SUSE-SU-2019:2706-1: important: Security update for the Linux Kernel

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Thu Oct 17 10:23:15 MDT 2019


   SUSE Security Update: Security update for the Linux Kernel
______________________________________________________________________________

Announcement ID:    SUSE-SU-2019:2706-1
Rating:             important
References:         #1051510 #1054914 #1055117 #1061840 #1065600 
                    #1065729 #1071995 #1082555 #1104967 #1109158 
                    #1113722 #1114279 #1119086 #1123034 #1127988 
                    #1131304 #1137069 #1137865 #1137959 #1140155 
                    #1141013 #1142076 #1142635 #1146042 #1146519 
                    #1146540 #1146664 #1148133 #1148712 #1148868 
                    #1149313 #1149446 #1149555 #1149651 #1150381 
                    #1150423 #1151350 #1151610 #1151667 #1151680 
                    #1151891 #1151955 #1152024 #1152025 #1152026 
                    #1152161 #1152325 #1152457 #1152460 #1152466 
                    #1152972 #1152974 #1152975 
Cross-References:   CVE-2017-18595 CVE-2019-14821 CVE-2019-15291
                    CVE-2019-9506
Affected Products:
                    SUSE Linux Enterprise Workstation Extension 15
                    SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
                    SUSE Linux Enterprise Module for Live Patching 15
                    SUSE Linux Enterprise Module for Legacy Software 15
                    SUSE Linux Enterprise Module for Development Tools 15
                    SUSE Linux Enterprise Module for Basesystem 15
                    SUSE Linux Enterprise High Availability 15
______________________________________________________________________________

   An update that solves four vulnerabilities and has 49 fixes
   is now available.

Description:


   The SUSE Linux Enterprise 15 kernel was updated to receive various
   security and bugfixes.


   The following security bugs were fixed:

   - CVE-2019-15291: There was a NULL pointer dereference, caused by a
     malicious USB device in the flexcop_usb_probe function in the
     drivers/media/usb/b2c2/flexcop-usb.c driver (bnc#1146540).
   - CVE-2019-14821: An out-of-bounds access issue was found in the way the
     KVM hypervisor implements the Coalesced MMIO write operation. It
     operates on an MMIO ring buffer 'struct kvm_coalesced_mmio' object,
     wherein write indices 'ring->first' and 'ring->last' value could be
     supplied by a host user-space process. An unprivileged host user or
     process with access to '/dev/kvm' device could use this flaw to crash
     the host kernel, resulting in a denial of service or potentially
     escalating privileges on the system (bnc#1151350).
   - CVE-2017-18595: A double free may be caused by the function
     allocate_trace_buffer in the file kernel/trace/trace.c (bnc#1149555).
   - CVE-2019-9506: The Bluetooth BR/EDR specification up to and including
     version 5.1 permitted sufficiently low encryption key length and did not
     prevent an attacker from influencing the key length negotiation. This
     allowed practical brute-force attacks (aka "KNOB") that could decrypt
     traffic and injected arbitrary ciphertext without the victim noticing
     (bnc#1137865 bnc#1146042).

   The following non-security bugs were fixed:

   - ACPI: custom_method: fix memory leaks (bsc#1051510).
   - ACPI / PCI: fix acpi_pci_irq_enable() memory leak (bsc#1051510).
   - ACPI / property: Fix acpi_graph_get_remote_endpoint() name in kerneldoc
     (bsc#1051510).
   - alarmtimer: Use EOPNOTSUPP instead of ENOTSUPP (bsc#1151680).
   - ALSA: aoa: onyx: always initialize register read value (bsc#1051510).
   - ALSA: firewire-tascam: check intermediate state of clock status and
     retry (bsc#1051510).
   - ALSA: firewire-tascam: handle error code when getting current source of
     clock (bsc#1051510).
   - ASoC: es8328: Fix copy-paste error in es8328_right_line_controls
     (bsc#1051510).
   - ASoC: Intel: Baytrail: Fix implicit fallthrough warning (bsc#1051510).
   - ASoC: sun4i-i2s: RX and TX counter registers are swapped (bsc#1051510).
   - ASoC: wm8737: Fix copy-paste error in wm8737_snd_controls (bsc#1051510).
   - ASoC: wm8988: fix typo in wm8988_right_line_controls (bsc#1051510).
   - ath9k: dynack: fix possible deadlock in ath_dynack_node_{de}init
     (bsc#1051510).
   - atm: iphase: Fix Spectre v1 vulnerability (networking-stable-19_08_08).
   - bcma: fix incorrect update of BCMA_CORE_PCI_MDIO_DATA (bsc#1051510).
   - blk-flush: do not run queue for requests bypassing flush (bsc#1137959).
   - blk-flush: use blk_mq_request_bypass_insert() (bsc#1137959).
   - blk-mq: do not allocate driver tag upfront for flush rq (bsc#1137959).
   - blk-mq: Fix memory leak in blk_mq_init_allocated_queue error handling
     (bsc#1151610).
   - blk-mq: insert rq with DONTPREP to hctx dispatch list when requeue
     (bsc#1137959).
   - blk-mq: kABI fixes for blk-mq.h (bsc#1137959).
   - blk-mq: move blk_mq_put_driver_tag*() into blk-mq.h (bsc#1137959).
   - blk-mq: punt failed direct issue to dispatch list (bsc#1137959).
   - blk-mq: put the driver tag of nxt rq before first one is requeued
     (bsc#1137959).
   - blk-mq-sched: decide how to handle flush rq via RQF_FLUSH_SEQ
     (bsc#1137959).
   - block: fix timeout changes for legacy request drivers (bsc#1149446).
   - block: kABI fixes for BLK_EH_DONE renaming (bsc#1142076).
   - block: rename BLK_EH_NOT_HANDLED to BLK_EH_DONE (bsc#1142076).
   - bnx2x: Disable multi-cos feature (networking-stable-19_08_08).
   - bonding/802.3ad: fix link_failure_count tracking (bsc#1137069
     bsc#1141013).
   - bonding/802.3ad: fix slave link initialization transition states
     (bsc#1137069 bsc#1141013).
   - bonding: Add vlan tx offload to hw_enc_features
     (networking-stable-19_08_21).
   - bonding: set default miimon value for non-arp modes if not set
     (bsc#1137069 bsc#1141013).
   - bonding: speed/duplex update at NETDEV_UP event (bsc#1137069
     bsc#1141013).
   - btrfs: fix use-after-free when using the tree modification log
     (bsc#1151891).
   - btrfs: qgroup: Fix reserved data space leak if we have multiple reserve
     calls (bsc#1152975).
   - btrfs: qgroup: Fix the wrong target io_tree when freeing reserved data
     space (bsc#1152974).
   - btrfs: relocation: fix use-after-free on dead relocation roots
     (bsc#1152972).
   - ceph: use ceph_evict_inode to cleanup inode's resource (bsc#1148133).
   - clk: at91: fix update bit maps on CFG_MOR write (bsc#1051510).
   - clk: sunxi-ng: v3s: add missing clock slices for MMC2 module clocks
     (bsc#1051510).
   - clk: sunxi-ng: v3s: add the missing PLL_DDR1 (bsc#1051510).
   - crypto: caam - fix concurrency issue in givencrypt descriptor
     (bsc#1051510).
   - crypto: caam - free resources in case caam_rng registration failed
     (bsc#1051510).
   - crypto: cavium/zip - Add missing single_release() (bsc#1051510).
   - crypto: ccp - Reduce maximum stack usage (bsc#1051510).
   - crypto: qat - Silence smp_processor_id() warning (bsc#1051510).
   - crypto: skcipher - Unmap pages after an external error (bsc#1051510).
   - dmaengine: dw: platform: Switch to acpi_dma_controller_register()
     (bsc#1051510).
   - dmaengine: iop-adma.c: fix printk format warning (bsc#1051510).
   - drivers: thermal: int340x_thermal: Fix sysfs race condition
     (bsc#1051510).
   - drm/i915: Fix various tracepoints for gen2 (bsc#1113722)
   - drm/imx: Drop unused imx-ipuv3-crtc.o build (bsc#1113722)
   - EDAC/amd64: Decode syndrome before translating address (bsc#1114279).
   - eeprom: at24: make spd world-readable again (git-fixes).
   - ext4: fix warning inside ext4_convert_unwritten_extents_endio
     (bsc#1152025).
   - ext4: set error return correctly when ext4_htree_store_dirent fails
     (bsc#1152024).
   - Fix kabi for: NFSv4: Fix OPEN / CLOSE race (git-fixes).
   - gpio: fix line flag validation in lineevent_create (bsc#1051510).
   - gpio: fix line flag validation in linehandle_create (bsc#1051510).
   - gpiolib: acpi: Add gpiolib_acpi_run_edge_events_on_boot option and
     blacklist (bsc#1051510).
   - gpiolib: only check line handle flags once (bsc#1051510).
   - gpio: Move gpiochip_lock/unlock_as_irq to gpio/driver.h (bsc#1051510).
   - hwmon: (lm75) Fix write operations for negative temperatures
     (bsc#1051510).
   - hwmon: (shtc1) fix shtc1 and shtw1 id mask (bsc#1051510).
   - ife: error out when nla attributes are empty
     (networking-stable-19_08_08).
   - iio: dac: ad5380: fix incorrect assignment to val (bsc#1051510).
   - Input: elan_i2c - remove Lenovo Legion Y7000 PnpID (bsc#1051510).
   - iommu/dma: Fix for dereferencing before null checking (bsc#1151667).
   - ip6_tunnel: fix possible use-after-free on xmit
     (networking-stable-19_08_08).
   - ipv6/addrconf: allow adding multicast addr if IFA_F_MCAUTOJOIN is set
     (networking-stable-19_08_28).
   - isdn/capi: check message length in capi_write() (bsc#1051510).
   - kabi: media: em28xx: fix handler for vidioc_s_input() (bsc#1051510).
     fixes kabi
   - kabi: media: em28xx: stop rewriting device's struct (bsc#1051510). fixes
     kabi
   - KVM: PPC: Book3S: Fix incorrect guest-to-user-translation error handling
     (bsc#1061840).
   - KVM: PPC: Book3S HV: Check for MMU ready on piggybacked virtual cores
     (bsc#1061840).
   - KVM: PPC: Book3S HV: Do not lose pending doorbell request on migration
     on P9 (bsc#1061840).
   - KVM: PPC: Book3S HV: Do not push XIVE context when not using XIVE device
     (bsc#1061840).
   - KVM: PPC: Book3S HV: Fix lockdep warning when entering the guest
     (bsc#1061840).
   - KVM: PPC: Book3S HV: Fix race in re-enabling XIVE escalation interrupts
     (bsc#1061840).
   - KVM: PPC: Book3S HV: Handle virtual mode in XIVE VCPU push code
     (bsc#1061840).
   - KVM: PPC: Book3S HV: XIVE: Free escalation interrupts before disabling
     the VP (bsc#1061840).
   - leds: leds-lp5562 allow firmware files up to the maximum length
     (bsc#1051510).
   - leds: trigger: gpio: GPIO 0 is valid (bsc#1051510).
   - libertas_tf: Use correct channel range in lbtf_geo_init (bsc#1051510).
   - libiscsi: do not try to bypass SCSI EH (bsc#1142076).
   - livepatch: Nullify obj->mod in klp_module_coming()'s error path
     (bsc#1071995).
   - mac80211: minstrel_ht: fix per-group max throughput rate initialization
     (bsc#1051510).
   - md: do not report active array_state until after revalidate_disk()
     completes (git-fixes).
   - md: only call set_in_sync() when it is expected to succeed (git-fixes).
   - md/raid6: Set R5_ReadError when there is read failure on parity disk
     (git-fixes).
   - media: atmel: atmel-isi: fix timeout value for stop streaming
     (bsc#1051510).
   - media: dib0700: fix link error for dibx000_i2c_set_speed (bsc#1051510).
   - media: em28xx: fix handler for vidioc_s_input() (bsc#1051510).
   - media: em28xx: stop rewriting device's struct (bsc#1051510).
   - media: fdp1: Reduce FCP not found message level to debug (bsc#1051510).
   - media: marvell-ccic: do not generate EOF on parallel bus (bsc#1051510).
   - media: mc-device.c: do not memset __user pointer contents (bsc#1051510).
   - media: ov6650: Fix sensor possibly not detected on probe (bsc#1051510).
   - media: ov6650: Move v4l2_clk_get() to ov6650_video_probe() helper
     (bsc#1051510).
   - media: replace strcpy() by strscpy() (bsc#1051510).
   - media: Revert "[media] marvell-ccic: reset ccic phy when stop streaming
     for stability" (bsc#1051510).
   - media: technisat-usb2: break out of loop at end of buffer (bsc#1051510).
   - media: tm6000: double free if usb disconnect while streaming
     (bsc#1051510).
   - media: vb2: Fix videobuf2 to map correct area (bsc#1051510).
   - mic: avoid statically declaring a 'struct device' (bsc#1051510).
   - mmc: sdhci-msm: fix mutex while in spinlock (bsc#1142635).
   - mmc: sdhci-of-arasan: Do now show error message in case of deffered
     probe (bsc#1119086).
   - mtd: spi-nor: Fix Cadence QSPI RCU Schedule Stall (bsc#1051510).
   - mvpp2: refactor MTU change code (networking-stable-19_08_08).
   - net: bridge: delete local fdb on device init failure
     (networking-stable-19_08_08).
   - net: bridge: mcast: do not delete permanent entries when fast leave is
     enabled (networking-stable-19_08_08).
   - net: fix ifindex collision during namespace removal
     (networking-stable-19_08_08).
   - net/ibmvnic: prevent more than one thread from running in reset
     (bsc#1152457 ltc#174432).
   - net/ibmvnic: unlock rtnl_lock in reset so linkwatch_event can run
     (bsc#1152457 ltc#174432).
   - net/mlx5e: Only support tx/rx pause setting for port owner
     (networking-stable-19_08_21).
   - net/mlx5e: Prevent encap flow counter update async to user query
     (networking-stable-19_08_08).
   - net/mlx5e: Use flow keys dissector to parse packets for ARFS
     (networking-stable-19_08_21).
   - net/mlx5: Use reversed order when unregister devices
     (networking-stable-19_08_08).
   - net/packet: fix race in tpacket_snd() (networking-stable-19_08_21).
   - net: sched: Fix a possible null-pointer dereference in dequeue_func()
     (networking-stable-19_08_08).
   - net/smc: make sure EPOLLOUT is raised (networking-stable-19_08_28).
   - NFS4: Fix v4.0 client state corruption when mount (git-fixes).
   - nfsd: degraded slot-count more gracefully as allocation nears exhaustion
     (bsc#1150381).
   - nfsd: Do not release the callback slot unless it was actually held
     (git-fixes).
   - nfsd: Fix overflow causing non-working mounts on 1 TB machines
     (bsc#1150381).
   - nfsd: fix performance-limiting session calculation (bsc#1150381).
   - nfsd: give out fewer session slots as limit approaches (bsc#1150381).
   - nfsd: handle drc over-allocation gracefully (bsc#1150381).
   - nfsd: increase DRC cache limit (bsc#1150381).
   - NFS: Do not interrupt file writeout due to fatal errors (git-fixes).
   - NFS: Do not open code clearing of delegation state (git-fixes).
   - NFS: Ensure O_DIRECT reports an error if the bytes read/written is 0
     (git-fixes).
   - NFS: Fix regression whereby fscache errors are appearing on 'nofsc'
     mounts (git-fixes).
   - NFS: Forbid setting AF_INET6 to "struct sockaddr_in"->sin_family
     (git-fixes).
   - NFS: Refactor nfs_lookup_revalidate() (git-fixes).
   - NFS: Remove redundant semicolon (git-fixes).
   - NFSv4.1: Again fix a race where CB_NOTIFY_LOCK fails to wake a waiter
     (git-fixes).
   - NFSv4.1: Fix open stateid recovery (git-fixes).
   - NFSv4.1: Only reap expired delegations (git-fixes).
   - NFSv4: Check the return value of update_open_stateid() (git-fixes).
   - NFSv4: Fix an Oops in nfs4_do_setattr (git-fixes).
   - NFSv4: Fix a potential sleep while atomic in nfs4_do_reclaim()
     (git-fixes).
   - NFSv4: Fix delegation state recovery (git-fixes).
   - NFSv4: Fix lookup revalidate of regular files (git-fixes).
   - NFSv4: Fix OPEN / CLOSE race (git-fixes).
   - NFSv4: Handle the special Linux file open access mode (git-fixes).
   - NFSv4: Only pass the delegation to setattr if we're sending a truncate
     (git-fixes).
   - NFSv4/pnfs: Fix a page lock leak in nfs_pageio_resend() (git-fixes).
   - nl80211: Fix possible Spectre-v1 for CQM RSSI thresholds (bsc#1051510).
   - null_blk: complete requests from ->timeout (bsc#1149446).
   - null_blk: wire up timeouts (bsc#1149446).
   - nvme: fix multipath crash when ANA is deactivated (bsc#1149446).
   - nvmem: Use the same permissions for eeprom as for nvmem (git-fixes).
   - nvme-rdma: Allow DELETING state change failure in (bsc#1104967,).
   - nvme-rdma: centralize admin/io queue teardown sequence (bsc#1142076).
   - nvme-rdma: centralize controller setup sequence (bsc#1142076).
   - nvme-rdma: fix a NULL deref when an admin connect times out
     (bsc#1149446).
   - nvme-rdma: fix timeout handler (bsc#1149446).
   - nvme-rdma: stop admin queue before freeing it (bsc#1140155).
   - nvme-rdma: support up to 4 segments of inline data (bsc#1142076).
   - nvme-rdma: unquiesce queues when deleting the controller (bsc#1142076).
   - nvme: remove ns sibling before clearing path (bsc#1140155).
   - nvme: return BLK_EH_DONE from ->timeout (bsc#1142076).
   - PCI: hv: Detect and fix Hyper-V PCI domain number collision
     (bsc#1150423).
   - phy: renesas: rcar-gen3-usb2: Disable clearing VBUS in over-current
     (bsc#1051510).
   - platform/x86: pmc_atom: Add Siemens SIMATIC IPC227E to critclk_systems
     DMI table (bsc#1051510).
   - PM: sleep: Fix possible overflow in pm_system_cancel_wakeup()
     (bsc#1051510).
   - pNFS fallback to MDS if no deviceid found (git-fixes).
   - pNFS/flexfiles: Fix PTR_ERR() dereferences in ff_layout_track_ds_error
     (git-fixes).
   - pNFS/flexfiles: Turn off soft RPC calls (git-fixes).
   - powerpc/64: Make sys_switch_endian() traceable (bsc#1065729).
   - powerpc/64s/radix: Fix MADV_[FREE|DONTNEED] TLB flush miss problem with
     THP (bsc#1152161 ltc#181664).
   - powerpc/64s/radix: Fix memory hotplug section page table creation
     (bsc#1065729).
   - powerpc/64s/radix: Fix memory hot-unplug page table split (bsc#1065729).
   - powerpc/64s/radix: Implement _tlbie(l)_va_range flush functions
     (bsc#1152161 ltc#181664).
   - powerpc/64s/radix: Improve preempt handling in TLB code (bsc#1152161
     ltc#181664).
   - powerpc/64s/radix: Improve TLB flushing for page table freeing
     (bsc#1152161 ltc#181664).
   - powerpc/64s/radix: Introduce local single page ceiling for TLB range
     flush (bsc#1055117 bsc#1152161 ltc#181664).
   - powerpc/64s/radix: Optimize flush_tlb_range (bsc#1152161 ltc#181664).
   - powerpc/book3s64/mm: Do not do tlbie fixup for some hardware revisions
     (bsc#1152161 ltc#181664).
   - powerpc/book3s64/radix: Rename CPU_FTR_P9_TLBIE_BUG feature flag
     (bsc#1152161 ltc#181664).
   - powerpc: bpf: Fix generation of load/store DW instructions (bsc#1065729).
   - powerpc/bpf: use unsigned division instruction for 64-bit operations
     (bsc#1065729).
   - powerpc: Drop page_is_ram() and walk_system_ram_range() (bsc#1065729).
   - powerpc/irq: Do not WARN continuously in arch_local_irq_restore()
     (bsc#1065729).
   - powerpc/irq: drop arch_early_irq_init() (bsc#1065729).
   - powerpc/mm: Fixup tlbie vs mtpidr/mtlpidr ordering issue on POWER9
     (bsc#1152161 ltc#181664).
   - powerpc/mm/radix: Drop unneeded NULL check (bsc#1152161 ltc#181664).
   - powerpc/mm/radix: implement LPID based TLB flushes to be used by KVM
     (bsc#1152161 ltc#181664).
   - powerpc/mm: Simplify page_is_ram by using memblock_is_memory
     (bsc#1065729).
   - powerpc/mm: Use memblock API for PPC32 page_is_ram (bsc#1065729).
   - powerpc/module64: Fix comment in R_PPC64_ENTRY handling (bsc#1065729).
   - powerpc/powernv: Fix compile without CONFIG_TRACEPOINTS (bsc#1065729).
   - powerpc/powernv/ioda2: Allocate TCE table levels on demand for default
     DMA window (bsc#1061840).
   - powerpc/powernv/ioda: Fix race in TCE level allocation (bsc#1061840).
   - powerpc/powernv: move OPAL call wrapper tracing and interrupt handling
     to C (bsc#1065729).
   - powerpc/powernv/npu: Remove obsolete comment about TCE_KILL_INVAL_ALL
     (bsc#1065729).
   - powerpc/pseries: Call H_BLOCK_REMOVE when supported (bsc#1109158).
   - powerpc/pseries: Fix cpu_hotplug_lock acquisition in resize_hpt()
     (bsc#1065729).
   - powerpc/pseries/memory-hotplug: Fix return value type of find_aa_index
     (bsc#1065729).
   - powerpc/pseries: Read TLB Block Invalidate Characteristics (bsc#1109158).
   - powerpc/ptrace: Simplify vr_get/set() to avoid GCC warning (bsc#1148868).
   - powerpc/xive: Fix bogus error code returned by OPAL (bsc#1065729).
   - powerpc/xive: Implement get_irqchip_state method for XIVE to fix
     shutdown race (bsc#1065729).
   - powerpc/xmon: Fix opcode being uninitialized in print_insn_powerpc
     (bsc#1065729).
   - power: reset: gpio-restart: Fix typo when gpio reset is not found
     (bsc#1051510).
   - power: supply: Init device wakeup after device_add() (bsc#1051510).
   - ppp: Fix memory leak in ppp_write (git-fixes).
   - printk: Do not lose last line in kmsg buffer dump (bsc#1152460).
   - printk: fix printk_time race (bsc#1152466).
   - printk/panic: Avoid deadlock in printk() after stopping CPUs by NMI
     (bsc#1148712).
   - qla2xxx: kABI fixes for v10.01.00.18-k (bsc#1123034 bsc#1131304
     bsc#1127988).
   - qla2xxx: remove SGI SN2 support (bsc#1123034 bsc#1131304 bsc#1127988).
   - quota: fix wrong condition in is_quota_modification() (bsc#1152026).
   - r8152: Set memory to all 0xFFs on failed reg reads (bsc#1051510).
   - regulator: lm363x: Fix off-by-one n_voltages for lm3632
     ldo_vpos/ldo_vneg (bsc#1051510).
   - Revert "mwifiex: fix system hang problem after resume" (bsc#1051510).
   - scsi: qla2xxx: Add 28xx flash primary/secondary status/image mechanism
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Add Device ID for ISP28XX (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Add error handling for PLOGI ELS passthrough (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Add First Burst support for FC-NVMe devices (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Add fw_attr and port_no SysFS node (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Add new FW dump template entry types (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Add pci function reset support (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Add protection mask module parameters (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Add Serdes support for ISP28XX (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Add support for multiple fwdump templates/segments
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Add support for setting port speed (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Allow NVMe IO to resume with short cable pull
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: allow session delete to finish before create (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Always check the qla2x00_wait_for_hba_online() return
     value (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Avoid PCI IRQ affinity mapping when multiqueue is not
     supported (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: avoid printf format warning (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Avoid that Coverity complains about dereferencing a NULL
     rport pointer (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Avoid that lockdep complains about unsafe locking in
     tcm_qla2xxx_close_session() (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Avoid that qla2x00_mem_free() crashes if called twice
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Capture FW dump on MPI heartbeat stop event (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Change abort wait_loop from msleep to wait_event_timeout
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Change data_dsd into an array (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Change default ZIO threshold (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Change the return type of qla24xx_read_flash_data()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Change the return type of qla2x00_update_ms_fdmi_iocb()
     into void (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Check for FW started flag before aborting (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: check for kstrtol() failure (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Check for MB timeout while capturing ISP27/28xx FW dump
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Check secondary image if reading the primary image fails
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Check the PCI info string output buffer size (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Check the size of firmware data structures at compile
     time (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Cleanup fcport memory to prevent leak (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Cleanup redundant qla2x00_abort_all_cmds during unload
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Cleanups for NVRAM/Flash read/write path (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: cleanup trace buffer initialization (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Complain if a command is released that is owned by the
     firmware (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Complain if a mailbox command times out (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Complain if a soft reset fails (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Complain if parsing the version string fails (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Complain if sp->done() is not called from the completion
     path (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Complain if waiting for pending commands times out
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Complain loudly about reference count underflow
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Correct error handling during initialization failures
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Correction and improvement to fwdt processing
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Correctly report max/min supported speeds (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: deadlock by configfs_depend_item (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Declare fourth qla2x00_set_model_info() argument const
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Declare local symbols static (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Declare qla24xx_build_scsi_crc_2_iocbs() static
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Declare qla2x00_find_new_loop_id() static (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Declare qla_tgt_cmd.cdb const (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Declare the fourth ql_dump_buffer() argument const
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Disable T10-DIF feature with FC-NVMe during probe
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Do not corrupt vha->plogi_ack_list (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Downgrade driver to 10.01.00.19-k There are upstream bug
     reports against 10.01.00.19-k which haven't been resolved. Also the
     newer version failed to get a proper review. For time being it's better
     to got with the older version and do not introduce new bugs.
   - scsi: qla2xxx: Dual FCP-NVMe target port support (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Enable type checking for the SRB free and done callback
     functions (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix abort timeout race condition (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix a NULL pointer dereference (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix a qla24xx_enable_msix() error path (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix a race condition between aborting and completing a
     SCSI command (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix a recently introduced kernel warning (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix a small typo in qla_bsg.c (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix code indentation for qla27xx_fwdt_entry (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix comment alignment in qla_bsg.c (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix comment in MODULE_PARM_DESC in qla2xxx (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix different size DMA Alloc/Unmap (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix DMA error when the DIF sg buffer crosses 4GB boundary
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix DMA unmap leak (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix driver reload for ISP82xx (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix driver unload when FC-NVMe LUNs are connected
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: fix fcport null pointer access (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix flash read for Qlogic ISPs (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix formatting of pointer types (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix fw dump corruption (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix fw options handle eh_bus_reset() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix gnl.l memory leak on adapter init failure
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix hang in fcport delete path (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix hardirq-unsafe locking (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix hardlockup in abort command during driver remove
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix kernel crash after disconnecting NVMe devices
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix LUN discovery if loop id is not assigned yet by
     firmware (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix message indicating vectors used by driver
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix N2N link reset (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix N2N link up fail (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix Nport ID display value (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix NULL pointer crash due to stale CPUID (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix NVME cmd and LS cmd timeout race condition
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix NVMe port discovery after a short device port loss
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix panic from use after free in qla2x00_async_tm_cmd
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix possible fcport null-pointer dereferences
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix premature timer expiration (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix qla24xx_process_bidir_cmd() (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix race conditions in the code for aborting SCSI
     commands (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix read offset in qla24xx_load_risc_flash() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix Relogin to prevent modifying scan_state flag
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix routine qla27xx_dump_{mpi|ram}() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix session cleanup hang (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix session lookup in qlt_abort_work() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: fix spelling mistake "alredy" -> "already" (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: fix spelling mistake "initializatin" -> "initialization"
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix SRB allocation flag to avoid sleeping in IRQ context
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix stale mem access on driver unload (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix stale session (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix stuck login session (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Fix unbound sleep in fcport delete path (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix unload when NVMe devices are configured (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Fix use-after-free issues in qla2xxx_qpair_sp_free_dma()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: flush IO on chip reset or sess delete (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Further limit FLASH region write access from SysFS
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Improve Linux kernel coding style conformance
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Improve logging for scan thread (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Include the <asm/unaligned.h> header file from qla_dsd.h
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Increase the max_sgl_segments to 1024 (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Increase the size of the mailbox arrays from 4 to 8
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Inline the qla2x00_fcport_event_handler() function
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Insert spaces where required (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Introduce qla2x00_els_dcmd2_free() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Introduce qla2xxx_get_next_handle() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Introduce the be_id_t and le_id_t data types for FC
     src/dst IDs (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Introduce the dsd32 and dsd64 data structures
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Introduce the function qla2xxx_init_sp() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Leave a blank line after declarations (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Let the compiler check the type of the SCSI command
     context pointer (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Log the status code if a firmware command fails
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Make it explicit that ELS pass-through IOCBs use little
     endian (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Make qla24xx_async_abort_cmd() static (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Make qla2x00_abort_srb() again decrease the sp reference
     count (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Make qla2x00_mem_free() easier to verify (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Make qla2x00_process_response_queue() easier to read
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Make qlt_handle_abts_completion() more robust
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Make sure that aborted commands are freed (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Modify NVMe include directives (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Move debug messages before sending srb preventing panic
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: move IO flush to the front of NVME rport unregistration
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Move marker request behind QPair (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Move qla2x00_clear_loop_id() from qla_inline.h into
     qla_init.c (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Move qla2x00_is_reserved_id() from qla_inline.h into
     qla_init.c (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Move qla2x00_set_fcport_state() from a .h into a .c file
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Move qla2x00_set_reserved_loop_ids() definition
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Move the <linux/io-64-nonatomic-lo-hi.h> include
     directive (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Move the port_state_str definition from a .h to a .c file
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: no need to check return value of debugfs_create functions
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: on session delete, return nvme cmd (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Optimize NPIV tear down process (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Pass little-endian values to the firmware (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Prevent memory leak for CT req/rsp allocation
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Prevent multiple ADISC commands per session (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Prevent SysFS access when chip is down (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: qla2x00_alloc_fw_dump: set ha->eft (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Really fix qla2xxx_eh_abort() (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Reduce the number of casts in GID list code (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Reduce the number of forward declarations (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Reduce the scope of three local variables in
     qla2xxx_queuecommand() (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Reject EH_{abort|device_reset|target_request}
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove a comment that refers to the SCSI host lock
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove an include directive from qla_mr.c (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove a set-but-not-used variable (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove a superfluous forward declaration (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove a superfluous pointer check (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove dead code (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: remove double assignment in qla2x00_update_fcport
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove FW default template (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Remove qla_tgt_cmd.data_work and
     qla_tgt_cmd.data_work_free (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove qla_tgt_cmd.released (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: remove redundant null check on pointer sess (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove set but not used variable 'ptr_dma' (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove superfluous sts_entry_* casts (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove the fcport test from qla_nvme_abort_work()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove two superfluous casts (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Remove two superfluous if-tests (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Remove two superfluous tests (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Remove unnecessary locking from the target code
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove unnecessary null check (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Remove unreachable code from qla83xx_idc_lock()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove useless set memory to zero use memset()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Remove WARN_ON_ONCE in qla2x00_status_cont_entry()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Replace vmalloc + memset with vzalloc (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Report invalid mailbox status codes (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Report the firmware status code if a mailbox command
     fails (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Reset the FCF_ASYNC_{SENT|ACTIVE} flags (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Restore FAWWPN of Physical Port only for loop down
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Retry fabric Scan on IOCB queue full (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Rework key encoding in qlt_find_host_by_d_id()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Secure flash update support for ISP28XX (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Set remote port devloss timeout to 0 (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Set remove flag for all VP (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Set the qpair in SRB to NULL when SRB is released
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Set the responder mode if appropriate for ELS
     pass-through IOCBs (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Set the SCSI command result before calling the command
     done (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Silence fwdump template message (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Silence Successful ELS IOCB message (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Simplification of register address used in qla_tmpl.c
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Simplify a debug statement (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Simplify conditional check again (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Simplify qla24xx_abort_sp_done() (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Simplify qla24xx_async_abort_cmd() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Simplify qlt_lport_dump() (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Simplify qlt_send_term_imm_notif() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Skip FW dump on LOOP initialization error (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Suppress a Coveritiy complaint about integer overflow
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Suppress multiple Coverity complaint about out-of-bounds
     accesses (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: target: Fix offline port handling and host reset handling
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Uninline qla2x00_init_timer() (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Unregister resources in the opposite order of the
     registration order (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Update driver version to 10.00.00.13-k (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Update driver version to 10.00.00.14-k (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Update driver version to 10.01.00.15-k (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Update driver version to 10.01.00.16-k (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Update driver version to 10.01.00.18-k (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Update driver version to 10.01.00.19-k (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Update driver version to 10.01.00.20-k (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Update flash read/write routine (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Use an on-stack completion in qla24xx_control_vp()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use ARRAY_SIZE() in the definition of QLA_LAST_SPEED
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use common update-firmware-options routine for ISP27xx+
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use complete switch scan for RSCN events (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use Correct index for Q-Pair array (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use dma_pool_zalloc() (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Use get/put_unaligned where appropriate (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use __le64 instead of uint32_t for sending DMA addresses
     to firmware (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use memcpy() and strlcpy() instead of strcpy() and
     strncpy() (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use mutex protection during qla2x00_sysfs_read_fw_dump()
     (bsc#1123034 bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use strlcpy() instead of strncpy() (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use tabs instead of spaces for indentation (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: qla2xxx: Use tabs to indent code (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi: qla2xxx: Verify locking assumptions at runtime (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: scsi_dh_rdac: zero cdb in send_mode_select() (bsc#1149313).
   - scsi: scsi_transport_fc: nvme: display FC-NVMe port roles (bsc#1123034
     bsc#1131304 bsc#1127988).
   - scsi: tcm_qla2xxx: Minimize #include directives (bsc#1123034 bsc#1131304
     bsc#1127988).
   - scsi_transport_fc: complete requests from ->timeout (bsc#1142076).
   - sctp: fix the transport error_count check (networking-stable-19_08_21).
   - secure boot lockdown: Fix-up backport of /dev/mem access restriction.
     The upstream-submitted patch set has evolved over time, align our
     patches (contents and description) to reflect the current status as far
     as /dev/mem access is concerned.
   - sky2: Disable MSI on yet another ASUS boards (P6Xxxx) (bsc#1051510).
   - slip: make slhc_free() silently accept an error pointer (bsc#1051510).
   - slip: sl_alloc(): remove unused parameter "dev_t line" (bsc#1051510).
   - SUNRPC fix regression in umount of a secure mount (git-fixes).
   - SUNRPC: Handle connection breakages correctly in call_status()
     (git-fixes).
   - SUNRPC/nfs: Fix return value for nfs4_callback_compound() (git-fixes).
   - tcp: make sure EPOLLOUT wont be missed (networking-stable-19_08_28).
   - team: Add vlan tx offload to hw_enc_features
     (networking-stable-19_08_21).
   - tpm_tis_core: Set TPM_CHIP_FLAG_IRQ before probing for interrupts
     (bsc#1082555).
   - USB: usbcore: Fix slab-out-of-bounds bug during device reset
     (bsc#1051510).
   - video: ssd1307fb: Start page range at page_offset (bsc#1113722)
   - x86/CPU/AMD: Clear RDRAND CPUID bit on AMD family 15h/16h (bsc#1114279).
   - x86/fpu: Add FPU state copying quirk to handle XRSTOR failure on Intel
     Skylake CPUs (bsc#1151955).
   - x86/tls: Fix possible spectre-v1 in do_get_thread_area() (bsc#1114279).
   - xen/netback: Reset nr_frags before freeing skb
     (networking-stable-19_08_21).
   - xen-netfront: do not assume sk_buff_head list is empty in error handling
     (bsc#1065600).
   - xen-netfront: do not use ~0U as error return value for
     xennet_fill_frags() (bsc#1065600).
   - xen/xenbus: fix self-deadlock after killing user process (bsc#1065600).


Special Instructions and Notes:

   Please reboot the system after installing this update.

Patch Instructions:

   To install this SUSE Security Update use the SUSE recommended installation methods
   like YaST online_update or "zypper patch".

   Alternatively you can run the command listed for your product:

   - SUSE Linux Enterprise Workstation Extension 15:

      zypper in -t patch SUSE-SLE-Product-WE-15-2019-2706=1

   - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15:

      zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-2019-2706=1

   - SUSE Linux Enterprise Module for Live Patching 15:

      zypper in -t patch SUSE-SLE-Module-Live-Patching-15-2019-2706=1

   - SUSE Linux Enterprise Module for Legacy Software 15:

      zypper in -t patch SUSE-SLE-Module-Legacy-15-2019-2706=1

   - SUSE Linux Enterprise Module for Development Tools 15:

      zypper in -t patch SUSE-SLE-Module-Development-Tools-15-2019-2706=1

   - SUSE Linux Enterprise Module for Basesystem 15:

      zypper in -t patch SUSE-SLE-Module-Basesystem-15-2019-2706=1

   - SUSE Linux Enterprise High Availability 15:

      zypper in -t patch SUSE-SLE-Product-HA-15-2019-2706=1



Package List:

   - SUSE Linux Enterprise Workstation Extension 15 (x86_64):

      kernel-default-debuginfo-4.12.14-150.38.1
      kernel-default-debugsource-4.12.14-150.38.1
      kernel-default-extra-4.12.14-150.38.1
      kernel-default-extra-debuginfo-4.12.14-150.38.1

   - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (aarch64 ppc64le s390x x86_64):

      kernel-default-base-4.12.14-150.38.1
      kernel-default-base-debuginfo-4.12.14-150.38.1
      kernel-default-debuginfo-4.12.14-150.38.1
      kernel-default-debugsource-4.12.14-150.38.1
      kernel-obs-qa-4.12.14-150.38.1
      kselftests-kmp-default-4.12.14-150.38.1
      kselftests-kmp-default-debuginfo-4.12.14-150.38.1

   - SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 (noarch):

      kernel-docs-html-4.12.14-150.38.1

   - SUSE Linux Enterprise Module for Live Patching 15 (ppc64le x86_64):

      kernel-default-debuginfo-4.12.14-150.38.1
      kernel-default-debugsource-4.12.14-150.38.1
      kernel-default-livepatch-4.12.14-150.38.1
      kernel-livepatch-4_12_14-150_38-default-1-1.3.1
      kernel-livepatch-4_12_14-150_38-default-debuginfo-1-1.3.1

   - SUSE Linux Enterprise Module for Legacy Software 15 (aarch64 ppc64le s390x x86_64):

      kernel-default-debuginfo-4.12.14-150.38.1
      kernel-default-debugsource-4.12.14-150.38.1
      reiserfs-kmp-default-4.12.14-150.38.1
      reiserfs-kmp-default-debuginfo-4.12.14-150.38.1

   - SUSE Linux Enterprise Module for Development Tools 15 (aarch64 ppc64le s390x x86_64):

      kernel-obs-build-4.12.14-150.38.1
      kernel-obs-build-debugsource-4.12.14-150.38.1
      kernel-syms-4.12.14-150.38.1
      kernel-vanilla-base-4.12.14-150.38.1
      kernel-vanilla-base-debuginfo-4.12.14-150.38.1
      kernel-vanilla-debuginfo-4.12.14-150.38.1
      kernel-vanilla-debugsource-4.12.14-150.38.1

   - SUSE Linux Enterprise Module for Development Tools 15 (noarch):

      kernel-docs-4.12.14-150.38.1
      kernel-source-4.12.14-150.38.1

   - SUSE Linux Enterprise Module for Basesystem 15 (aarch64 ppc64le s390x x86_64):

      kernel-default-4.12.14-150.38.1
      kernel-default-base-4.12.14-150.38.1
      kernel-default-debuginfo-4.12.14-150.38.1
      kernel-default-debugsource-4.12.14-150.38.1
      kernel-default-devel-4.12.14-150.38.1
      kernel-default-devel-debuginfo-4.12.14-150.38.1

   - SUSE Linux Enterprise Module for Basesystem 15 (noarch):

      kernel-devel-4.12.14-150.38.1
      kernel-macros-4.12.14-150.38.1

   - SUSE Linux Enterprise Module for Basesystem 15 (s390x):

      kernel-default-man-4.12.14-150.38.1
      kernel-zfcpdump-4.12.14-150.38.1
      kernel-zfcpdump-debuginfo-4.12.14-150.38.1
      kernel-zfcpdump-debugsource-4.12.14-150.38.1

   - SUSE Linux Enterprise High Availability 15 (aarch64 ppc64le s390x x86_64):

      cluster-md-kmp-default-4.12.14-150.38.1
      cluster-md-kmp-default-debuginfo-4.12.14-150.38.1
      dlm-kmp-default-4.12.14-150.38.1
      dlm-kmp-default-debuginfo-4.12.14-150.38.1
      gfs2-kmp-default-4.12.14-150.38.1
      gfs2-kmp-default-debuginfo-4.12.14-150.38.1
      kernel-default-debuginfo-4.12.14-150.38.1
      kernel-default-debugsource-4.12.14-150.38.1
      ocfs2-kmp-default-4.12.14-150.38.1
      ocfs2-kmp-default-debuginfo-4.12.14-150.38.1


References:

   https://www.suse.com/security/cve/CVE-2017-18595.html
   https://www.suse.com/security/cve/CVE-2019-14821.html
   https://www.suse.com/security/cve/CVE-2019-15291.html
   https://www.suse.com/security/cve/CVE-2019-9506.html
   https://bugzilla.suse.com/1051510
   https://bugzilla.suse.com/1054914
   https://bugzilla.suse.com/1055117
   https://bugzilla.suse.com/1061840
   https://bugzilla.suse.com/1065600
   https://bugzilla.suse.com/1065729
   https://bugzilla.suse.com/1071995
   https://bugzilla.suse.com/1082555
   https://bugzilla.suse.com/1104967
   https://bugzilla.suse.com/1109158
   https://bugzilla.suse.com/1113722
   https://bugzilla.suse.com/1114279
   https://bugzilla.suse.com/1119086
   https://bugzilla.suse.com/1123034
   https://bugzilla.suse.com/1127988
   https://bugzilla.suse.com/1131304
   https://bugzilla.suse.com/1137069
   https://bugzilla.suse.com/1137865
   https://bugzilla.suse.com/1137959
   https://bugzilla.suse.com/1140155
   https://bugzilla.suse.com/1141013
   https://bugzilla.suse.com/1142076
   https://bugzilla.suse.com/1142635
   https://bugzilla.suse.com/1146042
   https://bugzilla.suse.com/1146519
   https://bugzilla.suse.com/1146540
   https://bugzilla.suse.com/1146664
   https://bugzilla.suse.com/1148133
   https://bugzilla.suse.com/1148712
   https://bugzilla.suse.com/1148868
   https://bugzilla.suse.com/1149313
   https://bugzilla.suse.com/1149446
   https://bugzilla.suse.com/1149555
   https://bugzilla.suse.com/1149651
   https://bugzilla.suse.com/1150381
   https://bugzilla.suse.com/1150423
   https://bugzilla.suse.com/1151350
   https://bugzilla.suse.com/1151610
   https://bugzilla.suse.com/1151667
   https://bugzilla.suse.com/1151680
   https://bugzilla.suse.com/1151891
   https://bugzilla.suse.com/1151955
   https://bugzilla.suse.com/1152024
   https://bugzilla.suse.com/1152025
   https://bugzilla.suse.com/1152026
   https://bugzilla.suse.com/1152161
   https://bugzilla.suse.com/1152325
   https://bugzilla.suse.com/1152457
   https://bugzilla.suse.com/1152460
   https://bugzilla.suse.com/1152466
   https://bugzilla.suse.com/1152972
   https://bugzilla.suse.com/1152974
   https://bugzilla.suse.com/1152975



More information about the sle-security-updates mailing list