libpcre2-16-0-10.39-150400.4.6.1.ppc64le.rpm libpcre2-32-0-10.39-150400.4.6.1.ppc64le.rpm libpcre2-8-0-10.39-150400.4.6.1.ppc64le.rpm libpcre2-posix2-10.39-150400.4.6.1.ppc64le.rpm pcre2-devel-10.39-150400.4.6.1.ppc64le.rpm pcre2-devel-static-10.39-150400.4.6.1.ppc64le.rpm pcre2-tools-10.39-150400.4.6.1.ppc64le.rpm libpcre2-16-0-10.39-150400.4.6.1.aarch64.rpm libpcre2-32-0-10.39-150400.4.6.1.aarch64.rpm libpcre2-8-0-10.39-150400.4.6.1.aarch64.rpm libpcre2-posix2-10.39-150400.4.6.1.aarch64.rpm pcre2-devel-10.39-150400.4.6.1.aarch64.rpm pcre2-devel-static-10.39-150400.4.6.1.aarch64.rpm pcre2-tools-10.39-150400.4.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-2681 low SUSE Updates openSUSE-SLE 15.4 This update for wavpack fixes the following issues: - CVE-2022-2476: Fixed a Null pointer dereference in wvunpack (bsc#1201716). libwavpack1-32bit-5.4.0-150000.4.15.1.x86_64.rpm libwavpack1-5.4.0-150000.4.15.1.x86_64.rpm wavpack-5.4.0-150000.4.15.1.src.rpm wavpack-5.4.0-150000.4.15.1.x86_64.rpm wavpack-devel-5.4.0-150000.4.15.1.x86_64.rpm libwavpack1-5.4.0-150000.4.15.1.s390x.rpm wavpack-5.4.0-150000.4.15.1.s390x.rpm wavpack-devel-5.4.0-150000.4.15.1.s390x.rpm libwavpack1-5.4.0-150000.4.15.1.ppc64le.rpm wavpack-5.4.0-150000.4.15.1.ppc64le.rpm wavpack-devel-5.4.0-150000.4.15.1.ppc64le.rpm libwavpack1-5.4.0-150000.4.15.1.aarch64.rpm wavpack-5.4.0-150000.4.15.1.aarch64.rpm wavpack-devel-5.4.0-150000.4.15.1.aarch64.rpm openSUSE-SLE-15.4-2022-2549 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-29900, CVE-2022-29901: Fixed the RETBLEED attack, a new Spectre like Branch Target Buffer attack, that can leak arbitrary kernel information (bsc#1199657). - CVE-2022-34918: Fixed a buffer overflow with nft_set_elem_init() that could be used by a local attacker to escalate privileges (bnc#1201171). - CVE-2021-26341: Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage (bsc#1201050). - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages (bsc#1199487). - CVE-2022-20132: Fixed out of bounds read due to improper input validation in lg_probe and related functions of hid-lg.c (bsc#1200619). - CVE-2022-1012: Fixed information leak caused by small table perturb size in the TCP source port generation algorithm (bsc#1199482). - CVE-2022-33981: Fixed use-after-free in floppy driver (bsc#1200692) - CVE-2022-20141: Fixed a possible use after free due to improper locking in ip_check_mc_rcu() (bsc#1200604). - CVE-2021-4157: Fixed an out of memory bounds write flaw in the NFS subsystem, related to the replication of files with NFS. A user could potentially crash the system or escalate privileges on the system (bsc#1194013). - CVE-2022-20154: Fixed a use after free due to a race condition in lock_sock_nested of sock.c. This could lead to local escalation of privilege with System execution privileges needed (bsc#1200599). The following non-security bugs were fixed: - ALSA: hda/conexant: Fix missing beep setup (git-fixes). - ALSA: hda/realtek - Add HW8326 support (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo PD70PNT (git-fixes). - ALSA: hda/realtek - ALC897 headset MIC no sound (git-fixes). - ALSA: hda/via: Fix missing beep setup (git-fixes). - arm64: dts: rockchip: Move drive-impedance-ohm to emmc phy on rk3399 (git-fixes) - arm64: ftrace: fix branch range checks (git-fixes) - ASoC: cs35l36: Update digital volume TLV (git-fixes). - ASoC: cs42l52: Correct TLV for Bypass Volume (git-fixes). - ASoC: cs42l52: Fix TLV scales for mixer controls (git-fixes). - ASoC: cs42l56: Correct typo in minimum level for SX volume controls (git-fixes). - ASoC: cs53l30: Correct number of volume levels on SX controls (git-fixes). - ASoC: es8328: Fix event generation for deemphasis control (git-fixes). - ASoC: nau8822: Add operation for internal PLL off and on (git-fixes). - ASoC: wm8962: Fix suspend while playing music (git-fixes). - ASoC: wm_adsp: Fix event generation for wm_adsp_fw_put() (git-fixes). - ata: libata: add qc->flags in ata_qc_complete_template tracepoint (git-fixes). - ata: libata-core: fix NULL pointer deref in ata_host_alloc_pinfo() (git-fixes). - bcache: avoid journal no-space deadlock by reserving 1 journal bucket (git-fixes). - bcache: avoid unnecessary soft lockup in kworker update_writeback_rate() (bsc#1197362). - bcache: fixup multiple threads crash (git-fixes). - bcache: improve multithreaded bch_btree_check() (git-fixes). - bcache: improve multithreaded bch_sectors_dirty_init() (git-fixes). - bcache: memset on stack variables in bch_btree_check() and bch_sectors_dirty_init() (git-fixes). - bcache: remove incremental dirty sector counting for bch_sectors_dirty_init() (git-fixes). - bio: fix page leak bio_add_hw_page failure (git-fixes). - blk-cgroup: fix a hd_struct leak in blkcg_fill_root_iostats (git-fixes). - blk-iolatency: Fix inflight count imbalances and IO hangs on offline (bsc#1200825). - blk-mq: clear active_queues before clearing BLK_MQ_F_TAG_QUEUE_SHARED (bsc#1200263). - blk-mq: do not update io_ticks with passthrough requests (bsc#1200816). - blk-mq: drop workarounds for cpu hotplug queue management (bsc#1185762) - blk-mq: update hctx->dispatch_busy in case of real scheduler (git-fixes). - block: advance iov_iter on bio_add_hw_page failure (git-fixes). - block: do not merge across cgroup boundaries if blkcg is enabled (bsc#1198020). - block: Fix handling of offline queues in blk_mq_alloc_request_hctx() (bsc#1185762). - block: Fix kABI in blk-merge.c (bsc#1198020). - block/keyslot-manager: prevent crash when num_slots=1 (git-fixes). - bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() (git-fixes). - caif_virtio: fix race between virtio_device_ready() and ndo_open() (git-fixes). - ceph: add some lockdep assertions around snaprealm handling (bsc#1201147). - ceph: clean up locking annotation for ceph_get_snap_realm and __lookup_snap_realm (bsc#1201149). - certs/blacklist_hashes.c: fix const confusion in certs blacklist (git-fixes). - cifs: add WARN_ON for when chan_count goes below minimum (bsc#1200217). - cifs: adjust DebugData to use chans_need_reconnect for conn status (bsc#1200217). - cifs: alloc_path_with_tree_prefix: do not append sep. if the path is empty (bsc#1200217). - cifs: avoid parallel session setups on same channel (bsc#1200217). - cifs: avoid race during socket reconnect between send and recv (bsc#1200217). - cifs: call cifs_reconnect when a connection is marked (bsc#1200217). - cifs: call helper functions for marking channels for reconnect (bsc#1200217). - cifs: change smb2_query_info_compound to use a cached fid, if available (bsc#1200217). - cifs: check for smb1 in open_cached_dir() (bsc#1200217). - cifs: check reconnects for channels of active tcons too (bsc#1200217). - cifs: Check the IOCB_DIRECT flag, not O_DIRECT (bsc#1200217). - cifs: cifs_ses_mark_for_reconnect should also update reconnect bits (bsc#1200217). - cifs: clean up an inconsistent indenting (bsc#1200217). - cifs: destage any unwritten data to the server before calling copychunk_write (bsc#1200217). - cifs: do not build smb1ops if legacy support is disabled (bsc#1200217). - cifs: do not call cifs_dfs_query_info_nonascii_quirk() if nodfs was set (bsc#1200217). - cifs: do not use tcpStatus after negotiate completes (bsc#1200217). - cifs: do not use uninitialized data in the owner/group sid (bsc#1200217). - cifs: fix confusing unneeded warning message on smb2.1 and earlier (bsc#1200217). - cifs: fix double free race when mount fails in cifs_get_root() (bsc#1200217). - cifs: fix FILE_BOTH_DIRECTORY_INFO definition (bsc#1200217). - cifs: fix handlecache and multiuser (bsc#1200217). - cifs: fix hang on cifs_get_next_mid() (bsc#1200217). - cifs: fix incorrect use of list iterator after the loop (bsc#1200217). - cifs: fix minor compile warning (bsc#1200217). - cifs: fix missed refcounting of ipc tcon (bsc#1200217). - cifs: fix ntlmssp auth when there is no key exchange (bsc#1200217). - cifs: fix NULL ptr dereference in refresh_mounts() (bsc#1200217). - cifs: fix potential deadlock in direct reclaim (bsc#1200217). - cifs: fix potential double free during failed mount (bsc#1200217). - cifs: fix potential race with cifsd thread (bsc#1200217). - cifs: fix set of group SID via NTSD xattrs (bsc#1200217). - cifs: fix signed integer overflow when fl_end is OFFSET_MAX (bsc#1200217). - cifs: Fix smb311_update_preauth_hash() kernel-doc comment (bsc#1200217). - cifs: fix the cifs_reconnect path for DFS (bsc#1200217). - cifs: fix the connection state transitions with multichannel (bsc#1200217). - cifs: fix uninitialized pointer in error case in dfs_cache_get_tgt_share (bsc#1200217). - cifs: fix workstation_name for multiuser mounts (bsc#1200217). - cifs: force new session setup and tcon for dfs (bsc#1200217). - cifs: free ntlmsspblob allocated in negotiate (bsc#1200217). - cifs: ignore resource_id while getting fscache super cookie (bsc#1200217). - cifs: maintain a state machine for tcp/smb/tcon sessions (bsc#1200217). - cifs: make status checks in version independent callers (bsc#1200217). - cifs: mark sessions for reconnection in helper function (bsc#1200217). - cifs: modefromsids must add an ACE for authenticated users (bsc#1200217). - cifs: move definition of cifs_fattr earlier in cifsglob.h (bsc#1200217). - cifs: move superblock magic defitions to magic.h (bsc#1200217). - cifs: potential buffer overflow in handling symlinks (bsc#1200217). - cifs: print TIDs as hex (bsc#1200217). - cifs: protect all accesses to chan_* with chan_lock (bsc#1200217). - cifs: quirk for STATUS_OBJECT_NAME_INVALID returned for non-ASCII dfs refs (bsc#1200217). - cifs: reconnect only the connection and not smb session where possible (bsc#1200217). - cifs: release cached dentries only if mount is complete (bsc#1200217). - cifs: remove check of list iterator against head past the loop body (bsc#1200217). - cifs: remove redundant assignment to pointer p (bsc#1200217). - cifs: remove repeated debug message on cifs_put_smb_ses() (bsc#1200217). - cifs: remove repeated state change in dfs tree connect (bsc#1200217). - cifs: remove unused variable ses_selected (bsc#1200217). - cifs: return ENOENT for DFS lookup_cache_entry() (bsc#1200217). - cifs: return the more nuanced writeback error on close() (bsc#1200217). - cifs: sanitize multiple delimiters in prepath (bsc#1200217). - cifs: serialize all mount attempts (bsc#1200217). - cifs: set the CREATE_NOT_FILE when opening the directory in use_cached_dir() (bsc#1200217). - cifs: skip trailing separators of prefix paths (bsc#1200217). - cifs: smbd: fix typo in comment (bsc#1200217). - cifs: Split the smb3_add_credits tracepoint (bsc#1200217). - cifs: take cifs_tcp_ses_lock for status checks (bsc#1200217). - cifs: track individual channel status using chans_need_reconnect (bsc#1200217). - cifs: unlock chan_lock before calling cifs_put_tcp_session (bsc#1200217). - cifs: update internal module number (bsc#1193629). - cifs: update internal module number (bsc#1200217). - cifs: update tcpStatus during negotiate and sess setup (bsc#1200217). - cifs: use a different reconnect helper for non-cifsd threads (bsc#1200217). - cifs: use correct lock type in cifs_reconnect() (bsc#1200217). - cifs: Use kzalloc instead of kmalloc/memset (bsc#1200217). - cifs: use new enum for ses_status (bsc#1200217). - cifs: use the chans_need_reconnect bitmap for reconnect status (bsc#1200217). - cifs: verify that tcon is valid before dereference in cifs_kill_sb (bsc#1200217). - cifs: version operations for smb20 unneeded when legacy support disabled (bsc#1200217). - cifs: wait for tcon resource_id before getting fscache super (bsc#1200217). - cifs: we do not need a spinlock around the tree access during umount (bsc#1200217). - cifs: when extending a file with falloc we should make files not-sparse (bsc#1200217). - drivers: cpufreq: Add missing of_node_put() in qoriq-cpufreq.c (git-fixes). - drm/i915/reset: Fix error_state_read ptr + offset use (git-fixes). - drm/i915: Update TGL and RKL DMC firmware versions (bsc#1198924). - drm/msm: Fix double pm_runtime_disable() call (git-fixes). - drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf (git-fixes). - drm/sun4i: Fix crash during suspend after component bind failure (git-fixes). - exec: Force single empty string when argv is empty (bsc#1200571). - ext4: add check to prevent attempting to resize an fs with sparse_super2 (bsc#1197754). - ext4: fix bug_on ext4_mb_use_inode_pa (bsc#1200810). - ext4: fix bug_on in __es_tree_search (bsc#1200809). - ext4: fix race condition between ext4_write and ext4_convert_inline_data (bsc#1200807). - ext4: limit length to bitmap_maxbytes - blocksize in punch_hole (bsc#1200806). - ext4: make variable "count" signed (bsc#1200820). - Fix a warning about a malformed kernel doc comment in cifs (bsc#1200217). - fuse: annotate lock in fuse_reverse_inval_entry() (bsc#1201143). - gpio: winbond: Fix error code in winbond_gpio_get() (git-fixes). - gtp: use icmp_ndo_send helper (git-fixes). - hwmon: (ibmaem) do not call platform_device_del() if platform_device_add() fails (git-fixes). - i2c: designware: Use standard optional ref clock implementation (git-fixes). - ibmvnic: Properly dispose of all skbs during a failover (bsc#1200925). - iio:accel:bma180: rearrange iio trigger get and register (git-fixes). - iio: accel: mma8452: ignore the return value of reset operation (git-fixes). - iio: adc: axp288: Override TS pin bias current for some models (git-fixes). - iio: adc: vf610: fix conversion mode sysfs node name (git-fixes). - iio:chemical:ccs811: rearrange iio trigger get and register (git-fixes). - iio: gyro: mpu3050: Fix the error handling in mpu3050_power_up() (git-fixes). - iio: trigger: sysfs: fix use-after-free on remove (git-fixes). - init: Initialize noop_backing_dev_info early (bsc#1200822). - inotify: show inotify mask flags in proc fdinfo (bsc#1200600). - iomap: iomap_write_failed fix (bsc#1200829). - ipvs: add sysctl_run_estimation to support disable estimation (bsc#1195504). - jfs: fix divide error in dbNextAG (bsc#1200828). - kABI fix of sysctl_run_estimation (git-fixes). - kabi: nvme workaround header include (bsc#1201193). - kabi/severities: ignore KABI for NVMe target (bsc#1192761) - linux/dim: Fix divide by 0 in RDMA DIM (git-fixes). - md: fix update super 1.0 on rdev size change (git-fixes). - move devm_allocate to end of structure for kABI (git-fixes). - mtd: rawnand: gpmi: Fix setting busy timeout setting (git-fixes). - net: ax25: Fix deadlock caused by skb_recv_datagram in ax25_recvmsg (git-fixes). - net: ethernet: stmmac: Disable hardware multicast filter (git-fixes). - net: ieee802154: ca8210: Stop leaking skb's (git-fixes). - net: lantiq: Add locking for TX DMA channel (git-fixes). - net: rose: fix UAF bugs caused by timer handler (git-fixes). - net: stmmac: reset Tx desc base address before restarting Tx (git-fixes). - net: usb: ax88179_178a: Fix packet receiving (git-fixes). - nfc: nfcmrvl: Fix irq_of_parse_and_map() return value (git-fixes). - nfc: nfcmrvl: Fix memory leak in nfcmrvl_play_deferred (git-fixes). - NFC: nxp-nci: Do not issue a zero length i2c_master_read() (git-fixes). - NFS: Do not report EINTR/ERESTARTSYS as mapping errors (git-fixes). - NFS: Do not report errors from nfs_pageio_complete() more than once (git-fixes). - NFS: Do not report flush errors in nfs_write_end() (git-fixes). - NFS: Further fixes to the writeback error handling (git-fixes). - NFS: Memory allocation failures are not server fatal errors (git-fixes). - NFSv4/pNFS: Do not fail I/O when we fail to allocate the pNFS layout (git-fixes). - nvdimm: Fix firmware activation deadlock scenarios (git-fixes). - nvdimm/region: Fix default alignment for small regions (git-fixes). - nvme: add CNTRLTYPE definitions for 'identify controller' (bsc#1192761). - nvme: Add connect option 'discovery' (bsc#1192761). - nvme: add new discovery log page entry definitions (bsc#1192761). - nvme: display correct subsystem NQN (bsc#1192761). - nvme: expose subsystem type in sysfs attribute 'subsystype' (bsc#1192761). - nvme: kabi fix nvme subsystype change (bsc#1192761) - nvmet: add nvmet_is_disc_subsys() helper (bsc#1192761). - nvmet: add nvmet_req_subsys() helper (bsc#1192761). - nvme-tcp: fix H2CData PDU send accounting (again) (git-fixes). - nvmet: do not check iosqes,iocqes for discovery controllers (bsc#1192761). - nvmet: fix freeing unallocated p2pmem (git-fixes). - nvmet: make discovery NQN configurable (bsc#1192761). - nvmet-rdma: Fix NULL deref when SEND is completed with error (git-fixes). - nvmet-rdma: Fix NULL deref when setting pi_enable and traddr INADDR_ANY (git-fixes). - nvmet: register discovery subsystem as 'current' (bsc#1192761). - nvmet: set 'CNTRLTYPE' in the identify controller data (bsc#1192761). - nvmet: switch check for subsystem type (bsc#1192761). - phy: aquantia: Fix AN when higher speeds than 1G are not advertised (git-fixes). - pNFS: Do not keep retrying if the server replied NFS4ERR_LAYOUTUNAVAILABLE (git-fixes). - powerpc/idle: Fix return value of __setup() handler (bsc#1065729). - powerpc/perf: Fix the threshold compare group constraint for power9 (bsc#1065729). - powerpc/rtas: Allow ibm,platform-dump RTAS call with null buffer address (bsc#1200343 ltc#198477). - random: Add and use pr_fmt() (bsc#1184924). - random: remove unnecessary unlikely() (bsc#1184924). - regmap-irq: Fix a bug in regmap_irq_enable() for type_in_mask chips (git-fixes). - Revert "block: Fix a lockdep complaint triggered by request queue flushing" (git-fixes). - scsi: core: Show SCMD_LAST in text form (git-fixes). - scsi: ibmvfc: Allocate/free queue resource only during probe/remove (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: ibmvfc: Store vhost pointer during subcrq allocation (jsc#SLE-15442 bsc#1180814 ltc#187461 git-fixes). - scsi: lpfc: Add more logging of cmd and cqe information for aborted NVMe cmds (bsc#1201193). - scsi: lpfc: Address NULL pointer dereference after starget_to_rport() (bsc#1201193). - scsi: lpfc: Add support for ATTO Fibre Channel devices (bsc#1201193). - scsi: lpfc: Add support for VMID tagging of NVMe I/Os (bsc#1201193). - scsi: lpfc: Allow reduced polling rate for nvme_admin_async_event cmd completion (bsc#1201193). - scsi: lpfc: Commonize VMID code location (bsc#1201193). - scsi: lpfc: Correct BDE type for XMIT_SEQ64_WQE in lpfc_ct_reject_event() (bsc#1201193). - scsi: lpfc: Fix port stuck in bypassed state after LIP in PT2PT topology (bsc#1201193). - scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following abort path refactoring (bsc#1201193). - scsi: lpfc: Resolve some cleanup issues following SLI path refactoring (bsc#1201193). - scsi: lpfc: Rework lpfc_vmid_get_appid() to be protocol independent (bsc#1201193). - scsi: lpfc: Update lpfc version to 14.2.0.4 (bsc#1201193). - scsi: nvme: Added a new sysfs attribute appid_store (bsc#1201193). - scsi: nvme-fc: Add new routine nvme_fc_io_getuuid() (bsc#1201193). - scsi: qla2xxx: Add a new v2 dport diagnostic feature (bsc#1201160). - scsi: qla2xxx: Add debug prints in the device remove path (bsc#1201160). - scsi: qla2xxx: edif: Add bsg interface to read doorbell events (bsc#1201160). - scsi: qla2xxx: edif: Add retry for ELS passthrough (bsc#1201160). - scsi: qla2xxx: edif: bsg refactor (bsc#1201160). - scsi: qla2xxx: edif: Fix I/O timeout due to over-subscription (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n discovery issue with secure target (bsc#1201160). - scsi: qla2xxx: edif: Fix n2n login retry for secure device (bsc#1201160). - scsi: qla2xxx: edif: Fix no login after app start (bsc#1201160). - scsi: qla2xxx: edif: Fix no logout on delete for N2N (bsc#1201160). - scsi: qla2xxx: edif: Fix potential stuck session in sa update (bsc#1201160). - scsi: qla2xxx: edif: Fix session thrash (bsc#1201160). - scsi: qla2xxx: edif: Fix slow session teardown (bsc#1201160). - scsi: qla2xxx: edif: Reduce disruption due to multiple app start (bsc#1201160). - scsi: qla2xxx: edif: Reduce Initiator-Initiator thrashing (bsc#1201160). - scsi: qla2xxx: edif: Reduce N2N thrashing at app_start time (bsc#1201160). - scsi: qla2xxx: edif: Remove old doorbell interface (bsc#1201160). - scsi: qla2xxx: edif: Send LOGO for unexpected IKE message (bsc#1201160). - scsi: qla2xxx: edif: Synchronize NPIV deletion with authentication application (bsc#1201160). - scsi: qla2xxx: edif: Tear down session if keys have been removed (bsc#1201160). - scsi: qla2xxx: edif: Wait for app to ack on sess down (bsc#1201160). - scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts (bsc#1201160). - scsi: qla2xxx: Fix erroneous mailbox timeout after PCI error injection (bsc#1201160). - scsi: qla2xxx: Fix excessive I/O error messages by default (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets during port perturbation tests (bsc#1201160). - scsi: qla2xxx: Fix losing FCP-2 targets on long port disable with I/Os (bsc#1201160). - scsi: qla2xxx: Fix losing target when it reappears during delete (bsc#1201160). - scsi: qla2xxx: Remove setting of 'req' and 'rsp' parameters (bsc#1201160). - scsi: qla2xxx: Remove unused 'ql_dm_tgt_ex_pct' parameter (bsc#1201160). - scsi: qla2xxx: Turn off multi-queue for 8G adapters (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.500-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.600-k (bsc#1201160). - scsi: qla2xxx: Update version to 10.02.07.700-k (bsc#1201160). - scsi: qla2xxx: Wind down adapter after PCIe error (bsc#1201160). - scsi: sd: sd_zbc: Do not pass GFP_NOIO to kvcalloc (git-fixes). - scsi: sd: sd_zbc: Fix handling of host-aware ZBC disks (git-fixes). - scsi: sd: sd_zbc: Fix ZBC disk initialization (git-fixes). - scsi: sd: Signal drive managed SMR disks (git-fixes). - scsi: sd_zbc: Do not limit max_zone_append sectors to (git-fixes). - scsi: sd_zbc: Ensure buffer size is aligned to SECTOR_SIZE (git-fixes). - scsi: sd_zbc: Improve zone revalidation (git-fixes). - scsi: sd_zbc: Remove unused inline functions (git-fixes). - scsi: sd_zbc: Support disks with more than 2**32 logical (git-fixes). - scsi: smartpqi: create module parameters for LUN reset (bsc#1179195 bsc#1200622). - smb3: add mount parm nosparse (bsc#1200217). - smb3: add trace point for lease not found issue (bsc#1200217). - smb3: add trace point for oplock not found (bsc#1200217). - smb3: check for null tcon (bsc#1200217). - smb3: cleanup and clarify status of tree connections (bsc#1200217). - smb3: do not set rc when used and unneeded in query_info_compound (bsc#1200217). - SMB3: EBADF/EIO errors in rename/open caused by race condition in smb2_compound_op (bsc#1200217). - smb3: fix incorrect session setup check for multiuser mounts (bsc#1200217). - smb3: fix ksmbd bigendian bug in oplock break, and move its struct to smbfs_common (bsc#1200217). - smb3: fix snapshot mount option (bsc#1200217). - smb3 improve error message when mount options conflict with posix (bsc#1200217). - smb3: move defines for ioctl protocol header and SMB2 sizes to smbfs_common (bsc#1200217). - smb3: move defines for query info and query fsinfo to smbfs_common (bsc#1200217). - smb3: move more common protocol header definitions to smbfs_common (bsc#1200217). - smb3: send NTLMSSP version information (bsc#1200217). - soc: bcm: brcmstb: pm: pm-arm: Fix refcount leak in brcmstb_pm_probe (git-fixes). - spi: Fix use-after-free with devm_spi_alloc_* (git-fixes). - SUNRPC: Fix the calculation of xdr->end in xdr_get_next_encode_buffer() (git-fixes). - sunvnet: use icmp_ndo_send helper (git-fixes). - tty: goldfish: Fix free_irq() on remove (git-fixes). - usb: chipidea: udc: check request status before setting device address (git-fixes). - usb: dwc2: Fix memory leak in dwc2_hcd_init (git-fixes). - usb: gadget: lpc32xx_udc: Fix refcount leak in lpc32xx_udc_probe (git-fixes). - usb: gadget: u_ether: fix regression in setting fixed MAC address (git-fixes). - usbnet: fix memory allocation in helpers (git-fixes). - USB: serial: io_ti: add Agilent E5805A support (git-fixes). - USB: serial: option: add Quectel EM05-G modem (git-fixes). - USB: serial: option: add Quectel RM500K module support (git-fixes). - USB: serial: option: add support for Cinterion MV31 with new baseline (git-fixes). - USB: serial: option: add Telit LE910Cx 0x1250 composition (git-fixes). - usb: xhci: Workaround for S3 issue on AMD SNPS 3.0 xHC (git-fixes). - veth: fix races around rq->rx_notify_masked (git-fixes). - virtio-mmio: fix missing put_device() when vm_cmdline_parent registration failed (git-fixes). - virtio-net: fix race between ndo_open() and virtio_device_ready() (git-fixes). - virtio_net: fix xdp_rxq_info bug after suspend/resume (git-fixes). - virtio-pci: Remove wrong address verification in vp_del_vqs() (git-fixes). - vmxnet3: fix minimum vectors alloc issue (bsc#1199489). - writeback: Avoid skipping inode writeback (bsc#1200813). - writeback: Fix inode->i_io_list not be protected by inode->i_lock error (bsc#1200821). - xhci: Add reset resume quirk for AMD xhci controller (git-fixes). - x86/entry: Remove skip_r11rcx (bsc#1201644). dtb-aarch64-5.3.18-150300.59.87.1.src.rpm True dtb-al-5.3.18-150300.59.87.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.87.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2660 important SUSE Updates openSUSE-SLE 15.4 This update for java-17-openjdk fixes the following issues: Update to upstream tag jdk-17.0.4+8 (July 2022 CPU) - CVE-2022-21540: Improve class compilation (bsc#1201694) - CVE-2022-21541: Enhance MethodHandle invocations (bsc#1201692) - CVE-2022-34169: Improve Xalan supports (bsc#1201684) - CVE-2022-21549: java.util.random does not correctly sample exponential or Gaussian distributions (bsc#1201685) java-17-openjdk-17.0.4.0-150400.3.3.1.src.rpm java-17-openjdk-17.0.4.0-150400.3.3.1.x86_64.rpm java-17-openjdk-accessibility-17.0.4.0-150400.3.3.1.x86_64.rpm java-17-openjdk-demo-17.0.4.0-150400.3.3.1.x86_64.rpm java-17-openjdk-devel-17.0.4.0-150400.3.3.1.x86_64.rpm java-17-openjdk-headless-17.0.4.0-150400.3.3.1.x86_64.rpm java-17-openjdk-javadoc-17.0.4.0-150400.3.3.1.noarch.rpm java-17-openjdk-jmods-17.0.4.0-150400.3.3.1.x86_64.rpm java-17-openjdk-src-17.0.4.0-150400.3.3.1.x86_64.rpm java-17-openjdk-17.0.4.0-150400.3.3.1.s390x.rpm java-17-openjdk-accessibility-17.0.4.0-150400.3.3.1.s390x.rpm java-17-openjdk-demo-17.0.4.0-150400.3.3.1.s390x.rpm java-17-openjdk-devel-17.0.4.0-150400.3.3.1.s390x.rpm java-17-openjdk-headless-17.0.4.0-150400.3.3.1.s390x.rpm java-17-openjdk-jmods-17.0.4.0-150400.3.3.1.s390x.rpm java-17-openjdk-src-17.0.4.0-150400.3.3.1.s390x.rpm java-17-openjdk-17.0.4.0-150400.3.3.1.ppc64le.rpm java-17-openjdk-accessibility-17.0.4.0-150400.3.3.1.ppc64le.rpm java-17-openjdk-demo-17.0.4.0-150400.3.3.1.ppc64le.rpm java-17-openjdk-devel-17.0.4.0-150400.3.3.1.ppc64le.rpm java-17-openjdk-headless-17.0.4.0-150400.3.3.1.ppc64le.rpm java-17-openjdk-jmods-17.0.4.0-150400.3.3.1.ppc64le.rpm java-17-openjdk-src-17.0.4.0-150400.3.3.1.ppc64le.rpm java-17-openjdk-17.0.4.0-150400.3.3.1.aarch64.rpm java-17-openjdk-accessibility-17.0.4.0-150400.3.3.1.aarch64.rpm java-17-openjdk-demo-17.0.4.0-150400.3.3.1.aarch64.rpm java-17-openjdk-devel-17.0.4.0-150400.3.3.1.aarch64.rpm java-17-openjdk-headless-17.0.4.0-150400.3.3.1.aarch64.rpm java-17-openjdk-jmods-17.0.4.0-150400.3.3.1.aarch64.rpm java-17-openjdk-src-17.0.4.0-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2707 important SUSE Updates openSUSE-SLE 15.4 This update for java-11-openjdk fixes the following issues: Update to upstream tag jdk-11.0.16+8 (July 2022 CPU) - CVE-2022-21540: Improve class compilation (bsc#1201694) - CVE-2022-21541: Enhance MethodHandle invocations (bsc#1201692) - CVE-2022-34169: Improve Xalan supports (bsc#1201684) java-11-openjdk-11.0.16.0-150000.3.83.1.src.rpm java-11-openjdk-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-accessibility-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-demo-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-devel-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-headless-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-javadoc-11.0.16.0-150000.3.83.1.noarch.rpm java-11-openjdk-jmods-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-src-11.0.16.0-150000.3.83.1.x86_64.rpm java-11-openjdk-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-accessibility-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-demo-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-devel-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-headless-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-jmods-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-src-11.0.16.0-150000.3.83.1.s390x.rpm java-11-openjdk-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-accessibility-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-demo-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-devel-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-headless-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-jmods-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-src-11.0.16.0-150000.3.83.1.ppc64le.rpm java-11-openjdk-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-accessibility-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-demo-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-devel-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-headless-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-jmods-11.0.16.0-150000.3.83.1.aarch64.rpm java-11-openjdk-src-11.0.16.0-150000.3.83.1.aarch64.rpm openSUSE-SLE-15.4-2022-2754 moderate SUSE Updates openSUSE-SLE 15.4 This update for libnbd fixes the following issues: - CVE-2022-0485: Fixed a missing error handling that may create corrupted destination image (bsc#1195636). libnbd-1.12.4-150300.8.12.1.src.rpm libnbd-1.12.4-150300.8.12.1.x86_64.rpm libnbd-bash-completion-1.12.4-150300.8.12.1.noarch.rpm libnbd-devel-1.12.4-150300.8.12.1.x86_64.rpm libnbd0-1.12.4-150300.8.12.1.x86_64.rpm nbdfuse-1.12.4-150300.8.12.1.x86_64.rpm libnbd-1.12.4-150300.8.12.1.s390x.rpm libnbd-devel-1.12.4-150300.8.12.1.s390x.rpm libnbd0-1.12.4-150300.8.12.1.s390x.rpm nbdfuse-1.12.4-150300.8.12.1.s390x.rpm libnbd-1.12.4-150300.8.12.1.ppc64le.rpm libnbd-devel-1.12.4-150300.8.12.1.ppc64le.rpm libnbd0-1.12.4-150300.8.12.1.ppc64le.rpm nbdfuse-1.12.4-150300.8.12.1.ppc64le.rpm libnbd-1.12.4-150300.8.12.1.aarch64.rpm libnbd-devel-1.12.4-150300.8.12.1.aarch64.rpm libnbd0-1.12.4-150300.8.12.1.aarch64.rpm nbdfuse-1.12.4-150300.8.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-2616 moderate SUSE Updates openSUSE-SLE 15.4 This update for scap-security-guide fixes the following issues: - Fix the build for RHEL 7 and clones (python-setuptools is used) scap-security-guide-0.1.62-150000.1.42.1.noarch.rpm scap-security-guide-0.1.62-150000.1.42.1.src.rpm scap-security-guide-debian-0.1.62-150000.1.42.1.noarch.rpm scap-security-guide-redhat-0.1.62-150000.1.42.1.noarch.rpm scap-security-guide-ubuntu-0.1.62-150000.1.42.1.noarch.rpm openSUSE-SLE-15.4-2022-2640 moderate SUSE Updates openSUSE-SLE 15.4 This update for yaml-cpp fixes the following issue: - Version 0.6.3 changed ABI without changing SONAME. Re-add symbol from the old ABI to prevent ABI breakage and crash of applications compiled with 0.6.1 (bsc#1200624, bsc#1178332, bsc#1178331, bsc#1160171). libyaml-cpp0_6-0.6.3-150400.4.3.1.x86_64.rpm yaml-cpp-0.6.3-150400.4.3.1.src.rpm yaml-cpp-devel-0.6.3-150400.4.3.1.x86_64.rpm libyaml-cpp0_6-0.6.3-150400.4.3.1.s390x.rpm yaml-cpp-devel-0.6.3-150400.4.3.1.s390x.rpm libyaml-cpp0_6-0.6.3-150400.4.3.1.ppc64le.rpm yaml-cpp-devel-0.6.3-150400.4.3.1.ppc64le.rpm libyaml-cpp0_6-0.6.3-150400.4.3.1.aarch64.rpm yaml-cpp-devel-0.6.3-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2548 critical SUSE Updates openSUSE-SLE 15.4 This update for python-cssselect implements packages to the unrestrictied repository. python-cssselect-1.0.3-150000.3.3.1.src.rpm python3-cssselect-1.0.3-150000.3.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2611 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaFirefox fixes the following issues: Firefox Extended Support Release 91.12.0 ESR (bsc#1201758): - CVE-2022-36319: Mouse Position spoofing with CSS transforms - CVE-2022-36318: Directory indexes for bundled resources reflected URL parameters MozillaFirefox-91.12.0-150200.152.53.1.src.rpm MozillaFirefox-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-branding-upstream-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-devel-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-translations-common-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-translations-other-91.12.0-150200.152.53.1.x86_64.rpm MozillaFirefox-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-branding-upstream-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-devel-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-translations-common-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-translations-other-91.12.0-150200.152.53.1.s390x.rpm MozillaFirefox-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-branding-upstream-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-devel-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-translations-common-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-translations-other-91.12.0-150200.152.53.1.ppc64le.rpm MozillaFirefox-91.12.0-150200.152.53.1.aarch64.rpm MozillaFirefox-branding-upstream-91.12.0-150200.152.53.1.aarch64.rpm MozillaFirefox-devel-91.12.0-150200.152.53.1.aarch64.rpm MozillaFirefox-translations-common-91.12.0-150200.152.53.1.aarch64.rpm MozillaFirefox-translations-other-91.12.0-150200.152.53.1.aarch64.rpm openSUSE-SLE-15.4-2022-2661 important SUSE Updates openSUSE-SLE 15.4 This update for u-boot fixes the following issues: - CVE-2022-33967: Fixed heap overflow in squashfs filesystem implementation (bsc#1201745). - CVE-2022-34835: Fixed stack buffer overflow vulnerability in i2c md command (bsc#1201214). u-boot-2021.10-150400.4.8.1.src.rpm u-boot-tools-2021.10-150400.4.8.1.x86_64.rpm u-boot-tools-2021.10-150400.4.8.1.s390x.rpm u-boot-tools-2021.10-150400.4.8.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.10-150400.4.8.1.aarch64.rpm u-boot-avnetultra96rev1-2021.10-150400.4.8.1.src.rpm u-boot-avnetultra96rev1-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-bananapim64-2021.10-150400.4.8.1.aarch64.rpm u-boot-bananapim64-2021.10-150400.4.8.1.src.rpm u-boot-bananapim64-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-dragonboard410c-2021.10-150400.4.8.1.aarch64.rpm u-boot-dragonboard410c-2021.10-150400.4.8.1.src.rpm u-boot-dragonboard410c-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-dragonboard820c-2021.10-150400.4.8.1.aarch64.rpm u-boot-dragonboard820c-2021.10-150400.4.8.1.src.rpm u-boot-dragonboard820c-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-evb-rk3399-2021.10-150400.4.8.1.aarch64.rpm u-boot-evb-rk3399-2021.10-150400.4.8.1.src.rpm u-boot-evb-rk3399-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-firefly-rk3399-2021.10-150400.4.8.1.aarch64.rpm u-boot-firefly-rk3399-2021.10-150400.4.8.1.src.rpm u-boot-firefly-rk3399-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-geekbox-2021.10-150400.4.8.1.aarch64.rpm u-boot-geekbox-2021.10-150400.4.8.1.src.rpm u-boot-geekbox-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-hikey-2021.10-150400.4.8.1.aarch64.rpm u-boot-hikey-2021.10-150400.4.8.1.src.rpm u-boot-hikey-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-khadas-vim-2021.10-150400.4.8.1.aarch64.rpm u-boot-khadas-vim-2021.10-150400.4.8.1.src.rpm u-boot-khadas-vim-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-khadas-vim2-2021.10-150400.4.8.1.aarch64.rpm u-boot-khadas-vim2-2021.10-150400.4.8.1.src.rpm u-boot-khadas-vim2-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-libretech-ac-2021.10-150400.4.8.1.aarch64.rpm u-boot-libretech-ac-2021.10-150400.4.8.1.src.rpm u-boot-libretech-ac-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-libretech-cc-2021.10-150400.4.8.1.aarch64.rpm u-boot-libretech-cc-2021.10-150400.4.8.1.src.rpm u-boot-libretech-cc-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.10-150400.4.8.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.10-150400.4.8.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.10-150400.4.8.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.10-150400.4.8.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.10-150400.4.8.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.10-150400.4.8.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.10-150400.4.8.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.10-150400.4.8.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.10-150400.4.8.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.10-150400.4.8.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-nanopia64-2021.10-150400.4.8.1.aarch64.rpm u-boot-nanopia64-2021.10-150400.4.8.1.src.rpm u-boot-nanopia64-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-odroid-c2-2021.10-150400.4.8.1.aarch64.rpm u-boot-odroid-c2-2021.10-150400.4.8.1.src.rpm u-boot-odroid-c2-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-odroid-c4-2021.10-150400.4.8.1.aarch64.rpm u-boot-odroid-c4-2021.10-150400.4.8.1.src.rpm u-boot-odroid-c4-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-odroid-n2-2021.10-150400.4.8.1.aarch64.rpm u-boot-odroid-n2-2021.10-150400.4.8.1.src.rpm u-boot-odroid-n2-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-orangepipc2-2021.10-150400.4.8.1.aarch64.rpm u-boot-orangepipc2-2021.10-150400.4.8.1.src.rpm u-boot-orangepipc2-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-p2371-2180-2021.10-150400.4.8.1.aarch64.rpm u-boot-p2371-2180-2021.10-150400.4.8.1.src.rpm u-boot-p2371-2180-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-p2771-0000-500-2021.10-150400.4.8.1.aarch64.rpm u-boot-p2771-0000-500-2021.10-150400.4.8.1.src.rpm u-boot-p2771-0000-500-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-p3450-0000-2021.10-150400.4.8.1.aarch64.rpm u-boot-p3450-0000-2021.10-150400.4.8.1.src.rpm u-boot-p3450-0000-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-pine64plus-2021.10-150400.4.8.1.aarch64.rpm u-boot-pine64plus-2021.10-150400.4.8.1.src.rpm u-boot-pine64plus-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-pinebook-2021.10-150400.4.8.1.aarch64.rpm u-boot-pinebook-2021.10-150400.4.8.1.src.rpm u-boot-pinebook-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.10-150400.4.8.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.10-150400.4.8.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-pineh64-2021.10-150400.4.8.1.aarch64.rpm u-boot-pineh64-2021.10-150400.4.8.1.src.rpm u-boot-pineh64-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-pinephone-2021.10-150400.4.8.1.aarch64.rpm u-boot-pinephone-2021.10-150400.4.8.1.src.rpm u-boot-pinephone-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-poplar-2021.10-150400.4.8.1.aarch64.rpm u-boot-poplar-2021.10-150400.4.8.1.src.rpm u-boot-poplar-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.10-150400.4.8.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.10-150400.4.8.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-rock-pi-n10-rk3399pro-2021.10-150400.4.8.1.aarch64.rpm u-boot-rock-pi-n10-rk3399pro-2021.10-150400.4.8.1.src.rpm u-boot-rock-pi-n10-rk3399pro-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-rock64-rk3328-2021.10-150400.4.8.1.aarch64.rpm u-boot-rock64-rk3328-2021.10-150400.4.8.1.src.rpm u-boot-rock64-rk3328-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-rock960-rk3399-2021.10-150400.4.8.1.aarch64.rpm u-boot-rock960-rk3399-2021.10-150400.4.8.1.src.rpm u-boot-rock960-rk3399-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.10-150400.4.8.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.10-150400.4.8.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-rpi3-2021.10-150400.4.8.1.aarch64.rpm u-boot-rpi3-2021.10-150400.4.8.1.src.rpm u-boot-rpi3-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-rpi4-2021.10-150400.4.8.1.aarch64.rpm u-boot-rpi4-2021.10-150400.4.8.1.src.rpm u-boot-rpi4-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-rpiarm64-2021.10-150400.4.8.1.aarch64.rpm u-boot-rpiarm64-2021.10-150400.4.8.1.src.rpm u-boot-rpiarm64-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-tools-2021.10-150400.4.8.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.10-150400.4.8.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.10-150400.4.8.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.10-150400.4.8.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.10-150400.4.8.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.10-150400.4.8.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.10-150400.4.8.1.aarch64.rpm openSUSE-SLE-15.4-2022-2654 important SUSE Updates openSUSE-SLE 15.4 This update for u-boot fixes the following issues: - CVE-2022-34835: Fixed stack buffer overflow vulnerability in i2c md command (bsc#1201214). u-boot-xilinxzynqmpgeneric-2020.01-150200.10.15.1.aarch64.rpm u-boot-xilinxzynqmpgeneric-2020.01-150200.10.15.1.src.rpm u-boot-xilinxzynqmpgeneric-doc-2020.01-150200.10.15.1.aarch64.rpm openSUSE-SLE-15.4-2022-2613 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-parallax fixes the following issues: - Don't use ssh if a command is running on local (bsc#1200833) python-parallax-1.0.6-150200.4.6.1.src.rpm python3-parallax-1.0.6-150200.4.6.1.noarch.rpm openSUSE-SLE-15.4-2022-2592 important SUSE Updates openSUSE-SLE 15.4 This update for rubygem-tzinfo fixes the following issues: - CVE-2022-31163: Fixed relative path traversal vulnerability that allows TZInfo::Timezone.get to load arbitrary files (bsc#1201835). ruby2.5-rubygem-tzinfo-1.2.4-150000.3.3.1.x86_64.rpm ruby2.5-rubygem-tzinfo-doc-1.2.4-150000.3.3.1.x86_64.rpm ruby2.5-rubygem-tzinfo-testsuite-1.2.4-150000.3.3.1.x86_64.rpm rubygem-tzinfo-1.2.4-150000.3.3.1.src.rpm ruby2.5-rubygem-tzinfo-1.2.4-150000.3.3.1.s390x.rpm ruby2.5-rubygem-tzinfo-doc-1.2.4-150000.3.3.1.s390x.rpm ruby2.5-rubygem-tzinfo-testsuite-1.2.4-150000.3.3.1.s390x.rpm ruby2.5-rubygem-tzinfo-1.2.4-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-tzinfo-doc-1.2.4-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-tzinfo-testsuite-1.2.4-150000.3.3.1.ppc64le.rpm ruby2.5-rubygem-tzinfo-1.2.4-150000.3.3.1.aarch64.rpm ruby2.5-rubygem-tzinfo-doc-1.2.4-150000.3.3.1.aarch64.rpm ruby2.5-rubygem-tzinfo-testsuite-1.2.4-150000.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2664 important SUSE Updates openSUSE-SLE 15.4 This update for harfbuzz fixes the following issues: - CVE-2022-33068: Fixed a integer overflow in hb-ot-shape-fallback.cc (bsc#1200900). harfbuzz-3.4.0-150400.3.3.1.src.rpm harfbuzz-devel-3.4.0-150400.3.3.1.x86_64.rpm harfbuzz-tools-3.4.0-150400.3.3.1.x86_64.rpm libharfbuzz-gobject0-3.4.0-150400.3.3.1.x86_64.rpm libharfbuzz-gobject0-32bit-3.4.0-150400.3.3.1.x86_64.rpm libharfbuzz-icu0-3.4.0-150400.3.3.1.x86_64.rpm libharfbuzz-icu0-32bit-3.4.0-150400.3.3.1.x86_64.rpm libharfbuzz-subset0-3.4.0-150400.3.3.1.x86_64.rpm libharfbuzz-subset0-32bit-3.4.0-150400.3.3.1.x86_64.rpm libharfbuzz0-3.4.0-150400.3.3.1.x86_64.rpm libharfbuzz0-32bit-3.4.0-150400.3.3.1.x86_64.rpm typelib-1_0-HarfBuzz-0_0-3.4.0-150400.3.3.1.x86_64.rpm harfbuzz-devel-3.4.0-150400.3.3.1.s390x.rpm harfbuzz-tools-3.4.0-150400.3.3.1.s390x.rpm libharfbuzz-gobject0-3.4.0-150400.3.3.1.s390x.rpm libharfbuzz-icu0-3.4.0-150400.3.3.1.s390x.rpm libharfbuzz-subset0-3.4.0-150400.3.3.1.s390x.rpm libharfbuzz0-3.4.0-150400.3.3.1.s390x.rpm typelib-1_0-HarfBuzz-0_0-3.4.0-150400.3.3.1.s390x.rpm harfbuzz-devel-3.4.0-150400.3.3.1.ppc64le.rpm harfbuzz-tools-3.4.0-150400.3.3.1.ppc64le.rpm libharfbuzz-gobject0-3.4.0-150400.3.3.1.ppc64le.rpm libharfbuzz-icu0-3.4.0-150400.3.3.1.ppc64le.rpm libharfbuzz-subset0-3.4.0-150400.3.3.1.ppc64le.rpm libharfbuzz0-3.4.0-150400.3.3.1.ppc64le.rpm typelib-1_0-HarfBuzz-0_0-3.4.0-150400.3.3.1.ppc64le.rpm harfbuzz-devel-3.4.0-150400.3.3.1.aarch64.rpm harfbuzz-tools-3.4.0-150400.3.3.1.aarch64.rpm libharfbuzz-gobject0-3.4.0-150400.3.3.1.aarch64.rpm libharfbuzz-icu0-3.4.0-150400.3.3.1.aarch64.rpm libharfbuzz-subset0-3.4.0-150400.3.3.1.aarch64.rpm libharfbuzz0-3.4.0-150400.3.3.1.aarch64.rpm typelib-1_0-HarfBuzz-0_0-3.4.0-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2651 moderate SUSE Updates openSUSE-SLE 15.4 This update for samba fixes the following issues: - CVE-2022-32742: Fixed incorrect length check in SMB1write, SMB1write_and_close, SMB1write_and_unlock (bso#15085) (bsc#1201496). libndr0-32bit-4.11.14+git.325.2e31b7efa01-150200.4.41.1.x86_64.rpm libndr0-4.11.14+git.325.2e31b7efa01-150200.4.41.1.x86_64.rpm samba-4.11.14+git.325.2e31b7efa01-150200.4.41.1.src.rpm libndr0-4.11.14+git.325.2e31b7efa01-150200.4.41.1.s390x.rpm libndr0-4.11.14+git.325.2e31b7efa01-150200.4.41.1.ppc64le.rpm libndr0-4.11.14+git.325.2e31b7efa01-150200.4.41.1.aarch64.rpm openSUSE-SLE-15.4-2022-2621 moderate SUSE Updates openSUSE-SLE 15.4 This update for samba fixes the following issues: - CVE-2022-32742: Fixed incorrect length check in SMB1write, SMB1write_and_close, SMB1write_and_unlock (bso#15085) (bsc#1201496). libsamba-policy-python-devel-4.9.5+git.490.e80cf669f50-150100.3.70.1.x86_64.rpm libsamba-policy0-32bit-4.9.5+git.490.e80cf669f50-150100.3.70.1.x86_64.rpm libsamba-policy0-4.9.5+git.490.e80cf669f50-150100.3.70.1.x86_64.rpm samba-4.9.5+git.490.e80cf669f50-150100.3.70.1.src.rpm samba-libs-python-32bit-4.9.5+git.490.e80cf669f50-150100.3.70.1.x86_64.rpm samba-libs-python-4.9.5+git.490.e80cf669f50-150100.3.70.1.x86_64.rpm samba-python-4.9.5+git.490.e80cf669f50-150100.3.70.1.x86_64.rpm libsamba-policy-python-devel-4.9.5+git.490.e80cf669f50-150100.3.70.1.s390x.rpm libsamba-policy0-4.9.5+git.490.e80cf669f50-150100.3.70.1.s390x.rpm samba-libs-python-4.9.5+git.490.e80cf669f50-150100.3.70.1.s390x.rpm samba-python-4.9.5+git.490.e80cf669f50-150100.3.70.1.s390x.rpm libsamba-policy-python-devel-4.9.5+git.490.e80cf669f50-150100.3.70.1.ppc64le.rpm libsamba-policy0-4.9.5+git.490.e80cf669f50-150100.3.70.1.ppc64le.rpm samba-libs-python-4.9.5+git.490.e80cf669f50-150100.3.70.1.ppc64le.rpm samba-python-4.9.5+git.490.e80cf669f50-150100.3.70.1.ppc64le.rpm libsamba-policy-python-devel-4.9.5+git.490.e80cf669f50-150100.3.70.1.aarch64.rpm libsamba-policy0-4.9.5+git.490.e80cf669f50-150100.3.70.1.aarch64.rpm samba-libs-python-4.9.5+git.490.e80cf669f50-150100.3.70.1.aarch64.rpm samba-python-4.9.5+git.490.e80cf669f50-150100.3.70.1.aarch64.rpm openSUSE-SLE-15.4-2022-2673 moderate SUSE Updates openSUSE-SLE 15.4 This update for python-ujson fixes the following issues: - CVE-2022-31116: Fixed improper decoding of escaped surrogate characters (bsc#1201255). - CVE-2022-31117: Fixed a double free while reallocating a buffer for string decoding (bsc#1201254). python-ujson-1.35-150100.3.5.1.src.rpm python3-ujson-1.35-150100.3.5.1.x86_64.rpm python3-ujson-1.35-150100.3.5.1.s390x.rpm python3-ujson-1.35-150100.3.5.1.ppc64le.rpm python3-ujson-1.35-150100.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2630 moderate SUSE Updates openSUSE-SLE 15.4 This update for crmsh fixes the following issues: - Fix 'unexpected output' error when using `crmadmin -S` (bsc#1199412) - Stop and disable csync2.socket on removed node (bsc#1199325) - cibconfig: enable "related:" prefix to show the objects by given ra type - crm report: Read data in a safe way, to avoid UnicodeDecodeError(bsc#1198180) - crm report: use sudo when under non root and hacluster user (bsc#1199634) - ui_cluster: Add examples for 'cluster init' and 'cluster join' - utils: use options `-o` and `-n` to compare files instead of strings for crm_diff (bsc#1201312) crmsh-4.4.0+20220708.6ed6b56f-150400.3.3.1.noarch.rpm crmsh-4.4.0+20220708.6ed6b56f-150400.3.3.1.src.rpm crmsh-scripts-4.4.0+20220708.6ed6b56f-150400.3.3.1.noarch.rpm crmsh-test-4.4.0+20220708.6ed6b56f-150400.3.3.1.noarch.rpm openSUSE-SLE-15.4-2022-2670 important SUSE Updates openSUSE-SLE 15.4 This update for qpdf fixes the following issues: - CVE-2022-34503: Fixed a heap buffer overflow via the function QPDF:processXRefStream (bsc#1201830). - CVE-2021-36978: Fixed heap-based buffer overflow in Pl_ASCII85Decoder::write (bsc#1188514). libqpdf21-8.0.2-150000.3.5.1.x86_64.rpm qpdf-8.0.2-150000.3.5.1.src.rpm libqpdf21-8.0.2-150000.3.5.1.s390x.rpm libqpdf21-8.0.2-150000.3.5.1.ppc64le.rpm libqpdf21-8.0.2-150000.3.5.1.aarch64.rpm openSUSE-SLE-15.4-2022-2612 moderate SUSE Updates openSUSE-SLE 15.4 This update for obs-service-kiwi_metainfo_helper fixes the following issues: - Generate OS_VERSION_NO_DASH based on os-release VERSION, to replace dash with space in OS name (bsc#1195061) - Improve examples in README. obs-service-kiwi_metainfo_helper-0.6-150000.1.18.1.noarch.rpm obs-service-kiwi_metainfo_helper-0.6-150000.1.18.1.src.rpm openSUSE-SLE-15.4-2022-2609 important SUSE Updates openSUSE-SLE 15.4 This update for booth fixes the following issues: - CVE-2022-2553: authfile directive in booth config file is completely ignored (bsc#1201946). booth-1.0+20210519.bfb2f92-150400.3.3.1.src.rpm booth-1.0+20210519.bfb2f92-150400.3.3.1.x86_64.rpm booth-test-1.0+20210519.bfb2f92-150400.3.3.1.x86_64.rpm booth-1.0+20210519.bfb2f92-150400.3.3.1.s390x.rpm booth-test-1.0+20210519.bfb2f92-150400.3.3.1.s390x.rpm booth-1.0+20210519.bfb2f92-150400.3.3.1.ppc64le.rpm booth-test-1.0+20210519.bfb2f92-150400.3.3.1.ppc64le.rpm booth-1.0+20210519.bfb2f92-150400.3.3.1.aarch64.rpm booth-test-1.0+20210519.bfb2f92-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2848 important SUSE Updates openSUSE-SLE 15.4 This update for gdm fixes the following issues: - Disable Wayland on aspeed chipsets because of performance issues (bsc#1200323) gdm-41.3-150400.4.3.1.src.rpm gdm-41.3-150400.4.3.1.x86_64.rpm gdm-branding-upstream-41.3-150400.4.3.1.noarch.rpm gdm-devel-41.3-150400.4.3.1.x86_64.rpm gdm-lang-41.3-150400.4.3.1.noarch.rpm gdm-schema-41.3-150400.4.3.1.noarch.rpm gdm-systemd-41.3-150400.4.3.1.noarch.rpm gdmflexiserver-41.3-150400.4.3.1.noarch.rpm libgdm1-41.3-150400.4.3.1.x86_64.rpm typelib-1_0-Gdm-1_0-41.3-150400.4.3.1.x86_64.rpm gdm-41.3-150400.4.3.1.s390x.rpm gdm-devel-41.3-150400.4.3.1.s390x.rpm libgdm1-41.3-150400.4.3.1.s390x.rpm typelib-1_0-Gdm-1_0-41.3-150400.4.3.1.s390x.rpm gdm-41.3-150400.4.3.1.ppc64le.rpm gdm-devel-41.3-150400.4.3.1.ppc64le.rpm libgdm1-41.3-150400.4.3.1.ppc64le.rpm typelib-1_0-Gdm-1_0-41.3-150400.4.3.1.ppc64le.rpm gdm-41.3-150400.4.3.1.aarch64.rpm gdm-devel-41.3-150400.4.3.1.aarch64.rpm libgdm1-41.3-150400.4.3.1.aarch64.rpm typelib-1_0-Gdm-1_0-41.3-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2590 critical SUSE Updates openSUSE-SLE 15.4 This update provides the following changes: - Deliver missing binary suse-migration-pre-checks suse-migration-pre-checks-2.0.33-150000.1.48.1.noarch.rpm suse-migration-rpm-1.0.1-150000.1.14.1.src.rpm suse-migration-rpm-1.0.1-150000.1.14.1.x86_64.rpm suse-migration-services-2.0.33-150000.1.48.1.noarch.rpm suse-migration-services-2.0.33-150000.1.48.1.src.rpm suse-migration-rpm-1.0.1-150000.1.14.1.s390x.rpm suse-migration-rpm-1.0.1-150000.1.14.1.ppc64le.rpm suse-migration-rpm-1.0.1-150000.1.14.1.aarch64.rpm openSUSE-SLE-15.4-2022-2826 important SUSE Updates openSUSE-SLE 15.4 This update for webkit2gtk3 fixes the following issues: - Update to version 2.36.5 (bsc#1201980): - Add support for PAC proxy in the WebDriver implementation. - Fix video playback when loaded through custom URIs, this fixes video playback in the Yelp documentation browser. - Fix WebKitWebView::context-menu when using GTK4. - Fix LTO builds with GCC. - Fix several crashes and rendering issues. - Security fixes: - CVE-2022-32792: Fixed processing maliciously crafted web content may lead to arbitrary code execution. - CVE-2022-32816: Fixed visiting a website that frames malicious content may lead to UI spoofing. WebKit2GTK-4.0-lang-2.36.5-150400.4.9.1.noarch.rpm WebKit2GTK-4.1-lang-2.36.5-150400.4.9.1.noarch.rpm WebKit2GTK-5.0-lang-2.36.5-150400.4.9.1.noarch.rpm libjavascriptcoregtk-4_0-18-2.36.5-150400.4.9.1.x86_64.rpm libjavascriptcoregtk-4_0-18-32bit-2.36.5-150400.4.9.1.x86_64.rpm libjavascriptcoregtk-4_1-0-2.36.5-150400.4.9.1.x86_64.rpm libjavascriptcoregtk-4_1-0-32bit-2.36.5-150400.4.9.1.x86_64.rpm libjavascriptcoregtk-5_0-0-2.36.5-150400.4.9.1.x86_64.rpm libwebkit2gtk-4_0-37-2.36.5-150400.4.9.1.x86_64.rpm libwebkit2gtk-4_0-37-32bit-2.36.5-150400.4.9.1.x86_64.rpm libwebkit2gtk-4_1-0-2.36.5-150400.4.9.1.x86_64.rpm libwebkit2gtk-4_1-0-32bit-2.36.5-150400.4.9.1.x86_64.rpm libwebkit2gtk-5_0-0-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-JavaScriptCore-4_1-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-JavaScriptCore-5_0-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-WebKit2-4_0-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-WebKit2-4_1-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-WebKit2-5_0-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.5-150400.4.9.1.x86_64.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.5-150400.4.9.1.x86_64.rpm webkit-jsc-4-2.36.5-150400.4.9.1.x86_64.rpm webkit-jsc-4.1-2.36.5-150400.4.9.1.x86_64.rpm webkit-jsc-5.0-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk-4_0-injected-bundles-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk-4_1-injected-bundles-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk-5_0-injected-bundles-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk3-2.36.5-150400.4.9.1.src.rpm webkit2gtk3-devel-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk3-minibrowser-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk3-soup2-2.36.5-150400.4.9.1.src.rpm webkit2gtk3-soup2-devel-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk3-soup2-minibrowser-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk4-2.36.5-150400.4.9.1.src.rpm webkit2gtk4-devel-2.36.5-150400.4.9.1.x86_64.rpm webkit2gtk4-minibrowser-2.36.5-150400.4.9.1.x86_64.rpm libjavascriptcoregtk-4_0-18-2.36.5-150400.4.9.1.s390x.rpm libjavascriptcoregtk-4_1-0-2.36.5-150400.4.9.1.s390x.rpm libjavascriptcoregtk-5_0-0-2.36.5-150400.4.9.1.s390x.rpm libwebkit2gtk-4_0-37-2.36.5-150400.4.9.1.s390x.rpm libwebkit2gtk-4_1-0-2.36.5-150400.4.9.1.s390x.rpm libwebkit2gtk-5_0-0-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-JavaScriptCore-4_0-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-JavaScriptCore-4_1-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-JavaScriptCore-5_0-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-WebKit2-4_0-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-WebKit2-4_1-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-WebKit2-5_0-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.5-150400.4.9.1.s390x.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.5-150400.4.9.1.s390x.rpm webkit-jsc-4-2.36.5-150400.4.9.1.s390x.rpm webkit-jsc-4.1-2.36.5-150400.4.9.1.s390x.rpm webkit-jsc-5.0-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk-4_0-injected-bundles-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk-4_1-injected-bundles-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk-5_0-injected-bundles-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk3-devel-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk3-minibrowser-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk3-soup2-devel-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk3-soup2-minibrowser-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk4-devel-2.36.5-150400.4.9.1.s390x.rpm webkit2gtk4-minibrowser-2.36.5-150400.4.9.1.s390x.rpm libjavascriptcoregtk-4_0-18-2.36.5-150400.4.9.1.ppc64le.rpm libjavascriptcoregtk-4_1-0-2.36.5-150400.4.9.1.ppc64le.rpm libjavascriptcoregtk-5_0-0-2.36.5-150400.4.9.1.ppc64le.rpm libwebkit2gtk-4_0-37-2.36.5-150400.4.9.1.ppc64le.rpm libwebkit2gtk-4_1-0-2.36.5-150400.4.9.1.ppc64le.rpm libwebkit2gtk-5_0-0-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_0-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-JavaScriptCore-4_1-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-JavaScriptCore-5_0-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-WebKit2-4_0-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-WebKit2-4_1-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-WebKit2-5_0-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.5-150400.4.9.1.ppc64le.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.5-150400.4.9.1.ppc64le.rpm webkit-jsc-4-2.36.5-150400.4.9.1.ppc64le.rpm webkit-jsc-4.1-2.36.5-150400.4.9.1.ppc64le.rpm webkit-jsc-5.0-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk-4_0-injected-bundles-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk-4_1-injected-bundles-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk-5_0-injected-bundles-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk3-devel-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk3-minibrowser-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk3-soup2-devel-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk3-soup2-minibrowser-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk4-devel-2.36.5-150400.4.9.1.ppc64le.rpm webkit2gtk4-minibrowser-2.36.5-150400.4.9.1.ppc64le.rpm libjavascriptcoregtk-4_0-18-2.36.5-150400.4.9.1.aarch64.rpm libjavascriptcoregtk-4_1-0-2.36.5-150400.4.9.1.aarch64.rpm libjavascriptcoregtk-5_0-0-2.36.5-150400.4.9.1.aarch64.rpm libwebkit2gtk-4_0-37-2.36.5-150400.4.9.1.aarch64.rpm libwebkit2gtk-4_1-0-2.36.5-150400.4.9.1.aarch64.rpm libwebkit2gtk-5_0-0-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_0-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-JavaScriptCore-4_1-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-JavaScriptCore-5_0-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-WebKit2-4_0-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-WebKit2-4_1-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-WebKit2-5_0-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_0-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-4_1-2.36.5-150400.4.9.1.aarch64.rpm typelib-1_0-WebKit2WebExtension-5_0-2.36.5-150400.4.9.1.aarch64.rpm webkit-jsc-4-2.36.5-150400.4.9.1.aarch64.rpm webkit-jsc-4.1-2.36.5-150400.4.9.1.aarch64.rpm webkit-jsc-5.0-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk-4_0-injected-bundles-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk-4_1-injected-bundles-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk-5_0-injected-bundles-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk3-devel-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk3-minibrowser-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk3-soup2-devel-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk3-soup2-minibrowser-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk4-devel-2.36.5-150400.4.9.1.aarch64.rpm webkit2gtk4-minibrowser-2.36.5-150400.4.9.1.aarch64.rpm openSUSE-SLE-15.4-2022-2820 important SUSE Updates openSUSE-SLE 15.4 This update for webkit2gtk3 fixes the following issues: - Update to version 2.36.5 (bsc#1201980): - Add support for PAC proxy in the WebDriver implementation. - Fix video playback when loaded through custom URIs, this fixes video playback in the Yelp documentation browser. - Fix WebKitWebView::context-menu when using GTK4. - Fix LTO builds with GCC. - Fix several crashes and rendering issues. - Security fixes: - CVE-2022-32792: Fixed processing maliciously crafted web content may lead to arbitrary code execution. - CVE-2022-32816: Fixed visiting a website that frames malicious content may lead to UI spoofing. libwebkit2gtk3-lang-2.36.5-150200.41.1.noarch.rpm webkit2gtk3-2.36.5-150200.41.1.src.rpm openSUSE-SLE-15.4-2022-2748 important SUSE Updates openSUSE-SLE 15.4 This update for MozillaThunderbird fixes the following issues: - Mozilla Thunderbird 91.12 * changed: Support for Google Talk chat accounts removed * fixed: OpenPGP signatures were broken when "Primary Password" dialog remained open * fixed: Various security fixes - Security fixes (MFSA 2022-31) (bsc#1201758): - CVE-2022-36319: Fixed mouse Position spoofing with CSS transforms (bmo#1737722) - CVE-2022-36318: Fixed directory indexes for bundled resources reflected URL parameters (bmo#1771774) MozillaThunderbird-91.12.0-150200.8.79.1.src.rpm MozillaThunderbird-91.12.0-150200.8.79.1.x86_64.rpm MozillaThunderbird-translations-common-91.12.0-150200.8.79.1.x86_64.rpm MozillaThunderbird-translations-other-91.12.0-150200.8.79.1.x86_64.rpm MozillaThunderbird-91.12.0-150200.8.79.1.s390x.rpm MozillaThunderbird-translations-common-91.12.0-150200.8.79.1.s390x.rpm MozillaThunderbird-translations-other-91.12.0-150200.8.79.1.s390x.rpm MozillaThunderbird-91.12.0-150200.8.79.1.ppc64le.rpm MozillaThunderbird-translations-common-91.12.0-150200.8.79.1.ppc64le.rpm MozillaThunderbird-translations-other-91.12.0-150200.8.79.1.ppc64le.rpm MozillaThunderbird-91.12.0-150200.8.79.1.aarch64.rpm MozillaThunderbird-translations-common-91.12.0-150200.8.79.1.aarch64.rpm MozillaThunderbird-translations-other-91.12.0-150200.8.79.1.aarch64.rpm openSUSE-SLE-15.4-2022-2803 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2022-2585: Fixed use-after-free in POSIX CPU timer (bnc#1202094). - CVE-2022-21505: Fixed kexec lockdown bypass with IMA policy (bsc#1201458). - CVE-2022-26373: Fixed CPU info leak via post-barrier RSB predictions (bsc#1201726). - CVE-2022-29581: Fixed improper update of Reference Count in net/sched that could cause root privilege escalation (bnc#1199665). The following non-security bugs were fixed: - ACPI: CPPC: Only probe for _CPC if CPPC v2 is acked (git-fixes). - ACPI: video: Fix acpi_video_handles_brightness_key_presses() (git-fixes). - ALSA: hda - Add fixup for Dell Latitidue E5430 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model (git-fixes). - ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc221 (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo L140PU (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SF313-51 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP machines (git-fixes). - ALSA: usb-audio: Add quirk for Fiero SC-01 (fw v1.0.0) (git-fixes). - ALSA: usb-audio: Add quirk for Fiero SC-01 (git-fixes). - ALSA: usb-audio: Add quirks for MacroSilicon MS2100/MS2106 devices (git-fixes). - ALSA: usb-audio: Workarounds for Behringer UMC 204/404 HD (git-fixes). - ARM: 9209/1: Spectre-BHB: avoid pr_info() every time a CPU comes out of idle (git-fixes). - ARM: 9210/1: Mark the FDT_FIXED sections as shareable (git-fixes). - ARM: 9213/1: Print message about disabled Spectre workarounds only once (git-fixes). - ARM: 9214/1: alignment: advance IT state after emulating Thumb instruction (git-fixes). - ARM: dts: at91: sama5d2: Fix typo in i2s1 node (git-fixes). - ARM: dts: imx6qdl-ts7970: Fix ngpio typo and count (git-fixes). - ARM: dts: stm32: use the correct clock source for CEC on stm32mp151 (git-fixes). - ARM: dts: sunxi: Fix SPI NOR campatible on Orange Pi Zero (git-fixes). - ASoC: Intel: Skylake: Correct the handling of fmt_config flexible array (git-fixes). - ASoC: Intel: Skylake: Correct the ssp rate discovery in skl_get_ssp_clks() (git-fixes). - ASoC: Intel: bytcr_wm5102: Fix GPIO related probe-ordering problem (git-fixes). - ASoC: Intel: sof_sdw: handle errors on card registration (git-fixes). - ASoC: Realtek/Maxim SoundWire codecs: disable pm_runtime on remove (git-fixes). - ASoC: Remove unused hw_write_t type (git-fixes). - ASoC: SOF: Intel: hda-loader: Clarify the cl_dsp_init() flow (git-fixes). - ASoC: codecs: rt700/rt711/rt711-sdca: initialize workqueues in probe (git-fixes). - ASoC: codecs: rt700/rt711/rt711-sdca: resume bus/codec in .set_jack_detect (git-fixes). - ASoC: cs47l15: Fix event generation for low power mux control (git-fixes). - ASoC: dapm: Initialise kcontrol data for mux/demux controls (git-fixes). - ASoC: madera: Fix event generation for OUT1 demux (git-fixes). - ASoC: madera: Fix event generation for rate controls (git-fixes). - ASoC: ops: Fix off by one in range control validation (git-fixes). - ASoC: rt5682: Avoid the unexpected IRQ event during going to suspend (git-fixes). - ASoC: rt5682: Fix deadlock on resume (git-fixes). - ASoC: rt5682: Re-detect the combo jack after resuming (git-fixes). - ASoC: rt5682: fix an incorrect NULL check on list iterator (git-fixes). - ASoC: rt5682: move clk related code to rt5682_i2c_probe (git-fixes). - ASoC: rt7*-sdw: harden jack_detect_handler (git-fixes). - ASoC: rt711-sdca-sdw: fix calibrate mutex initialization (git-fixes). - ASoC: rt711-sdca: Add endianness flag in snd_soc_component_driver (git-fixes). - ASoC: rt711-sdca: fix kernel NULL pointer dereference when IO error (git-fixes). - ASoC: rt711: Add endianness flag in snd_soc_component_driver (git-fixes). - ASoC: rt711: fix calibrate mutex initialization (git-fixes). - ASoC: sgtl5000: Fix noise on shutdown/remove (git-fixes). - ASoC: tas2764: Add post reset delays (git-fixes). - ASoC: tas2764: Correct playback volume range (git-fixes). - ASoC: tas2764: Fix amp gain register offset & default (git-fixes). - ASoC: tas2764: Fix and extend FSYNC polarity handling (git-fixes). - ASoC: wcd938x: Fix event generation for some controls (git-fixes). - ASoC: wm5110: Fix DRE control (git-fixes). - Bluetooth: btusb: Add the new support IDs for WCN6855 (git-fixxes). - Input: cpcap-pwrbutton - handle errors from platform_get_irq() (git-fixes). - Input: i8042 - Apply probe defer to more ASUS ZenBook models (bsc#1190256). - NFC: nxp-nci: do not print header length mismatch on i2c error (git-fixes). - VMCI: Add support for ARM64 (bsc#1199291, jsc#SLE-24635). - VMCI: Check exclusive_vectors when freeing interrupt 1 (bsc#1199291, jsc#SLE-24635). - VMCI: Fix some error handling paths in vmci_guest_probe_device() (bsc#1199291, jsc#SLE-24635). - VMCI: Release notification_bitmap in error path (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add MMIO access to registers (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add support for DMA datagrams receive (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add support for DMA datagrams sends (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: allocate send and receive buffers for DMA datagrams (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: detect DMA datagram capability (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: register dummy IRQ handlers for DMA datagrams (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: set OS page size (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: whitespace formatting change for vmci register defines (bsc#1199291, jsc#SLE-24635). - arm64: Add HWCAP for self-synchronising virtual counter (git-fixes) - arm64: Add cavium_erratum_23154_cpus missing sentinel (jsc#SLE-24682). - arm64: cpufeature: add HWCAP for FEAT_AFP (git-fixes) - arm64: dts: broadcom: bcm4908: Fix cpu node for smp boot (git-fixes). - arm64: dts: broadcom: bcm4908: Fix timer node for BCM4906 SoC (git-fixes) - arm64: dts: broadcom: bcm4908: Fix timer node for BCM4906 SoC (git-fixes). - arm64: dts: rockchip: Assign RK3399 VDU clock rate (git-fixes). - arm64: mm: Do not invalidate FROM_DEVICE buffers at start of DMA transfer (git-fixes) - batman-adv: Use netif_rx() (git-fixes). - bcmgenet: add WOL IRQ check (git-fixes). - be2net: Fix buffer overflow in be_get_module_eeprom (bsc#1201323). - blk-mq: add one API for waiting until quiesce is done (bsc#1201651). - blk-mq: fix kabi support concurrent queue quiesce unquiesce (bsc#1201651). - blk-mq: support concurrent queue quiesce/unquiesce (bsc#1201651). - can: bcm: use call_rcu() instead of costly synchronize_rcu() (git-fixes). - can: grcan: grcan_probe(): remove extra of_node_get() (git-fixes). - can: gs_usb: gs_usb_open/close(): fix memory leak (git-fixes). - can: m_can: m_can_chip_config(): actually enable internal timestamping (git-fixes). - can: mcp251xfd: mcp251xfd_regmap_crc_read(): improve workaround handling for mcp2517fd (git-fixes). - can: mcp251xfd: mcp251xfd_regmap_crc_read(): update workaround broken CRC on TBC register (git-fixes). - ceph: fix up non-directory creation in SGID directories (bsc#1201595). - cpufreq: mediatek: Unregister platform device on exit (git-fixes). - cpufreq: mediatek: Use module_init and add module_exit (git-fixes). - cpufreq: pmac32-cpufreq: Fix refcount leak bug (git-fixes). - cpuidle: PSCI: Move the `has_lpi` check to the beginning of the (git-fixes) - crypto: hisilicon/qm - modify the uacce mode check (bsc#1201391). - crypto: octeontx2 - Avoid stack variable overflow (jsc#SLE-24682). - crypto: octeontx2 - CN10K CPT to RNM workaround (jsc#SLE-24682). - crypto: octeontx2 - Use swap() instead of swap_engines() (jsc#SLE-24682). - crypto: octeontx2 - add apis for custom engine groups (jsc#SLE-24682). - crypto: octeontx2 - add synchronization between mailbox accesses (jsc#SLE-24682). - crypto: octeontx2 - fix missing unlock (jsc#SLE-24682). - crypto: octeontx2 - increase CPT HW instruction queue length (jsc#SLE-24682). - crypto: octeontx2 - out of bounds access in otx2_cpt_dl_custom_egrp_delete() (jsc#SLE-24682). - crypto: octeontx2 - parameters for custom engine groups (jsc#SLE-24682). - crypto: octeontx2 - select CONFIG_NET_DEVLINK (jsc#SLE-24682). - crypto: octeontx2 - use swap() to make code cleaner (jsc#SLE-24682). - crypto: qat - fix memory leak in RSA (git-fixes). - crypto: qat - remove dma_free_coherent() for DH (git-fixes). - crypto: qat - remove dma_free_coherent() for RSA (git-fixes). - crypto: qat - set CIPHER capability for DH895XCC (git-fixes). - crypto: qat - set to zero DH parameters before free (git-fixes). - crypto: testmgr - allow ecdsa-nist in FIPS mode (jsc#SLE-21132,bsc#1201258). - device property: Add fwnode_irq_get_byname (jsc#SLE-24569) - dm: do not stop request queue after the dm device is suspended (bsc#1201651). - dmaengine: at_xdma: handle errors of at_xdmac_alloc_desc() correctly (git-fixes). - dmaengine: imx-sdma: Allow imx8m for imx7 FW revs (git-fixes). - dmaengine: lgm: Fix an error handling path in intel_ldma_probe() (git-fixes). - dmaengine: pl330: Fix lockdep warning about non-static key (git-fixes). - dmaengine: qcom: bam_dma: fix runtime PM underflow (git-fixes). - dmaengine: ti: Add missing put_device in ti_dra7_xbar_route_allocate (git-fixes). - dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate (git-fixes). - docs: firmware-guide: ACPI: Add named interrupt doc (jsc#SLE-24569) - docs: net: dsa: add more info about the other arguments to get_tag_protocol (git-fixes). - docs: net: dsa: delete port_mdb_dump (git-fixes). - docs: net: dsa: document change_tag_protocol (git-fixes). - docs: net: dsa: document port_fast_age (git-fixes). - docs: net: dsa: document port_setup and port_teardown (git-fixes). - docs: net: dsa: document the shutdown behavior (git-fixes). - docs: net: dsa: document the teardown method (git-fixes). - docs: net: dsa: re-explain what port_fdb_dump actually does (git-fixes). - docs: net: dsa: remove port_vlan_dump (git-fixes). - docs: net: dsa: rename tag_protocol to get_tag_protocol (git-fixes). - docs: net: dsa: update probing documentation (git-fixes). - dpaa2-eth: Initialize mutex used in one step timestamping path (git-fixes). - dpaa2-eth: destroy workqueue at the end of remove function (git-fixes). - dpaa2-eth: unregister the netdev before disconnecting from the PHY (git-fixes). - drbd: fix potential silent data corruption (git-fixes). - drivers: net: smc911x: Check for error irq (git-fixes). - drm/amd/display: Fix by adding FPU protection for dcn30_internal_validate_bw (git-fixes). - drm/amd/display: Only use depth 36 bpp linebuffers on DCN display engines (git-fixes). - drm/amd/display: Set min dcfclk if pipe count is 0 (git-fixes). - drm/amd/vcn: fix an error msg on vcn 3.0 (git-fixes). - drm/amdgpu: To flush tlb for MMHUB of RAVEN series (git-fixes). - drm/i915/dg2: Add Wa_22011100796 (git-fixes). - drm/i915/gt: Serialize GRDOM access between multiple engine resets (git-fixes). - drm/i915/gt: Serialize TLB invalidates with GT resets (git-fixes). - drm/i915/gvt: IS_ERR() vs NULL bug in intel_gvt_update_reg_whitelist() (git-fixes). - drm/i915/selftests: fix a couple IS_ERR() vs NULL tests (git-fixes). - drm/i915/uc: correctly track uc_fw init failure (git-fixes). - drm/i915: Fix a race between vma / object destruction and unbinding (git-fixes). - drm/i915: Require the vm mutex for i915_vma_bind() (git-fixes). - drm/i915: fix a possible refcount leak in intel_dp_add_mst_connector() (git-fixes). - drm/imx/dcss: Add missing of_node_put() in fail path (git-fixes). - drm/mediatek: Detect CMDQ execution timeout (git-fixes). - drm/mediatek: Remove the pointer of struct cmdq_client (git-fixes). - drm/mediatek: Use mailbox rx_callback instead of cmdq_task_cb (git-fixes). - drm/panfrost: Fix shrinker list corruption by madvise IOCTL (git-fixes). - drm/panfrost: Put mapping instead of shmem obj on panfrost_mmu_map_fault_addr() error (git-fixes). - drm/ttm: fix locking in vmap/vunmap TTM GEM helpers (git-fixes). - dt-bindings: dma: allwinner,sun50i-a64-dma: Fix min/max typo (git-fixes). - dt-bindings: gpio: Add Tegra241 support (jsc#SLE-24571) - dt-bindings: soc: qcom: smd-rpm: Add compatible for MSM8953 SoC (git-fixes). - dt-bindings: soc: qcom: smd-rpm: Fix missing MSM8936 compatible (git-fixes). - e1000e: Enable GPT clock before sending message to CSME (git-fixes). - efi/x86: use naked RET on mixed mode call wrapper (git-fixes). - ethernet: Fix error handling in xemaclite_of_probe (git-fixes). - ethtool: Fix get module eeprom fallback (bsc#1201323). - fbcon: Disallow setting font bigger than screen size (git-fixes). - fbcon: Prevent that screen size is smaller than font size (git-fixes). - fbdev: fbmem: Fix logo center image dx issue (git-fixes). - fbmem: Check virtual screen sizes in fb_set_var() (git-fixes). - fjes: Check for error irq (git-fixes). - fsl/fman: Check for null pointer after calling devm_ioremap (git-fixes). - fsl/fman: Fix missing put_device() call in fman_port_probe (git-fixes). - fuse: annotate lock in fuse_reverse_inval_entry() (bsc#1201593). - fuse: make sure reclaim does not write the inode (bsc#1201592). - gpio: gpio-xilinx: Fix integer overflow (git-fixes). - gpio: pca953x: only use single read/write for No AI mode (git-fixes). - gpio: pca953x: use the correct range when do regmap sync (git-fixes). - gpio: pca953x: use the correct register address when regcache sync during init (git-fixes). - gpio: tegra186: Add IRQ per bank for Tegra241 (jsc#SLE-24571) - gpio: tegra186: Add support for Tegra241 (jsc#SLE-24571) - gve: Recording rx queue before sending to napi (git-fixes). - hwmon: (occ) Prevent power cap command overwriting poll response (git-fixes). - hwmon: (occ) Remove sequence numbering and checksum calculation (git-fixes). - hwrng: cavium - fix NULL but dereferenced coccicheck error (jsc#SLE-24682). - i2c: cadence: Change large transfer count reset logic to be unconditional (git-fixes). - i2c: cadence: Unregister the clk notifier in error path (git-fixes). - i2c: mlxcpld: Fix register setting for 400KHz frequency (git-fixes). - i2c: piix4: Fix a memory leak in the EFCH MMIO support (git-fixes). - i2c: smbus: Check for parent device before dereference (git-fixes). - i2c: smbus: Use device_*() functions instead of of_*() (jsc#SLE-24569) - i2c: tegra: Add SMBus block read function (jsc#SLE-24569) - i2c: tegra: Add the ACPI support (jsc#SLE-24569) - i2c: tegra: use i2c_timings for bus clock freq (jsc#SLE-24569) - ice: Avoid RTNL lock when re-creating auxiliary device (git-fixes). - ice: Fix error with handling of bonding MTU (git-fixes). - ice: Fix race condition during interface enslave (git-fixes). - ice: stop disabling VFs due to PF error responses (git-fixes). - ida: do not use BUG_ON() for debugging (git-fixes). - ima: Fix a potential integer overflow in ima_appraise_measurement (git-fixes). - ima: Fix potential memory leak in ima_init_crypto() (git-fixes). - ima: force signature verification when CONFIG_KEXEC_SIG is configured (git-fixes). - irqchip/gic-v3: Workaround Marvell erratum 38545 when reading IAR (jsc#SLE-24682). - irqchip: or1k-pic: Undefine mask_ack for level triggered hardware (git-fixes). - ixgbevf: Require large buffers for build_skb on 82599VF (git-fixes). - kABI workaround for phy_device changes (git-fixes). - kABI workaround for rtsx_usb (git-fixes). - kABI workaround for snd-soc-rt5682-* (git-fixes). - kABI: fix adding field to scsi_device (git-fixes). - kABI: fix adding field to ufs_hba (git-fixes). - kABI: i2c: smbus: restore of_ alert variant (jsc#SLE-24569). kABI fix for "i2c: smbus: Use device_*() functions instead of of_*()" - kabi/severities: add intel ice - kabi/severities: add stmmac network driver local symbols - kabi/severities: ignore dropped symbol rt5682_headset_detect - kasan: fix tag for large allocations when using CONFIG_SLAB (git fixes (mm/kasan)). - kernel-obs-build: include qemu_fw_cfg (boo#1201705) - kvm: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930). - kvm: emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930). - libceph: fix potential use-after-free on linger ping and resends (bsc#1201596). - md: bcache: check the return value of kzalloc() in detached_dev_do_request() (git-fixes). - memcg: page_alloc: skip bulk allocator for __GFP_ACCOUNT (git fixes (mm/pgalloc)). - memregion: Fix memregion_free() fallback definition (git-fixes). - misc: rtsx_usb: fix use of dma mapped buffer for usb bulk transfer (git-fixes). - misc: rtsx_usb: set return value in rsp_buf alloc err path (git-fixes). - misc: rtsx_usb: use separate command and response buffers (git-fixes). - mm/large system hash: avoid possible NULL deref in alloc_large_system_hash (git fixes (mm/pgalloc)). - mm/secretmem: avoid letting secretmem_users drop to zero (git fixes (mm/secretmem)). - mm/vmalloc: fix numa spreading for large hash tables (git fixes (mm/vmalloc)). - mm/vmalloc: make sure to dump unpurged areas in /proc/vmallocinfo (git fixes (mm/vmalloc)). - mm/vmalloc: repair warn_alloc()s in __vmalloc_area_node() (git fixes (mm/vmalloc)). - mm: do not try to NUMA-migrate COW pages that have other uses (git fixes (mm/numa)). - mm: swap: get rid of livelock in swapin readahead (git fixes (mm/swap)). - mt76: mt7921: get rid of mt7921_mac_set_beacon_filter (git-fixes). - natsemi: xtensa: fix section mismatch warnings (git-fixes). - nbd: fix possible overflow on 'first_minor' in nbd_dev_add() (git-fixes). - net/fsl: xgmac_mdio: Add workaround for erratum A-009885 (git-fixes). - net/fsl: xgmac_mdio: Fix incorrect iounmap when removing module (git-fixes). - net/qla3xxx: fix an error code in ql_adapter_up() (git-fixes). - net: ag71xx: Fix a potential double free in error handling paths (git-fixes). - net: altera: set a couple error code in probe() (git-fixes). - net: amd-xgbe: Fix skb data length underflow (git-fixes). - net: amd-xgbe: disable interrupts during pci removal (git-fixes). - net: amd-xgbe: ensure to reset the tx_timer_active flag (git-fixes). - net: annotate data-races on txq->xmit_lock_owner (git-fixes). - net: axienet: Fix TX ring slot available check (git-fixes). - net: axienet: Wait for PhyRstCmplt after core reset (git-fixes). - net: axienet: add missing memory barriers (git-fixes). - net: axienet: fix for TX busy handling (git-fixes). - net: axienet: fix number of TX ring slots for available check (git-fixes). - net: axienet: increase default TX ring size to 128 (git-fixes). - net: axienet: increase reset timeout (git-fixes). - net: axienet: limit minimum TX ring size (git-fixes). - net: bcm4908: Handle dma_set_coherent_mask error codes (git-fixes). - net: bcmgenet: Do not claim WOL when its not available (git-fixes). - net: bcmgenet: skip invalid partial checksums (git-fixes). - net: chelsio: cxgb3: check the return value of pci_find_capability() (git-fixes). - net: cpsw: Properly initialise struct page_pool_params (git-fixes). - net: cpsw: avoid alignment faults by taking NET_IP_ALIGN into account (git-fixes). - net: dsa: ar9331: register the mdiobus under devres (git-fixes). - net: dsa: bcm_sf2: do not use devres for mdiobus (git-fixes). - net: dsa: felix: do not use devres for mdiobus (git-fixes). - net: dsa: lan9303: add VLAN IDs to master device (git-fixes). - net: dsa: lan9303: fix reset on probe (git-fixes). - net: dsa: lantiq_gswip: do not use devres for mdiobus (git-fixes). - net: dsa: mt7530: fix incorrect test in mt753x_phylink_validate() (git-fixes). - net: dsa: mt7530: fix kernel bug in mdiobus_free() when unbinding (git-fixes). - net: dsa: mt7530: make NET_DSA_MT7530 select MEDIATEK_GE_PHY (git-fixes). - net: dsa: mv88e6xxx: do not use devres for mdiobus (git-fixes). - net: dsa: mv88e6xxx: fix use-after-free in mv88e6xxx_mdios_unregister (git-fixes). - net: dsa: mv88e6xxx: flush switchdev FDB workqueue before removing VLAN (git-fixes). - net: ethernet: lpc_eth: Handle error for clk_enable (git-fixes). - net: ethernet: mtk_eth_soc: fix error checking in mtk_mac_config() (git-fixes). - net: ethernet: mtk_eth_soc: fix return values and refactor MDIO ops (git-fixes). - net: ethernet: ti: cpts: Handle error for clk_enable (git-fixes). - net: fec: only clear interrupt of handling queue in fec_enet_rx_queue() (git-fixes). - net: ieee802154: ca8210: Fix lifs/sifs periods (git-fixes). - net: ieee802154: ca8210: Stop leaking skb's (git-fixes). - net: ieee802154: hwsim: Ensure proper channel selection at probe time (git-fixes). - net: ieee802154: mcr20a: Fix lifs/sifs periods (git-fixes). - net: ipa: add an interconnect dependency (git-fixes). - net: ipa: fix atomic update in ipa_endpoint_replenish() (git-fixes). - net: ipa: prevent concurrent replenish (git-fixes). - net: ipa: use a bitmap for endpoint replenish_enabled (git-fixes). - net: ks8851: Check for error irq (git-fixes). - net: lantiq_xrx200: fix statistics of received bytes (git-fixes). - net: ll_temac: check the return value of devm_kmalloc() (git-fixes). - net: macb: Fix lost RX packet wakeup race in NAPI receive (git-fixes). - net: macsec: Fix offload support for NETDEV_UNREGISTER event (git-fixes). - net: macsec: Verify that send_sci is on when setting Tx sci explicitly (git-fixes). - net: marvell: mvpp2: Fix the computation of shared CPUs (git-fixes). - net: marvell: prestera: Add missing of_node_put() in prestera_switch_set_base_mac_addr (git-fixes). - net: marvell: prestera: fix incorrect return of port_find (git-fixes). - net: mdio: aspeed: Add missing MODULE_DEVICE_TABLE (git-fixes). - net: mscc: ocelot: fix backwards compatibility with single-chain tc-flower offload (git-fixes). - net: mscc: ocelot: fix mutex lock error during ethtool stats read (git-fixes). - net: mscc: ocelot: fix using match before it is set (git-fixes). - net: mv643xx_eth: process retval from of_get_mac_address (git-fixes). - net: mvpp2: fix XDP rx queues registering (git-fixes). - net: phy: Do not trigger state machine while in suspend (git-fixes). - net: phylink: Force link down and retrigger resolve on interface change (git-fixes). - net: phylink: Force retrigger in case of latched link-fail indicator (git-fixes). - net: rose: fix UAF bug caused by rose_t0timer_expiry (git-fixes). - net: sfp: fix high power modules without diagnostic monitoring (git-fixes). - net: sfp: ignore disabled SFP node (git-fixes). - net: sparx5: Fix add vlan when invalid operation (git-fixes). - net: sparx5: Fix get_stat64 crash in tcpdump (git-fixes). - net: stmmac: Add platform level debug register dump feature (git-fixes). - net: stmmac: Avoid DMA_CHAN_CONTROL write if no Split Header support (git-fixes). - net: stmmac: configure PTP clock source prior to PTP initialization (git-fixes). - net: stmmac: dump gmac4 DMA registers correctly (git-fixes). - net: stmmac: dwmac-rk: fix oob read in rk_gmac_setup (git-fixes). - net: stmmac: dwmac-visconti: Fix bit definitions for ETHER_CLK_SEL (git-fixes). - net: stmmac: dwmac-visconti: Fix clock configuration for RMII mode (git-fixes). - net: stmmac: dwmac-visconti: Fix value of ETHER_CLK_SEL_FREQ_SEL_2P5M (git-fixes). - net: stmmac: dwmac-visconti: No change to ETHER_CLOCK_SEL for unexpected speed request (git-fixes). - net: stmmac: ensure PTP time register reads are consistent (git-fixes). - net: stmmac: fix return value of __setup handler (git-fixes). - net: stmmac: fix tc flower deletion for VLAN priority Rx steering (git-fixes). - net: stmmac: properly handle with runtime pm in stmmac_dvr_remove() (git-fixes). - net: stmmac: ptp: fix potentially overflowing expression (git-fixes). - net: stmmac: retain PTP clock time during SIOCSHWTSTAMP ioctls (git-fixes). - net: stmmac: skip only stmmac_ptp_register when resume from suspend (git-fixes). - net: sxgbe: fix return value of __setup handler (git-fixes). - net: systemport: Add global locking for descriptor lifecycle (git-fixes). - net: usb: qmi_wwan: add Telit 0x1060 composition (git-fixes). - net: usb: qmi_wwan: add Telit 0x1070 composition (git-fixes). - netdevsim: do not overwrite read only ethtool parms (git-fixes). - nfp: Fix memory leak in nfp_cpp_area_cache_add() (git-fixes). - nvme: add APIs for stopping/starting admin queue (bsc#1201651). - nvme: apply nvme API to quiesce/unquiesce admin queue (bsc#1201651). - nvme: loop: clear NVME_CTRL_ADMIN_Q_STOPPED after admin queue is reallocated (bsc#1201651). - nvme: paring quiesce/unquiesce (bsc#1201651). - nvme: prepare for pairing quiescing and unquiescing (bsc#1201651). - nvme: wait until quiesce is done (bsc#1201651). - octeontx2-af: Do not fixup all VF action entries (git-fixes). - octeontx2-af: Fix a memleak bug in rvu_mbox_init() (git-fixes). - octeontx2-af: cn10k: Do not enable RPM loopback for LPC interfaces (git-fixes). - octeontx2-pf: Forward error codes to VF (git-fixes). - page_alloc: fix invalid watemark check on a negative value (git fixes (mm/pgalloc)). - perf/amd/ibs: Add support for L3 miss filtering (jsc#SLE-24578). - perf/amd/ibs: Advertise zen4_ibs_extensions as pmu capability attribute (jsc#SLE-24578). - perf/amd/ibs: Cascade pmu init functions' return value (jsc#SLE-24578). - perf/amd/ibs: Use ->is_visible callback for dynamic attributes (jsc#SLE-24578). - pinctrl: aspeed: Fix potential NULL dereference in aspeed_pinmux_set_mux() (git-fixes). - pinctrl: sunxi: a83t: Fix NAND function name for some pins (git-fixes). - pinctrl: sunxi: sunxi_pconf_set: use correct offset (git-fixes). - platform/x86: hp-wmi: Ignore Sanitization Mode event (git-fixes). - posix_cpu_timers: fix race between exit_itimers() and /proc/pid/timers (git-fixes). - power/reset: arm-versatile: Fix refcount leak in versatile_reboot_probe (git-fixes). - powerpc/mobility: wait for memory transfer to complete (bsc#1201846 ltc#198761). - powerpc/pseries/mobility: set NMI watchdog factor during an LPM (bsc#1201846 ltc#198761). - powerpc/watchdog: introduce a NMI watchdog's factor (bsc#1201846 ltc#198761). - ppp: ensure minimum packet size in ppp_write() (git-fixes). - qede: validate non LSO skb length (git-fixes). - r8152: fix a WOL issue (git-fixes). - r8169: fix accessing unset transport header (git-fixes). - random: document add_hwgenerator_randomness() with other input functions (git-fixes). - random: fix typo in comments (git-fixes). - raw: Fix a data-race around sysctl_raw_l3mdev_accept (git-fixes). - reset: Fix devm bulk optional exclusive control getter (git-fixes). - rocker: fix a sleeping in atomic bug (git-fixes). - rpm/modules.fips: add ecdsa_generic (jsc#SLE-21132,bsc#1201258). - sched/core: Do not requeue task on CPU excluded from cpus_mask (bnc#1199356). - scsi: avoid to quiesce sdev->request_queue two times (bsc#1201651). - scsi: core: sd: Add silence_suspend flag to suppress some PM messages (git-fixes). - scsi: iscsi: Exclude zero from the endpoint ID range (git-fixes). - scsi: lpfc: Fix mailbox command failure during driver initialization (git-fixes). - scsi: make sure that request queue queiesce and unquiesce balanced (bsc#1201651). - scsi: scsi_debug: Do not call kcalloc() if size arg is zero (git-fixes). - scsi: scsi_debug: Fix type in min_t to avoid stack OOB (git-fixes). - scsi: scsi_debug: Fix zone transition to full condition (git-fixes). - scsi: scsi_debug: Sanity check block descriptor length in resp_mode_select() (git-fixes). - scsi: sd: Fix potential NULL pointer dereference (git-fixes). - scsi: sd: Fix sd_do_mode_sense() buffer length handling (git-fixes). - scsi: ufs: Fix a deadlock in the error handler (git-fixes). - scsi: ufs: Fix runtime PM messages never-ending cycle (git-fixes). - scsi: ufs: Remove dead code (git-fixes). - scsi: ufs: core: scsi_get_lba() error fix (git-fixes). - serial: 8250: Fix PM usage_count for console handover (git-fixes). - serial: 8250: fix return error code in serial8250_request_std_resource() (git-fixes). - serial: pl011: UPSTAT_AUTORTS requires .throttle/unthrottle (git-fixes). - serial: sc16is7xx: Clear RS485 bits in the shutdown (git-fixes). - serial: stm32: Clear prev values before setting RTS delays (git-fixes). - soc: ixp4xx/npe: Fix unused match warning (git-fixes). - spi: Add Tegra234 QUAD SPI compatible (jsc#SLE-24570) - spi: amd: Limit max transfer and message size (git-fixes). - spi: bcm2835: bcm2835_spi_handle_err(): fix NULL pointer deref for non DMA transfers (git-fixes). - spi: tegra210-quad: add acpi support (jsc#SLE-24570) - spi: tegra210-quad: add new chips to compatible (jsc#SLE-24570) - spi: tegra210-quad: combined sequence mode (jsc#SLE-24570) - spi: tegra210-quad: use device_reset method (jsc#SLE-24570) - spi: tegra210-quad: use devm call for cdata memory (jsc#SLE-24570) - supported.conf: mark marvell octeontx2 crypto driver as supported (jsc#SLE-24682) Mark rvu_cptpf.ko and rvu_cptvf.ko as supported. - supported.conf: rvu_mbox as supported (jsc#SLE-24682) - sysctl: Fix data races in proc_dointvec() (git-fixes). - sysctl: Fix data races in proc_dointvec_jiffies() (git-fixes). - sysctl: Fix data races in proc_dointvec_minmax() (git-fixes). - sysctl: Fix data races in proc_douintvec() (git-fixes). - sysctl: Fix data races in proc_douintvec_minmax() (git-fixes). - sysctl: Fix data races in proc_doulongvec_minmax() (git-fixes). - sysctl: Fix data-races in proc_dointvec_ms_jiffies() (git-fixes). - sysctl: Fix data-races in proc_dou8vec_minmax() (git-fixes). - tee: fix put order in teedev_close_context() (git-fixes). - tty: serial: samsung_tty: set dma burst_size to 1 (git-fixes). - tun: fix bonding active backup with arp monitoring (git-fixes). - usb: dwc3: gadget: Fix event pending check (git-fixes). - usb: serial: ftdi_sio: add Belimo device ids (git-fixes). - usb: typec: add missing uevent when partner support PD (git-fixes). - usbnet: fix memory leak in error case (git-fixes). - veth: Do not record rx queue hint in veth_xmit (git-fixes). - veth: ensure skb entering GRO are not cloned (git-fixes). - video: of_display_timing.h: include errno.h (git-fixes). - virtio_mmio: Add missing PM calls to freeze/restore (git-fixes). - virtio_mmio: Restore guest page size on resume (git-fixes). - vrf: Reset IPCB/IP6CB when processing outbound pkts in vrf dev xmit (git-fixes). - vt: fix memory overlapping when deleting chars in the buffer (git-fixes). - watchdog: export lockup_detector_reconfigure (bsc#1201846 ltc#198761). - wifi: mac80211: fix queue selection for mesh/OCB interfaces (git-fixes). - wifi: mac80211_hwsim: set virtio device ready in probe() (git-fixes). - x86/bugs: Remove apostrophe typo (bsc#1190497). cluster-md-kmp-default-5.14.21-150400.24.18.1.x86_64.rpm True dlm-kmp-default-5.14.21-150400.24.18.1.x86_64.rpm True gfs2-kmp-default-5.14.21-150400.24.18.1.x86_64.rpm True kernel-debug-5.14.21-150400.24.18.1.nosrc.rpm True kernel-debug-5.14.21-150400.24.18.1.x86_64.rpm True kernel-debug-devel-5.14.21-150400.24.18.1.x86_64.rpm True kernel-debug-livepatch-devel-5.14.21-150400.24.18.1.x86_64.rpm True kernel-default-5.14.21-150400.24.18.1.nosrc.rpm True kernel-default-5.14.21-150400.24.18.1.x86_64.rpm True kernel-default-base-5.14.21-150400.24.18.1.150400.24.5.4.src.rpm True kernel-default-base-5.14.21-150400.24.18.1.150400.24.5.4.x86_64.rpm True kernel-default-base-rebuild-5.14.21-150400.24.18.1.150400.24.5.4.x86_64.rpm True kernel-default-devel-5.14.21-150400.24.18.1.x86_64.rpm True kernel-default-extra-5.14.21-150400.24.18.1.x86_64.rpm True kernel-default-livepatch-5.14.21-150400.24.18.1.x86_64.rpm True kernel-default-livepatch-devel-5.14.21-150400.24.18.1.x86_64.rpm True kernel-default-optional-5.14.21-150400.24.18.1.x86_64.rpm True kernel-devel-5.14.21-150400.24.18.1.noarch.rpm True kernel-docs-5.14.21-150400.24.18.1.noarch.rpm True kernel-docs-5.14.21-150400.24.18.1.nosrc.rpm True kernel-docs-html-5.14.21-150400.24.18.1.noarch.rpm True kernel-kvmsmall-5.14.21-150400.24.18.1.nosrc.rpm True kernel-kvmsmall-5.14.21-150400.24.18.1.x86_64.rpm True kernel-kvmsmall-devel-5.14.21-150400.24.18.1.x86_64.rpm True kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.18.1.x86_64.rpm True kernel-macros-5.14.21-150400.24.18.1.noarch.rpm True kernel-obs-build-5.14.21-150400.24.18.1.src.rpm True kernel-obs-build-5.14.21-150400.24.18.1.x86_64.rpm True kernel-obs-qa-5.14.21-150400.24.18.1.src.rpm True kernel-obs-qa-5.14.21-150400.24.18.1.x86_64.rpm True kernel-source-5.14.21-150400.24.18.1.noarch.rpm True kernel-source-5.14.21-150400.24.18.1.src.rpm True kernel-source-vanilla-5.14.21-150400.24.18.1.noarch.rpm True kernel-syms-5.14.21-150400.24.18.1.src.rpm True kernel-syms-5.14.21-150400.24.18.1.x86_64.rpm True kselftests-kmp-default-5.14.21-150400.24.18.1.x86_64.rpm True ocfs2-kmp-default-5.14.21-150400.24.18.1.x86_64.rpm True reiserfs-kmp-default-5.14.21-150400.24.18.1.x86_64.rpm True cluster-md-kmp-default-5.14.21-150400.24.18.1.s390x.rpm True dlm-kmp-default-5.14.21-150400.24.18.1.s390x.rpm True gfs2-kmp-default-5.14.21-150400.24.18.1.s390x.rpm True kernel-default-5.14.21-150400.24.18.1.s390x.rpm True kernel-default-base-5.14.21-150400.24.18.1.150400.24.5.4.s390x.rpm True kernel-default-base-rebuild-5.14.21-150400.24.18.1.150400.24.5.4.s390x.rpm True kernel-default-devel-5.14.21-150400.24.18.1.s390x.rpm True kernel-default-extra-5.14.21-150400.24.18.1.s390x.rpm True kernel-default-livepatch-5.14.21-150400.24.18.1.s390x.rpm True kernel-default-livepatch-devel-5.14.21-150400.24.18.1.s390x.rpm True kernel-default-optional-5.14.21-150400.24.18.1.s390x.rpm True kernel-obs-build-5.14.21-150400.24.18.1.s390x.rpm True kernel-obs-qa-5.14.21-150400.24.18.1.s390x.rpm True kernel-syms-5.14.21-150400.24.18.1.s390x.rpm True kernel-zfcpdump-5.14.21-150400.24.18.1.nosrc.rpm True kernel-zfcpdump-5.14.21-150400.24.18.1.s390x.rpm True kselftests-kmp-default-5.14.21-150400.24.18.1.s390x.rpm True ocfs2-kmp-default-5.14.21-150400.24.18.1.s390x.rpm True reiserfs-kmp-default-5.14.21-150400.24.18.1.s390x.rpm True cluster-md-kmp-default-5.14.21-150400.24.18.1.ppc64le.rpm True dlm-kmp-default-5.14.21-150400.24.18.1.ppc64le.rpm True gfs2-kmp-default-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-debug-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-debug-devel-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-debug-livepatch-devel-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-default-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-default-base-5.14.21-150400.24.18.1.150400.24.5.4.ppc64le.rpm True kernel-default-base-rebuild-5.14.21-150400.24.18.1.150400.24.5.4.ppc64le.rpm True kernel-default-devel-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-default-extra-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-default-livepatch-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-default-livepatch-devel-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-default-optional-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-kvmsmall-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-kvmsmall-devel-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-obs-build-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-obs-qa-5.14.21-150400.24.18.1.ppc64le.rpm True kernel-syms-5.14.21-150400.24.18.1.ppc64le.rpm True kselftests-kmp-default-5.14.21-150400.24.18.1.ppc64le.rpm True ocfs2-kmp-default-5.14.21-150400.24.18.1.ppc64le.rpm True reiserfs-kmp-default-5.14.21-150400.24.18.1.ppc64le.rpm True cluster-md-kmp-64kb-5.14.21-150400.24.18.1.aarch64.rpm True cluster-md-kmp-default-5.14.21-150400.24.18.1.aarch64.rpm True dlm-kmp-64kb-5.14.21-150400.24.18.1.aarch64.rpm True dlm-kmp-default-5.14.21-150400.24.18.1.aarch64.rpm True dtb-aarch64-5.14.21-150400.24.18.1.src.rpm True dtb-allwinner-5.14.21-150400.24.18.1.aarch64.rpm True dtb-altera-5.14.21-150400.24.18.1.aarch64.rpm True dtb-amazon-5.14.21-150400.24.18.1.aarch64.rpm True dtb-amd-5.14.21-150400.24.18.1.aarch64.rpm True dtb-amlogic-5.14.21-150400.24.18.1.aarch64.rpm True dtb-apm-5.14.21-150400.24.18.1.aarch64.rpm True dtb-apple-5.14.21-150400.24.18.1.aarch64.rpm True dtb-arm-5.14.21-150400.24.18.1.aarch64.rpm True dtb-broadcom-5.14.21-150400.24.18.1.aarch64.rpm True dtb-cavium-5.14.21-150400.24.18.1.aarch64.rpm True dtb-exynos-5.14.21-150400.24.18.1.aarch64.rpm True dtb-freescale-5.14.21-150400.24.18.1.aarch64.rpm True dtb-hisilicon-5.14.21-150400.24.18.1.aarch64.rpm True dtb-lg-5.14.21-150400.24.18.1.aarch64.rpm True dtb-marvell-5.14.21-150400.24.18.1.aarch64.rpm True dtb-mediatek-5.14.21-150400.24.18.1.aarch64.rpm True dtb-nvidia-5.14.21-150400.24.18.1.aarch64.rpm True dtb-qcom-5.14.21-150400.24.18.1.aarch64.rpm True dtb-renesas-5.14.21-150400.24.18.1.aarch64.rpm True dtb-rockchip-5.14.21-150400.24.18.1.aarch64.rpm True dtb-socionext-5.14.21-150400.24.18.1.aarch64.rpm True dtb-sprd-5.14.21-150400.24.18.1.aarch64.rpm True dtb-xilinx-5.14.21-150400.24.18.1.aarch64.rpm True gfs2-kmp-64kb-5.14.21-150400.24.18.1.aarch64.rpm True gfs2-kmp-default-5.14.21-150400.24.18.1.aarch64.rpm True kernel-64kb-5.14.21-150400.24.18.1.aarch64.rpm True kernel-64kb-5.14.21-150400.24.18.1.nosrc.rpm True kernel-64kb-devel-5.14.21-150400.24.18.1.aarch64.rpm True kernel-64kb-extra-5.14.21-150400.24.18.1.aarch64.rpm True kernel-64kb-livepatch-devel-5.14.21-150400.24.18.1.aarch64.rpm True kernel-64kb-optional-5.14.21-150400.24.18.1.aarch64.rpm True kernel-default-5.14.21-150400.24.18.1.aarch64.rpm True kernel-default-base-5.14.21-150400.24.18.1.150400.24.5.4.aarch64.rpm True kernel-default-base-rebuild-5.14.21-150400.24.18.1.150400.24.5.4.aarch64.rpm True kernel-default-devel-5.14.21-150400.24.18.1.aarch64.rpm True kernel-default-extra-5.14.21-150400.24.18.1.aarch64.rpm True kernel-default-livepatch-5.14.21-150400.24.18.1.aarch64.rpm True kernel-default-livepatch-devel-5.14.21-150400.24.18.1.aarch64.rpm True kernel-default-optional-5.14.21-150400.24.18.1.aarch64.rpm True kernel-kvmsmall-5.14.21-150400.24.18.1.aarch64.rpm True kernel-kvmsmall-devel-5.14.21-150400.24.18.1.aarch64.rpm True kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.18.1.aarch64.rpm True kernel-obs-build-5.14.21-150400.24.18.1.aarch64.rpm True kernel-obs-qa-5.14.21-150400.24.18.1.aarch64.rpm True kernel-syms-5.14.21-150400.24.18.1.aarch64.rpm True kselftests-kmp-64kb-5.14.21-150400.24.18.1.aarch64.rpm True kselftests-kmp-default-5.14.21-150400.24.18.1.aarch64.rpm True ocfs2-kmp-64kb-5.14.21-150400.24.18.1.aarch64.rpm True ocfs2-kmp-default-5.14.21-150400.24.18.1.aarch64.rpm True reiserfs-kmp-64kb-5.14.21-150400.24.18.1.aarch64.rpm True reiserfs-kmp-default-5.14.21-150400.24.18.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2722 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP4 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem (bnc#1198829). - CVE-2022-21505: Fixed kexec lockdown bypass with IMA policy (bsc#1201458). - CVE-2022-29581: Fixed improper update of Reference Count in net/sched that could cause root privilege escalation (bnc#1199665). - CVE-2022-32250: Fixed an use-after-free bug in the netfilter subsystem. This flaw allowed a local attacker with user access to cause a privilege escalation issue (bnc#1200015, bnc#1200494). The following non-security bugs were fixed: - 9p: Fix refcounting during full path walks for fid lookups (git-fixes). - 9p: fix fid refcount leak in v9fs_vfs_atomic_open_dotl (git-fixes). - 9p: fix fid refcount leak in v9fs_vfs_get_link (git-fixes). - ACPI: CPPC: Only probe for _CPC if CPPC v2 is acked (git-fixes). - ACPI: video: Fix acpi_video_handles_brightness_key_presses() (git-fixes). - ALSA: hda - Add fixup for Dell Latitidue E5430 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model (git-fixes). - ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc221 (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes). - ALSA: hda/realtek: Add quirk for Clevo L140PU (git-fixes). - ALSA: hda/realtek: Fix headset mic for Acer SF313-51 (git-fixes). - ALSA: hda/realtek: fix mute/micmute LEDs for HP machines (git-fixes). - ALSA: usb-audio: Add quirk for Fiero SC-01 (fw v1.0.0) (git-fixes). - ALSA: usb-audio: Add quirk for Fiero SC-01 (git-fixes). - ALSA: usb-audio: Add quirks for MacroSilicon MS2100/MS2106 devices (git-fixes). - ALSA: usb-audio: Workarounds for Behringer UMC 204/404 HD (git-fixes). - ARM: 9209/1: Spectre-BHB: avoid pr_info() every time a CPU comes out of idle (git-fixes). - ARM: 9210/1: Mark the FDT_FIXED sections as shareable (git-fixes). - ARM: 9213/1: Print message about disabled Spectre workarounds only once (git-fixes). - ARM: 9214/1: alignment: advance IT state after emulating Thumb instruction (git-fixes). - ARM: 9216/1: Fix MAX_DMA_ADDRESS overflow (git-fixes). - ARM: dts: at91: sama5d2: Fix typo in i2s1 node (git-fixes). - ARM: dts: imx6qdl-ts7970: Fix ngpio typo and count (git-fixes). - ARM: dts: stm32: use the correct clock source for CEC on stm32mp151 (git-fixes). - ARM: dts: sunxi: Fix SPI NOR campatible on Orange Pi Zero (git-fixes). - ASoC: Intel: Skylake: Correct the handling of fmt_config flexible array (git-fixes). - ASoC: Intel: Skylake: Correct the ssp rate discovery in skl_get_ssp_clks() (git-fixes). - ASoC: Intel: bytcr_wm5102: Fix GPIO related probe-ordering problem (git-fixes). - ASoC: Intel: sof_sdw: handle errors on card registration (git-fixes). - ASoC: Realtek/Maxim SoundWire codecs: disable pm_runtime on remove (git-fixes). - ASoC: Remove unused hw_write_t type (git-fixes). - ASoC: SOF: Intel: hda-loader: Clarify the cl_dsp_init() flow (git-fixes). - ASoC: codecs: rt700/rt711/rt711-sdca: initialize workqueues in probe (git-fixes). - ASoC: codecs: rt700/rt711/rt711-sdca: resume bus/codec in .set_jack_detect (git-fixes). - ASoC: cs47l15: Fix event generation for low power mux control (git-fixes). - ASoC: dapm: Initialise kcontrol data for mux/demux controls (git-fixes). - ASoC: madera: Fix event generation for OUT1 demux (git-fixes). - ASoC: madera: Fix event generation for rate controls (git-fixes). - ASoC: ops: Fix off by one in range control validation (git-fixes). - ASoC: rt5682: Avoid the unexpected IRQ event during going to suspend (git-fixes). - ASoC: rt5682: Fix deadlock on resume (git-fixes). - ASoC: rt5682: Re-detect the combo jack after resuming (git-fixes). - ASoC: rt5682: fix an incorrect NULL check on list iterator (git-fixes). - ASoC: rt5682: move clk related code to rt5682_i2c_probe (git-fixes). - ASoC: rt7*-sdw: harden jack_detect_handler (git-fixes). - ASoC: rt711-sdca-sdw: fix calibrate mutex initialization (git-fixes). - ASoC: rt711-sdca: Add endianness flag in snd_soc_component_driver (git-fixes). - ASoC: rt711-sdca: fix kernel NULL pointer dereference when IO error (git-fixes). - ASoC: rt711: Add endianness flag in snd_soc_component_driver (git-fixes). - ASoC: rt711: fix calibrate mutex initialization (git-fixes). - ASoC: sgtl5000: Fix noise on shutdown/remove (git-fixes). - ASoC: tas2764: Add post reset delays (git-fixes). - ASoC: tas2764: Correct playback volume range (git-fixes). - ASoC: tas2764: Fix amp gain register offset & default (git-fixes). - ASoC: tas2764: Fix and extend FSYNC polarity handling (git-fixes). - ASoC: wcd938x: Fix event generation for some controls (git-fixes). - ASoC: wm5110: Fix DRE control (git-fixes). - Bluetooth: Add bt_skb_sendmmsg helper (git-fixes). - Bluetooth: Add bt_skb_sendmsg helper (git-fixes). - Bluetooth: Fix bt_skb_sendmmsg not allocating partial chunks (git-fixes). - Bluetooth: Fix passing NULL to PTR_ERR (git-fixes). - Bluetooth: RFCOMM: Replace use of memcpy_from_msg with bt_skb_sendmmsg (git-fixes). - Bluetooth: SCO: Fix sco_send_frame returning skb->len (git-fixes). - Bluetooth: SCO: Replace use of memcpy_from_msg with bt_skb_sendmsg (git-fixes). - Bluetooth: btusb: Add the new support IDs for WCN6855 (git-fixxes). - Documentation: add description for net.core.gro_normal_batch (git-fixes). - Documentation: add description for net.sctp.ecn_enable (git-fixes). - Documentation: add description for net.sctp.intl_enable (git-fixes). - Documentation: add description for net.sctp.reconf_enable (git-fixes). - Documentation: fix udp_wmem_min in ip-sysctl.rst (git-fixes). - Documentation: move watch_queue to core-api (git-fixes). - Input: cpcap-pwrbutton - handle errors from platform_get_irq() (git-fixes). - Input: i8042 - Apply probe defer to more ASUS ZenBook models (bsc#1190256). - KVM: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930). - KVM: selftests: Make sure kvm_create_max_vcpus test won't hit RLIMIT_NOFILE (git-fixes). - KVM: selftests: Silence compiler warning in the kvm_page_table_test (git-fixes). - NFC: nxp-nci: do not print header length mismatch on i2c error (git-fixes). - VMCI: Add support for ARM64 (bsc#1199291, jsc#SLE-24635). - VMCI: Check exclusive_vectors when freeing interrupt 1 (bsc#1199291, jsc#SLE-24635). - VMCI: Fix some error handling paths in vmci_guest_probe_device() (bsc#1199291, jsc#SLE-24635). - VMCI: Release notification_bitmap in error path (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add MMIO access to registers (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add support for DMA datagrams receive (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: add support for DMA datagrams sends (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: allocate send and receive buffers for DMA datagrams (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: detect DMA datagram capability (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: register dummy IRQ handlers for DMA datagrams (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: set OS page size (bsc#1199291, jsc#SLE-24635). - VMCI: dma dg: whitespace formatting change for vmci register defines (bsc#1199291, jsc#SLE-24635). - XArray: Update the LRU list in xas_split() (git-fixes). - arm64: Add HWCAP for self-synchronising virtual counter (git-fixes) - arm64: Add cavium_erratum_23154_cpus missing sentinel (jsc#SLE-24682). - arm64: cpufeature: add HWCAP for FEAT_AFP (git-fixes) - arm64: dts: broadcom: bcm4908: Fix cpu node for smp boot (git-fixes). - arm64: dts: broadcom: bcm4908: Fix timer node for BCM4906 SoC (git-fixes) - arm64: dts: broadcom: bcm4908: Fix timer node for BCM4906 SoC (git-fixes). - arm64: dts: rockchip: Assign RK3399 VDU clock rate (git-fixes). - arm64: mm: Do not invalidate FROM_DEVICE buffers at start of DMA transfer (git-fixes) - arm_pmu: Validate single/group leader events (git-fixes). - asm-generic: remove a broken and needless ifdef conditional (git-fixes). - batman-adv: Use netif_rx() (git-fixes). - bcmgenet: add WOL IRQ check (git-fixes). - be2net: Fix buffer overflow in be_get_module_eeprom (bsc#1201323). - bitfield.h: Fix "type of reg too small for mask" test (git-fixes). - blk-mq: add one API for waiting until quiesce is done (bsc#1201651). - blk-mq: fix kabi support concurrent queue quiesce unquiesce (bsc#1201651). - blk-mq: support concurrent queue quiesce/unquiesce (bsc#1201651). - can: bcm: use call_rcu() instead of costly synchronize_rcu() (git-fixes). - can: grcan: grcan_probe(): remove extra of_node_get() (git-fixes). - can: gs_usb: gs_usb_open/close(): fix memory leak (git-fixes). - can: m_can: m_can_chip_config(): actually enable internal timestamping (git-fixes). - can: mcp251xfd: mcp251xfd_regmap_crc_read(): improve workaround handling for mcp2517fd (git-fixes). - can: mcp251xfd: mcp251xfd_regmap_crc_read(): update workaround broken CRC on TBC register (git-fixes). - can: rcar_canfd: add __maybe_unused annotation to silence warning (git-fixes). - ceph: fix up non-directory creation in SGID directories (bsc#1201595). - cifs: fix reconnect on smb3 mount types (bsc#1201427). - configfs: fix a race in configfs_{,un}register_subsystem() (git-fixes). - cpufreq: mediatek: Unregister platform device on exit (git-fixes). - cpufreq: mediatek: Use module_init and add module_exit (git-fixes). - cpufreq: pmac32-cpufreq: Fix refcount leak bug (git-fixes). - cpuidle: PSCI: Move the `has_lpi` check to the beginning of the (git-fixes) - crypto: hisilicon/qm - modify the uacce mode check (bsc#1201391). - crypto: octeontx2 - Avoid stack variable overflow (jsc#SLE-24682). - crypto: octeontx2 - CN10K CPT to RNM workaround (jsc#SLE-24682). - crypto: octeontx2 - Use swap() instead of swap_engines() (jsc#SLE-24682). - crypto: octeontx2 - add apis for custom engine groups (jsc#SLE-24682). - crypto: octeontx2 - add synchronization between mailbox accesses (jsc#SLE-24682). - crypto: octeontx2 - fix missing unlock (jsc#SLE-24682). - crypto: octeontx2 - increase CPT HW instruction queue length (jsc#SLE-24682). - crypto: octeontx2 - out of bounds access in otx2_cpt_dl_custom_egrp_delete() (jsc#SLE-24682). - crypto: octeontx2 - parameters for custom engine groups (jsc#SLE-24682). - crypto: octeontx2 - select CONFIG_NET_DEVLINK (jsc#SLE-24682). - crypto: octeontx2 - use swap() to make code cleaner (jsc#SLE-24682). - crypto: qat - fix memory leak in RSA (git-fixes). - crypto: qat - remove dma_free_coherent() for DH (git-fixes). - crypto: qat - remove dma_free_coherent() for RSA (git-fixes). - crypto: qat - set CIPHER capability for DH895XCC (git-fixes). - crypto: qat - set to zero DH parameters before free (git-fixes). - crypto: testmgr - allow ecdsa-nist in FIPS mode (jsc#SLE-21132,bsc#1201258). - device property: Add fwnode_irq_get_byname (jsc#SLE-24569) - device property: Check fwnode->secondary when finding properties (git-fixes). - dm: do not stop request queue after the dm device is suspended (bsc#1201651). - dma-debug: change allocation mode from GFP_NOWAIT to GFP_ATIOMIC (git-fixes). - dma-debug: make things less spammy under memory pressure (git-fixes). - dmaengine: at_xdma: handle errors of at_xdmac_alloc_desc() correctly (git-fixes). - dmaengine: imx-sdma: Allow imx8m for imx7 FW revs (git-fixes). - dmaengine: lgm: Fix an error handling path in intel_ldma_probe() (git-fixes). - dmaengine: pl330: Fix lockdep warning about non-static key (git-fixes). - dmaengine: qcom: bam_dma: fix runtime PM underflow (git-fixes). - dmaengine: ti: Add missing put_device in ti_dra7_xbar_route_allocate (git-fixes). - dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate (git-fixes). - docs: firmware-guide: ACPI: Add named interrupt doc (jsc#SLE-24569) - docs: net: dsa: add more info about the other arguments to get_tag_protocol (git-fixes). - docs: net: dsa: delete port_mdb_dump (git-fixes). - docs: net: dsa: document change_tag_protocol (git-fixes). - docs: net: dsa: document port_fast_age (git-fixes). - docs: net: dsa: document port_setup and port_teardown (git-fixes). - docs: net: dsa: document the shutdown behavior (git-fixes). - docs: net: dsa: document the teardown method (git-fixes). - docs: net: dsa: re-explain what port_fdb_dump actually does (git-fixes). - docs: net: dsa: remove port_vlan_dump (git-fixes). - docs: net: dsa: rename tag_protocol to get_tag_protocol (git-fixes). - docs: net: dsa: update probing documentation (git-fixes). - dpaa2-eth: Initialize mutex used in one step timestamping path (git-fixes). - dpaa2-eth: destroy workqueue at the end of remove function (git-fixes). - dpaa2-eth: unregister the netdev before disconnecting from the PHY (git-fixes). - drbd: fix potential silent data corruption (git-fixes). - drivers: net: smc911x: Check for error irq (git-fixes). - drm/amd/display: Fix by adding FPU protection for dcn30_internal_validate_bw (git-fixes). - drm/amd/display: Ignore First MST Sideband Message Return Error (git-fixes). - drm/amd/display: Only use depth 36 bpp linebuffers on DCN display engines (git-fixes). - drm/amd/display: Set min dcfclk if pipe count is 0 (git-fixes). - drm/amd/vcn: fix an error msg on vcn 3.0 (git-fixes). - drm/amdgpu: To flush tlb for MMHUB of RAVEN series (git-fixes). - drm/i915/dg2: Add Wa_22011100796 (git-fixes). - drm/i915/gt: Serialize GRDOM access between multiple engine resets (git-fixes). - drm/i915/gt: Serialize TLB invalidates with GT resets (git-fixes). - drm/i915/gvt: IS_ERR() vs NULL bug in intel_gvt_update_reg_whitelist() (git-fixes). - drm/i915/selftests: fix a couple IS_ERR() vs NULL tests (git-fixes). - drm/i915/uc: correctly track uc_fw init failure (git-fixes). - drm/i915: Fix a race between vma / object destruction and unbinding (git-fixes). - drm/i915: Require the vm mutex for i915_vma_bind() (git-fixes). - drm/i915: fix a possible refcount leak in intel_dp_add_mst_connector() (git-fixes). - drm/imx/dcss: Add missing of_node_put() in fail path (git-fixes). - drm/mediatek: Detect CMDQ execution timeout (git-fixes). - drm/mediatek: Remove the pointer of struct cmdq_client (git-fixes). - drm/mediatek: Use mailbox rx_callback instead of cmdq_task_cb (git-fixes). - drm/panfrost: Fix shrinker list corruption by madvise IOCTL (git-fixes). - drm/panfrost: Put mapping instead of shmem obj on panfrost_mmu_map_fault_addr() error (git-fixes). - drm/ttm: fix locking in vmap/vunmap TTM GEM helpers (git-fixes). - dt-bindings: dma: allwinner,sun50i-a64-dma: Fix min/max typo (git-fixes). - dt-bindings: gpio: Add Tegra241 support (jsc#SLE-24571) - dt-bindings: soc: qcom: smd-rpm: Add compatible for MSM8953 SoC (git-fixes). - dt-bindings: soc: qcom: smd-rpm: Fix missing MSM8936 compatible (git-fixes). - e1000e: Enable GPT clock before sending message to CSME (git-fixes). - efi/x86: use naked RET on mixed mode call wrapper (git-fixes). - erofs: fix deadlock when shrink erofs slab (git-fixes). - ethernet: Fix error handling in xemaclite_of_probe (git-fixes). - ethtool: Fix get module eeprom fallback (bsc#1201323). - exfat: Define NLS_NAME_* as bit flags explicitly (bsc#1201725). - exfat: Downgrade ENAMETOOLONG error message to debug messages (bsc#1201725). - exfat: Drop superfluous new line for error messages (bsc#1201725). - exfat: Expand exfat_err() and co directly to pr_*() macro (bsc#1201725). - exfat: Return ENAMETOOLONG consistently for oversized paths (bsc#1201725). - exfat: fix i_blocks for files truncated over 4 GiB (git-fixes). - exfat: fix referencing wrong parent directory information after renaming (git-fixes). - exfat: reuse exfat_inode_info variable instead of calling EXFAT_I() (git-fixes). - exfat: use updated exfat_chain directly during renaming (git-fixes). - export: fix string handling of namespace in EXPORT_SYMBOL_NS (git-fixes). - fat: add ratelimit to fat*_ent_bread() (git-fixes). - fbcon: Disallow setting font bigger than screen size (git-fixes). - fbcon: Prevent that screen size is smaller than font size (git-fixes). - fbdev: fbmem: Fix logo center image dx issue (git-fixes). - fbmem: Check virtual screen sizes in fb_set_var() (git-fixes). - fix race between exit_itimers() and /proc/pid/timers (git-fixes). - fjes: Check for error irq (git-fixes). - fsl/fman: Check for null pointer after calling devm_ioremap (git-fixes). - fsl/fman: Fix missing put_device() call in fman_port_probe (git-fixes). - fuse: annotate lock in fuse_reverse_inval_entry() (bsc#1201593). - fuse: make sure reclaim does not write the inode (bsc#1201592). - gpio: gpio-xilinx: Fix integer overflow (git-fixes). - gpio: pca953x: only use single read/write for No AI mode (git-fixes). - gpio: pca953x: use the correct range when do regmap sync (git-fixes). - gpio: pca953x: use the correct register address when regcache sync during init (git-fixes). - gpio: tegra186: Add IRQ per bank for Tegra241 (jsc#SLE-24571) - gpio: tegra186: Add support for Tegra241 (jsc#SLE-24571) - gve: Recording rx queue before sending to napi (git-fixes). - hwmon: (occ) Prevent power cap command overwriting poll response (git-fixes). - hwmon: (occ) Remove sequence numbering and checksum calculation (git-fixes). - hwrng: cavium - fix NULL but dereferenced coccicheck error (jsc#SLE-24682). - i2c: cadence: Change large transfer count reset logic to be unconditional (git-fixes). - i2c: cadence: Unregister the clk notifier in error path (git-fixes). - i2c: mlxcpld: Fix register setting for 400KHz frequency (git-fixes). - i2c: piix4: Fix a memory leak in the EFCH MMIO support (git-fixes). - i2c: smbus: Check for parent device before dereference (git-fixes). - i2c: smbus: Use device_*() functions instead of of_*() (jsc#SLE-24569) - i2c: tegra: Add SMBus block read function (jsc#SLE-24569) - i2c: tegra: Add the ACPI support (jsc#SLE-24569) - i2c: tegra: use i2c_timings for bus clock freq (jsc#SLE-24569) - ice: Avoid RTNL lock when re-creating auxiliary device (git-fixes). - ice: Fix error with handling of bonding MTU (git-fixes). - ice: Fix race condition during interface enslave (git-fixes). - ice: stop disabling VFs due to PF error responses (git-fixes). - ida: do not use BUG_ON() for debugging (git-fixes). - ima: Fix a potential integer overflow in ima_appraise_measurement (git-fixes). - ima: Fix potential memory leak in ima_init_crypto() (git-fixes). - ima: force signature verification when CONFIG_KEXEC_SIG is configured (git-fixes). - inet_diag: fix kernel-infoleak for UDP sockets (git-fixes). - iov_iter: Fix iter_xarray_get_pages{,_alloc}() (git-fixes). - iov_iter: fix build issue due to possible type mis-match (git-fixes). - irqchip/gic-v3: Workaround Marvell erratum 38545 when reading IAR (jsc#SLE-24682). - irqchip/sifive-plic: Add missing thead,c900-plic match string (git-fixes). - irqchip: or1k-pic: Undefine mask_ack for level triggered hardware (git-fixes). - ixgbevf: Require large buffers for build_skb on 82599VF (git-fixes). - kABI workaround for phy_device changes (git-fixes). - kABI workaround for rtsx_usb (git-fixes). - kABI workaround for snd-soc-rt5682-* (git-fixes). - kABI: fix adding field to scsi_device (git-fixes). - kABI: fix adding field to ufs_hba (git-fixes). - kABI: fix change of iscsi_host_remove() arguments (bsc#1198410). - kABI: fix removal of iscsi_destroy_conn (bsc#1198410). - kABI: i2c: smbus: restore of_ alert variant (jsc#SLE-24569). kABI fix for "i2c: smbus: Use device_*() functions instead of of_*()" - kabi/severities: Exclude ppc kvm - kabi/severities: add intel ice - kabi/severities: add stmmac network driver local symbols - kabi/severities: ignore dropped symbol rt5682_headset_detect - kasan: fix tag for large allocations when using CONFIG_SLAB (git fixes (mm/kasan)). - kernel-obs-build: include qemu_fw_cfg (boo#1201705) - kselftest/cgroup: fix test_stress.sh to use OUTPUT dir (git-fixes). - kselftest/vm: fix tests build with old libc (git-fixes). - kselftest: Fix vdso_test_abi return status (git-fixes). - kselftest: signal all child processes (git-fixes). - kvm/emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930). - kvm: selftests: do not use bitfields larger than 32-bits for PTEs (git-fixes). - l3mdev: l3mdev_master_upper_ifindex_by_index_rcu should be using netdev_master_upper_dev_get_rcu (git-fixes). - landlock: Add clang-format exceptions (git-fixes). - landlock: Change landlock_add_rule(2) argument check ordering (git-fixes). - landlock: Change landlock_restrict_self(2) check ordering (git-fixes). - landlock: Create find_rule() from unmask_layers() (git-fixes). - landlock: Define access_mask_t to enforce a consistent access mask size (git-fixes). - landlock: Fix landlock_add_rule(2) documentation (git-fixes). - landlock: Fix same-layer rule unions (git-fixes). - landlock: Format with clang-format (git-fixes). - landlock: Reduce the maximum number of layers to 16 (git-fixes). - landlock: Use square brackets around "landlock-ruleset" (git-fixes). - libceph: fix potential use-after-free on linger ping and resends (bsc#1201596). - lockdep: Correct lock_classes index mapping (git-fixes). - locking/lockdep: Avoid potential access of invalid memory in lock_class (git-fixes). - locking/lockdep: Iterate lock_classes directly when reading lockdep files (git-fixes). - loop: Use pr_warn_once() for loop_control_remove() warning (git-fixes). - loop: use sysfs_emit() in the sysfs xxx show() (git-fixes). - macsec: always read MACSEC_SA_ATTR_PN as a u64 (git-fixes). - macsec: fix NULL deref in macsec_add_rxsa (git-fixes). - macsec: fix error message in macsec_add_rxsa and _txsa (git-fixes). - macsec: limit replay window size with XPN (git-fixes). - md: bcache: check the return value of kzalloc() in detached_dev_do_request() (git-fixes). - memcg: page_alloc: skip bulk allocator for __GFP_ACCOUNT (git fixes (mm/pgalloc)). - memregion: Fix memregion_free() fallback definition (git-fixes). - minix: fix bug when opening a file with O_DIRECT (git-fixes). - misc: rtsx_usb: fix use of dma mapped buffer for usb bulk transfer (git-fixes). - misc: rtsx_usb: set return value in rsp_buf alloc err path (git-fixes). - misc: rtsx_usb: use separate command and response buffers (git-fixes). - mm/large system hash: avoid possible NULL deref in alloc_large_system_hash (git fixes (mm/pgalloc)). - mm/secretmem: avoid letting secretmem_users drop to zero (git fixes (mm/secretmem)). - mm/vmalloc: fix numa spreading for large hash tables (git fixes (mm/vmalloc)). - mm/vmalloc: make sure to dump unpurged areas in /proc/vmallocinfo (git fixes (mm/vmalloc)). - mm/vmalloc: repair warn_alloc()s in __vmalloc_area_node() (git fixes (mm/vmalloc)). - mm: do not try to NUMA-migrate COW pages that have other uses (git fixes (mm/numa)). - mm: swap: get rid of livelock in swapin readahead (git fixes (mm/swap)). - mt76: mt7921: get rid of mt7921_mac_set_beacon_filter (git-fixes). - mtd: rawnand: gpmi: validate controller clock rate (git-fixes). - natsemi: xtensa: fix section mismatch warnings (git-fixes). - nbd: fix possible overflow on 'first_minor' in nbd_dev_add() (git-fixes). - net/fsl: xgmac_mdio: Add workaround for erratum A-009885 (git-fixes). - net/fsl: xgmac_mdio: Fix incorrect iounmap when removing module (git-fixes). - net/qla3xxx: fix an error code in ql_adapter_up() (git-fixes). - net: ag71xx: Fix a potential double free in error handling paths (git-fixes). - net: altera: set a couple error code in probe() (git-fixes). - net: amd-xgbe: Fix skb data length underflow (git-fixes). - net: amd-xgbe: disable interrupts during pci removal (git-fixes). - net: amd-xgbe: ensure to reset the tx_timer_active flag (git-fixes). - net: annotate data-races on txq->xmit_lock_owner (git-fixes). - net: axienet: Fix TX ring slot available check (git-fixes). - net: axienet: Wait for PhyRstCmplt after core reset (git-fixes). - net: axienet: add missing memory barriers (git-fixes). - net: axienet: fix for TX busy handling (git-fixes). - net: axienet: fix number of TX ring slots for available check (git-fixes). - net: axienet: increase default TX ring size to 128 (git-fixes). - net: axienet: increase reset timeout (git-fixes). - net: axienet: limit minimum TX ring size (git-fixes). - net: bcm4908: Handle dma_set_coherent_mask error codes (git-fixes). - net: bcmgenet: Do not claim WOL when its not available (git-fixes). - net: bcmgenet: skip invalid partial checksums (git-fixes). - net: chelsio: cxgb3: check the return value of pci_find_capability() (git-fixes). - net: cpsw: Properly initialise struct page_pool_params (git-fixes). - net: cpsw: avoid alignment faults by taking NET_IP_ALIGN into account (git-fixes). - net: dpaa_eth: remove dead select in menuconfig FSL_DPAA_ETH (git-fixes). - net: dsa: ar9331: register the mdiobus under devres (git-fixes). - net: dsa: bcm_sf2: do not use devres for mdiobus (git-fixes). - net: dsa: be compatible with masters which unregister on shutdown (git-fixes). - net: dsa: felix: do not use devres for mdiobus (git-fixes). - net: dsa: hellcreek: be compatible with masters which unregister on shutdown (git-fixes). - net: dsa: lan9303: add VLAN IDs to master device (git-fixes). - net: dsa: lan9303: fix reset on probe (git-fixes). - net: dsa: lantiq_gswip: do not use devres for mdiobus (git-fixes). - net: dsa: microchip: ksz8863: be compatible with masters which unregister on shutdown (git-fixes). - net: dsa: mt7530: fix incorrect test in mt753x_phylink_validate() (git-fixes). - net: dsa: mt7530: fix kernel bug in mdiobus_free() when unbinding (git-fixes). - net: dsa: mt7530: make NET_DSA_MT7530 select MEDIATEK_GE_PHY (git-fixes). - net: dsa: mv88e6xxx: do not use devres for mdiobus (git-fixes). - net: dsa: mv88e6xxx: fix use-after-free in mv88e6xxx_mdios_unregister (git-fixes). - net: dsa: mv88e6xxx: flush switchdev FDB workqueue before removing VLAN (git-fixes). - net: dsa: xrs700x: be compatible with masters which unregister on shutdown (git-fixes). - net: ethernet: lpc_eth: Handle error for clk_enable (git-fixes). - net: ethernet: mtk_eth_soc: fix error checking in mtk_mac_config() (git-fixes). - net: ethernet: mtk_eth_soc: fix return values and refactor MDIO ops (git-fixes). - net: ethernet: ti: cpts: Handle error for clk_enable (git-fixes). - net: fec: only clear interrupt of handling queue in fec_enet_rx_queue() (git-fixes). - net: ieee802154: ca8210: Fix lifs/sifs periods (git-fixes). - net: ieee802154: ca8210: Stop leaking skb's (git-fixes). - net: ieee802154: hwsim: Ensure proper channel selection at probe time (git-fixes). - net: ieee802154: mcr20a: Fix lifs/sifs periods (git-fixes). - net: ipa: add an interconnect dependency (git-fixes). - net: ipa: fix atomic update in ipa_endpoint_replenish() (git-fixes). - net: ipa: prevent concurrent replenish (git-fixes). - net: ipa: use a bitmap for endpoint replenish_enabled (git-fixes). - net: ks8851: Check for error irq (git-fixes). - net: lantiq_xrx200: fix statistics of received bytes (git-fixes). - net: ll_temac: check the return value of devm_kmalloc() (git-fixes). - net: macb: Fix lost RX packet wakeup race in NAPI receive (git-fixes). - net: macsec: Fix offload support for NETDEV_UNREGISTER event (git-fixes). - net: macsec: Verify that send_sci is on when setting Tx sci explicitly (git-fixes). - net: marvell: mvpp2: Fix the computation of shared CPUs (git-fixes). - net: marvell: prestera: Add missing of_node_put() in prestera_switch_set_base_mac_addr (git-fixes). - net: marvell: prestera: fix incorrect return of port_find (git-fixes). - net: mdio: aspeed: Add missing MODULE_DEVICE_TABLE (git-fixes). - net: mscc: ocelot: fix backwards compatibility with single-chain tc-flower offload (git-fixes). - net: mscc: ocelot: fix mutex lock error during ethtool stats read (git-fixes). - net: mscc: ocelot: fix using match before it is set (git-fixes). - net: mv643xx_eth: process retval from of_get_mac_address (git-fixes). - net: mvpp2: fix XDP rx queues registering (git-fixes). - net: phy: Do not trigger state machine while in suspend (git-fixes). - net: phylink: Force link down and retrigger resolve on interface change (git-fixes). - net: phylink: Force retrigger in case of latched link-fail indicator (git-fixes). - net: rose: fix UAF bug caused by rose_t0timer_expiry (git-fixes). - net: sfp: fix high power modules without diagnostic monitoring (git-fixes). - net: sfp: ignore disabled SFP node (git-fixes). - net: sparx5: Fix add vlan when invalid operation (git-fixes). - net: sparx5: Fix get_stat64 crash in tcpdump (git-fixes). - net: stmmac: Add platform level debug register dump feature (git-fixes). - net: stmmac: Avoid DMA_CHAN_CONTROL write if no Split Header support (git-fixes). - net: stmmac: configure PTP clock source prior to PTP initialization (git-fixes). - net: stmmac: dump gmac4 DMA registers correctly (git-fixes). - net: stmmac: dwmac-rk: fix oob read in rk_gmac_setup (git-fixes). - net: stmmac: dwmac-visconti: Fix bit definitions for ETHER_CLK_SEL (git-fixes). - net: stmmac: dwmac-visconti: Fix clock configuration for RMII mode (git-fixes). - net: stmmac: dwmac-visconti: Fix value of ETHER_CLK_SEL_FREQ_SEL_2P5M (git-fixes). - net: stmmac: dwmac-visconti: No change to ETHER_CLOCK_SEL for unexpected speed request (git-fixes). - net: stmmac: ensure PTP time register reads are consistent (git-fixes). - net: stmmac: fix return value of __setup handler (git-fixes). - net: stmmac: fix tc flower deletion for VLAN priority Rx steering (git-fixes). - net: stmmac: properly handle with runtime pm in stmmac_dvr_remove() (git-fixes). - net: stmmac: ptp: fix potentially overflowing expression (git-fixes). - net: stmmac: retain PTP clock time during SIOCSHWTSTAMP ioctls (git-fixes). - net: stmmac: skip only stmmac_ptp_register when resume from suspend (git-fixes). - net: sxgbe: fix return value of __setup handler (git-fixes). - net: systemport: Add global locking for descriptor lifecycle (git-fixes). - net: usb: Correct PHY handling of smsc95xx (git-fixes). - net: usb: Correct reset handling of smsc95xx (git-fixes). - net: usb: qmi_wwan: add Telit 0x1060 composition (git-fixes). - net: usb: qmi_wwan: add Telit 0x1070 composition (git-fixes). - netdevsim: do not overwrite read only ethtool parms (git-fixes). - nfp: Fix memory leak in nfp_cpp_area_cache_add() (git-fixes). - nilfs2: fix incorrect masking of permission flags for symlinks (git-fixes). - nilfs2: fix lockdep warnings during disk space reclamation (git-fixes). - nilfs2: fix lockdep warnings in page operations for btree nodes (git-fixes). - nouveau/svm: Fix to migrate all requested pages (git-fixes). - nvme-auth: retry command if DNR bit is not set (bsc#1201675). - nvme: add APIs for stopping/starting admin queue (bsc#1201651). - nvme: apply nvme API to quiesce/unquiesce admin queue (bsc#1201651). - nvme: consider also host_iface when checking ip options (bsc#1199670). - nvme: implement In-Band authentication (jsc#SLE-20183). - nvme: kabi fixes for in-band authentication (bsc#1199086). - nvme: loop: clear NVME_CTRL_ADMIN_Q_STOPPED after admin queue is reallocated (bsc#1201651). - nvme: paring quiesce/unquiesce (bsc#1201651). - nvme: prepare for pairing quiescing and unquiescing (bsc#1201651). - nvme: wait until quiesce is done (bsc#1201651). - nvmet-auth: expire authentication sessions (jsc#SLE-20183). - nvmet: implement basic In-Band Authentication (jsc#SLE-20183). - octeontx2-af: Add a 'rvu_free_bitmap()' function (gix-fixes). - octeontx2-af: Do not fixup all VF action entries (git-fixes). - octeontx2-af: Fix a memleak bug in rvu_mbox_init() (git-fixes). - octeontx2-af: Fix some memory leaks in the error handling path of 'cgx_lmac_init()' (git-fixes). - octeontx2-af: cn10k: Do not enable RPM loopback for LPC interfaces (git-fixes). - octeontx2-pf: Forward error codes to VF (git-fixes). - optee: add error checks in optee_ffa_do_call_with_arg() (git-fixes). - page_alloc: fix invalid watemark check on a negative value (git fixes (mm/pgalloc)). - perf/amd/ibs: Add support for L3 miss filtering (jsc#SLE-24578). - perf/amd/ibs: Advertise zen4_ibs_extensions as pmu capability attribute (jsc#SLE-24578). - perf/amd/ibs: Cascade pmu init functions' return value (jsc#SLE-24578). - perf/amd/ibs: Use ->is_visible callback for dynamic attributes (jsc#SLE-24578). - pinctrl: armada-37xx: Convert to use dev_err_probe() (git-fixes). - pinctrl: armada-37xx: Make use of the devm_platform_ioremap_resource() (git-fixes). - pinctrl: armada-37xx: Use temporary variable for struct device (git-fixes). - pinctrl: aspeed: Fix potential NULL dereference in aspeed_pinmux_set_mux() (git-fixes). - pinctrl: sunxi: a83t: Fix NAND function name for some pins (git-fixes). - pinctrl: sunxi: sunxi_pconf_set: use correct offset (git-fixes). - platform/x86: hp-wmi: Ignore Sanitization Mode event (git-fixes). - power/reset: arm-versatile: Fix refcount leak in versatile_reboot_probe (git-fixes). - powerpc/mobility: wait for memory transfer to complete (bsc#1201846 ltc#198761). - powerpc/pseries/mobility: set NMI watchdog factor during an LPM (bsc#1201846 ltc#198761). - powerpc/pseries: Interface to represent PAPR firmware attributes (bsc#1200465 ltc#197256 jsc#SLE-18130). - powerpc/pseries: Rename TYPE1_AFFINITY to FORM1_AFFINITY (bsc#1200465 ltc#197256 jsc#SLE-18130). - powerpc/pseries: rename min_common_depth to primary_domain_index (bsc#1200465 ltc#197256 jsc#SLE-18130). - powerpc/watchdog: introduce a NMI watchdog's factor (bsc#1201846 ltc#198761). - ppp: ensure minimum packet size in ppp_write() (git-fixes). - qede: validate non LSO skb length (git-fixes). - r8152: fix a WOL issue (git-fixes). - r8169: fix accessing unset transport header (git-fixes). - random: document add_hwgenerator_randomness() with other input functions (git-fixes). - random: fix typo in comments (git-fixes). - raw: Fix a data-race around sysctl_raw_l3mdev_accept (git-fixes). - reset: Fix devm bulk optional exclusive control getter (git-fixes). - rocker: fix a sleeping in atomic bug (git-fixes). - rpm/kernel-binary.spec.in: Require dwarves >= 1.22 on SLE15-SP3 or newer Dwarves 1.22 or newer is required to build kernels with BTF information embedded in modules. - rpm/modules.fips: add ecdsa_generic (jsc#SLE-21132,bsc#1201258). - samples/landlock: Add clang-format exceptions (git-fixes). - samples/landlock: Fix path_list memory leak (git-fixes). - samples/landlock: Format with clang-format (git-fixes). - scripts/dtc: Call pkg-config POSIXly correct (git-fixes). - scripts/gdb: change kernel config dumping method (git-fixes). - scripts: sphinx-pre-install: Fix ctex support on Debian (git-fixes). - scripts: sphinx-pre-install: add required ctex dependency (git-fixes). - scsi: avoid to quiesce sdev->request_queue two times (bsc#1201651). - scsi: core: sd: Add silence_suspend flag to suppress some PM messages (git-fixes). - scsi: iscsi: Add helper functions to manage iscsi_cls_conn (bsc#1198410). - scsi: iscsi: Add helper to remove a session from the kernel (bsc#1198410). - scsi: iscsi: Allow iscsi_if_stop_conn() to be called from kernel (bsc#1198410). - scsi: iscsi: Clean up bound endpoints during shutdown (bsc#1198410). - scsi: iscsi: Exclude zero from the endpoint ID range (git-fixes). - scsi: iscsi: Fix HW conn removal use after free (bsc#1198410). - scsi: iscsi: Fix session removal on shutdown (bsc#1198410). - scsi: libiscsi: Teardown iscsi_cls_conn gracefully (bsc#1198410). - scsi: lpfc: Fix mailbox command failure during driver initialization (git-fixes). - scsi: make sure that request queue queiesce and unquiesce balanced (bsc#1201651). - scsi: megaraid: Clear READ queue map's nr_queues (git-fixes). - scsi: qedi: Use QEDI_MODE_NORMAL for error handling (bsc#1198410). - scsi: qla2xxx: Check correct variable in qla24xx_async_gffid() (bsc#1201958). - scsi: qla2xxx: Fix discovery issues in FC-AL topology (bsc#1201958). - scsi: qla2xxx: Fix imbalance vha->vref_count (bsc#1201958). - scsi: qla2xxx: Fix incorrect display of max frame size (bsc#1201958). - scsi: qla2xxx: Fix response queue handler reading stale packets (bsc#1201958). - scsi: qla2xxx: Fix sparse warning for dport_data (bsc#1201958). - scsi: qla2xxx: Update manufacturer details (bsc#1201958). - scsi: qla2xxx: Update version to 10.02.07.800-k (bsc#1201958). - scsi: qla2xxx: Zero undefined mailbox IN registers (bsc#1201958). - scsi: qla2xxx: edif: Fix dropped IKE message (bsc#1201958). - scsi: scsi_debug: Do not call kcalloc() if size arg is zero (git-fixes). - scsi: scsi_debug: Fix type in min_t to avoid stack OOB (git-fixes). - scsi: scsi_debug: Fix zone transition to full condition (git-fixes). - scsi: scsi_debug: Sanity check block descriptor length in resp_mode_select() (git-fixes). - scsi: sd: Fix potential NULL pointer dereference (git-fixes). - scsi: sd: Fix sd_do_mode_sense() buffer length handling (git-fixes). - scsi: ufs: Fix a deadlock in the error handler (git-fixes). - scsi: ufs: Fix runtime PM messages never-ending cycle (git-fixes). - scsi: ufs: Remove dead code (git-fixes). - scsi: ufs: core: scsi_get_lba() error fix (git-fixes). - seccomp: Invalidate seccomp mode to catch death failures (git-fixes). - selftest/net/forwarding: declare NETIFS p9 p10 (git-fixes). - selftest/powerpc: Add PAPR sysfs attributes sniff test (bsc#1200465 ltc#197256 jsc#SLE-18130). - selftest/vm: fix map_fixed_noreplace test failure (git-fixes). - selftest/vm: verify mmap addr in mremap_test (git-fixes). - selftest/vm: verify remap destination address in mremap_test (git-fixes). - selftests, x86: fix how check_cc.sh is being invoked (git-fixes). - selftests/exec: Add non-regular to TEST_GEN_PROGS (git-fixes). - selftests/exec: Remove pipe from TEST_GEN_FILES (git-fixes). - selftests/fib_tests: Rework fib_rp_filter_test() (git-fixes). - selftests/ftrace: Do not trace do_softirq because of PREEMPT_RT (git-fixes). - selftests/ftrace: make kprobe profile testcase description unique (git-fixes). - selftests/landlock: Add clang-format exceptions (git-fixes). - selftests/landlock: Add tests for O_PATH (git-fixes). - selftests/landlock: Add tests for unknown access rights (git-fixes). - selftests/landlock: Extend access right tests to directories (git-fixes). - selftests/landlock: Extend tests for minimal valid attribute size (git-fixes). - selftests/landlock: Format with clang-format (git-fixes). - selftests/landlock: Fully test file rename with "remove" access (git-fixes). - selftests/landlock: Make tests build with old libc (git-fixes). - selftests/landlock: Normalize array assignment (git-fixes). - selftests/landlock: Test landlock_create_ruleset(2) argument check ordering (git-fixes). - selftests/memfd: clean up mapping in mfd_fail_write (git-fixes). - selftests/memfd: remove unused variable (git-fixes). - selftests/net: pass ipv6_args to udpgso_bench's IPv6 TCP test (git-fixes). - selftests/net: so_txtime: fix parsing of start time stamp on 32 bit systems (git-fixes). - selftests/net: so_txtime: usage(): fix documentation of default clock (git-fixes). - selftests/net: timestamping: Fix bind_phc check (git-fixes). - selftests/net: udpgso_bench_tx: fix dst ip argument (git-fixes). - selftests/powerpc/spectre_v2: Return skip code when miss_percent is high (git-fixes). - selftests/powerpc: Add a test of sigreturning to the kernel (git-fixes). - selftests/resctrl: Fix null pointer dereference on open failed (git-fixes). - selftests/rseq: Change type of rseq_offset to ptrdiff_t (git-fixes). - selftests/rseq: Fix ppc32 missing instruction selection "u" and "x" for load/store (git-fixes). - selftests/rseq: Fix ppc32 offsets by using long rather than off_t (git-fixes). - selftests/rseq: Fix ppc32: wrong rseq_cs 32-bit field pointer on big endian (git-fixes). - selftests/rseq: Fix warnings about #if checks of undefined tokens (git-fixes). - selftests/rseq: Fix: work-around asm goto compiler bugs (git-fixes). - selftests/rseq: Introduce rseq_get_abi() helper (git-fixes). - selftests/rseq: Introduce thread pointer getters (git-fixes). - selftests/rseq: Remove arm/mips asm goto compiler work-around (git-fixes). - selftests/rseq: Remove useless assignment to cpu variable (git-fixes). - selftests/rseq: Remove volatile from __rseq_abi (git-fixes). - selftests/rseq: Uplift rseq selftests for compatibility with glibc-2.35 (git-fixes). - selftests/rseq: introduce own copy of rseq uapi header (git-fixes). - selftests/rseq: remove ARRAY_SIZE define from individual tests (git-fixes). - selftests/rseq: x86-32: use %gs segment selector for accessing rseq thread area (git-fixes). - selftests/rseq: x86-64: use %fs segment selector for accessing rseq thread area (git-fixes). - selftests/seccomp: Do not call read() on TTY from background pgrp (git-fixes). - selftests/seccomp: Fix seccomp failure by adding missing headers (git-fixes). - selftests/sgx: Treat CC as one argument (git-fixes). - selftests/vm/transhuge-stress: fix ram size thinko (git-fixes). - selftests/vm: make charge_reserved_hugetlb.sh work with existing cgroup setting (git-fixes). - selftests/x86: Add validity check and allow field splitting (git-fixes). - selftests/zram01.sh: Fix compression ratio calculation (git-fixes). - selftests/zram: Adapt the situation that /dev/zram0 is being used (git-fixes). - selftests/zram: Skip max_comp_streams interface on newer kernel (git-fixes). - selftests: Add duplicate config only for MD5 VRF tests (git-fixes). - selftests: Fix IPv6 address bind tests (git-fixes). - selftests: Fix raw socket bind tests with VRF (git-fixes). - selftests: add ping test with ping_group_range tuned (git-fixes). - selftests: cgroup: Make cg_create() use 0755 for permission instead of 0644 (git-fixes). - selftests: cgroup: Test open-time cgroup namespace usage for migration checks (git-fixes). - selftests: cgroup: Test open-time credential usage for migration checks (git-fixes). - selftests: clone3: clone3: add case CLONE3_ARGS_NO_TEST (git-fixes). - selftests: fixup build warnings in pidfd / clone3 tests (git-fixes). - selftests: forwarding: fix error message in learning_test (git-fixes). - selftests: forwarding: fix flood_unicast_test when h2 supports IFF_UNICAST_FLT (git-fixes). - selftests: forwarding: fix learning_test when h1 supports IFF_UNICAST_FLT (git-fixes). - selftests: futex: Use variable MAKE instead of make (git-fixes). - selftests: gpio: fix gpio compiling error (git-fixes). - selftests: harness: avoid false negatives if test has no ASSERTs (git-fixes). - selftests: icmp_redirect: pass xfail=0 to log_test() (git-fixes). - selftests: mirror_gre_bridge_1q: Avoid changing PVID while interface is operational (git-fixes). - selftests: mlxsw: resource_scale: Fix return value (git-fixes). - selftests: mlxsw: tc_police_scale: Make test more robust (git-fixes). - selftests: mlxsw: vxlan_flooding: Prevent flooding of unwanted packets (git-fixes). - selftests: mptcp: add csum mib check for mptcp_connect (git-fixes). - selftests: mptcp: fix diag instability (git-fixes). - selftests: mptcp: fix ipv6 routing setup (git-fixes). - selftests: mptcp: more stable diag tests (git-fixes). - selftests: net: Correct case name (git-fixes). - selftests: net: Correct ping6 expected rc from 2 to 1 (git-fixes). - selftests: net: Fix a typo in udpgro_fwd.sh (git-fixes). - selftests: net: tls: remove unused variable and code (git-fixes). - selftests: net: udpgro_fwd.sh: explicitly checking the available ping feature (git-fixes). - selftests: net: using ping6 for IPv6 in udpgro_fwd.sh (git-fixes). - selftests: netfilter: add a vrf+conntrack testcase (git-fixes). - selftests: netfilter: correct PKTGEN_SCRIPT_PATHS in nft_concat_range.sh (git-fixes). - selftests: netfilter: disable rp_filter on router (git-fixes). - selftests: netfilter: fix exit value for nft_concat_range (git-fixes). - selftests: nft_concat_range: add test for reload with no element add/del (git-fixes). - selftests: ocelot: tc_flower_chains: specify conform-exceed action for policer (git-fixes). - selftests: openat2: Add missing dependency in Makefile (git-fixes). - selftests: openat2: Print also errno in failure messages (git-fixes). - selftests: openat2: Skip testcases that fail with EOPNOTSUPP (git-fixes). - selftests: pmtu.sh: Kill nettest processes launched in subshell (git-fixes). - selftests: pmtu.sh: Kill tcpdump processes launched by subshell (git-fixes). - selftests: rtc: Increase test timeout so that all tests run (git-fixes). - selftests: skip mincore.check_file_mmap when fs lacks needed support (git-fixes). - selftests: test_vxlan_under_vrf: Fix broken test case (git-fixes). - selftests: vm: Makefile: rename TARGETS to VMTARGETS (git-fixes). - selftests: vm: fix clang build error multiple output files (git-fixes). - selftests: x86: fix [-Wstringop-overread] warn in test_process_vm_readv() (git-fixes). - serial: 8250: Fix PM usage_count for console handover (git-fixes). - serial: 8250: fix return error code in serial8250_request_std_resource() (git-fixes). - serial: pl011: UPSTAT_AUTORTS requires .throttle/unthrottle (git-fixes). - serial: sc16is7xx: Clear RS485 bits in the shutdown (git-fixes). - serial: stm32: Clear prev values before setting RTS delays (git-fixes). - smsc95xx: Ignore -ENODEV errors when device is unplugged (git-fixes). - soc: ixp4xx/npe: Fix unused match warning (git-fixes). - spi: Add Tegra234 QUAD SPI compatible (jsc#SLE-24570) - spi: amd: Limit max transfer and message size (git-fixes). - spi: bcm2835: bcm2835_spi_handle_err(): fix NULL pointer deref for non DMA transfers (git-fixes). - spi: tegra210-quad: add acpi support (jsc#SLE-24570) - spi: tegra210-quad: add new chips to compatible (jsc#SLE-24570) - spi: tegra210-quad: combined sequence mode (jsc#SLE-24570) - spi: tegra210-quad: use device_reset method (jsc#SLE-24570) - spi: tegra210-quad: use devm call for cdata memory (jsc#SLE-24570) - supported.conf: mark drivers/nvme/common as supported (jsc#SLE-20183) - supported.conf: mark marvell octeontx2 crypto driver as supported (jsc#SLE-24682) Mark rvu_cptpf.ko and rvu_cptvf.ko as supported. - supported.conf: rvu_mbox as supported (jsc#SLE-24682) - sysctl: Fix data races in proc_dointvec() (git-fixes). - sysctl: Fix data races in proc_dointvec_jiffies() (git-fixes). - sysctl: Fix data races in proc_dointvec_minmax() (git-fixes). - sysctl: Fix data races in proc_douintvec() (git-fixes). - sysctl: Fix data races in proc_douintvec_minmax() (git-fixes). - sysctl: Fix data races in proc_doulongvec_minmax() (git-fixes). - sysctl: Fix data-races in proc_dointvec_ms_jiffies() (git-fixes). - sysctl: Fix data-races in proc_dou8vec_minmax() (git-fixes). - tee: fix put order in teedev_close_context() (git-fixes). - tee: optee: do not check memref size on return from Secure World (git-fixes). - tee: tee_get_drvdata(): fix description of return value (git-fixes). - testing/selftests/mqueue: Fix mq_perf_tests to free the allocated cpu set (git-fixes). - testing: nvdimm: asm/mce.h is not needed in nfit.c (git-fixes). - testing: nvdimm: iomap: make __nfit_test_ioremap a macro (git-fixes). - tests: fix idmapped mount_setattr test (git-fixes). - tools include UAPI: Sync sound/asound.h copy with the kernel sources (git-fixes). - tools/nolibc: fix incorrect truncation of exit code (git-fixes). - tools/nolibc: i386: fix initial stack alignment (git-fixes). - tools/nolibc: x86-64: Fix startup code bug (git-fixes). - tools/testing/scatterlist: add missing defines (git-fixes). - tty: n_gsm: Modify CR,PF bit when config requester (git-fixes). - tty: n_gsm: Save dlci address open status when config requester (git-fixes). - tty: n_gsm: fix buffer over-read in gsm_dlci_data() (git-fixes). - tty: n_gsm: fix decoupled mux resource (git-fixes). - tty: n_gsm: fix encoding of command/response bit (git-fixes). - tty: n_gsm: fix frame reception handling (git-fixes). - tty: n_gsm: fix incorrect UA handling (git-fixes). - tty: n_gsm: fix insufficient txframe size (git-fixes). - tty: n_gsm: fix invalid gsmtty_write_room() result (git-fixes). - tty: n_gsm: fix invalid use of MSC in advanced option (git-fixes). - tty: n_gsm: fix malformed counter for out of frame data (git-fixes). - tty: n_gsm: fix missing explicit ldisc flush (git-fixes). - tty: n_gsm: fix missing tty wakeup in convergence layer type 2 (git-fixes). - tty: n_gsm: fix missing update of modem controls after DLCI open (git-fixes). - tty: n_gsm: fix mux activation issues in gsm_config() (git-fixes). - tty: n_gsm: fix mux cleanup after unregister tty device (git-fixes). - tty: n_gsm: fix reset fifo race condition (git-fixes). - tty: n_gsm: fix restart handling via CLD command (git-fixes). - tty: n_gsm: fix software flow control handling (git-fixes). - tty: n_gsm: fix sometimes uninitialized warning in gsm_dlci_modem_output() (git-fixes). - tty: n_gsm: fix wrong DLCI release order (git-fixes). - tty: n_gsm: fix wrong command frame length field encoding (git-fixes). - tty: n_gsm: fix wrong command retry handling (git-fixes). - tty: n_gsm: fix wrong signal octet encoding in convergence layer type 2 (git-fixes). - tty: n_gsm: fix wrong signal octets encoding in MSC (git-fixes). - tty: serial: samsung_tty: set dma burst_size to 1 (git-fixes). - tun: avoid double free in tun_free_netdev (git-fixes). - tun: fix bonding active backup with arp monitoring (git-fixes). - tunnels: do not assume mac header is set in skb_tunnel_check_pmtu() (git-fixes). - tuntap: add sanity checks about msg_controllen in sendmsg (git-fixes). - uaccess: fix type mismatch warnings from access_ok() (git-fixes). - ucounts: Base set_cred_ucounts changes on the real user (git-fixes). - ucounts: Fix rlimit max values check (git-fixes). - ucounts: Fix systemd LimitNPROC with private users regression (git-fixes). - ucounts: Handle wrapping in is_ucounts_overlimit (git-fixes). - ucounts: In set_cred_ucounts assume new->ucounts is non-NULL (git-fixes). - udmabuf: add back sanity check (git-fixes). - usb: dwc3: gadget: Fix event pending check (git-fixes). - usb: serial: ftdi_sio: add Belimo device ids (git-fixes). - usb: typec: add missing uevent when partner support PD (git-fixes). - usbnet: Run unregister_netdev() before unbind() again (git-fixes). - usbnet: fix memory leak in error case (git-fixes). - userfaultfd/selftests: fix hugetlb area allocations (git-fixes). - veth: Do not record rx queue hint in veth_xmit (git-fixes). - veth: ensure skb entering GRO are not cloned (git-fixes). - video: of_display_timing.h: include errno.h (git-fixes). - virtio_mmio: Add missing PM calls to freeze/restore (git-fixes). - virtio_mmio: Restore guest page size on resume (git-fixes). - vrf: Reset IPCB/IP6CB when processing outbound pkts in vrf dev xmit (git-fixes). - vsock/virtio: enable VQs early on probe (git-fixes). - vsock/virtio: initialize vdev->priv before using VQs (git-fixes). - vsock/virtio: read the negotiated features before using VQs (git-fixes). - vsock: remove vsock from connected table when connect is interrupted by a signal (git-fixes). - vt: fix memory overlapping when deleting chars in the buffer (git-fixes). - watch-queue: remove spurious double semicolon (git-fixes). - watch_queue: Fix missing locking in add_watch_to_object() (git-fixes). - watch_queue: Fix missing rcu annotation (git-fixes). - watchdog: export lockup_detector_reconfigure (bsc#1201846 ltc#198761). - watchqueue: make sure to serialize 'wqueue->defunct' properly (git-fixes). - wifi: mac80211: fix queue selection for mesh/OCB interfaces (git-fixes). - wifi: mac80211_hwsim: set virtio device ready in probe() (git-fixes). - wireguard: device: check for metadata_dst with skb_valid_dst() (git-fixes). - x86/bugs: Remove apostrophe typo (bsc#1190497). - x86/entry: Remove skip_r11rcx (bsc#1201524). - x86/ibt,xen: Sprinkle the ENDBR (bsc#1201471). - xen/netback: avoid entering xenvif_rx_next_skb() with an empty rx queue (bsc#1201381). - xhci: Set HCD flag to defer primary roothub registration (git-fixes). - xhci: dbc: Rename xhci_dbc_init and xhci_dbc_exit (git-fixes). - xhci: dbc: create and remove dbc structure in dbgtty driver (git-fixes). - xhci: dbc: refactor xhci_dbc_init() (git-fixes). - xprtrdma: fix pointer derefs in error cases of rpcrdma_ep_create (git-fixes). - xprtrdma: treat all calls not a bcall when bc_serv is NULL (git-fixes). - zonefs: Clear inode information flags on inode creation (git-fixes). - zonefs: Fix management of open zones (git-fixes). - zonefs: add MODULE_ALIAS_FS (git-fixes). cluster-md-kmp-azure-5.14.21-150400.14.10.1.x86_64.rpm True dlm-kmp-azure-5.14.21-150400.14.10.1.x86_64.rpm True gfs2-kmp-azure-5.14.21-150400.14.10.1.x86_64.rpm True kernel-azure-5.14.21-150400.14.10.1.nosrc.rpm True kernel-azure-5.14.21-150400.14.10.1.x86_64.rpm True kernel-azure-devel-5.14.21-150400.14.10.1.x86_64.rpm True kernel-azure-extra-5.14.21-150400.14.10.1.x86_64.rpm True kernel-azure-livepatch-devel-5.14.21-150400.14.10.1.x86_64.rpm True kernel-azure-optional-5.14.21-150400.14.10.1.x86_64.rpm True kernel-devel-azure-5.14.21-150400.14.10.1.noarch.rpm True kernel-source-azure-5.14.21-150400.14.10.1.noarch.rpm True kernel-source-azure-5.14.21-150400.14.10.1.src.rpm True kernel-syms-azure-5.14.21-150400.14.10.1.src.rpm True kernel-syms-azure-5.14.21-150400.14.10.1.x86_64.rpm True kselftests-kmp-azure-5.14.21-150400.14.10.1.x86_64.rpm True ocfs2-kmp-azure-5.14.21-150400.14.10.1.x86_64.rpm True reiserfs-kmp-azure-5.14.21-150400.14.10.1.x86_64.rpm True cluster-md-kmp-azure-5.14.21-150400.14.10.1.aarch64.rpm True dlm-kmp-azure-5.14.21-150400.14.10.1.aarch64.rpm True gfs2-kmp-azure-5.14.21-150400.14.10.1.aarch64.rpm True kernel-azure-5.14.21-150400.14.10.1.aarch64.rpm True kernel-azure-devel-5.14.21-150400.14.10.1.aarch64.rpm True kernel-azure-extra-5.14.21-150400.14.10.1.aarch64.rpm True kernel-azure-livepatch-devel-5.14.21-150400.14.10.1.aarch64.rpm True kernel-azure-optional-5.14.21-150400.14.10.1.aarch64.rpm True kernel-syms-azure-5.14.21-150400.14.10.1.aarch64.rpm True kselftests-kmp-azure-5.14.21-150400.14.10.1.aarch64.rpm True ocfs2-kmp-azure-5.14.21-150400.14.10.1.aarch64.rpm True reiserfs-kmp-azure-5.14.21-150400.14.10.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2827 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36557: Fixed race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys that could lead to a use-after-free (bnc#1201429). - CVE-2020-36558: Fixed race condition involving VT_RESIZEX that could lead to a NULL pointer dereference and general protection fault (bnc#1200910). - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2021-33656: Fixed out of bounds write with ioctl PIO_FONT (bnc#1201636). - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem (bnc#1198829). - CVE-2022-20166: Fixed possible out of bounds write due to sprintf unsafety that could cause local escalation of privilege (bnc#1200598). - CVE-2022-36946: Fixed incorrect packet truncation in nfqnl_mangle() that could lead to remote DoS (bnc#1201940). The following non-security bugs were fixed: - cifs: On cifs_reconnect, resolve the hostname again (bsc#1201926). - cifs: Simplify reconnect code when dfs upcall is enabled (bsc#1201926). - cifs: To match file servers, make sure the server hostname matches (bsc#1201926). - cifs: fix memory leak of smb3_fs_context_dup::server_hostname (bsc#1201926). - cifs: set a minimum of 120s for next dns resolution (bsc#1201926). - cifs: use the expiry output of dns_query to schedule next resolution (bsc#1201926). - kvm: emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930). - kvm: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930). - rpm/*.spec.in: remove backtick usage - rpm/constraints.in: skip SLOW_DISK workers for kernel-source - rpm/kernel-obs-build.spec.in: Also depend on dracut-systemd (bsc#1195775) - rpm/kernel-obs-build.spec.in: add systemd-initrd and terminfo dracut module (bsc#1195775) - rpm/kernel-obs-build.spec.in: use default dracut modules (bsc#1195926, bsc#1198484) - x86/entry: Remove skip_r11rcx (bsc#1201644). kernel-debug-4.12.14-150100.197.120.1.nosrc.rpm True kernel-debug-base-4.12.14-150100.197.120.1.x86_64.rpm True kernel-default-4.12.14-150100.197.120.1.nosrc.rpm True kernel-kvmsmall-4.12.14-150100.197.120.1.nosrc.rpm True kernel-kvmsmall-base-4.12.14-150100.197.120.1.x86_64.rpm True kernel-vanilla-4.12.14-150100.197.120.1.nosrc.rpm True kernel-vanilla-4.12.14-150100.197.120.1.x86_64.rpm True kernel-vanilla-base-4.12.14-150100.197.120.1.x86_64.rpm True kernel-vanilla-devel-4.12.14-150100.197.120.1.x86_64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.120.1.x86_64.rpm True kernel-default-man-4.12.14-150100.197.120.1.s390x.rpm True kernel-vanilla-4.12.14-150100.197.120.1.s390x.rpm True kernel-vanilla-base-4.12.14-150100.197.120.1.s390x.rpm True kernel-vanilla-devel-4.12.14-150100.197.120.1.s390x.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.120.1.s390x.rpm True kernel-zfcpdump-4.12.14-150100.197.120.1.nosrc.rpm True kernel-zfcpdump-man-4.12.14-150100.197.120.1.s390x.rpm True kernel-debug-base-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-base-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-devel-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.120.1.ppc64le.rpm True kernel-vanilla-4.12.14-150100.197.120.1.aarch64.rpm True kernel-vanilla-base-4.12.14-150100.197.120.1.aarch64.rpm True kernel-vanilla-devel-4.12.14-150100.197.120.1.aarch64.rpm True kernel-vanilla-livepatch-devel-4.12.14-150100.197.120.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2690 moderate SUSE Updates openSUSE-SLE 15.4 This update for rust, rust1.62 fixes the following issues: This update delivers rust1.62. - Improve support for wasi targets Version 1.62.1 (2022-07-19) ========================== Rust 1.62.1 addresses a few recent regressions in the compiler and standard library, and also mitigates a CPU vulnerability on Intel SGX. * The compiler fixed unsound function coercions involving `impl Trait` return types. * The compiler fixed an incremental compilation bug with `async fn` lifetimes. * Windows added a fallback for overlapped I/O in synchronous reads and writes. * The `x86_64-fortanix-unknown-sgx` target added a mitigation for the MMIO stale data vulnerability, advisory [INTEL-SA-00615]. - Experimental support for wasi targets Version 1.62.0 (2022-06-30) ========================== Language -------- - Stabilize `#[derive(Default)]` on enums with a `#[default]` variant - Teach flow sensitive checks that visibly uninhabited call expressions never return - Fix constants not getting dropped if part of a diverging expression - Support unit struct/enum variant in destructuring assignment][95380 - Remove mutable_borrow_reservation_conflict lint and allow the code pattern Compiler -------- - linker: Stop using whole-archive on dependencies of dylibs - Make `unaligned_references` lint deny-by-default This lint is also a future compatibility lint, and is expected to eventually become a hard error. - Only add codegen backend to dep info if -Zbinary-dep-depinfo is used - Reject `#[thread_local]` attribute on non-static items - Add tier 3 `aarch64-pc-windows-gnullvm` and `x86_64-pc-windows-gnullvm` targets\* - Implement a lint to warn about unused macro rules - Promote `x86_64-unknown-none` target to Tier 2 * Refer to Rust's [platform support page][platform-support-doc] for more information on Rust's tiered platform support. Libraries --------- - Windows: Use a pipe relay for chaining pipes - Replace Linux Mutex and Condvar with futex based ones. - Replace RwLock by a futex based one on Linux - std: directly use pthread in UNIX parker implementation Stabilized APIs --------------- - `bool::then_some` - `f32::total_cmp` - `f64::total_cmp` - `Stdin::lines` - `windows::CommandExt::raw_arg` - `impl<T: Default> Default for AssertUnwindSafe<T>` - `From<Rc<str>> for Rc<[u8]>` rc-u8-from-str - `From<Arc<str>> for Arc<[u8]>` arc-u8-from-str - `FusedIterator for EncodeWide` - RDM intrinsics on aarch64 stdarch/1285 Clippy ------ - Create clippy lint against unexpectedly late drop for temporaries in match scrutinee expressions Cargo ----- - Added the `cargo add` command for adding dependencies to `Cargo.toml` from the command-line. [docs](https://doc.rust-lang.org/nightly/cargo/commands/cargo-add.html) - Package ID specs now support `name@version` syntax in addition to the previous `name:version` to align with the behavior in `cargo add` and other tools. `cargo install` and `cargo yank` also now support this syntax so the version does not need to passed as a separate flag. - The `git` and `registry` directories in Cargo's home directory (usually `~/.cargo`) are now marked as cache directories so that they are not included in backups or content indexing (on Windows). - Added automatic `@` argfile support, which will use "response files" if the command-line to `rustc` exceeds the operating system's limit. Compatibility Notes ------------------- - `cargo test` now passes `--target` to `rustdoc` if the specified target is the same as the host target. - rustdoc: doctests are now run on unexported `macro_rules!` macros, matching other private items - rustdoc: Remove .woff font files - Enforce Copy bounds for repeat elements while considering lifetimes - Windows: Fix potentinal unsoundness by aborting if `File` reads or writes cannot complete synchronously. cargo-1.62.0-150300.21.29.1.x86_64.rpm cargo1.62-1.62.1-150300.7.4.1.x86_64.rpm rust-1.62.0-150300.21.29.1.src.rpm rust-1.62.0-150300.21.29.1.x86_64.rpm rust1.62-1.62.1-150300.7.4.1.src.rpm rust1.62-1.62.1-150300.7.4.1.x86_64.rpm cargo-1.62.0-150300.21.29.1.s390x.rpm cargo1.62-1.62.1-150300.7.4.1.s390x.rpm rust-1.62.0-150300.21.29.1.s390x.rpm rust1.62-1.62.1-150300.7.4.1.s390x.rpm cargo-1.62.0-150300.21.29.1.ppc64le.rpm cargo1.62-1.62.1-150300.7.4.1.ppc64le.rpm rust-1.62.0-150300.21.29.1.ppc64le.rpm rust1.62-1.62.1-150300.7.4.1.ppc64le.rpm cargo-1.62.0-150300.21.29.1.aarch64.rpm cargo1.62-1.62.1-150300.7.4.1.aarch64.rpm rust-1.62.0-150300.21.29.1.aarch64.rpm rust1.62-1.62.1-150300.7.4.1.aarch64.rpm openSUSE-SLE-15.4-2022-2758 moderate SUSE Updates openSUSE-SLE 15.4 This update for clamsap fixes the following issues: clamsap was updated to version 0.104 (jsc#PED-805) * Relax javascript check in PDF * use https source url, also https URL * Wildcard support for MIME type lists * Fix SAR file content scan * Add option for PDF active content * Remove own default settings from VsaGetConfig and rely on clamav defaults * Change default virusname in case clamav does not return any virus name. * Limit pcre calls * Increase Version because tested with latest clam engine * Support new parameter SCANHEURISTICLEVEL clamsap-0.104.2-150000.4.6.1.src.rpm clamsap-0.104.2-150000.4.6.1.x86_64.rpm clamsap-0.104.2-150000.4.6.1.s390x.rpm clamsap-0.104.2-150000.4.6.1.ppc64le.rpm clamsap-0.104.2-150000.4.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-2835 important SUSE Updates openSUSE-SLE 15.4 This update for ntfs-3g_ntfsprogs fixes the following issues: Updated to version 2022.5.17 (bsc#1199978): - CVE-2022-30783: Fixed an issue where messages between NTFS-3G and the kernel could be intercepted when using libfuse-lite. - CVE-2022-30784: Fixed a memory exhaustion issue when opening a crafted NTFS image. - CVE-2022-30785: Fixed a bug where arbitrary memory read and write operations could be achieved whe using libfuse-lite. - CVE-2022-30786: Fixed a memory corruption issue when opening a crafted NTFS image. - CVE-2022-30787: Fixed an integer underflow which enabled arbitrary memory read operations when using libfuse-lite. - CVE-2022-30788: Fixed a memory corruption issue when opening a crafted NTFS image. - CVE-2022-30789: Fixed a memory corruption issue when opening a crafted NTFS image. libntfs-3g-devel-2022.5.17-150000.3.11.1.x86_64.rpm libntfs-3g87-2022.5.17-150000.3.11.1.x86_64.rpm ntfs-3g-2022.5.17-150000.3.11.1.x86_64.rpm ntfs-3g_ntfsprogs-2022.5.17-150000.3.11.1.src.rpm ntfsprogs-2022.5.17-150000.3.11.1.x86_64.rpm ntfsprogs-extra-2022.5.17-150000.3.11.1.x86_64.rpm libntfs-3g-devel-2022.5.17-150000.3.11.1.s390x.rpm libntfs-3g87-2022.5.17-150000.3.11.1.s390x.rpm ntfs-3g-2022.5.17-150000.3.11.1.s390x.rpm ntfsprogs-2022.5.17-150000.3.11.1.s390x.rpm ntfsprogs-extra-2022.5.17-150000.3.11.1.s390x.rpm libntfs-3g-devel-2022.5.17-150000.3.11.1.ppc64le.rpm libntfs-3g87-2022.5.17-150000.3.11.1.ppc64le.rpm ntfs-3g-2022.5.17-150000.3.11.1.ppc64le.rpm ntfsprogs-2022.5.17-150000.3.11.1.ppc64le.rpm ntfsprogs-extra-2022.5.17-150000.3.11.1.ppc64le.rpm libntfs-3g-devel-2022.5.17-150000.3.11.1.aarch64.rpm libntfs-3g87-2022.5.17-150000.3.11.1.aarch64.rpm ntfs-3g-2022.5.17-150000.3.11.1.aarch64.rpm ntfsprogs-2022.5.17-150000.3.11.1.aarch64.rpm ntfsprogs-extra-2022.5.17-150000.3.11.1.aarch64.rpm openSUSE-SLE-15.4-2022-2825 important SUSE Updates openSUSE-SLE 15.4 This update for rsync fixes the following issues: - CVE-2022-29154: Fixed an arbitrary file write when connecting to a malicious server (bsc#1201840). rsync-3.2.3-150400.3.3.1.src.rpm rsync-3.2.3-150400.3.3.1.x86_64.rpm rsync-3.2.3-150400.3.3.1.s390x.rpm rsync-3.2.3-150400.3.3.1.ppc64le.rpm rsync-3.2.3-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2816 important SUSE Updates openSUSE-SLE 15.4 This update for s390-tools fixes the following issues: - Increase update delay on first iteration. (bsc#1201412) * This change is needed because the initial iteration of `hyptop` can produce bloated values independent from the update delay set by the user. libekmfweb1-2.19.0-150400.7.7.1.s390x.rpm libekmfweb1-devel-2.19.0-150400.7.7.1.s390x.rpm libkmipclient1-2.19.0-150400.7.7.1.s390x.rpm libkmipclient1-devel-2.19.0-150400.7.7.1.s390x.rpm osasnmpd-2.19.0-150400.7.7.1.s390x.rpm s390-tools-2.19.0-150400.7.7.1.s390x.rpm s390-tools-2.19.0-150400.7.7.1.src.rpm s390-tools-chreipl-fcp-mpath-2.19.0-150400.7.7.1.s390x.rpm s390-tools-hmcdrvfs-2.19.0-150400.7.7.1.s390x.rpm s390-tools-zdsfs-2.19.0-150400.7.7.1.s390x.rpm openSUSE-SLE-15.4-2022-2755 moderate SUSE Updates openSUSE-SLE 15.4 This update for suse-xsl-stylesheets fixes the following issues: Changes in suse-xsl-stylesheets: - Update SUSE stylesheets - New three-column layout - Update translation strings - Replace old SUSE logo - Update 2.86.0 - Update to JQuery 1.12.4 (#485) - Fix color issues (#486) - Add new section "creating a new release" in README - Update 2.85.2 - Fix single h1 issue in HTML in #484 (improves SEO) - update README - Update 2.85.1 - Fix #453: colors in <phrase role="color:..."> works now - update README - Add requirement for google-poppins-fonts - Update to 2.85.0 - Fix #479: Typo fix in parameter qnumber -> number - Fix #478: reduce length count for socialmedia and search description to 150 - Fix #474: Support alt/title attributes in images - Fix #455: Add missing strings for HTML output - Fix #286: Rudimentary style <result> element - Update to 2.84.1 - Fix #454: Implement color for phrase/para - Fix #470: Make "Report bug" links attached to titles - Update to 2.84.0: - Fix #96: Remove SUSE address - Fix #458: figure-label for fr-fr: remove stray letter "t" - Fix #458: Add missing datetime format for zh_* - Fix #465: Replace old SUSE logo for suse2013 - Fix #463: Use correct inline color for screen - Add README for SUSE's SASS customization https://github.com/openSUSE/suse-xsl/releases/tag/2.84.0 - Beta release of the SUSE XSL stylesheets 2.83.0: https://github.com/openSUSE/suse-xsl/releases/tag/2.83.0 - PDF/HTML - A variety of small, but important bug fixes for the SUSE 2022 stylesheets, including a fix for a PDF build breaker - Remove obsolete susexsl-fetch-source-git script (bsc#1187783) suse-xsl-stylesheets-2.86.0-150300.3.3.1.noarch.rpm suse-xsl-stylesheets-2.86.0-150300.3.3.1.src.rpm openSUSE-SLE-15.4-2022-2822 important SUSE Updates openSUSE-SLE 15.4 This update for python-Twisted fixes the following issues: - CVE-2020-10109: Fixed an HTTP request smuggling issue (bsc#1166458). python-Twisted-19.10.0-150200.3.15.1.src.rpm openSUSE-SLE-15.4-2022-2691 important SUSE Updates openSUSE-SLE 15.4 This update for python-M2Crypto fixes the following issues: - CVE-2020-25657: Fixed Bleichenbacher timing attacks in the RSA decryption API (bsc#1178829). python-M2Crypto-0.38.0-150400.3.6.1.src.rpm python-M2Crypto-doc-0.38.0-150400.3.6.1.noarch.rpm python3-M2Crypto-0.38.0-150400.3.6.1.x86_64.rpm python3-M2Crypto-0.38.0-150400.3.6.1.s390x.rpm python3-M2Crypto-0.38.0-150400.3.6.1.ppc64le.rpm python3-M2Crypto-0.38.0-150400.3.6.1.aarch64.rpm openSUSE-SLE-15.4-2022-2856 important SUSE Updates openSUSE-SLE 15.4 This update for java-1_8_0-openjdk fixes the following issues: - Updated to version jdk8u345 (icedtea-3.24.0) - CVE-2022-21540: Fixed a potential Java sandbox bypass (bsc#1201694). - CVE-2022-21541: Fixed a potential Java sandbox bypass (bsc#1201692). - CVE-2022-34169: Fixed an issue where arbitrary bytecode could be executed via a malicious stylesheet (bsc#1201684). - Non-security fixes: - Allowed for customization of PKCS12 keystores (bsc#1195163). java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.src.rpm java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-accessibility-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-demo-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-devel-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-headless-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-javadoc-1.8.0.345-150000.3.70.1.noarch.rpm java-1_8_0-openjdk-src-1.8.0.345-150000.3.70.1.x86_64.rpm java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-accessibility-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-demo-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-devel-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-headless-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-src-1.8.0.345-150000.3.70.1.s390x.rpm java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-accessibility-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-demo-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-devel-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-headless-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-src-1.8.0.345-150000.3.70.1.ppc64le.rpm java-1_8_0-openjdk-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-accessibility-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-demo-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-devel-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-headless-1.8.0.345-150000.3.70.1.aarch64.rpm java-1_8_0-openjdk-src-1.8.0.345-150000.3.70.1.aarch64.rpm openSUSE-SLE-15.4-2022-2879 moderate SUSE Updates openSUSE-SLE 15.4 This update for scap-security-guide fixes the following issues: scap-security-guide was updated to 0.1.63 (jsc#ECO-3319): - multiple bugfixes in SUSE profiles - Expand project guidelines - Add Draft OCP4 STIG profile - Add anssi_bp28_intermediary profile - add products/uos20 to support UnionTech OS Server 20 - products/alinux3: Add CIS Alibaba Cloud Linux 3 profiles - Remove WRLinux Products - Update CIS RHEL8 Benchmark for v2.0.0 SUSE specific issues fixed: - stig: /etc/shadow group owner should not be root but shadow (bsc#1200149) - sles15_script-stig.sh: remediation_functions: No such file or directory (bsc#1200163) - SLES-15-010130 - The SUSE operating system must initiate a session lock after a 15-minute period of inactivity (bsc#1200122) scap-security-guide-0.1.63-150000.1.45.1.noarch.rpm scap-security-guide-0.1.63-150000.1.45.1.src.rpm scap-security-guide-debian-0.1.63-150000.1.45.1.noarch.rpm scap-security-guide-redhat-0.1.63-150000.1.45.1.noarch.rpm scap-security-guide-ubuntu-0.1.63-150000.1.45.1.noarch.rpm openSUSE-SLE-15.4-2022-2869 important SUSE Updates openSUSE-SLE 15.4 This update for u-boot fixes the following issues: - CVE-2022-33103: Fixed a flaw in the squashfs subsystem that could lead to arbitrary code execution (bsc#1201213). u-boot-2021.10-150400.4.11.1.src.rpm u-boot-tools-2021.10-150400.4.11.1.x86_64.rpm u-boot-tools-2021.10-150400.4.11.1.s390x.rpm u-boot-tools-2021.10-150400.4.11.1.ppc64le.rpm u-boot-avnetultra96rev1-2021.10-150400.4.11.1.aarch64.rpm u-boot-avnetultra96rev1-2021.10-150400.4.11.1.src.rpm u-boot-avnetultra96rev1-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-bananapim64-2021.10-150400.4.11.1.aarch64.rpm u-boot-bananapim64-2021.10-150400.4.11.1.src.rpm u-boot-bananapim64-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-dragonboard410c-2021.10-150400.4.11.1.aarch64.rpm u-boot-dragonboard410c-2021.10-150400.4.11.1.src.rpm u-boot-dragonboard410c-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-dragonboard820c-2021.10-150400.4.11.1.aarch64.rpm u-boot-dragonboard820c-2021.10-150400.4.11.1.src.rpm u-boot-dragonboard820c-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-evb-rk3399-2021.10-150400.4.11.1.aarch64.rpm u-boot-evb-rk3399-2021.10-150400.4.11.1.src.rpm u-boot-evb-rk3399-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-firefly-rk3399-2021.10-150400.4.11.1.aarch64.rpm u-boot-firefly-rk3399-2021.10-150400.4.11.1.src.rpm u-boot-firefly-rk3399-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-geekbox-2021.10-150400.4.11.1.aarch64.rpm u-boot-geekbox-2021.10-150400.4.11.1.src.rpm u-boot-geekbox-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-hikey-2021.10-150400.4.11.1.aarch64.rpm u-boot-hikey-2021.10-150400.4.11.1.src.rpm u-boot-hikey-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-khadas-vim-2021.10-150400.4.11.1.aarch64.rpm u-boot-khadas-vim-2021.10-150400.4.11.1.src.rpm u-boot-khadas-vim-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-khadas-vim2-2021.10-150400.4.11.1.aarch64.rpm u-boot-khadas-vim2-2021.10-150400.4.11.1.src.rpm u-boot-khadas-vim2-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-libretech-ac-2021.10-150400.4.11.1.aarch64.rpm u-boot-libretech-ac-2021.10-150400.4.11.1.src.rpm u-boot-libretech-ac-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-libretech-cc-2021.10-150400.4.11.1.aarch64.rpm u-boot-libretech-cc-2021.10-150400.4.11.1.src.rpm u-boot-libretech-cc-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.10-150400.4.11.1.aarch64.rpm u-boot-ls1012afrdmqspi-2021.10-150400.4.11.1.src.rpm u-boot-ls1012afrdmqspi-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.10-150400.4.11.1.aarch64.rpm u-boot-mvebudb-88f3720-2021.10-150400.4.11.1.src.rpm u-boot-mvebudb-88f3720-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.10-150400.4.11.1.aarch64.rpm u-boot-mvebudbarmada8k-2021.10-150400.4.11.1.src.rpm u-boot-mvebudbarmada8k-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.10-150400.4.11.1.aarch64.rpm u-boot-mvebuespressobin-88f3720-2021.10-150400.4.11.1.src.rpm u-boot-mvebuespressobin-88f3720-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.10-150400.4.11.1.aarch64.rpm u-boot-mvebumcbin-88f8040-2021.10-150400.4.11.1.src.rpm u-boot-mvebumcbin-88f8040-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-nanopia64-2021.10-150400.4.11.1.aarch64.rpm u-boot-nanopia64-2021.10-150400.4.11.1.src.rpm u-boot-nanopia64-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-odroid-c2-2021.10-150400.4.11.1.aarch64.rpm u-boot-odroid-c2-2021.10-150400.4.11.1.src.rpm u-boot-odroid-c2-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-odroid-c4-2021.10-150400.4.11.1.aarch64.rpm u-boot-odroid-c4-2021.10-150400.4.11.1.src.rpm u-boot-odroid-c4-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-odroid-n2-2021.10-150400.4.11.1.aarch64.rpm u-boot-odroid-n2-2021.10-150400.4.11.1.src.rpm u-boot-odroid-n2-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-orangepipc2-2021.10-150400.4.11.1.aarch64.rpm u-boot-orangepipc2-2021.10-150400.4.11.1.src.rpm u-boot-orangepipc2-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-p2371-2180-2021.10-150400.4.11.1.aarch64.rpm u-boot-p2371-2180-2021.10-150400.4.11.1.src.rpm u-boot-p2371-2180-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-p2771-0000-500-2021.10-150400.4.11.1.aarch64.rpm u-boot-p2771-0000-500-2021.10-150400.4.11.1.src.rpm u-boot-p2771-0000-500-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-p3450-0000-2021.10-150400.4.11.1.aarch64.rpm u-boot-p3450-0000-2021.10-150400.4.11.1.src.rpm u-boot-p3450-0000-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-pine64plus-2021.10-150400.4.11.1.aarch64.rpm u-boot-pine64plus-2021.10-150400.4.11.1.src.rpm u-boot-pine64plus-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-pinebook-2021.10-150400.4.11.1.aarch64.rpm u-boot-pinebook-2021.10-150400.4.11.1.src.rpm u-boot-pinebook-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.10-150400.4.11.1.aarch64.rpm u-boot-pinebook-pro-rk3399-2021.10-150400.4.11.1.src.rpm u-boot-pinebook-pro-rk3399-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-pineh64-2021.10-150400.4.11.1.aarch64.rpm u-boot-pineh64-2021.10-150400.4.11.1.src.rpm u-boot-pineh64-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-pinephone-2021.10-150400.4.11.1.aarch64.rpm u-boot-pinephone-2021.10-150400.4.11.1.src.rpm u-boot-pinephone-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-poplar-2021.10-150400.4.11.1.aarch64.rpm u-boot-poplar-2021.10-150400.4.11.1.src.rpm u-boot-poplar-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.10-150400.4.11.1.aarch64.rpm u-boot-rock-pi-4-rk3399-2021.10-150400.4.11.1.src.rpm u-boot-rock-pi-4-rk3399-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-rock-pi-n10-rk3399pro-2021.10-150400.4.11.1.aarch64.rpm u-boot-rock-pi-n10-rk3399pro-2021.10-150400.4.11.1.src.rpm u-boot-rock-pi-n10-rk3399pro-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-rock64-rk3328-2021.10-150400.4.11.1.aarch64.rpm u-boot-rock64-rk3328-2021.10-150400.4.11.1.src.rpm u-boot-rock64-rk3328-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-rock960-rk3399-2021.10-150400.4.11.1.aarch64.rpm u-boot-rock960-rk3399-2021.10-150400.4.11.1.src.rpm u-boot-rock960-rk3399-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.10-150400.4.11.1.aarch64.rpm u-boot-rockpro64-rk3399-2021.10-150400.4.11.1.src.rpm u-boot-rockpro64-rk3399-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-rpi3-2021.10-150400.4.11.1.aarch64.rpm u-boot-rpi3-2021.10-150400.4.11.1.src.rpm u-boot-rpi3-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-rpi4-2021.10-150400.4.11.1.aarch64.rpm u-boot-rpi4-2021.10-150400.4.11.1.src.rpm u-boot-rpi4-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-rpiarm64-2021.10-150400.4.11.1.aarch64.rpm u-boot-rpiarm64-2021.10-150400.4.11.1.src.rpm u-boot-rpiarm64-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-tools-2021.10-150400.4.11.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.10-150400.4.11.1.aarch64.rpm u-boot-xilinxzynqmpvirt-2021.10-150400.4.11.1.src.rpm u-boot-xilinxzynqmpvirt-doc-2021.10-150400.4.11.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.10-150400.4.11.1.aarch64.rpm u-boot-xilinxzynqmpzcu102rev10-2021.10-150400.4.11.1.src.rpm u-boot-xilinxzynqmpzcu102rev10-doc-2021.10-150400.4.11.1.aarch64.rpm openSUSE-SLE-15.4-2022-2757 moderate SUSE Updates openSUSE-SLE 15.4 This update for obs-service-source_validator fixes the following issues: - Update to version 0.25 (bsc#1202132) * Reject empty or ill-formatted patches * Use ERROR for prefixing errors * Split out GPG validation into own check and improve it * Allow mode=manual services * spec_query: add elif support * Also read package in _multibuild * display diff if previous file is present in 20-files-present-and-referenced * Use xmllint for listing multibuild flavors * Don't break if there is no *.spec * Allow for multibuild specfiles with empty default flavour * No need to compress buildtime generated tarballs * Fix running the checks on a directory with whitespace in its path * spec_query: print line numbers on %if/%else/%endif error * Do not complain about debian.*.triggers * No need to compress buildtime generated tarballs * One .changes file per package is enough * allow _multibuild to handle multiple specs * The --buildflavor option was missing from the help output * 70-baselibs: do not run subshells * allow -MACRO ending for changes file on multibuild setups * skip source files checks for product definition directories * Add missing dependency to the debian/control file * /usr/include/X11 is still a valid path. * make path for helpers variable * fix for #bsc985980 * check for LICENSE or COPYING files marked as %doc * 70-baselibs: call spec_query with --no-conditionals so that checking package tevent sees the python3-tevent package for the baselibs checker * Build-depend on obs-build to fix Debian build * move multibuild or multi spec in front * add glibc testcase using multibuild * support _multibuild files when validating sources * do not use "--no-conditionals" for baselibs check obs-service-source_validator-0.25-150000.3.3.1.noarch.rpm obs-service-source_validator-0.25-150000.3.3.1.src.rpm openSUSE-SLE-15.4-2022-2796 moderate SUSE Updates openSUSE-SLE 15.4 This update for jitterentropy fixes the following issues: jitterentropy is included in version 3.4.0 (jsc#SLE-24941): This is a FIPS 140-3 / NIST 800-90b compliant userspace jitter entropy generator library, used by other FIPS libraries. jitterentropy-3.4.0-150000.1.3.1.src.rpm jitterentropy-devel-3.4.0-150000.1.3.1.x86_64.rpm jitterentropy-devel-32bit-3.4.0-150000.1.3.1.x86_64.rpm jitterentropy-devel-static-3.4.0-150000.1.3.1.x86_64.rpm libjitterentropy3-3.4.0-150000.1.3.1.x86_64.rpm libjitterentropy3-32bit-3.4.0-150000.1.3.1.x86_64.rpm jitterentropy-devel-3.4.0-150000.1.3.1.s390x.rpm jitterentropy-devel-static-3.4.0-150000.1.3.1.s390x.rpm libjitterentropy3-3.4.0-150000.1.3.1.s390x.rpm jitterentropy-devel-3.4.0-150000.1.3.1.ppc64le.rpm jitterentropy-devel-static-3.4.0-150000.1.3.1.ppc64le.rpm libjitterentropy3-3.4.0-150000.1.3.1.ppc64le.rpm jitterentropy-devel-3.4.0-150000.1.3.1.aarch64.rpm jitterentropy-devel-static-3.4.0-150000.1.3.1.aarch64.rpm libjitterentropy3-3.4.0-150000.1.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2834 important SUSE Updates openSUSE-SLE 15.4 This update for podman fixes the following issues: Updated to version 3.4.7: - CVE-2022-1227: Fixed an issue that could allow an attacker to publish a malicious image to a public registry and run arbitrary code in the victim's context via the 'podman top' command (bsc#1182428). - CVE-2022-27191: Fixed a potential crash via SSH under specific configurations (bsc#1197284). - CVE-2022-21698: Fixed a potential denial of service that affected servers that used Prometheus instrumentation (bsc#1196338). podman-3.4.7-150400.4.3.1.src.rpm podman-3.4.7-150400.4.3.1.x86_64.rpm podman-cni-config-3.4.7-150400.4.3.1.noarch.rpm podman-docker-3.4.7-150400.4.3.1.noarch.rpm podman-remote-3.4.7-150400.4.3.1.x86_64.rpm podman-3.4.7-150400.4.3.1.s390x.rpm podman-remote-3.4.7-150400.4.3.1.s390x.rpm podman-3.4.7-150400.4.3.1.ppc64le.rpm podman-remote-3.4.7-150400.4.3.1.ppc64le.rpm podman-3.4.7-150400.4.3.1.aarch64.rpm podman-remote-3.4.7-150400.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2749 moderate SUSE Updates openSUSE-SLE 15.4 This update for go1.19 fixes the following issues: go1.19 (released 2022-08-02) is a major release of Go. go1.19.x minor releases will be provided through August 2023. https://github.com/golang/go/wiki/Go-Release-Cycle go1.19 arrives five months after go1.18. Most of its changes are in the implementation of the toolchain, runtime, and libraries. As always, the release maintains the Go 1 promise of compatibility. We expect almost all Go programs to continue to compile and run as before. (Refs bsc#1200441 go1.19 release tracking) * See release notes https://golang.org/doc/go1.19. Excerpts relevant to OBS environment and for SUSE/openSUSE follow: * There is only one small change to the language, a very small correction to the scope of type parameters in method declarations. Existing programs are unaffected. * The Go memory model has been revised to align Go with the memory model used by C, C++, Java, JavaScript, Rust, and Swift. Go only provides sequentially consistent atomics, not any of the more relaxed forms found in other languages. Along with the memory model update, Go 1.19 introduces new types in the sync/atomic package that make it easier to use atomic values, such as atomic.Int64 and atomic.Pointer[T]. * go1.19 adds support for the Loongson 64-bit architecture LoongArch on Linux (GOOS=linux, GOARCH=loong64). The ABI implemented is LP64D. Minimum kernel version supported is 5.19. * The riscv64 port now supports passing function arguments and result using registers. Benchmarking shows typical performance improvements of 10% or more on riscv64. * Go 1.19 adds support for links, lists, and clearer headings in doc comments. As part of this change, gofmt now reformats doc comments to make their rendered meaning clearer. See "Go Doc Comments" for syntax details and descriptions of common mistakes now highlighted by gofmt. As another part of this change, the new package go/doc/comment provides parsing and reformatting of doc comments as well as support for rendering them to HTML, Markdown, and text. * The new build constraint "unix" is now recognized in //go:build lines. The constraint is satisfied if the target operating system, also known as GOOS, is a Unix or Unix-like system. For the 1.19 release it is satisfied if GOOS is one of aix, android, darwin, dragonfly, freebsd, hurd, illumos, ios, linux, netbsd, openbsd, or solaris. In future releases the unix constraint may match additional newly supported operating systems. * The -trimpath flag, if set, is now included in the build settings stamped into Go binaries by go build, and can be examined using go version -m or debug.ReadBuildInfo. * go generate now sets the GOROOT environment variable explicitly in the generator's environment, so that generators can locate the correct GOROOT even if built with -trimpath. * go test and go generate now place GOROOT/bin at the beginning of the PATH used for the subprocess, so tests and generators that execute the go command will resolve it to same GOROOT. * go env now quotes entries that contain spaces in the CGO_CFLAGS, CGO_CPPFLAGS, CGO_CXXFLAGS, CGO_FFLAGS, CGO_LDFLAGS, and GOGCCFLAGS variables it reports. * go list -json now accepts a comma-separated list of JSON fields to populate. If a list is specified, the JSON output will include only those fields, and go list may avoid work to compute fields that are not included. In some cases, this may suppress errors that would otherwise be reported. * The go command now caches information necessary to load some modules, which should result in a speed-up of some go list invocations. * The vet checker "errorsas" now reports when errors.As is called with a second argument of type *error, a common mistake. * The runtime now includes support for a soft memory limit. This memory limit includes the Go heap and all other memory managed by the runtime, and excludes external memory sources such as mappings of the binary itself, memory managed in other languages, and memory held by the operating system on behalf of the Go program. This limit may be managed via runtime/debug.SetMemoryLimit or the equivalent GOMEMLIMIT environment variable. The limit works in conjunction with runtime/debug.SetGCPercent / GOGC, and will be respected even if GOGC=off, allowing Go programs to always make maximal use of their memory limit, improving resource efficiency in some cases. * In order to limit the effects of GC thrashing when the program's live heap size approaches the soft memory limit, the Go runtime also attempts to limit total GC CPU utilization to 50%, excluding idle time, choosing to use more memory over preventing application progress. In practice, we expect this limit to only play a role in exceptional cases, and the new runtime metric /gc/limiter/last-enabled:gc-cycle reports when this last occurred. * The runtime now schedules many fewer GC worker goroutines on idle operating system threads when the application is idle enough to force a periodic GC cycle. * The runtime will now allocate initial goroutine stacks based on the historic average stack usage of goroutines. This avoids some of the early stack growth and copying needed in the average case in exchange for at most 2x wasted space on below-average goroutines. * On Unix operating systems, Go programs that import package os now automatically increase the open file limit (RLIMIT_NOFILE) to the maximum allowed value; that is, they change the soft limit to match the hard limit. This corrects artificially low limits set on some systems for compatibility with very old C programs using the select system call. Go programs are not helped by that limit, and instead even simple programs like gofmt often ran out of file descriptors on such systems when processing many files in parallel. One impact of this change is that Go programs that in turn execute very old C programs in child processes may run those programs with too high a limit. This can be corrected by setting the hard limit before invoking the Go program. * Unrecoverable fatal errors (such as concurrent map writes, or unlock of unlocked mutexes) now print a simpler traceback excluding runtime metadata (equivalent to a fatal panic) unless GOTRACEBACK=system or crash. Runtime-internal fatal error tracebacks always include full metadata regardless of the value of GOTRACEBACK * Support for debugger-injected function calls has been added on ARM64, enabling users to call functions from their binary in an interactive debugging session when using a debugger that is updated to make use of this functionality. * The address sanitizer support added in Go 1.18 now handles function arguments and global variables more precisely. * The compiler now uses a jump table to implement large integer and string switch statements. Performance improvements for the switch statement vary but can be on the order of 20% faster. (GOARCH=amd64 and GOARCH=arm64 only) * The Go compiler now requires the -p=importpath flag to build a linkable object file. This is already supplied by the go command and by Bazel. Any other build systems that invoke the Go compiler directly will need to make sure they pass this flag as well. * The Go compiler no longer accepts the -importmap flag. Build systems that invoke the Go compiler directly must use the -importcfg flag instead. * Like the compiler, the assembler now requires the -p=importpath flag to build a linkable object file. This is already supplied by the go command. Any other build systems that invoke the Go assembler directly will need to make sure they pass this flag as well. * Command and LookPath no longer allow results from a PATH search to be found relative to the current directory. This removes a common source of security problems but may also break existing programs that depend on using, say, exec.Command("prog") to run a binary named prog (or, on Windows, prog.exe) in the current directory. See the os/exec package documentation for information about how best to update such programs. * On Windows, Command and LookPath now respect the NoDefaultCurrentDirectoryInExePath environment variable, making it possible to disable the default implicit search of “.” in PATH lookups on Windows systems. * crypto/elliptic: Operating on invalid curve points (those for which the IsOnCurve method returns false, and which are never returned by Unmarshal or by a Curve method operating on a valid point) has always been undefined behavior and can lead to key recovery attacks. If an invalid point is supplied to Marshal, MarshalCompressed, Add, Double, or ScalarMult, they will now panic. ScalarBaseMult operations on the P224, P384, and P521 curves are now up to three times faster, leading to similar speedups in some ECDSA operations. The generic (not platform optimized) P256 implementation was replaced with one derived from a formally verified model; this might lead to significant slowdowns on 32-bit platforms. * crypto/rand: Read no longer buffers random data obtained from the operating system between calls. Applications that perform many small reads at high frequency might choose to wrap Reader in a bufio.Reader for performance reasons, taking care to use io.ReadFull to ensure no partial reads occur. The Prime implementation was changed to use only rejection sampling, which removes a bias when generating small primes in non-cryptographic contexts, removes one possible minor timing leak, and better aligns the behavior with BoringSSL, all while simplifying the implementation. The change does produce different outputs for a given random source stream compared to the previous implementation, which can break tests written expecting specific results from specific deterministic random sources. To help prevent such problems in the future, the implementation is now intentionally non-deterministic with respect to the input stream. * crypto/tls: The GODEBUG option tls10default=1 has been removed. It is still possible to enable TLS 1.0 client-side by setting Config.MinVersion. The TLS server and client now reject duplicate extensions in TLS handshakes, as required by RFC 5246, Section 7.4.1.4 and RFC 8446, Section 4.2. * crypto/x509: CreateCertificate no longer supports creating certificates with SignatureAlgorithm set to MD5WithRSA. CreateCertificate no longer accepts negative serial numbers. CreateCertificate will not emit an empty SEQUENCE anymore when the produced certificate has no extensions. ParseCertificate and ParseCertificateRequest now reject certificates and CSRs which contain duplicate extensions. The new CertPool.Clone and CertPool.Equal methods allow cloning a CertPool and checking the equivalence of two CertPools respectively. The new function ParseRevocationList provides a faster, safer to use CRL parser which returns a RevocationList. Parsing a CRL also populates the new RevocationList fields RawIssuer, Signature, AuthorityKeyId, and Extensions, which are ignored by CreateRevocationList. The new method RevocationList.CheckSignatureFrom checks that the signature on a CRL is a valid signature from a Certificate. The ParseCRL and ParseDERCRL functions are now deprecated in favor of ParseRevocationList. The Certificate.CheckCRLSignature method is deprecated in favor of RevocationList.CheckSignatureFrom. The path builder of Certificate.Verify was overhauled and should now produce better chains and/or be more efficient in complicated scenarios. Name constraints are now also enforced on non-leaf certificates. * crypto/x509/pkix: The types CertificateList and TBSCertificateList have been deprecated. The new crypto/x509 CRL functionality should be used instead. * debug/elf: The new EM_LOONGARCH and R_LARCH_* constants support the loong64 port. * debug/pe: The new File.COFFSymbolReadSectionDefAux method, which returns a COFFSymbolAuxFormat5, provides access to COMDAT information in PE file sections. These are supported by new IMAGE_COMDAT_* and IMAGE_SCN_* constants. * runtime: The GOROOT function now returns the empty string (instead of "go") when the binary was built with the -trimpath flag set and the GOROOT variable is not set in the process environment. * runtime/metrics: The new /sched/gomaxprocs:threads metric reports the current runtime.GOMAXPROCS value. The new /cgo/go-to-c-calls:calls metric reports the total number of calls made from Go to C. This metric is identical to the runtime.NumCgoCall function. The new /gc/limiter/last-enabled:gc-cycle metric reports the last GC cycle when the GC CPU limiter was enabled. See the runtime notes for details about the GC CPU limiter. * runtime/pprof: Stop-the-world pause times have been significantly reduced when collecting goroutine profiles, reducing the overall latency impact to the application. MaxRSS is now reported in heap profiles for all Unix operating systems (it was previously only reported for GOOS=android, darwin, ios, and linux). * runtime/race: The race detector has been upgraded to use thread sanitizer version v3 on all supported platforms except windows/amd64 and openbsd/amd64, which remain on v2. Compared to v2, it is now typically 1.5x to 2x faster, uses half as much memory, and it supports an unlimited number of goroutines. On Linux, the race detector now requires at least glibc version 2.17 and GNU binutils 2.26. The race detector is now supported on GOARCH=s390x. Race detector support for openbsd/amd64 has been removed from thread sanitizer upstream, so it is unlikely to ever be updated from v2. * runtime/trace: When tracing and the CPU profiler are enabled simultaneously, the execution trace includes CPU profile samples as instantaneous events. * syscall: On PowerPC (GOARCH=ppc64, ppc64le), Syscall, Syscall6, RawSyscall, and RawSyscall6 now always return 0 for return value r2 instead of an undefined value. On AIX and Solaris, Getrusage is now defined. - Trace viewer html and javascript files moved from misc/trace in previous versions to src/cmd/trace/static in go1.19. * Added files with mode 0644: /usr/share/go/1.19/src/cmd/trace/static /usr/share/go/1.19/src/cmd/trace/static/README.md /usr/share/go/1.19/src/cmd/trace/static/trace_viewer_full.html /usr/share/go/1.19/src/cmd/trace/static/webcomponents.min.js go1.19-1.19-150000.1.3.1.src.rpm go1.19-1.19-150000.1.3.1.x86_64.rpm go1.19-doc-1.19-150000.1.3.1.x86_64.rpm go1.19-race-1.19-150000.1.3.1.x86_64.rpm go1.19-1.19-150000.1.3.1.s390x.rpm go1.19-doc-1.19-150000.1.3.1.s390x.rpm go1.19-1.19-150000.1.3.1.ppc64le.rpm go1.19-doc-1.19-150000.1.3.1.ppc64le.rpm go1.19-1.19-150000.1.3.1.aarch64.rpm go1.19-doc-1.19-150000.1.3.1.aarch64.rpm go1.19-race-1.19-150000.1.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2790 moderate SUSE Updates openSUSE-SLE 15.4 This update for supportutils-plugin-ha-sap fixes the following issues: - Update to version 0.0.3+git.1659022100.39bfcd6: * Update README.md * Replace spaces to tabs. * Search for other groups too. * Include /etc/group in plugin-ha_sap.txt (bsc#1201831) * Update ha_sap * Update pacemaker.log location change * suppress link path in Readme.md * add section 'Additional information' to the Readme.md * change release status of the project supportutils-plugin-ha-sap-0.0.3+git.1659022100.39bfcd6-150000.1.9.1.noarch.rpm supportutils-plugin-ha-sap-0.0.3+git.1659022100.39bfcd6-150000.1.9.1.src.rpm openSUSE-SLE-15.4-2022-2875 important SUSE Updates openSUSE-SLE 15.4 The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2020-36516: Fixed TCP session data injection vulnerability via the mixed IPID assignment method (bnc#1196616). - CVE-2020-36557: Fixed race condition between the VT_DISALLOCATE ioctl and closing/opening of ttys that could lead to a use-after-free (bnc#1201429). - CVE-2020-36558: Fixed race condition involving VT_RESIZEX that could lead to a NULL pointer dereference and general protection fault (bnc#1200910). - CVE-2021-33655: Fixed out of bounds write with ioctl FBIOPUT_VSCREENINFO (bnc#1201635). - CVE-2021-33656: Fixed out of bounds write with ioctl PIO_FONT (bnc#1201636). - CVE-2022-1116: Fixed a integer overflow vulnerability in io_uring which allowed a local attacker to cause memory corruption and escalate privileges to root (bnc#1199647). - CVE-2022-1462: Fixed an out-of-bounds read flaw in the TeleTYpe subsystem (bnc#1198829). - CVE-2022-2318: Fixed a use-after-free vulnerabilities in the timer handler in net/rose/rose_timer.c that allow attackers to crash the system without any privileges (bsc#1201251). - CVE-2022-2639: Fixed integer underflow that could lead to out-of-bounds write in reserve_sfa_size() (bsc#1202154). - CVE-2022-20166: Fixed possible out of bounds write due to sprintf unsafety that could cause local escalation of privilege (bnc#1200598) - CVE-2022-21505: Fixed kexec lockdown bypass with IMA policy (bsc#1201458). - CVE-2022-26365, CVE-2022-33740, CVE-2022-33741, CVE-2022-33742: Fixed multiple potential data leaks with Block and Network devices when using untrusted backends (bsc#1200762). - CVE-2022-29581: Fixed improper update of Reference Count in net/sched that could cause root privilege escalation (bnc#1199665). - CVE-2022-32250: Fixed user-after-free in net/netfilter/nf_tables_api.c that could allow local privilege escalation (bnc#1200015). - CVE-2022-36946: Fixed incorrect packet truncation in nfqnl_mangle() that could lead to remote DoS (bnc#1201940). The following non-security bugs were fixed: - ACPI: APEI: Better fix to avoid spamming the console with old error logs (git-fixes). - ACPI: CPPC: Do not prevent CPPC from working in the future (git-fixes). - ACPI: video: Shortening quirk list by identifying Clevo by board_name only (git-fixes). - ALSA: hda - Add fixup for Dell Latitidue E5430 (git-fixes). - ALSA: hda/conexant: Apply quirk for another HP ProDesk 600 G3 model (git-fixes). - ALSA: hda/realtek - Enable the headset-mic on a Xiaomi's laptop (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc221 (git-fixes). - ALSA: hda/realtek - Fix headset mic problem for a HP machine with alc671 (git-fixes). - ASoC: Intel: Skylake: Correct the handling of fmt_config flexible array (git-fixes). - ASoC: Intel: Skylake: Correct the ssp rate discovery in skl_get_ssp_clks() (git-fixes). - ASoC: Remove unused hw_write_t type (git-fixes). - ASoC: cs47l15: Fix event generation for low power mux control (git-fixes). - ASoC: madera: Fix event generation for OUT1 demux (git-fixes). - ASoC: madera: Fix event generation for rate controls (git-fixes). - ASoC: ops: Fix off by one in range control validation (git-fixes). - ASoC: sgtl5000: Fix noise on shutdown/remove (git-fixes). - ASoC: wm5110: Fix DRE control (git-fixes). - Bluetooth: L2CAP: Fix use-after-free caused by l2cap_chan_put (git-fixes). - Bluetooth: hci_intel: Add check for platform_driver_register (git-fixes). - FDDI: defxx: Bail out gracefully with unassigned PCI resource for CSR (git-fixes). - FDDI: defxx: Make MMIO the configuration default except for EISA (git-fixes). - Fixed a system crash related to the recent RETBLEED mitigation (bsc#1201644, bsc#1201664, bsc#1201672, bsc#1201673, bsc#1201676). - Fixed battery detection problem on macbooks (bnc#1201206). - HID: cp2112: prevent a buffer overflow in cp2112_xfer() (git-fixes). - KVM/emulate: Fix SETcc emulation function offsets with SLS (bsc#1201930). - KVM: VMX: Add non-canonical check on writes to RTIT address MSRs (git-fixes). - KVM: VMX: Do not freeze guest when event delivery causes an APIC-access exit (git-fixes). - KVM: apic: avoid calculating pending eoi from an uninitialized val (git-fixes). - KVM: arm64: Avoid setting the upper 32 bits of TCR_EL2 and CPTR_EL2 (bsc#1201442) - KVM: arm64: Fix definition of PAGE_HYP_DEVICE (git-fixes) - KVM: emulate: do not adjust size of fastop and setcc subroutines (bsc#1201930). - KVM: nVMX: avoid NULL pointer dereference with incorrect EVMCS GPAs (git-fixes). - KVM: nVMX: handle nested posted interrupts when apicv is disabled for L1 (git-fixes). - KVM: x86/pmu: Fix UBSAN shift-out-of-bounds warning in intel_pmu_refresh() (git-fixes). - KVM: x86: Do not let userspace set host-reserved cr4 bits (git-fixes). - KVM: x86: Fix split-irqchip vs interrupt injection window request (git-fixes). - KVM: x86: Refactor prefix decoding to prevent Spectre-v1/L1TF attacks (git-fixes). - KVM: x86: Update vCPU's hv_clock before back to guest when tsc_offset is adjusted (git-fixes). - KVM: x86: handle !lapic_in_kernel case in kvm_cpu_*_extint (git-fixes). - NFC: nxp-nci: do not print header length mismatch on i2c error (git-fixes). - PCI/portdrv: Do not disable AER reporting in get_port_device_capability() (git-fixes). - PCI: dwc: Add unroll iATU space support to dw_pcie_disable_atu() (git-fixes). - PCI: dwc: Always enable CDM check if "snps,enable-cdm-check" exists (git-fixes). - PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors (git-fixes). - PCI: dwc: Disable outbound windows only for controllers using iATU (git-fixes). - PCI: dwc: Stop link on host_init errors and de-initialization (git-fixes). - PCI: qcom: Power on PHY before IPQ8074 DBI register accesses (git-fixes). - PCI: qcom: Set up rev 2.1.0 PARF_PHY before enabling clocks (git-fixes). - PCI: tegra194: Fix PM error handling in tegra_pcie_config_ep() (git-fixes). - PCI: tegra194: Fix Root Port interrupt handling (git-fixes). - PCI: tegra194: Fix link up retry sequence (git-fixes). - PM: runtime: Remove link state checks in rpm_get/put_supplier() (git-fixes). - Sort in RETbleed backport into the sorted section Now that it is upstream.. - USB: Follow-up to SPDX identifiers addition - remove now useless comments (git-fixes). - USB: serial: fix tty-port initialized comments (git-fixes). - USB: serial: ftdi_sio: add Belimo device ids (git-fixes). - amd-xgbe: Update DMA coherency values (git-fixes). - arm64 module: set plt* section addresses to 0x0 (git-fixes) - arm64: Extend workaround for erratum 1024718 to all versions of (git-fixes) - arm64: asm: Add new-style position independent function annotations (git-fixes) - arm64: compat: Ensure upper 32 bits of x0 are zero on syscall return (git-fixes) - arm64: dts: marvell: armada-37xx: Set pcie_reset_pin to gpio function (git-fixes) - arm64: dts: marvell: espressobin: Add ethernet switch aliases (git-fixes) - arm64: dts: marvell: espressobin: add ethernet alias (git-fixes) - arm64: dts: mcbin: support 2W SFP modules (git-fixes) - arm64: fix compat syscall return truncation (git-fixes) - arm64: fix inline asm in load_unaligned_zeropad() (git-fixes) - arm64: mm: Do not invalidate FROM_DEVICE buffers at start of DMA (git-fixes) - arm64: module: remove (NOLOAD) from linker script (git-fixes) - arm64: module: rework special section handling (git-fixes) - arm64: perf: Report the PC value in REGS_ABI_32 mode (git-fixes) - arm64: ptrace: Consistently use pseudo-singlestep exceptions (git-fixes) - arm64: ptrace: Override SPSR.SS when single-stepping is enabled (git-fixes) - arm64: stackleak: fix current_top_of_stack() (git-fixes) - arm64: uprobe: Return EOPNOTSUPP for AARCH32 instruction probing (git-fixes) - arm64: vdso: Avoid ISB after reading from cntvct_el0 (git-fixes) - ath10k: Fix error handling in ath10k_setup_msa_resources (git-fixes). - ath10k: do not enforce interrupt trigger type (git-fixes). - ax88179_178a: add ethtool_op_get_ts_info() (git-fixes). - blk-zoned: allow BLKREPORTZONE without CAP_SYS_ADMIN (git-fixes). - blk-zoned: allow zone management send operations without CAP_SYS_ADMIN (git-fixes). - block/compat_ioctl: fix range check in BLKGETSIZE (git-fixes). - block: Fix fsync always failed if once failed (git-fixes). - block: Fix wrong offset in bio_truncate() (git-fixes). - block: bio-integrity: Advance seed correctly for larger interval sizes (git-fixes). - block: do not delete queue kobject before its children (git-fixes). - block: drbd: drbd_nl: Make conversion to 'enum drbd_ret_code' explicit (git-fixes). - bpf, cpumap: Remove rcpu pointer from cpu_map_build_skb signature (bsc#1199364). - bpf: Add config to allow loading modules with BTF mismatches (jsc#SLE-24559). - bpf: Add in-kernel split BTF support (jsc#SLE-24559). - bpf: Assign ID to vmlinux BTF and return extra info for BTF in GET_OBJ_INFO (jsc#SLE-24559). - bpf: Keep module's btf_data_size intact after load (jsc#SLE-24559). - bpf: Load and verify kernel module BTFs (jsc#SLE-24559). - bpf: Provide function to get vmlinux BTF information (jsc#SLE-24559). - bpf: Sanitize BTF data pointer after module is loaded (jsc#SLE-24559). - bus: hisi_lpc: fix missing platform_device_put() in hisi_lpc_acpi_probe() (git-fixes). - can: Break loopback loop on loopback documentation (git-fixes). - can: error: specify the values of data[5..7] of CAN error frames (git-fixes). - can: gs_usb: gs_usb_open/close(): fix memory leak (git-fixes). - can: hi311x: do not report txerr and rxerr during bus-off (git-fixes). - can: kvaser_usb_hydra: do not report txerr and rxerr during bus-off (git-fixes). - can: kvaser_usb_leaf: do not report txerr and rxerr during bus-off (git-fixes). - can: pch_can: do not report txerr and rxerr during bus-off (git-fixes). - can: pch_can: pch_can_error(): initialize errc before using it (git-fixes). - can: rcar_can: do not report txerr and rxerr during bus-off (git-fixes). - can: sja1000: do not report txerr and rxerr during bus-off (git-fixes). - can: sun4i_can: do not report txerr and rxerr during bus-off (git-fixes). - can: usb_8dev: do not report txerr and rxerr during bus-off (git-fixes). - clk: qcom: camcc-sdm845: Fix topology around titan_top power domain (git-fixes). - clk: qcom: clk-krait: unlock spin after mux completion (git-fixes). - clk: qcom: ipq8074: SW workaround for UBI32 PLL lock (git-fixes). - clk: qcom: ipq8074: fix NSS core PLL-s (git-fixes). - clk: qcom: ipq8074: fix NSS port frequency tables (git-fixes). - clk: qcom: ipq8074: set BRANCH_HALT_DELAY flag for UBI clocks (git-fixes). - clk: renesas: r9a06g032: Fix UART clkgrp bitsel (git-fixes). - config: enable DEBUG_INFO_BTF This option allows users to access the btf type information for vmlinux but not kernel modules. - cpuidle: PSCI: Move the `has_lpi` check to the beginning of the (git-fixes) - crypto: qat - disable registration of algorithms (git-fixes). - crypto: qat - fix memory leak in RSA (git-fixes). - crypto: qat - remove dma_free_coherent() for DH (git-fixes). - crypto: qat - remove dma_free_coherent() for RSA (git-fixes). - crypto: qat - set to zero DH parameters before free (git-fixes). - cxgb4: Fix the -Wmisleading-indentation warning (git-fixes). - dm btree remove: assign new_root only when removal succeeds (git-fixes). - dm btree remove: fix use after free in rebalance_children() (git-fixes). - dm bufio: subtract the number of initial sectors in dm_bufio_get_device_size (git-fixes). - dm crypt: Avoid percpu_counter spinlock contention in crypt_page_alloc() (git-fixes). - dm crypt: fix get_key_size compiler warning if !CONFIG_KEYS (git-fixes). - dm crypt: make printing of the key constant-time (git-fixes). - dm integrity: conditionally disable "recalculate" feature (git-fixes). - dm integrity: fix a crash if "recalculate" used without "internal_hash" (git-fixes). - dm integrity: fix error code in dm_integrity_ctr() (git-fixes). - dm integrity: fix memory corruption when tag_size is less than digest size (git-fixes). - dm integrity: fix the maximum number of arguments (git-fixes). - dm mirror log: round up region bitmap size to BITS_PER_LONG (git-fixes). - dm persistent data: packed struct should have an aligned() attribute too (git-fixes). - dm raid: fix inconclusive reshape layout on fast raid4/5/6 table reload sequences (git-fixes). - dm snapshot: fix crash with transient storage and zero chunk size (git-fixes). - dm snapshot: flush merged data before committing metadata (git-fixes). - dm snapshot: properly fix a crash when an origin has no snapshots (git-fixes). - dm space map common: fix division bug in sm_ll_find_free_block() (git-fixes). - dm stats: add cond_resched when looping over entries (git-fixes). - dm verity: fix FEC for RS roots unaligned to block size (git-fixes). - dm: fix mempool NULL pointer race when completing IO (git-fixes). - dmaengine: at_xdma: handle errors of at_xdmac_alloc_desc() correctly (git-fixes). - dmaengine: imx-sdma: Allow imx8m for imx7 FW revs (git-fixes). - dmaengine: pl330: Fix lockdep warning about non-static key (git-fixes). - dmaengine: ti: Add missing put_device in ti_dra7_xbar_route_allocate (git-fixes). - dmaengine: ti: Fix refcount leak in ti_dra7_xbar_route_allocate (git-fixes). - do not call utsname() after ->nsproxy is NULL (bsc#1201196). - drbd: fix potential silent data corruption (git-fixes). - driver core: fix potential deadlock in __driver_attach (git-fixes). - drivers/net: Fix kABI in tun.c (git-fixes). - drivers: net: fix memory leak in atusb_probe (git-fixes). - drivers: net: fix memory leak in peak_usb_create_dev (git-fixes). - drm/amd/display: Enable building new display engine with KCOV enabled (git-fixes). - drm/bridge: tc358767: Make sure Refclk clock are enabled (git-fixes). - drm/doc: Fix comment typo (git-fixes). - drm/exynos/exynos7_drm_decon: free resources when clk_set_parent() failed (git-fixes). - drm/i915/gt: Serialize TLB invalidates with GT resets (git-fixes). - drm/i915/selftests: fix a couple IS_ERR() vs NULL tests (git-fixes). - drm/i915: fix a possible refcount leak in intel_dp_add_mst_connector() (git-fixes). - drm/mcde: Fix refcount leak in mcde_dsi_bind (git-fixes). - drm/mediatek: Add pull-down MIPI operation in mtk_dsi_poweroff function (git-fixes). - drm/mediatek: dpi: Only enable dpi after the bridge is enabled (git-fixes). - drm/mediatek: dpi: Remove output format of YUV (git-fixes). - drm/mipi-dbi: align max_chunk to 2 in spi_transfer (git-fixes). - drm/msm/hdmi: enable core-vcc/core-vdda-supply for 8996 platform (git-fixes). - drm/msm/mdp5: Fix global state lock backoff (git-fixes). - drm/nouveau: fix another off-by-one in nvbios_addr (git-fixes). - drm/panfrost: Fix shrinker list corruption by madvise IOCTL (git-fixes). - drm/panfrost: Put mapping instead of shmem obj on panfrost_mmu_map_fault_addr() error (git-fixes). - drm/radeon: fix incorrrect SPDX-License-Identifiers (git-fixes). - drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers() (git-fixes). - drm/rockchip: Fix an error handling path rockchip_dp_probe() (git-fixes). - drm/rockchip: vop: Do not crash for invalid duplicate_state() (git-fixes). - drm/st7735r: Fix module autoloading for Okaya RH128128T (git-fixes). - drm/vc4: dsi: Add correct stop condition to vc4_dsi_encoder_disable iteration (git-fixes). - drm/vc4: dsi: Correct DSI divider calculations (git-fixes). - drm/vc4: dsi: Correct pixel order for DSI0 (git-fixes). - drm/vc4: hdmi: Correct HDMI timing registers for interlaced modes (git-fixes). - drm/vc4: hdmi: Fix timings for interlaced modes (git-fixes). - drm/vc4: plane: Fix margin calculations for the right/bottom edges (git-fixes). - drm/vc4: plane: Remove subpixel positioning check (git-fixes). - drm: adv7511: override i2c address of cec before accessing it (git-fixes). - drm: bridge: adv7511: Add check for mipi_dsi_driver_register (git-fixes). - drm: bridge: sii8620: fix possible off-by-one (git-fixes). - fbcon: Disallow setting font bigger than screen size (git-fixes). - fbcon: Prevent that screen size is smaller than font size (git-fixes). - fbdev: fbmem: Fix logo center image dx issue (git-fixes). - fbmem: Check virtual screen sizes in fb_set_var() (git-fixes). - fpga: altera-pr-ip: fix unsigned comparison with less than zero (git-fixes). - ftgmac100: Restart MAC HW once (git-fixes). - gpio: gpiolib-of: Fix refcount bugs in of_mm_gpiochip_add_data() (git-fixes). - gpio: pca953x: only use single read/write for No AI mode (git-fixes). - gpio: pca953x: use the correct range when do regmap sync (git-fixes). - gpio: pca953x: use the correct register address when regcache sync during init (git-fixes). - hex2bin: make the function hex_to_bin constant-time (git-fixes). - hv_netvsc: Add (more) validation for untrusted Hyper-V values (bsc#1199364). - hv_netvsc: Add comment of netvsc_xdp_xmit() (bsc#1199364). - hv_netvsc: Add support for XDP_REDIRECT (bsc#1199364). - hv_netvsc: Copy packets sent by Hyper-V out of the receive buffer (bsc#1199364). - hv_netvsc: Fix validation in netvsc_linkstatus_callback() (bsc#1199364). - i2c: Fix a potential use after free (git-fixes). - i2c: cadence: Change large transfer count reset logic to be unconditional (git-fixes). - i2c: cadence: Support PEC for SMBus block read (git-fixes). - i2c: cadence: Unregister the clk notifier in error path (git-fixes). - i2c: mux-gpmux: Add of_node_put() when breaking out of loop (git-fixes). - ida: do not use BUG_ON() for debugging (git-fixes). - igb: Enable RSS for Intel I211 Ethernet Controller (git-fixes). - iio: accel: bma220: Fix alignment for DMA safety (git-fixes). - iio: accel: sca3000: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7266: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7298: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7476: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7766: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7768-1: Fix alignment for DMA safety (git-fixes). - iio: adc: ad7887: Fix alignment for DMA safety (git-fixes). - iio: adc: hi8435: Fix alignment for DMA safety (git-fixes). - iio: adc: ltc2497: Fix alignment for DMA safety (git-fixes). - iio: adc: max1027: Fix alignment for DMA safety (git-fixes). - iio: adc: max11100: Fix alignment for DMA safety (git-fixes). - iio: adc: max1118: Fix alignment for DMA safety (git-fixes). - iio: adc: mcp320x: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc0832: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc084s021: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc12138: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc128s052: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-adc161s626: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads124s08: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads7950: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads8344: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-ads8688: Fix alignment for DMA safety (git-fixes). - iio: adc: ti-tlc4541: Fix alignment for DMA safety (git-fixes). - iio: amplifiers: ad8366: Fix alignment for DMA safety (git-fixes). - iio: core: Fix IIO_ALIGN and rename as it was not sufficiently large (git-fixes). - iio: dac: ad5064: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5360: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5421: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5449: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5504: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5755: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5761: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5764: Fix alignment for DMA safety (git-fixes). - iio: dac: ad5791: Fix alignment for DMA saftey (git-fixes). - iio: dac: ad7303: Fix alignment for DMA safety (git-fixes). - iio: dac: ad8801: Fix alignment for DMA safety (git-fixes). - iio: dac: mcp4922: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac082s085: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac5571: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac7311: Fix alignment for DMA safety (git-fixes). - iio: dac: ti-dac7612: Fix alignment for DMA safety (git-fixes). - iio: frequency: ad9523: Fix alignment for DMA safety (git-fixes). - iio: frequency: adf4350: Fix alignment for DMA safety (git-fixes). - iio: frequency: adf4371: Fix alignment for DMA safety (git-fixes). - iio: gyro: adis16080: Fix alignment for DMA safety (git-fixes). - iio: gyro: adis16130: Fix alignment for DMA safety (git-fixes). - iio: gyro: adxrs450: Fix alignment for DMA safety (git-fixes). - iio: gyro: fxas210002c: Fix alignment for DMA safety (git-fixes). - iio: light: isl29028: Fix the warning in isl29028_remove() (git-fixes). - iio: potentiometer: ad5272: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: max5481: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: mcp41010: Fix alignment for DMA safety (git-fixes). - iio: potentiometer: mcp4131: Fix alignment for DMA safety (git-fixes). - iio: proximity: as3935: Fix alignment for DMA safety (git-fixes). - iio: resolver: ad2s1200: Fix alignment for DMA safety (git-fixes). - iio: resolver: ad2s90: Fix alignment for DMA safety (git-fixes). - ima: Fix a potential integer overflow in ima_appraise_measurement (git-fixes). - ima: Fix potential memory leak in ima_init_crypto() (git-fixes). - intel_th: Fix a resource leak in an error handling path (git-fixes). - intel_th: msu-sink: Potential dereference of null pointer (git-fixes). - intel_th: msu: Fix vmalloced buffers (git-fixes). - kABI workaround for rtsx_usb (git-fixes). - kabi: create module private struct to hold btf size/data (jsc#SLE-24559). - kbuild: Build kernel module BTFs if BTF is enabled and pahole supports it (jsc#SLE-24559). - kbuild: Skip module BTF generation for out-of-tree external modules (jsc#SLE-24559). - kbuild: add marker for build log of *.mod.o (jsc#SLE-24559). - kbuild: drop $(wildcard $^) check in if_changed* for faster rebuild (jsc#SLE-24559). - kbuild: rebuild modules when module linker scripts are updated (jsc#SLE-24559). - kbuild: rename any-prereq to newer-prereqs (jsc#SLE-24559). - kbuild: split final module linking out into Makefile.modfinal (jsc#SLE-24559). - lib/string.c: implement stpcpy (git-fixes). - linux/random.h: Mark CONFIG_ARCH_RANDOM functions __must_check (git-fixes). - linux/random.h: Remove arch_has_random, arch_has_random_seed (git-fixes). - linux/random.h: Use false with bool (git-fixes). - lkdtm: Disable return thunks in rodata.c (bsc#1178134). - macvlan: remove redundant null check on data (git-fixes). - md/bitmap: wait for external bitmap writes to complete during tear down (git-fixes). - md/raid0: Ignore RAID0 layout if the second zone has only one device (git-fixes). - md: Set prev_flush_start and flush_bio in an atomic way (git-fixes). - md: bcache: check the return value of kzalloc() in detached_dev_do_request() (git-fixes). - media: hdpvr: fix error value returns in hdpvr_read (git-fixes). - media: rc: increase rc-mm tolerance and add debug message (git-fixes). - media: rtl28xxu: Add support for PROlectrix DV107669 DVB-T dongle (git-fixes). - media: rtl28xxu: add missing sleep before probing slave demod (git-fixes). - media: rtl28xxu: set keymap for Astrometa DVB-T2 (git-fixes). - media: smipcie: fix interrupt handling and IR timeout (git-fixes). - media: tw686x: Register the irq at the end of probe (git-fixes). - media: usb: dvb-usb-v2: rtl28xxu: convert to use i2c_new_client_device() (git-fixes). - media: v4l2-mem2mem: always consider OUTPUT queue during poll (git-fixes). - media: v4l2-mem2mem: reorder checks in v4l2_m2m_poll() (git-fixes). - mediatek: mt76: mac80211: Fix missing of_node_put() in mt76_led_init() (git-fixes). - memregion: Fix memregion_free() fallback definition (git-fixes). - memstick/ms_block: Fix a memory leak (git-fixes). - memstick/ms_block: Fix some incorrect memory allocation (git-fixes). - meson-mx-socinfo: Fix refcount leak in meson_mx_socinfo_init (git-fixes). - misc: rtsx: Fix an error handling path in rtsx_pci_probe() (git-fixes). - misc: rtsx_usb: fix use of dma mapped buffer for usb bulk transfer (git-fixes). - misc: rtsx_usb: set return value in rsp_buf alloc err path (git-fixes). - misc: rtsx_usb: use separate command and response buffers (git-fixes). - mm/slub: add missing TID updates on slab deactivation (git-fixes). - mm: fix page reference leak in soft_offline_page() (git fixes (mm/memory-failure)). - mmc: cavium-octeon: Add of_node_put() when breaking out of loop (git-fixes). - mmc: cavium-thunderx: Add of_node_put() when breaking out of loop (git-fixes). - mmc: sdhci-of-at91: fix set_uhs_signaling rewriting of MC1R (git-fixes). - mmc: sdhci-of-esdhc: Fix refcount leak in esdhc_signal_voltage_switch (git-fixes). - mt7601u: add USB device ID for some versions of XiaoDu WiFi Dongle (git-fixes). - mt76: mt76x02u: fix possible memory leak in __mt76x02u_mcu_send_msg (git-fixes). - net, xdp: Introduce __xdp_build_skb_from_frame utility routine (bsc#1199364). - net, xdp: Introduce xdp_build_skb_from_frame utility routine (bsc#1199364). - net/mlx5e: When changing XDP program without reset, take refs for XSK RQs (git-fixes). - net/sonic: Fix some resource leaks in error handling paths (git-fixes). - net: ag71xx: remove unnecessary MTU reservation (git-fixes). - net: allwinner: Fix some resources leak in the error handling path of the probe and in the remove function (git-fixes). - net: amd-xgbe: Fix NETDEV WATCHDOG transmit queue timeout warning (git-fixes). - net: amd-xgbe: Fix network fluctuations when using 1G BELFUSE SFP (git-fixes). - net: amd-xgbe: Reset link when the link never comes back (git-fixes). - net: amd-xgbe: Reset the PHY rx data path when mailbox command timeout (git-fixes). - net: axienet: Handle deferred probe on clock properly (git-fixes). - net: dsa: bcm_sf2: Qualify phydev->dev_flags based on port (git-fixes). - net: dsa: bcm_sf2: put device node before return (git-fixes). - net: dsa: lantiq_gswip: Exclude RMII from modes that report 1 GbE (git-fixes). - net: dsa: lantiq_gswip: Let GSWIP automatically set the xMII clock (git-fixes). - net: enetc: fix incorrect TPID when receiving 802.1ad tagged packets (git-fixes). - net: enetc: keep RX ring consumer index in sync with hardware (git-fixes). - net: evaluate net.ipv4.conf.all.proxy_arp_pvlan (git-fixes). - net: evaluate net.ipvX.conf.all.ignore_routes_with_linkdown (git-fixes). - net: hns3: fix error mask definition of flow director (git-fixes). - net: hso: bail out on interrupt URB allocation failure (git-fixes). - net: lapbether: Remove netif_start_queue / netif_stop_queue (git-fixes). - net: ll_temac: Fix potential NULL dereference in temac_probe() (git-fixes). - net: ll_temac: Use devm_platform_ioremap_resource_byname() (git-fixes). - net: macb: add function to disable all macb clocks (git-fixes). - net: macb: restore cmp registers on resume path (git-fixes). - net: macb: unprepare clocks in case of failure (git-fixes). - net: mscc: Fix OF_MDIO config check (git-fixes). - net: mvneta: Remove per-cpu queue mapping for Armada 3700 (git-fixes). - net: rose: fix UAF bug caused by rose_t0timer_expiry (git-fixes). - net: stmmac: dwmac-sun8i: Provide TX and RX fifo sizes (git-fixes). - net: stmmac: dwmac1000: provide multicast filter fallback (git-fixes). - net: stmmac: fix CBS idleslope and sendslope calculation (git-fixes). - net: stmmac: fix incorrect DMA channel intr enable setting of EQoS v4.10 (git-fixes). - net: stmmac: fix watchdog timeout during suspend/resume stress test (git-fixes). - net: stmmac: stop each tx channel independently (git-fixes). - net: tun: set tun->dev->addr_len during TUNSETLINK processing (git-fixes). - net: usb: ax88179_178a: add Allied Telesis AT-UMCs (git-fixes). - net: usb: ax88179_178a: add MCT usb 3.0 adapter (git-fixes). - net: usb: ax88179_178a: add Toshiba usb 3.0 adapter (git-fixes). - net: usb: ax88179_178a: remove redundant assignment to variable ret (git-fixes). - net: usb: ax88179_178a: write mac to hardware in get_mac_addr (git-fixes). - net: usb: qmi_wwan: add Telit 0x1060 composition (git-fixes). - net: usb: qmi_wwan: add Telit 0x1070 composition (git-fixes). - net: usb: use eth_hw_addr_set() (git-fixes). - nvme: consider also host_iface when checking ip options (bsc#1199670). - octeontx2-af: fix memory leak of lmac and lmac->name (git-fixes). - pinctrl: sunxi: a83t: Fix NAND function name for some pins (git-fixes). - pinctrl: sunxi: sunxi_pconf_set: use correct offset (git-fixes). - platform/olpc: Fix uninitialized data in debugfs write (git-fixes). - platform/x86: hp-wmi: Ignore Sanitization Mode event (git-fixes). - power/reset: arm-versatile: Fix refcount leak in versatile_reboot_probe (git-fixes). - powerpc/mobility: wait for memory transfer to complete (bsc#1201846 ltc#198761). - powerpc/pseries/mobility: set NMI watchdog factor during an LPM (bsc#1201846 ltc#198761). - powerpc/watchdog: introduce a NMI watchdog's factor (bsc#1201846 ltc#198761). - profiling: fix shift-out-of-bounds bugs (git fixes). - qla2xxx: drop patch which prevented nvme port discovery (bsc#1200651 bsc#1200644 bsc#1201954 bsc#1201958). - r8169: fix accessing unset transport header (git-fixes). - random: document add_hwgenerator_randomness() with other input functions (git-fixes). - random: fix typo in comments (git-fixes). - random: remove useless header comment (git fixes). - raw: Fix a data-race around sysctl_raw_l3mdev_accept (git-fixes). - regulator: of: Fix refcount leak bug in of_get_regulation_constraints() (git-fixes). - rpm/kernel-binary.spec.in: Require dwarves >= 1.22 on SLE15-SP3 or newer Dwarves 1.22 or newer is required to build kernels with BTF information embedded in modules. - sched/debug: Remove mpol_get/put and task_lock/unlock from (git-fixes) - sched/fair: Revise comment about lb decision matrix (git fixes (sched/fair)). - sched/membarrier: fix missing local execution of ipi_sync_rq_state() (git fixes (sched/membarrier)). - scripts: dummy-tools, add pahole (jsc#SLE-24559). - scsi: core: Fix error handling of scsi_host_alloc() (git-fixes). - scsi: core: Fix failure handling of scsi_add_host_with_dma() (git-fixes). - scsi: core: Only put parent device if host state differs from SHOST_CREATED (git-fixes). - scsi: core: Put .shost_dev in failure path if host state changes to RUNNING (git-fixes). - scsi: core: Put LLD module refcnt after SCSI device is released (git-fixes). - scsi: core: Retry I/O for Notify (Enable Spinup) Required error (git-fixes). - scsi: lpfc: Copyright updates for 14.2.0.5 patches (bsc#1201956). - scsi: lpfc: Fix attempted FA-PWWN usage after feature disable (bsc#1201956). - scsi: lpfc: Fix lost NVMe paths during LIF bounce stress test (bsc#1201956 bsc#1200521). - scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE (bsc#1201956). - scsi: lpfc: Fix uninitialized cqe field in lpfc_nvme_cancel_iocb() (bsc#1201956). - scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input (bsc#1201956). - scsi: lpfc: Refactor lpfc_nvmet_prep_abort_wqe() into lpfc_sli_prep_abort_xri() (bsc#1201956). - scsi: lpfc: Remove Menlo/Hornet related code (bsc#1201956). - scsi: lpfc: Remove extra atomic_inc on cmd_pending in queuecommand after VMID (bsc#1201956). - scsi: lpfc: Revert RSCN_MEMENTO workaround for misbehaved configuration (bsc#1201956). - scsi: lpfc: Set PU field when providing D_ID in XMIT_ELS_RSP64_CX iocb (bsc#1201956). - scsi: lpfc: Update lpfc version to 14.2.0.5 (bsc#1201956). - scsi: qla2xxx: Check correct variable in qla24xx_async_gffid() (bsc#1201958). - scsi: qla2xxx: Fix discovery issues in FC-AL topology (bsc#1201958). - scsi: qla2xxx: Fix imbalance vha->vref_count (bsc#1201958). - scsi: qla2xxx: Fix incorrect display of max frame size (bsc#1201958). - scsi: qla2xxx: Fix response queue handler reading stale packets (bsc#1201958). - scsi: qla2xxx: Fix sparse warning for dport_data (bsc#1201958). - scsi: qla2xxx: Update manufacturer details (bsc#1201958). - scsi: qla2xxx: Update version to 10.02.07.800-k (bsc#1201958). - scsi: qla2xxx: Zero undefined mailbox IN registers (bsc#1201958). - scsi: qla2xxx: edif: Fix dropped IKE message (bsc#1201958). - scsi: scsi_debug: Sanity check block descriptor length in resp_mode_select() (git-fixes). - scsi: sd: Fix potential NULL pointer dereference (git-fixes). - scsi: ufs: Release clock if DMA map fails (git-fixes). - scsi: ufs: handle cleanup correctly on devm_reset_control_get error (git-fixes). - serial: 8250: fix return error code in serial8250_request_std_resource() (git-fixes). - serial: pl011: UPSTAT_AUTORTS requires .throttle/unthrottle (git-fixes). - serial: stm32: Clear prev values before setting RTS delays (git-fixes). - soc: fsl: guts: machine variable might be unset (git-fixes). - soc: ixp4xx/npe: Fix unused match warning (git-fixes). - soundwire: bus_type: fix remove and shutdown support (git-fixes). - spi: &lt;linux/spi/spi.h>: add missing struct kernel-doc entry (git-fixes). - spi: amd: Limit max transfer and message size (git-fixes). - staging: rtl8192u: Fix sleep in atomic context bug in dm_fsync_timer_callback (git-fixes). - sysctl: Fix data races in proc_dointvec() (git-fixes). - sysctl: Fix data races in proc_dointvec_jiffies() (git-fixes). - sysctl: Fix data races in proc_dointvec_minmax() (git-fixes). - sysctl: Fix data races in proc_douintvec() (git-fixes). - sysctl: Fix data races in proc_douintvec_minmax() (git-fixes). - sysctl: Fix data-races in proc_dointvec_ms_jiffies() (git-fixes). - thermal/tools/tmon: Include pthread and time headers in tmon.h (git-fixes). - tick/nohz: Use WARN_ON_ONCE() to prevent console saturation (git fixes (kernel/time)). - usb: dwc3: add cancelled reasons for dwc3 requests (git-fixes). - usb: dwc3: gadget: Fix event pending check (git-fixes). - usb: gadget: udc: amd5536 depends on HAS_DMA (git-fixes). - usb: host: Fix refcount leak in ehci_hcd_ppc_of_probe (git-fixes). - usb: host: xhci: use snprintf() in xhci_decode_trb() (git-fixes). - usb: ohci-nxp: Fix refcount leak in ohci_hcd_nxp_probe (git-fixes). - usb: typec: add missing uevent when partner support PD (git-fixes). - usb: typec: ucsi: Acknowledge the GET_ERROR_STATUS command completion (git-fixes). - usb: xhci: tegra: Fix error check (git-fixes). - usbnet: fix memory leak in error case (git-fixes). - video: of_display_timing.h: include errno.h (git-fixes). - virtio-gpu: fix a missing check to avoid NULL dereference (git-fixes). - virtio-net: fix the race between refill work and close (git-fixes). - virtio_mmio: Add missing PM calls to freeze/restore (git-fixes). - virtio_mmio: Restore guest page size on resume (git-fixes). - watchdog: export lockup_detector_reconfigure (bsc#1201846 ltc#198761). - wifi: iwlegacy: 4965: fix potential off-by-one overflow in il4965_rs_fill_link_cmd() (git-fixes). - wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue (git-fixes). - wifi: libertas: Fix possible refcount leak in if_usb_probe() (git-fixes). - wifi: mac80211: fix queue selection for mesh/OCB interfaces (git-fixes). - wifi: p54: Fix an error handling path in p54spi_probe() (git-fixes). - wifi: p54: add missing parentheses in p54_flush() (git-fixes). - wifi: rtlwifi: fix error codes in rtl_debugfs_set_write_h2c() (git-fixes). - wifi: wil6210: debugfs: fix info leak in wil_write_file_wmi() (git-fixes). - wifi: wil6210: debugfs: fix uninitialized variable use in `wil_write_file_wmi()` (git-fixes). - x86/bugs: Remove apostrophe typo (bsc#1178134). - x86/kvmclock: Move this_cpu_pvti into kvmclock.h (git-fixes). - x86/retbleed: Add fine grained Kconfig knobs (bsc#1178134). - xen/netback: avoid entering xenvif_rx_next_skb() with an empty rx queue (bsc#1201381). - xen: detect uninitialized xenbus in xenbus_init (git-fixes). - xen: do not continue xenstore initialization in case of errors (git-fixes). dtb-aarch64-5.3.18-150300.59.90.1.src.rpm True dtb-al-5.3.18-150300.59.90.1.aarch64.rpm True dtb-zte-5.3.18-150300.59.90.1.aarch64.rpm True openSUSE-SLE-15.4-2022-2855 important SUSE Updates openSUSE-SLE 15.4 This update for nodejs10 fixes the following issues: - CVE-2021-22930, CVE-2021-22940: Fixed two memory corruption issues during HTTP/2 stream cancellation (bsc#1188917, bsc#1189368). - CVE-2022-32213, CVE-2022-32214, CVE-2022-32215, CVE-2021-22960, CVE-2021-22959: Fixed multiple HTTP request smuggling issues in the underlying HTTP parser (bsc#1201325, bsc#1201326, bsc#1201327, bsc#1191602, bsc#1191601). - CVE-2022-32212: Fixed a DNS rebinding issue caused by improper IPv4 validation (bsc#1201328). nodejs10-10.24.1-150000.1.47.1.src.rpm nodejs10-10.24.1-150000.1.47.1.x86_64.rpm nodejs10-devel-10.24.1-150000.1.47.1.x86_64.rpm nodejs10-docs-10.24.1-150000.1.47.1.noarch.rpm npm10-10.24.1-150000.1.47.1.x86_64.rpm nodejs10-10.24.1-150000.1.47.1.s390x.rpm nodejs10-devel-10.24.1-150000.1.47.1.s390x.rpm npm10-10.24.1-150000.1.47.1.s390x.rpm nodejs10-10.24.1-150000.1.47.1.ppc64le.rpm nodejs10-devel-10.24.1-150000.1.47.1.ppc64le.rpm npm10-10.24.1-150000.1.47.1.ppc64le.rpm nodejs10-10.24.1-150000.1.47.1.aarch64.rpm nodejs10-devel-10.24.1-150000.1.47.1.aarch64.rpm npm10-10.24.1-150000.1.47.1.aarch64.rpm openSUSE-SLE-15.4-2022-2896 moderate SUSE Updates openSUSE-SLE 15.4 This update for raptor fixes the following issues: - CVE-2020-25713: Fixed an out of bounds access triggered via a malformed input file (bsc#1178903). libraptor-devel-2.0.15-150200.9.12.1.x86_64.rpm libraptor2-0-2.0.15-150200.9.12.1.x86_64.rpm libraptor2-0-32bit-2.0.15-150200.9.12.1.x86_64.rpm raptor-2.0.15-150200.9.12.1.src.rpm raptor-2.0.15-150200.9.12.1.x86_64.rpm libraptor-devel-2.0.15-150200.9.12.1.s390x.rpm libraptor2-0-2.0.15-150200.9.12.1.s390x.rpm raptor-2.0.15-150200.9.12.1.s390x.rpm libraptor-devel-2.0.15-150200.9.12.1.ppc64le.rpm libraptor2-0-2.0.15-150200.9.12.1.ppc64le.rpm raptor-2.0.15-150200.9.12.1.ppc64le.rpm libraptor-devel-2.0.15-150200.9.12.1.aarch64.rpm libraptor2-0-2.0.15-150200.9.12.1.aarch64.rpm raptor-2.0.15-150200.9.12.1.aarch64.rpm openSUSE-SLE-15.4-2022-2877 important SUSE Updates openSUSE-SLE 15.4 This update for cosign fixes the following issues: - Updated to 1.10.1 (jsc#SLE-23879): - CVE-2022-35929: Fixed an issue where cosign verify-attestation --type could report false positives when there was at least one attestation with a valid signature and there were no attestations of the type being verified (bsc#1202157). cosign-1.10.1-150400.3.3.1.src.rpm cosign-1.10.1-150400.3.3.1.x86_64.rpm cosign-1.10.1-150400.3.3.1.s390x.rpm cosign-1.10.1-150400.3.3.1.ppc64le.rpm cosign-1.10.1-150400.3.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2889 important SUSE Updates openSUSE-SLE 15.4 This update for emacs-apel fixes the following issues: - Fix build issue on SUSE Linux Enterprise 15 Service Pack 4 (bsc#1197714) emacs-apel-10.8-150000.3.3.1.noarch.rpm emacs-apel-10.8-150000.3.3.1.src.rpm openSUSE-SLE-15.4-2022-2844 important SUSE Updates openSUSE-SLE 15.4 This update for tar fixes the following issues: - A regression in a previous update lead to potential deadlocks when extracting an archive. (bsc#1202436) tar-1.34-150000.3.18.1.src.rpm tar-1.34-150000.3.18.1.x86_64.rpm tar-backup-scripts-1.34-150000.3.18.1.noarch.rpm tar-doc-1.34-150000.3.18.1.noarch.rpm tar-lang-1.34-150000.3.18.1.noarch.rpm tar-rmt-1.34-150000.3.18.1.x86_64.rpm tar-tests-1.34-150000.3.18.1.x86_64.rpm tar-1.34-150000.3.18.1.s390x.rpm tar-rmt-1.34-150000.3.18.1.s390x.rpm tar-tests-1.34-150000.3.18.1.s390x.rpm tar-1.34-150000.3.18.1.ppc64le.rpm tar-rmt-1.34-150000.3.18.1.ppc64le.rpm tar-tests-1.34-150000.3.18.1.ppc64le.rpm tar-1.34-150000.3.18.1.aarch64.rpm tar-rmt-1.34-150000.3.18.1.aarch64.rpm tar-tests-1.34-150000.3.18.1.aarch64.rpm openSUSE-SLE-15.4-2022-2870 moderate SUSE Updates openSUSE-SLE 15.4 This update for rubygem-rails-html-sanitizer fixes the following issues: - CVE-2022-32209: Fixed a potential content injection under specific configurations (bsc#1201183). ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.x86_64.rpm ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1.x86_64.rpm ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1.x86_64.rpm rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.src.rpm ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.s390x.rpm ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1.s390x.rpm ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1.s390x.rpm ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.ppc64le.rpm ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1.ppc64le.rpm ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1.ppc64le.rpm ruby2.5-rubygem-rails-html-sanitizer-1.0.4-150000.4.3.1.aarch64.rpm ruby2.5-rubygem-rails-html-sanitizer-doc-1.0.4-150000.4.3.1.aarch64.rpm ruby2.5-rubygem-rails-html-sanitizer-testsuite-1.0.4-150000.4.3.1.aarch64.rpm openSUSE-SLE-15.4-2022-2853 low SUSE Updates openSUSE-SLE 15.4 This update for python-iniconfig provides the following fix: - Ship python3-iniconfig also to openSUSE 15.3 and 15.4 (bsc#1202498) python-iniconfig-1.1.1-150000.1.5.1.src.rpm python3-iniconfig-1.1.1-150000.1.5.1.noarch.rpm