Hello community, here is the log from the commit of package kernel-source for openSUSE:Factory checked in at 2017-12-15 14:02:39 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/kernel-source (Old) and /work/SRC/openSUSE:Factory/.kernel-source.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "kernel-source" Fri Dec 15 14:02:39 2017 rev:395 rq:556911 version:4.14.6 Changes: -------- --- /work/SRC/openSUSE:Factory/kernel-source/dtb-aarch64.changes 2017-12-14 11:21:19.394563326 +0100 +++ /work/SRC/openSUSE:Factory/.kernel-source.new/dtb-aarch64.changes 2017-12-15 14:02:47.636122445 +0100 @@ -1,0 +2,280 @@ +Thu Dec 14 10:42:26 CET 2017 - [email protected] + +- Linux 4.14.6 (bnc#1012628). +- usb: gadget: udc: renesas_usb3: fix number of the pipes + (bnc#1012628). +- usb: gadget: core: Fix ->udc_set_speed() speed handling + (bnc#1012628). +- serdev: ttyport: add missing receive_buf sanity checks + (bnc#1012628). +- serdev: ttyport: fix NULL-deref on hangup (bnc#1012628). +- serdev: ttyport: fix tty locking in close (bnc#1012628). +- usb: f_fs: Force Reserved1=1 in OS_DESC_EXT_COMPAT + (bnc#1012628). +- can: mcba_usb: fix device disconnect bug (bnc#1012628). +- can: peak/pci: fix potential bug when probe() fails + (bnc#1012628). +- can: flexcan: fix VF610 state transition issue (bnc#1012628). +- can: ti_hecc: Fix napi poll return value for repoll + (bnc#1012628). +- can: kvaser_usb: free buf in error paths (bnc#1012628). +- can: kvaser_usb: Fix comparison bug in + kvaser_usb_read_bulk_callback() (bnc#1012628). +- can: kvaser_usb: ratelimit errors if incomplete messages are + received (bnc#1012628). +- can: kvaser_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012628). +- can: mcba_usb: cancel urb on -EPROTO (bnc#1012628). +- can: ems_usb: cancel urb on -EPIPE and -EPROTO (bnc#1012628). +- can: esd_usb2: cancel urb on -EPIPE and -EPROTO (bnc#1012628). +- can: usb_8dev: cancel urb on -EPIPE and -EPROTO (bnc#1012628). +- can: peak/pcie_fd: fix potential bug in restarting tx queue + (bnc#1012628). +- virtio: release virtio index when fail to device_register + (bnc#1012628). +- iio: stm32: fix adc/trigger link error (bnc#1012628). +- iio: health: max30102: Temperature should be in milli Celsius + (bnc#1012628). +- iio: adc: cpcap: fix incorrect validation (bnc#1012628). +- iio: adc: meson-saradc: fix the bit_idx of the adc_en clock + (bnc#1012628). +- iio: adc: meson-saradc: initialize the bandgap correctly on + older SoCs (bnc#1012628). +- iio: adc: meson-saradc: Meson8 and Meson8b do not have REG11 + and REG13 (bnc#1012628). +- pinctrl: armada-37xx: Fix direction_output() callback behavior + (bnc#1012628). +- Drivers: hv: vmbus: Fix a rescind issue (bnc#1012628). +- hv: kvp: Avoid reading past allocated blocks from KVP file + (bnc#1012628). +- firmware: cleanup FIRMWARE_IN_KERNEL message (bnc#1012628). +- firmware: vpd: Destroy vpd sections in remove function + (bnc#1012628). +- firmware: vpd: Tie firmware kobject to device lifetime + (bnc#1012628). +- firmware: vpd: Fix platform driver and device + registration/unregistration (bnc#1012628). +- isa: Prevent NULL dereference in isa_bus driver callbacks + (bnc#1012628). +- scsi: dma-mapping: always provide dma_get_cache_alignment + (bnc#1012628). +- scsi: use dma_get_cache_alignment() as minimum DMA alignment + (bnc#1012628). +- scsi: libsas: align sata_device's rps_resp on a cacheline + (bnc#1012628). +- efi: Move some sysfs files to be read-only by root + (bnc#1012628). +- efi/esrt: Use memunmap() instead of kfree() to free the + remapping (bnc#1012628). +- ASN.1: fix out-of-bounds read when parsing indefinite length + item (bnc#1012628). +- ASN.1: check for error from ASN1_OP_END__ACT actions + (bnc#1012628). +- KEYS: add missing permission check for request_key() destination + (bnc#1012628). +- KEYS: reject NULL restriction string when type is specified + (bnc#1012628). +- X.509: reject invalid BIT STRING for subjectPublicKey + (bnc#1012628). +- X.509: fix comparisons of ->pkey_algo (bnc#1012628). +- x86/idt: Load idt early in start_secondary (bnc#1012628). +- x86/PCI: Make broadcom_postcore_init() check acpi_disabled + (bnc#1012628). +- KVM: x86: fix APIC page invalidation (bnc#1012628). +- btrfs: fix missing error return in btrfs_drop_snapshot + (bnc#1012628). +- btrfs: handle errors while updating refcounts in + update_ref_for_cow (bnc#1012628). +- ALSA: hda/realtek - New codec support for ALC257 (bnc#1012628). +- ALSA: pcm: prevent UAF in snd_pcm_info (bnc#1012628). +- ALSA: seq: Remove spurious WARN_ON() at timer check + (bnc#1012628). +- ALSA: usb-audio: Fix out-of-bound error (bnc#1012628). +- ALSA: usb-audio: Add check return value for usb_string() + (bnc#1012628). +- iommu/vt-d: Fix scatterlist offset handling (bnc#1012628). +- smp/hotplug: Move step CPUHP_AP_SMPCFD_DYING to the correct + place (bnc#1012628). +- s390: always save and restore all registers on context switch + (bnc#1012628). +- s390/mm: fix off-by-one bug in 5-level page table handling + (bnc#1012628). +- s390: fix compat system call table (bnc#1012628). +- KVM: s390: Fix skey emulation permission check (bnc#1012628). +- Revert "powerpc: Do not call ppc_md.panic in fadump panic + notifier" (bnc#1012628). +- powerpc/64s: Initialize ISAv3 MMU registers before setting + partition table (bnc#1012628). +- iwlwifi: mvm: mark MIC stripped MPDUs (bnc#1012628). +- iwlwifi: mvm: don't use transmit queue hang detection when it + is not possible (bnc#1012628). +- iwlwifi: mvm: flush queue before deleting ROC (bnc#1012628). +- iwlwifi: add new cards for 9260 and 22000 series (bnc#1012628). +- iwlwifi: mvm: fix packet injection (bnc#1012628). +- iwlwifi: mvm: enable RX offloading with TKIP and WEP + (bnc#1012628). +- brcmfmac: change driver unbind order of the sdio function + devices (bnc#1012628). +- kdb: Fix handling of kallsyms_symbol_next() return value + (bnc#1012628). +- md/r5cache: move mddev_lock() out of r5c_journal_mode_set() + (bnc#1012628). +- drm/exynos: gem: Drop NONCONTIG flag for buffers allocated + without IOMMU (bnc#1012628). +- drm/i915: Fix vblank timestamp/frame counter jumps on gen2 + (bnc#1012628). +- media: dvb: i2c transfers over usb cannot be done from stack + (bnc#1012628). +- media: rc: sir_ir: detect presence of port (bnc#1012628). +- media: rc: partial revert of "media: rc: per-protocol repeat + period" (bnc#1012628). +- arm64: KVM: fix VTTBR_BADDR_MASK BUG_ON off-by-one + (bnc#1012628). +- arm: KVM: Fix VTTBR_BADDR_MASK BUG_ON off-by-one (bnc#1012628). +- KVM: VMX: remove I/O port 0x80 bypass on Intel hosts + (bnc#1012628). +- KVM: arm/arm64: Fix broken GICH_ELRSR big endian conversion + (bnc#1012628). +- KVM: arm/arm64: vgic-irqfd: Fix MSI entry allocation + (bnc#1012628). +- KVM: arm/arm64: vgic: Preserve the revious read from the + pending table (bnc#1012628). +- KVM: arm/arm64: vgic-its: Check result of allocation before use + (bnc#1012628). +- arm64: fpsimd: Prevent registers leaking from dead tasks + (bnc#1012628). +- arm64: SW PAN: Point saved ttbr0 at the zero page when switching + to init_mm (bnc#1012628). +- arm64: SW PAN: Update saved ttbr0 value on enter_lazy_tlb + (bnc#1012628). +- Revert "ARM: dts: imx53: add srtc node" (bnc#1012628). +- bus: arm-cci: Fix use of smp_processor_id() in preemptible + context (bnc#1012628). +- bus: arm-ccn: Check memory allocation failure (bnc#1012628). +- bus: arm-ccn: Fix use of smp_processor_id() in preemptible + context (bnc#1012628). +- bus: arm-ccn: fix module unloading Error: Removing state 147 + which has instances left (bnc#1012628). +- IB/core: Avoid unnecessary return value check (bnc#1012628). +- IB/core: Only enforce security for InfiniBand (bnc#1012628). +- crypto: talitos - fix AEAD test failures (bnc#1012628). +- crypto: talitos - fix memory corruption on SEC2 (bnc#1012628). +- crypto: talitos - fix setkey to check key weakness + (bnc#1012628). +- crypto: talitos - fix AEAD for sha224 on non sha224 capable + chips (bnc#1012628). +- crypto: talitos - fix use of sg_link_tbl_len (bnc#1012628). +- crypto: talitos - fix ctr-aes-talitos (bnc#1012628). +- ARM: BUG if jumping to usermode address in kernel mode + (bnc#1012628). +- ARM: avoid faulting on qemu (bnc#1012628). +- irqchip/qcom: Fix u32 comparison with value less than zero + (bnc#1012628). +- net/smc: use sk_rcvbuf as start for rmb creation (bnc#1012628). +- kbuild: pkg: use --transform option to prefix paths in tar + (bnc#1012628). +- coccinelle: fix parallel build with CHECK=scripts/coccicheck + (bnc#1012628). +- powerpc/perf: Fix pmu_count to count only nest imc pmus + (bnc#1012628). +- apparmor: fix leak of null profile name if profile allocation + fails (bnc#1012628). +- x86/mpx/selftests: Fix up weird arrays (bnc#1012628). +- mac80211_hwsim: Fix memory leak in hwsim_new_radio_nl() + (bnc#1012628). +- gre6: use log_ecn_error module parameter in ip6_tnl_rcv() + (bnc#1012628). +- route: also update fnhe_genid when updating a route cache + (bnc#1012628). +- route: update fnhe_expires for redirect when the fnhe exists + (bnc#1012628). +- rsi: fix memory leak on buf and usb_reg_buf (bnc#1012628). +- drivers/rapidio/devices/rio_mport_cdev.c: fix resource leak + in error handling path in 'rio_dma_transfer()' (bnc#1012628). +- pipe: match pipe_max_size data type with procfs (bnc#1012628). +- lib/genalloc.c: make the avail variable an atomic_long_t + (bnc#1012628). +- dynamic-debug-howto: fix optional/omitted ending line number + to be LARGE instead of 0 (bnc#1012628). ++++ 83 more lines (skipped) ++++ between /work/SRC/openSUSE:Factory/kernel-source/dtb-aarch64.changes ++++ and /work/SRC/openSUSE:Factory/.kernel-source.new/dtb-aarch64.changes dtb-armv6l.changes: same change dtb-armv7l.changes: same change kernel-64kb.changes: same change kernel-debug.changes: same change kernel-default.changes: same change kernel-docs.changes: same change kernel-lpae.changes: same change kernel-obs-build.changes: same change kernel-obs-qa.changes: same change kernel-pae.changes: same change kernel-source.changes: same change kernel-syms.changes: same change kernel-syzkaller.changes: same change kernel-vanilla.changes: same change kernel-zfcpdump.changes: same change ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ dtb-aarch64.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.210598211 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.214598018 +0100 @@ -17,7 +17,7 @@ %define srcversion 4.14 -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %include %_sourcedir/kernel-spec-macros @@ -29,9 +29,9 @@ %(chmod +x %_sourcedir/{guards,apply-patches,check-for-config-changes,group-source-files.pl,split-modules,modversions,kabi.pl,mkspec,compute-PATCHVERSION.sh,arch-symbols,log.sh,try-disable-staging-driver,compress-vmlinux.sh,mkspec-dtb}) Name: dtb-aarch64 -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif dtb-armv6l.spec: same change dtb-armv7l.spec: same change ++++++ kernel-64kb.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.278594929 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.278594929 +0100 @@ -18,7 +18,7 @@ %define srcversion 4.14 -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %define vanilla_only 0 @@ -58,9 +58,9 @@ Summary: Kernel with 64kb PAGE_SIZE License: GPL-2.0 Group: System/Kernel -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif kernel-debug.spec: same change kernel-default.spec: same change ++++++ kernel-docs.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.334592226 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.338592033 +0100 @@ -17,7 +17,7 @@ %define srcversion 4.14 -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %include %_sourcedir/kernel-spec-macros @@ -31,9 +31,9 @@ Summary: Kernel Documentation License: GPL-2.0 Group: Documentation/Man -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif ++++++ kernel-lpae.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.354591261 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.358591067 +0100 @@ -18,7 +18,7 @@ %define srcversion 4.14 -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %define vanilla_only 0 @@ -58,9 +58,9 @@ Summary: Kernel for LPAE enabled systems License: GPL-2.0 Group: System/Kernel -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif ++++++ kernel-obs-build.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.378590102 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.378590102 +0100 @@ -19,7 +19,7 @@ #!BuildIgnore: post-build-checks -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %define vanilla_only 0 @@ -57,9 +57,9 @@ Summary: package kernel and initrd for OBS VM builds License: GPL-2.0 Group: SLES -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif ++++++ kernel-obs-qa.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.394589329 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.398589136 +0100 @@ -17,7 +17,7 @@ # needsrootforbuild -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %include %_sourcedir/kernel-spec-macros @@ -36,9 +36,9 @@ Summary: Basic QA tests for the kernel License: GPL-2.0 Group: SLES -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif ++++++ kernel-pae.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.414588364 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.418588171 +0100 @@ -18,7 +18,7 @@ %define srcversion 4.14 -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %define vanilla_only 0 @@ -58,9 +58,9 @@ Summary: Kernel with PAE Support License: GPL-2.0 Group: System/Kernel -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif ++++++ kernel-source.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.442587012 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.442587012 +0100 @@ -18,7 +18,7 @@ %define srcversion 4.14 -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %define vanilla_only 0 @@ -30,9 +30,9 @@ Summary: The Linux Kernel Sources License: GPL-2.0 Group: Development/Sources -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif ++++++ kernel-syms.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.466585853 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.470585661 +0100 @@ -24,10 +24,10 @@ Summary: Kernel Symbol Versions (modversions) License: GPL-2.0 Group: Development/Sources -Version: 4.14.5 +Version: 4.14.6 %if %using_buildservice %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif ++++++ kernel-syzkaller.spec ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:19.486584889 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:19.490584695 +0100 @@ -18,7 +18,7 @@ %define srcversion 4.14 -%define patchversion 4.14.5 +%define patchversion 4.14.6 %define variant %{nil} %define vanilla_only 0 @@ -58,9 +58,9 @@ Summary: Kernel used for fuzzing by syzkaller License: GPL-2.0 Group: System/Kernel -Version: 4.14.5 +Version: 4.14.6 %if 0%{?is_kotd} -Release: <RELEASE>.gc4edabf +Release: <RELEASE>.g45f120a %else Release: 0 %endif kernel-vanilla.spec: same change kernel-zfcpdump.spec: same change ++++++ patches.kernel.org.tar.bz2 ++++++ ++++ 10794 lines of diff (skipped) ++++++ patches.suse.tar.bz2 ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/dccp-CVE-2017-8824-use-after-free-in-DCCP-code.patch new/patches.suse/dccp-CVE-2017-8824-use-after-free-in-DCCP-code.patch --- old/patches.suse/dccp-CVE-2017-8824-use-after-free-in-DCCP-code.patch 1970-01-01 01:00:00.000000000 +0100 +++ new/patches.suse/dccp-CVE-2017-8824-use-after-free-in-DCCP-code.patch 2017-12-14 10:42:26.000000000 +0100 @@ -0,0 +1,46 @@ +From: Mohamed Ghannam <[email protected]> +Date: Tue, 5 Dec 2017 20:58:35 +0000 +Subject: dccp: CVE-2017-8824: use-after-free in DCCP code +Patch-mainline: v4.15-rc3 +Git-commit: 69c64866ce072dea1d1e59a0d61e0f66c0dffb76 +References: CVE-2017-8824 bsc#1070771 + +Whenever the sock object is in DCCP_CLOSED state, +dccp_disconnect() must free dccps_hc_tx_ccid and +dccps_hc_rx_ccid and set to NULL. + +Signed-off-by: Mohamed Ghannam <[email protected]> +Reviewed-by: Eric Dumazet <[email protected]> +Signed-off-by: David S. Miller <[email protected]> +Acked-by: Michal Kubecek <[email protected]> + +--- + net/dccp/proto.c | 5 +++++ + 1 file changed, 5 insertions(+) + +diff --git a/net/dccp/proto.c b/net/dccp/proto.c +index b68168fcc06a..9d43c1f40274 100644 +--- a/net/dccp/proto.c ++++ b/net/dccp/proto.c +@@ -259,6 +259,7 @@ int dccp_disconnect(struct sock *sk, int flags) + { + struct inet_connection_sock *icsk = inet_csk(sk); + struct inet_sock *inet = inet_sk(sk); ++ struct dccp_sock *dp = dccp_sk(sk); + int err = 0; + const int old_state = sk->sk_state; + +@@ -278,6 +279,10 @@ int dccp_disconnect(struct sock *sk, int flags) + sk->sk_err = ECONNRESET; + + dccp_clear_xmit_timers(sk); ++ ccid_hc_rx_delete(dp->dccps_hc_rx_ccid, sk); ++ ccid_hc_tx_delete(dp->dccps_hc_tx_ccid, sk); ++ dp->dccps_hc_rx_ccid = NULL; ++ dp->dccps_hc_tx_ccid = NULL; + + __skb_queue_purge(&sk->sk_receive_queue); + __skb_queue_purge(&sk->sk_write_queue); +-- +2.15.1 + diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/drm-bridge-analogix-dp-Fix-runtime-PM-state-in-get_m.patch new/patches.suse/drm-bridge-analogix-dp-Fix-runtime-PM-state-in-get_m.patch --- old/patches.suse/drm-bridge-analogix-dp-Fix-runtime-PM-state-in-get_m.patch 2017-12-05 15:58:24.000000000 +0100 +++ new/patches.suse/drm-bridge-analogix-dp-Fix-runtime-PM-state-in-get_m.patch 1970-01-01 01:00:00.000000000 +0100 @@ -1,76 +0,0 @@ -From: Marek Szyprowski <[email protected]> -Date: Tue, 21 Nov 2017 08:49:36 +0100 -Subject: drm/bridge: analogix dp: Fix runtime PM state in get_modes() callback -Patch-mainline: submitted on Nov 21st 2017 -References: bnc#1069146 - -get_modes() callback might be called asynchronously from the DRM core and -it is not synchronized with bridge_enable(), which sets proper runtime PM -state of the main DP device. Fix this by calling pm_runtime_get_sync() -before calling drm_get_edid(), which in turn calls drm_dp_i2c_xfer() and -analogix_dp_transfer() to ensure that main DP device is runtime active -when doing any access to its registers. - -This fixes the following kernel issue on Samsung Exynos5250 Snow board: -Unhandled fault: imprecise external abort (0x406) at 0x00000000 -pgd = c0004000 -[00000000] *pgd=00000000 -Internal error: : 406 [#1] PREEMPT SMP ARM -Modules linked in: -CPU: 0 PID: 62 Comm: kworker/0:2 Not tainted 4.13.0-rc2-00364-g4a97a3da420b #3357 -Hardware name: SAMSUNG EXYNOS (Flattened Device Tree) -Workqueue: events output_poll_execute -task: edc14800 task.stack: edcb2000 -PC is at analogix_dp_transfer+0x15c/0x2fc -LR is at analogix_dp_transfer+0x134/0x2fc -pc : [<c0468538>] lr : [<c0468510>] psr: 60000013 -sp : edcb3be8 ip : 0000002a fp : 00000001 -r10: 00000000 r9 : edcb3cd8 r8 : edcb3c40 -r7 : 00000000 r6 : edd3b380 r5 : edd3b010 r4 : 00000064 -r3 : 00000000 r2 : f0ad3000 r1 : edcb3c40 r0 : edd3b010 -Flags: nZCv IRQs on FIQs on Mode SVC_32 ISA ARM Segment none -Control: 10c5387d Table: 4000406a DAC: 00000051 -Process kworker/0:2 (pid: 62, stack limit = 0xedcb2210) -Stack: (0xedcb3be8 to 0xedcb4000) -[<c0468538>] (analogix_dp_transfer) from [<c0424ba4>] (drm_dp_i2c_do_msg+0x8c/0x2b4) -[<c0424ba4>] (drm_dp_i2c_do_msg) from [<c0424e64>] (drm_dp_i2c_xfer+0x98/0x214) -[<c0424e64>] (drm_dp_i2c_xfer) from [<c057b2d8>] (__i2c_transfer+0x140/0x29c) -[<c057b2d8>] (__i2c_transfer) from [<c057b4a4>] (i2c_transfer+0x70/0xe4) -[<c057b4a4>] (i2c_transfer) from [<c0441de4>] (drm_do_probe_ddc_edid+0xb4/0x114) -[<c0441de4>] (drm_do_probe_ddc_edid) from [<c0441e5c>] (drm_probe_ddc+0x18/0x28) -[<c0441e5c>] (drm_probe_ddc) from [<c0445728>] (drm_get_edid+0x124/0x2d4) -[<c0445728>] (drm_get_edid) from [<c0465ea0>] (analogix_dp_get_modes+0x90/0x114) -[<c0465ea0>] (analogix_dp_get_modes) from [<c0425e8c>] (drm_helper_probe_single_connector_modes+0x198/0x68c) -[<c0425e8c>] (drm_helper_probe_single_connector_modes) from [<c04325d4>] (drm_setup_crtcs+0x1b4/0xd18) -[<c04325d4>] (drm_setup_crtcs) from [<c04344a8>] (drm_fb_helper_hotplug_event+0x94/0xd0) -[<c04344a8>] (drm_fb_helper_hotplug_event) from [<c0425a50>] (drm_kms_helper_hotplug_event+0x24/0x28) -[<c0425a50>] (drm_kms_helper_hotplug_event) from [<c04263ec>] (output_poll_execute+0x6c/0x174) -[<c04263ec>] (output_poll_execute) from [<c0136f18>] (process_one_work+0x188/0x3fc) -[<c0136f18>] (process_one_work) from [<c01371f4>] (worker_thread+0x30/0x4b8) -[<c01371f4>] (worker_thread) from [<c013daf8>] (kthread+0x128/0x164) -[<c013daf8>] (kthread) from [<c0108510>] (ret_from_fork+0x14/0x24) -Code: 0a000002 ea000009 e2544001 0a00004a (e59537c8) ----[ end trace cddc7919c79f7878 ]--- - -Reported-by: Misha Komarovskiy <[email protected]> -CC: [email protected] # v4.10+ -Signed-off-by: Marek Szyprowski <[email protected]> -Signed-off-by: Jiri Slaby <[email protected]> - -Signed-off-by: Jiri Slaby <[email protected]> ---- - drivers/gpu/drm/bridge/analogix/analogix_dp_core.c | 2 ++ - 1 file changed, 2 insertions(+) - ---- a/drivers/gpu/drm/bridge/analogix/analogix_dp_core.c -+++ b/drivers/gpu/drm/bridge/analogix/analogix_dp_core.c -@@ -946,7 +946,9 @@ static int analogix_dp_get_modes(struct - return 0; - } - -+ pm_runtime_get_sync(dp->dev); - edid = drm_get_edid(connector, &dp->aux.ddc); -+ pm_runtime_put(dp->dev); - if (edid) { - drm_mode_connector_update_edid_property(&dp->connector, - edid); diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/netfilter-nfnetlink_cthelper-Add-missing-permission-.patch new/patches.suse/netfilter-nfnetlink_cthelper-Add-missing-permission-.patch --- old/patches.suse/netfilter-nfnetlink_cthelper-Add-missing-permission-.patch 1970-01-01 01:00:00.000000000 +0100 +++ new/patches.suse/netfilter-nfnetlink_cthelper-Add-missing-permission-.patch 2017-12-14 10:42:26.000000000 +0100 @@ -0,0 +1,83 @@ +From: Kevin Cernekee <[email protected]> +Date: Sun, 3 Dec 2017 12:12:45 -0800 +Subject: netfilter: nfnetlink_cthelper: Add missing permission checks +Patch-mainline: Queued in subsystem maintainer repository +Git-repo: git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf.git +Git-commit: 4b380c42f7d00a395feede754f0bc2292eebe6e5 +References: CVE-2017-17448 bsc#1071693 + +The capability check in nfnetlink_rcv() verifies that the caller +has CAP_NET_ADMIN in the namespace that "owns" the netlink socket. +However, nfnl_cthelper_list is shared by all net namespaces on the +system. An unprivileged user can create user and net namespaces +in which he holds CAP_NET_ADMIN to bypass the netlink_net_capable() +check: + + $ nfct helper list + nfct v1.4.4: netlink error: Operation not permitted + $ vpnns -- nfct helper list + { + .name = ftp, + .queuenum = 0, + .l3protonum = 2, + .l4protonum = 6, + .priv_data_len = 24, + .status = enabled, + }; + +Add capable() checks in nfnetlink_cthelper, as this is cleaner than +trying to generalize the solution. + +Signed-off-by: Kevin Cernekee <[email protected]> +Signed-off-by: Pablo Neira Ayuso <[email protected]> +Acked-by: Michal Kubecek <[email protected]> + +--- + net/netfilter/nfnetlink_cthelper.c | 10 ++++++++++ + 1 file changed, 10 insertions(+) + +diff --git a/net/netfilter/nfnetlink_cthelper.c b/net/netfilter/nfnetlink_cthelper.c +index 41628b393673..d33ce6d5ebce 100644 +--- a/net/netfilter/nfnetlink_cthelper.c ++++ b/net/netfilter/nfnetlink_cthelper.c +@@ -17,6 +17,7 @@ + #include <linux/types.h> + #include <linux/list.h> + #include <linux/errno.h> ++#include <linux/capability.h> + #include <net/netlink.h> + #include <net/sock.h> + +@@ -407,6 +408,9 @@ static int nfnl_cthelper_new(struct net *net, struct sock *nfnl, + struct nfnl_cthelper *nlcth; + int ret = 0; + ++ if (!capable(CAP_NET_ADMIN)) ++ return -EPERM; ++ + if (!tb[NFCTH_NAME] || !tb[NFCTH_TUPLE]) + return -EINVAL; + +@@ -611,6 +615,9 @@ static int nfnl_cthelper_get(struct net *net, struct sock *nfnl, + struct nfnl_cthelper *nlcth; + bool tuple_set = false; + ++ if (!capable(CAP_NET_ADMIN)) ++ return -EPERM; ++ + if (nlh->nlmsg_flags & NLM_F_DUMP) { + struct netlink_dump_control c = { + .dump = nfnl_cthelper_dump_table, +@@ -678,6 +685,9 @@ static int nfnl_cthelper_del(struct net *net, struct sock *nfnl, + struct nfnl_cthelper *nlcth, *n; + int j = 0, ret; + ++ if (!capable(CAP_NET_ADMIN)) ++ return -EPERM; ++ + if (tb[NFCTH_NAME]) + helper_name = nla_data(tb[NFCTH_NAME]); + +-- +2.15.1 + diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/netfilter-xt_osf-Add-missing-permission-checks.patch new/patches.suse/netfilter-xt_osf-Add-missing-permission-checks.patch --- old/patches.suse/netfilter-xt_osf-Add-missing-permission-checks.patch 1970-01-01 01:00:00.000000000 +0100 +++ new/patches.suse/netfilter-xt_osf-Add-missing-permission-checks.patch 2017-12-14 10:42:26.000000000 +0100 @@ -0,0 +1,65 @@ +From: Kevin Cernekee <[email protected]> +Date: Tue, 5 Dec 2017 15:42:41 -0800 +Subject: netfilter: xt_osf: Add missing permission checks +Patch-mainline: Queued in subsystem maintainer repository +Git-repo: git://git.kernel.org/pub/scm/linux/kernel/git/pablo/nf.git +Git-commit: 916a27901de01446bcf57ecca4783f6cff493309 +References: CVE-2017-17450 bsc#1071695 + +The capability check in nfnetlink_rcv() verifies that the caller +has CAP_NET_ADMIN in the namespace that "owns" the netlink socket. +However, xt_osf_fingers is shared by all net namespaces on the +system. An unprivileged user can create user and net namespaces +in which he holds CAP_NET_ADMIN to bypass the netlink_net_capable() +check: + + vpnns -- nfnl_osf -f /tmp/pf.os + + vpnns -- nfnl_osf -f /tmp/pf.os -d + +These non-root operations successfully modify the systemwide OS +fingerprint list. Add new capable() checks so that they can't. + +Signed-off-by: Kevin Cernekee <[email protected]> +Signed-off-by: Pablo Neira Ayuso <[email protected]> +Acked-by: Michal Kubecek <[email protected]> + +--- + net/netfilter/xt_osf.c | 7 +++++++ + 1 file changed, 7 insertions(+) + +diff --git a/net/netfilter/xt_osf.c b/net/netfilter/xt_osf.c +index 36e14b1f061d..a34f314a8c23 100644 +--- a/net/netfilter/xt_osf.c ++++ b/net/netfilter/xt_osf.c +@@ -19,6 +19,7 @@ + #include <linux/module.h> + #include <linux/kernel.h> + ++#include <linux/capability.h> + #include <linux/if.h> + #include <linux/inetdevice.h> + #include <linux/ip.h> +@@ -70,6 +71,9 @@ static int xt_osf_add_callback(struct net *net, struct sock *ctnl, + struct xt_osf_finger *kf = NULL, *sf; + int err = 0; + ++ if (!capable(CAP_NET_ADMIN)) ++ return -EPERM; ++ + if (!osf_attrs[OSF_ATTR_FINGER]) + return -EINVAL; + +@@ -115,6 +119,9 @@ static int xt_osf_remove_callback(struct net *net, struct sock *ctnl, + struct xt_osf_finger *sf; + int err = -ENOENT; + ++ if (!capable(CAP_NET_ADMIN)) ++ return -EPERM; ++ + if (!osf_attrs[OSF_ATTR_FINGER]) + return -EINVAL; + +-- +2.15.1 + diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/netlink-Add-netns-check-on-taps.patch new/patches.suse/netlink-Add-netns-check-on-taps.patch --- old/patches.suse/netlink-Add-netns-check-on-taps.patch 1970-01-01 01:00:00.000000000 +0100 +++ new/patches.suse/netlink-Add-netns-check-on-taps.patch 2017-12-14 10:42:26.000000000 +0100 @@ -0,0 +1,48 @@ +From: Kevin Cernekee <[email protected]> +Date: Wed, 6 Dec 2017 12:12:27 -0800 +Subject: netlink: Add netns check on taps +Patch-mainline: Queued in subsystem maintainer repository +Git-repo: git://git.kernel.org/pub/scm/linux/kernel/git/davem/net.git +Git-commit: 93c647643b48f0131f02e45da3bd367d80443291 +References: CVE-2017-17449 bsc#1071694 + +Currently, a nlmon link inside a child namespace can observe systemwide +netlink activity. Filter the traffic so that nlmon can only sniff +netlink messages from its own netns. + +Test case: + + vpnns -- bash -c "ip link add nlmon0 type nlmon; \ + ip link set nlmon0 up; \ + tcpdump -i nlmon0 -q -w /tmp/nlmon.pcap -U" & + sudo ip xfrm state add src 10.1.1.1 dst 10.1.1.2 proto esp \ + spi 0x1 mode transport \ + auth sha1 0x6162633132330000000000000000000000000000 \ + enc aes 0x00000000000000000000000000000000 + grep --binary abc123 /tmp/nlmon.pcap + +Signed-off-by: Kevin Cernekee <[email protected]> +Signed-off-by: David S. Miller <[email protected]> +Acked-by: Michal Kubecek <[email protected]> + +--- + net/netlink/af_netlink.c | 3 +++ + 1 file changed, 3 insertions(+) + +diff --git a/net/netlink/af_netlink.c b/net/netlink/af_netlink.c +index 15c99dfa3d72..aac9d68b4636 100644 +--- a/net/netlink/af_netlink.c ++++ b/net/netlink/af_netlink.c +@@ -254,6 +254,9 @@ static int __netlink_deliver_tap_skb(struct sk_buff *skb, + struct sock *sk = skb->sk; + int ret = -ENOMEM; + ++ if (!net_eq(dev_net(dev), sock_net(sk))) ++ return 0; ++ + dev_hold(dev); + + if (is_vmalloc_addr(skb->head)) +-- +2.15.1 + diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/patches.suse/x86-microcode-amd-add-support-for-fam17h-microcode-loading.patch new/patches.suse/x86-microcode-amd-add-support-for-fam17h-microcode-loading.patch --- old/patches.suse/x86-microcode-amd-add-support-for-fam17h-microcode-loading.patch 1970-01-01 01:00:00.000000000 +0100 +++ new/patches.suse/x86-microcode-amd-add-support-for-fam17h-microcode-loading.patch 2017-12-14 10:42:26.000000000 +0100 @@ -0,0 +1,44 @@ +From: Tom Lendacky <[email protected]> +Date: Thu, 30 Nov 2017 16:46:40 -0600 +Subject: x86/microcode/AMD: Add support for fam17h microcode loading +Git-commit: f4e9b7af0cd58dd039a0fb2cd67d57cea4889abf +Patch-mainline: v4.15-rc3 +References: bsc#1068032 + +The size for the Microcode Patch Block (MPB) for an AMD family 17h +processor is 3200 bytes. Add a #define for fam17h so that it does +not default to 2048 bytes and fail a microcode load/update. + +Signed-off-by: Tom Lendacky <[email protected]> +Signed-off-by: Thomas Gleixner <[email protected]> +Reviewed-by: Borislav Petkov <[email protected]> +Link: https://lkml.kernel.org/r/[email protected] +Signed-off-by: Ingo Molnar <[email protected]> +Acked-by: Borislav Petkov <[email protected]> +--- + arch/x86/kernel/cpu/microcode/amd.c | 4 ++++ + 1 file changed, 4 insertions(+) + +diff --git a/arch/x86/kernel/cpu/microcode/amd.c b/arch/x86/kernel/cpu/microcode/amd.c +index c6daec4bdba5..330b8462d426 100644 +--- a/arch/x86/kernel/cpu/microcode/amd.c ++++ b/arch/x86/kernel/cpu/microcode/amd.c +@@ -470,6 +470,7 @@ static unsigned int verify_patch_size(u8 family, u32 patch_size, + #define F14H_MPB_MAX_SIZE 1824 + #define F15H_MPB_MAX_SIZE 4096 + #define F16H_MPB_MAX_SIZE 3458 ++#define F17H_MPB_MAX_SIZE 3200 + + switch (family) { + case 0x14: +@@ -481,6 +482,9 @@ static unsigned int verify_patch_size(u8 family, u32 patch_size, + case 0x16: + max_size = F16H_MPB_MAX_SIZE; + break; ++ case 0x17: ++ max_size = F17H_MPB_MAX_SIZE; ++ break; + default: + max_size = F1XH_MPB_MAX_SIZE; + break; + ++++++ series.conf ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:20.558533141 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:20.558533141 +0100 @@ -447,6 +447,158 @@ patches.kernel.org/4.14.5-073-usb-host-fix-incorrect-updating-of-offset.patch patches.kernel.org/4.14.5-074-locking-refcounts-Do-not-force-refcount_t-usag.patch patches.kernel.org/4.14.5-075-Linux-4.14.5.patch + patches.kernel.org/4.14.6-001-usb-gadget-udc-renesas_usb3-fix-number-of-the-.patch + patches.kernel.org/4.14.6-002-usb-gadget-core-Fix-udc_set_speed-speed-handli.patch + patches.kernel.org/4.14.6-003-serdev-ttyport-add-missing-receive_buf-sanity-.patch + patches.kernel.org/4.14.6-004-serdev-ttyport-fix-NULL-deref-on-hangup.patch + patches.kernel.org/4.14.6-005-serdev-ttyport-fix-tty-locking-in-close.patch + patches.kernel.org/4.14.6-006-usb-f_fs-Force-Reserved1-1-in-OS_DESC_EXT_COMP.patch + patches.kernel.org/4.14.6-007-can-mcba_usb-fix-device-disconnect-bug.patch + patches.kernel.org/4.14.6-008-can-peak-pci-fix-potential-bug-when-probe-fail.patch + patches.kernel.org/4.14.6-009-can-flexcan-fix-VF610-state-transition-issue.patch + patches.kernel.org/4.14.6-010-can-ti_hecc-Fix-napi-poll-return-value-for-rep.patch + patches.kernel.org/4.14.6-011-can-kvaser_usb-free-buf-in-error-paths.patch + patches.kernel.org/4.14.6-012-can-kvaser_usb-Fix-comparison-bug-in-kvaser_us.patch + patches.kernel.org/4.14.6-013-can-kvaser_usb-ratelimit-errors-if-incomplete-.patch + patches.kernel.org/4.14.6-014-can-kvaser_usb-cancel-urb-on-EPIPE-and-EPROTO.patch + patches.kernel.org/4.14.6-015-can-mcba_usb-cancel-urb-on-EPROTO.patch + patches.kernel.org/4.14.6-016-can-ems_usb-cancel-urb-on-EPIPE-and-EPROTO.patch + patches.kernel.org/4.14.6-017-can-esd_usb2-cancel-urb-on-EPIPE-and-EPROTO.patch + patches.kernel.org/4.14.6-018-can-usb_8dev-cancel-urb-on-EPIPE-and-EPROTO.patch + patches.kernel.org/4.14.6-019-can-peak-pcie_fd-fix-potential-bug-in-restarti.patch + patches.kernel.org/4.14.6-020-virtio-release-virtio-index-when-fail-to-devic.patch + patches.kernel.org/4.14.6-021-iio-stm32-fix-adc-trigger-link-error.patch + patches.kernel.org/4.14.6-022-iio-health-max30102-Temperature-should-be-in-m.patch + patches.kernel.org/4.14.6-023-iio-adc-cpcap-fix-incorrect-validation.patch + patches.kernel.org/4.14.6-024-iio-adc-meson-saradc-fix-the-bit_idx-of-the-ad.patch + patches.kernel.org/4.14.6-025-iio-adc-meson-saradc-initialize-the-bandgap-co.patch + patches.kernel.org/4.14.6-026-iio-adc-meson-saradc-Meson8-and-Meson8b-do-not.patch + patches.kernel.org/4.14.6-027-pinctrl-armada-37xx-Fix-direction_output-callb.patch + patches.kernel.org/4.14.6-028-Drivers-hv-vmbus-Fix-a-rescind-issue.patch + patches.kernel.org/4.14.6-029-hv-kvp-Avoid-reading-past-allocated-blocks-fro.patch + patches.kernel.org/4.14.6-030-firmware-cleanup-FIRMWARE_IN_KERNEL-message.patch + patches.kernel.org/4.14.6-031-firmware-vpd-Destroy-vpd-sections-in-remove-fu.patch + patches.kernel.org/4.14.6-032-firmware-vpd-Tie-firmware-kobject-to-device-li.patch + patches.kernel.org/4.14.6-033-firmware-vpd-Fix-platform-driver-and-device-re.patch + patches.kernel.org/4.14.6-034-isa-Prevent-NULL-dereference-in-isa_bus-driver.patch + patches.kernel.org/4.14.6-035-scsi-dma-mapping-always-provide-dma_get_cache_.patch + patches.kernel.org/4.14.6-036-scsi-use-dma_get_cache_alignment-as-minimum-DM.patch + patches.kernel.org/4.14.6-037-scsi-libsas-align-sata_device-s-rps_resp-on-a-.patch + patches.kernel.org/4.14.6-038-efi-Move-some-sysfs-files-to-be-read-only-by-r.patch + patches.kernel.org/4.14.6-039-efi-esrt-Use-memunmap-instead-of-kfree-to-free.patch + patches.kernel.org/4.14.6-040-ASN.1-fix-out-of-bounds-read-when-parsing-inde.patch + patches.kernel.org/4.14.6-041-ASN.1-check-for-error-from-ASN1_OP_END__ACT-ac.patch + patches.kernel.org/4.14.6-042-KEYS-add-missing-permission-check-for-request_.patch + patches.kernel.org/4.14.6-043-KEYS-reject-NULL-restriction-string-when-type-.patch + patches.kernel.org/4.14.6-044-X.509-reject-invalid-BIT-STRING-for-subjectPub.patch + patches.kernel.org/4.14.6-045-X.509-fix-comparisons-of-pkey_algo.patch + patches.kernel.org/4.14.6-046-x86-idt-Load-idt-early-in-start_secondary.patch + patches.kernel.org/4.14.6-047-x86-PCI-Make-broadcom_postcore_init-check-acpi.patch + patches.kernel.org/4.14.6-048-KVM-x86-fix-APIC-page-invalidation.patch + patches.kernel.org/4.14.6-049-btrfs-fix-missing-error-return-in-btrfs_drop_s.patch + patches.kernel.org/4.14.6-050-btrfs-handle-errors-while-updating-refcounts-i.patch + patches.kernel.org/4.14.6-051-ALSA-hda-realtek-New-codec-support-for-ALC257.patch + patches.kernel.org/4.14.6-052-ALSA-pcm-prevent-UAF-in-snd_pcm_info.patch + patches.kernel.org/4.14.6-053-ALSA-seq-Remove-spurious-WARN_ON-at-timer-chec.patch + patches.kernel.org/4.14.6-054-ALSA-usb-audio-Fix-out-of-bound-error.patch + patches.kernel.org/4.14.6-055-ALSA-usb-audio-Add-check-return-value-for-usb_.patch + patches.kernel.org/4.14.6-056-iommu-vt-d-Fix-scatterlist-offset-handling.patch + patches.kernel.org/4.14.6-057-smp-hotplug-Move-step-CPUHP_AP_SMPCFD_DYING-to.patch + patches.kernel.org/4.14.6-058-s390-always-save-and-restore-all-registers-on-.patch + patches.kernel.org/4.14.6-059-s390-mm-fix-off-by-one-bug-in-5-level-page-tab.patch + patches.kernel.org/4.14.6-060-s390-fix-compat-system-call-table.patch + patches.kernel.org/4.14.6-061-KVM-s390-Fix-skey-emulation-permission-check.patch + patches.kernel.org/4.14.6-062-Revert-powerpc-Do-not-call-ppc_md.panic-in-fad.patch + patches.kernel.org/4.14.6-063-powerpc-64s-Initialize-ISAv3-MMU-registers-bef.patch + patches.kernel.org/4.14.6-064-iwlwifi-mvm-mark-MIC-stripped-MPDUs.patch + patches.kernel.org/4.14.6-065-iwlwifi-mvm-don-t-use-transmit-queue-hang-dete.patch + patches.kernel.org/4.14.6-066-iwlwifi-mvm-flush-queue-before-deleting-ROC.patch + patches.kernel.org/4.14.6-067-iwlwifi-add-new-cards-for-9260-and-22000-serie.patch + patches.kernel.org/4.14.6-068-iwlwifi-mvm-fix-packet-injection.patch + patches.kernel.org/4.14.6-069-iwlwifi-mvm-enable-RX-offloading-with-TKIP-and.patch + patches.kernel.org/4.14.6-070-brcmfmac-change-driver-unbind-order-of-the-sdi.patch + patches.kernel.org/4.14.6-071-kdb-Fix-handling-of-kallsyms_symbol_next-retur.patch + patches.kernel.org/4.14.6-072-md-r5cache-move-mddev_lock-out-of-r5c_journal_.patch + patches.kernel.org/4.14.6-073-drm-bridge-analogix-dp-Fix-runtime-PM-state-in.patch + patches.kernel.org/4.14.6-074-drm-exynos-gem-Drop-NONCONTIG-flag-for-buffers.patch + patches.kernel.org/4.14.6-075-drm-i915-Fix-vblank-timestamp-frame-counter-ju.patch + patches.kernel.org/4.14.6-076-media-dvb-i2c-transfers-over-usb-cannot-be-don.patch + patches.kernel.org/4.14.6-077-media-rc-sir_ir-detect-presence-of-port.patch + patches.kernel.org/4.14.6-078-media-rc-partial-revert-of-media-rc-per-protoc.patch + patches.kernel.org/4.14.6-079-arm64-KVM-fix-VTTBR_BADDR_MASK-BUG_ON-off-by-o.patch + patches.kernel.org/4.14.6-080-arm-KVM-Fix-VTTBR_BADDR_MASK-BUG_ON-off-by-one.patch + patches.kernel.org/4.14.6-081-KVM-VMX-remove-I-O-port-0x80-bypass-on-Intel-h.patch + patches.kernel.org/4.14.6-082-KVM-arm-arm64-Fix-broken-GICH_ELRSR-big-endian.patch + patches.kernel.org/4.14.6-083-KVM-arm-arm64-vgic-irqfd-Fix-MSI-entry-allocat.patch + patches.kernel.org/4.14.6-084-KVM-arm-arm64-vgic-Preserve-the-revious-read-f.patch + patches.kernel.org/4.14.6-085-KVM-arm-arm64-vgic-its-Check-result-of-allocat.patch + patches.kernel.org/4.14.6-086-arm64-fpsimd-Prevent-registers-leaking-from-de.patch + patches.kernel.org/4.14.6-087-arm64-SW-PAN-Point-saved-ttbr0-at-the-zero-pag.patch + patches.kernel.org/4.14.6-088-arm64-SW-PAN-Update-saved-ttbr0-value-on-enter.patch + patches.kernel.org/4.14.6-089-Revert-ARM-dts-imx53-add-srtc-node.patch + patches.kernel.org/4.14.6-090-bus-arm-cci-Fix-use-of-smp_processor_id-in-pre.patch + patches.kernel.org/4.14.6-091-bus-arm-ccn-Check-memory-allocation-failure.patch + patches.kernel.org/4.14.6-092-bus-arm-ccn-Fix-use-of-smp_processor_id-in-pre.patch + patches.kernel.org/4.14.6-093-bus-arm-ccn-fix-module-unloading-Error-Removin.patch + patches.kernel.org/4.14.6-094-IB-core-Avoid-unnecessary-return-value-check.patch + patches.kernel.org/4.14.6-095-IB-core-Only-enforce-security-for-InfiniBand.patch + patches.kernel.org/4.14.6-096-crypto-talitos-fix-AEAD-test-failures.patch + patches.kernel.org/4.14.6-097-crypto-talitos-fix-memory-corruption-on-SEC2.patch + patches.kernel.org/4.14.6-098-crypto-talitos-fix-setkey-to-check-key-weaknes.patch + patches.kernel.org/4.14.6-099-crypto-talitos-fix-AEAD-for-sha224-on-non-sha2.patch + patches.kernel.org/4.14.6-100-crypto-talitos-fix-use-of-sg_link_tbl_len.patch + patches.kernel.org/4.14.6-101-crypto-talitos-fix-ctr-aes-talitos.patch + patches.kernel.org/4.14.6-102-ARM-BUG-if-jumping-to-usermode-address-in-kern.patch + patches.kernel.org/4.14.6-103-ARM-avoid-faulting-on-qemu.patch + patches.kernel.org/4.14.6-104-irqchip-qcom-Fix-u32-comparison-with-value-les.patch + patches.kernel.org/4.14.6-105-net-smc-use-sk_rcvbuf-as-start-for-rmb-creatio.patch + patches.kernel.org/4.14.6-106-kbuild-pkg-use-transform-option-to-prefix-path.patch + patches.kernel.org/4.14.6-107-coccinelle-fix-parallel-build-with-CHECK-scrip.patch + patches.kernel.org/4.14.6-108-powerpc-perf-Fix-pmu_count-to-count-only-nest-.patch + patches.kernel.org/4.14.6-109-apparmor-fix-leak-of-null-profile-name-if-prof.patch + patches.kernel.org/4.14.6-110-x86-mpx-selftests-Fix-up-weird-arrays.patch + patches.kernel.org/4.14.6-111-mac80211_hwsim-Fix-memory-leak-in-hwsim_new_ra.patch + patches.kernel.org/4.14.6-112-gre6-use-log_ecn_error-module-parameter-in-ip6.patch + patches.kernel.org/4.14.6-113-route-also-update-fnhe_genid-when-updating-a-r.patch + patches.kernel.org/4.14.6-114-route-update-fnhe_expires-for-redirect-when-th.patch + patches.kernel.org/4.14.6-115-rsi-fix-memory-leak-on-buf-and-usb_reg_buf.patch + patches.kernel.org/4.14.6-116-drivers-rapidio-devices-rio_mport_cdev.c-fix-r.patch + patches.kernel.org/4.14.6-117-pipe-match-pipe_max_size-data-type-with-procfs.patch + patches.kernel.org/4.14.6-118-lib-genalloc.c-make-the-avail-variable-an-atom.patch + patches.kernel.org/4.14.6-119-dynamic-debug-howto-fix-optional-omitted-endin.patch + patches.kernel.org/4.14.6-120-NFS-Fix-a-typo-in-nfs_rename.patch + patches.kernel.org/4.14.6-121-sunrpc-Fix-rpc_task_begin-trace-point.patch + patches.kernel.org/4.14.6-122-nfp-inherit-the-max_mtu-from-the-PF-netdev.patch + patches.kernel.org/4.14.6-123-nfp-fix-flower-offload-metadata-flag-usage.patch + patches.kernel.org/4.14.6-124-xfs-fix-forgotten-rcu-read-unlock-when-skippin.patch + patches.kernel.org/4.14.6-125-dt-bindings-usb-fix-reg-property-port-number-r.patch + patches.kernel.org/4.14.6-126-block-wake-up-all-tasks-blocked-in-get_request.patch + patches.kernel.org/4.14.6-127-sparc64-mm-set-fields-in-deferred-pages.patch + patches.kernel.org/4.14.6-128-zsmalloc-calling-zs_map_object-from-irq-is-a-b.patch + patches.kernel.org/4.14.6-129-slub-fix-sysfs-duplicate-filename-creation-whe.patch + patches.kernel.org/4.14.6-130-sctp-do-not-free-asoc-when-it-is-already-dead-.patch + patches.kernel.org/4.14.6-131-sctp-use-the-right-sk-after-waking-up-from-wai.patch + patches.kernel.org/4.14.6-132-fcntl-don-t-leak-fd-reference-when-fixup_compa.patch + patches.kernel.org/4.14.6-133-geneve-fix-fill_info-when-link-down.patch + patches.kernel.org/4.14.6-134-bpf-fix-lockdep-splat.patch + patches.kernel.org/4.14.6-135-clk-stm32h7-fix-test-of-clock-config.patch + patches.kernel.org/4.14.6-136-clk-sunxi-ng-a83t-Fix-i2c-buses-bits.patch + patches.kernel.org/4.14.6-137-clk-qcom-common-fix-legacy-board-clock-registr.patch + patches.kernel.org/4.14.6-138-clk-uniphier-fix-DAPLL2-clock-rate-of-Pro5.patch + patches.kernel.org/4.14.6-139-clk-hi3660-fix-incorrect-uart3-clock-freqency.patch + patches.kernel.org/4.14.6-140-mailbox-mailbox-test-don-t-rely-on-rx_buffer-c.patch + patches.kernel.org/4.14.6-141-kbuild-rpm-pkg-fix-jobserver-unavailable-warni.patch + patches.kernel.org/4.14.6-142-atm-horizon-Fix-irq-release-error.patch + patches.kernel.org/4.14.6-143-jump_label-Invoke-jump_label_test-via-early_in.patch + patches.kernel.org/4.14.6-144-tls-Use-kzalloc-for-aead_request-allocation.patch + patches.kernel.org/4.14.6-145-xfrm-Copy-policy-family-in-clone_policy.patch + patches.kernel.org/4.14.6-146-f2fs-fix-to-clear-FI_NO_PREALLOC.patch + patches.kernel.org/4.14.6-147-bnxt_re-changing-the-ip-address-shouldn-t-affe.patch + patches.kernel.org/4.14.6-148-IB-mlx4-Increase-maximal-message-size-under-UD.patch + patches.kernel.org/4.14.6-149-IB-mlx5-Assign-send-CQ-and-recv-CQ-of-UMR-QP.patch + patches.kernel.org/4.14.6-150-afs-Fix-total-length-calculation-for-multiple-.patch + patches.kernel.org/4.14.6-151-afs-Connect-up-the-CB.ProbeUuid.patch + patches.kernel.org/4.14.6-152-Linux-4.14.6.patch ######################################################## # Build fixes that apply to the vanilla kernel too. @@ -520,6 +672,9 @@ # changed this area a lot. +needs_updating patches.suse/x86_64-hpet-64bit-timer.patch + # bsc#1068032 + patches.suse/x86-microcode-amd-add-support-for-fam17h-microcode-loading.patch + ######################################################## # x86 MCE/MCA (Machine Check Error/Architecture) extensions ######################################################## @@ -610,11 +765,15 @@ ######################################################## # Networking Core ######################################################## + patches.suse/dccp-CVE-2017-8824-use-after-free-in-DCCP-code.patch + patches.suse/netlink-Add-netns-check-on-taps.patch ######################################################## # Netfilter ######################################################## patches.suse/netfilter-ip_conntrack_slp.patch + patches.suse/netfilter-nfnetlink_cthelper-Add-missing-permission-.patch + patches.suse/netfilter-xt_osf-Add-missing-permission-checks.patch ######################################################## # NFS @@ -710,7 +869,6 @@ ######################################################## # DRM/Video ######################################################## - patches.suse/drm-bridge-analogix-dp-Fix-runtime-PM-state-in-get_m.patch ######################################################## # video4linux ++++++ source-timestamp ++++++ --- /var/tmp/diff_new_pack.n79Uqy/_old 2017-12-15 14:03:20.586531789 +0100 +++ /var/tmp/diff_new_pack.n79Uqy/_new 2017-12-15 14:03:20.590531596 +0100 @@ -1,3 +1,3 @@ -2017-12-11 09:31:51 +0100 -GIT Revision: c4edabf92dbc3e6fce36192a650f0a5e27fceaca +2017-12-14 10:42:26 +0100 +GIT Revision: 45f120a99ee480e206bc96432f903d2c194ff1e8 GIT Branch: stable
